From 51e965de8ef59b8079a7927f2418cda8a0526cf0 Mon Sep 17 00:00:00 2001
From: "Josh.5" <jsunnex@gmail.com>
Date: Tue, 11 Jan 2022 01:03:30 +1300
Subject: [PATCH] initial commit

---
 .dockerignore                                 |   1 +
 .gitignore                                    |   1 +
 Dockerfile                                    | 363 +++++++++++++++
 README.md                                     |  43 +-
 devops/run_server.sh                          |  66 +++
 images/steam-icon.png                         | Bin 0 -> 47255 bytes
 overlay/entrypoint.sh                         |  47 ++
 overlay/etc/home_directory_template/.bashrc   |   9 +
 .../.cache/log/.placeholder                   |   0
 .../.config/autostart/Steam.desktop           |  14 +
 .../xfce-perchannel-xml/xfce4-desktop.xml     |  50 +++
 .../xfce-perchannel-xml/xfce4-panel.xml       |  62 +++
 .../xfconf/xfce-perchannel-xml/xsettings.xml  |  44 ++
 .../.local/share/applications/x11vnc.desktop  |  12 +
 overlay/etc/supervisor/conf.d/services.conf   | 130 ++++++
 overlay/opt/noVNC/audio.patch                 | 416 ++++++++++++++++++
 overlay/scripts/10-setup_user.sh              |  31 ++
 overlay/scripts/20-configre_sshd.sh           |  10 +
 overlay/scripts/30-configure_system_paths.sh  |  32 ++
 overlay/scripts/40-setup_locale.sh            |  19 +
 overlay/scripts/50-configure_audio.sh         |  20 +
 overlay/scripts/80-configure_nvidia_driver.sh |  64 +++
 overlay/scripts/90-configure_xorg.sh          |  57 +++
 23 files changed, 1489 insertions(+), 2 deletions(-)
 create mode 100755 .dockerignore
 create mode 100755 .gitignore
 create mode 100644 Dockerfile
 create mode 100755 devops/run_server.sh
 create mode 100644 images/steam-icon.png
 create mode 100644 overlay/entrypoint.sh
 create mode 100644 overlay/etc/home_directory_template/.bashrc
 create mode 100644 overlay/etc/home_directory_template/.cache/log/.placeholder
 create mode 100644 overlay/etc/home_directory_template/.config/autostart/Steam.desktop
 create mode 100644 overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-desktop.xml
 create mode 100644 overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
 create mode 100644 overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xsettings.xml
 create mode 100644 overlay/etc/home_directory_template/.local/share/applications/x11vnc.desktop
 create mode 100644 overlay/etc/supervisor/conf.d/services.conf
 create mode 100644 overlay/opt/noVNC/audio.patch
 create mode 100644 overlay/scripts/10-setup_user.sh
 create mode 100644 overlay/scripts/20-configre_sshd.sh
 create mode 100644 overlay/scripts/30-configure_system_paths.sh
 create mode 100644 overlay/scripts/40-setup_locale.sh
 create mode 100644 overlay/scripts/50-configure_audio.sh
 create mode 100644 overlay/scripts/80-configure_nvidia_driver.sh
 create mode 100644 overlay/scripts/90-configure_xorg.sh

diff --git a/.dockerignore b/.dockerignore
new file mode 100755
index 0000000..04204c7
--- /dev/null
+++ b/.dockerignore
@@ -0,0 +1 @@
+config
diff --git a/.gitignore b/.gitignore
new file mode 100755
index 0000000..04204c7
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1 @@
+config
diff --git a/Dockerfile b/Dockerfile
new file mode 100644
index 0000000..18646ce
--- /dev/null
+++ b/Dockerfile
@@ -0,0 +1,363 @@
+FROM debian:bullseye-slim
+
+# Update package repos
+ARG DEBIAN_FRONTEND=noninteractive
+RUN \
+    echo "**** Update apt database ****" \
+        && sed -i '/^.*main/ s/$/ contrib non-free/' /etc/apt/sources.list \
+    && \
+    echo
+
+# Update locale
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install and configure locals ****" \
+        && apt-get -y install --no-install-recommends \
+            locales \
+            procps \
+        && echo 'en_US.UTF-8 UTF-8' > /etc/locale.gen \
+        && locale-gen \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+ENV \
+    LANG=en_US.UTF-8 \
+    LANGUAGE=en_US:en \
+    LC_ALL=en_US.UTF-8
+
+# Re-install certificates
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install certificates ****" \
+        && apt-get -y install --reinstall \
+            ca-certificates \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install core packages
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install tools ****" \
+        && apt-get -y install \
+            bash \
+            bash-completion \
+            gcc \
+            git \
+            kmod \
+            less \
+            make \
+            nano \
+            sudo \
+            vim \
+            wget \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install desktop requirements
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install desktop requirements ****" \
+        && apt-get -y install --no-install-recommends \
+            dbus-x11 \
+            libxcomposite-dev \
+            libxcursor1 \
+            man-db \
+            mlocate \
+            net-tools \
+            pciutils \
+            pkg-config \
+            python3 \
+            python3-numpy \
+            python3-setuptools \
+            rsync \
+            x11vnc \
+            xauth \
+            xorg \
+            xserver-xorg-legacy \
+            xvfb \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install supervisor
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install supervisor ****" \
+        && apt-get -y install \
+            supervisor \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install openssh server
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install openssh server ****" \
+        && apt-get -y install \
+            openssh-server \
+        && echo 'PermitRootLogin yes' >> /etc/ssh/sshd_config \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install noVNC
+ARG NOVNC_VERSION=1.2.0
+RUN \
+    echo "**** Fetch noVNC ****" \
+        && cd /tmp \
+        && wget -O /tmp/novnc.tar.gz https://github.com/novnc/noVNC/archive/v${NOVNC_VERSION}.tar.gz \
+    && \
+    echo "**** Extract noVNC ****" \
+        && cd /tmp \
+        && tar -xvf /tmp/novnc.tar.gz \
+    && \
+    echo "**** Configure noVNC ****" \
+        && cd /tmp/noVNC-${NOVNC_VERSION} \
+        && sed -i 's/credentials: { password: password } });/credentials: { password: password },\n                           wsProtocols: ["'"binary"'"] });/g' app/ui.js \
+        && mkdir -p /opt \
+        && rm -rf /opt/noVNC \
+        && cd /opt \
+        && mv -f /tmp/noVNC-${NOVNC_VERSION} /opt/noVNC \
+        && cd /opt/noVNC \
+        && ln -s vnc.html index.html \
+        && chmod -R 755 /opt/noVNC \
+    && \
+    echo "**** Modify noVNC title ****" \
+        && sed -i '/    document.title =/c\    document.title = "Steam Headless - noVNC";' \
+            /opt/noVNC/app/ui.js \
+    && \
+    echo "**** Section cleanup ****" \
+        && rm -rf \
+            /tmp/noVNC* \
+            /tmp/novnc.tar.gz
+
+# Install Websockify
+ARG WEBSOCKETIFY_VERSION=0.10.0
+RUN \
+    echo "**** Fetch Websockify ****" \
+        && cd /tmp \
+        && wget -O /tmp/websockify.tar.gz https://github.com/novnc/websockify/archive/v${WEBSOCKETIFY_VERSION}.tar.gz \
+    && \
+    echo "**** Extract Websockify ****" \
+        && cd /tmp \
+        && tar -xvf /tmp/websockify.tar.gz \
+    && \
+    echo "**** Install Websockify to main ****" \
+        && cd /tmp/websockify-${WEBSOCKETIFY_VERSION} \
+        && python3 ./setup.py install \
+    && \
+    echo "**** Install Websockify to noVNC path ****" \
+        && cd /tmp \
+        && mv -v /tmp/websockify-${WEBSOCKETIFY_VERSION} /opt/noVNC/utils/websockify \
+    && \
+    echo "**** Section cleanup ****" \
+        && rm -rf \
+            /tmp/websockify-* \
+            /tmp/websockify.tar.gz
+
+# Install desktop environment
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install desktop environment ****" \
+        && apt-get -y install \
+            xfce4 \
+            xfce4-terminal \
+            msttcorefonts \
+            fonts-vlgothic \
+            gedit \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install firefox
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install firefox ****" \
+        && apt-get -y install \
+            firefox-esr \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Install Steam
+RUN \
+    echo "**** Install steam ****" \
+        && dpkg --add-architecture i386 \
+        && apt-get update \
+        && echo steam steam/question select "I AGREE" | debconf-set-selections \
+        && echo steam steam/license note '' | debconf-set-selections \
+        && apt-get -y install \
+            steam \
+            steam-devices \
+            vulkan-tools \
+            mesa-utils \
+            mesa-vulkan-drivers \
+            libglx-mesa0:i386 \
+            mesa-vulkan-drivers:i386 \
+            libgl1-mesa-dri:i386 \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Setup browser audio streaming deps
+RUN \
+    echo "**** Update apt database ****" \
+        && apt-get update \
+    && \
+    echo "**** Install audio streaming deps ****" \
+        && apt-get -y install --no-install-recommends \
+            bzip2 \
+            gstreamer1.0-alsa \
+            gstreamer1.0-gl \
+            gstreamer1.0-gtk3 \
+            gstreamer1.0-libav \
+            gstreamer1.0-plugins-base \
+            gstreamer1.0-plugins-good \
+            gstreamer1.0-pulseaudio \
+            gstreamer1.0-qt5 \
+            gstreamer1.0-tools \
+            gstreamer1.0-x \
+            libglu1-mesa \
+            libgstreamer1.0-0 \
+            libgtk2.0-0 \
+            libncursesw5 \
+            libopenal1 \
+            libsdl-image1.2 \
+            libsdl-ttf2.0-0 \
+            libsdl1.2debian \
+            libsndfile1 \
+            novnc \
+            pulseaudio \
+            ucspi-tcp \
+    && \
+    echo "**** Section cleanup ****" \
+        && apt-get clean autoclean -y \
+        && apt-get autoremove -y \
+        && rm -rf \
+            /var/lib/apt/lists/* \
+            /var/tmp/* \
+            /tmp/* \
+    && \
+    echo
+
+# Configure default user and set env
+ENV \
+    USER="default" \
+    USER_PASSWORD="password" \
+    USER_HOME="/home/default" \
+    TZ="Pacific/Auckland" \
+    USER_LOCALES="en_US.UTF-8 UTF-8"
+RUN \
+    echo "**** Configure default user '${USER}' ****" \
+        && mkdir -p \
+            ${USER_HOME} \
+            /games \
+        && useradd -d ${USER_HOME} -s /bin/bash ${USER} \
+        && chown -R ${USER} \
+            ${USER_HOME} \
+            /games \
+        && echo "${USER} ALL=(ALL) NOPASSWD: ALL" >> /etc/sudoers
+
+# Add FS overlay
+COPY overlay /
+
+# Set display environment variables
+ENV \
+    DISPLAY_CDEPTH="24" \
+    DISPLAY_DPI="96" \
+    DISPLAY_REFRESH="60" \
+    DISPLAY_SIZEH="900" \
+    DISPLAY_SIZEW="1600" \
+    DISPLAY_VIDEO_PORT="DFP" \
+    DISPLAY=":0" \
+    NVIDIA_DRIVER_CAPABILITIES="all" \
+    NVIDIA_VISIBLE_DEVICES="all"
+
+# Be sure that the noVNC port is exposed
+EXPOSE 8083
+EXPOSE 32123
+
+# Set entrypoint
+RUN chmod +x /entrypoint.sh
+ENTRYPOINT ["/entrypoint.sh"]
diff --git a/README.md b/README.md
index 71f5035..16b7856 100644
--- a/README.md
+++ b/README.md
@@ -1,2 +1,41 @@
-# docker-steam-headless
-Headless Steam supporting NVIDIA GPU and accessible via NoVNC
+# Headless Steam Service
+
+Play your games in the browser with audio. Connect another device and use it with Steam Remote Play. 
+
+## Features:
+- Full video/audio noVNC web access to a Xfce4 Desktop
+- NVIDIA GPU support
+- Root access
+- SSH server for remote terminal access
+
+---
+## Notes:
+
+### ADDITIONAL SOFTWARE:
+If you wish to install additional applications, you can generate a
+script inside the `~/init.d` directory ending with ".sh". This will be executed on the container startup.
+
+### STORAGE PATHS:
+Everything that you wish to save in this container should be stored in the home directory or a docker container mount that you have specified. All files that are store outside your home directory are not persistent and will be wiped if there is an update of the container or you change something in the template.
+
+### GAMES LIBRARY:
+It is recommended that you mount your games library to `/games` and configure Steam to add that path.
+
+### AUTO START APPLICATIONS:
+In this container, Steam is configured to automatically start. If you wish to add additional services to automatically start, add them under **Applications > Settings > Session and Startup** in the WebUI.
+
+### NETWORK MODE:
+If you want to use the container as a Steam Remote Play (previously "In Home Streaming") host device you should create a custom network and assign this container it's own IP, if you don't do this the traffic will be routed through the internet since Steam thinks you are on a different network.
+
+---
+## Running:
+
+For a development environment, I have created a script in the devops directory.
+
+
+---
+## TODO:
+- Configure xorg.conf with no NVIDIA GPU
+- Lock SSH access to user only (remove root access)
+- Require user to enter password for sudo
+- Document how to run this container
diff --git a/devops/run_server.sh b/devops/run_server.sh
new file mode 100755
index 0000000..1d0fda2
--- /dev/null
+++ b/devops/run_server.sh
@@ -0,0 +1,66 @@
+#!/usr/bin/env bash
+###
+# File: run.sh
+# Project: docker-steamos
+# File Created: Saturday, 8th January 2022 2:34:23 pm
+# Author: Josh.5 (jsunnex@gmail.com)
+# -----
+# Last Modified: Monday, 10th January 2022 11:04:51 pm
+# Modified By: Josh.5 (jsunnex@gmail.com)
+###
+
+script_path=$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd );
+project_base_path=$(realpath ${script_path}/..);
+
+
+if [[ ${1} == "stop" ]]; then
+    docker stop steam-headless
+    docker rm steam-headless
+    exit $?
+elif [[ ${1} == "tail" ]]; then
+    docker logs -f steam-headless
+    exit $?
+elif [[ ${1} == "user" ]]; then
+    docker exec -ti --user default steam-headless bash
+    exit $?
+elif [[ ${1} == "root" ]]; then
+    docker exec -ti --user 0 steam-headless bash
+    exit $?
+fi
+
+
+docker stop steam-headless
+docker rm steam-headless
+sleep 1
+
+
+docker run -d --name='steam-headless' \
+    --privileged=true  \
+    --net='br0' --ip='192.168.1.208' \
+    --cpuset-cpus='3,9,4,10,5,11'  \
+    -e PUID="99"  \
+    -e PGID="100"  \
+    -e UMASK='000'  \
+    -e USER_PASSWORD="password" \
+    -e USER="default" \
+    -e HOME="/home/test" \
+    -e USER_HOME="/home/default" \
+    -e TZ="Pacific/Auckland" \
+    -e USER_LOCALES="en_US.UTF-8 UTF-8" \
+    -e DISPLAY_CDEPTH="24" \
+    -e DISPLAY_DPI="96" \
+    -e DISPLAY_REFRESH="60" \
+    -e DISPLAY_SIZEH="720" \
+    -e DISPLAY_SIZEW="1280" \
+    -e DISPLAY_VIDEO_PORT="DFP" \
+    -e DISPLAY=":0" \
+    -e NVIDIA_DRIVER_CAPABILITIES="all" \
+    -e NVIDIA_VISIBLE_DEVICES="all" \
+    -v "${project_base_path}/config/home/default":'/home/default':'rw'  \
+    --hostname='steam-headless'  \
