From 543b6178df1ce3fa766b49221fcdf4e0f103645f Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tom=C3=A1s=20Far=C3=ADas=20Santana?= Date: Tue, 12 Sep 2023 16:37:07 +0200 Subject: [PATCH 1/9] feat: Backend to support S3 batch export encryption --- posthog/batch_exports/service.py | 2 + .../test_s3_batch_export_workflow.py | 173 +++++++++++++++++- posthog/temporal/workflows/s3_batch_export.py | 22 ++- 3 files changed, 193 insertions(+), 4 deletions(-) diff --git a/posthog/batch_exports/service.py b/posthog/batch_exports/service.py index 5aa0fa7d18e22..b5eb182e68a70 100644 --- a/posthog/batch_exports/service.py +++ b/posthog/batch_exports/service.py @@ -52,6 +52,8 @@ class S3BatchExportInputs: data_interval_end: str | None = None compression: str | None = None exclude_events: list[str] | None = None + encryption: str | None = None + kms_key_id: str | None = None @dataclass diff --git a/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py b/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py index 392534fc8999c..9d0166f11eb84 100644 --- a/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py +++ b/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py @@ -3,11 +3,13 @@ import gzip import itertools import json +import os from random import randint from unittest import mock from uuid import uuid4 import boto3 +import botocore.exceptions import brotli import pytest from django.conf import settings @@ -40,6 +42,17 @@ TEST_ROOT_BUCKET = "test-batch-exports" + +def check_valid_credentials() -> bool: + sts = boto3.client("sts") + try: + sts.get_caller_identity() + except botocore.exceptions.ClientError: + return False + else: + return True + + create_test_client = functools.partial(boto3.client, endpoint_url=settings.OBJECT_STORAGE_ENDPOINT) @@ -130,7 +143,7 @@ def assert_events_in_s3( itertools.product([None, "gzip", "brotli"], [None, ["test-exclude"]]), ) async def test_insert_into_s3_activity_puts_data_into_s3( - bucket_name, s3_client, activity_environment, compression, exclude_events + bucket_name, s3_client, activity_environment, compression, encryption, exclude_events ): """Test that the insert_into_s3_activity function puts data into S3.""" @@ -268,6 +281,7 @@ async def test_insert_into_s3_activity_puts_data_into_s3( aws_secret_access_key="object_storage_root_password", compression=compression, exclude_events=exclude_events, + encryption=encryption, ) with override_settings( @@ -422,6 +436,163 @@ async def test_s3_export_workflow_with_minio_bucket( assert_events_in_s3(s3_client, bucket_name, prefix, events, compression, exclude_events) +@pytest.mark.skipif( + "S3_TEST_BUCKET" not in os.environ or not check_valid_credentials(), + reason="Google credentials not set in environment", +) +@pytest.mark.django_db +@pytest.mark.asyncio +@pytest.mark.parametrize( + "interval,compression,encryption,exclude_events", + itertools.product(["hour", "day"], [None, "gzip", "brotli"], [None, "AES256"], [None, ["test-exclude"]]), +) +async def test_s3_export_workflow_with_s3_bucket(interval, compression, encryption, exclude_events): + """Test S3 Export Workflow end-to-end by using an S3 bucket. + + The S3_TEST_BUCKET environment variable is used to set the name of the bucket for this test. + This test will be skipped if no valid AWS credentials exist, or if the S3_TEST_BUCKET environment + variable is not set. + + The workflow should update the batch export run status to completed and produce the expected + records to the S3 bucket. + """ + bucket_name = os.getenv("S3_TEST_BUCKET") + prefix = f"posthog-events-{str(uuid4())}" + destination_data = { + "type": "S3", + "config": { + "bucket_name": bucket_name, + "region": "us-east-1", + "prefix": prefix, + "aws_access_key_id": "object_storage_root_user", + "aws_secret_access_key": "object_storage_root_password", + "compression": compression, + "exclude_events": exclude_events, + "encryption": encryption, + }, + } + + batch_export_data = { + "name": "my-production-s3-bucket-destination", + "destination": destination_data, + "interval": interval, + } + + organization = await acreate_organization("test") + team = await acreate_team(organization=organization) + batch_export = await acreate_batch_export( + team_id=team.pk, + name=batch_export_data["name"], + destination_data=batch_export_data["destination"], + interval=batch_export_data["interval"], + ) + + events: list[EventValues] = [ + { + "uuid": str(uuid4()), + "event": "test", + "timestamp": "2023-04-25 13:30:00.000000", + "created_at": "2023-04-25 13:30:00.000000", + "inserted_at": "2023-04-25 13:30:00.000000", + "_timestamp": "2023-04-25 13:30:00", + "person_id": str(uuid4()), + "person_properties": {"$browser": "Chrome", "$os": "Mac OS X"}, + "team_id": team.pk, + "properties": {"$browser": "Chrome", "$os": "Mac OS X"}, + "distinct_id": str(uuid4()), + "elements_chain": "this is a comman, separated, list, of css selectors(?)", + }, + { + "uuid": str(uuid4()), + "event": "test-exclude", + "timestamp": "2023-04-25 14:29:00.000000", + "created_at": "2023-04-25 14:29:00.000000", + "inserted_at": "2023-04-25 14:29:00.000000", + "_timestamp": "2023-04-25 14:29:00", + "person_id": str(uuid4()), + "person_properties": {"$browser": "Chrome", "$os": "Mac OS X"}, + "team_id": team.pk, + "properties": {"$browser": "Chrome", "$os": "Mac OS X"}, + "distinct_id": str(uuid4()), + "elements_chain": "this is a comman, separated, list, of css selectors(?)", + }, + ] + + if interval == "day": + # Add an event outside the hour range but within the day range to ensure it's exported too. + events_outside_hour: list[EventValues] = [ + { + "uuid": str(uuid4()), + "event": "test", + "timestamp": "2023-04-25 00:30:00.000000", + "created_at": "2023-04-25 00:30:00.000000", + "inserted_at": "2023-04-25 00:30:00.000000", + "_timestamp": "2023-04-25 00:30:00", + "person_id": str(uuid4()), + "person_properties": {"$browser": "Chrome", "$os": "Mac OS X"}, + "team_id": team.pk, + "properties": {"$browser": "Chrome", "$os": "Mac OS X"}, + "distinct_id": str(uuid4()), + "elements_chain": "this is a comman, separated, list, of css selectors(?)", + } + ] + events += events_outside_hour + + ch_client = ClickHouseClient( + url=settings.CLICKHOUSE_HTTP_URL, + user=settings.CLICKHOUSE_USER, + password=settings.CLICKHOUSE_PASSWORD, + database=settings.CLICKHOUSE_DATABASE, + ) + + # Insert some data into the `sharded_events` table. + await insert_events( + client=ch_client, + events=events, + ) + + workflow_id = str(uuid4()) + inputs = S3BatchExportInputs( + team_id=team.pk, + batch_export_id=str(batch_export.id), + data_interval_end="2023-04-25 14:30:00.000000", + interval=interval, + **batch_export.destination.config, + ) + + s3_client = boto3.client("s3") + + def create_s3_client(*args, **kwargs): + """Mock function to return an already initialized S3 client.""" + return s3_client + + async with await WorkflowEnvironment.start_time_skipping() as activity_environment: + async with Worker( + activity_environment.client, + task_queue=settings.TEMPORAL_TASK_QUEUE, + workflows=[S3BatchExportWorkflow], + activities=[create_export_run, insert_into_s3_activity, update_export_run_status], + workflow_runner=UnsandboxedWorkflowRunner(), + ): + with mock.patch("posthog.temporal.workflows.s3_batch_export.boto3.client", side_effect=create_s3_client): + await activity_environment.client.execute_workflow( + S3BatchExportWorkflow.run, + inputs, + id=workflow_id, + task_queue=settings.TEMPORAL_TASK_QUEUE, + retry_policy=RetryPolicy(maximum_attempts=1), + execution_timeout=dt.timedelta(seconds=10), + ) + + runs = await afetch_batch_export_runs(batch_export_id=batch_export.id) + assert len(runs) == 1 + + run = runs[0] + assert run.status == "Completed" + + assert_events_in_s3(s3_client, bucket_name, prefix, events, compression, exclude_events) + + @pytest.mark.django_db @pytest.mark.asyncio @pytest.mark.parametrize("compression", [None, "gzip"]) diff --git a/posthog/temporal/workflows/s3_batch_export.py b/posthog/temporal/workflows/s3_batch_export.py index 028b6f422e26f..cfd947ea14f21 100644 --- a/posthog/temporal/workflows/s3_batch_export.py +++ b/posthog/temporal/workflows/s3_batch_export.py @@ -88,10 +88,12 @@ class S3MultiPartUploadState(typing.NamedTuple): class S3MultiPartUpload: """An S3 multi-part upload.""" - def __init__(self, s3_client, bucket_name, key): + def __init__(self, s3_client, bucket_name: str, key: str, encryption: str | None, kms_key_id: str | None): self.s3_client = s3_client self.bucket_name = bucket_name self.key = key + self.encryption = encryption + self.kms_key_id = kms_key_id self.upload_id = None self.parts = [] @@ -119,7 +121,17 @@ def start(self) -> str: if self.is_upload_in_progress() is True: raise UploadAlreadyInProgressError(self.upload_id) - multipart_response = self.s3_client.create_multipart_upload(Bucket=self.bucket_name, Key=self.key) + optional_kwargs = {} + if self.encryption: + optional_kwargs["ServerSideEncryption"] = self.encryption + if self.kms_key_id: + optional_kwargs["SSEKMSKeyId"] = self.kms_key_id + + multipart_response = self.s3_client.create_multipart_upload( + Bucket=self.bucket_name, + Key=self.key, + **optional_kwargs, + ) self.upload_id = multipart_response["UploadId"] return self.upload_id @@ -230,6 +242,8 @@ class S3InsertInputs: aws_secret_access_key: str | None = None compression: str | None = None exclude_events: list[str] | None = None + encryption: str | None = None + kms_key_id: str | None = None def initialize_and_resume_multipart_upload(inputs: S3InsertInputs) -> tuple[S3MultiPartUpload, str]: @@ -241,7 +255,7 @@ def initialize_and_resume_multipart_upload(inputs: S3InsertInputs) -> tuple[S3Mu aws_access_key_id=inputs.aws_access_key_id, aws_secret_access_key=inputs.aws_secret_access_key, ) - s3_upload = S3MultiPartUpload(s3_client, inputs.bucket_name, key) + s3_upload = S3MultiPartUpload(s3_client, inputs.bucket_name, key, inputs.encryption, inputs.kms_key_id) details = activity.info().heartbeat_details @@ -442,6 +456,8 @@ async def run(self, inputs: S3BatchExportInputs): data_interval_end=data_interval_end.isoformat(), compression=inputs.compression, exclude_events=inputs.exclude_events, + encryption=inputs.encryption, + kms_key_id=inputs.kms_key_id, ) try: await workflow.execute_activity( From 7f53d68c072f78d344b3ecf8266b104af9d7eca4 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tom=C3=A1s=20Far=C3=ADas=20Santana?= Date: Tue, 12 Sep 2023 16:52:10 +0200 Subject: [PATCH 2/9] feat: Frontend support for S3 encryption --- .../batch_exports/BatchExportEditForm.tsx | 35 +++++++++++++++++-- .../batch_exports/BatchExports.stories.tsx | 2 ++ .../batch_exports/batchExportEditLogic.ts | 2 ++ frontend/src/types.ts | 2 ++ 4 files changed, 38 insertions(+), 3 deletions(-) diff --git a/frontend/src/scenes/batch_exports/BatchExportEditForm.tsx b/frontend/src/scenes/batch_exports/BatchExportEditForm.tsx index 16cf9ccd3f3a0..5d938746d3563 100644 --- a/frontend/src/scenes/batch_exports/BatchExportEditForm.tsx +++ b/frontend/src/scenes/batch_exports/BatchExportEditForm.tsx @@ -180,6 +180,12 @@ export function BatchExportsEditForm(props: BatchExportsEditLogicProps): JSX.Ele ]} /> + + + + + +
