From 3c0075d444716d11bbc790b3dad6b8065658ccda Mon Sep 17 00:00:00 2001
From: Bandie <bandie@chaospott.de>
Date: Wed, 28 Mar 2018 04:34:52 +0200
Subject: [PATCH] Creating gz with Make

---
 Makefile                   |   5 +-
 man/de/man8/pam_panic.8    | 166 +++++++++++++++++++++++++++++++++++++
 man/de/man8/pam_panic.8.gz | Bin 2125 -> 0 bytes
 man/man8/pam_panic.8       | 166 +++++++++++++++++++++++++++++++++++++
 man/man8/pam_panic.8.gz    | Bin 1863 -> 0 bytes
 5 files changed, 336 insertions(+), 1 deletion(-)
 create mode 100644 man/de/man8/pam_panic.8
 delete mode 100644 man/de/man8/pam_panic.8.gz
 create mode 100644 man/man8/pam_panic.8
 delete mode 100644 man/man8/pam_panic.8.gz

diff --git a/Makefile b/Makefile
index c664d96..e7b3616 100644
--- a/Makefile
+++ b/Makefile
@@ -18,6 +18,9 @@ clean:
 detect_pamdir: 
 	@for d in $(POSSIBLE_PAMDIRS); do if [ ! -d $${d} ]; then continue; else printf "$${d}\n"; fi; done
 
+install_docs:
+	cd man && for f in `find . -name pam_panic.8 | sed 's/\/pam_panic.8//'`; do gzip -9 -c $${f}/pam_panic.8 > /usr/share/man/$${f}/pam_panic.8.gz; done
+
 uninstall:
 	PAMDIR=$(PAMDIR); rm $${PAMDIR}/pam_panic.so
 	rm /usr/share/man/*/pam_panic.8.gz
@@ -25,5 +28,5 @@ uninstall:
 
 install:
 	PAMDIR=$(PAMDIR); if [ -z $${PAMDIR} ]; then printf "Error: PAM's shared object directory was not detected. If you know where it is, please add to POSSIBLE_PAMDIRS and make a pull request.\n"&& exit 1; else cp build/pam_panic.so $${PAMDIR}/pam_panic.so; fi
-	if [ ! -d /usr/share/man ]; then printf "Error: Where is the manpage directory?\n" && exit 1; else cp -r man/* /usr/share/man/.; fi
+	if [ ! -d /usr/share/man ]; then printf "Error: Where is the manpage directory?\n" && exit 1; else make install_docs; fi
 	@printf "Done!\n"
diff --git a/man/de/man8/pam_panic.8 b/man/de/man8/pam_panic.8
new file mode 100644
index 0000000..2f6f769
--- /dev/null
+++ b/man/de/man8/pam_panic.8
@@ -0,0 +1,166 @@
+'\" t
+.\"     Title: pam_panic
+.\"    Author: [see the "AUTHORS" section]
+.\"      Date: 2018-03-26
+.\"    Manual: PAM Panic Manual
+.\"    Source: PAM Panic Manual
+.\"  Language: German
+.\"
+.TH "PAM_PANIC" "8" "2018-03-26" "PAM Panic Manual" "PAM Panic Manual"
+.ie \n(.g .ds Aq \(aq
+.el       .ds Aq '
+.\" -----------------------------------------------------------------
+.\" * set default formatting
+.\" -----------------------------------------------------------------
+.\" disable hyphenation
+.nh
+.\" disable justification (adjust text to left margin only)
+.ad l
+.\" -----------------------------------------------------------------
+.\" * MAIN CONTENT STARTS HERE *
+.\" -----------------------------------------------------------------
+
+.SH "NAME"
+pam_panic \- PAM module zur Authentifizierung durch Wechseldatentr\(:agern mit Panik-Funktion
+
+
+.SH "\(:UBERSICHT"
+.HP \w'\fBpam_panic\&.so\fR\ 'u
+\fBpam_panic\&.so\fR [allow=\fIUUID(GPT)\fR] [reject=\fIUUID(GPT)\fR] [reboot] [poweroff] [serious=\fIUUID\fR]
+
+
+.SH "BESCHREIBUNG"
+.PP
+Das pam_panic PAM module wurde mit dem Hintergedanken entwickelt, Personen mit wichtigen Daten zu sch\(:utzen.\&. Es bietet eine Panik-Function\&.