+    --shm-size=2G \
+    --runtime=nvidia \
+    josh5/steam-headless:latest
+
+
+docker logs -f steam-headless
diff --git a/images/steam-icon.png b/images/steam-icon.png
new file mode 100644
index 0000000000000000000000000000000000000000..b7d71a57ecaba1a199a14308759cf20e932ebdba
GIT binary patch
literal 47255
zcmc$__dnI|{|Ej&$HB4pD0>STQD%;8vdS(xMxtbtJ<qW-vO_jmNeI~-dnBs}$rjn0
zgX5g<;r0G}|Ag=N7u-Cb*L6Lv$GAV{Gtxj$gM#!rDF6TzTAHd40RW8u6AVC!@V^ed
z$Ibu%<o8@f#Xw6%h11}*%d_V%?Et_#(<5P6SoHyYFO2=VM1FWxWtvnO^#{x&L7qH*
zUE5@MhO|rI$M<`_J6cu7wNbPzC`Jt7%XeQNs%m?FOP|bLZN7Fp>3c(#pW=z%j_iz|
zs9-`(iiB_@XVTZ0U9&cMN%>WeyC3HB5)_Gy2gf2*@;LdnmSS%S%(}~b)y_GecwzI(
zFr-RoflF6fWZ~7qd{m))^UXiGg=1;EA6=WcnCM$Q4jr=Lta>Y_1J*pW?4ZIYlNln5
z4m6H8cz8s_dQ-K;98o8)o-D@N7Z>x^zLB=2eHH^e;b*oBebRU>z9E$o<Nhs*_SCWg
zqm{yInq+Rz5Tce?Q0c(rVP4wH$FCYUpjo|sh;xAts>Z?KGi=Cj0@HzxgcFSZF29dg
z^PCVI_fB~%o|2v3Cmz9xo;|yFu%$91mubmZ^N%vqMd@cq`SlliLQJN#B;I#}ew*)F
zs2usX+M~`{=Tx5Rwyu+Up5*EdP29u)-yS*8m3Mq(1%TQKE!BHQ-oH0nyqbkgJ?^#+
zeb;PkX$ge81djim8g7}M?4cki3R&X{QbLC_Cc5mCas6chbA>4h<uMTuku%%6?gZ|f
z9?klpTK;LL%dVdE)<_!jSg!qQ!6eMRle(_^v+V1{l)X!MWQ^TO9f298)%&9~vRo1+
z0;Kw!3PF$(CpABTI}p&S0Yg3kdVx()B}*Iorq91+)w|G_;DieWpbn^~X$u2HE8k?{
z--d?19woLCLplN3pk3Z$1@~k~+do<?dGzj9FL$FJ2?QJ@4weDtZvgs_g6GLekn2f-
zJV<GfcOAo;WFzI(^C)T{n`oB}fVF2woM{3^v4_S$op}L*11Z-y3%%TdNCG;)n!=1`
zJ63oa4+z43<HV711P;X;QI{kvK?Oh<GGvAIu*wB5kVu0NM#8Gto!lvC@QbZkKhU+I
zz-ZG=pOR>ZlFXhy@vfHedhuoe7=K$G-a`=jI#SGbSjAooNb9OFAH}Y|L0^$Y650j_
zqe+hy3iO|VDmSr?AdLKXpL0At_;rjg33qAmd<pC415##S6m2lTo613m<BEd<5Tpwj
zO^1K{r;7;~*hbJHao`c{)$B`ZA?_eF^|8WXQsfQ%${f(H9l(+2rhEBB8GsY+YHj)m
zO22}%Rh_2-Xd2{g_rObPl-_iy11@+5Q5u~`C)04^>HzO|eK}VW$gihwQ;(MaMEdpH
zGR_BpgW~htw6FH#ehM^SGc+yzH+f|AwY5M_1$cIWt-zn3rEz%+>Tf-Wj!e<M-c~?7
z=^_xAr*OaGw-WQ6K+<`(cY2g%Wq_F{LJ}EaUAxYQrw|-ua7}?=UJ=hs`%Mxc36lfn
zJHKRekO9R@uq)lM!r0@;cgD{c@#H&}_2vAJ!gVVOWW?vZV+l^+dnjrr<R#+j_|mr-
zfIr8;Hpd-=X$M{of(vn17fR@0xw*~87;Z}3mbr=}kz=~zd5qvMn{{nMwx(=$ACQ&F
zjWg0Lf~#%R38ih;zh(WK{92t!l`2ivR<?x`Lh{RD|66w57i95BZwL9q4fwv<$w6~U
zccoM74&dDnub&YmCqdA5Bkr)Pt$IjB33uZP150YSkaj1isVM9f^EqQ~Hk0_V`<Cp3
zt)?!1;>}`2yEpBMR*48vV4!j}&rOR_)DAk&@dk6Xg1Op(a5wCm9A5e;%C_nflXI)9
z1EBAafa_hn_&at9@jSW>uz)Nyd*A)HRorLsVxsG>$oQ^-(LCJ$@u-JFw5r~ZnG*kU
zF~KBNZbGcUrR1PXL;*mG6<%!zJOIUe%len{?x<JcLBd3bL3o)7BYAj%%Zn;8*NL|I
z;|2D~h<HBk|HzvVZR^!`!z<t%bY2{JM=tO`UOjeyB&vjXNIc)E`akaZ)tF~yx8Zk0
zk<JSuJ>{JLd(kfwB0daf;`|P(fBQcnlZ1Ez6?-UVeqdI&_sTFsNy30SzX;&_GD;G7
zv1WFqDB{-QP^<7v@_$~ytm^;h4pqtO-g`p}JjMMd8;OMlZ!ajG)sjFa_$%g0^Q^g*
zfwbo*#PMv%$N#%UTBQ}^1dk4IrI<=-^_-wf&OkbzG6F?^QJYvFae3U;nM!GsX%Tm+
z*bD{F1TJ5;-fsYEf%=44;wxSzfu;Mw^U8AUS9jAPElVM6BXn1|;$9lP84*A}u<b(Z
z8vK8+6KzF(hFm@6)L~~*0##<lUO^``iFBYJbV&l(I#CXATa&q>O#Gv`K4?U>_v)-r
ztuS>$B?30$D|O({0UQdJ{-e4;nScbi`fuNVdju(gk^emkWdN@K-wK9@q-_7`JwJ!$
z|E~VO_rU*K5B;CyIpcvVV*cNa{y%tu7Pw*}_5YFfKbe4oAi&lAA^+dK@c+Z@m6aXb
zp?LA%3oqF{V`h8!AH&nUA+SF?Jox*AF6FtD_D{Gai<kUAF<FCY0vpa%f|378o1b$b
ziSs|fg(h%ajE+#3{b12o{@>FzQ&)!0izg;$FU<LBlOQ0jkARi?7rYn#qH|V;iBm7{
zuqfeAQnu73^7wj9For8huYI1i(OF4ahNwz~`TL5&$lK8`1ZE5qx_D9|@Y)q~?l5<j
zR#cky`}Z54Ekg;v9{TU;zk<zwK9aE2mVBn;bnmen!S8gI(LZJpJ!g*!46oCN-Fu)@
zWt0Zyf<PdlfXpg2n3?rko(pI6_AJQ#h;rWFRBR}7r)TY8M#iI@ta!*{0lh}aDnA~S
zjRm=ihJQhoDYsvUtI}IPL|UI_K-h@z4!-;i{E`347~>z$t?v4R@Z0s+Duy(PuY{zw
zRxv>mNaLx$^c}Qh!JXnVl<e{$b1n6RC?99Z?CDCnix8FZS0rYH6KZLhU}VCj!Y?5Y
z8G1$(TPRY?Ekf^`h_rPNFwJ+^9Y~-8u0Kqd<3Dlbln)Jv(6=7Q=9#S8puV#s7dqHP
z^`Y2>S~=No<8vq{C)a<X>XA9Me|V$$?~vnef>$%6qp4VUer2h~(KvV&Ola9Fmh&4~
z5qL7;9k?XQ+~exp9uo>!GlQ+VGqmuA87iT2c0;#2?EdOfk+8{Pk+A8~*?>uI!x!g8
zHVQ7+!!aL)>OkV`Ks)(ta}<GwUUv09@i(rOg*PBt@Rb2uC-=dP8JhQQn=ZO>1PGgm
zWZzwjjkk8iY<J&8A0V)bcedn~S-1t?<z6EJU1^%QXC$hY|1Ha}@~#%?itZWdCsC(c
zKlv|cmMpA(mWOyRzklnE-ZQPV8@8S+3x24X9tv=+hzJYMDqkW<jNqPQX_S093IfL*
z5}4IiW>K2PFncc+env0hPAE1Ny}7wxiIbQoQU9l(A2cyrKOgVaHdS;!e&R>*tIPt>
zHC~J7Q}PsyD}FK?zJpu$QNVP`kyHLvH-N@N)9S%ie3uYqV7Xt>U$8qX{U-*29wR8J
z7#zvFPDIIi_bnB6u43WzZBv_C!{<;f=oN~D3eh6)O33a#L*YH&%JOQI@F1`BTc6Xr
zlG)ErHN{*j`-BQd`*$!q`Z--<*=8;&LeF@(AexXX^ABa-H)SA{hBuJn&g&3wj@LdL
z^9{bBz3`?c8b&pe?ck~ro$a>vgSPjSk@03gnXm8_fi#Pz%$**oqP-fkf%4nU))eb6
zZc*MaiDK=gU5I0N;96Tv3`38*q3d?;Muqeaby539Dsvv+qy=3GE&&BxUw^SXHP=MN
zftVL9Fiba&p5w#4j&yCN!8$|*&0<9Yabh?E*!j$W32`SWSy0s<!j7~ScH>KM%(K{M
zT1jp_cQ%jKZ{1<HsIm!CIo|(Zw4b3_0Q+IXnJPA)Pz>*8!mip+)-UCHhz!txdBInB
ztE@UUH)aqm7H|e?KA7F$)`Igl3jW9-55=#u;>_qQZr#=OKPc9J<P2#3kGTs8s1D}s
zMr#VibH9^?MZ1GML2Wf|oEAc*eD}*O@>q>*9|i<gf39<gp!Y*$dIA)0W>!bjm&b)Z
zT^2*8yOVPGt+JtiQnj$((Dmqh!U(b+g;^hlD$OY|Qu(jI_x`!DSTieRmJN6iXhLEh
zmwY=M&-u`a2f`?|3+lFxsh_($h||F4lOt(m<9B_1Ir+FRe2`mf^xF+SH;ZbetY>}&
zFn?o;st3K|%^su3b<?NBdlKf8<>5Bh3%h~cPO(7pBahp84`2y6v@7J7(@aENz~X?6
z@4CN~wW$syo|^gR#Jk$FtxM4;%bb#NX8qVDc4=YY2w2@p`}KR73o8y%T815mwUra}
z?iJ(EmI`No)Lmn_odF6G9V0xwWH5~gJa~sDAo#O7R<XNp(aU~2>H$vtN|?aQrHY|#
zHMRVI0)E;}2JAwP*<=}R8M~%A1ChvAi-3jZCB4u@#CeSgW~+BDM!o_CxuF}DFF3>#
zh3TyVN_vbsNB>M{`=87kP{J`eIZGU<J+h~6J{%8H7m4Db%sG^8<gf9>b0c<s-ndDD
zK3hdl)mb!<rkBcv?l6ID-(i;eS|2KNzJP0-F_W*JKTHqDBY<*%CDE|cB;gG76I0ta
zCQzPO67<Ud^zfd-tNayPkLplyw@r*u;)^Hxrz}qUR6HK1x4Bf8L)_TUTQA}#mT>ah
z%rRrHZk+fr+t%;r7n&(}@n@UY@pO?u=|B%u^|-AR?h(A5pn)c(VcxH<{V{h!pP;-s
z7>BdA<3mKiJ+!Ci{S*3V>rl26mxsX==hE9Pyxe&Ydu?U7=RbQ{M)!n2YCf05MP*~#
zne**=!TiuP&rx|nVx&@TABQQt83I53Ni6QQlB_hw@$4dw=u{)2HD|XoTSM*e!D2fK
z9@r7*M^8sIuHf8hx#N;O9ZH2gop3Gspt1OzQE#?$h>Vj)ycEpoF)Duv$4Qx()xq>&
zV$@-T*@)sem#?vLFZroJ<n{-V3-Rcj$8K{ST}og6!8U1DV!Lz`VrZFc)u5M9>%A&~
zBb*5!_|L{dBek)PCf|EexKlrImtXW$djsG${+bd8&w~65nGULR=}i}u;BG||J&2Pd
zqf#NV-kgqSft1`n0Ok9FKyep=iYlMI$DuFzA69gD3*bKDWr}4|j2XYbij-L4LY(g;
z@Z$s*siGGzARH%9I+E^if<;v&`qT4n!^|XZj)@l}L9ZwHLfcLdN34oxr??)aI~+XV
zvenMZJ=F=Wvw4B7Unk<4k8hxNQ2rbyH{Wk@-FlCXers!*gjv#rZCW#{&o|&CAE<yI
zh$1lxn=+x1NO2lF+?JQA%xd0{k`cRdLvKyyk$BH;tY3LAUN3XbI_lyFwJr$KP_FSu
z3cHOv7n(Gjczcez^tefSWKVxwS3DuE=q>H8CU}p1<#zGueS3B?+9^NoOj>K%#g(#i
zeuRP`+&aJn>MEKUQXoi5-;*o!{iS~w{cyp@$^`&L9nX<oMEK;OiC~--+(`r4LE%g`
z@A}iiFJ@hGr?Vhxp-^hOH^{CXx-0OpR>R$XPmjeex%AvLEob)F7kh`ct2%+jMIR1(
z94(GSy2%7K(iIPRE$L{8`JPoXfBP$uJdw9S<i1f2<O-2W83z@8EYWf-=`R@lZ5FZS
z^fpbl@S5AR8k^bgH%cmWiMx;io68P!{D@Qd>5h#oQ|J3dX$u<sO6<zg&ZUpTo%S!K
zXxhA^0R?sAIZ=WS#VSccN%XL@EZf9S5CpT{8+M>`x$kEjB>N|icddT~GVh)D!=XX`
zdC1lvE_e46+lh8MZ=VfNbK`;dkjHVbX+3>qzPL!{U4~SVjEDh~@14QNA05gDAin&4
z&PZL%11fVVC>NO9s(v;9kH^y=H~hChxO5g}MO0d!gQhv+MaAaMAi}qLhND~+_kL(1
z3&jGN_&~JKB+mT^!1+-VD{g<vE4T2A=vX>s#<uD6{kZ6}&X?HA2sm%1+(cOM#7<8*
z8}X}uU9y>Sb0M1stwKjQ6_<jTyf5WM)kU{$M>jv3HN93WZ*`Ek^?Yy%ipCe7-tA+A
z$$}~m9`w6C9Fn7CgN2+c?h|gxx_8_kd+-y&qXrC;GqZr_Y4N_TBa{gMn|*O$48-bl
zsPJb+@gXu?)e|vEw5W@~Rs$t_FIerie0W4)9i^D_)XwAyL;X#Yr#IgxhfkM33YxBX
z6eKJ8d&CItxI(Mh3BGeWpsd75@T#MXcC|Qj7`FGrq<Jd|uI_@k^B%g}Y!P*dcb9<;
zc?QN<t-TI=Mo{lL_@l2&3ODIiNT_7wp@<siP&*5^R+^wFo37=6`MoBn-IR?=T5XKb
z!i)=C(>0WEc_u8{U?sZUu&w+(V|?Wm<msY*;X}>hpX~QIS4oV1QwXkB6V9}u{LfAC
zG1+Ml@4x>=9=6dKkV9z{EC6TeJr^)Rm_M9Qh5bN^=H<g>w}Lh&5v;h=C4tJo^LFc)
z)i}|-0z;uEZr!AR{5r$ZV2-4C2S~3LNe^0c|IGs_eO3PLVpAS=r0@ODtAdvr)P0@g
z3wQAwRiz_HTRQQjJ<ug%xR8G3C@35|_BesGU+F{x_l_UOn}T57qoVw~J5c<jTb~^s
zVM(md4Ik-cTZ_oc6Ac-U{=K&{VG%`^S|iV`#0bWp=F_J_a4ef-&l(dBokSecJLB5m
zOI=fxYs>-+AQ3EU0+gAiWW6l<$|t6!J<4s!V}zeAN!vbhH2n9+9ieLOw69Nl<TjMR
z_RaQZxe7W-3<to_gZE_uT8Y)QOkhduog@in&*MV-n8;aS({BZSZM8?b&7{e<5FXwB
zm_JVX_keEvv6T!P=srIA;9(qk9}8Ff%HC*AZU`AMXe*Hc-rwHg$9su1hf$RA=Bgv&
zSnrSP8X@J>`3FteL{{Nt)cHIKX5%C<gz3(9cka)O)^DR&O{v>a*J{&#JdE2AGY_tt
zdv)zm#(I{UojmBh4*xt9J#5X#n)whW5Zac5S@PO@w}bsHx2pJ1fJVHQ4S356fURv3
zP+{lJjgXzDoku0DHd5oY*rmR?jFDo$Y_AiF`2_*#`6M_-)RSEyGT1tqW-s;HRGel#
z!$sCq9@vvZF@&Ni77s0qQsWay3Drix^FdB!AA(m6uq9^_ap)Dx{)60}4Vt&VM#i;6
zn+Sd`h`h|01$D`!#_V>faI1kj&z;{4o>d$tqj;BxWqZp*1a_yy5FB&o;|H_p2k&^X
z3H+E_kb7Qm#$hKpWOY`6*;fZfsduuynu<l;n)s8H?%Uo?5qr@a#~whUybBRU!Xe3t
zR7&97#N1~}kPg)-EMdI%NAw?#KhcC+hAP4r#*#~@<kCRT#5o>)m#$UZ0oNe~`8(G*
zv7o~M1N!jaI@dkE-Y)s1#gp|TUaL6wqmYy?p_Te9(Q4mcvcA6_%lm{+BVIH2t$fo_
z)oJ~#5(Z}Xvt#mPl?#LUPV3gY?ro0T>A`A8r5Bl>n@-VoXt_?`W?Bk5cW#qLU~6Q@
z7W|9vig4zKG2J)7rlu1aUnNx}Dp<gEi|_vKZ$}e8ew?;C=D{+@onLb^(nu7hj$=W3
z*yWz6#K#mpOpHX0zDp+qlW6zv@#rrv`W0%vO67iRr9Aq2ZR}S;f?hEm%IUimL^H`g
z&BtqDLsVoBsVMWBya3|3oc5wD;=TQpmPtP}Z@4mBv~_`r`E(%0f(m<#;ON|NX@;K6
zy(W3#-$L0DPGn^K`3+QXRT6R7Hsg)%Kl-=1ModNr%Ig5Q?h=+fr@qQ4&Zr(4?`8Xy
zD{Bj}F1g%${I;s9I|_qlIl6RlIj6ll)<3s93&m}@7srekB#XaVjsAJ>Jvh#^P|hOS
zSrt~Dpl7_|>GhN0Q;_s5DR7xt50}ja!C?nNc*KfXDwZFC$<SASE+h%b4&w4(mEIT~
zl|&M6H-bOw9wjV`k+Gwof+v|N`%?_j&z6>`{)C~<e#f;p2<k#0*-VbtRZHHi8M&?b
zIWPi2;`j1#cmt8eZW4HLXXz2X7>wY<8b@Q6uAeHL?t5ZRQCMn$A@>vs_F?XR6n|33
zhI1>}rRiL*%uIoJ>*q9H7u1(^Tt!Ewen#Mvqxm|qm+fANJ#xw%nG6hu;Wi<&iD+h|
ze)AIl_w3pA_iP4+h9T+c*X@gt0Yi4Z#THx!>-OQV37d~q5N}hZcgUcUt2mM8iU1$P
zgr)S(M&j_OH79is?3unxdn)Yo+1U6qu&#YaQH-(B*-3OzNgrIAT;Uk=%zx$nT=!IL
zHf=vlVM;7Z&w4G`vw7!j-Qot~;6d}r+d3=!KWgsWR;u3IrHL$HR<U#<s<zi@r%0{n
zI^RYy2r~|<yWlt*ea{jGm~4)3Oudqs7?0Z`*0b*Jc<)g9i9{C~;};VO9g$*qd-N4O
z{<EUdg9QUt^1Z3F%nMeZ1l4c0EMFos=NT^KyrNfQ&R0@O_bB<@J2j=kRgA#3lhw=*
zxf|$};p`qJ+zHbtqwIb5Bgvl1XWh#FXCW?aUma6yA3gs0hPUZmRM1OGKdPKAgd+N}
z|Hi7mz^0zyBBjhTz2_ap9QB04Ohd0TfoZ}@4r{$O%}9K7A>xdihhM@ksKY*i2JvT1
zNmWDzY=x#&l9$E%;d(v<+0D0K(F0U7Z&$*9E6ttO*H*pbMc}BB7cTdtcR$QEhoUZq
zb8I*>go7|4qhE?j&1xO)U>A8Vd43*f;oYt<HZdNfwNH$6*X}HP{<;3VXJEJSv1spQ
z-RD&i0pX0`)K+C=4J@O#Xr}jze>-{2onPv5KwzFUt3Yn@U&%Fk6VdDtV#GmkowAh{
zHy-V-?8JynoXGzyXxeo=EL!3A-_Gk;qv^8~ePc=TSQpIZ4S%d7Ox;ru&VB0l0B#zB
zI-7jF=Y_!N{qa71Q6S~<CzHR28DF((zbkDSo>5`;){;1OX?beMCMSxwzTE=Ea>ClX
zfBIA6YoVeMq%VIMvHfWa{QbQwq5Lu1WriEDJQzg=(1LgbfoJf2*<l0vyZ`RRNnogh
z@|O7AiWl_f{D^O@B^S56WIi<&KC8nWC*gR8Tcd^pjx?B=znK%dC?EF^d$s=k@tmU0
z!h@^zAS`YPZ^3G|0ZzuM-!(Z4pQlMX3eCP=y-iI$iP)@Ji|WdDWAxo5irAlQ#L<gB
z`Vm{ycpd0a!CE8Yj1=+C;ZnEOmMYR3fT3eaX{vawr`vw8^+#`-!@1$b8h=7AT@$MY
z4%q!QE!H{CBpO~S#J*2ejnfc1BSvau&%Dw1UwHhFrH|Vuk7?)i&9_JB4grofdl;JN
zd-kZwyBjedg76a5O|9tBH7)BXvW#$Dw=kuBM4{S$5hD8%=1S_AGN^8A*<;8(xkF^6
z3`wrS;Khv|bjxsE_xEZebj|7JB}^nU2(T~p+&UK|iC1FQj}f~tH%;n@L+$#dNmmbY
zAsPZ+8daxhtK+QAaq=e|olUTF2G+YCim_WfE{jneu6tF4c(UfgzJ6lz(=7Yp+~dHL
zF|ah;in;55u&S>{&#<3$PF-fH$duzVZz3iAOI9oB>({T@H-f8#r81XHzu9N|+R1O9
z|6?l1B*p`s09QOjsW7+b_e4AazOH51yfGx~I{i)<Jc^iX#=TJcj?I^{m-pQr8pe>}
zBUToU?cP6abKcYM(BE(Yu#}-32A2MmD*gUjyTU5|g`9;S>(`>j>s{9r6uvq~yc2%F
zdv>y5q#-usakNzR*Dd#K6Jai6oKJ0ZV_?`NC*1zmP8*E|l!zx#oh0b0>d^6TPWiDR
zn<9?*B=<{ePtqxTFdt^!C5F43Jh1c=j=A$>vR<C+)GzXLIe!Suzn2X?9fxAWOFmDP
zu@;66U=f{)tKq~0%>ZNVQU}?}(!0-oqcif<ZkP_#$#MgG&Fx>-dzm+ej{AE>x0y}u
zL&SS>H&{_Vfz|GMLJQz{Xi1+3u{v>#60_GMB*@WpNaeAi<v-m(-h6B&3UxlPy4zRH
zg0DtYrkzWL6n#WvdS`>{{=9l85OqXnJc*5gEc6E0^TkTolGnlgB-pX*_IqvisNkDl
z>=MnD=vOH4rs>PZSW{;`o^Rf_dcb2sDo0t-u%aw=XDq+TOI-6`jCrbL1MmS9MhOZM
z$L1rH=6?yNs2E%NNtX@oXz~xVG~0<`_vhGS{-rSKV+Y@QpnLUO$ad<_9~G3PUpyG!
zRDXf^=AjZEU3g%>kbyXfFsrt)PPia%m5v`=`ULY~XS;hb;=vZC3_A5^$Nvmd<{Ala
zumBl<+jq0q>t=zw*`YmN%4@0(a7Tw$&|C$~7Gyfl%X>YT#I#@TnXt56grGlFT*wqH
zJ4u}u8(zm^am{QeGgZI1PAV^$sk9L9Xu$(aLp^c0wIs79-&YcIoUR5`IolojIkQBa
z;;f6qs|T^vm1;^BDtX#V!-|LMW8+VGhZrR$>UKp96Yp?7Fh~S)KgJ*C_M&|S$-O5W
zC-Ter*&K0kMu%dMT^P)VwZeIhqpC&ZS?L{>0Nv||gD=uc+bp6%MM4Q-FMFoPP}<ZR
zo7bGs!zc`OikO4Gt7U!fHRbu#VW-}3OAR&}YJT9QfYQ)XNeY>`pE`?kqYWRkYHl(i
zT}PsL2ha0hs(UD$_S}6<0vhNN=W;6crE^KUV}-e$5IXH2Dm@;xT6oiMx4QyHKBT6V
z0J9}WofJKG#W|L1s$!P*Hz^FEm+pNI_XF47Y;Ks8$*?LmGmq}6_~jE0&JPEve<Q5l
zIJ=)GD6;sQu@#oo2n1Uot&xcUN$9KacVzZ?g<tO68E8sOsA^_!8i~<mp0Z%aVLrpT
zOh-OUHxp&wDv1iNYd+TY-^}t-N=l~>dsmSK4MS`$nNX&PrN2etmYa6-P#FDB2@fS`
ztg<sc*f;GRemdXl$q+kUCO`|T3Pml-RusOpzcB!>es=AJ<1G^ybn-9omu%24PrQ`O
z!08GKKK$dLu7BBW@$})NvLpD7jzh$3&Rg7{Pffeu&)B|<I!q4w{au_wcM*6glSE>A
ztB>F@A_I4cE1FJU`|thS(VN7zDd=UAVdnRAWoAY<`iUzo0m})EF~WK)Yk7R3h0g6Q
z+0LhYRi>+kP1*>|tjBdwEt=J)r09a<EBpD;P<EjII@ug~|5=;>?wVoxUblWT1wKa0
zTZVsZJhC;0B&*a!b?l~0Jb61Y=d1Rk8s7tF*xk~Qwh~N@ux5^>vmyf!>`JoAd~5rq
z`SUz3h|hkaJTTLt7+^$P>Dox&4KC`QAR4P@Ue;^PYi3e@+KVL(KbFOo<Wb(&BlNRx
zZr5t>;PqSaptb3X!_Z-0KzxJ*KfY9_RXui5I#{q5rr%07?DQw>r(VE?4e=AJ&TU(n
z*NtQYE5&zDf%Kwwaq^PVbsGM0h1rwYX2zetufM9THvO#=B+fGDKmNjtBnX{JyAiM`
ziLY3OMz)^?J|ueL)fpD+^dtuT$%ki$g|#Cju9bTDm}?aGHuYxjXVY?_kJ>Y#cRTH5
zK$69^^C%dO*r7^}o1X@BF~!R6^Gbj`L_Pt9fx3Z8!|*AGDg5=lLyzsci-@CYE~eZP
zf;P=tc#Q^oyq79(a<G1hI?*;R5DwSKo<*{q$8w)x+ri7QuZ1)@=esNh8CpKIurlQt
z)oQHp8pHyzM*7F2v(S5Yl!-1HS^Q)s?z|lS7VqfgMK22*--+fk<$GJx`;imn=0R}9
zqtdP;k!Eo2Ma3?h_&X^&nm0?mRh<)`iZYw3Bik_VKRY;!^PoxscX;llUjhool!N^J
zF_Y)d+c>@FLW;++6S;%ePfn6>4#r}vae7K}g$rVe7=9fmCmq(mjP9{H3SS9NgC7&%
z+v?1bPurqX2T%AU)f<3LQXC21k%Yb)JYyGmnG>v|eSeIz*kWI2zX6{bE9MVYsA5~k
zzvtX0tg~$Rb{cEb9nC*;O)TM%aVR?$g`J!(^Ev8QY}#sjp1HP3u<CCV0WuMLA6-+#
zB{QIA6h88tnNy+!U#1q<t9(7GqrZhKDQI|sFB9zTCT-9J%t41XOpFO}tCn85AM@_q
zI?H+a3&H2QGnl%73fz~$ccGFUPGe{9y`1#|yA{=WTL1{-wigo+2PfyYcT8}kz>_I{
zOG%NM2k{pcoKKnCs&z7fLdVF<z~#?%&<e*Vra|{UiR}lXiT<_t9-P?A-<FveJ`2A+
zT8p}8AALHts85r~;>q!$i}(C2i}oWNk62niGSe*rec=P}NRVF|3tP;Xunl0)1;>M|
zZyz3H&3r>A<XuV!tR9>vPkuj5;2d#*VT>FqeDwzrj|+ejt>VjoN$lhNaKSHsK58*r
z@}0&LB9Sa<$-N^Fw2?q9yUaCeAdooscl}m+v_XcRn#IAwFiovKcRmc6%MKnR!xtbp
z>tCK)6i9u2F^ZtYXS@D?{ZOK7lGVj^^NDr`f@c-9>yDD>YN{5R!tX1-{ui^Fpm`?H
zI4!}?>2!&TfJX`c?xwK{3jU}lBe-nFGDqj-p2P{83?0NTJLp{aJwIU2Od_jSt@wVr
z8q`#QZ#X>rF??E)LIwcRWtNfM2hVs{x&nHK@;-^N2!WU11ApTYKU9@_(##p_)3)?G
z0b|0;;-78QQ3y&y*VuJo(L7-pMhg)NZA+?nNu`Um&13k@{JZ$;{E(xVdp^#lKbjZZ
z+$+Dfmp1z=W<%_8<b}pCT3<(S$dhW`!W4#Y#>jBD<q(KljB-Pw9u8E6ZEY*-u>pu%
zxjR1js!FFV+{BmRXpnfy=nsSFl%DHx0Q1^6#A$FWg*+wi5nUUz>-qSn+>hFezPQj^
zE{mj{^4qPyCSFL(Q4js~xKtlyXdIb=Gj}dRb|@*pb0PCuyOXFrGv}yhqVQ!Uk2xak
zhefJ42E}?ycmI8!1*nOVH7*XzH&$R+|N2PT{vzqiEP~GhSx~>2U&xhpobR*Ky%o{k
zup1v}#BDX^iB6TA5Ks_RVqF<bC*|90HZ5TV@?;#K_?_Ln0%ZmfKzQwnZ$aU==O1Y9
zy37VZSDVhMXI=SZPEcPPKxFp%M=w{OmLHos;hmKiYMbBxi~~idAjTDeZi}RJKcTXD
z<d~!ZK?{S!DbzyMFxERv@^x;{bb?B6jL4>z3$ILXLps4fJecZ5Ke7Xtc^KO2!d1ud
zV??RYrDS-|@b*R^eOB+%;?V!HMrtff4lp__mJ@9oG%Z(7^7wvt!l+NkJ;ZhcYe?BY
zu*{K4OwF-(&IV#{YQdKbl#G)hsId8iwiS{G>%&n%DS;A|Z_H`$VT$jt!kM-lprtt6
z(B=Z4WStZ>CqmCP9i$suktgs)lf3J#`Nc1icKddFv-iQ5rIF`Q5Y?K-5d>O&z7z(k
z`^DDMa(j&)-`GibSsvJTOi(zqSL_QIT>_syzG^<IGRbq-3p>^z%BuLP+<Vf+NyAO$
zrsxwnfy$O-jHzXf)VS?l^ZQ7Z`Oadw2O}PFWb*>J#U;!_M;jyKD=<<bJX$nuXL`)$
z0t9970RB-^Lv3lc-@5qT4~h8q7opLiKIgS;)EqtU*XrM{^Yq6fB|xXg6UER#OG`<B
z7lp8>MdETI7&ttn%7bN`#J7rom-CRkT|2Eg&G94Oy4}8EEsZ><`bo6Gywp9{cg_P7
z4Iizm^dkx?ag)#I{I{srQ)}(<S$(!@W#zvd12zk{{wlQ39_?9`4>|c?0xblV6&RXP
zZL=Xk@}Ej-@per>%xZIIejfJv-RzGHf{HSo2KEIS-UTk5-WT>QVrMwHgHy@dn4*>e
z6YL6qXxnJgD&3qsLzp%8d#yona3AWd-l|;$pF;CK@)Xa|@GP0nw8x162R?`HN@AyE
zYjXHbej0&zML@a{S*|w)au-fHP9Qi9%FW>k68C%nPg3XqtWFznBn*J<hrIZrGMJG%
z+MUTOzQf0F-G_roZqU$~5WOs`=q5aPW`nORwYo9Zq>wfSQGWW8q=R`@r{slE)EeXH
z9(@)7BDxv;{F&Zudoa}5TTIRmuJ&p{%ara?JwsI;RX!Vvbi+IqX*)qgtN;FO$Dy{g
z=W>1-)kys!3J265)$2T)Tw3q8vE+gbc^>=pY|QW~P7uaN!sOOZ5>Z?HU638%drHs8
zWD}b)y$1^T9N&7e$8QL(d-T54{Gz`Ic<p{d!An{FFg>b>noMr9NfTm3j1RQ+Gz;2J
zw?R}55w{6QIY@VDQK^`g0U|bnNF;rD`0wj-&p$w}#3_E=|Eb)Mg8ne2IV;BQ#E+X>
zrTqmD@Qywo5rxrUJh0bK(vN|A`eb_?Qa*w>DF!c#<(7Wez%D!psJw$b*(ouEn`TI4
z1@fDMVl)qhQ<yawK$k;YJwEe0v#gE}?KE~6rg%lg;|KYkwBAWlmMaW*7Sp|8xmKg^
zNWr%$en?3kBq3|9FZ00fPYn#wwX*}_ERe-yvV0L$(v@R4;1RSriC&Bh)-qAK8nTcb
zdsfqzf!6#AV*mD+PHfHyt^$E~yCpzwznA)vu(UqwK~Bj4e#&kN8i{jVObr831q?T}
ze54J1mGB-2O;l3B%cUgZVieWxJ_`A`?qb<K&lNCD@B#vi7^IR=6Ojbdw0?9Hs!0xS
zcCI%~TV<_BP%*f#j{TPPb7nwUb?u0<IGs!vxF7^pk+gI#N=w0?oNK(!6*_^|EqiON
zk_VlD5gGE*IV)h5dI6tx_5FX}7)1&XlLU;g=?@tA78?G}TkyLwzA1{fJBdg@>{gH3
z1-;{)el+SBS$<zbB$1Jux<@oEPDdle$XsWBC$65J@sBz!n8&}BIaf%8e~7_#mf_eS
zQTInV&tCyAuKePoFgjFSu+^Adn|~@}k}2&CWXRC9SLWBi$jfxm)4I#ZhUKH+W8=iR
zM;8Zukr)m3_R}*7NUqRB_o2*CCEOYFlCx8`Dh*=aF_|m@xl1w*P=N3lLOPpacTYO1
z_St98L%24(@}1%c&m<l$@nEnL^j~<8*|XYsEystqZn&ueZDj{3-?yn63AuT>#Fdw?
