npm - @naylence/advanced-security - Versions diffs - 0.4.4 → 0.4.6 - Mend

@naylence/advanced-security 0.4.4 → 0.4.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (85) hide show

package/dist/esm/naylence/fame/security/auth/policy/auth-policy-server.js ADDED Viewed

@@ -0,0 +1,553 @@
+/**
+ * Auth Policy Server - Authorization Policy HTTP endpoint
+ *
+ * Provides authorization policies via HTTP using Fastify.
+ * Supports OAuth2 JWT authentication and ETag-based caching.
+ * Serves multiple policies by ID from a configurable directory.
+ * This is a development server for testing HTTP policy source functionality.
+ *
+ * Policy files should be named: policy-{policy_id}.yaml or policy-{policy_id}.json
+ * Example: policy-production.yaml, policy-dev.json
+ *
+ * Authentication:
+ * - Set FAME_OAUTH2_ISSUER to enable OAuth2 JWT validation
+ * - Optionally set FAME_OAUTH2_AUDIENCE, FAME_OAUTH2_JWKS_URL
+ * - If no OAuth2 config provided, authentication is disabled (dev mode)
+ */
+import { createHash } from "node:crypto";
+import Fastify from "fastify";
+import { realpathSync, readFileSync, existsSync, statSync, readdirSync, watch, } from "node:fs";
+import { resolve, extname, join } from "node:path";
+import { parse as parseYaml, stringify as stringifyYaml } from "yaml";
+// Simple console logger for policy server
+const logger = {
+    info: (event, meta) => {
+        console.log(`[INFO] ${event}`, meta || "");
+    },
+    warning: (event, meta) => {
+        console.warn(`[WARNING] ${event}`, meta || "");
+    },
+    error: (event, meta) => {
+        console.error(`[ERROR] ${event}`, meta || "");
+    },
+    debug: (event, meta) => {
+        const logLevel = (process.env.FAME_LOG_LEVEL || "info").toLowerCase();
+        if (logLevel === "debug" || logLevel === "trace") {
+            console.log(`[DEBUG] ${event}`, meta || "");
+        }
+    },
+};
+// Environment variables
+const ENV_VAR_FAME_APP_HOST = "FAME_APP_HOST";
+const ENV_VAR_FAME_APP_PORT = "FAME_APP_PORT";
+const ENV_VAR_FAME_POLICY_DIR = "FAME_POLICY_DIR";
+// OAuth2 configuration
+const ENV_VAR_OAUTH2_ISSUER = "FAME_OAUTH2_ISSUER";
+const ENV_VAR_OAUTH2_AUDIENCE = "FAME_OAUTH2_AUDIENCE";
+const ENV_VAR_OAUTH2_JWKS_URL = "FAME_OAUTH2_JWKS_URL";
+const ENV_VAR_OAUTH2_REQUIRED_SCOPES = "FAME_OAUTH2_REQUIRED_SCOPES";
+// Policy file naming pattern: policy-{id}.yaml or policy-{id}.json
+const POLICY_FILE_PATTERN = /^policy-(.+)\.(ya?ml|json)$/i;
+/**
+ * Default authorization policy for development.
+ * Allows all operations - suitable for testing only.
+ */
+const DEFAULT_POLICY = {
+    version: "1",
+    type: "AdvancedAuthorizationPolicy",
+    default_effect: "deny",
+    rules: [
+        {
+            id: "allow-all-dev",
+            effect: "allow",
+            comment: "Development policy - allows all operations",
+        },
+    ],
+};
+/**
+ * Compute ETag from content using SHA-256.
+ */
+function computeEtag(content) {
+    const hash = createHash("sha256");
+    hash.update(content, "utf-8");
+    return `"${hash.digest("hex").substring(0, 16)}"`;
+}
+/**
+ * Extract policy ID from filename.
+ * Expected format: policy-{id}.yaml or policy-{id}.json
+ */
+function extractPolicyId(filename) {
+    const match = POLICY_FILE_PATTERN.exec(filename);
+    if (!match) {
+        return null;
+    }
+    const id = match[1];
+    const ext = match[2]?.toLowerCase();
+    const format = ext === "json" ? "json" : "yaml";
+    return { id, format };
+}
+/**
+ * Load a single policy from file.
+ */
+function loadPolicyFile(filePath) {
+    try {
+        const content = readFileSync(filePath, "utf-8");
+        const ext = extname(filePath).toLowerCase();
+        let policy;
+        if (ext === ".json") {
+            policy = JSON.parse(content);
+        }
+        else {
+            policy = parseYaml(content);
+        }
+        const stats = statSync(filePath);
+        const format = ext === ".json" ? "json" : "yaml";
+        return {
+            policy,
+            policyContent: content,
+            etag: computeEtag(content),
+            lastModified: stats.mtime,
+            filePath,
+            format,
+        };
+    }
+    catch (error) {
+        logger.error("policy_file_load_error", {
+            path: filePath,
+            error: error instanceof Error ? error.message : String(error),
+        });
+        return null;
+    }
+}
+/**
+ * Load all policies from a directory.
