From 00ab80d1b82e59554e8a1d6e2d4d926a3858a1fd Mon Sep 17 00:00:00 2001
From: Jimbo <jimbo@jimbosfiles.com>
Date: Tue, 15 Oct 2024 22:41:19 -0400
Subject: [PATCH] Move the public keys out of secrets

---
 flake.nix                                     |   3 +-
 hosts/cyberspark/id_ed25519.pub               |   1 +
 hosts/cyberspark/system/default.nix           |   3 ++
 hosts/firefly/home/default.nix                |   4 +-
 hosts/firefly/id_ed25519.pub                  |   1 +
 hosts/firefly/system/default.nix              |   7 +++-
 hosts/firefly/system/hardware/default.nix     |   2 +-
 hosts/shuttleworth/id_ed25519.pub             |   1 +
 .../system/accounts/users/jimbo/default.nix   |   8 +++-
 .../system/desktop/sway/greetd/default.nix    |  36 +++++++++---------
 .../system/devices/video/nvidia/default.nix   |   2 +-
 .../services/server/minecraft/default.nix     |   2 -
 overlays/default.nix                          |   3 +-
 variables/secrets/default.nix                 | Bin 2829 -> 2395 bytes
 14 files changed, 45 insertions(+), 28 deletions(-)
 create mode 100644 hosts/cyberspark/id_ed25519.pub
 create mode 100644 hosts/firefly/id_ed25519.pub
 create mode 100644 hosts/shuttleworth/id_ed25519.pub

diff --git a/flake.nix b/flake.nix
index 9037679..7664fee 100644
--- a/flake.nix
+++ b/flake.nix
@@ -31,7 +31,7 @@
   let
     mkNixos = modules: nixpkgs.lib.nixosSystem {
       inherit modules;
-      specialArgs = { inherit nixpkgs unstable hardware lanzaboote mailserver minecraft; };
+      specialArgs = { inherit nixpkgs unstable hardware lanzaboote agenix mailserver minecraft; };
     };
     
     mkHome = modules: pkgs: home-manager.lib.homeManagerConfiguration {
@@ -51,7 +51,6 @@
       "jimbo@firefly" = mkHome [ ./hosts/firefly/home ] nixpkgs.legacyPackages.x86_64-linux;
       "jimbo@cyberspark" = mkHome [ ./hosts/cyberspark/home ] nixpkgs.legacyPackages.x86_64-linux;
       "jimbo@shuttleworth" = mkHome [ ./hosts/shuttleworth/home ] nixpkgs.legacyPackages.aarch64-linux;
-      "jimbo@guest" = mkHome [ ./hosts/guest/home ] nixpkgs.legacyPackages.x86_64-linux;
     };
   };
 }
diff --git a/hosts/cyberspark/id_ed25519.pub b/hosts/cyberspark/id_ed25519.pub
new file mode 100644
index 0000000..1c06662
--- /dev/null
+++ b/hosts/cyberspark/id_ed25519.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIKC8Uqxb09V3msBgDv6lD/nETMYr/X0OgtpDo8ldcMK
diff --git a/hosts/cyberspark/system/default.nix b/hosts/cyberspark/system/default.nix
index d3e5778..30ce1f6 100644
--- a/hosts/cyberspark/system/default.nix
+++ b/hosts/cyberspark/system/default.nix
@@ -3,6 +3,7 @@
   imports = [
     ./hardware
 
+    # Apps and programs
     ../../../modules/system
     ../../../modules/system/accounts
     ../../../modules/system/devices/filesystems
@@ -15,9 +16,11 @@
     ../../../modules/system/services/common
     ../../../modules/system/services/server
 
+    # Misc
     ../../../overlays
     ../../../variables
 
+    # Imports
     mailserver.nixosModule
   ];
 
diff --git a/hosts/firefly/home/default.nix b/hosts/firefly/home/default.nix
index e0982e3..ae119d8 100644
--- a/hosts/firefly/home/default.nix
+++ b/hosts/firefly/home/default.nix
@@ -12,8 +12,10 @@
     ../../../modules/home/utils
 