+ + + +
- - - +
+ + + {!batchExportConfigForm.encryption || + batchExportConfigForm.encryption != 'aws:kms' ? null : ( + + + + )}
+ Date: Tue, 12 Sep 2023 16:59:24 +0200 Subject: [PATCH 3/9] test: Do not run activity test with encryption --- .../tests/batch_exports/test_s3_batch_export_workflow.py | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py b/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py index 9d0166f11eb84..46c600559f89c 100644 --- a/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py +++ b/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py @@ -44,6 +44,7 @@ def check_valid_credentials() -> bool: + """Check if there are valid AWS credentials in the environment.""" sts = boto3.client("sts") try: sts.get_caller_identity() @@ -143,7 +144,7 @@ def assert_events_in_s3( itertools.product([None, "gzip", "brotli"], [None, ["test-exclude"]]), ) async def test_insert_into_s3_activity_puts_data_into_s3( - bucket_name, s3_client, activity_environment, compression, encryption, exclude_events + bucket_name, s3_client, activity_environment, compression, exclude_events ): """Test that the insert_into_s3_activity function puts data into S3.""" @@ -281,7 +282,6 @@ async def test_insert_into_s3_activity_puts_data_into_s3( aws_secret_access_key="object_storage_root_password", compression=compression, exclude_events=exclude_events, - encryption=encryption, ) with override_settings( From 60489e5a35c2c69dd99049b44df535d1847e5a3a Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Tom=C3=A1s=20Far=C3=ADas=20Santana?= Date: Tue, 12 Sep 2023 17:00:18 +0200 Subject: [PATCH 4/9] test: Update skip message --- .../tests/batch_exports/test_s3_batch_export_workflow.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py b/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py index 46c600559f89c..cb38d818ba9d7 100644 --- a/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py +++ b/posthog/temporal/tests/batch_exports/test_s3_batch_export_workflow.py @@ -438,7 +438,7 @@ async def test_s3_export_workflow_with_minio_bucket( @pytest.mark.skipif( "S3_TEST_BUCKET" not in os.environ or not check_valid_credentials(), - reason="Google credentials not set in environment", + reason="AWS credentials not set in environment or missing S3_TEST_BUCKET variable", ) @pytest.mark.django_db @pytest.mark.asyncio From 45a5b1eec219ac298304f2790a3441946ed6ade3 Mon Sep 17 00:00:00 2001 From: github-actions <41898282+github-actions[bot]@users.noreply.github.com> Date: Tue, 12 Sep 2023 15:35:06 +0000 Subject: [PATCH 5/9] Update UI snapshots for `chromium` (2) --- ...nents-cards-insight-card--insight-card.png | Bin 227711 -> 226568 bytes 1 file changed, 0 insertions(+), 0 deletions(-) diff --git a/frontend/__snapshots__/components-cards-insight-card--insight-card.png b/frontend/__snapshots__/components-cards-insight-card--insight-card.png index 5866bafa1e8c60ea029d6a20662a0f014bf04aaf..25c25a61e063c3e179934cc28a8b9607933a17de 100644 GIT binary patch delta 111124 zcmZ^Kby!tf^z8vb=|%)Z8Yw{<=@#h*kr3%_P--LHjg)|N35Y0g$g6aB2#1iAmTq|K zT<^W__ulv3e|kR7-fPV@*O+6BInT{LZrBEH96hSr;9JJ8j3}!OklN=DVa%+z(bOd+ z&~TV<%aD+upv2<@1iV^|WPSxhLnnULa$CzqkU>_x`$^!~il%pIxsiAI&bYVd$6Koec6DhxHWPyb;lZF} zWtAZl5ktk_`tHSrRHr&;6DNaWx79?otJHK;s7s;?s_G06sSMF$qUavBrp`(Y@O{%TlQIOGHC2Coe`>#<8Gt{tjG$sYb(#68SxkDSzs8+DnbVNKi69nHb2IcIktR1@#4wfH35GicYcwHiL>%_t4 z%lDs%x!ghuJYtf8ZH3($%5}}>-`lZJ0${W#s6j!nx4d0lQIttrs%)DUAuggD+%|?$ zK{!t=hc>)xi!(Q&98S+MSB_i!eX|N@zY6!Y{cc+_M{Y_LEY)S5z5Lxs%zQoT z4LAA`QR^Tn)bE&Pm`=3=VXnkV!7?G@s4H?;+?kL1%5hOK2+%M>h}0_N(OD&&Y`c^> zeclJ}BW&imD@YnX7`Z-t98mEByw|w*I~@P);y=0dyi@DNPVwBcxL;8giwUmgu8}h5dqT~1c+E@K?9bD$ z1t=xs|GXR(ZSjXl5*r!@iNtQhreO+UvQ0lGxn)HPB72tA=0-4bH#sn#QrBPb?a#Ze zhr#-Ymyh(mXL`>BrdE ze(z{EPO>_k=ev2W^JN#Mc?i}i%!0}+^=7z9)!Q9TL&|S0s=B{lpQhRopxBNRP7&`R zajV7>^MvGzUA%5PV3|X0%o~Q#*zqTqrAV@e#f&mZ3>Js?1L$P3ulSxFKBuSiI`;Ay zkj44?^-}&49%1P#aW28Iw;~awEEA3b&eFQ|I1ZiKgs&KCsXBFo|1!%bV&97M0*O_BrN_VODz=792)uUcM**T zTT5ua73q;uQf%`Fwd*oOG5fln!vv3bw&BOH=EQ{|PodhD{l?}|XKkHDjKfzk$QG9utj#Y6p$tbs>?pGXWf%&b_Uo4_4CKQS{3<2=)| z#M?p2tP5FB5>YOx@(6LpCN0+rSB{4*uO2zmIny|=8DLTov9k&g5fkBmo1(Z!!H@wHP)FsFCY{vw7OE5vUy2e2*o6_E+AC7qtb5klauc|m`Fle^qNVv z+~=98#WrG_p7nV1vut%8k;GZoRx#ofdA80o*w3B*-P#|-v$+RNWPi$+(x;*qoP5@i zgX*JbO(<}b)bPBEfrde@^fN3c$`Z1VEY3Ggv0ZrcKAs@jrtUPhG^+j#YU!2nshdZ; zwZLbyE)yC_jP>q$xNdEIy-egB?bU8}OWaebKk)j&AfAAR(c$G8&*NaYkh$IJ{epLQMJ;`29KKZ|n}g%sPgCgGubf$CnY>9D{6TH# zje&vM*jS&JC!$!{sRMcxx+sZAnnji?BGi0@9d!>WDjJsmrz|Z2O^uw$SPcU~&eUB8 z6nRW3bQ#4s!IKYe4tgeo{C48<(Ltf&#P6eg1YFZ_E=%w2n@Ii?QYkfk7FQQ6W%#Kv zqg>?~r1+tOeB9;jA)G|*4~UUaw1IoWjE+7=NxX&{Ai#lTF35xm=3Ga9vLHrLri#LRWVUqqYng6bfEW~C( zA>>66cg6b#RoVzb@|Oi9x9GmV5(wbXb!iDFqTv>sJ*V9$pTtloUH2JJ#QVWjbHq`f zN_h3iWI;#Dv!h8StS$0|*{9OAQSU_=3%%zak#~hmh#4_1OM>0YqrfKRG2%4j>}gl9 zP&6Kkrr%ThnMdQY78jqlTuHph`Cd2idp^k|R2kQxT7ThzjgZBRTR3bWqUDxv)%iVf zkcVSN9ZrCG`tr9Y)97BIuWn4Rqo-|Hox9v3&7L~Os|SBjxra2IFpitfW`bc&w<61> zmOmIR+-qg2jc%E4J>9LT;Fk~y-L^%9@Y-56he-{ z2zM9xFtZoGuIh!4P8>wzm4Y>=FfdWkq{D+?EXn-ukdTWiwL?*|h&8rZk)_?TW_a6a z%uWQZ1S)mR3weQy)Sy6_5Q8!VUHthAy4LoHQz_}euKuV3-^1q@>$T^`^v|!oVP|Wb z;~ngmMO-iZcr31TO!02AyJusd{M6<0`JldFwImGIr2U}34@i=O_BI-d6brKiiBg8c zY}kj*SUJgD9ovENUr*idhO)UW-zK)ydUnA)f28!DX4opEO@7E+7RDP9${O;~{0xZe1;keFBk?zu z!%(CEmeZCL&TDgeO@)O-o)u(Uv)@K3muCC(xO+>GjfG(^U@Hzh6W^ zLqPU54T;bY2@N-|X1~zN$;VJ%&Lu%z+c0_mq>=A|k^x*4C51nfNgpmo5@F(F64{Sp z$W2YttXq5^=~JfQ8?O3re(6HnAbxZ0C{Q-JMsZ+VS;;QJv2E5@6&7AnkI%OX&Dr%O zWbe~Qxw<1>TB4$YLY{+`#0IW8j&s?gr{ysZEQ6p{^pZ8O>FMu*V(P>wLFL#91Imhn z&t6F{O1+YWggxO4JY%lPM`H3x_5SX!WJ){J%R3N9O2L1fUcNBpzj@UcRLd3_3t5}? zWnkyVjy8I?`#sv>ve*}fH_Z8nJ0f`tU@i%Euho7#&`Z#SqH9&5NuE3)&vn+Bd^cPM z&96!YnYmJoO3{!1(oplyr$BLjyD~kPt?