@interop/zcap 10.0.2 → 11.0.0

package/dist/utils.js

@@ -0,0 +1,591 @@
+/*!
+ * Copyright (c) 2018-2024 Digital Bazaar, Inc. All rights reserved.
+ */
+import { MAX_CHAIN_LENGTH, ZCAP_CONTEXT_URL, ZCAP_ROOT_PREFIX } from './constants.js';
+/**
+ * Creates a root capability from a root controller and a root invocation
+ * target.
+ *
+ * @param options - The options.
+ * @param options.controller - The root controller.
+ * @param options.invocationTarget - The root invocation target.
+ *
+ * @returns The root capability.
+ */
+export function createRootCapability({ controller, invocationTarget }) {
+    return {
+        '@context': ZCAP_CONTEXT_URL,
+        id: `${ZCAP_ROOT_PREFIX}${encodeURIComponent(invocationTarget)}`,
+        controller,
+        invocationTarget
+    };
+}
+/**
+ * Retrieves the controller(s) from a capability.
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability (zcap).
+ *
+ * @returns The controller(s) for the capability.
+ */
+export function getControllers({ capability }) {
+    const { controller } = capability;
+    if (!controller) {
+        throw new Error('Capability controller not found.');
+    }
+    return Array.isArray(controller) ? controller : [controller];
+}
+/**
+ * Returns true if the given verification method is a controller (or is
+ * controlled by a controller) of the given capability.
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability (zcap).
+ * @param options.verificationMethod - The verification method to check.
+ *
+ * @returns `true` if the controller matches, `false` if not.
+ */
+export function isController({ capability, verificationMethod }) {
+    const controllers = getControllers({ capability });
+    return (controllers.includes(verificationMethod.controller) ||
+        controllers.includes(verificationMethod.id));
+}
+/**
+ * Retrieves the allowed actions from a capability.
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability (zcap).
+ *
+ * @returns Allowed actions.
+ */
+export function getAllowedActions({ capability }) {
+    if (!('allowedAction' in capability) || !capability.allowedAction) {
+        return [];
+    }
+    return [capability.allowedAction].flat();
+}
+/**
+ * Retrieves the target from a capability.
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability (zcap).
+ *
+ * @returns Capability target.
+ */
+export function getTarget({ capability }) {
+    // zcaps MUST have an `invocationTarget` that is a string
+    return capability.invocationTarget;
+}
+/**
+ * Retrieves the delegation proof(s) for a capability that is associated with
+ * its parent capability. A capability that has no parent or no associated
+ * delegation proofs will cause this function to return an empty array.
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability.
+ *
+ * @returns Any `capabilityDelegation` proof objects attached to the given
+ *   capability.
+ */
+export function getDelegationProofs({ capability }) {
+    // capability is root or capability has no `proof`, then it has no relevant
+    // delegation proofs
+    if (!('parentCapability' in capability) || !capability.proof) {
+        return [];
+    }
+    const proof = capability.proof;
+    const proofs = Array.isArray(proof) ? proof : [proof];
+    return proofs.filter(p => p && p.proofPurpose === 'capabilityDelegation');
+}
+/**
+ * Gets the `capabilityChain` associated with the given capability.
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability.
+ *
+ * @returns The capability chain entries (root to parent), as stored in the
+ *   delegation proof.
+ */
+export function getCapabilityChain({ capability }) {
+    if (!('parentCapability' in capability)) {
+        // root capability has no chain
+        return [];
+    }
+    const proofs = getDelegationProofs({ capability });
+    const [proof] = proofs;
+    if (proofs.length !== 1 || !proof) {
+        throw new Error('Cannot get capability chain; capability is invalid; it is not the ' +
+            'root capability yet it does not have exactly one delegation proof.');
+    }
+    const { capabilityChain } = proof;
+    if (!(capabilityChain && Array.isArray(capabilityChain))) {
+        throw new Error('Cannot get capability chain; capability is invalid; it does not have ' +
+            'a "capabilityChain" array in its delegation proof.');
+    }
+    return capabilityChain.slice();
+}
+/**
+ * Determines if the given `invocationTarget` is valid given a
+ * `baseInvocationTarget`.
+ *
+ * To check for a proper delegation, `invocationTarget` must be the child
+ * capability's `invocationTarget` and `baseInvocationTarget` must be the
+ * parent capability's `invocationTarget`.
+ *
+ * To check for a proper invocation, `invocationTarget` must be the value from
+ * the invocation proof and `baseInvocationTarget` must be the invoked
+ * capability's `invocationTarget`.
+ *
+ * @param options - The options.
+ * @param options.invocationTarget - The invocation target to check.
+ * @param options.baseInvocationTarget - The base invocation target.
+ * @param options.allowTargetAttenuation - `true` to allow target attenuation.
+ *
+ * @returns `true` if the target is valid, `false` if not.
+ */
+export function isValidTarget({ invocationTarget, baseInvocationTarget, allowTargetAttenuation }) {
+    // direct match, valid
+    if (baseInvocationTarget === invocationTarget) {
+        return true;
+    }
+    if (allowTargetAttenuation) {
+        /* Note: When `allowTargetAttenuation=true`, a zcap can be invoked with
+        a more narrow target and delegated zcap can have a different invocation
+        target from its parent. Here we must ensure that the invocation target
+        has a proper prefix relative to the base one we're comparing against.
+    
+        If the `baseInvocationTarget` already has a query (has `?`) then the
+        suffix that follows it must start with `&`. Otherwise, it may start
+        with either `/` or `?`. */
+        const prefixes = [];
+        if (baseInvocationTarget.includes('?')) {
+            // query already present in base invocation target, so only accept new
+            // variables in the query
+            prefixes.push(`${baseInvocationTarget}&`);
+        }
+        else {
+            // accept path-based attenuation or new query-based attenuation
+            prefixes.push(`${baseInvocationTarget}/`);
+            prefixes.push(`${baseInvocationTarget}?`);
+        }
+        if (prefixes.some(prefix => invocationTarget.startsWith(prefix))) {
+            return true;
+        }
+    }
+    // not a match
+    return false;
+}
+/**
+ * Creates a capability chain for delegating a capability from the
+ * given `parentCapability`.