+.PP
+Man verwendet zwei Wecheldatentr\(:ager, die als Schl\(:ussel dienen\&.
+Hierbei funktioniert eines als Authentifizierungsschl\(:ussel und eines als Panikschl\(:ussel\&.
+Der Panikschl\(:ussel ruft die Panik-Funktion auf, die, sofern die Option \fBserious\fR aktiviert wurde, "\fBcryptsetup luksErase [UUID]\fR" ausf\(:uhrt\&.
+Dieses wird dann den luksHeader zerst\(:oren\&. 
+Das hei\(sst, dass die Daten auf den in den Optionen angegebenen Datentr\(:ager f\(:ur niemanden mehr lesbar sein werden\&.
+
+
+.SH "OPTIONEN"
+.PP
+\fBallow=\fR\fB\fIUUID(GPT)\fR\fR (erforderlich)
+.RS 4
+Diese Ger\(:ate-UUID wird zur Authentifizierung benutzt (Authentifierungsschl\(:ussel)\&.
+.PD 0
+.PP
+.PD 1
+Es ist notwendig, dass ein GPT-formatierter Wecheldatentr\(:ager mit mindestens einer Partition benutzt wird\&.
+Die UUID eines GPT-formatierten Ger\(:ates sieht beispielsweise so aus: "12345678-9ABC-DEF0-1234-56789ABCDEF0"\&. 
+.PP
+Weitere Informationen im Abschnitt \fBWIE BESTIMME ICH MEINE UUIDS\fR\&.
+.RE
+.PP
+
+\fBreject=\fR\fB\fIUUID(GPT)\fR\fR (erforderlich)
+.RS 4
+Diese Ger\(:ate-UUID wird \fBreboot\fR, \fBpoweroff\fR und/oder die Panik-Funktion \fBserious\fR, sofern als Argument angegeben, aufrufen\& (Panikschl\(:ussel).
+.PD 0
+.PP
+.PD 1
+Es ist notwendig, dass ein GPT-formatierter Wecheldatentr\(:ager mit mindestens einer Partition benutzt wird\&.
+Die UUID eines GPT-formatierten Ger\(:ates sieht beispielsweise so aus: "12345678-9ABC-DEF0-1234-56789ABCDEF0"\&. 
+.PP
+Weitere Informationen im Abschnitt \fBWIE BESTIMME ICH MEINE UUIDS\fR\&.
+.RE
+.PP
+
+\fBreboot\fR (empfohlen)
+.RS 4
+Wenn dieses Argument angegeben wird, wird das System neu gestartet, sobald der Wecheldatentr\(:ager mit der UUID des Arguments \fBreject=UUID(GPT)\fR eingelegt wurde\&.
+Diese Option wird empfohlen\&.
+.PP
+Wenn \fBpoweroff\fR ebenfalls als Argument angegeben wird, wird \fBreboot\fR ignoriert\&.
+.RE
+.PP
+
+\fBpoweroff\fR
+.RS 4
+Wenn dieses Argument angegeben wird, wird das System heruntergefahren, sobald der Wecheldatentr\(:ager mit der UUID des Arguments \fBreject=UUID(GPT)\fR eingelegt wurde\&.
+Aus Sicherheitsgr\(:unden wird von dieser Option abgeraten\&.
+.RE
+.PP
+
+\fBserious=\fR\fB\fIUUID\fR\fR
+.RS 4
+Die Ger\(:ate-UUID, bei dem der luksHeaders zerst\(:ort werden w\(:urde, sobald der Wecheldatentr\(:ager mit der UUID des Arguments \fBreject=UUID(GPT)\fR eingelegt wurde\&.
+.PP
+(Eine Erinnerung daran, ein luksHeader-Backup zu machen bevor diese Funktion benutzt wird.\&.)
+.RE
+.PP
+
+
+.SH "WIE WENDE ICH ES AN"
+.PP
+Um das Modul anzuwenden, m\(:ussen eine oder mehrere Dateien in \fI/etc/pam.d/\fR\& ver\(:andert werden\&. 
+Dort sind verschiendene (Dienst-)Programme und andere Konfigurationsdateien ersichtlich, die das PAM modul verwenden\&.
+Falls Ubuntu verwendet wird, so k\(:onnte die Datei "\fIcommon-auth\fR" interessant sein. 
+Informationen zur Handhabung der pam.d-Konfigurationsdateien ist es anzuraten, das Wiki der jeweiligen Distribution zu konsultieren\&.