     # Misc
-    nur.nixosModules.nur
     ../../../overlays
     ../../../variables
+
+    # Imports
+    nur.nixosModules.nur
   ];
 }
diff --git a/hosts/firefly/id_ed25519.pub b/hosts/firefly/id_ed25519.pub
new file mode 100644
index 0000000..e36a85d
--- /dev/null
+++ b/hosts/firefly/id_ed25519.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC2lMkUd+BbXITE5LTg94hEzmA6UKsIIbaf5YOjGoLzl
diff --git a/hosts/firefly/system/default.nix b/hosts/firefly/system/default.nix
index 5e601b6..aefb376 100644
--- a/hosts/firefly/system/default.nix
+++ b/hosts/firefly/system/default.nix
@@ -1,4 +1,4 @@
-{ lanzaboote, ... }:
+{ agenix, lanzaboote, ... }:
 {
   imports = [
     ./hardware
@@ -13,11 +13,14 @@
     ../../../variables
 
     # Devices and hardware
-    lanzaboote.nixosModules.lanzaboote
     ../../../modules/system/devices
     ../../../modules/system/devices/boot/lanzaboote
     ../../../modules/system/devices/video/nvidia
     ../../../modules/system/devices/networking/firewall/pc
+
+    # Imports
+    agenix.nixosModules.default
+    lanzaboote.nixosModules.lanzaboote
   ];
 
   networking.hostName = "firefly";
diff --git a/hosts/firefly/system/hardware/default.nix b/hosts/firefly/system/hardware/default.nix
index 434c77d..9c3b823 100644
--- a/hosts/firefly/system/hardware/default.nix
+++ b/hosts/firefly/system/hardware/default.nix
@@ -24,7 +24,7 @@ in {
   ];
 