+ *
+ * @param options - The options.
+ * @param options.parentCapability - The parent capability from which to compute
+ *   the capability chain (a root zcap ID string, or a full root or delegated
+ *   zcap object).
+ * @param options._skipLocalValidationForTesting - Private.
+ *
+ * @returns The computed capability chain to be included in a capability
+ *   delegation proof.
+ */
+export function computeCapabilityChain({ parentCapability, _skipLocalValidationForTesting }) {
+    // if parent capability is root (string or no parent of its own)
+    if (typeof parentCapability === 'string') {
+        return [parentCapability];
+    }
+    if (!('parentCapability' in parentCapability)) {
+        // capability must be a root zcap
+        checkCapability({ capability: parentCapability, expectRoot: true });
+        return [parentCapability.id];
+    }
+    // capability must be a delegated zcap, check it and get its chain
+    checkCapability({ capability: parentCapability, expectRoot: false });
+    const proofs = getDelegationProofs({ capability: parentCapability });
+    const [proof] = proofs;
+    if (proofs.length !== 1 || !proof) {
+        throw new Error('Cannot compute capability chain; parent capability is invalid; it is ' +
+            'not the root capability yet it does not have exactly one delegation ' +
+            'proof.');
+    }
+    const { capabilityChain } = proof;
+    if (!(capabilityChain && Array.isArray(capabilityChain))) {
+        throw new Error('Cannot compute capability chain; parent capability is invalid; it ' +
+            'does not have a "capabilityChain" array in its delegation proof.');
+    }
+    // validate parent capability chain to help prevent bad delegations
+    if (!_skipLocalValidationForTesting) {
+        // ensure that all `capabilityChain` entries except the last are strings
+        const lastRequiredType = capabilityChain.length > 1 ? 'object' : 'string';
+        const lastIndex = capabilityChain.length - 1;
+        for (const [i, entry] of capabilityChain.entries()) {
+            const entryType = typeof entry;
+            if (!((i === lastIndex && entryType === lastRequiredType) ||
+                (i !== lastIndex && entryType === 'string'))) {
+                throw new TypeError('Cannot compute capability chain; parent capability chain is ' +
+                    'invalid; it must consist of strings of capability IDs except ' +
+                    'the last capability if it is delegated, in which case it must ' +
+                    'be an object with an "id" property that is a string.');
+            }
+        }
+    }
+    // if last zcap is embedded, change it to a reference
+    const newChain = capabilityChain.slice(0, capabilityChain.length - 1);
+    const last = capabilityChain[capabilityChain.length - 1];
+    if (typeof last === 'string') {
+        newChain.push(last);
+    }
+    else if (last) {
+        newChain.push(last.id);
+    }
+    newChain.push(parentCapability);
+    // ensure new chain uses absolute URLs
+    for (const entry of newChain) {
+        if ((typeof entry === 'string' && !entry.includes(':')) ||
+            (typeof entry === 'object' && !entry.id.includes(':'))) {
+            throw new Error('Cannot compute capability chain; parent capability chain is ' +
+                'invalid because uses relative URL(s) in its capability chain.');
+        }
+    }
+    return newChain;
+}
+/**
+ * Dereferences the capability chain associated with the given capability,
+ * ensuring it passes a number of validation checks.
+ *
+ * A delegated zcap's chain has a reference to a root zcap. A verifier must
+ * provide a hook (`getRootCapability`) to dereference this root zcap since
+ * the root zcap has no delegation proof and must therefore be trusted by
+ * the verifier. If the root zcap can't be dereferenced by the trusted hook,
+ * then an authorization error must be thrown by that hook.
+ *
+ * This function will dereference the root zcap and then dereference all of
+ * the embedded delegated zcaps from the chain, combining them into a single
+ * array containing full zcaps ordered from root => tail.
+ *
+ * The dereferenced chain (result of this function) should then compare the
+ * root zcap's ID against a list of expected root capabilities, throwing
+ * an error if none of them match. Otherwise, the dereferenced chain should
+ * then be processed to ensure that all delegation rules have been followed.
+ * If checking an invocation, it should also be ensured that a combination of
+ * an expected target and a root zcap is permitted (note it is conceivable that
+ * a verifier may accept more than one combination, e.g., a target of `x` could
+ * work with both root zcap `a` and `b`).
+ *
+ * @param options - The options.
+ * @param options.capability - The authorization capability to dereference the
+ *   chain for. Pass a string (the root zcap ID) to dereference a root zcap
+ *   directly, or a delegated zcap object.
+ * @param options.getRootCapability - A function for dereferencing the root
+ *   capability (the root zcap must be deref'd in a trusted way by the verifier,
+ *   it must not be untrusted input).
+ * @param options.maxChainLength - The maximum length of the capability
+ *   delegation chain (this is inclusive of `capability` itself).
+ *
+ * @returns Resolves to an object containing the full dereferenced chain ordered
+ *   root to tail.