z`>P@hAyXjEZZ*yrbBXvtCiO5h8>o%>*83W<wQr|6=fOucVj0oA0p|1uHdaTu8{szq
zo1vr&jR2>f(+t@G$w;)hDmeGe+cUdG=?HLs2*x6BUTc|-e49F~_ztouVDBr?e9rvG
z3+H!PBMg;*x}~Q;17ebal284-tuDv*ZhD7nE@B%3#L6Bc(lVjS?SkAl2M_Sgucb`;
zo;3IJ;7-u!!9^$G3kx>THI)Xi+U|$HfcQgYNJm;Xz8|cW$wTu%GVHzEc_(*iJgT|@
zyiZ8*z9tp(ffe)`tgVu0>$#{C!E*0>I7!T_{Ogxr+=23P_74}cEkN-qdXzCyXs1Q{
zhoRdHgvj+zbnn={MZ6R{uyor;S)X?m40pjlECW{w)fag`^gs)NtiI_T*n1QCd=myj
zeEJ@lI{cS{{Ha?|Z52<;3|#^`iM_g0V2JO@&R7bOhEZPwP!63>n8I1pAS{M~139Rd
zh&u0j@%>nQ&qF+WWCjM|;Z0=!Xbq@Yr~UYm=6xD$oojC;n25Q-Rq4N&%5x;Msp!s4
zvmwzV{^6@cjb*h0y%ilQ2XpZNg~^&NFs^tLKl)Spjq<%>y1UvVeI)ptNc1dXzmLhi
z!0^!n@aOQta`Eu@hL5S&1^p(wFai}U|F(zamc?Li(Dwxp@2v)He9HdW*Y3a=-M^^}
z8EYGge=VGiMBDABx&fh94{717dwzrw)U273#UuJ@-m){J6e_#CAMU>nLR#@#Ka9vh
z$6i`c%%4TNCg8P{*+&Pte*0^-X_B_uuZfi=UX_1>83BFD$S$R-k~#gV?pR9=eOPR^
z&K-z>X_C4n{}#(hDjm3`i^Kk8dIl0Q{j$6_Lw`PSy|4cu(vk6MEGmhTtz`;$9{1D|
zspe*%tn{QU&oGO<Lz<i?5u*j|qJvT0fY?zHhFVY0^7Qf5jIpfWawr+lw9yaB@3Ula
z0((V(qv#NoMwP6A=XHK_35M>A8Z=ifos0;G_RayV`Vpz{oFs4$+mZclIrw7f3Ec(=
zJUQfdWPosM87dSs*Bn^j7MyhG^~;oDGT<(iY;E>HEV_;VFpFqRuTjH99kE3%18H+k
z2-D0Njwdwn_a4kAUrX5lO-_33LOL=oCa2dvS<XMF=7oE4*|Li~V+1U{F0Ek+WZ!sB
zm!xr9++LlfsO~o36YNO8-XYZr__Ak3z1WW$BaO#Lm2aCU`C%15(-X7`%Sz_xK~<HN
zEQfrNc$1^5fI84ht-hYP7xei&_J^8yIwdfE3F>!-Jg6Q?FOQynzSZNp>fyM%1y^8V
zKRU+_F_D)|2e8&XsfAqjgFUED2Skxs?suj#k-QI3IjSvuzUG{7w$|C&7M51argqEz
zH8i?DXkyr!UapWCc52GLpOrg!5X$`kHOFS4u&B0umLdF4X8C1B^V`=q0i36X*nJP+
za<G@5RnD*a8SYLG?<YncA=2%ZwW`F{jWu0jwjXsL5av*wUpIoZdQL-RY4?qq|Is!V
z4|^?5uElocZ!hvy2Xwh4qF}vk*e7-L;$pN%5s_>wZ%EHCs@d-Lt&$xQ2!QZ&Rrwts
zhgwD4MKf8x`ggM5uxPZQ`JKK&Cx$?~OXEX%NFPjy%k>sC=;0ff5J)`6)d{osk%C!U
zvn2X=vDKsK#{_MR;3wAo^En?M{@Fg+4)M~?tK*)Jl+1D#Xj@DS%Rdo9uH&U-8^Ns%
z-}+JtDlH{7Hde{6-A8n3ZJnGolBe8!*&Cg4(lZxQSfmu8?_sU(7{UW=Mu>p<JE@g!
zcp`T1?s#xX|NKH?_5hjZ51K<9hIQ$k7=L0?dhm2nnq<x+ZSz%N1GklTGKVqgB&)V~
z9o&<8GeE|(sPi+(z`u+8bWY11yvKeSqj<Mf`TQI)gR=+$%`}gX;<cV%)&>{<k~Ic-
zG{xP6(oh4~JftA^duSK@#n=u*2=_O7@M<`Nb;jtSt=P-%k8YNc!+#5zz9;<QC5*}s
zmjhP3x->4Z7Y8ds^)ZgHIu7F4thXOQ2H%c!UOuTMP|`v|IwsY$4R^CAo`k3CTu(1j
zYXruLY{{jc)PmvX?Jjf?R$@-D@ROF~TT){Z%;7=Gc}OFnzfi!~n4r*Ez-EktX)mIM
z<JSvQc7)e(gH}mn`(DyqD{G=SlV0M_N7qLbzfRE|eJWk-2f0253%CHhh`74}BcJ)1
zSv&9@d7Z91em6lWoTvIvZcQC&HEUcZ?kR}Om<56pi%8?>-+9l|4=M?fIhaqnx%e?E
zdc(T`Ak|%$wL<Jmb}CdQS*Dx7z8F0zJ5$>ZB*u#=H(4mKyJ*6PCs2NGX!{Firo?fQ
zz5MQaECES>tabn9bBE_;ZmI>D7Zrk@1y2GAI4fp$5OMP0w(08sid-U^O78bp^|~{h
z8<^9JeEVQ8m~&}IU$9=^aNOHIcNTm;qwgg5ro6Sxo;lY*P)6A*KbcsRFH(&8h&Xai
zAL}WKWYe9d>J;BS5SUnS*U(oMAg({HDjX?r)YJoN?t`ZJ{Ff}=a_;dg%O;V68qR->
z%fAWf9S(Q0whMMs*9z%}07(|~z9S**wkvzb(_(6FDr`o^M>4=W9k2+)PT&m1>~Wjg
zaoz{9=)rS+Sy7}ewu+AWmxOC`0^-XX8O8ND?!blqM(OB(-u<}4Q&G%$2<kS9XOk5@
zG`hKV)2zuRTM}DQTB?Hfyf!bss6U&b#QtMXG4*8c<I%K4^6>rXo+unYJ?>V_HeILx
zl~=rH;kE$&<8h>2Qo0z4u_LyUS_gg4{2h$%Z}2^t6_*J-U36Y1YfK`>*8`3X+Pv>W
zSxK7a_ze(aF3d#a&hv=CGl-n;869!A7rce^`I_&oFyuNfK_iV{d~<Ze^=-Emyn|T9
zWo%$hlQw9b-MTz<?*)Wi<=%|{x=tM*x!qOVtIf!LF1j#aiyMD~O`>(?FI?E(m`JYK
zRw-`Uojki35?4~p(NN5xdIKQd&wmjDYkxUUqQ*PX78+EBYHx#Za_Bt1&&(31&?J$4
zt#ISR*F5&rinN`{i*hnfxW1^hfXD64fcUVGCU%z}>`bgP0Ri|~Cib)bIFNxPC*Juj
z#C}S##g^TP*u+PxIT#H&KkQMR1->3tk(2kyi&N>=EWecK-wRBbrCC!MTXm6?>^XhP
zPtKiTvkV4<Z~oZIlMmd1usuJupu6M4u1_SH7|=bP`b&LlloO;>cZs*>gc*lws&HIv
zZsQZ=efWrU{e}05GzRURbwj3W7}Az&HN0Sm@5)6;9YlINi!qHu`{u+2x6{e5Oh$>>
zoIldvap;h-d39(Yi}!P70ZN+>_b&QZkuT<SrzMZxkihc7T%lntSAdB#b-?Ejva+D<
z%OW`WM@_Lp(;T1Il#rLbHng}ipPF^Ui?vG{-{Ma6UBDM*Z`N5vB|n4fm)c%5g&|*7
zJ>@gzmYO@5zIb?|%vEr~I2kxENZ$Eo*39HE>`ffam()#Q<Q@-o57Cbs6o|9($Kr(z
zic<Sj8Ru{<E(2|~R_Pf}KI~Gjz7=ltr{=?OUDx>qCeNi(2DdLIEfitO?Nb`3bK+jM
zQo@9k#Zhnzt{j^OC~MaUGu=fml%uO)1mbMFB4J=7dul((R*bEBL-bM1JF;hTcvtn{
zH65^I`L^B{a2^D^2?jluFBGp!0an}2w$2B+2=p=6W)6!TR5%$;h><V;3;3w+1Ay!J
zHy^WV_uAq+P3sxux35PctQ|@|wX?XiG#3ohyT{_te|_Cg?AVw%bB1|R2V|X*7Ccr`
zeuPF<QSeC_1pR5o62?LsEy>}zJlqhJbGLz=#fu}wVh4T0<>>bF=7sR+%qT?ZI+Mi;
zYK8yH$c3=U30%~Sw@r5-=M*MvFhVw2c>pAa<GRIOal2j4mDMktxpIHfazwYanC9{)
zk+Pk0e148dkfsb<xNxbbF-&J!bi9t9m2<5kL-`#6?lZgO1bv;L50<<o4}YFviskX)
z?(1YaOz6Bgx#(AeJ7Mj=0yOsO;0Wf^;B0S%34Us(%14s--bdd@!1T0D-TKW4bXI^n
zDfEkypH(Nd_wl$Te!PjL-)uHVKhf10HV$Z#zaUcOjJd^3FpC&wh*e{;KR1=XS5Ds)
z;QLq-i;bI$g`qbpI;pLXrOEz;5JCcvJ4C-{jK&D348IBoM|sHB%zb(`HJ?y({ugl}
zOXYbH;PZ!r`X5{0A}(NwNsu|b>y=0*=V!tfk~jS4XC33U&ch0)fxep<0@c4lsuYCY
ziJ0Z53JWu=Lxd1WE4Er7xY^<bPp(aD;FtR$GWvL?fvxF3AcFX+ix(-REuhB6%Aavx
z;?YcD@)b?Y_?itw?B!G{T2jS_4UTZ<`CTk!GgPzEH5A@#!FK=-Po2rhL|-iLq#TDO
z&kK~jnfrPX2J92E;g08bDxVLJc7^sZcV0+;ZqGmdXr;4fjvIZC^CX+IS>Abz9*j%t
zN058+C{@eGH*9|>9<m;2<spHl{YJk{19Ewlz}D^`a9*>XHy(Zdy~&e>mbPHZ#rH+y
zPzQR=%^s+CTWqwkVa<Q0GP-dXUmnGa6vq)x8ox~DU44eKP-uz!&up76u_RR1^6Ian
zy2!cRdT^uj{9}|aJIs5NL8<Sfv&b&uba=|}vFpkBr#!*$w5g@HXDdQ=nnZX&)CyxX
zR^Rypi4KHy5~{6Nxt0&YD;nbF`UPPi@k6uZKLXybgD$H)4`Q$tk7PN#EL%E$W(1V+
zW7QUZ37akioXkMgtohhtw<3lXKT%a^AnvR#6OdC-$i`JR1Bf}~>ta%qPf<BJn7<P4
zTvl&4Sh9IxewlOPGUS~@h<TIj&>*JT&CUsqz#ajiv{W1>A**!J(#s<Dnv*W$-lyzM
zM8=^Vaa+@%gby$e+OLb0OOsqs%=YmhCeINk{k|Hv_}nD3kIpi{h~RR5Oq>yqC6tK6
zl@0JOoS7y@ILzppE&BWUPWO7Z8%^IC8PNcHbK?$u;Nh63z7sMpkLzi*xdyZkKVfQ2
z@M)$-;6>S--aohA(*_<QovIU0%`p!*j+~hq7Tn1kA~@)!V)#JwD9pAk%e11y@mG1J
z<`WVN!<C~R8;=*Xi>aj-;c|ktX)@DOZ<%V7A6`_@b^@x$-AeE9O~HgWSOSz}&_r1a
zfDb!kd>7$-_#BHS$NR(*eKCw+lbwO0Xd+&=wi5=nIK!lLyE9xYu5sER*f2&ygj}i)
zNBCk~Fpty8fL5Th8ccow&ItNbbusfE$Ruc@%xRlLY|tE1E_X;y^OWKSvwua^wXD1@
z{$7D=B=y9Sv7DUj+>Hy2BM2txCEVqQrr)M$J^Exnk~0`|<JA$VP3c9LXh<4qFbxyy
zUKa6-nMFs%%P#<!&A(^=iWv@=_r%ZSfse3%7iB)&1hh|w_zs>a85%2~p2vyJ+pC3C
zg$Oi>CrelQw%3d}+<jiaamV6eSyT@0F7EJaNkuZ-8^Oi8Bs6B~Vp~e%Aa5gl`6X1L
z&PN)%2t$Os&0OT!M5)Ci@Vz1ZSr6ir!Hk8NbK?72!g>oFIJu5USZP$=?i;ArbV0r{
zSY~1-8g+U$96$KCvu>LG<b+0%>~Rn30L!h!3uxm@shrf%@weC(F}sICSoF;aTWv$j
zf+N_ENCZP9KRqFb@6Vgw&o>kmz62JF`Nqy+gWLD|2K?}I(tAUX#Z+yxp#3qc?B{c0
zX&9|g&!_Ar6Rk!XoH3Y|;m)w2`<OeYO}|hr9F5y65PEku7EiYJxqt&2_hX81_0uP-
zbCybm49(|5pIp1Y5f1IS#>K7EV@MJa{#_i~zM)K@s*@bq0@2+cwE_RwnGY$Bs$G?z
zy*`Xfvs2DT&^LU4gHgF0fMkAP;oJVw;)_jrvB0^RE=KtF&(_vEAt)SrdN*7jLl>K~
zCA8H9D11GomOHOP_ig;jF9fwpxJhf@At(4~M4Dc7@26Cp?V^hiZ<4WD!?eskRZ8pM
zywO(2y=hOBWvleJ?bRU}R0eh5-u%+WE((P|EhPkxQ{8`snJ$rW5z4va@s}^q$4I+;
z8cw<w@mxLwGdTPT+P<5?RM#f%9Xy2~DX)HGXBKP<<;u?r$Ag2AI!<xynG~km?@5U4
z&&LYCP#3%MfGyvdm>mm#?DW-m*!|sqWRE3el7-ibL?EuE)f|thvbz_}KRcA_6C@IF
zHi5C>_xAmc-CWe0-sr!k+cU-lcPM#lqZ`Bgnx`&azs|8{7NmEN`-=}38_$XMK5IN_
zlg57*-4L7*kC|CO+8x+0R>075Qe)$xI(){3DX6I1#>4z;PnUN%uD{9;bR>AH5gK&Q
z?3>le0v-BWTp*cf=y2s54xBwG6}gEkmHDr@e}k5A_TcwdvliEtP)$s9XE)RL-Z}qe
zU34ez<mU5r)BOP1*G0r|?_IU#y|cgGgN0;;iS-uWk|*%fl?mE~U|IUtc`TCCmd>KQ
z2cY{SyW!{Dfptw;Ger}RyN6v)A~Y_JQ3As!^Bk=Q%y)KREAJmN34xVGkk>xzqLaL4
zgNn|s53?e?ytP`(Hv`noA0R3ZD?a73F4!d?+6CwD&jsLfbs5@lwFE@p#`lRlYKfe}
zQ=A<sAP0eT^r_;=?7uFyZkWUlL?H?(2?a?zGn|{iSuF(U3|!#kYjD&mxbNTkz+wh!
zDtO7>Z?DlY)%wx>040E)l(698ja8c2HN6CF5}sGL@1>$ck676S?qv^)Y2co*Av$>;
zHFvp)CJF!Z_FZ~{83@t05;uL56pQcT6gIHqPFlRI_cotrI|{yRh1t%66_laKNYyTm
zl{bA4>O}Hi5?gJ|+D`iX>)P#;mRb~ebeXot@az*qW?xNT*Ku-&{we6azX+FocQSk4
zxG_2-{RV+vsrYuL7vhFF9w(Ue{U<W(-breK81)zM{pG=yUL>omWPH2ep{E|w6bgJ_
zg|?~0?x%T=`Fox#e49DLLk(VKCP4EKEfMp(A1VEh@`}G)%->kHVL4Y#LfBg3zy4~=
zs`u_^9j-^g4H_xm<Y4X#1ZH5I%)3H&zoW(JaD%3Sr+?I!_rtg`Y}w>}1~w`jRk#6q
zz}*5GTDnwfeBe5KTez&MY&}g6^NAN9$mRqNTjIa?z+smJ@aS|ub_#+t%nCr)<y3SE
zH^nVcOnh$Zc>h`Rd8uTP^Qr+oX}Y~k8$0eeE+m8G73uQcv!2CG=OpwN1lEvQ!E)r*
zdp6;5;$kl1en>vQrt7zNG3TT-tW*m{sU;yE8(wBR_>sYNwV@-MCmN;2r3Ec<$MzSt
zdwf$DLB7QI_UpdjJ3ScZi#zZhR5O)G#~1tV4A5yYIsYiM%k8q}^nvE0?#{3I4=(jY
zrTH<@Ca8CwAZA<iSksPjfD;koVh*P9Q3X^*ZH8Lq_56QW`tES5-~az(?_-a$DO6@Q
z>Bxx6EHknrC3}W*jy*H$ZI4u_%*f{0BSOeN_8!M}4rl#dKELmE`Nuz;bI<4Vv2I?q
z<R=+J-N2Rfep}+qh)uPzf=Pq0&_sJz=J&IeJq@Lfp+Lpg8R@jGsR+eRv?{p<^%|`T
zUucjh^lU|eM|Cc0C5rCz0ODI4C5*5T?0FG?F)T0K%uNU-&$R3@Z1D2?=8qs=r+zVc
z86Z~B2MIx&(-aYfJks#Cp(IxTgodBj+{-7`f#)A+(lO>q)Vd{dAvoRupiFu%6|!o+
zwatI~WH1bnKI9|cu~qJ=gw07>CB8BL)0Mle4|rar>Hjg4)`3#2ma_jMROJn*l{kU|
z?RiiG81!?ZO;LTEZN+6kMKixDIIlax(7ii#Ja4$kvfAjMBC)`dXZrpxih|H318eUN
z>k+?I(NM_6+>g`Uq%Zz3xg$E;9?hkXyx3~&;WzbhAww1cI=TboR2J?z92F52<8YH?
zhWLNuJ>vGJo$8>K<<^^u%fQFDAGOpVI2sus3<!I>bO@-NPiOm24%t)ga0RZdw+1?&
z*bf!Vgy%?E#@;a-diZ>NXvn9R=V!pc;v$V94K=7f)~M=c1-^2RcA5rWr@>6B<olfr
z5eVf5nEbdJWGKg9kur~if(;k79EcAsVJ89&NakF}>TVlM95h{z-+e7zZ-Ed?$9(R$
zz0ZL<BH_a!@ARt%F_g8OBT}c#G6MxZ;O}HZ`${MP$MUD+wE_b`Cx`XulE{z<D-s)(
z`!it1_`^YwuZXx5+SIa-tU6)3f0Vq~RS{7V9lWGQ)O%CW_3OvxN>Puj%$vu;&#%AE
z`^4F(o3h&?)<z$cA$^T5hlR^V>y<!G-wf*ho|-?$h?_F}MU0`QV%q%k&%M<zuAHpq
z<u;K-Y+LZ?n9&{H;0)aQ4IPpnl89BbtZjAv@+{sR01%>2C^y@MrQCZt+fIHMbvpBT
zGY-&IrQcN}g=?>Ywblny$c(Z<f%`63GB{HvP=-{&dnxEN54J9SVr|E7^(_vO1~4RH
zteZ`ToVKCV$@dU9M-xS4j&xdbAKiN8TG~-oCt_V2NGWL}$0|E_z3^Ln%;~yLRaT0%
zYWr@Wr=)b|pyO`Xvp~NCnmvdYA8#w!*2o5{zlgX2uBx9HinflaZ*!Ko{#usgI3sQm
zP>0SI+#rwkKsT@PyA57>LgFBo#{ph#B_qv_P%DUB)`%!ukyf}Ni0OinQI1?)z$6U!
zM)o?C=x2VVp{pW@k{%6e83X#*UTK$i+-;X72OVh#1j<Fizmu&!UUk=U8|}5hM$*2l
z3X<II>+Kt4#e={AMo`FFNqfAbbN(go@Ysj<_4utXauit~C{2wEZ=W|bf;i#snI~r_
z6lD0Bdj|feE7LQ4JSzXfRyTt+nkd1^n03U4fkzjA%aO=@lYdlA<xi_+W+@Kk=Cu)?