   boot = {
-    kernelPackages = pkgs.unstable.linuxPackages_latest;
+    kernelPackages = pkgs.unstable.linuxPackages_zen;
     blacklistedKernelModules = [
       "pcspkr"
     ];               
diff --git a/hosts/shuttleworth/id_ed25519.pub b/hosts/shuttleworth/id_ed25519.pub
new file mode 100644
index 0000000..3d0e0ec
--- /dev/null
+++ b/hosts/shuttleworth/id_ed25519.pub
@@ -0,0 +1 @@
+ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIK+L723mCLy9/9UAXwkY3+06Oq22dOj+lDnA0lMLbrsR
diff --git a/modules/system/accounts/users/jimbo/default.nix b/modules/system/accounts/users/jimbo/default.nix
index 68e448a..c1f5ae9 100644
--- a/modules/system/accounts/users/jimbo/default.nix
+++ b/modules/system/accounts/users/jimbo/default.nix
@@ -5,7 +5,13 @@
       description = "Jimbo";
       hashedPassword = config.secrets.jimboAccPass;
       isNormalUser = true;
-      openssh.authorizedKeys.keys = config.secrets.jimKeys;
+      openssh.authorizedKeys.keys = [
+	(builtins.readFile ../../../../../hosts/firefly/id_ed25519.pub)
+	(builtins.readFile ../../../../../hosts/cyberspark/id_ed25519.pub)
+	(builtins.readFile ../../../../../hosts/shuttleworth/id_ed25519.pub)
+        "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJahAoF74BY6GCTsFkt1ADKaraFgJJozW1Y1aBTLK0j9 pixel9"
+      ];
+
       extraGroups = [
         "wheel"
         "audio"
diff --git a/modules/system/desktop/sway/greetd/default.nix b/modules/system/desktop/sway/greetd/default.nix
index a1a56e1..85a18a4 100644
--- a/modules/system/desktop/sway/greetd/default.nix
+++ b/modules/system/desktop/sway/greetd/default.nix
@@ -2,7 +2,24 @@
 {
   services = {
     # Configure greetd for "auto" login (single user only)
-    greetd = {
+    greetd = let
+      startSway = pkgs.writeScript "startsway" ''
+        if lspci -k | grep "Kernel driver in use: nvidia" &> /dev/null; then
+          export LIBVA_DRIVER_NAME=nvidia
+          export GBM_BACKEND=nvidia-drm
+          export __GLX_VENDOR_LIBRARY_NAME=nvidia
+          export WLR_NO_HARDWARE_CURSORS=1
+        else
+          :
+        fi
+
+	export WLR_RENDERER=vulkan
+        export XDG_CURRENT_DESKTOP=sway
+        export QT_QPA_PLATFORM="wayland;xcb"
+
+        sway --unsupported-gpu
+      '';
+    in {
       enable = true;
       restart = true;
       settings = {
@@ -11,22 +28,7 @@
           switch = true;
         };
         default_session = {
-          command = ''
-            if lspci -k | grep "Kernel driver in use: nvidia" &> /dev/null; then
-              export LIBVA_DRIVER_NAME=nvidia
-              export GBM_BACKEND=nvidia-drm
-              export __GLX_VENDOR_LIBRARY_NAME=nvidia
-              export WLR_NO_HARDWARE_CURSORS=1
-            else
-              :
-            fi
-
-	    export WLR_RENDERER=vulkan
-            export XDG_CURRENT_DESKTOP=sway
-            export QT_QPA_PLATFORM="wayland;xcb"
-
-            sway --unsupported-gpu
-	  '';
+          command = "${startSway}";
           user = "jimbo";
         };
       };
diff --git a/modules/system/devices/video/nvidia/default.nix b/modules/system/devices/video/nvidia/default.nix
index b50af2d..03ceb16 100644
--- a/modules/system/devices/video/nvidia/default.nix
+++ b/modules/system/devices/video/nvidia/default.nix
@@ -4,7 +4,7 @@
   hardware.nvidia = {
     modesetting.enable = true;
     nvidiaSettings = false;
-    package = config.boot.kernelPackages.nvidiaPackages.beta;
+    package = config.boot.kernelPackages.nvidiaPackages.latest;
     open = false;
   };
 }
diff --git a/modules/system/services/server/minecraft/default.nix b/modules/system/services/server/minecraft/default.nix
index fb7912d..6bb2b93 100644
--- a/modules/system/services/server/minecraft/default.nix
+++ b/modules/system/services/server/minecraft/default.nix
@@ -10,8 +10,6 @@
     ./servers/uberbeta
   ];
 