+ */
+export async function dereferenceCapabilityChain({ capability, getRootCapability, maxChainLength = MAX_CHAIN_LENGTH }) {
+    // capability MUST be a string if it is root; root zcaps MUST always be
+    // dereferenced via a trusted mechanism provided by the verifier as they
+    // do not have delegation proofs
+    let tailCapability;
+    if (typeof capability === 'string') {
+        const id = capability;
+        const { rootCapability } = await getRootCapability({ id });
+        checkCapability({ capability: rootCapability, expectRoot: true });
+        if (rootCapability.id !== id) {
+            throw new Error(`Dereferenced root capability ID "${rootCapability.id}" does not ` +
+                `match reference ID "${id}".`);
+        }
+        tailCapability = rootCapability;
+    }
+    else {
+        // ensure capability itself is valid
+        checkCapability({ capability, expectRoot: false });
+        tailCapability = capability;
+    }
+    // get a mapping of IDs to full zcaps as the chain is validated
+    const dereferencedChainMap = new Map();
+    // get the underef'd capability chain for the capability
+    const capabilityChain = getCapabilityChain({ capability: tailCapability });
+    // ensure capability chain length (add 1 to be inclusive of `capability`)
+    // does not exceed max chain length; only check this once at the start
+    // as it produces the most sensible error -- it is true that an embedded
+    // zcap could go over the limit but this will be caught via a congruency
+    // check on the length instead
+    if (capabilityChain.length + 1 > maxChainLength) {
+        throw new Error('The capability chain exceeds the maximum allowed length ' +
+            `of ${maxChainLength}.`);
+    }
+    // subtract one from the max chain length to start to account for
+    // `capability` which is not present in `capabilityChain`
+    let firstPass = true;
+    let requiredLength = capabilityChain.length;
+    let currentCapability = tailCapability;
+    let currentCapabilityChain = capabilityChain;
+    while (currentCapabilityChain.length > 0) {
+        if (currentCapabilityChain.length !== requiredLength) {
+            throw new Error('The capability chain length is incongruent.');
+        }
+        // if `next.length > 1`, then its last entry is a delegated
+        // capability and it MUST be fully embedded as an object; all other
+        // entries MUST be strings
+        const lastRequiredType = currentCapabilityChain.length > 1 ? 'object' : 'string';
+        // validate entries and dereference delegated zcaps
+        const lastIndex = currentCapabilityChain.length - 1;
+        for (const [i, entry] of currentCapabilityChain.entries()) {
+            const entryType = typeof entry;
+            const entryIsString = entryType === 'string';
+            const requiredType = i === lastIndex ? lastRequiredType : 'string';
+            // ensure entry is the required type and, if it is an object, its `id`
+            // is a string
+            if (!(entryType === requiredType &&
+                (entryIsString ||
+                    (typeof entry === 'object' && typeof entry.id === 'string')))) {
+                throw new TypeError('Capability chain is invalid; it must consist of strings ' +
+                    'of capability IDs except the last capability if it is ' +
+                    'delegated, in which case it must be an object with an "id" ' +
+                    'property that is a string.');
+            }
+            // ensure capability ID expresses an absolute URI (i.e., it has `:`)
+            const id = typeof entry === 'string' ? entry : entry.id;
+            if (!id.includes(':')) {
+                throw new Error('Capability chain is invalid; it contains a capability ID ' +
+                    'that is not an absolute URI.');
+            }
+            // ensure last entry in chain matches parent capability
+            if (i === lastIndex &&
+                'parentCapability' in currentCapability &&
+                currentCapability.parentCapability !== id) {
+                throw new Error('Capability chain is invalid; the last entry does not ' +
+                    'match the parent capability.');
+            }
+            if (typeof entry !== 'string') {
+                // check zcap data model
+                checkCapability({ capability: entry, expectRoot: i === 0 });
+            }
+            // ensure no cycles in the capability chain
+            if (firstPass) {
+                // on the first pass, the zcap must not have been seen yet
+                if (id === tailCapability.id || dereferencedChainMap.has(id)) {
+                    throw new Error('The capability chain contains a cycle.');
+                }
+                // add zcap to the map whether it is only a reference (an ID) or
+                // a fully embedded zcap; this will be used to ensure no additional
+                // zcaps are added to the chain
+                dereferencedChainMap.set(id, entry);
+            }
+            else {
+                // on non-first pass, every ID should already be in the zcap map
+                // and they should all be strings, not objects
+                const existing = dereferencedChainMap.get(id);
+                if (!existing) {
+                    // the chain is inconsistent across delegated zcaps
+                    throw new Error('The capability chain is inconsistent.');
+                }
+                if (id === tailCapability.id || typeof existing === 'object') {
+                    // the zcap has been deferenced before, there's a cycle
+                    throw new Error('The capability chain contains a cycle.');
+                }
+                // only update the zcaps map using a fully embedded zcap
+                if (typeof entry !== 'string') {
+                    dereferencedChainMap.set(id, entry);
+                }
+            }
+        }
+        // if the chain has more than the root zcap, loop to process the
+        // next chain from the last delegated zcap
+        if (currentCapabilityChain.length > 1) {
+            // next chain must be 1 shorter than the current one
+            requiredLength--;
+            const nextCapability = currentCapabilityChain[currentCapabilityChain.length - 1];
+            // the last entry of a chain longer than one is always an embedded zcap
+            if (typeof nextCapability !== 'object') {
+                throw new TypeError('The capability chain is invalid.');
+            }
+            currentCapability = nextCapability;
+            currentCapabilityChain = getCapabilityChain({
+                capability: currentCapability
+            });
+        }
+        else {
+            // no more chains to check
+            break;
+        }
+        firstPass = false;
+    }
+    // dereference root zcap via provided trusted `getRootCapability` function
+    if (capabilityChain.length > 0) {
+        const [id] = capabilityChain;
+        if (typeof id !== 'string') {
+            throw new TypeError('The capability chain is invalid.');
+        }
+        const { rootCapability } = await getRootCapability({ id });
+        checkCapability({ capability: rootCapability, expectRoot: true });
+        if (rootCapability.id !== id) {
+            throw new Error(`Dereferenced root capability ID "${rootCapability.id}" does not ` +
+                `match reference ID "${id}" from capability chain.`);
+        }
+        dereferencedChainMap.set(id, rootCapability);
+    }
+    // include `capability` in dereferenced map
+    dereferencedChainMap.set(tailCapability.id, tailCapability);
+    const dereferencedChain = [...dereferencedChainMap.values()];
+    return { dereferencedChain };
+}
+/**
+ * Asserts that a proof carries the required zcap JSON-LD context. The context
+ * may appear anywhere in the proof's `@context` array (it is protected
+ * regardless of position).