ze4ZpEzZz@j@0cZ&9=rh3%*@*wD%i{|)54ra)vl4uoNz&J9|&&GyV?pL*+7XT{0(m;
z?gygTN9E+@E*X=wlMixcJ?j>ic(?<2dqvxDp?mj3z84w5iE+4}zu_N>HJ-7*im%tq
zhv!U}aPv?^Xe!djrXBoOHXTMM{!Kc1%DS4CKXhCo^Dkg<B?=tTjU1-FSje~;d&%m8
zwlbuzX(S<E+EB9?spnOSH-rJ|W$(Mh)@!&=e-S*}8O(T2KM;_WaYgWNZ@~zO9P<JD
zm@<swm;uOcc0Qx>d894wgn#wPB9sjh6vC?#OcirLu9SEnDU5KVZWrTHw~<O6(%#l8
zfMWpGL$#H`qj~>v3!ztD_uJz_WW^oQr4&dF3(o1dG7)(oxtrGNc}be738GX9rab)0
zk9#Nti%fy_SJSc)X;hQCxUixrfXxsvijgewRyLB4TXFZj?LquyA_0xgS|lSbBNSK4
z>uuu@mz4#}7y8(t=O^p&pb;yZ<MSOdv(sE~!k)0u(+kVT&yFs+rMiL-nmA-<*Gd<E
zo?N?!A{SplpDKXJIG6Q<)3orZ?8Fdx2EDn(^5nw=PKDL!nPH(m(bo#<6Cc!9PMMki
zR~VJ@RM^OKqODs)#!PWPK2VREP;g4*B^(g<V~)D|Y&z<pXMp8Lg$B9Q#YzJ1k};$|
zKt5e&C1Y0-5GP!T*f^!~5*X)$$tEi-1b%V*53;H<gtX_yLYU6T_^M5YYum&E+C@S-
zC>o>(dFLjH=YZE|Rdh<zlYA2&BeJWlNa|p(NzVKW6h6iEf5#~ozFyAh5L?;IlC6bd
zl{u1%qvon;82IumaHMr=d4XH9!^3tV47ePabCsq(ro7b-A$QN{Vi4aC{^d|2HcyW5
zJmLw#?bkb=70vX2kt;w-ory4!Celb9b#a~vTTT>oqZm^Vo^iJRq{IGa%L$7_hM)Nl
zAC{3LZruJR^?gF>N13qZmA}}8R<Y7D@una<v8ca5|4{5@gF6URE3dfpHo!VgwZi88
z0pU^`cRcfFI%tXfxXC!5dx@1)u+}!xMC*~(0j$2dje`>~24FpG5`abg+p^?d-tZHG
z_3PDyLS*uB5y4^5+x`6oRewQ*kIw~FfkjOEW^)%Bk}|=`fgen$>Ap8C)>O$go!ET;
zNexhn+dm`%N7P|CB$V|z_ipaHQ-U(lKX`KB20*_KMDGuspSo190(P;vh~(96hGtfJ
zhS*3R$;ZXmrz-?NW-uSH`Ze&RJi`$%g#yE3d&^$xflr5~lyZ*Plee?1eiyXE5lCF*
z6GF5;F4sz<{gj^%>Ml#z<s8ZEE6{$w81sSfo{21xmY4`s^|lPYOVp8R1CYF@M=_NM
zS_y_<>5@lMNtm}>l=bK4x{|s<yYB9#J@T9q9j2U;y#P{sI4)}2^JMPa@gQ}4YkNe*
zhfG6<_VEcx`~!RX@#i^JZXM$Do&$I1z0RUCC&zA_F)f9?w@(aHZKYasxPLgjoveF&
z$MtzZGHxF|uLbFPELJ<mLsufznWQOtxWCw9p>m<a<aettvxrDb2jU2b8to8aig);j
zb8SF%UKl{m2mZrwYO5@W{VV?}MJHI3{UV6G+1psvOguM=;0E4ox;&ikRl{tjS2}bJ
zYu<Me5K<Jl`w||dL^99<?`?WMU*)WfYTmwEW+O+X&+x1N%Y=H3fa0t_BAu?Qai21p
z)FBqZbrHjiXqh88>-<D|a8*!)$SEm(Fux7++tn2~p}g47XDP21VIfcA2?@EPD`ii4
z;a~oOc`Zn_iD4N#ujNA4&dj6Ca0xr-ir0z=OZR*Ol-m8t_inj6E6*KUlk{?3-+eu5
zVIHAfQ?iUiTPHl*Y_4|43br(1r2(gY1n{d@aSdlH-jZuRR-jx=#!hMl+3=wlxDm*T
zf63dQ*P4}C%W=Q?Pon+iAV*<!1xGHo!NlH8=&~^3RWrm|_ogV6c&uS?sA&;o+cmyD
z8qz>o=pmgT1trSxC?lCWsXAnEhhCv(k%ksG8lRm)#z^7wB&32I9?k1QWj0E(az}=I
zCk3UGu%|0%77m}Ltwujgmgyoiu%4s$N}RWHrdYqymNO|}JDU23U0UfwUse*|o~l1(
zaB^;M+h-Tg6*p19i16ui2|tDEw^32b*Rrm99&b7)CMkz<lqm)`MmooWWUHJ|fC1;9
zaQfp<BI(iJOPNTe={<7nV1ste;rUEed(iqUW1b_dN5}d!KB<j)VK#Q*ZEX>BxI+Sv
zFVK=hach)rvjJ>JwDA}Hko?1lzp&aIqoJ>Y2Df!UCPj63c>_D0VhN#B7xUZt4d`t4
z^zSRSY};(2P*>}`xc1DNECI3hMm0I3Ycha44EPxZNaAx>35yya5s!QSXC1)iwp3`=
zM*@;q!E)D8xqo{NoIeH4URvL|!#8Q6oKXZtF||RKlj$^7D52h!*6fI_QhugMg}~2H
z<x550u<+rd-HiI>%@Ge0PEgtLKVxIHll1!u6^u&~*qkp(AR72>B~THj<7NO{I%@zz
ze$a5{Fy!_o`@_{S)tV_RP@g8Bfd+T`xLbfpV(i6|n5aDsDB8>J{)+!y_|0`fFmKC8
z;i!2{D#RZ#rINu5ityRy3alZ<jMw%dT9!KODLm=`g%WbV?!4poB^9~Nf){8pXz!)Z
zTso82-*&Z*gRmlEsy8T}SIL`-njBJLqfCXik!`$9_~?!f784CGYgu#Q7wM87=o3-1
za++x*{l`S!W5@Mih4a7n9`T^hy4_OZSR@OmQ(v+y8hOC;LQoXf$Pijo1Pz|^L$()(
z_8tC;Dd;hJK$Xd&KPujNiPkwkrw?oR4X++20HJy&AU3JV2PjZj5$xJ~Ki3xG@Sw&W
zg8oD|!h0V|RQocmR6p=S<2O{1r&F5Vod(pCt=7&HP<TCNM&#XvZPt8*(+Jrr4(`dq
z7<C8^{c!y(Lj!k=?G%B!@OG{~pEgEFknY`sw*q!QTfTR+p%I#~<-g5^E_BiZ($aO;
zY%QtU1MJxm_HoONWO6ld>0z&vn{?G73v!GXfVogVatqer5A!wQHgt~eP^+g_HEh@G
z0kHT$7V3Sow(~vGi{<if{GqDHEUozYDQca_o0urMq3R;2^6!AY%N`(|uc(`!<4lzq
zahP<$9nFoW18XXl6V-GKR}1*xv8a*FXsy|Ps9n7zCCB8c5CELnPFsi%m<cv~bLQXY
z$;qwDuYs7B7+e<%QRMa!rw{qc)xkvdWbAhm9Ii_L=gY<M!acfx_)jUbo0mVB-_en0
zX@WNbGPVAE^?FxNn*Rjz;5b0n?6U09=z<FA$Lz^XQCN_PcG4x%6{_)lr_Ww@t#TK|
z)=nlmvibz_jt4*?7PgbcC6E70eshX%34B(_axF^9u>q_eqGbroQvafs%GVY2K`YOD
zziWmowif5aKm#22t!Bsq3QR21zg);A$r*aF!pQQJ>!^lFV`B^*TpoguPNAR$iFS<K
zr?(DF)-m0OZvR+oA|)uaSyM9}0c+bBaS^h){0uYOHBwX)AaDZ+{XjXa6?9*gY{4eT
z+dD0vd2Tty_$8(%kN|^|&X6!?<<+H4N5)RXtrb{HCl{0=vi%{Of1^C(Ln|-lIjlP4
z)>={UW*ZS^%M_<phM-8TFLh)~0V27ZNz$G@8W&jGA|yZaSx(orF?#YY_!3XF=+5S_
zQEyUL$)O>n?k!9!9dYpI%NqY%yyzp`=Pkr_yNhtib3WAs&U(J~AI-@QQ_JH@zCXz*
zy2RpIEY|`JEPKIuft{K0gx$N>3EPYZo!SY`(F)kVauNchy$K+$Tg?cz6{)rt%M{V^
zc~5(ByKx+(?gKUl_xrUV*G+LNar|wcXi!-zeGKUs<$%vnq;!=#ni+TSS?ZIET|eh`
z%zVwur)aiA`@d`amRzw>P^yH$yuiXvQgvPPJa<p}bvgjgjscYVG!UqRutDxF_*=w_
zXaT#UCqQmjqA8#eJ8XZ;xr#n$B+Yhyi2G*pTNu>qcn<R`KKsab_TNKXTYqzDth%1B
zL_Cvc;tyleBP!n1<Gzc$)(mS}4^s%{HsfP|fG%aI>0C_DIbX?1ZVk77pi{PgAWU58
z&i`^-Ai+{Jl^9D4f&fZj^zwLM5LVD_-iJ*UoZq?p3>qLn6IR1A%pXV6IUP@M(RXb}
zKu_I=vKH>zKgTEOG(+y~NSSI?rJ&QV1XD4>A)WJ4z~*5-Ykm|@{Sf~j(jyr^CkvvC
z_QtFy%pDD8)LC87eNBb66OvtbRxi}LH>ji+-{uzM-)Dmk6T(6s^c~f_z-*7_9Gw8V
z_pPkq6d#jIYlDX<kbPnr1Qc>vKDBZ-RUUq2O9YY=@_FD#>V(w}lvEVv2|Kg)=Y1t^
zKF1MM3{bgvw{cupF(U+<LH~jJ*?n=lhJX<p-<S7gU?&xpw$73UL5}O_fH0|2Thqa(
z;x-FVCcx0yl@w9pdDtDq70&pCK1EfX>j~*n{CdsNS4ITKE!VO|eta_3F06Ksu>Afc
z7!j<rd;J!$K8PPPCtcote2LBxQV-N!sJ(o#qDb$Wy%^_%+3=WJZXY;d)`F0(@i*HD
z5oM%6PF#Rjmm9GBB=F<>$@t#AW;Mt^h;yfS1bj`N6j-P}t?gyR)XGZFs_K!4xZds^
z`KLf@!yf{yMZoTHc+B&gdlSuhQXRLLS0tvf56wBvD=qNx1WCC;Vu|?oY76`U5U142
zzVvq&YqoNiCD^lRHjq84J^!=I;qRob=~}c>-998txJ309aD!Elw<FCZdP)}Gsl6Wi
z=9Puf@ki+5W|UU=351NvTAll}1c&<z<PZ-4sdPaPIug{#EO9&Qd4Ucm_t)@i{N`^E
zMQi*UEH`eznsk!+NtObreDhYfvJ7yT0e#HCvmDQ+&x&jJ(t*KL1rW_|9FWU|dH`Hf
zL$MHhORlKDCw}t1QAk_TBkX4=tXql|!9;om<Q4!*X@h`s4K1XoW!xHnI^J;2kW^rj
zciImlr?7WF{(W$g{f~9<RxWV5I7Z-}Wyc$~Uc8<UKJym)jd_gYPB6vwqZmb@%sYCX
zBP!&aW@z=Aw1N)JJ!nMNQuMQ}7_06@Knz(@x7YWX`@9g6lh7vBn}*OEy_tr9seQUJ
z5>jvelOS3PI>fyazZtydD+<LlGhmL=b37}W3xI$6`5^&R<>Y^dfL}!yeNvEh2fols
zZJR^5)4gf@$NWiAhvbjT+Z<bO=N$u^&;#8EA{Smd(mZN&?_pSA=a0{rKcC=#y!B5Q
z7EchZ2F3bNDIBOJNnn#!`?DmsJ^%wINMe-p_i&vN;XiMJ6K;kyA|bh6gcYo9g{Dw0
zdfu$nogLznxaiq?x!QXX#k93`tv%i9e095=N?Q7Zlq{f{RuDceXds1SD~_w3US6l{
z3rpVwxQWV@jy_xM09%E%=Yj!nqi<WbOT6_qk;yG6+P;kpRw8ba_)3SkibMg-cPR9@
zvKYzVl&qmNetGW&d1L*4mAz+)55MA2T5IlLDq?2FkeVcd&J7ZBors<D+v4SV%yh;n
z3X9G>!hTshz-g{QB+1(?*vLReqYQgWzO+~SthlwWDrk|0M-2%ywl{60*T75{F}BC!
zRy&84{H=5+y@5T5IJ2J03BUJL&5Jc<re%E#q_W>eJkziaakh_-PlmS@<7}st{drYm
zL;;d>QnQ5FeM_Vs7l9@)u}DSXy1FTV3@;{-qbU>hlLrT?{u~et@<-s-H+=xb5kC<U
z3b6ahiU@Tibmvs`;-@OF*Tlhu<;$gX6VnG#QXbC>lwAv`dN1(%kqm}r2-OOYbcEZ1
zkF5+pDwbRjPUzri!>>Jbn}?AKp`ah-b{K_;{R-_`gmeQ?qG^CYh9WSTsP|q}EH5n9
zz<T#r6g`H`B?}^?a0_pBOL}d35LXAtqrjgt_^xZ4j3`9<Cl^c1{WyEiTQ#=2{s{SD
zkMuSzTzC#I#b=;O_QSvJ@H}->w3!WMlR8l5C_om7?PSC?_J3$i6@WD<CNYvo|3?wl
zp$yJdN<JVst3l6CIegDjRn^z{^$GH>47Rw@eL!R}nfU~l)1n{DqID+x5^eQ`H*sf~
zZLL}uXZQ6!+^6eViw?m&zsZFau}9rN0|i9zV8}anZkrh&`sIhPpl%Pua8W<P0;+C&
zoS{vYN{nO!h8Hk3&`pP8=oR+WqV<Cf?N;+0m7sMA-c%y;+rf`^hVT5hGVakxDW7$k
z`3RS@Wr~Y0f1@{zXE~Z%6b(SGM%(}Si{{*^F5up%z4y%w!F%M>m146x%1fmlsMTX+
z(}!B!JlbhvoqmUrqx6ZQWdal*eecmRDX^lk4(M@mBV;Vp!+{!JElwTDH0^UL-iFRO
z!~CP012QY@W`e@!!yY}r*%W1unZ)oDE^>PH0IVl_QgL24v`BvcNbgS#^}JQw$l?3d
z;LW|@d~SCyKA8D^`{Xm##jXwtJ1$BEUZto4L<`+!*Kv+e9IU|@ka5VmG7G_2K&)Ey
zKpbK9=GL_<yHU<LUth0UpXaG>NgwKozgL>7v_jnd{HwGeAckDt2DVQt3bbcL{_SqW
zWBpyaG;aC*N0K4dD+>D|aZ8QL>?6aY0Z)!E`xldrLuc?mnLPW>NrD@I&;+}YxRYtG
zQyzal)tp33y4HobHCt7~OAQv1INT$U-m3?8o=JdpYk4lYEnLTD9>~TNr<d&K<(i7*
zzi~U*kItoT1$N($f2VwFv5u&ta+I8Xp7_34&3nQ_=iHsL&HWETQT7D+?cMp^rxPQM
zeKIL@XVk&P@I2jqil)n&z}Itv_Yfyy(Vb1FAGH7vrj+7Nz@iI{Gq_t6$9$0v;>tj^
zTe{77Y%sV@hqCpJ_;>i!S_DM`H|o!L@u%#}Pf0J#HiZW`{u}rrnciuB-=9&^T8S)C
zCK*%}L;4+%WXycWP|yS=%I#N|pk}UNqf=t@G^gmK>C;dDz!;LH4^!HB&onXf<Q7Sw
z(HX_q2$v?$LtjpC-hOXflFgR&jU#s91wFfq8YaQiLOVm>I#^3r`%2`azjI)~DRB$b
z`%{2P!>;esI0ogodpPIU{C7r`YXz)FE@L#nUsyV}QdD*#x*9eo)x*CCV~Au*0#$t`
zq`o>+<@k>Ic>SB9N%JDX%Aj2~&NhI0QQCK_Nt+N&f*k!?9WsSd93;^lfX}nBZel5`
z_xml&=7LE@Rj@-Zul?ZJj(Ip<Mt!8y0Q$rLPYbCaKjwc3($2g=YF8E?1^^zx$@x8X
z5u(-hXk!3C5KGG6j=!ijd&X21FR9SNXnto*>VW0_Yaf|kjo?Mxc)i0yt+NhjS{YQg
zZ(H7tcnvI}iaW|joUAukf5sO;b~ZJ>*H?Be-BZU^2#8s%Ud&(6leY_w{>$iTTmX=2
ze}0!>N<a+n<bO}%<Effq`t;T#A;JwH=@3E#Vj;iTNVXX4#tX%dflnDW3b`GpdAar%
zpHn<q6x_=65k_0MBrX$!4|oHy<rzv@^L3!AIK=fyi2VLFRsCR~akSULPjbOVNk)Nu
zlR|ElpN*tVmp_$||6&|BgT2<=6u|}i4=e0$#13^qlf2FYJ6}Px#H)mc)d!4Wi2{Oi
z1?25tILRV3gZA!wQvys;=j98XD(EJFFD|aOy6R`nhouUKM#;!2P85Z{W-YE)aCm4X
zJbQf?urNeK&(gmhy9GpE$?5y~mlSf3G9<aR!8_c*tr5zv;=_|$j#Sh=lR+uka5t=Z
zHcr%v9Vl4tr|Ac~$%yIi)^P7^MWa3}$kW&F=3l$uG#d4Dn-AbYAR8D(Rk0~jTVfb(
zXk0fWWUP|>D1-Hk6<F~C4^p_S&I^Fdyk-)^mL@7B;N0*<<-JxiMuy$hEs&wqH%)nJ
zs`ut?yC0`Sr|FLk$Nl4=OtoK)4x8Ocdu!Z*)0sriim%lcJ(ZaPS*7~HEr6zQ!o$Mx
zLg8Y!Y2xijJg(+~lrO}eE`Pe#Rz+pqw8pWzEApnnL4pwB>2m_d`^(ix&H00f{sMAP
z90}tkmCtlAPP~p^DT)E;a_|*Q0e0Qw53cn^F~n@GK0<^(W}TEQh<Wnga4!&8Qf=qV
z?OZGW;MvC=E|#Z1GeU5;9}p&LUFhZay>`wM+E4FmCSCgFoZdX<<l#Q&=^3$^4Rds9
zE*CaYIjXULzb%@0J}5$18NAy20uPKRxN;o_39Oi9psJ`g_qX>fg@-(ly8F-b12T+u
zh9vuYkx2RS&Of?Cz;@cnerMDC{a!*Gyvos>=D4I-O-!H5WDG^M@)_!CfEah5l70&t
zR=%uJ#w~6C33Q%&;M$zd>i_Ez;@(Pqo%pi1*WA4pC&<;|dxP>GSJihG)IHzpy8(P1
zO)qqS2$6&73RNSaZL;=>|K82FINx$_^SuRp^Mvj4_n)8BY1PHV__UO|j!ai$1=(kq
znTAd7A&>`Jc$SOZ=&-Zkq~#2$gU-J-FOH01%q&hX-*02%lwE5Jaz`y`{K$SMU0xlx
zDFR&is#RViGPtcc{lItQ_W{qAV20wuTLA(n9c$e2UlWRF*}F#-b5kp=0WSd6LAH!f
zZjba2`lOiK(2j%rLVuXngvVCXKX}ZOaV$XmdnSDnd{YKHAz(@&GDjH?E(IfpS*Rmk
zv%(&&+5Y)m0)$+r>(fs+lKoWmJPtV!TL<5W>Ex<teI>XMGI-s(`JG^K-9&QZiFF02
zuvpFUOMJmxh9Y2?o5llz$2Vp&{DOza!@_}>ue?gowi59bsl3zGftDL%QW_iLt}g0V
zV;Na3MeW<w4%B2vU7`vrGk>su6*IexDx~-3!yfOK6yLT`@K7P(koBv;JofoE9(a?3
zX7C@gCKYjbpzDP_u~FSo+$S6YT}aYGnBf2B4vG~#q5h~lDNZvWdIPnbN)TiH|3?kk
z=S}dQO33xfJ*9ASf4<(V;kNiS@P``28(?{2587xIZJWs7`^h_A-uv(I)w*<>!P^@n
z#><lj{Sj<u+{MyjTa-2ne&oqzbMIF-n-bDt4lDewWBjfwqQ`*vfomMq4y=Zw(Q&K8
zm2=H46t|W_38QL2A=hm7&fzk)q9gdAh4hww`D=7bwH~emt@Gx20lHcA1Csyxna@_!
zBZ9(_&xP$A^AZo)3=b4@%5kq5pK{U6MYH1a=qGwm6n`9xnEk(VlkD?D@6ZTk9;F~Y
zKq=NcsG792&Ku*^RKq#YyPvkNqyHQbF4{z12@wDLlSiU$Z|YHC1&%Xc2`+Ut^ak2F
z*v;az89Hy0l4#fwKq3*ME(mn0;8o7bz0QH8g-Czc%UIZ{E`p`|s`-ISqmW_Y?sj<8
zXUx&FoTKBUE&#`O@DyW|e0+h-_PCu0Ximro2=qeqoRlqPkNN$27E-$}y3ht=;G~Wd
zAuJ!je1TgZonN|`LVIZepf5ZxLL)E>z~B0f`n*1aukMEY{sP&E1s+=<2ifZ-T-6fb
z{JnORu*>1tc~@Z2rhV@IPQ81>5#(Jj9P81-#otVPH<UlSHiPhfvMq8G`#P31i2EC`
z$7-;6W5}k+MRT{u)M3URbU3e?uvy37>7lUK^DW6HR_Sh{K+u1s2{wl(W!)k0_%s4=
zrSKe!j$O@RM!10aXf<@o7<ZZ_VNrh~)^tfJ5zwBaKMk0{4cqX}_dNU7&G>!!rVGB1
z7Fv%nVy)BsqTW6MYO~(nm+Xk;iZ??u_%WAsE&TZhNN^dV1d>2iFcZ(|&nGiwwIZkT
zpKpGPO9)I(7ZQ)L%tG`2!~%(MB44?fGztSe`@N`a=KZOGemXKKpG3Ssk*t8Y1PIGR
zBu%uv=1QOQp5cTFS>{%VsymAg8tMyt#6`k>J&ff%_>u0o4ImR)XNFB*)a^stMWFRC
zP3s9DVo%nJaXIy@*{kV?)O{AP#K)W}arax@1*M-1Z|WjC|8II5kt6_w^pf~UJWGxJ
z55uppoCY3c;Ld9GX>Db^IJ+UKK7Bsm9+ky3ER+}CFcb&@R#BEeOm6~cnt9H+qt~ga
zlTMI$%))q1wbvren=-^xW7xHB+u;wbKOe#5{%=~J#)U~2RcJ}zl}H2>y=kzDdTiaP
zFwElPt>6l}_T0K}UTYp{+)vofo{sY^{+!>RrxGl4P+K-eST7q=Cxvvh%g%v;qaMAY
zXKp*-i2rw!kSZD)kD+-~_*ak%TT0ns_PnrP;hp^XqDWY&PA=1-M~41he38;xrC9u?
zpSH08`MvS$%Jq;pbR<FCjWI$|iny}b+P0@t@(TOV$|YI)E}!8SEA=^;Es-N1Fj9K-
zA0(Flek=R#IbVJ6rDb6})Ox~01=sU@<!-?<Bb6gzw;#9lE|>FYZmj^^Ze~ijU2Tv0
zuYQOd?ga;#zpMES-#Hx#B7KRM^f0XzU;q6(Xb-{u<c4&zdKD66MeRAPhJF!HqiyVv
zTc#h}2@n+wCDDjJRKRdOs>PX>BB`W~r@eCOprbLLBt0j3?na*>p>4A#4#uVnamp(*
zIW8^*HcQxi*k2A-`zqlxyR=N|$sopSB8TZ8VNFF6q$Z}-^C0%`ukX*JO?K5baBo-&
z)byC<QA!TEKs$t+<2_e<^cmVErsPNnr`yV1bqnB!9!_w$sd(P~;F+$q{*?*Qtee$s
zJNBV9GIB7j_nhqrh^<Xgl^zD{F)cP6p!gySW~CD)@;d25xmcN&$TePCJF{+}V<k2H
zSNI*Mi=v8N4e!<o+a-|HXP31y{0#!7H@YU*l!;00Y+3_k(9y(yWSIS8ywalV(#;N*
z_%rfe+-fiOnx^p&n1z1$!<5q}E527Z1-UoXV@%TP2T9#;bD(0Cjshi)fG5DZ0&e{Y
zh^{df+cG=i0{1xZMv>go4=a`~jeqj|r?6dmlLV=p{x2;!rM@hGd?$~+oupJQxdy!J
zR~$v8B5S$B_$AO34$b19PDmxlW?&qPpk3`33nairQa&BH^d$gke1m(^S@8p=YoOqw
z7vGf^{-xV?_CqTsG(jK#gQ?(uMHw(4q-zCER`kPOb%0tLbw3_}QkDUQTJ8Z#X9Ng$
zo#FAO;B9Ql;&Ju_N8K`FzbexvO(wpWPP~+p`}b11wGm9`Eax~-W~TS%dqi<l7NMfY
zBLRSRO@VmduZ6DHpWXtZgo~Ms%5y;!i6j~gLIQ4+?M|;}pNRv_cmX$0lkuV4(K5#c
zq|Ft=H`l<(8yaB)z5Pi6_Q)7EEe+zPJWA%+e%5UWP}`-os?twWVLBrq=;e?IZf(H4
zdiQWU_CUhJiVN=g$IqhXm53z5j>EZb@>8`4gT7xn>9s*CcVGnXsE<D#J!6xTh%$K`
zQ8cYde%r*<pDa^eZs|X>d|*8l)d_Q*`TWSO<T<0-her71qPBX_fY_-##*kBR;AtF0
zXeYV<5*-`$Gn<?}VOS^OG!7>!3naGKpGtLd9sN~J=~;fp3kV9?@)sI7rQGL|B~@v)
zdTK!?QTDH&@opG;bbcJ1^*ZWw)qSGTej||K+lOeA+b{8XKl!p{P3$(AGm}8+JfQz#
zF=VM1(#2=&?3AW;*!|K1?&xP-wp!YFe^&lGJ0k!j>%MybUfVhdINDov%APyoZ))LR
z22hD>T)t$54)7R6UX2siDrtK%fVS97H}NO8R58o}W%ors6ezk(CsOS|#q|@*!@uaf
zmT})+l~;OsGqGu>#zLY@Ztn+4iZb6VZiwt?x$%3NybhbELM<{g2Y6YiGcd|A6}$Nt
z`1z$#<-V-p`?$l#@@emW-;i))<@krE>)QBpV#vr3J)E%4r4|mTzaqWFK~5{%sF4*+
zmL$-j&>EI4zTZ?h&|F+HigJfKdoR@%Keul2RIv%(Cas-tY3K5ZCU+xAF~|`T$TLt4
zA|-r_AiPbXqtcHoRvR8CH%3_Y>qu_CiH{6-U#fl|d^D$z{fjJkpH<9h*zi>ce~h&^
zhUFp)QZRQ?TMfTlje`IQ(=yn}C(!-mKJK#T?X=h7jbT4DyB8I}onRX`n&?r@-ZYX{
za=d5qx8Ce6@=^k+!bu=$qI^2lexycoQQ_Pxu^V^!V}SF<7*Wsl3^+k&@Mg-3tee4y
zc$a#IzQ3|<7OLTPKbX&S#BCp~NF|)coSg_9Ux{V(SeWftP0SYs4Dxq-0kZ$7`w|)G
ziX}Ncbs20i&W13X+Gi^MqN!|lkTLu7wx%fL4>M>3ac$E>)x6!8bm`j-uDU<#OfX}6
zBfl%gAma_j$DMo+s(Q5u?lsvn=Fh)lLXx$WLjJ?Ws7?aZTMP}w2NyKwO~PxfOD)XR
z1U!-ib&din^8`RQt1|-ZupQ|Dewwfl<`$=Da8i;sX)<5!OyX`MPsQ-dRaC0omqd>w
zWgwF{+eP7z1l1oU=5b0V?Gu2J&zd>-g$1}80#(6W{Jzex1*^#CBEnW|+p7uwnf8*$
z#zfE90-?~WCotmRJ7IKJ70}i9t|JpYtSM2nM<!`5-4tQI+gtVOq3i+_Ns+1cwL|b-
z4o)`fda|tD21V)Qga(Cw(gS5<VyW3tdOlZf&R>M*or|ngnDoF%9WF}x$A#KYsN&VP
z20B!!PdZGuI&)dGN)xp3-im$wejEvxee_4HGpx6LN95@>6E`o9BI9m?zR#FS%N28y
z1}Eir0G1BE5s#Ueao*OOabd-?atnT|-r@zwXy3<vWiTspr@PmH1k`=<{_>azr~A<*
zXWCkL$s--niy33$U)dL!4j-%PO-vADRu3yoFVg154rBSMty^AK?B$)gpk&<wX;M-<
zIUyNR!Nf#lHX&tW%$%Qc6L8GZK|)^(6LvR8gmUiOAh^AF*roP{bERp0f7GOBfFea(
zT_oL$g=~Kr<il?{&~2ND`{9W08h4@*1Zs!=KJmR(1()Bzoa2rSfSOwR@~85RoitAF
zGo3ZE$h!S<=!7lrN(ol_({ED1+ew{u+V!r4mHM9uK`H!arDpRkpQ8+~=^glI7nP%c
z#Sk{b)+Q>=3yq=o(^k(fD&$W*ccXk#XuL>XzrL$mB5P0%I_c1W**XrRV&-%QxX+py
zRd+J>p~K3)5vzv)J8{_fb{h7xOU2=<$zM9|11Y|<8uAKtFHynpSjT<BG7ALhK?6j0
zMn^|$nN0mE1-~WNkdK8(^7d2|i|Y8gKUt*ayG9A%9Qnu=Mj+N5(futc|3+}chwn?1
zbel`V@+Y6ZeV3K5DlVp!mzUT5dN)58)X4ftQ80yFa4q#G)_!uI^X}2y*O2|Bgd=03
zq3wLwW&rO4m_qW3Bfh5?!ypRWDftxjkqnAECI2-?dWnH9FE1ml(76<R09gJo8<U_)
z>h1c%oNd~1$KUA%P07+y+zDpL92T!1oUEZ37;e?ru9hLu{^yR1aJqrzqp&)<r48~-
zO_J<?He79HeKJYyx_Y|_@s|u>$<EkC{xfc+z$R8mp!*$gKI%B_#Ip!WbkVuBW9Wot
zJ!0*R04c!;Eh&S!zctheIrAhMzXl*EHARhcmaqDRT%Q33yCi{>N=t1S{;vQV41(d`
z+pd-vdOWTT5&60zVJ^|To=~D`Y~mtTSU35Hs!AKK%2wFU`_%5H4*p{emQ@S?G_63A
z8L`BpNx{q5+CV0?rxG4!P14hM$@&ma82QM2M&(5PL>>3_Azlj?=|wJ)^GD^;Bll#V
zN-o_Uut^hA+}`^k-u}f2&T`A3MMAIBTP#gB^V!}WT6?KUzH)!fp|JcLpDk{S`>#<>
z2P6L?yrm*$uMq1}VYd_`h0=MZPy1xf>JuC7Bzm?y8ZS%22AWR?WqrUz2;Ejbicuy%
z#~O6<b21wv1V5tJNBzix4fFdL3l^h=U7AI0Cu~psb<mofT<jqC10Q)a`VT8$`g-6q
z9W%oY@nc2LPrjurIHm;)B!E!XUEhBfey4$oT?M+M-+bcc0ho!)B6I+fDex6i5Vs(4
zP4DgZ^hljUv{Msnd@alPHkWeqBKO(c8CILL+14|O@aZ1kJD^9I3Fe7tB<1=bgtDVQ
zqU?W%F-F{Ee<-t463lO(NDJ@icmO0X(Oj|bU4q21SV%rDeGb{V)3k{<2!1EHN$ZPr
zM?JHqp7{6WsF86YqOC*l-sKp$hRI+EkQjS#AQpV-J(``X&zh@Xj@cy;_*=g_@%I?g
zR9lPzT4<qkF>g`IicpO7$T*R|mqi3*H+WIi!>-Nx<*mki&nCUuCIGJEx0yH)BpSy7
z;0cYRHR#H{7Re_<-p?ywBD(|dw)jEL`sP*&w>>|)4gvD|Tu{$#+aK!VCSRV4D|kt#
zj~$xxw{Z52_&J`mt!gLt6g%=}HrMkhmc5E8;!GL2V>W0<(NqyG6Rf1})jR*z+o`ky
z3G|z2E&RORX+pwfqrF{e;c5(!Yk4O)*-@-AhGXgxk6)kJ>51Rko$F_VcZHe))VCg0
zSWFnAWjitO%L=Lmyz&X<D{{W33czCw(F-2sX74|VL|!g+X85x0Q>JibT67n*%)Rhh
zL08-nk7ppd1^!aoc;s6nY*!=sAImN!FrL-#j8*xp>RD%U!SyjMMEe!%MJBVl`a*^B
z$C@PHH*I4Oxh)`tM7$y2S&mBk`%4DRm<lU|N0%qD4!Q`u236PPa`;PU$`PAdvoS=?