-  nixpkgs.overlays = [ minecraft.overlay ];
-
   services.minecraft-servers = {
     enable = true;
     eula = true;
diff --git a/overlays/default.nix b/overlays/default.nix
index 425a195..0b7a7fa 100644
--- a/overlays/default.nix
+++ b/overlays/default.nix
@@ -1,8 +1,9 @@
-{ unstable, ... }:
+{ unstable, minecraft, ... }:
 {
   nixpkgs.overlays = [
     (import ./unstable { inherit unstable; })
     (final: _prev: import ./packages { pkgs = final; })
     (import ./mpv)
+    minecraft.overlay
   ];
 }
diff --git a/variables/secrets/default.nix b/variables/secrets/default.nix
index b79ffeba4fc31be796d449f4dcc21e412d0cd58b..38b50a76672facba1208f7fbdf18fa7ebfc8b26d 100644
GIT binary patch
literal 2395
zcmV-h38eM_M@dveQdv+`0C1|rkX3eNQWxJ@nN8I#zGKW}up}fuC=GM9<dy^Vu!jgt
zomL<)FY2YMJx7_a9-#e8%>S`L^xCeC8lGo3i%9Ex7v_XjbD}!`q(FVqn3#fN%;CS+
zg-Ip^zrZxq>Tryf`z9IiwJ`Z?J<|U&YMM;QExj4Qi!8_zr4V*HAyBvCy};#Z=B_b<
zWy`K9kM&U^Vopr7&sY58{W1hTQ%?%@tRNm5qQIz9p2q@3RF;kbW~n}}AG?Sxlgur8
zP52Lf5k@M|fdamOojjaIuDEg=4yenN->`Ox{zi}v44_w*v*2^>99cT#;m&``j0jvR
zi~>ZV@sOHBi?Z%u60lAPs7y?S3|zm?npbhIpKM);ydaHd6=afBYV9bq*y30*#Znh(
zFo0_Z^fI0)farhT%Dt|7mbjG5_sW{xUjH(=;@T=adAB!_6W+lT{udo>bTsd^z#V0<
zd*`vnI=;h;6!`!U+wiv3+6}bww5>QDc~6Xn!>=dJALGREG}n3QG1X|O@Q$obx1J1g
z_$cu|f0co`js!$5lOa*k8-ZkGT4DBag%L}GRbWk=F;D5CnC3H-KOW5Fy*!tOakftZ
z)K0BW2EtYUlK0q-Vq3$N{Dv*~E$T>7$D5h(Y&Im!VS8o(38XJ$2(&SbnXUnUMb~~f
zVr){rIhE3~^}zBqpWW@$Sq*IX$cX>&infJkk*4HrWE7pJUT2N?XE&Mc9?Qa$L6+z|
ztWa`CGXGE#R{rOo(|`m0n2%1aMWf6}JGSGrQb)hp(zCUtbWz2K!daaBxyi0+%8<*s
z?d&U2#O^9yK1(D0Oonzj7k@g#{&ngp1o1*#K#a|}a9Vvw>poTtE>r)*TvQZWVcw1F
z4H=z7nir2o5DXfZD`V|Rfz|OB0h`INQjfdI!)I<;@Yj%&WaG0ZD+MIYMj>-heV5p!
zXQlMDDBf^35V4+XB-*kdW^cLfe%(w26&M8{GMB;i<6kCsdv9<o0|PYMA)5E@ZW0Hh
zs;6EV-FhoPAsRZs+#B8Y+RF}iZ9AgW(TJ7~ZH#7ApWTHqMB(run?r_1*(v|!(-J?z
z<vv=G%jK)FJY$W{;266_FEUI>5tB*JT!?~alYo}JD50e}JC71OGn~*;`XiX^rR?1M
zRFm4}YLIaisqva>TBiB`!?0{5zPTAUgdZ;E2Nxf7Na(M4FNV$!FlioT>K}$c0w3}>