+.PP
+Man f\(:uge folgende beispielhafte Zeilen am Anfang einer Konfigurationsdatei hinzu:
+.PD 0
+.RS 4
+auth       requisite    pam_panic.so auth=<UUID> reject=<UUID> reboot serious=<UUID>
+.PP
+account    requisite    pam_panic.so
+.RE
+.PD 1
+
+
+.SH "WIE BESTIMME ICH MEINE UUIDS"
+.PP
+Die UUIDs k\(:onnen unter \fI/dev/disk/by-partuuid\fR gefunden werden\&. 
+Um nachvollziehen zu k\(:onnen, welcher Wecheldatentr\(:ager welches ist, ist es ratsam "\fBls -l /dev/disk/by-partuuid/\fR" in der Lieblingsshell auszuf\(:uhren\&.
+
+
+.SH "R\(:UCKGABEWERTE"
+.PP
+PAM_SUCCESS
+.RS 4
+Zugriff wurde gew\(:ahrt.\&.
+.RE
+.PP
+PAM_IGNORE
+.RS 4
+Ein Fehler ist aufgetreten\&. Dieses Modul wird ignoriert\&.
+.RE
+.PP
+PAM_MAXTRIES
+.RS 4
+Der Wecheldatentr\(:ager wurde nicht erkannt\&.
+.RE
+
+
+.SH "DATEIEN"
+.PP
+/lib/*/security/pam_panic\&.so
+.RS 4
+Shared object-Datei, die f\(:ur alles zust\(:andig ist\&.
+.RE
+.PP
+/usr/share/man/*/man8/pam_panic\&.8\&.gz
+.RS 4
+Die Manpages\&.
+.RE
+
+
+.SH "BUGS"
+.PP
+Fehlerberichte (m\(:oglichst auf Englisch) und Codeverbesserungen k\(:onnen hier eingereicht werden: https://github.com/Bandie/pam_panic
+
+
+.SH "SIEHE AUCH"
+.PP
+\fBcryptsetup\fR(8),
+\fBpam.d\fR(5),
+\fBpam\fR(8)\&.
+
+
+.SH "AUTOREN"
+
+.PD 0
+.PP
+Dieses pam_panic PAM Modul wurde durch Bandie <bandie@chaospott\&.de> entwickelt\&.
diff --git a/man/de/man8/pam_panic.8.gz b/man/de/man8/pam_panic.8.gz
deleted file mode 100644
index c706e7de2f3627579d6f5e73998491003ca650ce..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 2125
zcmV-T2(tGdiwFoko4Q&818`w&UvOb=X=5%p0PR@YZsRx-efL)s{IKmbeCh7FY&Mt~
ztdpo?V<t}E3$mDYV<20U#I{ViNh;ao>-SVi@+EQ4%LMbZ0g_lGMOK|Ub*kt$^CtO5
z7k~L@s(q%;XcMmg*n~ze>xq8h)7+lXC#MwoR8g}(n+|TqlO{Q}^g1`6w|mfK=&{F#
zckfR-@4oAN__3b34owkeXLQ@Yrd!^<8mZ?ed1068Tl2q#CMm)M^H<8QL&Kwu?sPy+
ztpDS-KN?;%sd<Xu-N{XvJlO2mP@}6A%}uMDP&aba|4Q>#__fhhS?N$c`bI42{M8@X
z<t>2o6sb5YGEZ?1m%P^|dBr0l?ZQQ-D1F?d%7h%HM%SbVb6*PQb*z^%ORX^C0rKj<
z_>)tnVo&SPCfZPLvd5D~H;gEIRT!@O!x3HFjHbb8N|R}SJe|-W7zgzBm5yn2Cm_kF
ze;qU%TVm6^BRpH@Q2`j93M(8}hS7M^$`&S}2z*TGPAyZXvIwj;-p*TRAfYw1)?Qe&
z>U=EBO2Dm-!jjo}FrExA22*fra7*)tH}m*>d-(hxU6;?}@tocijbjt^Da^9`;pcfg
zoXv)pt*hJV35Gw@C#$|7-;Pc!^4#OYCVx;ikK@mrtXAiRt5@^F+Q#!>axoYO!}Hnb
z3O3%}HZDWA%lmz79ts;NaW_(H8ffE{O;i+`l`;fK9`tghGT)|KWnFGm2@OV5uM<46
z92g)>ZkYm_!apg~g{KraT4?2w21*;X15@+_3&bp>DBUajpiG2?PY+5<K%U2=4Mr;p
zGe?tUn(;9XG2=lP#Cr`8(*<6Rt6<@=JlDxvFM{vf{yv3?_7;n!`}2IjrLr$4$QH;T
zHtmoq6c(|V+$NXDOebD*vynM4qKX_-A;b&!Vyy(C4SvPvOZ&L-5RhU+S+R0~4V|J-