z|4numf|ib)SPCfTy0zod_Hup`l?Xm?VZOACgaL$ztVf!_9S#7SWEF`AZMijX`9x?^
z$W6UWnaq?!C_ZP3RAXc%^AZx+d#Ei-Cqj84DhMThsPVqq^&G;`;1}+9Y?d#eKC?Mh
zkq=s^GXcexC6FeGiB^+2qtmP7`n}tKjpv6mkj8g+-1J#HTSLV)wv5EG^Ns;DgyhJF
z@A?_Hb<C$`z#Gy%!a$}Lp@|tzw>lhT2>z=ky(T;@^w!@paAIVwKkp*e_H{NJ6BxQu
zpYgGWO2e7C>dSu+vYVI8A}yf)KTS9vD{w(qx>d40_AmGpyir!IA6EN2J|0-Yv6#<A
zmrr9M@wfz?>Yf3_G<sI+Rb^kR$Uh5aX_x18b-YS(0HZCe2Fh772ym%>^-lQtuB;K8
z^Dwy)S7wpA>DMfh$K87HBCIXWqR|*3*E%8sD{)82O?p@oH7`j0d6W}~7yA$QRG?tW
zO_2<h4|j|!d#Z<bhcpM>^HYej$FTF0_NI`6v)0PU&|YX&%H|LuH>Ay?-$iiWV<Lh*
zsDSU3E12<*Sw&EuBl-xa6BnZN9zSq=dtEkr*RzL0)^ld%+N<wRf_u^H)x^hZU`#p<
z$!}h+%5GblX2=e{%8THQnBrEOdq&x)Ll3(3Wqi4>5OAlBw45lk)Z&?rDb&sby#x=}
zhM#3BekIW}E@V44l4p;u(43MljknilK0T)vYa`OIkd{|N6`L1tufG8}ynJPRwEg6T
zB0c@uF$VR_s`_Z@7MriIP>^KVvO&N1r?{YHN4%YPu-&KyB+Q87)v(j6?cvmM3hz+m
z+=D^;zG{PzgDf?Rdp{^Rr848AWV5AfzVb;hTr1V?2K^Dw<nf2y>MYDe+I|@NEd)J4
zM<-A>_owKm!N1e8(b8+Y>UZi)?)e>6bC};;(MiM|_p~cuylQ<wqQR6^0_A`@jEz=B
zPCv$(%h}{@W?bC)*@0Au$#>*|xQjfh`ZF{G12AF!WBi){<fp)UFOFXg!J3D+^!Z9l
zSMsMJ2y5ScAi7&cuECM93@BP6<*}}>`NNhtLB<dcY*HuJaddmd>WgW=7P@Qt4>a{@
zYi4)6dd9MV-s*bx6JIJ^WvZ&Q%sxSk6#VelSF>u(nMH1dr29W06A}C(AO_5)t$CXr
zYQ5k+_%#sISgthpk24teGYGhv)MA33UH^0B|Hm^D{(Z-Y?cXdVMR?8t?S@?M)9)B%
zAHGna(A;w2YMQ9a2%bHk)%42)V7AG0t17e;)p05iETozsxG-JHABGAMcU~Y)$6g(e
zKvUnZkdxx^-*IyPD%f-F(r0UH#2%Xpc6xdnFmUunos`)9O>`b|E7y7B$iQa!@0X_x
zlcHOS37}MwZtAujV&+QlhvAwcpBeS%=Jy$kWo8jJPFt6bETw-iyvZ2ps<fRoKDBUH
zn~j?)%Z|#D_(^AH_-oZn0z}fmMZVeg3GUSQyTEo;6gq>-IPr}>rf^gCy$%TtQXD>`
z$27QS8pGD+Lpd~YlUTtT`gjHzlNij^$NocNl<8CBWS5UEKKv)bIB$JTb9iYwsEDrF
zz*q3=bCmiU-iqf6tQivdVbR%ajb!O?OhPJg`X@G_d=NF<SMC}Hx0hZ!p?&>2+>cbw
zv<J}C(<Zn5tl5%=OOo5D&4*3dm{7e?6h97Nby=5rS1)Gd8U-6VZrylCuUXH6cWYjh
zSih5uM!Wc6E?0A^PNtQ&tg~nPe#c(k43|{iL8q&}KVzjfjhJoPDIN*hMBa7vf1mep
z_emH-)-F9LnyH_IK6jV5vp8b&uvwz7YBx}{iP9Ueo6*8Qynd+AQ+zG@kL01D%m)|F
z(V_5EVdAnAS~P2t<E2-|W$U^gbE3@x$A8O`?PcHo1bVM76m@|>cAjAg8+C%^mZav!
zd9-1Pf&#CE>jwhLhJ2jT5xmIes1RRd?wk}c9{?nPLMI-EJ$uKqyG6k%lxDL2Ju3gD
zM)5jD$?Cu$Wz@S@yzuyu-Q>(!oi)SETCjTQKdC$WOabtVc@kz6c#R>6x39VCB#?6~
zJG?0|TKU;^&-Jma2Dc;M2~IDnG<sHGZM-vv{rZ9Vh;8k%%s9kT4x#_Fk&494P89^?
z(K-f>>u1=_g|TWUA6>NZT>hk(a2YFR@W`0|=XVv(TW!w}9?A2GN-NEBYVq2p;!x=#
zGg*^7n*h0i-}&;cp<8$LNo$8$Uzye*LdY0$HPXVjK|{T~LYN2^!E=N-^_Ryl!v_Kc
zINmu9?~(?!!ck$8Zh&j};C>C&6PI6h>+@#f*)xfj<!7(Hjoi3?yAS}<ZW5NT>&Yh>
ztlxA}iJsn+o$)3!+7WI~<>@(Yfj~=RbQ?wADmVaPXm#H^F^?r(9f-5sRMy{yiZ0!+
zWfj4cO6KL;@Q%eoJwlkU;MzOx`GGr2{-%&SjD=D;UD2VUhl6L>QOCD;60SXQk<s_p
zDA|v4##k+~Wc-t|BzAzq<t7aUOl&|Fzvpe)CA`hlZ=v9^1H7Zkb^N>CNsf8C-zro+
z&wgfEG&`xh9=qO1_F0|qdAwFsJWT@9j4)v~E-Or7a^AI@Gn?`Q>(iOh=FUt;ZkID?
zQ@}x0tAUD>l9@ZTbH8GGTDmMyhN(WNWz$9z;JJ<};>Ib=UYQ<9ZK-Jf8~`F-Oh4pN
z8DIZ}O<;kMUvR#^bnJ)R-ANW8d{2j@-nUPq0RgYpR-mIT!&L>e+Urh+#Hqcg$l>=k
z`&~}9?k~jc_o*C}m!Oxz{l|GNlv)RTsmhwjpbykh?fqK#)xRjIfB&fGz|J%;hOcqS
z(ouN17Zy@csK0UKb=H5|3rK|=se3~9jru^xlrhCLE?n(%@lymF=BI42K}FDmv;KQu
zllDV-`q>ZHHpnnNmuh0u{*Z*YOJVK{X*P*TS;@~(Ay}sq8;CmXCy^>=nwOfHW=NE!
z6G<XcZYAKsH4QBzQ%&*{`1-wc@KvVbKVK@z7jhC~ys>vQv{337-Aa?dqHU@GvNvG`
zGIxID=g@qQ|K7fI+ob1(fhl{L&2-XcJzq*)R#e)M(L(#og5Xe2c6im?!S#DiBJh>6
z$AM6rc_00zGg`KiqEDgv2g*<|@n}m0*z42>R!k2G;#})GX%Oy_D=x==OciuQ6YA}o
zI?Wr)MAL&L*#Ke?$Sxj`A$5GF-+dvIzr_yp2UQM9+u+*z#zr!LvU*7PEMHzZp&NQ*
zpRo0ooZemi<@bM*8Jbh3rEPaRI3?W;{rNz-I|B|26Ax?lDqME>Vv0O}m{#3XzZahS
z1R{ma{*e40RQL&)>EyT5?{y{*I_)Z$Izn%z!K~wKlIb2e;(-7@PLK#OM)Weu@;p%{
zb`<L!go2A*w%P;;lyFZ&Yk>ju75I9q6iBL)Ze=!?Du|P(EBU05?kyzfP4!#2cfc9V
zndc%kWC@D*b62i^z3tO3y>yM%V*WlmZKnDB!=(^guo;Z+&3wM<FD$Yml7Ncp)a*~p
zntLe)JgcT;UbVYLgB#a0Tv@xwhchx8R1BfLeai_T*O(hLKOgJh#gkC3Wd-VDBP5>C
zLczZcn|@Qgb}Tb=7docVs_kE<C_38|J9+KY7nb_DgWS|+!^(A3jB+NcoXlkZONOg5
zt<xvU14=A_GD$qqp(XR&ZnP3KvM;6{^%IsBwtN1DOwRN{hxC_F8ptLxBFMsoaTrOi
zKF$nc>v4bF9YNzy>a6%60k{7q&4)zW_^7`rPsyuI)Odp5kYKaoEMtto=f2-Ay?Q!4
zg$J~8(>BJXiv{1=4bRx?+9lKN=3l)o9f(kz;60>fsMJiA;F|WYWt~g*&qk>~@4~sh
zZ*T{+HZ69yU(064l>XQUPp?6qquRUOW}oFZ+={}yJx(4gcV6X7$0?h4M9qno03O_L
zA2vj0wNtOd0XNN<aP3y7&bb97@|3Ph7%Dh496sqcP^hk-wJ2ZyRpv%KIGAN@K<dMq
zWnec-IFRFMx9B0a)XOr6fC2C-b>wel(5E%JSeDnMffQjpUt?m!Vn?EsDL<jq;pm70
zR?xAEj?IYUTq@X2bu0`x`)|tTRJ-}pap-w;=H6m>Rq-Ta9n8i`_IV$i*i)?5Lq1?p
zjRoTD7GWgX)qOh@^j$oZMrC!+zZVq(Pf;!zwQU8BF?j6SSK2M-)4hn?<FBcZ^$}}t
z<I`6y`u0gO8hA+xaj*D5)V;u}U1Od!C=_Vj^NSvI-2`?ysh~ATi|I}R3)v&`Fgp?%
zCS@`>d!-oH0a$lYuqfvm!-lV$ngf{qiwT9iD?44W;&SxInyPmTY!fe^t}gHjTuB>&
zJcPN$mj%K;EjCI~0lqK7irTZ73%?Bv=X6le2U#pW2JpA@sBJ53wtdnoX&3&6sUH^}
zp>Oq>S$HHbur6d;inv=6J1#OF<5#6DJCy)tjwZSLGm-=$!Ih!PWc;{6m(-zFRp6~p
zcy~7`rx^YA|7JVMzo<<lsz)}vs;qU!k7`HOC|*yV=LxFasSX<>JA5EYyn#J<xK9cs
z`5CiKYZBr~#|bVy`)`+}OK&;gyZQA%AL<6L`=|8n@9%=`jM&Rxec*jQ#V@$V_mDs%
z4&%5)x<wZKZ-^Q}Oa!N|Tet1MHj^D`QhW**@Gcb?;!Qaw6~eM<HItEPQn>w!rZq8r
zp#Qk1bNhXR{YzCz8)^2e4=T>cu<BRn<ViqXI%nL3Ozzj6m!_94RyW@BZ{9GuhXmxF
zQ>=K*kdFsH<3`e1%wB{JHDF!#q$A6kioGy0?fJdvSiQ)5hbcY<CNv1S-IN@6d9`o3
z9+5De4YJ0zxn}Hv6Ma$eJJed8f|OWx<kFU6!!FoKPCS2RuYt^`M4_-z@>wmD@h>Dv
zmfW9BM~~;Whs}M-NLx4JA6+XY{Q#w@c80>w9@G>_b?b8kLk}ujG@!@PfL|?{%x*;e
z(BvZhz0{A_f;E$_?wZPLBfmw7MuV^$S62k-ryC?pd7^8g$4)4a!)#oV0SeBh#>vVo
zh`pORUcIkNRcD1#e{6bnXt+QBmt^WQm-{_ZcpXg63mVV^d(p--yWoD7T70?Bu}1(}
z#6!zr!FwOkL%@s2ktg-wXaFT0EkA-gn0$E3UK&s8Vu0Wsup%}t?%yV{H>LQ=;NMZc
zZ-m5eY5*EwIwG{UWsbx6TQa*aG1HPvocY51?hZgoGyV1jam7axw7cPG*$%#qq6Q<e
zY*lz6mzZFHz|UH*Ybdz8r;GDdn~~t6U_UVAES_tet;&SH_nWs0-NP%QzLoNT#X&p+
zL)NVX{*D3uJg}}>eUW3+{_K!mB@jC{IqwN>b@0_~lSfO9*4qkOEE)|?Qa7mJbe<xG
z{oNx`@?Su{=jS?vXiJmiaAQ%}Pb?69;|F5fXkM;fa}WqqWtwp+U7HWH^C0o~C2w})
zcLqh6IHggY>S)1u^|~$)L%$taB>hF6{fUeGYVSv9B#FN1V}Gj7g_8iyTGqDC@61h(
z|CSXW&Y1brWPQ}b5l)nIT|;{&<pGbKt<rDDGj}q6vhPAwC;hkL?yaUDUf&%9;tGzb
zxSr+uh$-Tky_rGnw^`N*lui#EJVqMx38O>79H!lUf-sPv*2ujYGK~#%#;Xg?o6z`6
z;FEiT92y!jxv25dx3|C;54nYH=-=Ht|M|3sIH*TbhmXwzqGG3$rgXhmQ@j>;YiQ_P
z<m?w}AIeP@v;GlJc>%g;RGzX5D=HmR$^4k;ECSd5D0c3j5+S-ee*<jBVaX{>JbHzu
zs-JmwFqTUxMxObsc@h5oc0aq4zcOi|Qn7sYv$IS;aBD@<3n0r4nS9|)DZQQBRJ7LJ
zILtBtiGF=YgYYr_G7du%NlOdjVEM(#N=8HR;MY9K#@t34`2()%!Ekl@IbJ|p2(X|D
zrUCF<^w~vrJ-Hn7wLf`(Z2S@|?->!N22=H~z%57Ee;m@$>EAH97v-?mc1$QcUNa^J
z)?#B6%Z&po`F;rVpEQbofBkShuhlYl7o{z<OVK`5tdjg=RqnjHLQVBIqdw@AnndZ0
zCX%TiygvF@H4~0&?Y_>A@52uRJ=hgPb?;j1C*$CWKi;)IR7FK0-3kJ?|AUKpnBSZy
zY3Hew@JuR?QLSG0q`Lm*nT6bEngn1t|0aqI<;=zwH~Fg5HyF3=#Nplw3aFCWceeXd
z?op9#x-Vx8nDt0)NwUqsn1>fT-N9>hfKqOpMhQ6+F}&~q1A9jQfb-!qw%Ym$)yOvm
z!c(o)!|4zbBSJYf!p9yiQ}_eM1emb$6!Z3D^)3?xU?U&yn<-peozT)Eyl@AIg7H1+
z<O@Aq%#V+%0w=+`t3t+)QR**&5)n=)``;%%^Q7W()O|zy--vt9pC7Z;@1QyV{J?3g
z9<(GGd+fVsTiem!zdzCldsJYbA6sdmWes4H4>b6K{b5UY*+EoPj`6aSU{A65YhOK7
zJ?Zf?)<ygaLmSU0roI&FZcgP>fJ7P9AMbq#CY|f9Y{1%y+|Hi+_jmjNCHwzs`tEot
z-~a#nERKC_vNsV&$j-5nkr5dY2ZbVpBEmWL$}D>mC7G33j;-uOWRL7kMmT=A_vicb
zaQ?Z^d7N|I*L_{D>$+aA=h%xzsT}i}peS=rMOKAS9bW;%eEA0RLX{~G($s!dROG$T
zhzb0_kG40pFb6ve{iRWlLRdyzrk484Kh)qF3`TIUEC!(hqZ#{^-(XP`boX;gUsPIH
z!aef;G#4Y;DFEo3HmJB-$m%flH5I{fgDLQx)|0HJk7f6LZDfiW$&E98iBWdMjq)L`
zYm~F64j(qEvXIRPIKAA^Fbp<f5v!@WWXnN>D&x%MnyYVr%ZUI(dIL2E+9&>b#;2PD
zYrBal<VI!$u<(l8HLx&wlahpafxCr=i_~b(vZK|y$F%{+Vq(s2sya`}CSsSr$V0&*
zx70t7TQj4y5kupgu2^atP1ey!h9lZ51Y{iW^AYEuA&Q+^AxMSRfo7K0KEC40!=thL
zDhhX+cP%~$?pUfTJ>$e#7HY|9XZ6*5dxMuJb#x%&?{N$;@fRyJWU*cqi^_#9^s7bx
z3pqDoO#lZ%9voAZ+a%_VU0<ZW2^YV@_x&43gt=MWChlHuMJ|Pl!cY9I@V<h|YcCN)
zmnz)v(lhD1p(pW|<h==A@QXV5Wkl=D2!l+`voB*xH~#8L>E0Nf2iGS<7ElnX)q09A
zF@%qDeXV~6suE}`8glcXAmet9s<S_do~@zDFQRwSwGW~=?Y^eJD&wo(VIHLpYHH~T
z?hAU3bB`nG=G#A<JMG4OI{k0CREKhFch*(Gn?V?!#xR+1-X>w&gH)}n(aM`p<LIxh
z@R?(+W5oU*7Wk1K#kg^$_DQ>*Sk~aOSCAAXXjqK%bZZ#XBe|WQMy@Ft_vhxVHBrvT
zaa3SVfAeuu_m{S<jY06hu-*=`8BimFvU*;hYsOk`L4v*S7E96No=X_{)!xttUdjHL
znYgS>aNpj4UR>zDUDL)}dX9QOZIOLE0iw3ZLh&lPJb}CcpeP?Z5XPGwcspC7n`3(l
zCmOFvxF0>uJZr}fHo8do#=(X2pT;fkk6$IqJzcK<#`kI|4wz)LG=BCKOC5;_9b&7z
z??92xw$3ZFSiG)*@#~Xcijq<uh!GEWJnXbQdV|C-7zJu>1UOsJ9(+aVA2ca_c_kUv
zDZ8oac#aW{Jl0Ny)V`RN_Wm4Rg0b!CMYvxj-m5y?3Qh~cei4!*JT}w9Vuj=Q92NPx
zntGO1wyPZy*6an6RA|9r5e3aHL^bJ2qMES7;Edby(@5JSRDcbilK91ev`FzU*y>&#
z4ajF3H}HZ%Ydv<P8@Cq!06hUa9{IVJ_Y4Koc0nq#a+&a@o$$z8X?j||cWq35axq+E
zcTe9!K0MNx(eqZ}^bL3~5yzYU)8X2$*`Tx!i_a@~12r%2FG$1eh;(f|U&Pi)RD;xM
zqddhxdV$xB97#AiD3@<H2#WJZw~vruHHe^WFauE9wya#q@)oCPxHEx&R15oYH9zK2
z7)YRdvct<HWR5G~I9q08uPRDQ`-TS<mUsz|A9VXq&gxX3gt}`FT2I+LG<3bqFDpr2
zUQT1PSF}2Q2I8%rySU7G7oXLMDZP@I$!M}9oka7luKAT)-?`&{vRY@jA%7m_a^6q}
zSRv7y-KQyWq;j?3b|A4yK9g^I+{`;1zWy!X&(t4_{i@1&;zdj4Jb}whi)I*9jNv9m
zeiLI(jZ5*??cxx&?yWG9<PHpUGwrO)=8^tcn75`t9vUPi5bp^Ko7Gp@(^}kQXm*<O
zwqXXf<O6+D9H*R;o9Shw#(o@Z*|4^8F))6MoMu8F1azH{79U&(ot_*kY^Qg&b+5L;
z(+5q$1*Fn@>nWqwx`eMCOChX~?@WUa>1Iudkm|+5u{VJmRn3#I;L(7i`)&Oa`3r78
zrJLFY1Ie2H8^$qYfaxktm7Zk$Q2}4PqG6dLO3{S-$~?S6V1b(3shOD(7I72+sMq7c
zZoY`Q_13sDXVAm#_yr`&ZUl)YyMr;R{fUny6(c&`X3VDh`0PjCS-BWIRVdm@+@Pma
z&sSXjM`;&B^FkZfkxS5%fal})c9;5gpg5^X*im`sNFH`OLZg1>(~CceX-;o@%}1JK
z*zKtxqtpEh>jC`&-EX3BQ^TI(x#%!hF&GlrByUBS`&<j;Ug<ydU3UJXasFTDdjVk_
zb2RE&COjY+dK2eJf;sY1u|R>Ks{D}${?5x@T1-qLzxjqKEn}a~r@tApWwG*r+(uJ!