+ */
+function loadPoliciesFromDir(dirPath) {
+    const policies = new Map();
+    if (!existsSync(dirPath)) {
+        logger.warning("policy_directory_not_found", { path: dirPath });
+        return policies;
+    }
+    const files = readdirSync(dirPath);
+    for (const filename of files) {
+        const parsed = extractPolicyId(filename);
+        if (!parsed) {
+            continue;
+        }
+        const filePath = join(dirPath, filename);
+        const entry = loadPolicyFile(filePath);
+        if (entry) {
+            policies.set(parsed.id, {
+                id: parsed.id,
+                ...entry,
+            });
+            logger.info("policy_loaded", { id: parsed.id, path: filePath });
+        }
+    }
+    return policies;
+}
+/**
+ * Create default policy entry.
+ */
+function createDefaultPolicyEntry() {
+    const content = JSON.stringify(DEFAULT_POLICY, null, 2);
+    return {
+        id: "default",
+        policy: DEFAULT_POLICY,
+        policyContent: content,
+        etag: computeEtag(content),
+        lastModified: new Date(),
+        filePath: "(built-in)",
+        format: "json",
+    };
+}
+/**
+ * Create an OAuth2 token verifier from environment configuration.
+ */
+async function createTokenVerifier() {
+    const issuer = process.env[ENV_VAR_OAUTH2_ISSUER];
+    if (!issuer) {
+        return null;
+    }
+    try {
+        // Dynamically import the token verifier factory from @naylence/runtime
+        const { TokenVerifierFactory } = await import("@naylence/runtime");
+        const jwksUrl = process.env[ENV_VAR_OAUTH2_JWKS_URL] ||
+            `${issuer.replace(/\/+$/, "")}/.well-known/jwks.json`;
+        const config = {
+            type: "JWKSJWTTokenVerifier",
+            issuer,
+            jwks_url: jwksUrl,
+            algorithms: ["RS256"],
+        };
+        const audience = process.env[ENV_VAR_OAUTH2_AUDIENCE];
+        if (audience) {
+            config.audience = audience;
+        }
+        const verifier = await TokenVerifierFactory.createTokenVerifier(config);
+        logger.info("oauth2_token_verifier_created", { issuer, jwksUrl });
+        return verifier;
+    }
+    catch (error) {
+        logger.error("failed_to_create_token_verifier", {
+            error: error instanceof Error ? error.message : String(error),
+        });
+        return null;
+    }
+}
+/**
+ * Authenticate request using OAuth2 JWT verification.
+ */
+async function authenticateRequest(request, tokenVerifier) {
+    if (!tokenVerifier) {
+        // No auth required (dev mode)
+        return { authenticated: true };
+    }
+    const authHeader = request.headers.authorization;
+    if (!authHeader) {
+        return { authenticated: false, error: "Missing Authorization header" };
+    }
+    const parts = authHeader.split(" ");
+    if (parts.length !== 2 || parts[0]?.toLowerCase() !== "bearer") {
+        return { authenticated: false, error: "Invalid Authorization header format" };
+    }
+    const token = parts[1];
+    if (!token) {
+        return { authenticated: false, error: "Missing bearer token" };
+    }
+    try {
+        const claims = await tokenVerifier.verify(token);
+        // Check required scopes if configured
+        const requiredScopesEnv = process.env[ENV_VAR_OAUTH2_REQUIRED_SCOPES];
+        if (requiredScopesEnv) {
+            const requiredScopes = requiredScopesEnv.split(",").map((s) => s.trim());
+            const tokenScopes = typeof claims.scope === "string"
+                ? claims.scope.split(" ")
+                : Array.isArray(claims.scp)
+                    ? claims.scp
+                    : [];
+            const hasAllScopes = requiredScopes.every((required) => tokenScopes.includes(required));
+            if (!hasAllScopes) {
+                return {
+                    authenticated: false,
+                    error: `Missing required scopes: ${requiredScopes.join(", ")}`,
+                };
+            }
+        }
+        logger.debug("jwt_token_verified", { sub: claims.sub });
+        return { authenticated: true, claims };
+    }
+    catch (error) {
+        logger.warning("jwt_verification_failed", {
+            error: error instanceof Error ? error.message : String(error),
+        });
+        return {
+            authenticated: false,
+            error: error instanceof Error ? error.message : "Token verification failed",
+        };
+    }
+}
+/**
+ * Create policy router with authorization policy endpoints.