+ *
+ * @param options - The options.
+ * @param options.proof - The proof to check; its `@context` must be, or
+ *   include, the zcap context URL.
+ *
+ * @throws {Error} If the zcap context is missing from the proof.
+ */
+export function checkProofContext({ proof }) {
+    // zcap context can appear anywhere in the array as it *is* protected
+    const { '@context': ctx } = proof;
+    if (!((Array.isArray(ctx) && ctx.includes(ZCAP_CONTEXT_URL)) ||
+        ctx === ZCAP_CONTEXT_URL)) {
+        throw new Error(`Missing required capability proof context ("${ZCAP_CONTEXT_URL}").`);
+    }
+}
+/**
+ * Determines whether a child capability's `allowedAction` is valid, i.e., no
+ * less restrictive than its parent's. If the parent does not restrict actions
+ * (its `allowedAction` is absent), any child action is allowed.
+ *
+ * @param options - The options.
+ * @param options.allowedAction - The child capability's allowed action(s).
+ * @param options.parentAllowedAction - The parent capability's allowed
+ *   action(s).
+ *
+ * @returns `true` if the child's allowed action(s) are valid.
+ */
+export function hasValidAllowedAction({ allowedAction, parentAllowedAction }) {
+    // if the parent's `allowedAction` is `undefined`, then any more restrictive
+    // action is allowed in the child
+    if (!parentAllowedAction) {
+        return true;
+    }
+    if (Array.isArray(parentAllowedAction)) {
+        // parent's `allowedAction` must include every one from child's
+        if (Array.isArray(allowedAction)) {
+            return allowedAction.every(a => parentAllowedAction.includes(a));
+        }
+        return (allowedAction !== undefined && parentAllowedAction.includes(allowedAction));
+    }
+    // require exact match
+    return parentAllowedAction === allowedAction;
+}
+/**
+ * Validates the data model of a capability (root or delegated), throwing if it
+ * is malformed or if its root/delegated kind does not match `expectRoot`.
+ *
+ * Checks include: required `@context`, absolute-URI `id` and
+ * `invocationTarget`, `allowedAction` shape, and (for delegated zcaps) a valid
+ * `parentCapability`, a `capabilityDelegation` proof with a valid `created`
+ * date, and a valid `expires` date. Root zcaps must not carry `expires`.
+ *
+ * @param options - The options.
+ * @param options.capability - The capability to check.
+ * @param options.expectRoot - `true` if the capability is expected to be a root
+ *   zcap, `false` if it is expected to be delegated.
+ *
+ * @throws {Error} If the capability is invalid or of an unexpected kind.
+ */
+export function checkCapability({ capability, expectRoot }) {
+    const context = capability['@context'];
+    const { id, invocationTarget } = capability;
+    const parentCapability = 'parentCapability' in capability ? capability.parentCapability : undefined;
+    // read `allowedAction`/`expires` from the actual capability regardless of
+    // kind: a root zcap must be rejected if it carries `expires`, and its
+    // `allowedAction` shape must still be validated.
+    const { allowedAction, expires } = capability;
+    const isRoot = parentCapability === undefined;
+    if (isRoot) {
+        if (context !== ZCAP_CONTEXT_URL) {
+            throw new Error('Root capability must have an "@context" value of ' +
+                `"${ZCAP_CONTEXT_URL}".`);
+        }
+        if (expires !== undefined) {
+            throw new Error('Root capability must not have an "expires" field.');
+        }
+    }
+    else {
+        if (!(Array.isArray(context) && context[0] === ZCAP_CONTEXT_URL)) {
+            throw new Error('Delegated capability must have an "@context" array ' +
+                `with "${ZCAP_CONTEXT_URL}" in its first position.`);
+        }
+        if (!(typeof parentCapability === 'string' && parentCapability.includes(':'))) {
+            throw new Error('Delegated capability must have a "parentCapability" with a string ' +
+                'value that expresses an absolute URI.');
+        }
+        const [proof] = getDelegationProofs({ capability });
+        if (!proof) {
+            throw new Error('Delegated capability must have a "proof".');
+        }
+        if (isNaN(Date.parse(proof.created))) {
+            throw new Error('Delegated capability must have a valid proof "created" date.');
+        }
+        if (expires === undefined || isNaN(Date.parse(expires))) {
+            throw new Error('Delegated capability must have a valid expires date.');
+        }
+    }
+    if (!(typeof id === 'string' && id.includes(':'))) {
+        throw new Error('Capability must have an "id" with a string value that expresses an ' +
+            'absolute URI.');
+    }
+    if (!(typeof invocationTarget === 'string' && invocationTarget.includes(':'))) {
+        throw new Error('Capability must have an "invocationTarget" with a string value that ' +
+            'expresses an absolute URI.');
+    }
+    if (allowedAction !== undefined &&
+        !(typeof allowedAction === 'string' ||
+            (Array.isArray(allowedAction) && allowedAction.length > 0))) {
+        throw new Error('If present on a capability, "allowedAction" must be a string or a ' +
+            'non-empty array.');
+    }
+    if (isRoot !== expectRoot) {
+        if (expectRoot) {
+            throw new Error(`Expected capability "${capability.id}" to be root ` +
+                'but it is delegated.');
+        }
+        throw new Error(`Expected capability "${capability.id}" to be delegated but it is root.`);
+    }
+}
+/**
+ * Compares two timestamps, allowing for a maximum clock skew. Times within
+ * `maxClockSkew` of each other are treated as equal.
+ *
+ * @param options - The options.