zgypFkQAWF@Js7L*;)Dc1<_;LJw?DchRw}`oC7=s>-XN&1)IVuD=}=ZK>*Z_B)7kEZ
z&Yn*vAmP5pwCUPTMvly(WI5Z>Keu1=US@%F-Tn@q9A!<|YbK$1k;@FCLahS#y-&Gr
zX9bF%eql>}FB$syTndQ<DP45+pW+0Juh_qS<2dIFwaur%k&^|Hr6_VoLu?8+S*K#Z
zabU&llFsZ`zWx!ot>{w*(hS1U1!)#{AWxU;j|ZeD)30@X2snuHUbPT@_uc+@(=(;<
z!FXl{<F4GH`Qhi`$Kw-vu1~}sv^E%t?|FUO>uYtS?bA@3^X@pLii@_radvHojk7q|
zGuEcDib4@o&;A<rBE{gbPU~5U1eKSM7uz)pDagX(<Zv}Laf&^k)L$jGEC9}ohCS{)
zp<VObs5_bdEa|TScMJ`LQ1Y*p-K`GBYnN_|@FZR6r(i<C^6FsO3#v>jlt=d<U;*~w
zxqPE*uhoUnwrY4$S{*1)4+^-yH^4o*1BXxSJU`b1YM6s`yR1Q)a^U#&Ur%9S%~^Q}
zMc+>u({ga(v$ej^!;#KILHha=F`;_KE2n%`acwVG|Gb?R2pDTeQw|XWU##(*?*F-0
z@mXxH-Xk2!f_q(EjNOT00*@wljDm0F@SBBD@chk0{yy6kuqCG(Y9I41fob)5J+Fz<
ze4NxIPwUCXQaRV{3&-#Vfrw|6ARcCjxR@HRyTGtW8chq+p2T<M1qpj|yS&ASQ!FvV
z2FnP2#{RVrEx^(ZIi<RH7<9t4buk90QF1qt<XV&u*kw>N59!M+_1a|kEE$TkNWCdb
zxg_VOZTMP&>w6YzlH>-+#IC0*E8tek%-H7dzy{?g_HErgyLy~4*KTzf4PxgVCAMO6
z?6(?5i)4pqzjib6y?H0t`yCujyaK@Q1qqvCF|Z)hH-)Yx1ouCVJ-$<^(T91b(sh3j
z%)Wuf90<bO)9anOn?N)ZjM0;{rA?zU58A}CZA$kl6tjfk>}((%G)W06V-p6;UU#as
z<IC6#8CrR4GE7>WVFbrR^{NV1P)ugdFRr{(<~@_$w^9*96RLF0Tu{bN1YSEfH}X%Z
z+L!L_j~70cDB<00Tz+kDd}+TV8u`v6d+d73N#astvI@=p!-nLhx~v0dSJnsO@a*ZQ
zl+ytY@BiFjsLT8?Z=7^{C)U|4_e13fowjMp4bi=6Ci%rrv_q-i_&Q<;AA1Xy>MKv$
zENpg~BVvdcJFcKx(P|s#A@xB=*%)q8tOmR}Vv!oVKY@?WgU)j8IjWlBBuUf(365m~
zLh2I19F)H|2b}^)XI_52#e>o-O0wk1STp6w2OZO@iw)X`->1y<6Hk`93T4Eyl&N&b
zi|rozu`%g6hm^cSm+p84vr#u+)k3BYR@l`jnf4UQ{d(sfj<k}TxzQgh_k_A2Q^HVe
zwT3sql^ia+N(wsoXvuQ5&0EqS=p@zqbM}8ZoA!2|zI(}u=QB93?yuBawyov>JyD#C
zLahAolGs+_yzp`dI?%tgN8ya&j2_7kln5d_9&Hkk^)McFL@bMY7}<+596$V7)@EyE
zpK4Fe4;(m+N|?k*F?*;|#q!MKqB+SplzY?&+T1mW{1(i$!H%`hYdWUsq|ePAL~VkQ
zYa{?_<5+#M<8(EbXRc0n<_1`-Fz&4`wrlGOdm5)Dt50Dj@9eS_16=$0-Pu;qkv%=+
zfu;e$jJ@LvZnFJPl9=j>OKi^#A=A&FDSl>`&%m8d{$jzsPyRd~8_j%olGw9h^2Wb%
z?Lhr|F|uj%w3T)DISGgf8p{fAG~?GbeU1KH=(ezAzEDPw4A~I`I!-0hJV=9h@}^n0
z8=x)KF*pK!L;w6ev!7~43|jEFC5x{}NP5JB1e>Lt9dKV1noubHg-3K!Sc3<Fd%e!?
zB?YACCtbRI44*SyXI37EZ})swcY0jfJ|O}g58lvH6wBC|dS3Z)xjF<_!TY@Zo20uX
zhbUI>Zv>P?^pL=7?z0O!{Yze0kH~D@)-zr}Q+n6)%F2D_RE*QA;cSVFy^hw5{OWo-
zKNDj+oGIdS_WO;)Pl-<_ckT?c?_#Ie$w`=Wh_lK-$e!#Hdz{NeaP=41Y~fbrmPN$b
zR?Zri%%P37+s^=@r<6!IR32z$g0;Gnc6e;!ZVn8hTMiD%A&caYX7^gY=p<!}9%uVx
zBzg~650YN_s0^REF~9jyWs&E$piJowSITca^1$7`aZveoR?EQEO9S_1EX&`*>)=7<
zp9=YxW!IBBE)E<nM1~%xk_&KfjQZhEQo|SD@WcgGOSEvGiE95kax;04@#{Z$*u4p@
z)J|V?`TVRI&D`s=;?hE;<kZs(0kAh@T#YMs_ivXB&Hc*UqNzSBzhXMWqydc<^%gr7
z;K}U6fhA(4s)ue>IXW+tY!c77ERMo4-0=X*UJzDni5fk97(&I!piKfEsMr3Ky3QP*
zW%;Z<kQv!;dJ*xdkN?Dm8hMY7uH_ji++;YNO#&FMNy+gY{{Wy+5Td<wyy(p9GslWe
z0;}{d2lV?lOx2dF71&40i=T(pjTz9X!y60_6|iU_Ld*}wMSZsY3?T<&u01*5OJtDc
z<?gxHFvsoH+3MwWF7lphH|dUTz}oCqU4YD^p>(ZUbVum~N%fh8l4e|fJsWwyA4pzc
zmDp5{YPM=N=qD?0->p6uZ4v{OY#AX0!Jjlw7d%KcdJG{Y;Ne;AAntg|erhMM&ZFmZ
zl7Fq2tBQE)AhKg&1y=$VG$$VVR}I<zB6Tl5e8OTC{@obQH#}h&-9(&Gc6$4vS(eKm
z5!M`?9hU9FsXV6iEN2x0fMsWK7q@26vIYI-ItXmT+_}$#?agy^k2EcN+llRE*cOoS
z*h8^~VFJr=ONZGlx+nUU54^qzq^d9dJK+lqwSDf#cKtM6H(_w%IWhaKjS(QcxE>ns
zp!lTC&EO=d*wJB6fpglIAjY*G`RD9S;JqqG;;+-3o!1XzKc1_{QGpmtJUebjoP;jm
zXW-u6-M>abSf4uB6jYK{9uXuTDAlY~hDQ;$4!p3Yo>b{d^J^vj2*biHFAhis-@0A^
z%c7T3>j2iBMCSh6)3~V%<?(CtHUaz6zNFzgbCFifgfPCWQTIanD^Ee0qtfQ}k-I%^
z?>kGu>_CwW%h%g2dg*3cnL>+95|=Ks$c-sSz#RRa6c*5QHju>kuHhfswkw>N2MWi`
zcD&x(uGdY;zn10EUuqXc+fc=m)MbNQq<!fT2jN)(c<7t{S|O!&wk-Qy)Z#pq&NQsQ
zzp=J1;JPt(4sU^@fTX#ayJr*lt|up5PhX`fqIgJJLIF>@j&&Zm?T2#{H)=(Lzq7l?
zSA;>U4T^i8f3WH{k5_bFR&?%FH)B9#g0v+_hnKJp`6EFeD^SJ#f*q48Tfmre7H5-N
z?Z*A_w}&KjrEhUCtJi+3&KkhnHAWY|p^h%Pmiy%m^@pbq?@JFq{N&v4)WycW^v_dn
zGNXNV&tLBMSX^EZ?Z2mDJJPayalb!?$y!&k%a&UKidz_rc`GWac)c>ixLFC*1u(<)
zZ+aJ>JP#LpmL(V7tEI0=FT1DpZ(DPpGVdwSB25#mK+<-25n+<FQT(UocHqfq6Z4S;
z$qXIY4Uol=xi@dOebooMzj?pok_ZiEM{ldT81ef-P#tPYP-fzab!#f4DqpCc;0puS
z#`|Pn56{1_ouAGZ?~MO#P~U~x#j197KhK(<ISyb~n%>fw+eG2hQouTVP_uf|d;XJj
zgi4*$4bjae4}^HC41(N~g7&iBPA$sgP~Fl{Q&u4H+qA4_^W84A9Oq<X|GFB>XO%Y&
z^WjJs)7{f>^K4A2lVNfBmnBaxmW2$jG%ov{O-#kJ7nS`|HY|%7L4VjXp6*Sl6+O|O
zpT%OVnU`6FvF$OwagVpIt?V$8RO$Szr@~G2j}GtZ9oV7N@I|3qu_GM{6VHx4q(^>T
zpqW{!J{(rS3>RvzP6y(&kLr00(LI4w4RhG8z{oNP6aP8r$S2diG}l^F-d>taVvLpa
z(P8eU@&0!&{uGvWuHO$26t$a`BWarWNK?)(N6YQNG!iEF>SypT^(PQiCQ<9c>J9D=
zu$-COyIL2dDjG_=VSI>QqWj-mamWRdQGG%}ACHUjSa|p1HHh$0`i^jH)(0}G^b%Eb
zGQ0<j8+0Cp!r0Z8L2qD;`elUEqb@}8WuNIRv$^y;6gwN8BeMz2-n<zS{4><1dDY!I
zig7=R#WPi4-Zsx5$)5}$!DE#MPj&_F^K`I}LA0cI1}+C)t325Vkl$rab{h37ff;Nm
z(f!CJ%?`V%dXj^%4i*c^>=)tGhJ=vmfF%Mj4rnh?Qnqpsz|4=i8HQ*aJA;aGc+(XJ
zllz&_ju?7mlw+E8Ow=b)3LeV-b<fQw4oDhU7alGvF2DQcMeCv8BTr@5FY8dNN{{Q$
z*cDz9UHVoYaBYONH2~T~(G6*-w^327y?=eCKcvik_+=fja_jF8WQ^O5AUh$$%Y9-%
zT@}{pr^JIp#kT%lTZ-m7b>j0$f^7C=R4ma&?pRTS(+dg(-6x}nWN_%{D$RL#ZmXfV
z#_)B)7ACqU63A&?57RnKZhFk?JJ%aTUe=VSfv|0c+wY`ruP{7%^vKZIIM_?!;vY<A
z-5OHb`#mYloK61XAO?DCC|>7HyuNeSeLx_Lx#}1?vZWA}bG-p!;5HRkDpRBElC2<G
z_VzOGDMLqv$EMdrqc816$G?<$_&x=qv=Nu}p(-;4`?n1|yeHGUBd3qe=t$H<p<mB`
zh`T7gxcgg!NsUNW5ZDC7x2a1)Fbf9UdhAYK$gnlkD;^R$e)_P!%MqE3+*DLPB`_Uz
zsGb9lx7>_|8)rZJa?3{d-N)Z%w5_U>prL@YXr^pu&Er0-{;O35_{848U+Jq4xwEKM
z*gvf>xYqheUc6#6H`@YF=QJBD&OniMk}N^l(hzvFM}I*H8U&u0|G3WRR_`m5+>=gj
zeh(U2emU2QcCfn{6d=(gPO$^FrXnAG8IU{#s#XyLF*qoEkaC#Qw#erQ`ZAXW(`peT
zVlN&58KCy24VTktl+S`>g#Hi%Ql$`c8iX+Vv$qECYh8`1mpb}cf@gpw@#pWsQgXTg
zp^pA6!+uUMQY6ambt&Ua7%pKB9mBATU|f-o*Vp8VI+hyWKELio0}9gE{z{O#AVM})
zY@n#KR^1c-=?E1bg%-=mVtezSSv6L0P!!kL`g(q;Q^{<NSNw}SWRbEtwpJ7ZadKP4
z4UVOy+s3@reNfU6!pQv6_SzNFi8M;F@Be7%{9N{Jo-&7m`rV*1^W!fiVk9~!xPTmt
zlV?VoWj`87;R{i|GT>$a^Vzv6;UHa9>Eg>lE-bgVjPU-&2anewdt0LI@JyYvj<Fmk
zf9ItXq@7oGvO*D6l)H9mH$9C%RbR`qx99T>P^_-4*Et!3oEfbXSE_r$W&Qg({KO!$
z)9@?Ksu}Y&SKWK{B%G4f{PU+0VNj1W?Nt~Uequ&$SbfapFtbL}P&j;qByPBx%1Lt*
z)cX+C@YglB%8?qUo6U#J|8|6qo-8%Udo}Roq2xw}!?_x(*v5h&@3hsoZ||5f-T(SM
zfao-xB#NRt3-1#YaX3%%0L|1mj6V>&0&i0jBGgUR`9SBu*>m+H-d`1&fGk(8c)R;n
zlt?Z1(G`<h>Izvm6tYwWlT-yS=FCRS#`_Y7VI-DE89wo>#dV&uW;M6y;mwC4Z_|TJ
zqEv@k94SLU8iz|64z!i_`b(AXh7K<yiq)TZf<nTE!m0e^7bUSY6LQe>`;xQN+j8xK
zch`bJpxPs2kx_wXb<J5!&GmVTOiD{?>5Ibs-QIE4#l^VoY}T}+dptO&xus{lQ2d_1
z#f$k+4!L1v6#p{~e&RQ1UW@&CI|8^k+itQ0=_GRL)OeNyEu~MJS-Da@Wbq%MV`T2(
z&?*F8%iB9|mKU*ci}HCwcvhQhB9E3r*0mgGLG9nlo1w3mxl3c8F8)gI4Q9~980oc0
zQF7F~9`Fb=NbBl>(t?IRmkU)xCBbqAXyn?_xN-$u%0s@VI2n$@*%Bg`H%dYm#Sqai
zsJtnyk)o^Ki!**wN1=sjE)6P=?&jp2w&n+zVcnO*W|c_c^(0~2D*djVbzfb&OqA2s
z{Eh!Y#ql-6ZVbmTN#k=+l{|7?6m(=>L;xH?mE3S0cM`P_j0i8`b9t6izYz4_F1yO)
zRHR>Wja`7{mH2+$gc9ANhY4XQ5qCzzJBkvxW*rLm5sA_z!5wG}t04mdOo&S&N=kIU
zAlJXbqon)|?|gZ@x)DeP<FrfG#JR(x8Hd-xWF-gP`P`ClPy3G=6tC0R{FIn@@}eA{
zD7Q+3QdufWoq<}p@6#}D2b&$ty|B4Pyowb|_R)Q}!)19aVYFg%v37t-@dY?UR2@F5
zdlf=ky}DT%YqPo9#%B7-*3_6JUD@ECdvu##zHTu>`j(t&la>CcfJij(CPcM53tjV%
zjAh_y`%pRyR^OAiPBmd2?UV1pQ+h-G*}|sj(9l!adL}i&Kq*<gXWcGm3hz_z_3Id-
zyVji$_5BIYzLpCRtNar6@%Z$(a%!ur&FD*GWtc4`N8pzVpNyure+};IbL*)=FinR~
zxRDxmv{>;gLA-<^TzF^?WxOZ?sw@vv86S%rPXUREukLb1l7ZlkJoTa5D78<e0h+7A
zU6aQ<eeAxnS|F}xfeZ;TFy>WE!C2>riBB9KP1PMQ`qoKj>8HC2B{bD6h#w|gW8Ynx
z7+1RK{ta-a1Nc6-FJ+G|xLv38Y~UUkR0$!KUGH3(f^czZS)3bb2lAvC3_7R~f9bNG
z2%(Um!1N6*WCcqBh6$1_f)lrCi^B21ntl(xY)FAbk3YJS@tY0^Y8{|jUXlK>^6@yk
zNdDP%`>^7=c=uI0bhLRLADjhHmu;Z*&@5A#A&0qnazv)4rg;5<Du7g&2hXye1VsCM
z0R`)h)QkSg8wJue*f6n&ssAej&?<pdexL~E1BrT4Pffl+Chq4pSAybS;J_rYg;dZ@
zS`?U!Ko$tW=fYqMp{Gv)C2jmHFSq5)(VtCME16<k_tG^rLQEM|D=y)h7%8sxCfiL`
z5vO+yl&$Dc94`)|XvH)9q2}?^aULw-z4jY4lQSzD)xun}ZK(4Tuk@VNFPDns`Y`}e
za#bT-$j$jLxVgI#@wVgV$)lrBs_5f3<?iwxhkpVb1QG%Von!I?L2qITARU3W4#lX^
z&e;4kZWdJF!eHcN&l|<JPiF%t8Rg0{$8q%^1;@_WMOu5xe#vl%sB7uy;+-$m=BpVo
zBJ=LfA4btXO@9t-hK;Mk4g@_~Z|PUd$`5P|@HpB0QQn-SSHF}ad%l0;pIW-$%EMu2
zAqcN9`CP<wpL~2lfW!{P!c&-KtoO{X@why!JJ(<sePhEfTMajfVt7|(=zcu7Sn{zW
zKnEf?_?owXk4iyXG;qHV*k^of&KA_z$sI`Mro_yFK(EsW`r9V&ThU&Hw;#H<;__Gr
zN{NumW_iLS4DEe1*xUL*bx2q@pZ+XQ@do<PFd_bCr@<+)wfRG{uVbTi?Ni!XoJ5p&
z^$DUepKyMiSvzvN>Xd4e-|&)Eu8JAKUNO#o>D?w4R+zsK2ONhdRyJ|s7|yEgIGEpU
z)8NtCaNrI!bAXro$oD7o^I5+YE%wqvy!v*5GUA1sE~%^K?-+p(G9w=qTKNMeUliUZ
zk#5BmJzP{D&V9s=1Cy!*22XQ>pfJQibEAckB*-rmuQiH%zh3qU!?M%u$26R(71F!J
z{8c!|&zdIsU-0}Xm~%Gm3ppXCP4S$1oJeM_v+mPAXQ;c%)n6S^f)i_`#-th|Z}C!&
zQ(t&r$%6z@QE1B^1T_b}xgbP)ogNv1D;3{fo^lm?)IC#l{L-o9R&#|Xq!w~d0yAW6
z%G~_Q;>-YS-KE+)$^*UoDM_abSL@wZk)w)jYF)~)r)TPHEoLHvZYzH22P_lvu2cM~
zw22E#y_=w_hw0C9&sfL9oaXnP3h2~d_CC@qgW-uy-jP1LhnWWvtZ@AMC=l;<!JR#<
z=RP*XprNsJ5QI9mzm6w!Q*>rT^H%EkD^<Y<4r6O2E1*A#!tJ}w9Ml7MibE<&O0e#e
zfMa&ky-%@_AgOPVnW?O#uFT4cw_FKo+%Gbxoe#Tdo0Ot)Y@oby^7hlkeO>Lq0}~B#
zIsL!)cSbjj<))MkL(~hpRFtCPc+U+hnQst@TU6CV)r(!F6&U6IM6N(XG`#Y72~Dru
z)>VGUV+F|$7buk)8`$<NZ`VEyp#QyUY&v$2BfY43K*p(_`pzY4Y!vyeJ9%=(Bx#PD
zDl__Aua-`#;}1Ha6V+^kMu8e_5(!O#<ax#RIVSA}u}2%^0YrWkP(;R4AzR*^q@jP`
zt|FIN`>O>0RQc0M@RpY4x$U$C|BvDm7#;(%p4p>t`Ssi-*MYq#U<`qzg@mEx2GTkc
zHuq{h^kJsA-m4nF6o4~ul$5Cs^?)YAMz<t$9~qjo8<V6;whO_zZ$UnKjInwme-G8(
z@F5eux|))BWR>q-O!Hj^x?WGJcA2fG4ym^>|COK6+=z#9`1|;tv+h$eMrD5HO>SC3
z<e-t&M+F+Hl5071=g5$6LV(kynFU&ib}@->F<log2EIp@d5EB-ZuBbUYUp#QwDYAB
z&$5V%DGFj^_iZjYDSx+Uh!cP>aDqAjYIhiL&EIIymeeN-)W1C;E_C#zayx$c0ghf=
zVY7)UDVJb%WC0*W%DpZehZa2^qiwQ{-P=+aivHWF@WhpyG&tHvQJMC5{M<g#!JbFk
z|4)42yAe<!3Os-TEpo}o2MaI_0mSc^M@_D`gw`+3`RptMpR@YrqQ?H34<v$JMH0+r
z=+*x6^yxcDyd5>!Xe*?olNRj>CxlquLpj{dU1Jy>Ci&32JG_xX4{Tfx%&znY_2ISt
z*7J}-MRxkLFU!RbJt_4=m9uZOMP|DMC86#H{z_RFY61m-PbM<?=ZW8Zvj1;<*N9_|
z)--n^`5KtfH9fht^=?n4r?t#4Ss5wPuhxG2!g=M>B^Jklr>#7`nljpxL`x$RVZ9w`
zW;=3<Z?y53kymBI{+OoO8s~J8K`Wx5->3pK?!UJV_B$c#l82%Q80*ds`pHqx&oo(M
zN|fTDLlkHBm88@8M56E-IKkwgpmnXD!adZOd^}lBxGOUmIiDXbFBJP4^;tU+ubwN^
zS^39`$+F*}vhV}R`{G|%oqOa|tW*kK!sNlcFV8bHgT;2ufY7vRgp1^i9Q3vXs3jJZ
zJuv+Y$ShKxdg!k&k2Mg&q@7N>hCwl(u`@3MIUD*9?K{(~7rd-rSrtU6q@P+4$hKeY
zztlORh;NFkO}cvyE`t}*oW2VYK@SP2B9Fio>I0eAp@QcWQVKPZDP-$wms*<3*e^*@
z4y_rRU;jixk>Q*xZ1w2mz2b8~@K`G4^uyBPGZFmNX8c`fMG;Cz!2i!~Q&2-I;Ls0f
zZ{N&<7#uED%<FN*{=GjaRmkVI4KL0!nWF)DnMC--UMue^FF|*MY!?z04MgiG^8)b`
zK(mr<9R$D0gWt?!KX^u&XKGyWRwfv6h4tgeTc?}vyPQf`SH_LLs;t&Hl8%ngzNpbV
zrDX&j+hA(_QMKc$$mdxFDsH)cZ*lgM>T(0}5q-@s5(+FX?{sRM>2Gg!BUl*0LKu?X
z6c}&|NQ}f){X@vbEPP!|BNs0G+hx3~fxSt%*L3nbUc6%7ib=8mfl<Nbx4NQE9|qB2
zt@EHmx@h=Kt_V4S(pwPs7c?q^xhqiL&3G(CTK^?HBz(iGZ&0~#Uc-%A$S>SI03C;K
z#Jk}AiYTiRZ%!MuOxbhB{Ci^`v)eVDL~j^!nzW}p$@9O5V9LzT2%&U{o-w4wB8XG0
z&}3xA;z~DJ(5BA48UUyw(Yn?>m@r(~<cS1wFH=7LbouuqW2bjUgNcKNDW>tJjBm+<
zJ5tB&agZo=Uub5=cy}F+2TrM;OOPj_VE31Y-BU++Q8EprUGeGM?T+0KS3ULkx#f*G
zZR50<ZbBaO-M6%Relc58N1?bxKq!YI-f0I+4uLz&f8&;-1ZxYQpxpO#6M<>Qv;9~0
z?U8uTV1+)adYOI3j@+vlBNpjURoiDnmWK_YGSfK}kk<62a?5uA#H8mfhxW;i328@0
z_Gbst?T)}J4Wjg>0XGVCrPiniA~gX!4P5UIFZRT50<b{J`C{NVb&l$~bVlX{8~DsB
zyZq%kliIaL+b<}Hq+u`+?)<+~yA@6+8pt60;lU%vr=^U!Zy@1qIHk53OV<S&XXp<D
za9kJ#!e<rj-lsMgUOfg&G~f7uWkC!tR*n~wzj#v?XVG>gzmv!pipgX_@$#lK-%$z+
z_<HO1sw~+~3hM8;ZpEW`l}Xfp&xaoh<>h9%ATF90BHbOx;2r1mNIcSvJLW|w>W+|P
zvYZ)rSO~oU<VJ!D#WZyk*hsZ^P+U4B0eMpp`eNa7LSwNySAG~gpBx_P!^2IwAMitz
z7unLT8X9r^)r(de3FVV%?@aon!0qP`7Yq)e7f}=%2^>l7TDUh(s_+w1i&tX3Sr-M4
zD{LVa$eULJG(%v9dZ<^omjBQNFdTQFnyRhDb}V%zO<!34|2`7Xz;#mH6oy)fA2dLa
zH%=ft1m1fPw9WCHT@W`OEu68;mu#DN??9)E80W(BD)$`?cnHM^YXgQH03GB_6rl1h
ztg%C>_qoQAhpifcZTE!u*MNrMTg2C>!N9qm^P6*Vyn##`Rw%G{FG5KHFI0{9e9jf4
zrUlqaK?`3-rqa#~QoVMEB!29Dd8Vf~>A%QKatDM;{@+6!<0Y`+gy<m&t~ix%+}6mD
zdT38gEQ{*Qw0MHMFIGFU(&*2#Xa`~n=JX<D<XwW|Twx*Rw5VNE3_L`0RC^M~!ZRZf
zK+CyW9lsG9aqtBZ`aQQbRXlLko@o0xupom(K=1-L{NMU5t%=hveA56?jg4iw1Q1fK
z#%&hMk*X*G@)qF%oAwHm7CoJR_F)%HHF%I1AWRl-7=;Apipg)(K@!w3a5HwJ)f8=U
z9Fl>2w*mO0vHwP_lXuF2Y=lewlmTQjh0uBdULH_nq$Z|qT+<U4g@kN%^JY@QB(#vw
z{-ri_oH|{AzW#+$2<TIsn+sWn4d`?R8IsW&{-laPL9NZWd0){m5F?r3yQX(OQ)0-T
z`P2O{xcR?(Z&@B9uz=|*S}3i+mwO^S*slUDtSYZ&G-x>)1=c-V4lP2pn|Lqep}0|r
zNMH!UjS3Tjt2xpNre2v5YBZOeIk$@7Mzy-jfFNk77Web&+^dlnd<Sk59RLj~XC#IY
z&=WX2wcM_g=FLFc94?aPlv(PEtKSi3asTy++CyrL3J0m0rUphP1k-cXcER$uPvFCi
zV9_5u73^~o^^qF?z=w2y-x=^-kwblt4iOcGCr06U#cb~WYNB05nctTO#h>6U%W^;r
zN5MRX<qD5s6^pPDiXo2J&HsbE7V<~yznirkl`Daas(0eich$ImG74)_^7G7Z-^YJX
zJdH@WelbYjA`hG>M{j|jNDjf2vIq;!aYa5#k(@UAScek*dqjtXw^USSfIE?8ay;BF
z_bs=u7K2H`Hhsc%&5PcD#Q~52&MJQ=t$~+bO2}dS+hse5Dym@y9imFsr#i>fa&arR
z`-3&Jx?7Kal(K;zOc|8qiAe_ylfCo3TBwl0<m2b1?6)0S<sHDq%<y=b%RK{l%m;3!