+ * Supports fetching policies by ID from: /fame/v1/auth-policies/:policyId
+ */
+function createPolicyRouter(fastify, state, tokenVerifier, prefix = "/fame/v1") {
+    const policiesPath = `${prefix}/auth-policies`;
+    // List all available policies
+    fastify.get(policiesPath, async (request, reply) => {
+        const authResult = await authenticateRequest(request, tokenVerifier);
+        if (!authResult.authenticated) {
+            logger.warning("authentication_failed", { error: authResult.error });
+            return reply.status(401).send({
+                error: "unauthorized",
+                message: authResult.error,
+            });
+        }
+        const policyList = Array.from(state.policies.values()).map((entry) => ({
+            id: entry.id,
+            lastModified: entry.lastModified.toISOString(),
+            format: entry.format,
+        }));
+        return reply
+            .header("Content-Type", "application/json")
+            .send({ policies: policyList });
+    });
+    // Get policy by ID (auto-detect format based on Accept header or original format)
+    fastify.get(`${policiesPath}/:policyId`, async (request, reply) => {
+        const authResult = await authenticateRequest(request, tokenVerifier);
+        if (!authResult.authenticated) {
+            logger.warning("authentication_failed", { error: authResult.error });
+            return reply.status(401).send({
+                error: "unauthorized",
+                message: authResult.error,
+            });
+        }
+        const { policyId } = request.params;
+        const entry = state.policies.get(policyId);
+        if (!entry) {
+            logger.warning("policy_not_found", { policyId });
+            return reply.status(404).send({
+                error: "not_found",
+                message: `Policy '${policyId}' not found`,
+                availablePolicies: Array.from(state.policies.keys()),
+            });
+        }
+        // Check ETag for conditional request
+        const ifNoneMatch = request.headers["if-none-match"];
+        if (ifNoneMatch && ifNoneMatch === entry.etag) {
+            logger.debug("returning_304_not_modified", { policyId, etag: entry.etag });
+            return reply
+                .status(304)
+                .header("ETag", entry.etag)
+                .header("Cache-Control", "public, max-age=60, stale-while-revalidate=300")
+                .send();
+        }
+        logger.debug("serving_policy", {
+            policyId,
+            etag: entry.etag,
+            lastModified: entry.lastModified.toISOString(),
+        });
+        // Determine content type based on Accept header or original format
+        const acceptHeader = request.headers.accept || "";
+        const isYamlRequest = acceptHeader.includes("yaml") || acceptHeader.includes("text/plain");
+        let contentType;
+        let responseBody;
+        if (isYamlRequest || entry.format === "yaml") {
+            contentType = "application/yaml";
+            responseBody =
+                entry.format === "yaml"
+                    ? entry.policyContent
+                    : stringifyYaml(entry.policy);
+        }
+        else {
+            contentType = "application/json";
+            responseBody = JSON.stringify(entry.policy, null, 2);
+        }
+        return reply
+            .header("Content-Type", contentType)
+            .header("ETag", entry.etag)
+            .header("Last-Modified", entry.lastModified.toUTCString())
+            .header("Cache-Control", "public, max-age=60, stale-while-revalidate=300")
+            .send(responseBody);
+    });
+    // Get policy by ID as YAML
+    fastify.get(`${policiesPath}/:policyId.yaml`, async (request, reply) => {
+        const authResult = await authenticateRequest(request, tokenVerifier);
+        if (!authResult.authenticated) {
+            return reply.status(401).send({
+                error: "unauthorized",
+                message: authResult.error,
+            });
+        }
+        const { policyId } = request.params;
+        const entry = state.policies.get(policyId);
+        if (!entry) {
+            return reply.status(404).send({
+                error: "not_found",
+                message: `Policy '${policyId}' not found`,
+            });
+        }
+        const ifNoneMatch = request.headers["if-none-match"];
+        if (ifNoneMatch && ifNoneMatch === entry.etag) {
+            return reply
+                .status(304)
+                .header("ETag", entry.etag)
+                .header("Cache-Control", "public, max-age=60, stale-while-revalidate=300")
+                .send();
+        }
+        const yamlContent = entry.format === "yaml" ? entry.policyContent : stringifyYaml(entry.policy);
+        return reply
+            .header("Content-Type", "application/yaml")
+            .header("ETag", entry.etag)
+            .header("Last-Modified", entry.lastModified.toUTCString())
+            .header("Cache-Control", "public, max-age=60, stale-while-revalidate=300")
+            .send(yamlContent);
+    });
+    // Get policy by ID as JSON
+    fastify.get(`${policiesPath}/:policyId.json`, async (request, reply) => {
+        const authResult = await authenticateRequest(request, tokenVerifier);
+        if (!authResult.authenticated) {
+            return reply.status(401).send({
+                error: "unauthorized",
+                message: authResult.error,
+            });
+        }
+        const { policyId } = request.params;
+        const entry = state.policies.get(policyId);
+        if (!entry) {
+            return reply.status(404).send({
+                error: "not_found",
+                message: `Policy '${policyId}' not found`,
+            });
+        }
+        const ifNoneMatch = request.headers["if-none-match"];
+        if (ifNoneMatch && ifNoneMatch === entry.etag) {
+            return reply
+                .status(304)
+                .header("ETag", entry.etag)
+                .header("Cache-Control", "public, max-age=60, stale-while-revalidate=300")
+                .send();
+        }
+        return reply
+            .header("Content-Type", "application/json")
+            .header("ETag", entry.etag)
+            .header("Last-Modified", entry.lastModified.toUTCString())
+            .header("Cache-Control", "public, max-age=60, stale-while-revalidate=300")
+            .send(entry.policy);
+    });
+    // Health check
+    fastify.get("/health", async () => {
+        return {
+            status: "healthy",
+            service: "auth-policy-server",
+            policyDirectory: state.policyDir || "(using defaults)",
+            policyCount: state.policies.size,
+            policies: Array.from(state.policies.keys()),
+        };
+    });
+}
+/**
+ * Create Fastify application with policy server.