``0&18|$<}N$j?wL}(Wr=6**o0yCLvefF z!p-tN((VxeNkY*1K`R$6Y~Qfc8Jkc6r+(dw zQOrkuaZxyKXJz(Afl&<3wlLtHq`T4SwPlqNNwPlw+Z@|oUMpXZbx*BBh?sH z;--P2mPMecA}hG1Qk+=F3724vXiZKI!5n%0?k^l3_F0>0N%eKk(mQ*nzLi|~QI9QF zA9h@B;--b;i+_a>sq~$!a^g1g?=B59XV_}UP$_83Vj^$-Spi(eo)KVCg62KU?rWN zPYPM7P1p*F{f+pVU+8j0sB8cHS)|hxRWez!e|(-9eP-(DusI@lRHCCf>HR#jzBUyt zObGWj{sTJ-J{z-i0Y?X;H!I0)ol|)-Hf}B^q1{fotwPxvGXM+ zov5X&RYX)9aG`3nbzME9r&vcFp4BH-a4>1K1DGlhfKM%UpY2-uRT~`8EX+Ohuxk~8 zgq*eeA|W!^W*x&z9R@SP!i)6U=d~Hp&#Mb~_dlkhb%hbqEA_s6)PFJ$IX0gzVr#be z`SL)PD(#Kktg&Bh#<_`^lpd!TxP;@bPW~E-7MQbYzTEF^T(R7|!=-1#%Ceion`1y~ z377IG;Y#lqZ}-f1X-J6Q?7VNrh9}d>VLs;ie!yHgfPiQ%y7lUk}2$lj_*< zEKSkB@nWZ;P$g5y0}7A7zPecB6JLAu?PW(FvwK__hFQ^XRFEu}0VV6K)go+1$m6K%Pe=o5zOS?;3b>fwcBw`eXm>^4`=_|R5x z7je%v`+6T7O&aT#d}D~0|Di}klfSP7V$`X;SE^2M6lEL2$OzY8zgb{c;(qtl5W3K{ zWRNL)lY*^YMMHFNeZnMOVpxobj)?mDOM^3-ypx;ap#Hb^xF{XwNvQzbhKa^szeg9a zQO#8EE@q5tW-Fs;*wE8#gvC#(y>a$A{$W|@Fk7E|oXKq-fvc0vZ=Vj|sozwZsj=_R zm5pSUfx*rkj0tGk!@al+9qWTac%YDR(;d}a3KCie+J*%Rl6BM{D;oK)(Ufl)sB|sh z6WgvYS~G|-V9h2qa>ra=EurnP4fe9^6!wTNWaN<%eC$4KnI<2FUim$J)T8cirIjZc zc-!LV_uz1Q`lm5p9CXE4A^YhsT$BP1Ujk&!UB3mOd#rx+spQ6o`2$!aX@X$RkyEn$ z_4yA@Kd{9|y&|tGk&_ye=#AqTKN4G{Nhy4sLn}$hhyFR}sS~67N^OhsAR`rp@7`d1 z<+@a4^d1kks!!e6@$gnuz?j}Gb%yGfqBoZZtJAiXd~CWEU+5{W+4ZDQr302jsr}@m zQkhj`M)z%uC&p1=68;iO4D1jhH>kvGX?#IJzK+E-P;yv(kv=9vt%SanksVK_!p;O$ zMv9(Y)g6b-zoKO+iov>u?WFM#$GHWo=;&53n?%wBif~vrU&PTpL8q6$glHDQ(bwkD z#SG^?&FJN5=u?@!_;!a{Eer-j)?9%C+tQNPfuaX~m!VOBtuq@z2;M3+$tis{3Q-rS z*7Br^OWb;8^!6+{K5pltc(vhbH3^}hZgvyDGxl)r>5_qOhxk#dv_E^?d zguWOSF*Lek*(CJ(H%(gFHn)@H==i4I6zcMR76t)W0)!?Xz99E_G0HCpy|9RgBg&s4 z?;ehTetvxHr@FX>BzW`YyDar5oJ6UL6}yI0sQL44i+#Fi7%&)(#0MgmTM0QYl4a2~ zj}|)9=xXk(Hw&J8b;Bm8FNvMCS+^W`PkYN%W_~Z2P3((UcWM9MZv-!-5nv&&|32JRT%?R%yy)XwHoz7VLYWrEfeW4wHKTQvc<>c$CkSC^NjZpaSP#0PwY4+JJJki_FuocyjV)8N z;Y}wL$YvB{(5I|X1%dB@A6QNw3!vfBFA}G*HgbK-@j75GBqNhw;sOH zZ*~tNWU)2(X0kiRnzwi7kH}5?TE27}_!xN9a$z@f#Q(c@44$yBcZ1Pnm{5Lwldyr` ztxcb`QK>QTL_RA(snz=N-yh<1ovX?)%@Uh^z2%= zsfW)lr1R(8Re!*(JCe zPAIEaCL>5EbR8>FAF*Ygo=#Fmr?rUGPOivJ6M*aH4|_`?n@5HvrF;2QTSr=Vp?;zU z2Ko0iiVddTc=_7wzvZ6zUDo-ArFHn%G3A7yFxQ|p3`TYy|>2wb3rgxy5i}9Din-d zLXoi8dJ=c}X6g7c^F`)u3i!uxy+{8XG|5p!sizi%%3#OmWj<0V42zwKB0qH58Tg6XzrvKZyYAuo2>AxqubjLD?Xf}a-H8v&VZ%7O>L|Zp zaZelvcq~Rae`KF2Ua}%4 zLGnz11I<52!8{h}^=pV$*t`gb@}U?nMZhVHIf}b^Bvr57W=aeUG0E|E!QPDmRtdADik9g5I@Uyo=1VMOl)Cy3+M_Oc*QBbR*sWA!q zzvQLjKT;`nm-uom!P+W+!4_tCfda7p?>`|ACxDwiQ|qEq%%e@e*2Dx~)A)KB7AWM; zOWp+ts{NLsdt!|HY9G0gJae~D2sdyJh)8HzU$WL+9B)^1(WGakqrwVsEBteE zlKx|HRc-nz{;(XSKbsDKLErRxP>rFhug^cdLqTE%ux?9Ozxg+cU&7NHtaKzBLt3MyXJtB>MZWTdTQ|9NennS6|kD zR9i~1s}*83`bzqP6GLTyP?uwbcOC;O)|UZuUaLPGQA|9}6!osL9xaS^AFtbodf56u znY1PpS^>{(sUw;vno^)sjc!HgJ5JV(5{^H^4iSdym&DZuTb4GV9rv zxa+D?L%DP)Ui{?yjZ~p`$CF>f`D`Z`Vsefu+Wb*&ZLOskd4+#BSTx`0pmgL_6+6qn z@*d0*Ed*~qZpu+2bx4x}YlOfe2T^6@60QeRV9%R@3pkPgEU~Qy;Lwcy(Z)EBVS~rl z`Sk<(SP_lx;u6D#8aNO|+g-}PPsJ~P2VNP84sGBzU!QMopLou_DayRQ%5ZG1%07A# z>h*u49sp~nrl0S{w-qB@$RZ5)7*$v`F?f!r%2g~}Np_c+x- z;1T}@9+zD4jDV)WW1G8n)+1wfqDVEn&F|)NO}syeMf0Nxo!IrMX+vz3KxcXFoK3BA zI&ZgMmVl#C!BTJ7h$T6@lxQROt1sI#jxBs^1DQPi>3r4MwGOj3lR*iU&0;slGmbfv z?{`umeKlQZQ&8wSFIFsFumf;}{-3R(#Pij+wa=1DGKD?$m-Gky2HrnODnaD{mjuZy zl0LvN3xQ(RyVaj#q)M)2+8Of|rLjLlKy_;~t}H~XQvYj@-$ay}31#xBRU~Vv0<&(3S05iZLbDlOE-z{w?5At&Gn{PUyUiEOUFI5vhYp^b z6a8W*WJa&wa%(UAo8UwMCsT%^L_xw}A%39z6y3zO^iGj-OEVj#ttOB_~;8 zJpEH9avim4a|OD;j#f9Xdd7JhlS;OdS^m^31vUTE>kSiT44n&>RGrfb8oafGtNmWi znZd}rk4oKq&gwU-4OH)^r@Kvjd>#(o7v{6HlCj$m5oGB4-qi1GCB-9KE}G)U&B`&I zv;t(ys&mz1(s~=hav@J*IcYAg_4^)#87}ib5`Y|wAXE3ETUn+f{4NJJg(A1kdwlQM z2cjQe$o)Ru2-n6hsj+tEUkjZ7WFo!Ew(G<}FR2^<$u`DSsedl-gT4Uqa2k(gAAm*T zP7TPWFzY8PPNFsKpQz zEam!N6%ONW$5zg7=yB`2iJXPsIp~E)p&82NRy-NtGM8WX)W7(a<2}s(NbXJ&OOKYx zyMN==rPss6ZL}PaW28n)hHp7#HE|!-L-Nl-5=0ez{E3iV)_`(f>I#&_T2P{XP*VQ~ zCjlg~V!4e2tMAEEvCVyJYHqWzCvLw8(9xJRlm31D4?PzSN*H+MKYPI-i1gxeHD~AA zfc=B#$W*0~&~Q3GTz^llm`+6e0fC0`@B7i@aRQ%-mbu{WcIj|F3L#1=LxOS&$`*I%Rm{? zNGSZJC*-;F{>^$p%HPfpV~WA6dXH_JiArN*>lScfG9HL}rJf&cW|URb_b6rX_rDj1 z#GviHSZZ;H+j#e_Y{pB?nN+jx*AIeQWaD+bWj#1ws?EmZy4uIOt+~T))Ho%A1mL!C z;%76eSt8a(zDL@l1&U+`Ky(IOAJ@+N@eGRJH1;n&eekBu=WzIGa+YJgFUUr+(OO62 z(I#)tgY(VGhs}vyuP^sH`@!F5OhG4OC7P>Q-aA~_WE||zP(FKX>yN@+EiamloZCq) zE>HJXw|-PtL6ss=tUSUVTaSIu54n)Ay`sLt&F)z0jr%7qG!iZWIPa&w+Gda$`wUYg zZO_yS0GQ&sIN4R*ss`TP=*QeUBRt+ zN}&lDQ+2>9vW|eO#*Oq9E(X$g9_IP>P?5jG7d!pn8zO0{o%_LacP<_kDRXq{L=O6R zR*|mEg?!lg8Kq_R!>rfeBl z!&2WUBqrt!=NQ?Mi&b0nE7)lcT4xHm_sunV6VHU;Qd)Q$GvaB4Q<68|!Mh(uLQ~mv zoL=&xwqmxEwzUR;C^-T9r~l&SNokVz@XsTxl%MwzY)O&2K-Q z3d#-dmp-dy)tMs^pZF5{>*AO06)1lb2Ld#C2HemavV*OshGmd@6e*ids`$+%&))N< zVr~PozXZo3S*1rU$4j+6TFiUj$v&775XwUf!x;j#aPaz3O6KF*3c(As;j_8dOSn8Q z|AJ{&8i{V!tVFVQrWpHKgB-A&)iOIpKN)uJh$1&dA8aQxwtE`595Gg=%gOea*^qUR zqA6)zzTaBR8qSiBHi`~3!_#I~5E&+uJF3Eon| zE%N!#=8?0;gHLwEDBi|T#W!TtKzr?EI>mC)TFIlF|>#+pF$;nsF3$Gwx;P<+7_`#^J;&_%y1^SW{AVx`FV#7amepgc4hNbaG?vf#vJmEGu~1X@!j9JNBxUQGP1jJ^b^J51^Ym zh`Y^fthZdbBfZ9c>eDyB?4A3PSw8#EHYrjfm{I7Q*XFC$wqlNTRecb?fO*(@Q%@KA zO!}_R<)QZDKM+YhywG6LB${)HAL01{cP&Da8tbv*cyeJ6yPkO}F`ubs;vFjGhY}>4 z)xH-Vwo{v)%?p)1d?YSue@Gj|@U$a=$FDTuGp*D_`3pIqd0|^UBBX;>2q>?uTB#LFM=|60jE%%W}=sOX23)LHRsa%Xd+sv<4b~tg+^rs z^!}xvJPenDmwE5G14r{-(Na(7JSM|Rve#F0yNk|b?{w)3h3UeDZNW7NgP3r=?PU@y z-YRZ0Db_VF;oCh=>YTaLZ0P#OHFR@z5~^Yqw{cRSQAkq8P%A5{$%r0NgbkzSdKH9p zJBfCcg;3}MjV^u}#^)H%+A=S52mT?{C=`n0M}{d}PAkc}>68w2-|mZg@vaL;`=bSh zWtL66aBR|kghB^-V$VM&^PF{0K{5!Q>4#fBt)cj;)2oX*m%iTk*>!{<-Q;Cu7rM$Fp z27>Vmj#kZT3-rpt_JU;>w0x$XBso8ZX};+X4}7k&RX#$!RLZ-VyA|(L{EJ&992^Ek zPu^1n|ISv`uE>e&#rad0o^Zb_wK34v^^tcfK2hHx+aJfvy+?3lana=;CrLXQ1CFRa zfs{mGpL$YWi3yyJ>g}k(I9ln1C>C;iZUo;8&Bp}|4*kCwO;wtDraN1jnN3-(y3k`O z5$~Xl`zCbXqqEFd!CVNTTfejO{W9Ikn5J0i(UuJ_2DN1kdVy*{wY4HnhQ@k=@7>av z_FC;}SoqRo(q*WyQY$p6)@6SCZ@h^^1 zTi#fhI8lqWx#!X{!W=|Bv=J4kRs9lbC!