@cluesmith/codev 2.0.0-rc.60 → 2.0.0-rc.63

package/dist/agent-farm/lib/tunnel-client.js

@@ -0,0 +1,502 @@
+/**
+ * HTTP/2 Role-Reversal Tunnel Client (Spec 0097 Phase 3, TICK-001)
+ *
+ * Opens a WebSocket connection to codevos.ai/tunnel, authenticates
+ * with JSON messages, then runs an HTTP/2 *server* over the WebSocket
+ * stream. codevos.ai acts as the HTTP/2 *client*, sending requests
+ * through the tunnel. The tower proxies those requests to localhost.
+ *
+ * TICK-001: Transport changed from raw TCP/TLS to WebSocket.
+ * The H2 role-reversal is transport-agnostic — it works over any duplex stream.
+ */
+import http2 from 'node:http2';
+import http from 'node:http';
+import https from 'node:https';
+import { URL } from 'node:url';
+import WebSocket, { createWebSocketStream } from 'ws';
+/** Headers that must be stripped when proxying between HTTP/2 and HTTP/1.1 */
+const HOP_BY_HOP_HEADERS = new Set([
+    'connection',
+    'keep-alive',
+    'proxy-authenticate',
+    'proxy-authorization',
+    'te',
+    'trailers',
+    'transfer-encoding',
+    'upgrade',
+]);
+/** Paths that are local-only management endpoints — block from tunnel */
+const BLOCKED_PATH_PREFIX = '/api/tunnel/';
+/**
+ * Calculate reconnection backoff with exponential increase and jitter.
+ * Exported for unit testing.
+ *
+ * Formula: min(1000 * 2^attempt + random(0, 1000), 60000)
+ * After 10 consecutive failures: 300000ms (5 min)
+ */
+export function calculateBackoff(attempt, randomFn = Math.random) {
+    if (attempt >= 10)
+        return 300_000;
+    const base = 1000 * Math.pow(2, attempt);
+    const jitter = Math.floor(randomFn() * 1000);
+    return Math.min(base + jitter, 60_000);
+}
+/**
+ * Check if a request path should be blocked from tunnel proxying.
+ * Normalizes percent-encoding and collapses dot segments before checking,
+ * preventing bypass via encoded slashes (%2F), double dots, etc.
+ * Exported for unit testing.
+ */
+export function isBlockedPath(path) {
+    try {
+        // Decode percent-encoding, then resolve dot segments via URL normalization
+        const decoded = decodeURIComponent(path);
+        // Collapse duplicate slashes and resolve . / .. segments
+        const normalized = new URL(decoded, 'http://localhost').pathname;
+        return normalized.startsWith(BLOCKED_PATH_PREFIX);
+    }
+    catch {
+        // If decoding fails, check the raw path as a fallback (fail closed)
+        return path.startsWith(BLOCKED_PATH_PREFIX);
+    }
+}
+/**
+ * Filter hop-by-hop headers from a headers object.
+ * Returns a new object with only end-to-end headers.
+ * Exported for unit testing.
+ */
+export function filterHopByHopHeaders(headers) {
+    const result = {};
+    for (const [key, value] of Object.entries(headers)) {
+        if (value !== undefined && !HOP_BY_HOP_HEADERS.has(key.toLowerCase())) {
+            result[key] = value;
+        }
+    }
+    return result;
+}
+/**
+ * Build the WebSocket tunnel URL from the server URL.
+ * https:// → wss://, http:// → ws://
+ */
+function buildTunnelWsUrl(serverUrl) {
+    const parsed = new URL(serverUrl);
+    const wsProtocol = parsed.protocol === 'https:' ? 'wss:' : 'ws:';
+    return `${wsProtocol}//${parsed.host}/tunnel`;
+}
+export class TunnelClient {
+    options;
+    state = 'disconnected';
+    connectedAt = null;
+    stateListeners = [];
+    ws = null;
+    wsStream = null;
+    h2Server = null;
+    h2Session = null;
+    reconnectTimer = null;
+    consecutiveFailures = 0;
+    rateLimitCount = 0;
+    destroyed = false;
+    constructor(options) {
+        this.options = options;
+    }
+    getState() {
+        return this.state;
+    }
+    getUptime() {
+        if (this.state !== 'connected' || this.connectedAt === null)
+            return null;
+        return Date.now() - this.connectedAt;
+    }
+    onStateChange(callback) {
+        this.stateListeners.push(callback);
+    }
+    setState(newState) {
+        if (this.state === newState)
+            return;
+        const prev = this.state;
+        this.state = newState;
+        if (newState === 'connected') {
+            this.connectedAt = Date.now();
+            this.consecutiveFailures = 0;
+            this.rateLimitCount = 0;
+            // Push cached metadata on connect
+            if (this._pendingMetadata) {
+                this.pushMetadataViaHttp(this._pendingMetadata);
+            }
+        }
+        else if (newState === 'disconnected' || newState === 'auth_failed') {
+            this.connectedAt = null;
+        }
+        for (const listener of this.stateListeners) {
+            try {
+                listener(newState, prev);
+            }
+            catch {
+                // Ignore listener errors
+            }
+        }
+    }
+    /**
+     * Initiate tunnel connection. Non-blocking — connection happens asynchronously.