+ */
+async function createApp() {
+    const fastify = Fastify({
+        logger: false,
+    });
+    // Load policies from directory or use default
+    const policyDir = process.env[ENV_VAR_FAME_POLICY_DIR];
+    const state = {
+        policyDir,
+        policies: new Map(),
+    };
+    if (policyDir && existsSync(policyDir)) {
+        state.policies = loadPoliciesFromDir(policyDir);
+        // Watch directory for changes
+        watch(policyDir, (eventType, filename) => {
+            if (!filename)
+                return;
+            const parsed = extractPolicyId(filename);
+            if (!parsed)
+                return;
+            const filePath = join(policyDir, filename);
+            if (eventType === "rename") {
+                // File added or removed
+                if (existsSync(filePath)) {
+                    const entry = loadPolicyFile(filePath);
+                    if (entry) {
+                        state.policies.set(parsed.id, { id: parsed.id, ...entry });
+                        logger.info("policy_added", { id: parsed.id, path: filePath });
+                    }
+                }
+                else {
+                    state.policies.delete(parsed.id);
+                    logger.info("policy_removed", { id: parsed.id });
+                }
+            }
+            else if (eventType === "change") {
+                // File modified
+                const entry = loadPolicyFile(filePath);
+                if (entry) {
+                    state.policies.set(parsed.id, { id: parsed.id, ...entry });
+                    logger.info("policy_reloaded", { id: parsed.id, path: filePath });
+                }
+            }
+        });
+        logger.info("watching_policy_directory", { path: policyDir });
+    }
+    // Always add a default policy
+    if (state.policies.size === 0) {
+        state.policies.set("default", createDefaultPolicyEntry());
+        logger.info("using_default_policy", {
+            reason: policyDir ? "no_policies_found_in_directory" : "no_directory_specified",
+        });
+    }
+    // Create OAuth2 token verifier if configured
+    const tokenVerifier = await createTokenVerifier();
+    // Register policy router
+    createPolicyRouter(fastify, state, tokenVerifier);
+    if (tokenVerifier) {
+        logger.info("oauth2_jwt_auth_enabled", {
+            issuer: process.env[ENV_VAR_OAUTH2_ISSUER],
+        });
+    }
+    else {
+        logger.warning("auth_disabled", {
+            message: "Set FAME_OAUTH2_ISSUER to enable OAuth2 JWT authentication",
+        });
+    }
+    return { app: fastify, state };
+}
+async function main() {
+    try {
+        const { app, state } = await createApp();
+        const host = process.env[ENV_VAR_FAME_APP_HOST] || "0.0.0.0";
+        const port = parseInt(process.env[ENV_VAR_FAME_APP_PORT] || "8099", 10);
+        await app.listen({ host, port });
+        const issuer = process.env[ENV_VAR_OAUTH2_ISSUER];
+        logger.info("auth_policy_server_started", { host, port });
+        console.log(`\n📍 Auth Policy Server listening on http://${host}:${port}`);
+        console.log(`📋 List policies: http://${host}:${port}/fame/v1/auth-policies`);
+        console.log(`📋 Get policy: http://${host}:${port}/fame/v1/auth-policies/{policy_id}`);
+        console.log(`📋 Get as YAML: http://${host}:${port}/fame/v1/auth-policies/{policy_id}.yaml`);
+        console.log(`📋 Get as JSON: http://${host}:${port}/fame/v1/auth-policies/{policy_id}.json`);
+        console.log(`🔍 Health check: http://${host}:${port}/health`);
+        if (state.policyDir) {
+            console.log(`📁 Serving policies from: ${state.policyDir}`);
+            console.log(`📁 Policy files should be named: policy-{id}.yaml or policy-{id}.json`);
+        }
+        else {
+            console.log(`⚠️  No policy directory set (set FAME_POLICY_DIR to serve custom policies)`);
+        }
+        console.log(`📊 Loaded ${state.policies.size} policy(ies): ${Array.from(state.policies.keys()).join(", ")}`);
+        if (issuer) {
+            console.log(`🔐 OAuth2 JWT authentication enabled (issuer: ${issuer})`);
+        }
+        else {
+            console.log(`⚠️  No authentication (set FAME_OAUTH2_ISSUER to enable)`);
+        }
+        console.log("");
+    }
+    catch (error) {
+        logger.error("auth_policy_server_startup_failed", {
+            error: error instanceof Error ? error.message : String(error),
+        });
+        process.exit(1);
+    }
+}
+export { createApp, main, loadPoliciesFromDir, loadPolicyFile, extractPolicyId, computeEtag, DEFAULT_POLICY, };