z9OTb<r-|)d%r>Ofi)~st*#4kxL<k&CLqzz+feIto{e;MQtk120MM8#D>3PdJ1U3qt
z69dao!gkp}m;01f^SDV=q85yJxpEsF5@Rd@btpH#v{tEwytqYZA%xfoq>ai*RSdnk
zoepnC!Kh>>e6CYsjL*;b&p5S|g^I$P49tU2jVJVd={Oe*HpHtAzf{6-JmX<J`01&&
zn|jHHlaia4^iE9UPwyKbvxah-+%r{mQlZAK!N^W2@Ek^<ag4x{G;0lT9ERmZA(Zu6
zNKsqH##bRF@usBZvop-jXGcz})MEqfHd<v4DFjSh&Llab=KBxdegDIc|2*ydtABpc
zxePwO>+n#A$9RZGnnDV8_D*SdplE2S(<JhGP5lKRGTM8l@7*vUD9m(teH{>FkgkK_
zC=h!m94^Lh9LR<o*{!I(PH1IERztko=BHW`c`sygFK5mlNy>x7+h(T7gH4JxqP63A
zo6`W<&77syi^M<qKSN%ZAyquVh4m)R(@dF~2zSbee6qs5jFZ68uB8v<;SuPq$*6)7
z015Pz=TI-g3=94YdY%+KqrHP1?fAP-TLwK*nMx|z-l}jd@?y}|m%7@CFV7guUc?YT
z_YEfQdw2kqPE2k&*w4}2+x@R#n6flVGZ2TV<&^kaVC)yL079TFDwKB#?_Nkz5d-h@
z$`e~d9WHP-8}b~7U4OJEJf-IBMCO^qv^h<r6JkepHPr1DQD0RvdXTagslN#s_Nx_e
zFBMpAOx47OHbiJxW_H$g&co#j%>%l!bqI4<J??W`0!Ldx+?Nz?*-m!wl|`D<_%0Y-
zmN^_us9)9V*;<%#%`GH|^i)U#2Rqi4LYlJa6Dj6qfF*;Q23<B52u4r&We*)`H|mKZ
za2v>QVV^C+WwXMFI|w7MfW~M!N>K~ZGtPHTZf%~}aJ^R2$H@kYe$7p+lfsHZxu`lC
z8*t;wg{EvN*^6y6yzNAVN*^UDXA2}jvDc%P$pZCUF&PXpWZOGwZr+B=e7(+1Cq#=O
z&6;%7%DE6Z$Gs3-IuuXtRR%CS4HptoKqk0!j{Cq>hC5ZDF0_|ILw9<m<<&0=`ks}o
zIhI<zC?we6!V0_KIttBD2MxHiZ;8S+HA~pZZK+7Z81DU!{kZ>w#zU!KVOg4vSVyUb
zRcCc=lpJFms(ZFoUkmL}KlovL8R<$T^6Ae%aRU58RW@v&SnsIL<#JRk50}dvvH8=D
zD?)R9-lO!lDpPe+stT*CBMjd~2!*wgy6@q3z3MF<I~$ajqR<iND^#*lsU35XB?jqt
zpJy35(6qcJZ8wGDs*H8+xMY-*(p0qTm;-BvFz^)t)a+z*)SO;LJE6mGS}iioEiR78
zxa2<-)!pHsA0P9z_Tty8{&{d0jHf|~1%LN4nO$52lSviM-;2cRIIgaZiDC^zdGOtR
z_2t)wSECz#l((Q-^iiP{T5$!vRieCArD#)ie<{^ORQ_mf<6W=&|Cx@5L2b?DH_;RG
z3@1C1euYcXcB{(a%l<SN*7uKIrWd`pJ*Sq1)&8+}cxA5+o1~#t5#<Z!XGapg6p`xs
z1HFJ3Plc3;kb6LOcHe_u;cU<GHa%RFa3KDk9vpUx-{fhpJRv_f@W?&0{(N>-(Y1ti
zf&754P(@bYJYj_^fu_LV3A%YA@^}GBzUTE2X)Yij<&NgiR$Epcs|31|%x9E(zj0^1
zUZQ<kEV_`m-Z^`ycE;D1O@_fBp#JP)u)W&tuCrif>-3~ueJj%C%xV3weJ*GBNZFrF
z!6C$GuiLK3a`;_FMI8xx`L#}I9{seC|Nma5VeU4$=Ws;om%T4G__+T8TsS}JCKUhx
D!)_r8

diff --git a/man/man8/pam_panic.8 b/man/man8/pam_panic.8
new file mode 100644
index 0000000..1a3bac7
--- /dev/null
+++ b/man/man8/pam_panic.8
@@ -0,0 +1,166 @@
+'\" t
+.\"     Title: pam_panic
+.\"    Author: [see the "AUTHORS" section]
+.\"      Date: 2018-03-26
+.\"    Manual: Linux-PAM Panic Manual
+.\"    Source: Linux-PAM Panic Manual
+.\"  Language: English
+.\"
+.TH "PAM_PANIC" "8" "2018-03-26" "PAM Panic Manual" "PAM Panic Manual"
+.ie \n(.g .ds Aq \(aq
+.el       .ds Aq '
+.\" -----------------------------------------------------------------
+.\" * set default formatting