z0=TpRQwmDLJX^!PYL<dg!cs+<1q@Bx`be3w_OHds?1ETO6!ZcLLLq6@$wg(*n5y53
zWAqo~_P2TC-GPY;Xrk1V_qAzyZ~}+<Q$Da7Z@&}Sj}5`S)2Mqn-}f~=>hK+7UtKr|
zGux@oYY2J@B{&)f--TnC0Klv1#Up<<xTW)C9I|OOOl9)2lH=4--v?Nrt~AzOfoLNo
zk5jry8t@TL`3Y!Y4cW^8k#62xp_n=!keW`oVgTis9o-RgZ|4QW?r7!}C3l6_9w8Lj
zcy%dk0{?zo2!P`vOHM>slOWFjQc<vWa5l(!Pe#vZarvV_D-y66A;DX>wgoSv5*(5c
z=cdZv&Zecnp;ELU_M_eBDt&y8gKf_@vMnHG0D#1hB?QaI8tXO&E{(kU7!n!XTj>*5
zhV_}b;Am~wSih|*px^sLJo~`84M&SUIVfa6ooKq;i>R-;cq>I=PHlk@wp*KbN}BNL
zhQ=BZwTjY<3J<%mAfqlFn2$vj`6*o6lFf!qTjCD*;vUowl^;p4dM@#kqoRkPt+=Ub
zTnTq#hB$>zS27UOgZaI5s}Lif@EJSa)55BJf_Rw{&!IssFOA^sX~gwWNzdo)_NT>R
z4GNnc>I5ies*$2Hik2n3b{Z~Pb^T(&+%YfC3ECPLRO>AN1qL<}=u~%PP@w;rLbbiP
z&?()WaO1AD%k>j<L7#8%y4U$gVX>O0EFFmsoZjfFl#Xa8S)kjLR9H3?Y(7laZe%Kh
zkw=Qh_I15WkRi99>L!ixllRT>COkRdbMzZ0ISeQ;2Bk7?uSI>>=bu5N1KKxifSY1(
zQFf>t53fie&2zJ3vU=w0z8;0jE!_j7B_yYGBwG3qzair#&-A>}XqD`<6OunT%0G?#
z4gAqs^)j=+NqB@9I8jr3D&_Q$7;$Z&%j_{Y`FMBnk!w=}HD^-iB?J!~A+#jMcodE=
zvT~_=Y>RaR@go<duToddBt``uy8a(W83MewrN(6@ka)Vcvf3QM3w{p@(k}O%x*xhU
zOY)K?FG&leN45@Bq{1|<&Al&ZJt^I0f{Q?n_I8VyZWW$^*+l%ht9>aq6PP9nzx5j&
z_L|x(B&(`Za++6<Vb=jdG@%WcSqNLnPNj=Mf9g?PA-9HIdV5_&-ycQEXgJu0QOcrn
z9}H!64C|+sv9k?yxYq91OZM6M?)#A%DdLb}a&=JdjMET|nv;{_O7ioOpG9E?P4?NY
zbFet`FlcRzXYavek+)^i@P37U`U4;7W}EDmI1Mmjt6=#^yUX2lT!t`ikZ{p<hB2CD
z9@vXGvy)mg>vHif^5rEZEuCRoatn*#L@~S`hZ1*-=8qsqAuWR9iD5H9zpl0Z6i8m<
zdflYCG1qO-1Mz#iIVXO}VzgIzFUu)F3um{L16KyaH0L1y?}oomNBFX5?Ft{H7^8Iq
zGomK+`pN{}IE&sF+mW6RIneapcn>IO(HG<IzGP7D+4w)$;Tee0-Qu@LRMPObSF-oK
zDkeV!pk~NfDs9Ejzw=l$9C%scsO@;78qua{rFg|1?PA%&IJvCnxtUr9Aji#W5+@l2
z5nT`B#fd8!ap<#Kene5D5_|%`=Z90S(rw9<a=5*2p*VS@NFdD7()AuPGKwuMZ?h0g
zMpF;oM)n;ctJW!DS|&wZ2Ea<^?T_rI0^sl2J{#Hfn_--0QGxIa%ThK@Vgek?AV))s
zDy%sMW61^y#>iCwG$Zkjc-&@Ssu7Hc|BDd7_NM@32jQbpb%WY=Fa2+KZU0VI_HDnS
z+w5ex#L}Xgl?+hxreHJek3~%5?LmFiw342zZxD(d@`1Z+(%qRbu?>{A7h3x8@r6Dj
z(W4JH*=r>CE7^3TQ1O{~5et<M2=LVX1o3|_0&#_T1S%&{Mld0Ek@lTm=n|5^!mV;S
Ngwo?xsSIMDoVWj-p~wIL