+const isTopLevelInvocation = (() => {
+    if (typeof process === "undefined") {
+        return false;
+    }
+    const entry = process.argv[1] ?? null;
+    if (!entry) {
+        return false;
+    }
+    try {
+        const entryPath = resolveToRealPath(entry);
+        if (!entryPath) {
+            return false;
+        }
+        return /(?:^|[\\/])auth-policy-server\.js$/u.test(entryPath);
+    }
+    catch {
+        return false;
+    }
+})();
+if (isTopLevelInvocation) {
+    void main();
+}
+function resolveToRealPath(pathLike) {
+    try {
+        return realpathSync(pathLike);
+    }
+    catch {
+        try {
+            return realpathSync.native?.(pathLike) ?? resolve(pathLike);
+        }
+        catch {
+            return resolve(pathLike);
+        }
+    }
+}
+//# sourceMappingURL=auth-policy-server.js.map

package/dist/esm/naylence/fame/security/auth/policy/auth-policy-server.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth-policy-server.js","sourceRoot":"","sources":["../../../../../../../src/naylence/fame/security/auth/policy/auth-policy-server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,UAAU,EACV,QAAQ,EACR,WAAW,EACX,KAAK,GACN,MAAM,SAAS,CAAC;AACjB,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAEnD,OAAO,EAAE,KAAK,IAAI,SAAS,EAAE,SAAS,IAAI,aAAa,EAAE,MAAM,MAAM,CAAC;AAEtE,0CAA0C;AAC1C,MAAM,MAAM,GAAG;IACb,IAAI,EAAE,CAAC,KAAa,EAAE,IAA8B,EAAE,EAAE;QACtD,OAAO,CAAC,GAAG,CAAC,UAAU,KAAK,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IAC7C,CAAC;IACD,OAAO,EAAE,CAAC,KAAa,EAAE,IAA8B,EAAE,EAAE;QACzD,OAAO,CAAC,IAAI,CAAC,aAAa,KAAK,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IACjD,CAAC;IACD,KAAK,EAAE,CAAC,KAAa,EAAE,IAA8B,EAAE,EAAE;QACvD,OAAO,CAAC,KAAK,CAAC,WAAW,KAAK,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;IAChD,CAAC;IACD,KAAK,EAAE,CAAC,KAAa,EAAE,IAA8B,EAAE,EAAE;QACvD,MAAM,QAAQ,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC;QACtE,IAAI,QAAQ,KAAK,OAAO,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,CAAC;QAC9C,CAAC;IACH,CAAC;CACF,CAAC;AAEF,wBAAwB;AACxB,MAAM,qBAAqB,GAAG,eAAe,CAAC;AAC9C,MAAM,qBAAqB,GAAG,eAAe,CAAC;AAC9C,MAAM,uBAAuB,GAAG,iBAAiB,CAAC;AAClD,uBAAuB;AACvB,MAAM,qBAAqB,GAAG,oBAAoB,CAAC;AACnD,MAAM,uBAAuB,GAAG,sBAAsB,CAAC;AACvD,MAAM,uBAAuB,GAAG,sBAAsB,CAAC;AACvD,MAAM,8BAA8B,GAAG,6BAA6B,CAAC;AAErE,mEAAmE;AACnE,MAAM,mBAAmB,GAAG,8BAA8B,CAAC;AAE3D;;;GAGG;AACH,MAAM,cAAc,GAAG;IACrB,OAAO,EAAE,GAAG;IACZ,IAAI,EAAE,6BAA6B;IACnC,cAAc,EAAE,MAAM;IACtB,KAAK,EAAE;QACL;YACE,EAAE,EAAE,eAAe;YACnB,MAAM,EAAE,OAAO;YACf,OAAO,EAAE,4CAA4C;SACtD;KACF;CACF,CAAC;AAiBF;;GAEG;AACH,SAAS,WAAW,CAAC,OAAe;IAClC,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC;IAClC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC9B,OAAO,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC;AACpD,CAAC;AAED;;;GAGG;AACH,SAAS,eAAe,CAAC,QAAgB;IACvC,MAAM,KAAK,GAAG,mBAAmB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACjD,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,IAAI,CAAC;IACd,CAAC;IACD,MAAM,EAAE,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;IACrB,MAAM,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;IACpC,MAAM,MAAM,GAAG,GAAG,KAAK,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC;IAChD,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,QAAgB;IACtC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;QAE5C,IAAI,MAA+B,CAAC;QACpC,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;YACpB,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAA4B,CAAC;QAC1D,CAAC;aAAM,CAAC;YACN,MAAM,GAAG,SAAS,CAAC,OAAO,CAA4B,CAAC;QACzD,CAAC;QAED,MAAM,KAAK,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;QACjC,MAAM,MAAM,GAAG,GAAG,KAAK,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC;QAEjD,OAAO;YACL,MAAM;YACN,aAAa,EAAE,OAAO;YACtB,IAAI,EAAE,WAAW,CAAC,OAAO,CAAC;YAC1B,YAAY,EAAE,KAAK,CAAC,KAAK;YACzB,QAAQ;YACR,MAAM;SACP,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE;YACrC,IAAI,EAAE,QAAQ;YACd,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SAC9D,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,OAAe;IAC1C,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAuB,CAAC;IAEhD,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACzB,MAAM,CAAC,OAAO,CAAC,4BAA4B,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;QAChE,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,MAAM,KAAK,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;IAEnC,KAAK,MAAM,QAAQ,IAAI,KAAK,EAAE,CAAC;QAC7B,MAAM,MAAM,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;QACzC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,SAAS;QACX,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QACzC,