+.\" -----------------------------------------------------------------
+.\" disable hyphenation
+.nh
+.\" disable justification (adjust text to left margin only)
+.ad l
+.\" -----------------------------------------------------------------
+.\" * MAIN CONTENT STARTS HERE *
+.\" -----------------------------------------------------------------
+
+
+.SH "NAME"
+pam_panic \- PAM module for access control using removable media. With panic function
+
+
+.SH "SYNOPSIS"
+.HP \w'\fBpam_panic\&.so\fR\ 'u
+\fBpam_panic\&.so\fR [allow=\fIUUID(GPT)\fR] [reject=\fIUUID(GPT)\fR] [reboot] [poweroff] [serious=\fIUUID\fR]
+
+
+.SH "DESCRIPTION"
+.PP
+The pam_panic PAM module shall protect people who have value data on their computer\&. It provides a panic function\&.
+.PP
+There are two removable media which work as keys: One is the auth key and one is the panic key\&.
+The auth key will let you pass to the password prompt\&.            
+The panic key will call the panic function which, if configured, executes "\fBcryptsetup luksErase [UUID]\fR"\&. This will destroy the luksHeader safely\&.
+It means that your data will not be readable to anyone anymore\&.
+
+.SH "OPTIONS"
+.PP
+\fBallow=\fR\fB\fIUUID(GPT)\fR\fR (required)
+.RS 4
+This device UUID is used for authentication (auth key)\&.
+.PD 0
+.PP
+.PD 1
+It is required to have a GPT formated device with at least one partition on it\&.
+The UUID of a GPT formated device looks like "12345678-9ABC-DEF0-1234-56789ABCDEF0"\&. 
+.PP
+See more in the section \fBHOW TO DETERMINE MY UUIDS\fR\&.
+.RE
+.PP
+
+\fBreject=\fR\fB\fIUUID(GPT)\fR\fR (required)
+.RS 4
+This device UUID will cause calling \fBreboot\fR, \fBpoweroff\fR and/or the panic function \fBserious\fR if stated before (panic key)\&.
+.PD 0
+.PP
+.PD 1
+It is required to have a GPT formated device with at least one partition on it\&.
+The UUID of a GPT formated device looks like "12345678-9ABC-DEF0-1234-56789ABCDEF0"\&. 
+.PP
+See more in the section \fBHOW TO DETERMINE MY UUIDS\fR\&.
+.RE
+.PP
+
+\fBreboot\fR (recommended)
+.RS 4
+Stating this argument will cause a reboot after the device stated in \fBreject=UUID(GPT)\fR has been inserted\&.
+You might want that option\&.
+.PP
+If \fBpoweroff\fR is also stated the argument \fBreboot\fR will be ignored\&.
+.RE
+.PP
+
+\fBpoweroff\fR
+.RS 4
+Stating this argument will cause a shutdown after the device stated in \fBreject=UUID(GPT)\fR has been inserted\&.
+For security reasons you should abstrain from this option\&.