+     */
+    connect() {
+        if (this.state === 'connecting' || this.state === 'connected')
+            return;
+        this.destroyed = false;
+        this.clearReconnectTimer();
+        this.doConnect();
+    }
+    /**
+     * Gracefully disconnect the tunnel.
+     */
+    disconnect() {
+        this.destroyed = true;
+        this.clearReconnectTimer();
+        this.cleanup();
+        this.setState('disconnected');
+    }
+    /**
+     * Reset the circuit breaker (e.g. after config change).
+     * Allows reconnection after auth_failed state.
+     */
+    resetCircuitBreaker() {
+        if (this.state === 'auth_failed') {
+            this.destroyed = false;
+            this.consecutiveFailures = 0;
+            this.rateLimitCount = 0;
+            this.setState('disconnected');
+        }
+    }
+    /**
+     * Send tower metadata to codevos.ai.
+     *
+     * Uses a dual mechanism:
+     * 1. Caches metadata for `GET /__tower/metadata` (served when codevos.ai H2 client polls)
+     * 2. When connected, proactively POSTs to `serverUrl/api/tower/metadata` via HTTPS
+     *
+     * Call before `connect()` to set initial metadata, or after to update it.
+     */
+    sendMetadata(metadata) {
+        this._pendingMetadata = metadata;
+        // Proactively push via HTTPS when connected
+        if (this.state === 'connected') {
+            this.pushMetadataViaHttp(metadata);
+        }
+    }
+    /** Stored metadata for serving via GET /__tower/metadata */
+    _pendingMetadata = null;
+    /**
+     * Push metadata to codevos.ai via outbound HTTPS POST.
+     * Best-effort — failures are silently ignored since codevos.ai
+     * can also poll via the H2 tunnel's GET /__tower/metadata handler.
+     */
+    pushMetadataViaHttp(metadata) {
+        try {
+            const url = new URL('/api/tower/metadata', this.options.serverUrl);
+            const body = JSON.stringify(metadata);
+            const isSecure = url.protocol === 'https:';
+            const transport = isSecure ? https : http;
+            const req = transport.request(url, {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json',
+                    'Authorization': `Bearer ${this.options.apiKey}`,
+                    'Content-Length': Buffer.byteLength(body),
+                },
+            }, (res) => {
+                res.resume(); // Drain response
+            });
+            req.on('error', () => {
+                // Best-effort — silently ignore network errors
+            });
+            req.end(body);
+        }
+        catch {
+            // Ignore URL construction or other errors
+        }
+    }
+    clearReconnectTimer() {
+        if (this.reconnectTimer) {
+            clearTimeout(this.reconnectTimer);
+            this.reconnectTimer = null;
+        }
+    }
+    scheduleReconnect() {
+        if (this.destroyed || this.state === 'auth_failed')
+            return;
+        const delay = calculateBackoff(this.consecutiveFailures);
+        this.reconnectTimer = setTimeout(() => {
+            this.reconnectTimer = null;
+            if (!this.destroyed && this.state !== 'auth_failed') {
+                this.doConnect();
+            }
+        }, delay);
+    }
+    cleanup() {
+        if (this.h2Session && !this.h2Session.destroyed) {
+            this.h2Session.destroy();
+        }
+        this.h2Session = null;
+        if (this.h2Server) {
+            this.h2Server.close();
+        }
+        this.h2Server = null;
+        if (this.wsStream) {
+            this.wsStream.destroy();
+        }
+        this.wsStream = null;
+        if (this.ws && this.ws.readyState !== WebSocket.CLOSED) {
+            this.ws.close();
+        }
+        this.ws = null;
+    }
+    doConnect() {
+        this.setState('connecting');
+        const wsUrl = buildTunnelWsUrl(this.options.serverUrl);
+        const ws = new WebSocket(wsUrl);
+        this.ws = ws;
+        ws.on('open', () => {
+            this.onWsOpen(ws);
+        });
+        ws.on('error', (err) => {
+            // Ignore events from stale WebSockets (e.g. after disconnect + reconnect)
+            if (ws !== this.ws)
+                return;