}#H8?n>j_;d-%o*y9t+ z0S(8GI4{ME4Fgz{xfo5=t~XrLBDhC(8V?2(b{Mcq$N4%5X`BZLWkQ<0-j&fwEbAAz zKfENbnDaSMzA&mIuUOooSIHK$pLHZD-Wni(Pu@GYDV2fFMrp3lbd0rptj-RF6t*iL zHOnz#I)&bK(hBuwg8d#oyM!H-8cFB8BmYAOvD)-{I+AiWNZl*QxET!gi+0^?@#}zW zwFrA5%)p_JYPLC1?!h2^`^)7NDWcT(s?HyIM^vj7*RKyL$&II(ZVlud-Tk5*S#M1Z z$LUU%=};eY@11&=vj*);b$q@1=Ab=TxWcQz-N3L`%+~up3ennqNnY#;z|-{^K|{k6 zijKt>zZ^Pt*}PFYCIq~>qF>zd!^YfEMy&YtRF*N9NQ|!0n}UT2ly14Sk*hMFC`y5W z4il?odHOrw9{6Q{B1CV(C-U{XA1%i``|5)WG0>TrN=ArD2Q$ZJgO+-Nt9)97gK*K}Z6o^Af}ocHdd?&Kl9 z%@jG@qk(S0$(x9`zvs)`Rv5L@etfY`Bn^z{AGs)q4+OI8;gT(L;lCgNRP_%j&9}D= z#ccHT+Mi43XgRUvTxb^F<<`%9A!jv40yPyF6=Ib)l6d_Ch-fGpm}ez}nZjhIrMKf7 zA_|X>Ot}@xV{#h*4ia)aMmVz+A@b$Z{SFef!idU0pQ8j+q5b~|BlzM!g%<;+R`}1q zqZk1}rjbZN-9n+pC7|*Dtzd85C-0NCFIgy@O#@D_yxSe^CDK z?_e(ag$yDdZuMh@J`r(Cov|5jZ{11P|7w#4tSen_@zCQ)g%}{H(?Ct_{$lrI#K5JS zvCww1!UD*tbs&S`2IK;V1f#!HHpraO(%njo{u0IJ!1vv0V4;2nH^3KZ1rjjO^tMZ1Ekt_rHziGy(RgY!1uZ3Lf1AD`ULe=anxBKD5 zzC}y#h1`3v?qa6DIao~t&P)b~R2tyH|MW4?FeIE)N_-;Y46x$Fe9!fU7v!+M>(x4B zA}J}AI>u+KVLG4)Gi3;nqEq8`j%_wD6GW{uprBSNPelCb#}CIZ9N_IpkMZ^to9OYB zsRu)wxXN!Y-hD2sp$~1A@DMm5-5dY6C8 zJ}`lB1rRS|9*CwN&VCQZw*OEsC-RQN(B@{6PbpJ~Z-o!YQ4#AI;1qp)4gEgBR3s8A z*>MN`dk=50#4XWs12{L_H%9{<*%U)X`;gkJr55!5YRU5AX2AQ!-C)?8jgq2|l!@Zi z$+2ip0jn?XO|Q|9falz4_ZtUOdhk$4VvHqAHy27G%t!2b{9%DjJt>Bfn&mik&B41BE%g z#P-@CKz8OXyI$Os<=$euN5-P&mqDaiq&ISwyQ9tX+WPoW`7^r7Pe3{hazqusCi?Gi z7&QwKtm~k$XI95nJVTqp7Vf|BOZK;(Nw@el(nSCQv%EJME#O-Bz8q9fP!( zv;TG*m&why7SQFCYudN`X7wn|csjpj)&rC9f9w2lR!tQ%d8eRgH>-?hS9-c}bEHA? zH1~pI!`InC;AuMBud_~2%Hl#F@b?0;z!z4=)+ymQ{ZtX)&Sq8 zXRK7am;FUepWpR%?YvT@QPW3eF!2(;K2uxy#AO)+pZveaaHX)c`!NR-GD;wJODV8N z>YPo57k|<_)1q(#T)lt;542FbOvhrb@r}jt){hDE&G3g=3$%Y4Fvy*+a+9w3C9C)g z3P2xA)fznPd7Ky9^6f!C;w!4z##qU5wVc>(T#BSqKLF7dpah8g@53lym*DLoT+Py^ zLdhkJL%MMGGc8aHDUD;((YvdUf4TYYAelBfVA_oM_x@WmP`O$aS`SsSRNBIv~jxO+ft4H^QLhz{4Q_(j;&RcXRFs=eRCGR6{)vq8hKa{`wOym@xqR!t!lPD5WR)*X*BTvGM~H7mARY|tPHohjhc9D%ZWz9D{dAdYV&AA;=snWy2EK2pn&xR3(>$$$Tq zlZ+qn#eRn0_43r&_4@M7Ef{Pid>Zx@-G+FKUrX2LbQ>E6OA>gt-5U%wKXG0}gQLP= zcfVrVP=2P7Xnyi$pMf0f?+FlNNqIJ=_5W`?Tb{BLl>>w}_ zw@koyy5#>3%aBCMw>uz+zgS zKMp=-3`K3zbpc5x04yzTfF;q0&H_focQSr!8cdzYj>;2&wj}p9-7B`#DNBN9wld}hF0?wc@qm(5AA88B0GjJ6r}U$JZCTPj!Af4-j8Q8$|(MPah>$!4Z_hRbYwo`d%FK zJygw#^4&4uRT0WQ9z6n$5w`UPz({}WYNg#Aj;dOKe!}qq1e9mGx*yu!$r*UyHawYZ zeJ=W|?c{W$H)xpI33+VkOW>K8=uEeb&2T zQ$fNH5S9a|I4o?ZT5Fisa#9;W?(lWSQmfis0IIOIDA-A^!&CHAD>~=DD8_zc+UGyUhjamRJbp7{cZb1TEaCkvD1ZH4L3c> zY{X6Ge)#%KCtz%(La8^E@LZf#@bM&W8x)>c)Q^a5seJ}nelAC#$=4q2EbV=N8Xti4KundKeb=wiSHA7t12^w)J0IGeVU-NpkIy4bAO&?4pmFl5q1y^n() zl(9x9QlK0eSPNcWo*h)}E&*8dm;ub@)okd#ev>sYpsP>^SKesv5L?k8gjwh($g4{X zR9t>Y^ug7Biu3WO7fU;Nw{Nsmm=}Qx|+SV@u z+;y3baNI@QMTVM(nwOvXGjm9Nn?ApYfBK+=fnzZWqsl*u1eXj zczSnKRlNTcA%&aRJb9yS|9&}<(k^v8a9PbUk=4D^d$&o~TCcG*I?*e8xv1>tp^`Ur zhWOq1DtHkQsKSxP+I~0J zX4KA`aiw1#UDqgW{*&!FzTJs1XVSRMZVVkf6O`p|SuujqGGknqwraPI`gjJ-Wc{re z94pbV3C<)f0(p0Kc_+L1`aK5=qv(c?qP}&1cW~0+@z4ZYi zmK-~-*c6Se5=fR&yfqzNe+-DiNEw}ZUPm0pk?3lfP^7-ckuEEf?QZx@>NhY!X9nxV zltYU*wN>AF&b1watRpS!L9yJqIHSLOc!`pd?gCwOP`772%x6QCR1CGo%E%8GY z_J}p(E_b;q>^M-O9?pe>MiP^6QT;9$@~xTo1#Um%yg#yA9o{(A0*SjjpiIEq6-vfT z)GScV03SUrz*Xc$!t~2Y9^( z-F^jwN{UF0jwVgeF5`^Yv>(n5ZZe8KPwsJFsm2K!rv=7@O5^Sc!d3NK%dKEN%cKC9 zI)3fkThQUrI^O}a019DaAgoDBS7hV-aJ*sw9-3=+t)R>oTf2r;lgPN`gDP4>caPgl ze&kqqw{g_L5nQQP8H;yA@TnbSyOHw*H^-p~hWN3H8cQy%VHe&xJ#auAbcTCV*C)y| zW<7!M4$qm^T61p62HlRuREh+TwehZ2olRPHhgYq9V+RYUS&)>oqdFlP| zX*7j-jpKaQYYt=35>3vAoZaVh>L!!B-RnG=6F0GpIzczV8Y=q&$Vk)%0aa_$u5-30 z(`4LE+NRO$E^xjwra1D{W)4->5hmswI~PH)XZ?JW2E^wMVPKTFPUE3&^TyX=FJ1a; zinL}x^tZjsT<<(((`affnJz@OgzRrlJH_oDj?H?`+oQKar+Z6@8?qY+#3cNO*W8ba z>VW0Xco)C&Vz(T5_1EHT-wS8=+PY`;91qnTZB7>XJO#5&1x9aLisY)WfD!d|<_<1} zSuJ2Iy~kSUhU{8z>jNstL{FPouj^V)*qF32zWMUK&)yKZ-p!nOI`#$(2}QK2nIjHD z2-i+0jl3cIf?c4!Uaad~yI&q;-zeEZfSYXd^KtK-6-#+s0OBaPck*jEZ`A08R@OZD z2|#!Ybaga2wHEGG^girpl&!My)ye2tw$FZd+p!{N6YriUP@2_#*;2UDPSl>!pvPM! zYOI~@>^_H#^SXO6j+u+0$z)ClqxQATI7G{>!_lzyS%!*e?Tw`iu5%WA(?r+hb}O(Z z`;&EztZSpmd6@Eq=ugFHB{b;i*=>^a<+8lR&HUG@jTE(a>plBbiEx}ZKNi-Zo} zcMo9+lqmTMio3)3Cc;i^*KYE;dR`E`xb@J;D#K1RwAu5bzW%Qt)I=1lwIy?ekc59* z$H}bDUvP>jYQNKOcR2)jIm8W1ynQQ-Tbi|}C^(SZkGN&_v$^6cj3G=i7MK1W8fk`| zU2Q8w4YGS~6v^sXyB$nsB>(2YiMK%h?m!u@`-WD7GO6znDeKOgRxgjm`^L?K;BtMP zA$eW2sm(~FvmOFxC|;ADxdVZ2zBuU6|L~i5ToWK-$Ve-22i|--`R-X(*&Qn|7LSyg zRfCBenHth%Cr6-lt*A8zn#Z3nO4bxR;m83aVWuR3>7wV=7SCH$eb;Kb7vgDiLptmu zUHJNrgh@{7xts7#@Y?Q+D2LHhJLIdOKygtuTm6UX$o!2d|`f622n7Q?k#ZNWRLo+bTW6ta5C%HJul--l%n{EI(HqdndR6h zt7Xgf2+~#X%amd>gy!06^FaUV!GK35DMO0;)MjOigE;U-SB|Th0)Dqg%;kYvJ+<_! zIwoU>3Iz?4w|hTtrS-cw7LSprjmWGAOcM0qtcQlLnm9om35 z`Lb>a{`$TszJSjb>pg8c;A<;WWR)vq)!O~|oB%N^cxGwsCLwTr2**L6TuoXhx;kW9 z8(xAsDn=nUcpjCp+N+&@rj z{jl+<)FvzR=x%|qYN;pdFAgUF%|Eue6%4Kwtk7dC4;LdjEsn&rB}2~c_jd9nbGlR@ zK~+0*GtAY{CN4nwRPyKjm9p(gTE7vGd33tjgBWkzw8j}>&mBm~E|I#%i}~uofR?*l zy(zuKVlAhM=n1~)p&DZ=lkt(hRud&+5?w+3Vyn6edCj}qq0<$$Jd$rl)&Mmp;6Hrk z;KhHVrfZ&y7eqo?&_Zgtgy__%Fi3N%9BI&}Y5>2ncouZ#V4KRzEOAMzSyXrh?zA{# z%oDpQ=#zq|kuyZS+R049_OtA;_y7&s#Sc7xtBa-Lx?$KPoA!S4;m%(0gv=2C(PNpM zOFT+O=cX`@>sFw*peZ96TucGGsmIo-HTB^7i%@OwO{I-IAO#tYwLg>$R6g(|=P}uZm^$VB^W_G6Rtn}csmVjUvd&dRi}}`XR>ADq4&9D~ElT&vF-UDYkoyUnQzPoVauvJH%(s+Evk zgWs7AX{bX>)9C)NaM{$|n#!zs&>U^(Kf~N$bd^+N)k1ch$w4>$2be5dOvTa|X-;37 zAv`%z-@^wJLf*NL^MzD@pZH0-y(xTvy*79{qR46PW0YOjN#@|j!W#B?%C#_{oYws8 zk#LI^+07o35+%8dbjPy1t{l%-b89=ZiK;cGT ztXr8yb$4*p*M{TzrD=iX%3X(uec6G(L9Wz`%DJ*vyxA3aof%oOrI(mx(%-`l8kdZu znU3O}c3!5_39`pc41&c>eDv6O>$a)?tJ)%L4-&taPsxMDJFjOI?Hldf_ZsjTtgPQC z4Z?@_uKA4HN?yK(37AA=Ww?G-zsxkSS!`@ow@>8h2wYLC5SzXRby{O>wd8NW(*}S? z=AP=rrC-7G*Q_ltR*7tT&}Lgln&?45gV~h)RHIp0*NlJpNF9BzmnsaAzJ?s2Vhz!A zzn`8h+9pn=Pj+?