zrPR1%VDy0@FS923TfoJ}o_-vHsmxYV?+iv)QHrR1KSHuiH_)G=@nHUrCHol%(2-p@
zugW6Zhp`$EyMdMJ?27_Rta<E8D|PfA&Uy}M0CSDbQ1mly!GW)+6>y+Q;$dvWSq@z*
zQbMD$vNkC9#*+!*^#g}_#7iPXmXxr^i$@<IpNa`Vu#|4h;O~S`0KJF#xr!{dFSLHo
z^OE5(ptBK7jS0wB{QW0zH@Fy>(CCZ+FCs(8!iz@&XE$m_4H%{~ri<p)!He*gkdW~C
zKRf`sA_q9SjJvC#58gC}TaSej3XYASPKfzoXw6^9kvxac#dVY*L%`Qf3b(a5P*0o*
za&ZM2@+1zZamH)11dz_~<DMy4|Mv|sewpy?+VgfCtYUL(+5tFX{=YZ$kf+t{8#_=!
zOA~Cl(Ei4Mt*E_G+`a<QFuhhcXTWu;3*;2oYaN}BH>3>ImY{L-=d7=TKI+_K@EW|;
zUT@f3i<TIOpfKy@U(sU<iZGW{H4+v6r0uxt^yBsLh_I1lbkIQ2!^BOvHsjSK4X2Q~
zmY_*tVGVRDJkRN6^n{vNuXDDy;5ip%b**RrS)Vs`rl-nc-_6ADrn?Qqk<D?Ah%(O~
zBG|zR?L?DgCftxSht*-ttsEtf1Ne5C{44%<>zS!5Zpu|7&C4W0O>T^s#KNj-WTw>?
zY|RyL_-DDa?FS_Czs|T{5mvs^N0kwwp%0OO#-$r*C#r3ci%!q;t&sx+J)1eM+?OrH
z{t|xe?~_*tt`DWuR?eQCIarnkxcLabh2Kmpbib6o8Qt_Tjpjzpz_KEtvF<g$$g9P%
zmL$K7DM0VAJ&@E|vMG^2^hX}{!_=!TQ_J$}3QEAo3`g*n?6LoRPCtFfMD@<`hU2$-
zKk;klp(z@_3@7o9S-tzWyd6w<FvGbgu6_HP7;tB(bN*LU6$E&@DVGEErTb|o>Ih0s
z`nk(x&=-tZKdC>Qk<aa%&`mU<n;a7-%HIK8OIBD|+lpcQ+Lw!(-%TZ(c|PP$59j`k
zH|kVNEX=RPaAtQzFYqO%$0l$P%m~J@(frzoJ*w>q6SwZahAsf`NI`28Ar6UCyq?Ja
zXHskcJv>wuAJ>t89QCNA_>Vy@<Y+`PkzZuXoA})Fbnh;t_TA^b7U~(@+_4?-vLhd1
zFD-j<?bt;+eM>kPm?sp+rtxdbv%=|)txqX#Lu%h#8ldu02uS3AY~fv0EN}6)gD*7p
z>%piK`w@HKHS@&6UUR^@&r6nyd6zfAZolwgbou%WyWyW&oy3nt7TgIduJxwN6q?b4
z8M%C)2snFD?H`Z*;Xj$|cO>p2W&($C3r-Z<tQF&x$^4PeXAFzpKP*gTe#z93qDp!Q
zQzul-i);TbO2$jz!lS+%r4&Ld?%wk#r9NWu>3Pnr{rg54@OY)nyvPKip*wcsWhO?Y
z1Ysv(%A!duB(Fg>B1~R;>_|LE%p^Y|WMlaTsMkGWZzf)LndJiXiyG`aZIQxspDBmm
zbUcHV!`y&Fc}ITj2kSI5>N8#nj2Se>*n|p)QgNBj^iHrTIHx<ccH;N0asnwqXvM@u
zBnEP$CA<0G&m#^(HGu-e{f|Ev&?e7o!Wqp_ZvVYsvU4Lf_~k2Ohc)B*23#^$YTK)>
zT|&D=?!0Q(?299AFX>&!8xOKZ7v=%*J2+?3?v(rYscYY+J%w9A1#ywzOy;fRpXJ+a
z=B_n}Zz3)QeJAjho{q*F(BDk-s6<*J0+5^gLV`)80q;U$?|6}Y`MNfDMrdtzz^YWp
zjxwxMPMI}rdSvVV_`L01QBfXn1+k?<N<oYx41Zg|PhXZHJBMWX=NE)a{7weIKW$BY
KjWRWC(EkG%yZs0N

literal 0
HcmV?d00001

diff --git a/overlay/entrypoint.sh b/overlay/entrypoint.sh
new file mode 100644
index 0000000..bc7ac4a
--- /dev/null
+++ b/overlay/entrypoint.sh
@@ -0,0 +1,47 @@
+#!/usr/bin/env bash
+###
+# File: entrypoint.sh
+# Project: docker-steamos
+# File Created: Saturday, 8th January 2022 7:08:46 pm
+# Author: Josh.5 (jsunnex@gmail.com)
+# -----
+# Last Modified: Tuesday, 11th January 2022 1:02:16 am
+# Modified By: Josh.5 (jsunnex@gmail.com)
+###
+
+set -e
+
+# If a command was passed, run that instead of the usual init process
+if [ ! -z "$@" ]; then
+    exec $@
+    exit $?
+fi
+
+# Execute all init scripts
+for init_script in /scripts/*.sh ; do
+    echo
+    echo "[ ${init_script}: executing... ]"
+    sed -i 's/\r$//' "${init_script}"
+    source "${init_script}"
+done
+
+# Execute any user generated init scripts
+mkdir -p ${USER_HOME}/init.d
+chown -R ${USER} ${USER_HOME}/init.d
+for user_init_script in ${USER_HOME}/init.d/*.sh ; do
+
+    # Check that a file was found 
+    # (If no files exist in this directory, then user_init_script will be empty)
+    if [[ -e "${user_init_script}" ]]; then
+        
+        echo
+        echo "[ USER:${user_init_script}: executing... ]"
+        sed -i 's/\r$//' "${user_init_script}"
+        source "${user_init_script}"
+
+    fi
+
+done
+
+echo "**** Starting supervisord ****";
+exec /usr/bin/supervisord -c /etc/supervisor/supervisord.conf --nodaemon
diff --git a/overlay/etc/home_directory_template/.bashrc b/overlay/etc/home_directory_template/.bashrc
new file mode 100644
index 0000000..a355b0c
--- /dev/null
+++ b/overlay/etc/home_directory_template/.bashrc
@@ -0,0 +1,9 @@
+#
+# ~/.bashrc
+#
+
+# If not running interactively, don't do anything
+[[ $- != *i* ]] && return
+
+alias ls='ls --color=auto'
+PS1='[\u@\h \W]\$ '
diff --git a/overlay/etc/home_directory_template/.cache/log/.placeholder b/overlay/etc/home_directory_template/.cache/log/.placeholder
new file mode 100644
index 0000000..e69de29
diff --git a/overlay/etc/home_directory_template/.config/autostart/Steam.desktop b/overlay/etc/home_directory_template/.config/autostart/Steam.desktop
new file mode 100644
index 0000000..7319c5e
--- /dev/null
+++ b/overlay/etc/home_directory_template/.config/autostart/Steam.desktop
@@ -0,0 +1,14 @@
+[Desktop Entry]
+Encoding=UTF-8
+Version=0.9.4
+Type=Application
+Name=Steam
+Comment=launch steam on login
+Exec=/usr/games/steam %U
+Icon=steam
+OnlyShowIn=XFCE;
+RunHook=0
+StartupNotify=false
+Terminal=false
+Hidden=false
+
diff --git a/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-desktop.xml b/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-desktop.xml
new file mode 100644
index 0000000..9bcabd3
--- /dev/null
+++ b/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-desktop.xml
@@ -0,0 +1,50 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<channel name="xfce4-desktop" version="1.0">
+  <property name="backdrop" type="empty">
+    <property name="screen0" type="empty">
+      <property name="monitor0" type="empty">
+        <property name="brightness" type="empty"/>
+        <property name="color1" type="empty"/>
+        <property name="color2" type="empty"/>
+        <property name="color-style" type="empty"/>
+        <property name="image-path" type="empty"/>
+        <property name="image-show" type="empty"/>
+        <property name="last-image" type="empty"/>
+        <property name="last-single-image" type="empty"/>
+      </property>
+      <property name="monitor1" type="empty">
+        <property name="brightness" type="empty"/>
+        <property name="color1" type="empty"/>
+        <property name="color2" type="empty"/>
+        <property name="color-style" type="empty"/>
+        <property name="image-path" type="empty"/>
+        <property name="image-show" type="empty"/>
+        <property name="last-image" type="empty"/>
+        <property name="last-single-image" type="empty"/>
+      </property>
+      <property name="monitorDVI-D-0" type="empty">
+        <property name="workspace0" type="empty">
+          <property name="color-style" type="int" value="1"/>
+          <property name="image-style" type="int" value="5"/>
+          <property name="last-image" type="string" value="/usr/share/images/desktop-base/default"/>
+        </property>
+        <property name="workspace1" type="empty">
+          <property name="color-style" type="int" value="1"/>
+          <property name="image-style" type="int" value="5"/>
+          <property name="last-image" type="string" value="/usr/share/images/desktop-base/default"/>
+        </property>
+        <property name="workspace2" type="empty">
+          <property name="color-style" type="int" value="1"/>
+          <property name="image-style" type="int" value="5"/>
+          <property name="last-image" type="string" value="/usr/share/images/desktop-base/default"/>
+        </property>
+        <property name="workspace3" type="empty">
+          <property name="color-style" type="int" value="1"/>
+          <property name="image-style" type="int" value="5"/>
+          <property name="last-image" type="string" value="/usr/share/images/desktop-base/default"/>
+        </property>
+      </property>
+    </property>
+  </property>
+</channel>
diff --git a/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml b/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
new file mode 100644
index 0000000..d0a0d9f
--- /dev/null
+++ b/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xfce4-panel.xml
@@ -0,0 +1,62 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<channel name="xfce4-panel" version="1.0">
+  <property name="configver" type="int" value="2"/>
+  <property name="panels" type="array">
+    <value type="int" value="1"/>
+    <property name="dark-mode" type="bool" value="true"/>
+    <property name="panel-1" type="empty">
+      <property name="position" type="string" value="p=6;x=0;y=0"/>
+      <property name="length" type="uint" value="100"/>
+      <property name="position-locked" type="bool" value="true"/>
+      <property name="icon-size" type="uint" value="16"/>
+      <property name="size" type="uint" value="26"/>
+      <property name="plugin-ids" type="array">
+        <value type="int" value="1"/>
+        <value type="int" value="2"/>
+        <value type="int" value="3"/>
+        <value type="int" value="4"/>
+        <value type="int" value="5"/>
+        <value type="int" value="6"/>
+        <value type="int" value="8"/>
+        <value type="int" value="10"/>
+        <value type="int" value="11"/>
+        <value type="int" value="12"/>
+        <value type="int" value="13"/>
+        <value type="int" value="14"/>
+      </property>
+      <property name="background-style" type="uint" value="0"/>
+    </property>
+  </property>
+  <property name="plugins" type="empty">
+    <property name="plugin-1" type="string" value="applicationsmenu"/>
+    <property name="plugin-2" type="string" value="tasklist">
+      <property name="grouping" type="uint" value="1"/>
+    </property>
+    <property name="plugin-3" type="string" value="separator">
+      <property name="expand" type="bool" value="true"/>
+      <property name="style" type="uint" value="0"/>
+    </property>
+    <property name="plugin-4" type="string" value="pager"/>
+    <property name="plugin-5" type="string" value="separator">
+      <property name="style" type="uint" value="0"/>
+    </property>
+    <property name="plugin-6" type="string" value="systray">
+      <property name="square-icons" type="bool" value="true"/>
+    </property>
+    <property name="plugin-8" type="string" value="pulseaudio">
+      <property name="enable-keyboard-shortcuts" type="bool" value="true"/>
+      <property name="show-notifications" type="bool" value="true"/>
+    </property>
+    <property name="plugin-9" type="string" value="power-manager-plugin"/>
+    <property name="plugin-10" type="string" value="notification-plugin"/>
+    <property name="plugin-11" type="string" value="separator">
+      <property name="style" type="uint" value="0"/>
+    </property>
+    <property name="plugin-12" type="string" value="clock"/>
+    <property name="plugin-13" type="string" value="separator">
+      <property name="style" type="uint" value="0"/>
+    </property>
+    <property name="plugin-14" type="string" value="actions"/>
+  </property>
+</channel>
diff --git a/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xsettings.xml b/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xsettings.xml
new file mode 100644
index 0000000..cd0228c
--- /dev/null
+++ b/overlay/etc/home_directory_template/.config/xfce4/xfconf/xfce-perchannel-xml/xsettings.xml
@@ -0,0 +1,44 @@
+<?xml version="1.0" encoding="UTF-8"?>
+
+<channel name="xsettings" version="1.0">
+  <property name="Net" type="empty">
+    <property name="ThemeName" type="string" value="Adwaita-dark"/>
+    <property name="IconThemeName" type="string" value="Adwaita"/>
+    <property name="DoubleClickTime" type="empty"/>
+    <property name="DoubleClickDistance" type="empty"/>
+    <property name="DndDragThreshold" type="empty"/>
+    <property name="CursorBlink" type="empty"/>
+    <property name="CursorBlinkTime" type="empty"/>
+    <property name="SoundThemeName" type="empty"/>
+    <property name="EnableEventSounds" type="empty"/>
+    <property name="EnableInputFeedbackSounds" type="empty"/>
+  </property>
+  <property name="Xft" type="empty">
+    <property name="DPI" type="empty"/>
+    <property name="Antialias" type="empty"/>
+    <property name="Hinting" type="empty"/>
+    <property name="HintStyle" type="empty"/>
+    <property name="RGBA" type="empty"/>
+  </property>
+  <property name="Gtk" type="empty">
+    <property name="CanChangeAccels" type="empty"/>
+    <property name="ColorPalette" type="empty"/>
+    <property name="FontName" type="empty"/>
+    <property name="MonospaceFontName" type="empty"/>
+    <property name="IconSizes" type="empty"/>
+    <property name="KeyThemeName" type="empty"/>
+    <property name="ToolbarStyle" type="empty"/>
+    <property name="ToolbarIconSize" type="empty"/>
+    <property name="MenuImages" type="empty"/>
+    <property name="ButtonImages" type="empty"/>
+    <property name="MenuBarAccel" type="empty"/>
+    <property name="CursorThemeName" type="empty"/>
+    <property name="CursorThemeSize" type="empty"/>
+    <property name="DecorationLayout" type="empty"/>
+    <property name="DialogsUseHeader" type="empty"/>
+    <property name="TitlebarMiddleClick" type="empty"/>
+  </property>
+  <property name="Gdk" type="empty">
+    <property name="WindowScalingFactor" type="empty"/>
+  </property>
+</channel>
diff --git a/overlay/etc/home_directory_template/.local/share/applications/x11vnc.desktop b/overlay/etc/home_directory_template/.local/share/applications/x11vnc.desktop
new file mode 100644
index 0000000..6e110dc
--- /dev/null
+++ b/overlay/etc/home_directory_template/.local/share/applications/x11vnc.desktop
@@ -0,0 +1,12 @@
+# Hide application from menu
+[Desktop Entry]
+Name=X11VNC Server
+Comment=Share this desktop by VNC
+Exec=x11vnc -gui tray=setpass -rfbport PROMPT -bg -o %%HOME/.x11vnc.log.%%VNCDISPLAY
+Icon=computer
+Terminal=false
+Type=Application
+StartupNotify=false
+#StartupWMClass=x11vnc_port_prompt
+Categories=Network;RemoteAccess;
+Hidden=true
diff --git a/overlay/etc/supervisor/conf.d/services.conf b/overlay/etc/supervisor/conf.d/services.conf
new file mode 100644
index 0000000..a82f082
--- /dev/null
+++ b/overlay/etc/supervisor/conf.d/services.conf
@@ -0,0 +1,130 @@
+[supervisord]
+user=root
+nodaemon=true
+
+[program:ssh]
+autostart=true
+priority=10
+directory=/
+command=/usr/sbin/sshd -D
+user=root
+autorestart=true
+stopsignal=QUIT
+
+[program:dbus]
+autostart=true
+priority=10
+directory=/
+command=dbus-daemon --config-file=/usr/share/dbus-1/system.conf --nofork --nopidfile
+user=%(ENV_USER)s
+environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s"
+autorestart=true
+stopsignal=QUIT
+
+[program:pulseaudio]
+autostart=true
+priority=10
+directory=/
+command=/usr/bin/pulseaudio -vvvv --disallow-module-loading --disallow-exit --exit-idle-time=-1
+user=%(ENV_USER)s
+environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s"
+autorestart=true
+stopsignal=QUIT
+stdout_logfile=/home/%(ENV_USER)s/.cache/log/pulseaudio.log
+stderr_logfile=/home/%(ENV_USER)s/.cache/log/pulseaudio.err
+
+[program:audiostream]
+autostart=true
+priority=10
+command=tcpserver localhost 5901 gst-launch-1.0 -q pulsesrc server=/tmp/pulseaudio.socket ! audio/x-raw, channels=2, rate=24000 ! cutter ! opusenc ! webmmux ! fdsink fd=1
+autorestart=true
+stopsignal=QUIT
+stdout_logfile=/home/%(ENV_USER)s/.cache/log/audiostream.log
+stderr_logfile=/home/%(ENV_USER)s/.cache/log/audiostream.err
+
+[program:audiowebsock]
+autostart=true
+priority=10
+command=/usr/local/bin/websockify 32123 localhost:5901
+autorestart=true
+stopsignal=QUIT
+stdout_logfile=/home/%(ENV_USER)s/.cache/log/audiowebsock.log
+stderr_logfile=/home/%(ENV_USER)s/.cache/log/audiowebsock.err
+
+[program:xorg]
+autostart=true
+priority=20
+directory=/
+command=/usr/bin/Xorg vt7 -novtswitch -sharevts -dpi "%(ENV_DISPLAY_DPI)s" +extension "MIT-SHM" %(ENV_DISPLAY)s
+#command=/usr/bin/Xorg -novtswitch -sharevts -dpi "%(ENV_DISPLAY_DPI)s" +extension "MIT-SHM" "%(ENV_DISPLAY)s"
+user=%(ENV_USER)s
+environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s",DISPLAY="%(ENV_DISPLAY)s",XDG_RUNTIME_DIR="/tmp/xdg",RUNLEVEL="3"
+autorestart=true
+stopsignal=QUIT
+stdout_logfile=/home/%(ENV_USER)s/.cache/log/xorg.log
+stderr_logfile=/home/%(ENV_USER)s/.cache/log/xorg.err
+
+# Dont use xvfb as it does not work with nvidia X11 configuration
+# [program:xvfb]
+# autostart=false
+# priority=20
+# directory=/
+# command=/usr/bin/Xvfb %(ENV_DISPLAY)s -screen 0 1920x1080x24
+# user=%(ENV_USER)s
+# environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s"
+# autorestart=true
+# stopsignal=QUIT
+# stdout_logfile=/home/%(ENV_USER)s/.cache/log/xvfb.log
+# stderr_logfile=/home/%(ENV_USER)s/.cache/log/xvfb.err
+
+[program:x11vnc]
+autostart=true
+priority=30
+directory=/
+#command=/usr/bin/x11vnc -display %(ENV_DISPLAY)s -xkb
+command=/usr/bin/x11vnc -display %(ENV_DISPLAY)s -rfbport 5900 -shared -forever
+user=%(ENV_USER)s
+autorestart=true
+stopsignal=QUIT
+stdout_logfile=/home/%(ENV_USER)s/.cache/log/x11vnc.log
+stderr_logfile=/home/%(ENV_USER)s/.cache/log/x11vnc.err
+
+[program:de]
+autostart=true
+priority=50
+directory=/home/%(ENV_USER)s
+command=/usr/bin/startxfce4
+#command=/usr/bin/mate-session
+#command=/usr/bin/startlxqt
+#command=/usr/bin/dbus-launch startxfce4
+#command=/usr/bin/dbus-launch xfce4-session
+#command=/usr/bin/dbus-launch startplasma-x11
+user=%(ENV_USER)s
+autorestart=true
+stopsignal=QUIT
+environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s",DISPLAY="%(ENV_DISPLAY)s"
+stdout_logfile=/home/%(ENV_USER)s/.cache/log/de.log
+stderr_logfile=/home/%(ENV_USER)s/.cache/log/de.err
+
+## Experimental launch directly to steam big picture... (this is cool, but not ideal for headless)
+# [program:steam]
+# autostart=true
+# priority=50
+# directory=/home/%(ENV_USER)s
+# command=/usr/bin/steam -bigpicture
+# user=%(ENV_USER)s
+# autorestart=true
+# stopsignal=QUIT
+# environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s",DISPLAY="%(ENV_DISPLAY)s"
+# stdout_logfile=/home/%(ENV_USER)s/.cache/log/steam.log
+# stderr_logfile=/home/%(ENV_USER)s/.cache/log/steam.err
+
+[program:novnc]
+autostart=true
+priority=100
+command=/opt/noVNC/utils/launch.sh --vnc localhost:5900 --listen 8083
+#command=/usr/share/novnc/utils/launch.sh --vnc localhost:5900 --listen 8083
+#command=/usr/local/bin/websockify -D --web=/usr/share/novnc/ --cert=/etc/ssl/novnc.pem 8083 localhost:5900
+user=%(ENV_USER)s
+environment=HOME="/home/%(ENV_USER)s",USER="%(ENV_USER)s"
+autorestart=true
diff --git a/overlay/opt/noVNC/audio.patch b/overlay/opt/noVNC/audio.patch
new file mode 100644
index 0000000..8f31b12
--- /dev/null
+++ b/overlay/opt/noVNC/audio.patch
@@ -0,0 +1,416 @@
+diff --git a/app/styles/base.css b/app/styles/base.css
+index adad415..dfefa6a 100644
+--- a/app/styles/base.css
++++ b/app/styles/base.css
+@@ -683,7 +683,7 @@ select:active {
+ #noVNC_setting_port {
+   width: 80px;
+ }
+-#noVNC_setting_path {
++#noVNC_setting_path #noVNC_setting_apath {
+   width: 100px;
+ }
+ 
+diff --git a/app/ui.js b/app/ui.js
+index cb6a9fd..4d599e1 100644
+--- a/app/ui.js
++++ b/app/ui.js
+@@ -15,6 +15,7 @@ import KeyTable from "../core/input/keysym.js";
+ import keysyms from "../core/input/keysymdef.js";
+ import Keyboard from "../core/input/keyboard.js";
+ import RFB from "../core/rfb.js";
++import WebAudio from "../core/webaudio.js";
+ import * as WebUtil from "./webutil.js";
+ 
+ const PAGE_TITLE = "noVNC";
+@@ -40,6 +41,7 @@ const UI = {
+     inhibitReconnect: true,
+     reconnectCallback: null,
+     reconnectPassword: null,
++    webaudio: null,
+ 
+     prime() {
+         return WebUtil.initSettings().then(() => {
+@@ -171,6 +173,7 @@ const UI = {
+         UI.initSetting('compression', 2);
+         UI.initSetting('shared', true);
+         UI.initSetting('view_only', false);
++        UI.initSetting('audio', true);
+         UI.initSetting('show_dot', false);
+         UI.initSetting('path', 'websockify');
+         UI.initSetting('repeaterID', '');
+@@ -200,6 +203,20 @@ const UI = {
+         }
+     },
+ 
++    toggleAudio() {
++        console.log('here');
++        const audio = UI.getSetting('audio');
++        if (audio) {
++            UI.webaudio.start();
++        } else {
++            if(UI.webaudio !== null) {
++                if (UI.webaudio.connected) {
++                    UI.webaudio.stop();
++                }
++            }
++        }
++    },
++
+ /* ------^-------
+ *     /INIT
+ * ==============
+@@ -356,6 +373,8 @@ const UI = {
+         UI.addSettingChangeHandler('shared');
+         UI.addSettingChangeHandler('view_only');
+         UI.addSettingChangeHandler('view_only', UI.updateViewOnly);
++        UI.addSettingChangeHandler('audio');
++        UI.addSettingChangeHandler('audio', UI.updateEnableAudio);
+         UI.addSettingChangeHandler('show_dot');
+         UI.addSettingChangeHandler('show_dot', UI.updateShowDotCursor);
+         UI.addSettingChangeHandler('host');
+@@ -841,6 +860,7 @@ const UI = {
+         UI.updateSetting('compression');
+         UI.updateSetting('shared');
+         UI.updateSetting('view_only');
++        UI.updateSetting('audio');
+         UI.updateSetting('path');
+         UI.updateSetting('repeaterID');
+         UI.updateSetting('logging');
+@@ -1041,6 +1061,7 @@ const UI = {
+         UI.rfb.resizeSession = UI.getSetting('resize') === 'remote';
+         UI.rfb.qualityLevel = parseInt(UI.getSetting('quality'));
+         UI.rfb.compressionLevel = parseInt(UI.getSetting('compression'));
++        UI.rfb.enableAudio = UI.getSetting('audio');
+         UI.rfb.showDotCursor = UI.getSetting('show_dot');
+ 
+         UI.updateViewOnly(); // requires UI.rfb
+@@ -1056,6 +1077,10 @@ const UI = {
+ 
+         UI.updateVisualState('disconnecting');
+ 
++        if(UI.webaudio !== null && UI.webaudio.socket !== null) {
++            UI.webaudio.socket.close();
++        }
++
+         // Don't display the connection settings until we're actually disconnected
+     },
+ 
+@@ -1097,6 +1122,19 @@ const UI = {
+ 
+         // Do this last because it can only be used on rendered elements
+         UI.rfb.focus();
++
++        let audio_url;
++        let host = window.location.hostname; 
++        let port = 32123;
++        if (window.location.protocol === "https:") {
++            audio_url = 'wss';
++        } else {
++            audio_url = 'ws';
++        }
++        audio_url += '://' + host + ':' + port;
++
++        UI.webaudio = new WebAudio(audio_url);
++        UI.toggleAudio();
+     },
+ 
+     disconnectFinished(e) {
+@@ -1647,6 +1685,12 @@ const UI = {
+         }
+     },
+ 
++    updateEnableAudio() {
++        if (!UI.rfb) return;
++        UI.rfb.enableAudio = UI.getSetting('audio');
++        UI.toggleAudio();
++    },
++
+     updateShowDotCursor() {
+         if (!UI.rfb) return;
+         UI.rfb.showDotCursor = UI.getSetting('show_dot');
+diff --git a/core/webaudio.js b/core/webaudio.js
+new file mode 100644
+index 0000000..28c71ac
+--- /dev/null
++++ b/core/webaudio.js
+@@ -0,0 +1,142 @@
++export default class WebAudio {
++    constructor(url) {
++        this.url = url
++
++        this.connected = false;
++
++        //constants for audio behavoir
++        this.maximumAudioLag = 1.5; //amount of seconds we can potentially be behind the server audio stream
++        this.syncLagInterval = 5000; //check every x milliseconds if we are behind the server audio stream
++        this.updateBufferEvery = 20; //add recieved data to the player buffer every x milliseconds
++        this.reduceBufferInterval = 500; //trim the output audio stream buffer every x milliseconds so we don't overflow
++        this.maximumSecondsOfBuffering = 1; //maximum amount of data to store in the play buffer
++        this.connectionCheckInterval = 500; //check the connection every x milliseconds
++
++        //register all our background timers. these need to be created only once - and will run independent of the object's streams/properties
++        this.updateCheck = null;
++        this.syncCheck = null;
++        this.reduceCheck = null;
++        this.ConnCheck = null;
++
++    }
++
++    //registers all the event handlers for when this stream is closed - or when data arrives.