+ * @param options.t1 - The first time, in milliseconds since the epoch.
+ * @param options.t2 - The second time, in milliseconds since the epoch.
+ * @param options.maxClockSkew - The maximum allowed clock skew, in seconds.
+ *
+ * @returns `0` if equal within the skew, `-1` if `t1 < t2`, otherwise `1`.
+ */
+export function compareTime({ t1, t2, maxClockSkew }) {
+    // `maxClockSkew` is in seconds, so transform to milliseconds
+    if (Math.abs(t1 - t2) < maxClockSkew * 1000) {
+        // times are equal within the max clock skew
+        return 0;
+    }
+    return t1 < t2 ? -1 : 1;
+}
+/**
+ * Creates an `Error` carrying a structured `details` object.
+ *
+ * @param message - The error message.
+ * @param details - The structured details to attach.
+ *
+ * @returns The error with `details` set.
+ */
+export function createDetailedError(message, details) {
+    const error = new Error(message);
+    error.details = details;
+    return error;
+}
+//# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,EACL,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EACjB,MAAM,gBAAgB,CAAA;AAavB;;;;;;;;;GASG;AACH,MAAM,UAAU,oBAAoB,CAAC,EACnC,UAAU,EACV,gBAAgB,EAIjB;IACC,OAAO;QACL,UAAU,EAAE,gBAAgB;QAC5B,EAAE,EAAE,GAAG,gBAAgB,GAAG,kBAAkB,CAAC,gBAAgB,CAAC,EAAE;QAChE,UAAU;QACV,gBAAgB;KACjB,CAAA;AACH,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,cAAc,CAAC,EAC7B,UAAU,EAGX;IACC,MAAM,EAAE,UAAU,EAAE,GAAG,UAAU,CAAA;IACjC,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAA;IACrD,CAAC;IACD,OAAO,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAA;AAC9D,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,YAAY,CAAC,EAC3B,UAAU,EACV,kBAAkB,EAInB;IACC,MAAM,WAAW,GAAG,cAAc,CAAC,EAAE,UAAU,EAAE,CAAC,CAAA;IAClD,OAAO,CACL,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,UAAoB,CAAC;QAC7D,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC,CAC5C,CAAA;AACH,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,iBAAiB,CAAC,EAChC,UAAU,EAGX;IACC,IAAI,CAAC,CAAC,eAAe,IAAI,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;QAClE,OAAO,EAAE,CAAA;IACX,CAAC;IACD,OAAO,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC,IAAI,EAAE,CAAA;AAC1C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,SAAS,CAAC,EAAE,UAAU,EAAyB;IAC7D,yDAAyD;IACzD,OAAO,UAAU,CAAC,gBAAgB,CAAA;AACpC,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,mBAAmB,CAAC,EAClC,UAAU,EAGX;IACC,2EAA2E;IAC3E,oBAAoB;IACpB,IAAI,CAAC,CAAC,kBAAkB,IAAI,UAAU,CAAC,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;QAC7D,OAAO,EAAE,CAAA;IACX,CAAC;IACD,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAA;IAC9B,MAAM,MAAM,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAA;IACrD,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,KAAK,sBAAsB,CAAC,CAAA;AAC3E,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,kBAAkB,CAAC,EACjC,UAAU,EAGX;IACC,IAAI,CAAC,CAAC,kBAAkB,IAAI,UAAU,CAAC,EAAE,CAAC;QACxC,+BAA+B;QAC/B,OAAO,EAAE,CAAA;IACX,CAAC;IAED,MAAM,MAAM,GAAG,mBAAmB,CAAC,EAAE,UAAU,EAAE,CAAC,CAAA;IAClD,MAAM,CAAC,KAAK,CAAC,GAAG,MAAM,CAAA;IACtB,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CACb,oEAAoE;YAClE,oEAAoE,CACvE,CAAA;IACH,CAAC;IAED,MAAM,EAAE,eAAe,EAAE,GAAG,KAAK,CAAA;IACjC,IAAI,CAAC,CAAC,eAAe,IAAI,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,EAAE,CAAC;QACzD,MAAM,IAAI,KAAK,CACb,uEAAuE;YACrE,oDAAoD,CACvD,CAAA;IACH,CAAC;IAED,OAAO,eAAe,CAAC,KAAK,EAAE,CAAA;AAChC,CAAC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,UAAU,aAAa,CAAC,EAC5B,gBAAgB,EAChB,oBAAoB,EACpB,sBAAsB,EAKvB;IACC,sBAAsB;IACtB,IAAI,oBAAoB,KAAK,gBAAgB,EAAE,CAAC;QAC9C,OAAO,IAAI,CAAA;IACb,CAAC;IACD,IAAI,sBAAsB,EAAE,CAAC;QAC3B;;;;;;;kCAO0B;QAC1B,MAAM,QAAQ,GAAG,EAAE,CAAA;QACnB,IAAI,oBAAoB,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACvC,sEAAsE;YACtE,yBAAyB;YACzB,QAAQ,CAAC,IAAI,CAAC,GAAG,oBAAoB,GAAG,CAAC,CAAA;QAC3C,CAAC;aAAM,CAAC;YACN,+DAA+D;YAC/D,QAAQ,CAAC,IAAI,CAAC,GAAG,oBAAoB,GAAG,CAAC,CAAA;YACzC,QAAQ,CAAC,IAAI,CAAC,GAAG,oBAAoB,GAAG,CAAC,CAAA;QAC3C,CAAC;QACD,IAAI,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,gBAAgB,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;YACjE,OAAO,IAAI,CAAA;QACb,CAAC;IACH,CAAC;IACD,cAAc;IACd,OAAO,KAAK,CAAA;AACd,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,sBAAsB,CAAC,EACrC,gBAAgB,EAChB,8BAA8B,EAI/B;IACC,gEAAgE;IAChE,IAAI,OAAO,gBAAgB,KAAK,QAAQ,EAAE,CAAC;QACzC,OAAO,CAAC,gBAAgB,CAAC,CAAA;IAC3B,CAAC;IACD,IAAI,CAAC,CAAC,kBAAkB,IAAI,gBAAgB,CAAC,EAAE,CAAC;QAC9C,iCAAiC;QACjC,eAAe,CAAC,EAAE,UAAU,EAAE,gBAAgB,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAA;QACnE,OAAO,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAA;IAC9B,CAAC;IAED,kEAAkE;IAClE,eAAe,CAAC,EAAE,UAAU,EAAE,gBAAgB,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,CAAA;IACpE,MAAM,MAAM,GAAG,mBAAmB,CAAC,EAAE,UAAU,EAAE,gBAAgB,EAAE,CAAC,CAAA;IACpE,MAAM,CAAC,KAAK,CAAC,GAAG,MAAM,CAAA;IACtB,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CACb,uEAAuE;YACrE,sEAAsE;YACtE,QAAQ,CACX,CAAA;IACH,CAAC;IAED,MAAM,EAAE,eAAe,EAAE,GAAG,KAAK,CAAA;IACjC,IAAI,CAAC,CAAC,eAAe,IAAI,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,EAAE,CAAC;QACzD,MAAM,IAAI,KAAK,CACb,oEAAoE;YAClE,kEAAkE,CACrE,CAAA;IACH,CAAC;IAED,mEAAmE;IACnE,IAAI,CAAC,8BAA8B,EAAE,CAAC;QACpC,wEAAwE;QACxE,MAAM,gBAAgB,GAAG,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAA;QACzE,MAAM,SAAS,GAAG,eAAe,CAAC,MAAM,GAAG,CAAC,CAAA;QAC5C,KAAK,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,eAAe,CAAC,OAAO,EAAE,EAAE,CAAC;YACnD,MAAM,SAAS,GAAG,OAAO,KAAK,CAAA;YAC9B,IACE,CAAC,CACC,CAAC,CAAC,KAAK,SAAS,IAAI,SAAS,KAAK,gBAAgB,CAAC;gBACnD,CAAC,CAAC,KAAK,SAAS,IAAI,SAAS,KAAK,QAAQ,CAAC,CAC5C,EACD,CAAC;gBACD,MAAM,IAAI,SAAS,CACjB,8DAA8D;oBAC5D,+DAA+D;oBAC/D,gEAAgE;oBAChE,sDAAsD,CACzD,CAAA;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,qDAAqD;IACrD,MAAM,QAAQ,GAAmC,eAAe,CAAC,KAAK,CACpE,CAAC,EACD,eAAe,CAAC,MAAM,GAAG,CAAC,CAC3B,CAAA;IACD,MAAM,IAAI,GAAG,eAAe,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC,CAAA;IACxD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IACrB,CAAC;SAAM,IAAI,IAAI,EAAE,CAAC;QAChB,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IACxB,CAAC;IACD,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAA;IAE/B,sCAAsC;IACtC,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;QAC7B,IACE,CAAC,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;YACnD,CAAC,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,EACtD,CAAC;YACD,MAAM,IAAI,KAAK,CACb,8DAA8D;gBAC5D,+DAA+D,CAClE,CAAA;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAA;AACjB,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AACH,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAAC,EAC/C,UAAU,EACV,iBAAiB,EACjB,cAAc,GAAG,gBAAgB,EAKlC;IACC,uEAAuE;IACvE,wEAAwE;IACxE,gCAAgC;IAChC,IAAI,cAAqB,CAAA;IACzB,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;QACnC,MAAM,EAAE,GAAG,UAAU,CAAA;QACrB,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,iBAAiB,CAAC,EAAE,EAAE,EAAE,CAAC,CAAA;QAC1D,eAAe,CAAC,EAAE,UAAU,EAAE,cAAc,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAA;QACjE,IAAI,cAAc,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CACb,oCAAoC,cAAc,CAAC,EAAE,aAAa;gBAChE,uBAAuB,EAAE,IAAI,CAChC,CAAA;QACH,CAAC;QACD,cAAc,GAAG,cAAc,CAAA;IACjC,CAAC;SAAM,CAAC;QACN,oCAAoC;QACpC,eAAe,CAAC,EAAE,UAAU,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,CAAA;QAClD,cAAc,GAAG,UAAU,CAAA;IAC7B,CAAC;IAED,+DAA+D;IAC/D,MAAM,oBAAoB,GAAG,IAAI,GAAG,EAA0B,CAAA;IAE9D,wDAAwD;IACxD,MAAM,eAAe,GAAG,kBAAkB,CAAC,EAAE,UAAU,EAAE,cAAc,EAAE,CAAC,CAAA;IAE1E,yEAAyE;IACzE,sEAAsE;IACtE,wEAAwE;IACxE,wEAAwE;IACxE,8BAA8B;IAC9B,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,GAAG,cAAc,EAAE,CAAC;QAChD,MAAM,IAAI,KAAK,CACb,0DAA0D;YACxD,MAAM,cAAc,GAAG,CAC1B,CAAA;IACH,CAAC;IAED,iEAAiE;IACjE,yDAAyD;IACzD,IAAI,SAAS,GAAG,IAAI,CAAA;IACpB,IAAI,cAAc,GAAG,eAAe,CAAC,MAAM,CAAA;IAC3C,IAAI,iBAAiB,GAAU,cAAc,CAAA;IAC7C,IAAI,sBAAsB,GAAG,eAAe,CAAA;IAC5C,OAAO,sBAAsB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,IAAI,sBAAsB,CAAC,MAAM,KAAK,cAAc,EAAE,CAAC;YACrD,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;QAChE,CAAC;QAED,2DAA2D;QAC3D,mEAAmE;QACnE,0BAA0B;QAC1B,MAAM,gBAAgB,GACpB,sBAAsB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAA;QAEzD,mDAAmD;QACnD,MAAM,SAAS,GAAG,sBAAsB,CAAC,MAAM,GAAG,CAAC,CAAA;QACnD,KAAK,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,IAAI,sBAAsB,CAAC,OAAO,EAAE,EAAE,CAAC;YAC1D,MAAM,SAAS,GAAG,OAAO,KAAK,CAAA;YAC9B,MAAM,aAAa,GAAG,SAAS,KAAK,QAAQ,CAAA;YAC5C,MAAM,YAAY,GAAG,CAAC,KAAK,SAAS,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,QAAQ,CAAA;YAElE,sEAAsE;YACtE,cAAc;YACd,IACE,CAAC,CACC,SAAS,KAAK,YAAY;gBAC1B,CAAC,aAAa;oBACZ,CAAC,OAAO,KAAK,KAAK,QAAQ,IAAI,OAAO,KAAK,CAAC,EAAE,KAAK,QAAQ,CAAC,CAAC,CAC/D,EACD,CAAC;gBACD,MAAM,IAAI,SAAS,CACjB,0DAA0D;oBACxD,wDAAwD;oBACxD,6DAA6D;oBAC7D,4BAA4B,CAC/B,CAAA;YACH,CAAC;YAED,oEAAoE;YACpE,MAAM,EAAE,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,EAAE,CAAA;YACvD,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBACtB,MAAM,IAAI,KAAK,CACb,2DAA2D;oBACzD,8BAA8B,CACjC,CAAA;YACH,CAAC;YAED,uDAAuD;YACvD,IACE,CAAC,KAAK,SAAS;gBACf,kBAAkB,IAAI,iBAAiB;gBACvC,iBAAiB,CAAC,gBAAgB,KAAK,EAAE,EACzC,CAAC;gBACD,MAAM,IAAI,KAAK,CACb,uDAAuD;oBACrD,8BAA8B,CACjC,CAAA;YACH,CAAC;YAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC9B,wBAAwB;gBACxB,eAAe,CAAC,EAAE,UAAU,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,CAAA;YAC7D,CAAC;YAED,2CAA2C;YAC3C,IAAI,SAAS,EAAE,CAAC;gBACd,0DAA0D;gBAC1D,IAAI,EAAE,KAAK,cAAc,CAAC,EAAE,IAAI,oBAAoB,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;oBAC7D,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;gBAC3D,CAAC;gBACD,gEAAgE;gBAChE,mEAAmE;gBACnE,+BAA+B;gBAC/B,oBAAoB,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,CAAC,CAAA;YACrC,CAAC;iBAAM,CAAC;gBACN,gEAAgE;gBAChE,8CAA8C;gBAC9C,MAAM,QAAQ,GAAG,oBAAoB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAA;gBAC7C,IAAI,CAAC,QAAQ,EAAE,CAAC;oBACd,mDAAmD;oBACnD,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAA;gBAC1D,CAAC;gBACD,IAAI,EAAE,KAAK,cAAc,CAAC,EAAE,IAAI,OAAO,QAAQ,KAAK,QAAQ,EAAE,CAAC;oBAC7D,uDAAuD;oBACvD,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAA;gBAC3D,CAAC;gBAED,wDAAwD;gBACxD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;oBAC9B,oBAAoB,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,CAAC,CAAA;gBACrC,CAAC;YACH,CAAC;QACH,CAAC;QAED,gEAAgE;QAChE,0CAA0C;QAC1C,IAAI,sBAAsB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtC,oDAAoD;YACpD,cAAc,EAAE,CAAA;YAChB,MAAM,cAAc,GAClB,sBAAsB,CAAC,sBAAsB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAA;YAC3D,uEAAuE;YACvE,IAAI,OAAO,cAAc,KAAK,QAAQ,EAAE,CAAC;gBACvC,MAAM,IAAI,SAAS,CAAC,kCAAkC,CAAC,CAAA;YACzD,CAAC;YACD,iBAAiB,GAAG,cAAc,CAAA;YAClC,sBAAsB,GAAG,kBAAkB,CAAC;gBAC1C,UAAU,EAAE,iBAAiB;aAC9B,CAAC,CAAA;QACJ,CAAC;aAAM,CAAC;YACN,0BAA0B;YAC1B,MAAK;QACP,CAAC;QAED,SAAS,GAAG,KAAK,CAAA;IACnB,CAAC;IAED,0EAA0E;IAC1E,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,MAAM,CAAC,EAAE,CAAC,GAAG,eAAe,CAAA;QAC5B,IAAI,OAAO,EAAE,KAAK,QAAQ,EAAE,CAAC;YAC3B,MAAM,IAAI,SAAS,CAAC,kCAAkC,CAAC,CAAA;QACzD,CAAC;QACD,MAAM,EAAE,cAAc,EAAE,GAAG,MAAM,iBAAiB,CAAC,EAAE,EAAE,EAAE,CAAC,CAAA;QAC1D,eAAe,CAAC,EAAE,UAAU,EAAE,cAAc,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC,CAAA;QACjE,IAAI,cAAc,CAAC,EAAE,KAAK,EAAE,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CACb,oCAAoC,cAAc,CAAC,EAAE,aAAa;gBAChE,uBAAuB,EAAE,0BAA0B,CACtD,CAAA;QACH,CAAC;QACD,oBAAoB,CAAC,GAAG,CAAC,EAAE,EAAE,cAAc,CAAC,CAAA;IAC9C,CAAC;IAED