+            this.handleConnectionError(err);
+        });
+        ws.on('close', () => {
+            // Ignore events from stale WebSockets (e.g. after disconnect + reconnect)
+            if (ws !== this.ws)
+                return;
+            if (this.state === 'connected' || this.state === 'connecting') {
+                this.cleanup();
+                this.setState('disconnected');
+                this.consecutiveFailures++;
+                this.scheduleReconnect();
+            }
+        });
+    }
+    onWsOpen(ws) {
+        // Send JSON auth message (TICK-001 protocol)
+        ws.send(JSON.stringify({ type: 'auth', apiKey: this.options.apiKey }));
+        // Wait for auth response
+        const onMessage = (data) => {
+            ws.removeListener('message', onMessage);
+            try {
+                const msg = JSON.parse(data.toString());
+                if (msg.type === 'auth_ok') {
+                    this.options.towerId = msg.towerId;
+                    this.startH2Server(ws);
+                }
+                else if (msg.type === 'auth_error') {
+                    this.handleAuthError(msg.reason || 'unknown');
+                }
+                else {
+                    this.handleConnectionError(new Error(`Unexpected auth response type: ${msg.type}`));
+                }
+            }
+            catch (err) {
+                this.handleConnectionError(new Error(`Invalid auth response: ${data.toString()}`));
+            }
+        };
+        ws.on('message', onMessage);
+    }
+    handleAuthError(reason) {
+        this.cleanup();
+        if (reason === 'invalid_api_key') {
+            this.setState('auth_failed');
+            console.error("Cloud connection failed: API key is invalid or revoked. Run 'af tower register --reauth' to update credentials.");
+            // Circuit breaker: don't retry
+            return;
+        }
+        // Transient errors: rate_limited, internal_error, etc.
+        this.setState('disconnected');
+        if (reason === 'rate_limited') {
+            this.rateLimitCount++;
+            // First rate limit: 60s. Subsequent: 5 minutes (per spec).
+            const delay = this.rateLimitCount <= 1 ? 60_000 : 300_000;
+            this.reconnectTimer = setTimeout(() => {
+                this.reconnectTimer = null;
+                if (!this.destroyed)
+                    this.doConnect();
+            }, delay);
+        }
+        else {
+            this.scheduleReconnect();
+        }
+        this.consecutiveFailures++;
+    }
+    handleConnectionError(_err) {
+        this.cleanup();
+        if (this.state === 'auth_failed')
+            return; // Don't override circuit breaker
+        this.setState('disconnected');
+        this.scheduleReconnect();
+        this.consecutiveFailures++;
+    }
+    startH2Server(ws) {
+        // Convert WebSocket to a Node.js duplex stream
+        const wsStream = createWebSocketStream(ws);
+        this.wsStream = wsStream;
+        // Create an HTTP/2 server (plaintext — TLS is handled by the WebSocket layer)
+        // Enable extended CONNECT for WebSocket proxying (RFC 8441)
+        const h2Server = http2.createServer({
+            settings: { enableConnectProtocol: true },
+        });
+        this.h2Server = h2Server;
+        h2Server.on('session', (session) => {
+            this.h2Session = session;
+            this.setState('connected');
+        });
+        h2Server.on('stream', (stream, headers) => {
+            this.handleH2Stream(stream, headers);
+        });
+        h2Server.on('error', () => {
+            // H2 server error — will be handled by ws close
+        });
+        // Emit the duplex stream as a connection to the H2 server
+        // This is the "role reversal" — the H2 server runs over an outbound WebSocket
+        h2Server.emit('connection', wsStream);
+    }
+    handleH2Stream(stream, headers) {
+        const method = headers[':method'];
+        const path = headers[':path'];
+        const protocol = headers[':protocol'];
+        // Check blocklist
+        if (path && isBlockedPath(path)) {
+            stream.respond({
+                ':status': 403,
+                'content-type': 'application/json',