literal 2829
zcmV+o3-a^;M@dveQdv+`01#@UC8lAV+bmCourd9jTHnoQ;C>bF=?rC%bL+8Ft%MZy
z;c)H?l2hfqh~U2zXQ9?YHPYy`4G|tRpb`CgJsuBrQGY~FeH^Ofqg7nL^p1CNnnPh7
z;1VnaFtY4~&@}GDu67+04`D1fY^>lR&K3vqnpO?q{~j3JB>|bQ^enbOkk@cg8dg_E
z)jw+bV6X}o0`B}4GdKy(KXt0t$GUf6t~QjEKrKj?<FrKZ??a~PDJ5~54SP|G$4BFc
zC)lGNGqN-<$o^xH1ST<wn3>=TsAe})EwT&CB=K;KBNag2J|N<#f<x#auA|^L{!)5`
zJBiV02q_r!G+eZ^gc5i99I9jU4C8|0INSB4nogG@%R-!hO}6s;Y;AVY7~_U_sP}Me
zFK~=Gr8^J4_DH0j0)E{cn6!*p2m<~dYrgaj_9;!<Gs<jHl!wL|m76}nd5Kr1<xqY)
z9}#R)e0{@hgD!veNuW4`lDouM6;fK;GbJ)z&GC<Cc$pWoO>qDunyUC}5?+!0yd(38
zbeZ!L)>s0{O!vmY4NppL<=0`7_tu?d_I7@SG6UiPB$BOzLy_J{iW#$G=<q2L{%Qtd
zJu4WA^^W8PxHd7r+m5+pvpe6l=HUaYgcrYf;VmW2A|x!K9l#NG;l~}75AoFohVrD=
znO5_;;J3$a+w`%SP53DaeB?ZJ)n<E*BTXzOANvnCjjIFhff8O;YIrsKVBCd(<!p1I
z#rxR(R>XOjD*PgMsOzce@1wl>q2dK=m;@*ZQStm4F}*kXmT88nYYBXpmR+^d8=$)F
z^22Vu#80VtDG#T8?DI2;8^ptFK(GCziW2Z+<A=#<LQ0?|RB-STgw*gO7v&?5DgYar
zE)4fAY3hlaO)ks!>B-#?eG3;TT4KAq!8r%6`?82|5)#TQyAjg~K+ZNi*%j3#-~HN+
zp%Zzlk11T4qRv-!7;oR2(X>pa<&aSQFaK1vestX98~kz=-N3^sCHBfD?_ROoo?(ED
zZfNy+_;W=>6h{ZZtpl~Qo!eg}UmM$-ws=PM9l`5pEVD+6=G!B|JY<0YdwoEQhJ!5n
z8Y{oh6y{+bYTlJ}cYCx2exG$=7)O$K`X?}6uH#Bt?Ki@e(;_B^k^tW|T)R1+bC^sE
z#l~|)G}T-_nssp~M7s(T@CpG*QO=Y)4Q0$*pkX=|!{#A^>RH07(Y(M9&oz1(=5aW7
zlf<EHw%8Dc90gYSrl%#0N+V(DJ3@K$w8u%*fA5Ny&<9lVivQE=;B9*oBl2v;e@Wrd
z(kM9KOOW$;zX>AnW-Arz+fITDa(QaP{z_*$FNt653rkc79J)6JrQv`KDs_gCp-Ljs
z7bSUVePT=wEt9SqZ$VsJi0OBsDV~5TDPJu1#l0g3k5M~yGa{&sS77rMy4ql<UO2xk
zVH4CIm3fo1imOM{qz2hEeFr^4jSDeKbh3wPhhfwl?&F$2B5dDDi~5H^G7x|N%%LMy
zPrJ3ZFMgZ6<K1UZBxOgJ>d>t8D5o<2PYB>AQ)$JY3y^%bqN<)LxuT2(@<~v+re5kG
ziz5~jEOi_oMK7_ByddpCbz!G(H}$g(y~>9FZ!Rf*=^TDVP6S&!9M7I5!a;!p59+PM
zWi>X^RS`SaTNWCr1$+{h&6g_h@$pqgR?V8=*IrHY^j=0HmYrQf4jkujCK|5HI<Sy0
z+u9zkhGWg6=-ddkGjUH`wBJiQ?TitsknW;gi#!n3Ux3izJ<BpvIMl$0cO9{{(}a})
zR>|0>p#<x2X*Su|z0ZZ5!&y6m;o=d{Yazz?trZVgHg~U@{QnPE6^VzMz6_WF(ymcA