,2CAA2C;IAC3C,oBAAoB,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,EAAE,cAAc,CAAC,CAAA;IAC3D,MAAM,iBAAiB,GAAG,CAAC,GAAG,oBAAoB,CAAC,MAAM,EAAE,CAAY,CAAA;IAEvE,OAAO,EAAE,iBAAiB,EAAE,CAAA;AAC9B,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,iBAAiB,CAAC,EAChC,KAAK,EAGN;IACC,qEAAqE;IACrE,MAAM,EAAE,UAAU,EAAE,GAAG,EAAE,GAAG,KAAK,CAAA;IACjC,IACE,CAAC,CACC,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;QACtD,GAAG,KAAK,gBAAgB,CACzB,EACD,CAAC;QACD,MAAM,IAAI,KAAK,CACb,+CAA+C,gBAAgB,KAAK,CACrE,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,qBAAqB,CAAC,EACpC,aAAa,EACb,mBAAmB,EAIpB;IACC,4EAA4E;IAC5E,iCAAiC;IACjC,IAAI,CAAC,mBAAmB,EAAE,CAAC;QACzB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IAAI,KAAK,CAAC,OAAO,CAAC,mBAAmB,CAAC,EAAE,CAAC;QACvC,+DAA+D;QAC/D,IAAI,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;YACjC,OAAO,aAAa,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAA;QAClE,CAAC;QACD,OAAO,CACL,aAAa,KAAK,SAAS,IAAI,mBAAmB,CAAC,QAAQ,CAAC,aAAa,CAAC,CAC3E,CAAA;IACH,CAAC;IAED,sBAAsB;IACtB,OAAO,mBAAmB,KAAK,aAAa,CAAA;AAC9C,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,UAAU,eAAe,CAAC,EAC9B,UAAU,EACV,UAAU,EAIX;IACC,MAAM,OAAO,GAAG,UAAU,CAAC,UAAU,CAAC,CAAA;IACtC,MAAM,EAAE,EAAE,EAAE,gBAAgB,EAAE,GAAG,UAAU,CAAA;IAC3C,MAAM,gBAAgB,GACpB,kBAAkB,IAAI,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAA;IAC5E,0EAA0E;IAC1E,sEAAsE;IACtE,iDAAiD;IACjD,MAAM,EAAE,aAAa,EAAE,OAAO,EAAE,GAAG,UAAqC,CAAA;IAExE,MAAM,MAAM,GAAG,gBAAgB,KAAK,SAAS,CAAA;IAC7C,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,OAAO,KAAK,gBAAgB,EAAE,CAAC;YACjC,MAAM,IAAI,KAAK,CACb,mDAAmD;gBACjD,IAAI,gBAAgB,IAAI,CAC3B,CAAA;QACH,CAAC;QACD,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;YAC1B,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAA;QACtE,CAAC;IACH,CAAC;SAAM,CAAC;QACN,IAAI,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,KAAK,gBAAgB,CAAC,EAAE,CAAC;YACjE,MAAM,IAAI,KAAK,CACb,qDAAqD;gBACnD,SAAS,gBAAgB,0BAA0B,CACtD,CAAA;QACH,CAAC;QACD,IACE,CAAC,CAAC,OAAO,gBAAgB,KAAK,QAAQ,IAAI,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,EACzE,CAAC;YACD,MAAM,IAAI,KAAK,CACb,oEAAoE;gBAClE,uCAAuC,CAC1C,CAAA;QACH,CAAC;QACD,MAAM,CAAC,KAAK,CAAC,GAAG,mBAAmB,CAAC,EAAE,UAAU,EAAE,CAAC,CAAA;QACnD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAA;QAC9D,CAAC;QACD,IAAI,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CACb,8DAA8D,CAC/D,CAAA;QACH,CAAC;QACD,IAAI,OAAO,KAAK,SAAS,IAAI,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,EAAE,CAAC;YACxD,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAA;QACzE,CAAC;IACH,CAAC;IAED,IAAI,CAAC,CAAC,OAAO,EAAE,KAAK,QAAQ,IAAI,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;QAClD,MAAM,IAAI,KAAK,CACb,qEAAqE;YACnE,eAAe,CAClB,CAAA;IACH,CAAC;IACD,IACE,CAAC,CAAC,OAAO,gBAAgB,KAAK,QAAQ,IAAI,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,EACzE,CAAC;QACD,MAAM,IAAI,KAAK,CACb,sEAAsE;YACpE,4BAA4B,CAC/B,CAAA;IACH,CAAC;IACD,IACE,aAAa,KAAK,SAAS;QAC3B,CAAC,CACC,OAAO,aAAa,KAAK,QAAQ;YACjC,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,CAAC,CAC3D,EACD,CAAC;QACD,MAAM,IAAI,KAAK,CACb,oEAAoE;YAClE,kBAAkB,CACrB,CAAA;IACH,CAAC;IAED,IAAI,MAAM,KAAK,UAAU,EAAE,CAAC;QAC1B,IAAI,UAAU,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CACb,wBAAwB,UAAU,CAAC,EAAE,eAAe;gBAClD,sBAAsB,CACzB,CAAA;QACH,CAAC;QACD,MAAM,IAAI,KAAK,CACb,wBAAwB,UAAU,CAAC,EAAE,mCAAmC,CACzE,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,WAAW,CAAC,EAC1B,EAAE,EACF,EAAE,EACF,YAAY,EAKb;IACC,6DAA6D;IAC7D,IAAI,IAAI,CAAC,GAAG,CAAC,EAAE,GAAG,EAAE,CAAC,GAAG,YAAY,GAAG,IAAI,EAAE,CAAC;QAC5C,4CAA4C;QAC5C,OAAO,CAAC,CAAA;IACV,CAAC;IACD,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,mBAAmB,CACjC,OAAe,EACf,OAAe;IAEf,MAAM,KAAK,GAAc,IAAI,KAAK,CAAC,OAAO,CAAC,CAAA;IAC3C,KAAK,CAAC,OAAO,GAAG,OAAO,CAAA;IACvB,OAAO,KAAK,CAAA;AACd,CAAC"}