+            });
+            stream.end(JSON.stringify({ error: 'Forbidden: tunnel management endpoints are local-only' }));
+            return;
+        }
+        // Handle metadata requests from the server
+        if (method === 'GET' && path === '/__tower/metadata') {
+            stream.respond({
+                ':status': 200,
+                'content-type': 'application/json',
+            });
+            stream.end(JSON.stringify(this._pendingMetadata ?? { projects: [], terminals: [] }));
+            return;
+        }
+        // Handle WebSocket CONNECT (RFC 8441)
+        if (method === 'CONNECT' && protocol === 'websocket') {
+            this.handleWebSocketConnect(stream, headers);
+            return;
+        }
+        // Regular HTTP proxy
+        this.proxyHttpRequest(stream, headers, method, path);
+    }
+    handleWebSocketConnect(stream, headers) {
+        const authority = headers[':authority'] || `localhost:${this.options.localPort}`;
+        const path = headers[':path'] || '/';
+        // Forward non-hop-by-hop headers from the H2 CONNECT to the local WS upgrade
+        const forwardHeaders = {
+            'Upgrade': 'websocket',
+            'Connection': 'Upgrade',
+            'Sec-WebSocket-Version': '13',
+            'Sec-WebSocket-Key': Buffer.from(Math.random().toString()).toString('base64'),
+            'Host': authority,
+        };
+        for (const [key, value] of Object.entries(headers)) {
+            if (key.startsWith(':'))
+                continue;
+            if (HOP_BY_HOP_HEADERS.has(key.toLowerCase()))
+                continue;
+            if (key.toLowerCase() === 'host')
+                continue; // Already set
+            if (value !== undefined) {
+                forwardHeaders[key] = value;
+            }
+        }
+        // Make HTTP/1.1 WebSocket upgrade request to localhost
+        const wsReq = http.request({
+            hostname: 'localhost',
+            port: this.options.localPort,
+            path,
+            method: 'GET',
+            headers: forwardHeaders,
+        });
+        wsReq.on('upgrade', (_res, socket, head) => {
+            // Respond 200 to the H2 CONNECT
+            stream.respond({ ':status': 200 });
+            // If there's buffered data from upgrade, push it
+            if (head.length > 0) {
+                stream.write(head);
+            }
+            // Bidirectional pipe
+            socket.pipe(stream);
+            stream.pipe(socket);
+            socket.on('error', () => stream.destroy());
+            stream.on('error', () => socket.destroy());
+            socket.on('close', () => { if (!stream.destroyed)
+                stream.destroy(); });
+            stream.on('close', () => { if (!socket.destroyed)
+                socket.destroy(); });
+        });
+        // Handle non-upgrade responses (e.g. 404 for missing terminal)
+        wsReq.on('response', (res) => {
+            if (!stream.destroyed) {
+                stream.respond({ ':status': res.statusCode || 502 });
+                res.pipe(stream);
+            }
+        });
+        wsReq.on('error', () => {
+            if (!stream.destroyed) {
+                stream.respond({ ':status': 502 });
+                stream.end();
+            }
+        });
+        wsReq.end();
+    }
+    proxyHttpRequest(stream, h2Headers, method, path) {
+        // Build HTTP/1.1 request headers, filtering H2 pseudo-headers and hop-by-hop
+        const reqHeaders = {};
+        for (const [key, value] of Object.entries(h2Headers)) {
+            if (key.startsWith(':'))
+                continue; // Skip H2 pseudo-headers
+            if (HOP_BY_HOP_HEADERS.has(key.toLowerCase()))
+                continue;
+            if (value !== undefined) {
+                reqHeaders[key] = value;
+            }
+        }
+        const proxyReq = http.request({
+            hostname: 'localhost',
+            port: this.options.localPort,
+            path,
+            method,
+            headers: reqHeaders,
+        }, (proxyRes) => {
+            // Filter hop-by-hop headers from response
+            const responseHeaders = {