+.RE
+.PP
+
+\fBserious=\fR\fB\fIUUID\fR\fR
+.RS 4
+The device UUID of which the luksHeaders will be erased if the device stated in \fBreject=UUID(GPT)\fR has been inserted\&.
+.PP
+(You should make a luksHeader backup before using this function\&.)
+.RE
+.PP
+
+
+.SH "HOW DO I USE IT"
+.PP
+To activate the module you have to change some file(s) in \fI/etc/pam.d/\fR\&.
+There you'll see different services, programs and other config files which use the PAM modules\&.
+Speaking of the general authentication configs, if you use Ubuntu "\fIcommon-auth\fR" might be interesting for you\&.
+For other distributions you might want to look into the distribution's wiki\&.
+.PP
+Put the following lines on top of the config file:
+.PD 0
+.RS 4
+auth       requisite    pam_panic.so auth=<UUID> reject=<UUID> reboot serious=<UUID>
+.PP
+account    requisite    pam_panic.so
+.RE
+.PD 1
+
+
+.SH "HOW TO DETERMINE MY UUIDS"
+.PP
+You will find your UUIDs in \fI/dev/disk/by-partuuid\fR\&.
+You might want to execute "\fBls -l /dev/disk/by-partuuid/\fR" in your favourite shell to find out which UUID is which device\&.
+
+
+.SH "RETURN VALUES"
+.PP
+PAM_SUCCESS
+.RS 4
+Access was granted\&.
+.RE
+.PP
+PAM_IGNORE
+.RS 4
+An error has occured\&. This module will been ignored.\&.
+.RE
+.PP
+PAM_MAXTRIES
+.RS 4
+The removable media has not been detected\&.
+.RE
+
+
+.SH "FILES"
+.PP
+/lib/*/security/pam_panic\&.so
+.RS 4
+Shared object file which does all the work\&.
+.RE
+.PP
+/usr/share/man/*/man8/pam_panic\&.8\&.gz
+.RS 4
+The man pages\&.
+.RE
+
+
+.SH "BUGS"
+.PP
+Please report bugs or do merge requests at https://github.com/Bandie/pam_panic 
+
+
+.SH "SEE ALSO"
+.PP
+\fBcryptsetup\fR(8),
+\fBpam.d\fR(5),
+\fBpam\fR(8)\&.
+
+
+.SH "AUTHORS"
+.PD 0
+.PP
+This pam_panic PAM module was developed by Bandie <bandie@chaospott\&.de>\&.
+.PP
+This man page has been revised by 
diff --git a/man/man8/pam_panic.8.gz b/man/man8/pam_panic.8.gz
deleted file mode 100644
index 4276a692a380042a24eae53d9a17f01f4da1d11f..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 1863
zcmV-N2e|kjiwFpmbh=ss18`w&UvOb=X=5%p0PR?7bJ|E2{m!qr#fLRc8AviOk85UX
ziLJz{vVlUdv#yYuYETRHAk>PwWy1XWJ-1r|+3TI!+R4YI0)~Fv$GPV|l(S`*Y-fN^
ze$AE5<P{ZS_gf)ywQe>>l}&YdMIVinWK&7q(PDl(nMGYPa&48)KOJSzjj)jM_Vt^~