#n>Q;6U4vV9XEB9AEGb3+fwE(x&~baa!1{8)k}L7xyiL>(af**S zelDFZ)IuqBvLuf9c)#A0&n5l#U^vNSMyhp|t<5*k>n1)@dEyxe1pbp@;aq=t-S`sE z9_`}vcIj3`#fXlW#f2DO9+Wzxx~9JL(dg;_qU^2XqWa!0&>1?UMWnkGq$H$65Cx<` zNP;J?mM| zI&O`*he3uda*ibh`6DC;^;++0+i&0L_$J^K-uya;LzR~FcFH2{0Tq8yHxL{>XPs|Qe?vc z#0%8!mRpOa8#MewKJ_(}E++iC@0PBMPL$!0sVp;>orzHewWHIZd2o@w=Ec?)AClZ) zQgNr2qNhkSBWQ@|+OTqQvL}y7K)$KQBK1<=DgEL>(xG!uD*La4{D704e5d=2TZ;-M z`Sgz`XFI~r?|)kHYlzb-Jx$^^JPAG{Ql-sR*78k~Oq%mZOoyIL?gTVx+87G%Gap*M>gNcYMoEejz!saes0(zuN_X7|)R*VBIp0 z{R>;_c990Hb}&ZhPNP5_h@*xgZfJ`izLUL@a*QbISDJ5m%`P>y=tR!2@?4vtOn@O( zos%BATxLTY@ZSdWp{s0AZn zLR4NNYR6jg%_(4L+2ftkuk33)cQwBRmLwQ9XSRNd{COrB%Xn706JS(x3BE>c_>jZk zDCW!T-Q65#YGQ!%1VCB#g{b@H!>V+Bmp-yUPe{uT|K?Gj+DN?J{!4JN5!&$#KQHbA zZru?^3JlB<3oLOB_6@9hXi@ySy!6vX_kW zg88eL-jo=(-2|B0nR=dyzJ{okLhljNVGl)=qAcpNUfvIv@X@@Qp1rd=PTsqxdQ{49 zpL0mVHFD)Yk-++1i{Yb+-lFnNmCdW^ceh7${Ec`Lqqsw2nPFZ4|iIh6m5;a#j>k3VWl0%!ELZ@m|CQ zjV%khMNsUomW|17AE-$H5uR5M3aX-*?sdQlQ|2Rwv2p>M9CaP;w7aB^V!X#GCa&bF zD22iMgHV6~F#4ms7kstk9hVjqugvtCPl5r=PL>ZNAfWl}O@^+pj8phwfCdMpo0y%~ zeFW6ZdPxDn9rAcX#yriJbH}O4u7K~eF4fKtGYz)9p@d&JXp&Hl4FC5)bIbk#TFYT7 z%TA_fJW<=x+E0as4IjPF*2*f;0-RKo6Hw{?eP*<|i*vtbw@yTO5eVEv-{BWd<^OHB0o% zBoBt!J$DwaM}r@^(0Ov`!DW%?_Z#=*;=u9H(O4oWap#DR6zJj-zT%>(LK>`bLZVmf4J z?0fX+iI&^1(SA@!&u73;l5A6%6p!n7=vSaf0)%lAP$4AMOnZK&y3t($N@Qa`m7YtX zWbEBK2=T2pGRq@CdH6t7w_FQ_*4F``PYHVt7IqS<3QtHYrne>hcz^|&0t$h$z6z!P zQoN4T!tz4Jzn+5RcB1j{=Zgg}6y>RSTpd6-%bVmSk3iK7@l+AsplV!gs^z~_;WV$@ z;Iq(^gcAh=bgD3*2#VuOz}WITFF-w<%M?ZVeKup|k6gWYb`-N*|1K%UDh*k8mYH{S zmf)Z_{t;UU@krY+5k081HdTaZP@9OvVxfM8@&X+R10au{`;jpK>LGG%4_{8=bZ4rcuqfW$ZIQ&L)(g)>=@Y1YRvwR1aw1W0yW8y_=PulxAO41>I0=DJqfHn4gw4XSM7Ps1-sK-&fU zc5OVmOf6q`9-^`rKwp7Ed}r`}I!KVZCjU&n1Dbr((F&_-2WYV&<-q{-dXfhi-nB)L zDzFKa^7o?n1fy6Mrb=6of>YAUVI6{8c`dgG$o>jH`&FY7=KT%BqkA1+AyU_B*C=ed;8b^zFj_*0b@-_xhlOK0UeE0*n6K4GNco>mz^`q1G#crbQV^9Dsr)na8M}MX1!~8ZC6P6+E>M zWZzcLUV`%U!Y7gZe8!AuqPn+6UTamM(U+!1K*=+4-*bMos6Upwxb_2$xcd!G$i8m= z$|_g(n}<0abY4CCzOTYyNkA&?Gec7k?M;haZY!DT#<@&d+D#F>{S)xfq2eX-M$o3w zw_9(`ftEM^gi974(&I{d>e^;V~uRQQYGwM#AcC_p|*L*%n0%rTsd}4Rc;WeC_?Qo%c{(@bX@)$=o&}Z==4T0nzUJ|Q$8cfEuS@aVW>yxr_R7b) z83DWF_EMINA$f}H>iG{pU7=LRp}qWIZ9k?&Y+0;8&znMFr1x@w+HtkGpZPjAGz?yMeuj*#uIsuycYNEIJRR1hNT=jrjiJf( z9l(3;I}@AJJi2 z#b_)>b>HM~fSxmcKmpdALV!#1fY@zh5lec3b5$CfXl-Boa%%l=eEgDE2RO=#7-XDZ zr;je;8CrIJhr@(_7Pru&8-Vky9JrrB#$e~QDLJRXns9xuG)>&2e1Pwk%ZdfHDI}%} zQGNl#a`|D&8c(8*AS#2~MajhCeYu~XyhkS*<;)POli`~4Wi@eE>7c$``{^dWj^uX1 zS4<_zZE2S%1L51W7&-2dLY&e=&AG;d7Hlg$12boB%%I<+v|W(~?sUBSc;{rNZz7s& zKKgd>$#P7*;!2x3c3)0{u?+z{6cVl*;w-+;Qw(ZOUzXg}V}mdV2;A(3g~d?xae9bP zA)XC3N}K8o*hM`)&z&#A6OG$_@6@jvfp((PnI@o(`j!}bW7sQGy_~~BkZVDyqLnjJ z>&kBPBPZIVxw;6qu}2Aye0G=SiC#WN>g^u55%F0zk6>3VQJbHouRYc9lXOwROo^niRAkFu9Ic~#qGxe)i4xz%Z zzh~s0asDi8FEV|_NBig%#{eJL8^@H;&eGBE64NBs%j9A%5a!coXUOI5tlRZX$i)+pG9{9}euUkw+#W{eV zr{8i}klvNP-pW>U`WU`Um>`U*>3J~M@Pxm*M9H7cff-`3A$`PL!_i~{5P~wP9%*_$ zhgN74xRdvfY*;$`gjLk?y+Z`TGP*yRV9S#S8q7XF;qrz<8e|@uLz-%1rxwyj^8>;k z!cOU)Xdo_Kz44yvi14(?mXNX_nS&_;rkTntYF0{_V^uTWcv$~Vl+4_?Q20}A@-KAD5g8G}*Yj7To}3oBWr8_gKoNu|s#~v) zRZ~5kerQ6sid{KvRJf`X*Qa+SZ7fu78?cQ;-$}C{uk5lLl)pA+(aGIj+1Qu3N)I*# zlg@qPKHXZQobeXzk~v!{R*(6QVI+hm2pTDUKD6y$g60v%qt%OkMq?gt_}1w9j3zP& z@757;FK^tdo|i*pbB{d89lPFhP3C*#CKj$2yP*d(Q22`KQNNW*n|#yx^0cmQuaHfa z`De*ac|3xrZt9kkf*w7^ughMpa9)k#d(&s* z{FAN^rRyBu0NtxG8i*zR+WOnEFFQr@ATFxwBO6m8JwPk{u#d59rT1N8&G!mj#l+^= zt#=2Vq1VDI0~s?4yathTX_1EKlOc{Nz&EjPN^k&0FY2sPhTDnnW%A7w@+}P7b5EA7 zd+~VB)ZKk~G(yd_?{e+5KQYLN+e{j?c%L{|@tvQ(ZJCu@aVd1z=_cnA;39*Ri%;67 zUJ=1bYYYpXcHPu?XM5RnBcOnpHO1x9u*yxX8>^3amOg)zgPCWf=WH?& zdYsk!VQ$TtCnWORRmR)9_He`Y9q(xA7v9F0inB-x&-;iaB-<3%WNov70i#awn(e)s z)*}*zu)S^zgJz%%aJugJMjb8u=HaReCb;Q#r>(aMg3tEZ=R!Ttp~0pSuGQ9AOD5@o zc%V@MO>r#1^XDi2YVVs2o$#koCZ7^a=A*C!eNlVt-1ZxnSQ;mn!RmY*V#+JPji{W@ z*v=haeoObUP$)k#ZAYN%87E@+X z_1?XOOBf!;aU}4V^UVCTI;`cCBvP%pSVX7TOnNtkg@=X9+pR!kVw(|M%M*zw9u7)z z+4)(S)3}S{i;=+mhA%ZEecfl6BP=4vJSZH|$$B>nVxj7aLkw`dIQOaF1|?k3)jbzE ziKb1`ne!d&xU4N{TvZUrWvhpvzxINxp^XN$xf7J8J zH?VZnY-5P_%VMQingD=}Ro2=SX#x(1gbn8?H(W-Tb6r z?G%}dD+$JeVm3pBApFfz1=_?QZWQ!vqu>Qx-7qv_?dK9raU+NCa&g0YIU}w*AA{+< zf}cXMxswk_Y0v^r7+X61%bPorFEgy%xuiNmc_o%y5y9bbzEV(99o~3};LB}2TF?dI zp48(PuZ&P4?$i}uU;O@5GEAjk>9!d9J&Eoxufe5=m+X{U$wMqF;-r=QLqm|jwU2j- zg<3$LRD22ZuvHD#H-N1x&LYx9pY*)vB!BYk1bMxEm(qab#yU#P)RGq9BW_ovAM#^Gd42MmSoZQ2x850>6rfffpNV_)8_drNrd# zie%o0^IBO#q|3*?zedX-*9Dz(8Dn&_2`$l8qMDZJk5c4ZC zE6*>aY2>4^jBLn@*7Gw0of!Xf)Nr7qw9Eh?%FR=u1g0>AhBeBW0Tl63QZQ7V9}bL& z|LALhGcTY=V5sB}q_e*Z{Wxn75%?QL1pwOy82C5%C-^Vy??ZssIK=SGj_m{#Z~uHet{A4@;ir9rP^Xjt`myU3EgND~oYEYC1A6W^H$-W^ zPtR|8;A`%>#@(0grAx=b+bx7zC?ILrVU&);YINwi_MrY_;e(1#X|eK56EHail-&d1DrxvAm*_Mp~SgZ@e7cHQj z|F8dpwUVTDmTY(Wo7F1JuR4ZcJgP zemdPaw!75-5$Mcj3|)q`Q8dm15Mkj&iD%n4&pfSvwr0u$NW8l3?t-4f(7~Q`uRdLm z^ZE11hsDhc51gSc)`Ud%G@6vd^${u6*WZdtgzfu|YrkI_bn5hX^60H=R{Lu}@N^Iy zD(R9<18(f9DK`kHZ}!yP&}(!rL+M1-aiadkog|_pfOlfqE(9m{lK3&#tu=YHbu- zaijj{&+8y+`-4$V7Cs}WI^{?%5D$-$#I6=M^nz~LKD-dn&cRCS+>^+MYTa1?CAsP> zEOqeb$4U3u@Na>6S203vOM+hUq)OZ2d`NqLJmIijhN>_-|r*=&(cj}@l-Qd*^M#rx$iUNsX=Xwj4(+kLDFn3M~LzUjmL`agKz=lt`pJ0%&Z(J(&Fvvoipf z>>l9TY#W1TL1%B-j1OQ*;saVy;^!J5-RboPs)DzGOWNN-i3>a8Afjy)QE~vJ9e5H4 zK=G)8BKN=zMApLn4E{%Hj@l2r)<`vRq9$`d33YQ`yrUPqBU=<78pPSAq>^XA8W5@u~Ux56?>;>}1HKy=F&6tJ_2KQL)AnV~70h67i2Ll^+u`%q z_Mq_u;&cG8kUYY&v;3aW;?AIi)k_<;$sOyzaI z9w>>%?=;t$Z3|ewnvpZ0ePon&5=Y~=?ga0>uGX46jZ2ux-#;UgnCufj=_Fg2AUC+z zuwR3+u1x;H%yxMaM=5VnrcQj(dy@UH6^?lwk~Zv71Y+H_Lap&;Kw926z42`6z9x`z z34rQ=0N`7wZ^h)nJT_agRe;Y+5%o7f&DsuZfN6-o8pt_xH3|rOr5?XF?0dEbI=mDS zb0S!C>vRX~wn(!(;5ITSZG3>_)jL$1;O6lM&9`=?&HJGD!KOV!HVn?WCl3ABE%Y6; z6Yz9oGRr{T6iJixb*RyorVT70AULygEh-%X4jz6&&GWuF@4ci-js0HgmpY}-`DQkb zJj=E-IDZ$Ee0TL+0{<($*IBnUlw;zWCRkK#XZyD4%+8E0gM`^cskWw#K&w{~wP&N| z1^U;-Y@*EpviYrg)@|2`o+JTg%uW<(Y(Rj)6j`+GI7VC$nx%8tmD;x)-eMnjx--` zl&tEUuE(4VA7H@$M1+eN;T`+07y(cN22Q)M2gQ6*MfsRX>+Xz5K|K1otKNMJl z7cuJhr@(6v)=ZV@91=PhL6d;rmI|Fi4*g~lId!IB#Jp4Nj+x(rnMP1Q3nX-RhHV36@YTnY;bt|`PQw`hF9_qyxNTKK7 zffxn@9)N!j6bg0yef21G1;Q9=6S`<)0{H6h_zeIQ1TGMSYGCdRuodcRevcJOiun&1 z0N?rd5C;w>$1 ze-!Zln^q^{&14qkRO^N$E}+xeAIJbEivzcNY>g}awd#M31ps}la6e}8Xp{M9>`%}B z3@(71zwyLhvjgBG02AOw0hir*-Zz~jBJ7y+=bAc%&;{+0%PKN=>hei8{1_*p59QL70xC7zCg18S31ioU8I?fCYI_jI? zGZ@5FsAK(Ti!*;ONh-||#)SBqd0E=nbD7m+t!gAYH@9hb-(<0uTfBeYI*s03j|Su-VF;2i`vdEo%{D0Kw%{o(D}+XHu*qLFO8~Rg+@lQ zBLehvp>n*rHMj9Q8`D0IW*4-Q#Ec?OU+QnE*v(Wuaa$fnk|ojCXc#RT)NE)X`>&8m zyqlto4CD)mKNySf{WBCa1Pnlm|J30rsL{D}$iW#v_enHRbSMrX`jP|`J%F&@Q>(`Q zXIp4DwT6z)Z5VC_o9Z|7bdNRlsb;8ON=3`fzhb95d5CUge=cu_<=nUGm^!wO%&I&` zyWpGCv0?EnjOF68t!^FP0rMCJlXbp^*j*XEYs+g```zj3djz~&?gt@*kdRQf`9P6@ zum`AWWCK}hOk(1a6EK9a>IQ|rd0@GvZ44fGapQSBx9+!80n$rpkr1O?Q0*_ELP}ZL z0a|ff2FA7A)lL1mpy;EvCu!&K)Q`LaYIO_+H6{pto`%)r~bRh9qA-V=V)eU zbTiXSX7fJPS?Ry;C&3OhR1}*B3B2|Z-P`%Oxm&Ye&jVGxCvzh?O3u^xUlIb#yG6G3*{O;i_cyXzHI zR%-3BGBQ4gk;+y*9@LrIs#ttR-r&!73PGVg2PaD z1FLLXa-v@i4M#y8gE-k7j^O~0Q~)SLYa06!%5xEqn^?d{dE zje2RDwgV#k!4ZUyk5BFm8nKl@pEhq-R~MciXx!!ndTEzm7ah9%_S51CKEuOelcu1X z1|y0X&pdLIbX8Jd$YSBwClxzrtJ_D^{jeMuc_Cl@8h7p~8;<@nZqVNYr-@ zbj_R?;@+sBJ^i!tMX978b{bP$2_SnyYYM!R>qn_p&@^9;cfAtEMWVd00c z=QZeQv4ii_gf|hO;cuc0Jz|raW!ivj6>d@JNAAgZf?*!%l)calor}mks4Of&dv@?+ z2Qe-udPF|3{E?^p*{8Sl%Ceeozm(wHZwaf9MQnxry@a9P+ZhcJ135W4@S3BpvY)DV zF@|RYHTD3g6OwaPxvc8UlS}_JXMp*gW5Q%OjRSl@-CboK@h0<%IHRgifPwx9Tt-&X ztfDNO9G?R5y|~JSHsG-U=sS8+eU$4(G*4c!MQpZB_-k?TU$cBrE1A$m3YX!s0tf;TVBfzU18eL0>Hewxs=NmM zpZ71qL9BfQ9I5nsGh#-3wZ<}OhF(Qb;n8Rd$ ze+yE*CyMop8N`|2;fWdHu>FPa;lFZIi<)%6ef@N@>~}>k=8RHBt;JQswX4v~5Jpc7AL3l{ZbR6?y6$K_;+&l7=8gO>%<{?vUv@?2y z9kMfgSXW=@(O#V6`o%fwp%beq_Y#XfQ(eqs;KlUdxEP$Qe%U>A88BH~?eMl((m{oR zz9o#~lm@0xIS^A{k`*}ZerrJxwHYDr#!@?Y z>pwnRG#zbDpb44JF6LJ}P(=Q;3Y%Qjb{L%w(+L`#cQ+PadB@+Y-9xmaVDZjV*r%YRJ@2W$@7 z3bG~8YJ40V$C9JGoc7GabE#GA0VI{_G!*-eiS-fFC$-%#R4fjQ(}QF? z0=f!>>4Vb#DPh)hUUM(rRPut`694^Xj?9t+c{|Iu4sH;x2aZw8gUbR|-j9eNXvr%o z>0mV=oqyb}o>w2wtzoowV3@U%1Z_c=?$;recrS&Vdu^8+H_=SLvevhnYqvGmvjOYq zLDrSern=1^o|*YHf{?*fbb;Gs;S8*=tEmxXM#}e&knT@n;?i4K`U>*>`RO@JE_2>E zb{vGoRg4Ix$eZC@6_<2B%~8W;5KPu(c5uJa!F{uxA?EkVvCu)pFa-gv^6Luu#fC)s zNx9`tYoc9^tWGDHz3QQH2lHRYI&t~{-os%?Np!k2s)(9h5_E>Q%9;b&^|fuU>hM3L z5OcjYTD>kq+7#QwsAk}+Rad$iDMWmM$Nw3#YPiy}{jK>e`z{TQ z27*ts`6-Pd$<(ItklXvtX0jjXB)8-${u95)`7r8DT+$n@7O0$P8!Bbb5gslTVfs+% znjOrkIH$8DlRXC82J+%Apde#YP)O6205)cYHe?hO6uT7Z2?^|SL6@S1XS_AVTvk{> z=lqKhd~R;;yTGIN8j#<`0b-#W^anumftvV2ij)W%iD*`IEW%fSGf_tF(?05L%yHW2 zf5BGMClbR+@4B8}-1`3o$F;0sET68#r?=4b@8on_waZJei{mq*$rmq%4h@N1m3{*r zCn7AOV{FU=fDR!pA}&5Y59&gK?j^Pcw~bez-6-!I<-2C3X)E&_xbmtV@2_#^<>i$> zY(+zv+p$VYrol+fjJmj@YGxj@0~$6y{I%wzm1h$B0+yeI>wHFvr*d>R)GT}_m0eD4 zr<&E)6bXdf77@N{5Zy2=3bA~vx9BLm=ihi5$mjq(CkdG3T#hbFSLpHg9i2m{5ssHFRc@U>oHN z(Qyn~@iB|L`bAB5IFQ#>H@Y@HBy2bH+EV0hCkn|?IA8@+S97|s<^gx>5?N7E zp-s(V{(A8Q@Mb<|Chh>6n76--22C(|cO=plcMZdU`IrLegIg>wsfQi}-vVBxi6Egd z{Y7GIHf0r*+>_E&+qK4PT*r$|WTFEo{+Sq~_8Np{0rRI1SKGRgPZcj9T44625;SzA zmhZ0Cy`GZNmE(Xa52pK{3HGrIE&A~TE%cYG01^a8vV^9P&Cc= zi?0fo5@p7jf@H708kRgiaXtb)MYJ1mnGcP_c=-6*>A;EPE)2H}+u|4Rpy9qzQ*npn z*+|tFJE@#dT+m5sCU0`&y z*OlJDzz&swMdkq`=w02Vi2@{T-7mQ%%Hx#iXc-u;BVp(NzhvY0J*p(m(A7Y&R_0>h zbI=U6C6kL^5p|lLUj3Q5b*3{idWiuzNaWsC-WYrr*>Uqm+(OlY%-q5P)+GjlH;30#D6DXORnmn zos85HOt*-Zh2*_OQ~mJ%PEz{nIo{m552{acz(w~ONJ-28$x@tV+X?2^t_s=2DQnS- zI%PMU@#&BCEk>al&H3R9a(=66>i{)oT5v< z@wnQ1pvGj%&ra_yyf2BOM%F0y$v0LptlvxK?-lbCK9<+|ez1Dz^VtGjNl3X ztboV#I_)i&Vgr?NPl|C)?hHjFYK73OT#z$(@z~jdkL>+z^Ab*5Ma~3ollGt1Q=aMR zmX)tQ5Oq)v_Q!4>&q z=}xqEPe;nTxcM0h@coMrD<_h6-4K5Bu%&6DX*mVqQHHI+)RJDlSU=_}J$J}@L9zXv z3_TJ?1jq=^1i8rX)73zW$Nz;C_Timr=vc%wr9O9`Oh(0cuNDJb`=2Boxe#o-L1DRC z;_Z<=M}`;JV);^0(Bz-gN#Qwm_GM#SbiCbfX&sgCi!wFlwBGhkFMEuVn_dr|E>G)ZT+-h)&|slZi|Q@`dhQB<__L93KqMN=83`m0+J&XNA?suYSzWm=IGW?qn~bn#s4FL*J{9YU8OwUkgo z{y}9{Ho!0>Dl?Y@w^hvXtmL%`EBrdj z;0#Oeg#C3Hs9@PQKKxEv1Yu6q#_xLTC0%uiBL_d2yU~TQ&|Xfe1bHTY)@cS2YWm6S zuh^o}rm{x;>_DROat;1h8nX z=9hLxbO?G~A|dFa+#A8mH`f2*|DPY+4|Nnb;K5j~*okqXg2O3sN7IJwLL?`BryV!|^O;I=TD@ z-*rJ94Yu;tkj2%u*n|K6VNdB^lbg@F_OD+*eC0fX6#5Bq{*TXiN%L3+DO7$>s%k41 zR(Wu-A^e^4aInKVbGS`Ou8Zg#-J3hmY%U?PucQB3Sarb){Y~$b3t-?&I~;|@ne3Mn z^gBM-DXP_C*;ASw3Fh7C2$GP2MFFGDJH}pXkPs&q*S5Pi&;#YG7=q{DV#5}9+1?o# z8>azrt2|2ny9_+e3W4$B9iImGEmQ}EN$TS1!Aydv^MaC#OV!=ilaq!=pph~MuyO;S zN1YP5SqD&yyyh1@PoHkbY%q|5_8;`wiV+TyU+wNz*rpG=r{7@?ib)dod6Pc7AD$pv&SwoGM>49uv@$1c zn=Tfwh|wHsEV)mOG=JFWYGxg+<$Vfu?)#rSi9 zdoao43(W6{h6m+D0ocieoXEEGLwM{b)>6IJ5kA*6v5v7JL)PePSnB$2-a#+tlpfSJBZcpos7LSLCUg^&lsqu{k}OiYXgaN5`g&u#b& zoOo8pFJHN$3`{q&fxBJ#(=q-#_wL03FU(G0bXgRkfQNW?q|7cVac!HB!G4#F)BT#$ zkNVEiE+*%1%ZF{0Ptcx_Es2)Q+?4(*B59iEYwO>!dTQ;p`LaTsAxR%|d;iv2w(drA zxv4Xhe=n(7+DHH-a9%#W@6z`Y&d{;${Or9%p+E6#d3;J_k)2=4E~oxg&C{88`?DvB z3=_-nI*o~r>D%d`I!=80ObJNyY4)?I9?D4EQ%!sD|vJ{eqbqt~*{l zX9tmIHMqMehxdDD7`D@=_MV`pcy9_vgS>AIOB7$4O*Jj6F+QP0B7Z{o_+97<;qjM7 z{>Z-802ctzebOjK2D9^a=Jro*_JrA5JNhiBzfU|+P5oR&F5M$(N#!GWkmS>I^LT06 zcZ>9tQoq`);)Nmx(xC^M4DN^xms~J7cF(Miw6+&UV2rEbyx*$f4gNe#tzZmqYr3fH z$f7am7T*nIRGU!dMfy9YT&dNT7!=kzZQ}9PZsu>ImqCv*Zt~1q3&bz}JV|u*hBQ!` z48f#rY;58>vOzAg4W2Zk1UxT?r#x0gfumO*+XAXh?J{)vvf!~8c$(*34`4f$lbQLU z-=3x20(7-h$sft)ary|r+r(}H8!*jj0u!vw)}750C3w`UQzQ1}G#G|)*zRC4($m)f z-yJkDvwd}zy!OpuX!TYTROy&R-@w5y(CQ(|u<3p2qM+royg0O1%6#;uW0B!9w%f-o zw=;i;D$;iP@j-F&=(>c%?bOwgN7Qo_Qbcjf0u*Cu=mQPak>7lf*L`*uX%;YiK$WT9 z$C7^Vn$IuYi4KQ3gkVlOMaiTaoInlsbNZsd#0ZZn82QNb;NkvZD0D>k+*8UAivj1n z6@&7BuZBVYSq@7{JOpwjIoguK!rdb(egT1DXHYd=ITYSWb(@Yxb9{dBF{wz))g;`VrA|9S$hm!ARstPL`RCdvV(TP1I-(#}XgMu9aEW5T=4`ruxaFxt_ zm4zBY8Q}Z2V6o_%ZyP;$07mUH9j$aHu=_wg`2z3u*O|k^Lj*F2hBUx5(bP`qhMSr! zBusF`Y>oaMJ`^|zC;*{87mhfWbjmA2KJlm_dbgahEM{o0PWy9^K1CmM6*NDoXJ~x$ zu^b)h8GAup+2Yi6zqMoJoQBoF?N>qoLDvf55pts@;aB539$Vh4v3t886NazE9>hs> ze9*we_mRhmb}?zriEK`r$nZaV$?y_-{JB~%k}kmiHa+jReaD3U4hQX48&xSEc!