++    registerHandlers() {
++        this.mediaSource.addEventListener('sourceended', e => this.socketDisconnected(e))
++        this.mediaSource.addEventListener('sourceclose', e => this.socketDisconnected(e))
++        this.mediaSource.addEventListener('error', e => this.socketDisconnected(e))
++        this.buffer.addEventListener('error', e => this.socketDisconnected(e))
++        this.buffer.addEventListener('abort', e => this.socketDisconnected(e))
++    }
++
++    //starts the web audio stream. only call this method on button click.
++    start() {
++        if (!!this.connected) return;
++        if (!!this.audio) this.audio.remove();
++        this.queue = null;
++
++        if (this.updateCheck === null) this.updateCheck = setInterval(() => this.updateQueue(), this.updateBufferEvery);
++        if (this.syncCheck === null) this.syncCheck = setInterval(() => this.syncInterval(), this.syncLagInterval);
++        if (this.reduceCheck === null) this.reduceCheck = setInterval(() => this.reduceBuffer(), this.reduceBufferInterval);
++        if (this.ConnCheck === null) this.ConnCheck = setInterval(() => this.tryLastPacket(), this.connectionCheckInterval);
++
++        this.mediaSource = new MediaSource()
++        this.mediaSource.addEventListener('sourceopen', e => this.onSourceOpen())
++        //first we need a media source - and an audio object that contains it.
++        this.audio = document.createElement('audio');
++        this.audio.src = window.URL.createObjectURL(this.mediaSource);
++
++        //start our stream - we can only do this on user input
++        this.audio.play();
++    }
++
++    stop() {
++        // Clear all interval timers
++        clearInterval(this.updateCheck);
++        clearInterval(this.syncCheck);
++        clearInterval(this.reduceCheck);
++        clearInterval(this.ConnCheck);
++        // Close the socket
++        this.socket.close();
++        this.connected = false;
++        // Reset timers to null
++        this.updateCheck = null;
++        this.syncCheck = null;
++        this.reduceCheck = null;
++        this.ConnCheck = null;
++    }
++
++    wsConnect() {
++        if (!!this.socket) this.socket.close();
++
++        this.socket = new WebSocket(this.url, ['binary', 'base64'])
++        this.socket.binaryType = 'arraybuffer'
++        this.socket.addEventListener('message', e => this.websocketDataArrived(e), false);
++    }
++
++    //this is called when the media source contains data
++    onSourceOpen(e) {
++        this.buffer = this.mediaSource.addSourceBuffer('audio/webm; codecs="opus"')
++        this.registerHandlers();
++        this.wsConnect();
++    }
++
++    //whenever data arrives in our websocket this is called.
++    websocketDataArrived(e) {
++        this.lastPacket = Date.now();
++        this.connected = true;
++        this.queue = this.queue == null ? e.data : this.concat(this.queue, e.data);
++    }
++
++    //whenever a disconnect happens this is called.
++    socketDisconnected(e) {
++        console.log(e);
++        this.connected = false;
++    }
++
++    tryLastPacket() {
++        if (this.lastPacket == null) return;
++        if ((Date.now() - this.lastPacket) > 1000) {
++            this.socketDisconnected('timeout');
++        }
++    }
++
++    //this updates the buffer with the data from our queue
++    updateQueue() {
++        if (!(!!this.queue && !!this.buffer && !this.buffer.updating)) {
++            return;
++        }
++
++        this.buffer.appendBuffer(this.queue);
++        this.queue = null;
++    }
++
++    //reduces the stream buffer to the minimal size that we need for streaming
++    reduceBuffer() {
++        if (!(this.buffer && !this.buffer.updating && !!this.audio && !!this.audio.currentTime && this.audio.currentTime > 1)) {
++            return;
++        }
++
++        this.buffer.remove(0, this.audio.currentTime - 1);
++    }
++
++    //synchronizes the current time of the stream with the server
++    syncInterval() {
++        if (!(this.audio && this.audio.currentTime && this.audio.currentTime > 1 && this.buffer && this.buffer.buffered && this.buffer.buffered.length > 1)) {
++            return;
++        }
++
++        var currentTime = this.audio.currentTime;
++        var targetTime = this.buffer.buffered.end(this.buffer.buffered.length - 1);
++
++        if (targetTime > (currentTime + this.maximumAudioLag)) this.audio.fastSeek(targetTime);
++    }
++
++    //joins two data arrays - helper function
++    concat(buffer1, buffer2) {
++        var tmp = new Uint8Array(buffer1.byteLength + buffer2.byteLength);
++        tmp.set(new Uint8Array(buffer1), 0);
++        tmp.set(new Uint8Array(buffer2), buffer1.byteLength);
++        return tmp.buffer;
++    };
++}
+diff --git a/vnc.html b/vnc.html
+index c678c2a..d1652a0 100644
+--- a/vnc.html
++++ b/vnc.html
+@@ -170,6 +170,10 @@
+                         <label><input id="noVNC_setting_view_only" type="checkbox"> View Only</label>
+                     </li>
+                     <li><hr></li>
++                    <li>
++                        <label><input id="noVNC_setting_audio" type="checkbox"> Enable Audio</label>
++                    </li>
++                    <li><hr></li>
+                     <li>
+                         <label><input id="noVNC_setting_view_clip" type="checkbox"> Clip to Window</label>
+                     </li>
+diff --git a/vnc_lite.html b/vnc_lite.html
+index 8e2f5cb..d3cf6ab 100644
+--- a/vnc_lite.html
++++ b/vnc_lite.html
+@@ -41,6 +41,15 @@
+         #status {
+             text-align: center;
+         }
++        #toggleAudioButton {
++            position: fixed;
++            top: 0px;
++            left: 0px;
++            border: 1px outset;
++            padding: 5px 5px 4px 5px;
++            cursor: pointer;
++            display: none;
++        }
+         #sendCtrlAltDelButton {
+             position: fixed;
+             top: 0px;
+@@ -60,18 +69,38 @@
+     <script type="module" crossorigin="anonymous">
+         // RFB holds the API to connect and communicate with a VNC server
+         import RFB from './core/rfb.js';
++        import WebAudio from './core/webaudio.js';
+ 
+         let rfb;
+         let desktopName;
++        let wa;
+ 
+         // When this function is called we have
+         // successfully connected to a server
+         function connectedToServer(e) {
++            let audio_url;
++            let host = window.location.hostname; 
++            let port = 32123;
++            if (window.location.protocol === "https:") {
++                audio_url = 'wss';
++            } else {
++                audio_url = 'ws';
++            }
++            audio_url += '://' + host + ':' + port;
++
++            wa = new WebAudio(audio_url);
++            document.getElementById('toggleAudioButton').style.display = "block";
++
+             status("Connected to " + desktopName);
+         }
+ 
+         // This function is called when we are disconnected
+         function disconnectedFromServer(e) {
++            if(wa !== null) {
++                wa.stop();
++                wa = null;
++                document.getElementById('toggleAudioButton').style.display = "none";
++            }
+             if (e.detail.clean) {
+                 status("Disconnected");
+             } else {
+@@ -100,6 +129,19 @@
+             return false;
+         }
+ 
++        // Enable the audio websocket
++        function toggleAudio() {
++            if (wa.connected) {
++                console.log('Stopping audio...')
++                wa.stop();
++                document.getElementById('toggleAudioButton').innerText = "Enable Audio (requires access to port 32123)";
++            } else {
++                console.log('Starting audio websocket on: ' + audio_url)
++                wa.start();
++                document.getElementById('toggleAudioButton').innerText = "Disable Audio";
++            }
++        }
++
+         // Show a status text in the top bar
+         function status(text) {
+             document.getElementById('status').textContent = text;
+@@ -135,12 +177,16 @@
+         document.getElementById('sendCtrlAltDelButton')
+             .onclick = sendCtrlAltDel;
+ 
++        document.getElementById('toggleAudioButton')
++            .onclick = toggleAudio;
++
+         // Read parameters specified in the URL query string
+         // By default, use the host and port of server that served this file
+         const host = readQueryVariable('host', window.location.hostname);
+         let port = readQueryVariable('port', window.location.port);
+         const password = readQueryVariable('password');
+         const path = readQueryVariable('path', 'websockify');
++        const audio_path = readQueryVariable('audio_path', '');
+ 
+         // | | |         | | |
+         // | | | Connect | | |
+@@ -150,6 +196,7 @@
+ 
+         // Build the websocket URL used to connect
+         let url;
++        let audio_url;
+         if (window.location.protocol === "https:") {
+             url = 'wss';
+         } else {
+@@ -159,6 +206,9 @@
+         if(port) {
+             url += ':' + port;
+         }
++        if(audio_path !== '') {
++            audio_url = url + '/' + audio_path;
++        }
+         url += '/' + path;
+ 
+         // Creating a new RFB object will start a new connection
+@@ -179,6 +229,7 @@
+ 
+ <body>
+     <div id="top_bar">
++        <div id="toggleAudioButton">Enable Audio (requires access to port 32123)</div>
+         <div id="status">Loading</div>
+         <div id="sendCtrlAltDelButton">Send CtrlAltDel</div>
+     </div>
diff --git a/overlay/scripts/10-setup_user.sh b/overlay/scripts/10-setup_user.sh
new file mode 100644
index 0000000..9215adf
--- /dev/null
+++ b/overlay/scripts/10-setup_user.sh
@@ -0,0 +1,31 @@
+
+PUID=${PUID:-99}
+PGID=${PGID:-100}
+UMASK=${UMASK:-000}
+USER_PASSWORD=${USER_PASSWORD:-password}
+
+echo "**** Configure default user  ****"
+
+echo "Setting run user uid=${PGID}(${USER}) gid=${PUID}(${USER})"
+groupmod -o -g "${PGID}" ${USER}
+usermod -o -u "${PUID}" ${USER}
+
+
+echo "Setting umask to ${UMASK}";
+umask ${UMASK}
+
+
+# Setup home directory and permissions
+echo "Adding default home directory template"
+mkdir -p ${USER_HOME}
+chown -R ${PUID}:${PGID} /etc/home_directory_template
+rsync -aq /etc/home_directory_template/ ${USER_HOME}/
+
+
+# Set the root and user password
+echo "Setting root password"
+echo "root:${USER_PASSWORD}" | chpasswd
+echo "Setting user password"
+echo "${USER}:${USER_PASSWORD}" | chpasswd
+
+echo "DONE"
diff --git a/overlay/scripts/20-configre_sshd.sh b/overlay/scripts/20-configre_sshd.sh
new file mode 100644
index 0000000..eb3cd62
--- /dev/null
+++ b/overlay/scripts/20-configre_sshd.sh
@@ -0,0 +1,10 @@
+
+# Generate new SSH host keys if they dont exist
+if [[ ! -f /etc/ssh/ssh_host_rsa_key ]]; then
+    echo "**** Generating SSH keys ****";
+    /usr/bin/ssh-keygen -A
+fi
+mkdir -p /run/sshd
+chmod 744 /run/sshd
+
+echo "DONE"
diff --git a/overlay/scripts/30-configure_system_paths.sh b/overlay/scripts/30-configure_system_paths.sh
new file mode 100644
index 0000000..f02cb91
--- /dev/null
+++ b/overlay/scripts/30-configure_system_paths.sh
@@ -0,0 +1,32 @@
+# Configure system paths
+echo "**** Configure system paths ****";
+sed -i "/  <user>/c\  <user>${USER}</user>" /usr/share/dbus-1/system.conf
+if [ ! -d /tmp/xdg ]; then
+	mkdir -p /tmp/xdg
+fi
+
+echo "Configure dbus";
+# Remove old dbus session
+rm -rf ${USER_HOME}/.dbus/session-bus/* 2> /dev/null
+# Remove old dbus pids
+mkdir -p /var/run/dbus
+chown -R ${PUID}:${PGID} /var/run/dbus/
+chmod -R 770 /var/run/dbus/
+# Generate a dbus machine ID
+dbus-uuidgen > /var/lib/dbus/machine-id
+
+echo "Configure X Windows context"
+chown -R ${PUID}:${PGID} /tmp/xdg
+chmod -R 0700 /tmp/xdg
+
+echo "Configure X Windows session"
+rm -rfv /tmp/.ICE-unix*
+mkdir -p /tmp/.ICE-unix
+chown root:root /tmp/.ICE-unix/
+chmod 1777 /tmp/.ICE-unix/
+
+echo "Remove old lockfiles"
+find /var/run/dbus -name "pid" -exec rm -f {} \;
+find /tmp -name ".X99*" -exec rm -f {} \;
+
+echo "DONE"
diff --git a/overlay/scripts/40-setup_locale.sh b/overlay/scripts/40-setup_locale.sh
new file mode 100644
index 0000000..1322116
--- /dev/null
+++ b/overlay/scripts/40-setup_locale.sh
@@ -0,0 +1,19 @@
+
+current_local=$(head -n 1 /etc/locale.gen)
+user_local=$(echo ${USER_LOCALES} | cut -d ' ' -f 1)
+
+if [ "${current_local}" != "${USER_LOCALES}" ]; then
+    echo "**** Configuring Locales to ${USER_LOCALES} ****";
+	rm /etc/locale.gen
+	echo -e "${USER_LOCALES}\nen_US.UTF-8 UTF-8" > "/etc/locale.gen"
+	export LANGUAGE="${user_local}"
+	export LANG="${user_local}"
+	export LC_ALL="${user_local}" 2> /dev/null
+	sleep 2
+	locale-gen
+	update-locale LC_ALL="${user_local}"
+else
+    echo "**** Locales already set correctly to ${USER_LOCALES} ****";
+fi
+
+echo "DONE"
diff --git a/overlay/scripts/50-configure_audio.sh b/overlay/scripts/50-configure_audio.sh
new file mode 100644
index 0000000..c67ae0c
--- /dev/null
+++ b/overlay/scripts/50-configure_audio.sh
@@ -0,0 +1,20 @@
+
+echo "**** Configure pulseaudio socket ****"
+sed -i 's|^; default-server.*$|default-server = unix:/tmp/pulseaudio.socket|' /etc/pulse/client.conf
+sed -i 's|^load-module module-native-protocol-unix.*$|load-module module-native-protocol-unix socket=/tmp/pulseaudio.socket auth-anonymous=1|' \
+    /etc/pulse/default.pa
+chown -R ${USER} /etc/pulse
+
+# Credits for this audio patch:
+#   - https://github.com/novnc/noVNC/issues/302
+#   - https://github.com/vexingcodes/dwarf-fortress-docker
+#   - https://github.com/calebj/noVNC
+if [ -f /opt/noVNC/audio.patch ]; then
+    echo "**** Patching noVNC with audio websocket ****"
+    pushd /opt/noVNC/ &> /dev/null
+    patch -p1 --input=/opt/noVNC/audio.patch --batch --quiet
+    popd &> /dev/null
+    rm /opt/noVNC/audio.patch
+fi
+
+echo "DONE"
diff --git a/overlay/scripts/80-configure_nvidia_driver.sh b/overlay/scripts/80-configure_nvidia_driver.sh
new file mode 100644
index 0000000..acc0ab5
--- /dev/null
+++ b/overlay/scripts/80-configure_nvidia_driver.sh
@@ -0,0 +1,64 @@
+
+# Fech NVIDIA GPU device (if one exists)
+if [ "$NVIDIA_VISIBLE_DEVICES" == "all" ]; then
+    export gpu_select=$(nvidia-smi --format=csv --query-gpu=uuid 2> /dev/null | sed -n 2p)
+elif [ -z "$NVIDIA_VISIBLE_DEVICES" ]; then
+    export gpu_select=$(nvidia-smi --format=csv --query-gpu=uuid 2> /dev/null | sed -n 2p)
+else
+    export gpu_select=$(nvidia-smi --format=csv --id=$(echo "$NVIDIA_VISIBLE_DEVICES" | cut -d ',' -f1) --query-gpu=uuid | sed -n 2p)
+    if [ -z "$gpu_select" ]; then
+        export gpu_select=$(nvidia-smi --format=csv --query-gpu=uuid 2> /dev/null | sed -n 2p)
+    fi
+fi
+
+export nvidia_pci_address="$(nvidia-smi --format=csv --query-gpu=pci.bus_id --id="${gpu_select}" 2> /dev/null | sed -n 2p | cut -d ':' -f2,3)"
+export nvidia_gpu_name=$(nvidia-smi --format=csv --query-gpu=name --id="${gpu_select}" | sed -n 2p 2> /dev/null)
+export nvidia_host_driver_version="$(nvidia-smi 2> /dev/null | grep NVIDIA-SMI | cut -d ' ' -f3)"
+
+function download_driver {
+    mkdir -p ${USER_HOME}/.cache/nvidia
+
+    if [[ ! -f "${USER_HOME}/.cache/nvidia/NVIDIA_${nvidia_host_driver_version}.run" ]]; then
+        echo "Downloading driver"
+        wget -q --show-progress --progress=bar:force:noscroll \
+            -O /tmp/NVIDIA.run \
+            http://download.nvidia.com/XFree86/Linux-x86_64/${nvidia_host_driver_version}/NVIDIA-Linux-x86_64-${nvidia_host_driver_version}.run
+        [[ $? -gt 0 ]] && echo "Error downloading driver. Exit!" && return 1
+
+        mv /tmp/NVIDIA.run ${USER_HOME}/.cache/nvidia/NVIDIA_${nvidia_host_driver_version}.run
+    fi
+}
+
+function install_driver {
+    # Check here if the currently installed version matches using nvidia-settings
+    nvidia_settings_version=$(nvidia-settings --version 2> /dev/null | grep version | cut -d ' ' -f 4)
+    [[ "${nvidia_settings_version}x" == "${nvidia_host_driver_version}x" ]] && return 0
+
+    # Download the driver (if it does not yet exist locally)
+    download_driver
+
+    echo "Installing driver"
+    chmod +x ${USER_HOME}/.cache/nvidia/NVIDIA_${nvidia_host_driver_version}.run
+    ${USER_HOME}/.cache/nvidia/NVIDIA_${nvidia_host_driver_version}.run \
+        --silent \
+        --accept-license \
+        --no-kernel-module \
+        --install-compat32-libs \
+        --no-nouveau-check \
+        --no-nvidia-modprobe \
+        --no-rpms \
+        --no-backup \
+        --no-check-for-alternate-installs \
+        --no-libglx-indirect \
+        --no-install-libglvnd \
+        > ${USER_HOME}/.cache/nvidia/last_install.log 2>&1
+}
+
+if [[ -z ${nvidia_pci_address} ]]; then
+    echo "**** No NVIDIA device found ****";
+else
+    echo "**** Found NVIDIA device '${nvidia_gpu_name}' ****";
+    install_driver
+fi
+
+echo "DONE"
diff --git a/overlay/scripts/90-configure_xorg.sh b/overlay/scripts/90-configure_xorg.sh
new file mode 100644
index 0000000..13cd3ef
--- /dev/null
+++ b/overlay/scripts/90-configure_xorg.sh
@@ -0,0 +1,57 @@
+
+# Fech NVIDIA GPU device (if one exists)
+if [ "$NVIDIA_VISIBLE_DEVICES" == "all" ]; then
+    export gpu_select=$(nvidia-smi --format=csv --query-gpu=uuid 2> /dev/null | sed -n 2p)
+elif [ -z "$NVIDIA_VISIBLE_DEVICES" ]; then
+    export gpu_select=$(nvidia-smi --format=csv --query-gpu=uuid 2> /dev/null | sed -n 2p)
+else
+    export gpu_select=$(nvidia-smi --format=csv --id=$(echo "$NVIDIA_VISIBLE_DEVICES" | cut -d ',' -f1) --query-gpu=uuid | sed -n 2p)
+    if [ -z "$gpu_select" ]; then
+        export gpu_select=$(nvidia-smi --format=csv --query-gpu=uuid 2> /dev/null | sed -n 2p)
+    fi
+fi
+
+export nvidia_gpu_hex_id=$(nvidia-smi --format=csv --query-gpu=pci.bus_id --id="${gpu_select}" 2> /dev/null | sed -n 2p)
+
+# Fech current configuration (if modified in UI)
+if [ -f "${USER_HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/displays.xml" ]; then
+    new_display_sizew=$(cat ${USER_HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/displays.xml | grep Resolution | head -n1 | grep -oP '(?<=value=").*?(?=")' | cut -d'x' -f1)
+    new_display_sizeh=$(cat ${USER_HOME}/.config/xfce4/xfconf/xfce-perchannel-xml/displays.xml | grep Resolution | head -n1 | grep -oP '(?<=value=").*?(?=")' | cut -d'x' -f2)
+    if [ "${new_display_sizew}x" != "x" ] && [ "${new_display_sizeh}x" != "x" ]; then
+        export DISPLAY_SIZEW="${new_display_sizew}"
+        export DISPLAY_SIZEH="${new_display_sizeh}"
+    fi
+fi
+
+# Configure a NVIDIA X11 config
+function configure_nvidia_x_server {
+    # Configure x to be run by anyone
+    if grep -Fxq "allowed_users=console" /etc/X11/Xwrapper.config; then
+        echo "Configure Xwrapper.config"
+        sed -i "s/allowed_users=console/allowed_users=anybody/" /etc/X11/Xwrapper.config
+    fi
+
+    # Configure xorg for NVIDIA
+    echo "Configuring X11 with GPU ID: '${gpu_select}'"
+    nvidia_gpu_hex_id=$(nvidia-smi --format=csv --query-gpu=pci.bus_id --id="${gpu_select}" 2> /dev/null | sed -n 2p)
+    IFS=":." ARR_ID=(${nvidia_gpu_hex_id})
+    unset IFS
+    bus_id=PCI:$((16#${ARR_ID[1]})):$((16#${ARR_ID[2]})):$((16#${ARR_ID[3]}))
+    echo "Configuring X11 with PCI bus ID: '${bus_id}'"
+    export MODELINE=$(cvt -r "${DISPLAY_SIZEW}" "${DISPLAY_SIZEH}" "${DISPLAY_REFRESH}" | sed -n 2p)
+    echo "Writing X11 config with ${MODELINE}"
+    nvidia-xconfig --virtual="${DISPLAY_SIZEW}x${DISPLAY_SIZEH}" --depth="${DISPLAY_CDEPTH}" --mode=$(echo "${MODELINE}" | awk '{print $2}' | tr -d '"') --allow-empty-initial-configuration --no-probe-all-gpus --busid="${bus_id}" --only-one-x-screen --connected-monitor="${DISPLAY_VIDEO_PORT}"
+    sed -i '/Driver\s\+"nvidia"/a\    Option         "ModeValidation" "NoMaxPClkCheck, NoEdidMaxPClkCheck, NoMaxSizeCheck, NoHorizSyncCheck, NoVertRefreshCheck, NoVirtualSizeCheck, NoExtendedGpuCapabilitiesCheck, NoTotalSizeCheck, NoDualLinkDVICheck, NoDisplayPortBandwidthCheck, AllowNon3DVisionModes, AllowNonHDMI3DModes, AllowNonEdidModes, NoEdidHDMI2Check, AllowDpInterlaced"' /etc/X11/xorg.conf
+    sed -i '/Section\s\+"Monitor"/a\    '"${MODELINE}" /etc/X11/xorg.conf
+}
+
+
+if [[ -z ${nvidia_gpu_hex_id} ]]; then
+    echo "**** Generate default xorg.conf ****";
+    # TODO: Configure xorg.conf with no NVIDIA GPU
+else
+    echo "**** Generate NVIDIA xorg.conf ****";
+    configure_nvidia_x_server
+fi
+
+echo "DONE"