z{_Ai0Z@+JL?nPdS?27JGUVZ6LNB1;k9rb#1D$-TCmVbWgPUM?PY;Y>bH<>aiFLws>
zTk7J%Z`08@yzWx>67Q24UAOr}+Dl8Ffs(Y$dxH%PVnd_PwCst`oq^1}cg^aVGo}Am
zUrx#^plB(UiKsG5i7t1-T9t3UqKa4<vC1T+ha#1^;E;6&dHQ7U_sUq6sI}Xro``vY
zto(uxO_@wA?L@gzIq5t*oOcEyrtGW2a6byibUhi*gYlfA`Diwe=r))I^y(|A>2wAW
zSTY{n2i?w*=Cte+6Je+03OFDDB-U$b46Su;OPx_=5DqHkPCq)Rb~09CK)))Rk{6Lw
zxl4pbMf5P9OrtOYp>C(N+@CFzcSnWGzYUCDCbK1-Rh^eM=%dIoz5jWcgo{OZ)B7-;
zpJVwGeJthg$ha3bR$5zpDfC{JI!Qipx|T{;ra8?A8~bj8=z11T=iy`w6Q|S89BF+*
zqy>jbVG9+dwopuk)CCszsisssN_rGoB`FqGfE8RDR0-5}MP+3PZz!~U^-;yrka&g_
z_8ZluB!Rcx>*pv#m0G8?*X5Rkp{+caE1KkzlyRj<pf>R;i9Ci0$91m?8?0sCKDbx#
zCqu>^bcJIGGwAKF7y~^qTf8eQo8NlX2-Q-(lr=+h($+ZUZN4CtFoP1csY)4Nko+Ro
zz{OA(F<+O5!Xodhg0gCBf>IbsA302)5T`CHpQrG}=>dA+;lZim)3;K@vLquCnK=gm
z^G=GKT^G)=(#OQz&b6hL1h67@xWZkL9~dkA+38ZU1W${JV?^XB0V^9C&hY&i=a{Cw
zQhu%!oI^F3Mf7dQnH<YUwU)$(IU1Fbu}>;QK<4&TVd{vSdm`M>Yp0gKy<v}Vw~@~_
zJH82m`npD9xmLC3M1<p+6ewBjSs_ZRoErR7wjqJDNhkk7Os4hLP^Px%aBtpz^X+%v
z|8Uv=arExGe-pfa-RGq~ukjMExF|WBBQ!=vl9Wq=rY#a+yPf<>^9kJq^I&!#jsv=X
zaArh|Av-<`oCt>dnBD&~-Zd?Oxg#f+Ehm?Y10-DVuckt<L}bknp?QJBI9S&YJ_jlr
z>#$nMgdOc2Q{n&NJB6=?nFEC?xRZH&id6*sI3AW`hDKUp+qMHH$O|Bmpn5t(YR_uu
zRZb_8w7CIr4FV&9RgR$HESvU#`nFS>6iNg%xzeDEcI6F|=X_w(GNT)fuEI8^KJn1m
zjjEzHIe?3wL(!7?-@9+p%Eo%1e=PvsgV_jWRVsVn@@F(EBv*Zt>MDy#tWZ`3geEBX
z-mn%vEpJYZw3V1XCy$9JpX4D(>KoV7l5LK-NiO&?=ha_!ldbGMoZQ-pEu-0L6f3db
zqS4f;>!%s#ZmSiapFH-xfSG?Yp^z3)K;gU|6VN+w;}Lc`!|Ne|L3Ig^L|><v&*6*S
zVU|*v?3r`#Q8<)#J;abPh=+Cd_|}ixXF!FYE@G7=SOPQPA7f%JxE*gwu`|BKLu*;L
zRVUumKr@BdqSNSNSVL4uv1Na?M|vZ3K%YHtMqZ$CJ)50jX^T~r+lsq&$jPkpK40SQ
zT&ES&KL=CMomm6-INWWR=Pku_ZA-PPSc@lLJ0-O%S}etnAnns<OqQ)`B0R0EJCbPb
z$*d369p3ZUrHjVB7BE*$QFa7%&DOtMRW=F{#OpZoVe)jK{QMI$?iZ@*cl_llQ<DgO
z)!BtnSp%m(6<kw`8$*j+FP2qLGiI~PltdxsZl2*?(+~;yG6YuJ;p))mUQtylt||5K
zZxGjWmm9k>L;Z|iygzi2g#xE85s#V+2M@rKr#$U#(FlVlTr=PJUp|A~B;`Gv1@pyh
zO#c|&ErQxBemad7*VjQ5)lnJw=Zrnl8Whj%(?ZJU!w=&L|MbUm)Qu9{;yR$$>&jPN
zKPlF!SQi+s5xz7Jo{PL6{c}DGgQ!)yo)6tD-;a%u6H6ZbPo~ulz7Ovj$A+0&4POnL
zT04CDK+`mURPZRESIjHN&;~lq4+r%m&4Yg1;9+ITq2a5;oyegCpO;S*T;jd?qvZ@v
zfPEXE|1E>xEj~1X;7NnME_4Yes}0aZs%m&&ZlvQea@z1rl3H7stKo2i8KqhcPzZ+a
zP=}N}*+9pKz968{T{Jn4&!-_D-0EGPU(`=~114+lyW?-a+agc%|0}Jz%EkD_Cp2ac
z=qEE>@O*Y4Zy^1&a)1Ahf~-xUEss&L{N?o6#iXgRI(3#3L^fVd=U;AP&fy;t004pX
Bn@|7%