+                ':status': proxyRes.statusCode ?? 500,
+            };
+            for (const [key, value] of Object.entries(proxyRes.headers)) {
+                if (!HOP_BY_HOP_HEADERS.has(key.toLowerCase()) && value !== undefined) {
+                    responseHeaders[key] = value;
+                }
+            }
+            stream.respond(responseHeaders);
+            proxyRes.pipe(stream);
+            proxyRes.on('error', () => {
+                if (!stream.destroyed)
+                    stream.destroy();
+            });
+        });
+        proxyReq.on('error', () => {
+            if (!stream.destroyed) {
+                stream.respond({ ':status': 502 });
+                stream.end(JSON.stringify({ error: 'Bad Gateway: local server unavailable' }));
+            }
+        });
+        // Pipe request body
+        stream.pipe(proxyReq);
+        stream.on('error', () => {
+            if (!proxyReq.destroyed)
+                proxyReq.destroy();
+        });
+    }
+}
+//# sourceMappingURL=tunnel-client.js.map

package/dist/agent-farm/lib/tunnel-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tunnel-client.js","sourceRoot":"","sources":["../../../src/agent-farm/lib/tunnel-client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,MAAM,YAAY,CAAC;AAC/B,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,KAAK,MAAM,YAAY,CAAC;AAE/B,OAAO,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAC/B,OAAO,SAAS,EAAE,EAAE,qBAAqB,EAAE,MAAM,IAAI,CAAC;AAsBtD,8EAA8E;AAC9E,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAC;IACjC,YAAY;IACZ,YAAY;IACZ,oBAAoB;IACpB,qBAAqB;IACrB,IAAI;IACJ,UAAU;IACV,mBAAmB;IACnB,SAAS;CACV,CAAC,CAAC;AAEH,yEAAyE;AACzE,MAAM,mBAAmB,GAAG,cAAc,CAAC;AAE3C;;;;;;GAMG;AACH,MAAM,UAAU,gBAAgB,CAAC,OAAe,EAAE,WAAyB,IAAI,CAAC,MAAM;IACpF,IAAI,OAAO,IAAI,EAAE;QAAE,OAAO,OAAO,CAAC;IAClC,MAAM,IAAI,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IACzC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC,CAAC;IAC7C,OAAO,IAAI,CAAC,GAAG,CAAC,IAAI,GAAG,MAAM,EAAE,MAAM,CAAC,CAAC;AACzC,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,IAAI,CAAC;QACH,2EAA2E;QAC3E,MAAM,OAAO,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;QACzC,yDAAyD;QACzD,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,OAAO,EAAE,kBAAkB,CAAC,CAAC,QAAQ,CAAC;QACjE,OAAO,UAAU,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC;IACpD,CAAC;IAAC,MAAM,CAAC;QACP,oEAAoE;QACpE,OAAO,IAAI,CAAC,UAAU,CAAC,mBAAmB,CAAC,CAAC;IAC9C,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,qBAAqB,CACnC,OAAsD;IAEtD,MAAM,MAAM,GAAsC,EAAE,CAAC;IACrD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QACnD,IAAI,KAAK,KAAK,SAAS,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACtE,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACtB,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,SAAS,gBAAgB,CAAC,SAAiB;IACzC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC;IAClC,MAAM,UAAU,GAAG,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC;IACjE,OAAO,GAAG,UAAU,KAAK,MAAM,CAAC,IAAI,SAAS,CAAC;AAChD,CAAC;AAED,MAAM,OAAO,YAAY;IACf,OAAO,CAAsB;IAC7B,KAAK,GAAgB,cAAc,CAAC;IACpC,WAAW,GAAkB,IAAI,CAAC;IAClC,cAAc,GAA0B,EAAE,CAAC;IAC3C,EAAE,GAAqB,IAAI,CAAC;IAC5B,QAAQ,GAAkB,IAAI,CAAC;IAC/B,QAAQ,GAA6B,IAAI,CAAC;IAC1C,SAAS,GAAoC,IAAI,CAAC;IAClD,cAAc,GAAyC,IAAI,CAAC;IAC5D,mBAAmB,GAAG,CAAC,CAAC;IACxB,cAAc,GAAG,CAAC,CAAC;IACnB,SAAS,GAAG,KAAK,CAAC;IAE1B,YAAY,OAA4B;QACtC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;IAED,QAAQ;QACN,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,SAAS;QACP,IAAI,IAAI,CAAC,KAAK,KAAK,WAAW,IAAI,IAAI,CAAC,WAAW,KAAK,IAAI;YAAE,OAAO,IAAI,CAAC;QACzE,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC;IACvC,CAAC;IAED,aAAa,CAAC,QAA6B;QACzC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACrC,CAAC;IAEO,QAAQ,CAAC,QAAqB;QACpC,IAAI,IAAI,CAAC,KAAK,KAAK,QAAQ;YAAE,OAAO;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC;QACxB,IAAI,CAAC,KAAK,GAAG,QAAQ,CAAC;QACtB,IAAI,QAAQ,KAAK,WAAW,EAAE,CAAC;YAC7B,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC9B,IAAI,CAAC,mBAAmB,GAAG,CAAC,CAAC;YAC7B,IAAI,CAAC,cAAc,GAAG,CAAC,CAAC;YACxB,kCAAkC;YAClC,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBAC1B,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YAClD,CAAC;QACH,CAAC;aAAM,IAAI,QAAQ,KAAK,cAAc,IAAI,QAAQ,KAAK,aAAa,EAAE,CAAC;YACrE,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;QAC1B,CAAC;QACD,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAC3B,CAAC;YAAC,MAAM,CAAC;gBACP,yBAAyB;YAC3B,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,IAAI,CAAC,KAAK,KAAK,YAAY,IAAI,IAAI,CAAC,KAAK,KAAK,WAAW;YAAE,OAAO;QACtE,IAAI,CAAC,SAAS,GAAG,KAAK,CAAC;QACvB,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAC3B,IAAI,CAAC,SAAS,EAAE,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,UAAU;QACR,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QACtB,IAAI,CAAC,mBAAmB,EAAE,CAAC;QAC3B,IAAI,CAAC,OAAO,EAAE,CAAC;QACf,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;IAChC,CAAC;IAED;;;OAGG;IACH,mBAAmB;QACjB,IAAI,IAAI,CAAC,KAAK,KAAK,aAAa,EAAE,CAAC;YACjC,IAAI,CAAC,SAAS,GAAG,KAAK,CAAC;YACvB,IAAI,CAAC,mBAAmB,GAAG,CAAC,CAAC;YAC7B,IAAI,CAAC,cAAc,GAAG,CAAC,CAAC;YACxB,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;IAED;;;;;;;;OAQG;IACH,YAAY,CAAC,QAAuB;QAClC,IAAI,CAAC,gBAAgB,GAAG,QAAQ,CAAC;QACjC,4CAA4C;QAC5C,IAAI,IAAI,CAAC,KAAK,KAAK,WAAW,EAAE,CAAC;YAC/B,IAAI,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC;QACrC,CAAC;IACH,CAAC;IAED,4DAA4D;IACpD,gBAAgB,GAAyB,IAAI,CAAC;IAEtD;;;;OAIG;IACK,mBAAmB,CAAC,QAAuB;QACjD,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,qBAAqB,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;YACnE,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;YACtC,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,KAAK,QAAQ,CAAC;YAC3C,MAAM,SAAS,GAAG,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;YAE1C,MAAM,GAAG,GAAG,SAAS,CAAC,OAAO,CAAC,GAAG,EAAE;gBACjC,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,eAAe,EAAE,UAAU,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;oBAChD,gBAAgB,EAAE,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC;iBAC1C;aACF,EAAE,CAAC,GAAG,EAAE,EAAE;gBACT,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,iBAAiB;YACjC,CAAC,CAAC,CAAC;YAEH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;gBACnB,+CAA+C;YACjD,CAAC,CAAC,CAAC;YAEH,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAChB,CAAC;QAAC,MAAM,CAAC;YACP,0CAA0C;QAC5C,CAAC;IACH,CAAC;IAEO,mBAAmB;QACzB,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACxB,YAAY,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;YAClC,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;QAC7B,CAAC;IACH,CAAC;IAEO,iBAAiB;QACvB,IAAI,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,KAAK,KAAK,aAAa;YAAE,OAAO;QAC3D,MAAM,KAAK,GAAG,gBAAgB,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QACzD,IAAI,CAAC,cAAc,GAAG,UAAU,CAAC,GAAG,EAAE;YACpC,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;YAC3B,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,KAAK,KAAK,aAAa,EAAE,CAAC;gBACpD,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,CAAC;QACH,CAAC,EAAE,KAAK,CAAC,CAAC;IACZ,CAAC;IAEO,OAAO;QACb,IAAI,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,CAAC;YAChD,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;QAC3B,CAAC;QACD,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QAEtB,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QACxB,CAAC;QACD,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QAErB,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;QAC1B,CAAC;QACD,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QAErB,IAAI,IAAI,CAAC,EAAE,IAAI,IAAI,CAAC,EAAE,CAAC,UAAU,KAAK,SAAS,CAAC,MAAM,EAAE,CAAC;YACvD,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,CAAC;QAClB,CAAC;QACD,IAAI,CAAC,EAAE,GAAG,IAAI,CAAC;IACjB,CAAC;IAEO,SAAS;QACf,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;QAE5B,MAAM,KAAK,GAAG,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAEvD,MAAM,EAAE,GAAG,IAAI,SAAS,CAAC,KAAK,CAAC,CAAC;QAChC,IAAI,CAAC,EAAE,GAAG,EAAE,CAAC;QAEb,EAAE,CAAC,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE;YACjB,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QACpB,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAU,EAAE,EAAE;YAC5B,0EAA0E;YAC1E,IAAI,EAAE,KAAK,IAAI,CAAC,EAAE;gBAAE,OAAO;YAC3B,IAAI,CAAC,qBAAqB,CAAC,GAAG,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YAClB,0EAA0E;YAC1E,IAAI,EAAE,KAAK,IAAI,CAAC,EAAE;gBAAE,OAAO;YAC3B,IAAI,IAAI,CAAC,KAAK,KAAK,WAAW,IAAI,IAAI,CAAC,KAAK,KAAK,YAAY,EAAE,CAAC;gBAC9D,IAAI,CAAC,OAAO,EAAE,CAAC;gBACf,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;gBAC9B,IAAI,CAAC,mBAAmB,EAAE,CAAC;gBAC3B,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC3B,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,QAAQ,CAAC,EAAa;QAC5B,6CAA6C;QAC7C,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAEvE,yBAAyB;QACzB,MAAM,SAAS,GAAG,CAAC,IAAuB,EAAE,EAAE;YAC5C,EAAE,CAAC,cAAc,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;YAExC,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;gBAExC,IAAI,GAAG,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;oBAC3B,IAAI,CAAC,OAAO,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC;oBACnC,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC,CAAC;gBACzB,CAAC;qBAAM,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;oBACrC,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,MAAM,IAAI,SAAS,CAAC,CAAC;gBAChD,CAAC;qBAAM,CAAC;oBACN,IAAI,CAAC,qBAAqB,CAAC,IAAI,KAAK,CAAC,kCAAkC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;gBACtF,CAAC;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,CAAC,qBAAqB,CAAC,IAAI,KAAK,CAAC,0BAA0B,IAAI,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC;YACrF,CAAC;QACH,CAAC,CAAC;QAEF,EAAE,CAAC,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IAC9B,CAAC;IAEO,eAAe,CAAC,MAAc;QACpC,IAAI,CAAC,OAAO,EAAE,CAAC;QAEf,IAAI,MAAM,KAAK,iBAAiB,EAAE,CAAC;YACjC,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YAC7B,OAAO,CAAC,KAAK,CACX,iHAAiH,CAClH,CAAC;YACF,+BAA+B;YAC/B,OAAO;QACT,CAAC;QAED,uDAAuD;QACvD,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAE9B,IAAI,MAAM,KAAK,cAAc,EAAE,CAAC;YAC9B,IAAI,CAAC,cAAc,EAAE,CAAC;YACtB,2DAA2D;YAC3D,MAAM,KAAK,GAAG,IAAI,CAAC,cAAc,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC;YAC1D,IAAI,CAAC,cAAc,GAAG,UAAU,CAAC,GAAG,EAAE;gBACpC,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC;gBAC3B,IAAI,CAAC,IAAI,CAAC,SAAS;oBAAE,IAAI,CAAC,SAAS,EAAE,CAAC;YACxC,CAAC,EAAE,KAAK,CAAC,CAAC;QACZ,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC3B,CAAC;QACD,IAAI,CAAC,mBAAmB,EAAE,CAAC;IAC7B,CAAC;IAEO,qBAAqB,CAAC,IAAW;QACvC,IAAI,CAAC,OAAO,EAAE,CAAC;QACf,IAAI,IAAI,CAAC,KAAK,KAAK,aAAa;YAAE,OAAO,CAAC,iCAAiC;QAC3E,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAC9B,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACzB,IAAI,CAAC,mBAAmB,EAAE,CAAC;IAC7B,CAAC;IAEO,aAAa,CAAC,EAAa;QACjC,+CAA+C;QAC/C,MAAM,QAAQ,GAAG,qBAAqB,CAAC,EAAE,CAAC,CAAC;QAC3C,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QAEzB,8EAA8E;QAC9E,4DAA4D;QAC5D,MAAM,QAAQ,GAAG,KAAK,CAAC,YAAY,CAAC;YAClC,QAAQ,EAAE,EAAE,qBAAqB,EAAE,IAAI,EAAE;SAC1C,CAAC,CAAC;QACH,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QAEzB,QAAQ,CAAC,EAAE,CAAC,SAAS,EAAE,CAAC,OAAiC,EAAE,EAAE;YAC3D,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC;YACzB,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,QAAQ,CAAC,EAAE,CAAC,QAAQ,EAAE,CAAC,MAA+B,EAAE,OAAkC,EAAE,EAAE;YAC5F,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,QAAQ,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACxB,gDAAgD;QAClD,CAAC,CAAC,CAAC;QAEH,0DAA0D;QAC1D,8EAA8E;QAC9E,QAAQ,CAAC,IAAI,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC;IACxC,CAAC;IAEO,cAAc,CAAC,MAA+B,EAAE,OAAkC;QACxF,MAAM,MAAM,GAAG,OAAO,CAAC,SAAS,CAAW,CAAC;QAC5C,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAW,CAAC;QACxC,MAAM,QAAQ,GAAG,OAAO,CAAC,WAAW,CAAuB,CAAC;QAE5D,kBAAkB;QAClB,IAAI,IAAI,IAAI,aAAa,CAAC,IAAI,CAAC,EAAE,CAAC;YAChC,MAAM,CAAC,OAAO,CAAC;gBACb,SAAS,EAAE,GAAG;gBACd,cAAc,EAAE,kBAAkB;aACnC,CAAC,CAAC;YACH,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,uDAAuD,EAAE,CAAC,CAAC,CAAC;YAC/F,OAAO;QACT,CAAC;QAED,2CAA2C;QAC3C,IAAI,MAAM,KAAK,KAAK,IAAI,IAAI,KAAK,mBAAmB,EAAE,CAAC;YACrD,MAAM,CAAC,OAAO,CAAC;gBACb,SAAS,EAAE,GAAG;gBACd,cAAc,EAAE,kBAAkB;aACnC,CAAC,CAAC;YACH,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,gBAAgB,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;YACrF,OAAO;QACT,CAAC;QAED,sCAAsC;QACtC,IAAI,MAAM,KAAK,SAAS,IAAI,QAAQ,KAAK,WAAW,EAAE,CAAC;YACrD,IAAI,CAAC,sBAAsB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;YAC7C,OAAO;QACT,CAAC;QAED,qBAAqB;QACrB,IAAI,CAAC,gBAAgB,CAAC,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC;IACvD,CAAC;IAEO