z&-N>JMJV6NEDl|_o=k$sDuu|~%1j6@##u2hX;bIuNkDj}F0pqf&e(F`{cxNWJPY#e
zGBRT*i5laW=Q4D%R<0txb5I21kr><EwI7r<N94_X?705#`2|)JM^}V0fO`)+f!v|a
zM6D3}!2n<uFa$R==izP2i~btMt;Z-KsT6deh6-k|D8_IN(ITpR0AgAfZbV|JNK+hj
zy;R=5@aJWKUJ?a6X2nh886A^kII5!EB~P<CL%1Z9&2A-D<}`UzlS!`sRtJz;`YYMX
zB{n#AmGgeP=8ecyX+eWWfQJrB5+g2k1q0Tc^FEtgEY;-s*l>4@yIon*Ld7|eAi5!;
zNoswkdniB>0&ijltz61}pL#a#nojztRNe1ugZ?#qU#f7}dE{KLU#DtZIfi~G5J%&h
zY^V(_VKya7lJ)<a=JK)ZkHg6%9jD+54$#k&a%7VRqYx108HQ``381c`{1b)ZhzYyR
zevoo$(1w@eP{Lg&|M!I4Q{EJzx?x}d%1~QBp3Odwyywlhimsx%+NdU422X1mn$R^<
z{u%J2tx61h7kF3es_8Iri&JGxWfct)3l29pR!#!IeM3kQJNPT3Hkf1#9)%!LoiXXU
zI)pbjM0&{^ke1SMizgq%B0I}gv8|3P57yuaX#|oai=KQ8XBkUxt5GMgQWkF69t<sj
z11KG{RK}r$8xYHk(CP#0iNbYle=2w!3_^H*<t86l8=_7kV>5VhC>s~f1q*^s>^saZ
zS=jR<16wWI)3~Sr1B1mjd_$0`>ta=6YQ|W%7E-LN?Gr}~@DOzwQ2pygw#e|lRtZ@q
zP5OEuR7ss9%z87;n>hR5m6jMjWoO9DvqRd4`BD+33FBQZRUP=J0poGl=T8`o^WnqN
z6eeAb%E<*ODIA);E$?|i%z%Yvwav#p>T&xeUxa^S8a5_@Os-!UN-P1MTjA&zL`b7e
zPz->N4XB(wr_Rz7117Y!xi*-A2DXWPKG5x_<8%n&i-38w$(8oE%h)`*;uQ?Q1lJKB
ztE#Sx>dD5C-Mov~k{~_8g`rDSN_vKiiE3R)qHqc-$M_NP;r_8wA6h|`2EJhAlclGF
z1bC?<eAzFrQ?tnK<dO_!V*eS!%gtASFzEG@`o&x=>S(OU|Ioj=E1UWtr_LrWM0ku!
zEC7wPikM>)4Yvlp$%l}`kR&b=h)xGKtU3}uv+GcTmaW3s(m(`(o$mUB4q0>gNT}qF
zbESA~Y*a<89ed-MRn}H6)s+of!$DZwjS;90^eSQafIB-_vIXQO2Y?8wEUWTup-Buk
z5}#07<dIFZ&EfpBj~TRgA+7AY2z<s>1y2ux>og8RY{`M6eb5jev*=WX34@P&?s|-@
z?G!5bbcW2Rc!Y{%-r91Z=FzthVlup3pTT%Vu<XwBL65nqd~nKQ)+)y}+qh*S=*(-o
z#KTbvaXY3jdJ&F;2wF>Ed<L9gm=>sAI6F5L#mVWJOwj}b^$Vid+50^*rG6OWHYm+8
zgQgq4Y(gA~TPiYkSD!@N%^i}FXjC7W#|EfHKo7y20&0vq>pp$%M?Bkv3?St2E;p17
z>vy_@st|)dAtFdGeEi@x-YbFU#lW_R=+ahU9t5#H*0;oY;7C0QU;!lxALuuoajWjR
z{5L@ij8Yr>_Sjjqb1!%IIJ>U^56Gs!cs1&XP-N8+7`0PEikLRQmRJH44D7IFnGxpz
zqiJd!x3K_O=LkigXKQ=!lF4XlsCK=;zd9L{*ai({0V-;9R1$%@aGP8Cptf(EX$s<R
zn5z)%OIe^+HzK!HPkOzrD6iTq9hqX;Th_waA;EAA|I5y^rK#`&M0L>q0~d(#PMRm=
fD#IA74;Aye^m8Q}Se|FJ-LN$N+SP;(6hVZ|ZA?~}