<~U zEFVL<*y?V)LcDQxtEB2qAJ5d&aUnjB9B7*8GC3X- zOci#*>Y*1ST6L6rHhrPe$c?|$?{98tM{<@@L>1`w!;CkMQrjRr|sHJ6>wmRTPK zcuGn+cm_!lXcrQ*Vwp!AuEO=pzqrh-rZ4ZC|2(w^TYJ&Cuk>8aX}i2@u5rp@uN?Zr zn_{2Qw|964sicGIpPa2eXz48jn>^tUfro8_TO=ltaU@u!G!h<0XQPXn^P)*2kBW=v zqRK%0nc=A=S1jnKBQZv*D@HI$qtz)CZn1(pXmpT z_>k}vOco_(x9mLFHZaW2cPMhualwPy>YpuVa+&B8Fa&MkWZMJnRRVOnYCa6xW>$eoSHlivC(o}KnT7=UHaJX?FBvRM##d{eQ~RU{Sj5u62S>CwA*-ay4+*)_!|%>@w2EEnZS)v8RMi9H6YN zvpi7eLSAr*3VNV!Qr4Y*^L$JF;bOp9!#f_blaD9I-FiFUMuMLly^f-@fyo?_i#u?1 zJXuE`M3N1SQ&^H0-XcnGaKAO~w#4GKpKkXZj;e}&u7m97b#ue?@9I9yFL){BF@91{ z%nOkXyuKxxZaASBmnQ_`mSBP0l+dv?ok5N1yX2mauT3TTYG%T9a@>oMPS<<{*|#)b zq5_yT1&CdJ(y+Gii=oPZMOls20i^1FM5n`=?SA0fR`Z(kUK$+lZ!j@KK`G`$P8F_MI7Dmlwn=4Q5BJg$X|gIF8D``&v5&WMsm|vmDd0q-tRa3MfAiH+I3ycGJ=s> zOQFMwpZwl&+R$TC+57C~DJLe!izFf+7Y9+lrLY$~e~?(+Ew$0{?UYH1_vV7iYyV3O zr9cu{aLbvMmDPCS{Vbdp#`cq=^#u*q2`vtS;aVPO11D&NMPD#IryZ+`oIe3d!?8<80>D)Z4s*RqU-%nm;l5K*O&W%vb07`foCK`Wzq&QmK(I(=cZ+!+lA{q?dU z$JQ$RQcoM#TjiQHJjf4UdY?c|T1iF+&Y8T{PY68tks;b2eLQGn!NV6APIs~YLXZHX zr#c&?QI>n%EvV_XVp_IJhG-wA%?=~W+N-W_+dyF>rg~qnh^fA)!a^;_;0&s|rEJim zst(KV60wqOsS^Q1=a(9vyMsX~!$!gW&a@0|-PDM}yDql3eDgXd_hh&}-UX@s-`N-r zgD<+$bZTh`Ta4|cj}g1y4beG@UfkeT+vM}9nxJC5Q#|i}Q5*XwSv0}xGYj5fQ0*6%Ino%5Sm4BW9)p33(rhw3B$ zBNv9$_X8hJHIyJ=6D#9Iw2|gr_suBoq6PeH5~d*A#h@ok@UVM_s6MTO~)<0*nZe|Z-)oG-4cTLiz^51mbsn=p*i zUCY48EOco+=0Ar600&b+!#4MAsnY4xL+Z@ge#nAcn<=<=?7-K)=*!|J2EDliOOiS3 zE+;p28v8UX{)ifvq4I_vU?77VZm=~sTbRM6zp9y-6BEElAOA&`a$b9toN3l1^yuTP zb=j|5`yLYau8;qmLXxx$?|ks*j-h%rhgtZr7tmaRp9Ugc>>jJm<*1oah<$Z?3BlVx zq~D?qWbLPj2t0dZ(#*E-?W(RjF4J`y{1S>1>Jq6xb#xY(#;zW^-?*pdW~5?$ylx1M zxcRvk!AAQitdZVXIOOF{6q(;Ae7EcuS`sK}i6GUN7bp@84;LZM6Q3NTF;Nr!RMmEDEiQF3kV?tAG$3+%D~0);S(Z!^Au#*SUGHa2hf(S$aC8%_Q(`sYT6@e|mAT zUTZVU45g6C>c8MFNu-UnwA_cC={u6WCi8+I($@qmZ$K$Bqo^i)gqBW_f@;MIRdmm<%|#FQff(EACVKpvH=jlhG-&FE zUDj))UD8z{_-7zL(E4fXlV1`2bU*CoEfaR@TU$+g^QZ5<*4Iy^c{-su@^<^%sy_6* zh9f!tK4+*Qb)}|Yy7ZLsL!o%I_8lgHk&t_aS0rSiue`e@e18*}FsRqCANP$_c!KA8G9fL3hl(ucuJ9hw6JR&Pjm2W}rGM|2{aol|kFc-z zM(ErWMHiI2@ziY6!74E`h3j5`M; zp1}sTU179fD~}321d-_oq&}4do|)zb$}VmRoHXM{)N=1%hnmflcrdge+j)eJtB-= zeo}dF6v6(H_C|#9(6kT?Q*!2$+MzGj$IZI;i`Xjf3_MQ$zS9qTXhz{_mPTivlgJXAj3>Q z)b{f?n26I9zt-_g>8kiOrNfR?cc}2y%Q>Gp((gP@7Eu_@gdKI@S^T%lto- z{dH87TmJ_P&(J9#DLF_fNOupQ0*Ztp-JwW}bX|aigrq1clF}{Rr3@t@DbgJRLpMAd z&$;h&?q~g;cdggISWY#k+Cy!l+nU!`TxYTjN?^<$Ysn&U5 zXSC^;Yk7sYj1;pl+z1@dK+^X2@0I=P3hu8L-NGx3MpR!H@`{TkkFRjgj)YssZRXL> zbHkJtWcwZu!05@}u5@Z47K(~V>EMFEQVoQ|Ieo-P;`F&fOb0cmaa?e{gL`W*F)kN-SdqDg4Hf2*_#f& zN9KvR7t}+!(esk1QTETvwd?5P+cxDlvS^&l8L3wGe6D;Na@#WB5-f(?ZKT~JLaBAX z)Sr)9@=lU?YpLgB@HHN|Pn$>0;{N+nZ*aa^h>H2>@BJ=LXKo?4kP0i?FFL>WP&9^V zHUfXjtUh~6WR4!i8#dlhl=q04BQu}M$q~0Ect-2HKm@Z1=8Vma$6&;BpIH6UjaQE0 ztzwj;a0ca%lyPk07CxZIMb1e;n)HV!{$XDK`>}y7*Zp+j=6;D^$3%q^B_RZ?lTqg6G67n_^d~$Wo>6YtX{M++C zP!M32!G+Y*XyTiS*>T%~M^c_b++%4onED6iU_rsGkwPsvYDQO1r7Odye zHi&*x*3gJS&4C`$$9A)`vjM)ThIQ^5#~^bGq-bZ>fuIe6r#{gq(BuO4;rry z=|AS@-@2qCK%3Y@(1~#4{yUy{>cv&wP9Gf>P}Uj?g08apX&`_c8#H+T{Qiw5QDg=u z`eLPkS|i}Q(OUHbl(Iv=0`{TpUl`5{L^dph zZP<3%-T54s7%s@kjZYh{-@Za_;x`2G$lq-mvo?SRv_kWz)_ZRcwCx<>K;a(Muf_~P8hW#iJ-@$g~nrK;%C)$v}&r)F+u4)`nEK4*m2f$V7` zRAx#F611#l9l!hVffHoYsGo&LMHSh+T)NDU`2so4$P43uM3op2S9TvLUtUhKC&GR# zaQTSNnZ~%mJkpa3BQd@(is)MONEk9>;rsZP0hE5kfev9ypIofjSkXMU=Uet|UX~sl zoDaOzm#-m7Z6ZeR$0PS^RY$P~(!PXcy_gBd3uYo>y*(R=*Wl<_`PKF%zr1Z(HLQOT zs`r#V7v&ro1*}HwV}wKFfU4)g1{a-ZR_EZ#@e4t7t-6sVdI`@v5n5rnB3$z^)zfXfCVXXZ> zP>V1;Uv0XbVtO&<%{$rQqL90!D;sKOlj3U6%rgal+`v+7vuuNRnuNTo2F)1JATUfs ztOEFpYv!79q5}i5TqeiI$7_5*;g=@)(=56+Ga%OLw3)ZFo&N6sbfrICagV(JQUmun zU*&1053o*lhMWBndQE|puC;yaya!@%tR{cn)W10pXw{-g^kisLKmM~c^~H(e#V;&R zRh3B%mJ`|9wUJ<^1d{X2m4*q#3Ebj`6ERjc-6lSAIw^#ET(glx7AM*|Uh+`>`in`;tP=v0~<>KFpI_|Uk$CH9@M^ctUZ=tK6#;nSsf5AQ2}bC-Iy zJW(jD4g+srElEOcds92Fk^h8L?u012k}=h(dmR_O`jugQ5_a}TsMxOKGH83 zk)myW3Az%4$}8@fwWuK9!s!3~NU1ve~oqz_Bqr z35W{r(6{MV~V=ZaTpJ@)sq(l1t(@50)^})m?dh^|B%S2t*mO%E}rG2nc+B z@DUOb0Ch00?zQjZAOL^-n33dNCuT;5OfyXUy4VI6!~&jTeBcH#@?O$1ezD6G)A91Y zEb0%}6q%sWNJAlCqJE#QB&Qu-LWhhV$BiEKZIbls)-N&_gKMMFh@#9d_Y{J%UZf3L zXcex>R2h;5Tgu$M@$M)iK>gO6vfI!Gt`qV%PBbvl=hhw%`-nR2E-``_1Gs@i+Z+Ghv9Z)?Q3443sobE`4znslRzYt~Yy z_#7_o6eh(&;S)?e_CB-@3@`d1l|2;4070J%{x!4K0{R5{!=H#rO6r$4e;tup0@2M= z%NM}GUrBJ2ueC0^nBk`K@@qJrlfWOrB8iW}$+vK7Q7dTW2iv6*)+bWGcnpXsr+IGw zpTr5}`~XwSBhVPeW)W-jlRDQhjbYmZ0US;{iw}SmO+$lMNbjY0tO@+m zZv|Z%uA06D=V}7G)wWp2UA8PB)VyhRneptrI@pnMDU(#{ZX@B8Vq95Sv0k%tV$5NT z23qCn-+~J1mqCQ41gj)u^>0pueqyF`Dg{!9o4`dwW^-$qNzxqybKM zM)jf3t?CR*uMF_No{zy1grYV#AV04`iT7@}q;)dxT+>^~FUK)sC$Jj>%PVzNaZe3r zD4=vKW8I*oea8Y8abiNc)C(OY0Oh)RBHPXdzFSTWtsTE0zchLQh0`U=Qgk7HFY;3z z5A=H{2Xubmz8A8z*O5Z_?+W+rFLMCV5Uur{w07S6x9|2)A9?5VK<2cBj8RCKg~MHY zr6n>Uj8|P)wBk%R!o8-O;N`M{f&+7`Ucdvk$|LC{0t(0SofI*!Nmbrl>=i-Pzb_k? zD7$ZC`XO*FMvF~(PDs;&_whspiJ2Vdrx92iKv=+dp$HbpHDs|hw{=qOyv^XEB@xXW z^by(nEO*K(212O`r66wOACa6vKkPK*xCUVXd^tY^K4C?D@gyZWy75SRxKhFCG~;7o z?;Y8#F`rLNkBea9ix={b1r9{kTvsey>tqj21O_-x8VagV!N2f-krHhJ#RxE(;S+J|nsd9b9hq_)Ggh*m2n7^RlC;C=5xC-6=?V zFYq+vXfM7b+Qu~al0BKEhizHj$=F+uzJN~`%TOO7vUL_#>a<^!DYkk`amg(~Df5Np z3<%r{Ttc(=MYzhr!<{;=Fg*DPbhTWE?h8=dl!)Ng8`k!$IYE2G!B{yO<>S{3Ys?-Q z{<=A^I1ld?A{DjOCC1YL3nVlc0N7_(7(qN< zqz|A)b|gAB{+B3OwU@ohgb9xZ%?5XZOqfTosu6h2E#lq9MM}7&f0^QD8>+QJhUQ)_ zrT3!46281;zw+mCNRbQ+OY&*ly@JYz0-MHCJ`D7AoL7dB;(8y4t&JhvdjiMs_eKQe zNf0m=x18u4NeR(b+mMlG!6q|`l=@O_W~xu<@+$+(59ufyOsqmkF*Tc!I+XII`4<;x zk9x5;U1Nx-)e#)Iv>FB&MsJ`?K{#;ZE#c^wepj6EYH#DN#l(sJ+l>beagT=x3!