,sBAAsB,CAAC,MAA+B,EAAE,OAAkC;QAChG,MAAM,SAAS,GAAG,OAAO,CAAC,YAAY,CAAW,IAAI,aAAa,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC;QAC3F,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAW,IAAI,GAAG,CAAC;QAE/C,6EAA6E;QAC7E,MAAM,cAAc,GAAsC;YACxD,SAAS,EAAE,WAAW;YACtB,YAAY,EAAE,SAAS;YACvB,uBAAuB,EAAE,IAAI;YAC7B,mBAAmB,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;YAC7E,MAAM,EAAE,SAAS;SAClB,CAAC;QACF,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YACnD,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YAClC,IAAI,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;gBAAE,SAAS;YACxD,IAAI,GAAG,CAAC,WAAW,EAAE,KAAK,MAAM;gBAAE,SAAS,CAAC,cAAc;YAC1D,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;gBACxB,cAAc,CAAC,GAAG,CAAC,GAAG,KAA0B,CAAC;YACnD,CAAC;QACH,CAAC;QAED,uDAAuD;QACvD,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC;YACzB,QAAQ,EAAE,WAAW;YACrB,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YAC5B,IAAI;YACJ,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,cAAc;SACxB,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,SAAS,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE;YACzC,gCAAgC;YAChC,MAAM,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;YAEnC,iDAAiD;YACjD,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACpB,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACrB,CAAC;YAED,qBAAqB;YACrB,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACpB,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAEpB,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YAC3C,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YAC3C,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS;gBAAE,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YACvE,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS;gBAAE,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;QACzE,CAAC,CAAC,CAAC;QAEH,+DAA+D;QAC/D,KAAK,CAAC,EAAE,CAAC,UAAU,EAAE,CAAC,GAAG,EAAE,EAAE;YAC3B,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;gBACtB,MAAM,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,UAAU,IAAI,GAAG,EAAE,CAAC,CAAC;gBACrD,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACnB,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACrB,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;gBACtB,MAAM,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;gBACnC,MAAM,CAAC,GAAG,EAAE,CAAC;YACf,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,KAAK,CAAC,GAAG,EAAE,CAAC;IACd,CAAC;IAEO,gBAAgB,CACtB,MAA+B,EAC/B,SAAoC,EACpC,MAAc,EACd,IAAY;QAEZ,6EAA6E;QAC7E,MAAM,UAAU,GAAsC,EAAE,CAAC;QACzD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;YACrD,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS,CAAC,yBAAyB;YAC5D,IAAI,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;gBAAE,SAAS;YACxD,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;gBACxB,UAAU,CAAC,GAAG,CAAC,GAAG,KAA0B,CAAC;YAC/C,CAAC;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAC3B;YACE,QAAQ,EAAE,WAAW;YACrB,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS;YAC5B,IAAI;YACJ,MAAM;YACN,OAAO,EAAE,UAAU;SACpB,EACD,CAAC,QAAQ,EAAE,EAAE;YACX,0CAA0C;YAC1C,MAAM,eAAe,GAA+C;gBAClE,SAAS,EAAE,QAAQ,CAAC,UAAU,IAAI,GAAG;aACtC,CAAC;YACF,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC5D,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;oBACtE,eAAe,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;gBAC/B,CAAC;YACH,CAAC;YAED,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;YAChC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAEtB,QAAQ,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;gBACxB,IAAI,CAAC,MAAM,CAAC,SAAS;oBAAE,MAAM,CAAC,OAAO,EAAE,CAAC;YAC1C,CAAC,CAAC,CAAC;QACL,CAAC,CACF,CAAC;QAEF,QAAQ,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACxB,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;gBACtB,MAAM,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;gBACnC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,uCAAuC,EAAE,CAAC,CAAC,CAAC;YACjF,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,oBAAoB;QACpB,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEtB,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACtB,IAAI,CAAC,QAAQ,CAAC,SAAS;gBAAE,QAAQ,CAAC,OAAO,EAAE,CAAC;QAC9C,CAAC,CAAC,CAAC;IACL,CAAC;CACF"}