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;QACvC,IAAI,KAAK,EAAE,CAAC;YACV,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE;gBACtB,EAAE,EAAE,MAAM,CAAC,EAAE;gBACb,GAAG,KAAK;aACT,CAAC,CAAC;YACH,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC;QAClE,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,wBAAwB;IAC/B,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,cAAc,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IACxD,OAAO;QACL,EAAE,EAAE,SAAS;QACb,MAAM,EAAE,cAAc;QACtB,aAAa,EAAE,OAAO;QACtB,IAAI,EAAE,WAAW,CAAC,OAAO,CAAC;QAC1B,YAAY,EAAE,IAAI,IAAI,EAAE;QACxB,QAAQ,EAAE,YAAY;QACtB,MAAM,EAAE,MAAM;KACf,CAAC;AACJ,CAAC;AAOD;;GAEG;AACH,KAAK,UAAU,mBAAmB;IAChC,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;IAClD,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC;QACH,uEAAuE;QACvE,MAAM,EAAE,oBAAoB,EAAE,GAAG,MAAM,MAAM,CAAC,mBAAmB,CAAC,CAAC;QAEnE,MAAM,OAAO,GACX,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC;YACpC,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,wBAAwB,CAAC;QAExD,MAAM,MAAM,GAAG;YACb,IAAI,EAAE,sBAA+B;YACrC,MAAM;YACN,QAAQ,EAAE,OAAO;YACjB,UAAU,EAAE,CAAC,OAAO,CAAC;SACtB,CAAC;QAEF,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;QACtD,IAAI,QAAQ,EAAE,CAAC;YACZ,MAAkC,CAAC,QAAQ,GAAG,QAAQ,CAAC;QAC1D,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,oBAAoB,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC;QACxE,MAAM,CAAC,IAAI,CAAC,+BAA+B,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;QAClE,OAAO,QAAQ,CAAC;IAClB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,iCAAiC,EAAE;YAC9C,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SAC9D,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAChC,OAAuB,EACvB,aAAmC;IAEnC,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,8BAA8B;QAC9B,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC;IACjC,CAAC;IAED,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;IACjD,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,EAAE,aAAa,EAAE,KAAK,EAAE,KAAK,EAAE,8BAA8B,EAAE,CAAC;IACzE,CAAC;IAED,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACpC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,KAAK,QAAQ,EAAE,CAAC;QAC/D,OAAO,EAAE,aAAa,EAAE,KAAK,EAAE,KAAK,EAAE,qCAAqC,EAAE,CAAC;IAChF,CAAC;IAED,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;IACvB,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,EAAE,aAAa,EAAE,KAAK,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC;IACjE,CAAC;IAED,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAEjD,sCAAsC;QACtC,MAAM,iBAAiB,GAAG,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;QACtE,IAAI,iBAAiB,EAAE,CAAC;YACtB,MAAM,cAAc,GAAG,iBAAiB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;YACzE,MAAM,WAAW,GACf,OAAO,MAAM,CAAC,KAAK,KAAK,QAAQ;gBAC9B,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC;gBACzB,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC;oBACzB,CAAC,CAAC,MAAM,CAAC,GAAG;oBACZ,CAAC,CAAC,EAAE,CAAC;YAEX,MAAM,YAAY,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC,QAAQ,EAAE,EAAE,CACrD,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAC/B,CAAC;YAEF,IAAI,CAAC,YAAY,EAAE,CAAC;gBAClB,OAAO;oBACL,aAAa,EAAE,KAAK;oBACpB,KAAK,EAAE,4BAA4B,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;iBAC/D,CAAC;YACJ,CAAC;QACH,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,oBAAoB,EAAE,EAAE,GAAG,EAAE,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC;QACxD,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;IACzC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,OAAO,CAAC,yBAAyB,EAAE;YACxC,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SAC9D,CAAC,CAAC;QACH,OAAO;YACL,aAAa,EAAE,KAAK;YACpB,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,2BAA2B;SAC5E,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAS,kBAAkB,CACzB,OAAwB,EACxB,KAAwB,EACxB,aAAmC,EACnC,SAAiB,UAAU;IAE3B,MAAM,YAAY,GAAG,GAAG,MAAM,gBAAgB,CAAC;IAE/C,8BAA8B;IAC9B,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACjD,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QACrE,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC9B,MAAM,CAAC,OAAO,CAAC,uBAAuB,EAAE,EAAE,KAAK,EAAE,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC;YACrE,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,cAAc;gBACrB,OAAO,EAAE,UAAU,CAAC,KAAK;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,UAAU,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACrE,EAAE,EAAE,KAAK,CAAC,EAAE;YACZ,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE;YAC9C,MAAM,EAAE,KAAK,CAAC,MAAM;SACrB,CAAC,CAAC,CAAC;QAEJ,OAAO,KAAK;aACT,MAAM,CAAC,cAAc,EAAE,kBAAkB,CAAC;aAC1C,IAAI,CAAC,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;IACpC,CAAC,CAAC,CAAC;IAEH,kFAAkF;IAClF,OAAO,CAAC,GAAG,CACT,GAAG,YAAY,YAAY,EAC3B,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACvB,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QACrE,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC9B,MAAM,CAAC,OAAO,CAAC,uBAAuB,EAAE,EAAE,KAAK,EAAE,UAAU,CAAC,KAAK,EAAE,CAAC,CAAC;YACrE,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,cAAc;gBACrB,OAAO,EAAE,UAAU,CAAC,KAAK;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;QACpC,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAE3C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,CAAC,OAAO,CAAC,kBAAkB,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YACjD,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,WAAW;gBAClB,OAAO,EAAE,WAAW,QAAQ,aAAa;gBACzC,iBAAiB,EAAE,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;aACrD,CAAC,CAAC;QACL,CAAC;QAED,qCAAqC;QACrC,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;QACrD,IAAI,WAAW,IAAI,WAAW,KAAK,KAAK,CAAC,IAAI,EAAE,CAAC;YAC9C,MAAM,CAAC,KAAK,CAAC,4BAA4B,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;YAC3E,OAAO,KAAK;iBACT,MAAM,CAAC,GAAG,CAAC;iBACX,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC;iBAC1B,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;iBACzE,IAAI,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE;YAC7B,QAAQ;YACR,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,YAAY,EAAE,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE;SAC/C,CAAC,CAAC;QAEH,mEAAmE;QACnE,MAAM,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC;QAClD,MAAM,aAAa,GACjB,YAAY,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,YAAY,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;QAEvE,IAAI,WAAmB,CAAC;QACxB,IAAI,YAAoB,CAAC;QAEzB,IAAI,aAAa,IAAI,KAAK,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAC7C,WAAW,GAAG,kBAAkB,CAAC;YACjC,YAAY;gBACV,KAAK,CAAC,MAAM,KAAK,MAAM;oBACrB,CAAC,CAAC,KAAK,CAAC,aAAa;oBACrB,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACpC,CAAC;aAAM,CAAC;YACN,WAAW,GAAG,kBAAkB,CAAC;YACjC,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QACvD,CAAC;QAED,OAAO,KAAK;aACT,MAAM,CAAC,cAAc,EAAE,WAAW,CAAC;aACnC,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC;aAC1B,MAAM,CAAC,eAAe,EAAE,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;aACzD,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;aACzE,IAAI,CAAC,YAAY,CAAC,CAAC;IACxB,CAAC,CACF,CAAC;IAEF,2BAA2B;IAC3B,OAAO,CAAC,GAAG,CACT,GAAG,YAAY,iBAAiB,EAChC,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACvB,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QACrE,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,cAAc;gBACrB,OAAO,EAAE,UAAU,CAAC,KAAK;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;QACpC,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAE3C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,WAAW;gBAClB,OAAO,EAAE,WAAW,QAAQ,aAAa;aAC1C,CAAC,CAAC;QACL,CAAC;QAED,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;QACrD,IAAI,WAAW,IAAI,WAAW,KAAK,KAAK,CAAC,IAAI,EAAE,CAAC;YAC9C,OAAO,KAAK;iBACT,MAAM,CAAC,GAAG,CAAC;iBACX,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC;iBAC1B,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;iBACzE,IAAI,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,WAAW,GACf,KAAK,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAE9E,OAAO,KAAK;aACT,MAAM,CAAC,cAAc,EAAE,kBAAkB,CAAC;aAC1C,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC;aAC1B,MAAM,CAAC,eAAe,EAAE,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;aACzD,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;aACzE,IAAI,CAAC,WAAW,CAAC,CAAC;IACvB,CAAC,CACF,CAAC;IAEF,2BAA2B;IAC3B,OAAO,CAAC,GAAG,CACT,GAAG,YAAY,iBAAiB,EAChC,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACvB,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC;QACrE,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,cAAc;gBACrB,OAAO,EAAE,UAAU,CAAC,KAAK;aAC1B,CAAC,CAAC;QACL,CAAC;QAED,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;QACpC,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAE3C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC5B,KAAK,EAAE,WAAW;gBAClB,OAAO,EAAE,WAAW,QAAQ,aAAa;aAC1C,CAAC,CAAC;QACL,CAAC;QAED,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;QACrD,IAAI,WAAW,IAAI,WAAW,KAAK,KAAK,CAAC,IAAI,EAAE,CAAC;YAC9C,OAAO,KAAK;iBACT,MAAM,CAAC,GAAG,CAAC;iBACX,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC;iBAC1B,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;iBACzE,IAAI,EAAE,CAAC;QACZ,CAAC;QAED,OAAO,KAAK;aACT,MAAM,CAAC,cAAc,EAAE,kBAAkB,CAAC;aAC1C,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,CAAC;aAC1B,MAAM,CAAC,eAAe,EAAE,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;aACzD,MAAM,CAAC,eAAe,EAAE,gDAAgD,CAAC;aACzE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACxB,CAAC,CACF,CAAC;IAEF,eAAe;IACf,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,KAAK,IAAI,EAAE;QAChC,OAAO;YACL,MAAM,EAAE,SAAS;YACjB,OAAO,EAAE,oBAAoB;YAC7B,eAAe,EAAE,KAAK,CAAC,SAAS,IAAI,kBAAkB;YACtD,WAAW,EAAE,KAAK,CAAC,QAAQ,CAAC,IAAI;YAChC,QAAQ,EAAE,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;SAC5C,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,SAAS;IAItB,MAAM,OAAO,GAAG,OAAO,CAAC;QACtB,MAAM,EAAE,KAAK;KACd,CAAC,CAAC;IAEH,8CAA8C;IAC9C,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;IAEvD,MAAM,KAAK,GAAsB;QAC/B,SAAS;QACT,QAAQ,EAAE,IAAI,GAAG,EAAE;KACpB,CAAC;IAEF,IAAI,SAAS,IAAI,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACvC,KAAK,CAAC,QAAQ,GAAG,mBAAmB,CAAC,SAAS,CAAC,CAAC;QAEhD,8BAA8B;QAC9B,KAAK,CAAC,SAAS,EAAE,CAAC,SAAS,EAAE,QAAQ,EAAE,EAAE;YACvC,IAAI,CAAC,QAAQ;gBAAE,OAAO;YAEtB,MAAM,MAAM,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;YACzC,IAAI,CAAC,MAAM;gBAAE,OAAO;YAEpB,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YAE3C,IAAI,SAAS,KAAK,QAAQ,EAAE,CAAC;gBAC3B,wBAAwB;gBACxB,IAAI,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;oBACzB,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;oBACvC,IAAI,KAAK,EAAE,CAAC;wBACV,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,GAAG,KAAK,EAAE,CAAC,CAAC;wBAC3D,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC;oBACjE,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;oBACjC,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,CAAC,CAAC;gBACnD,CAAC;YACH,CAAC;iBAAM,IAAI,SAAS,KAAK,QAAQ,EAAE,CAAC;gBAClC,gBAAgB;gBAChB,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;gBACvC,IAAI,KAAK,EAAE,CAAC;oBACV,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,GAAG,KAAK,EAAE,CAAC,CAAC;oBAC3D,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,EAAE,EAAE,EAAE,MAAM,CAAC,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC;gBACpE,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC;IAChE,CAAC;IAED,8BAA8B;IAC9B,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;QAC9B,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,EAAE,wBAAwB,EAAE,CAAC,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,sBAAsB,EAAE;YAClC,MAAM,EAAE,SAAS,CAAC,CAAC,CAAC,gCAAgC,CAAC,CAAC,CAAC,wBAAwB;SAChF,CAAC,CAAC;IACL,CAAC;IAED,6CAA6C;IAC7C,MAAM,aAAa,GAAG,MAAM,mBAAmB,EAAE,CAAC;IAElD,yBAAyB;IACzB,kBAAkB,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC;IAElD,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE;YACrC,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC;SAC3C,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,MAAM,CAAC,OAAO,CAAC,eAAe,EAAE;YAC9B,OAAO,EAAE,4DAA4D;SACtE,CAAC,CAAC;IACL,CAAC;IAED,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;AACjC,CAAC;AAED,KAAK,UAAU,IAAI;IACjB,IAAI,CAAC;QACH,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,MAAM,SAAS,EAAE,CAAC;QAEzC,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,IAAI,SAAS,CAAC;QAC7D,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,IAAI,MAAM,EAAE,EAAE,CAAC,CAAC;QAExE,MAAM,GAAG,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;QAEjC,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;QAElD,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1D,OAAO,CAAC,GAAG,CAAC,+CAA+C,IAAI,IAAI,IAAI,EAAE,CAAC,CAAC;QAC3E,OAAO,CAAC,GAAG,CAAC,4BAA4B,IAAI,IAAI,IAAI,wBAAwB,CAAC,CAAC;QAC9E,OAAO,CAAC,GAAG,CAAC,yBAAyB,IAAI,IAAI,IAAI,oCAAoC,CAAC,CAAC;QACvF,OAAO,CAAC,GAAG,CAAC,0BAA0B,IAAI,IAAI,IAAI,yCAAyC,CAAC,CAAC;QAC7F,OAAO,CAAC,GAAG,CAAC,0BAA0B,IAAI,IAAI,IAAI,yCAAyC,CAAC,CAAC;QAC7F,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,IAAI,IAAI,SAAS,CAAC,CAAC;QAC9D,IAAI,KAAK,CAAC,SAAS,EAAE,CAAC;YACpB,OAAO,CAAC,GAAG,CAAC,6BAA6B,KAAK,CAAC,SAAS,EAAE,CAAC,CAAC;YAC5D,OAAO,CAAC,GAAG,CAAC,uEAAuE,CAAC,CAAC;QACvF,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CACT,4EAA4E,CAC7E,CAAC;QACJ,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,aAAa,KAAK,CAAC,QAAQ,CAAC,IAAI,iBAAiB,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC7G,IAAI,MAAM,EAAE,CAAC;YACX,OAAO,CAAC,GAAG,CAAC,iDAAiD,MAAM,GAAG,CAAC,CAAC;QAC1E,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,0DAA0D,CAAC,CAAC;QAC1E,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,mCAAmC,EAAE;YAChD,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SAC9D,CAAC,CAAC;QACH,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAED,OAAO,EACL,SAAS,EACT,IAAI,EACJ,mBAAmB,EACnB,cAAc,EACd,eAAe,EACf,WAAW,EACX,cAAc,GAGf,CAAC;AAEF,MAAM,oBAAoB,GAAG,CAAC,GAAG,EAAE;IACjC,IAAI,OAAO,OAAO,KAAK,WAAW,EAAE,CAAC;QACnC,OAAO,KAAK,CAAC;IACf,CAAC;IACD,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;IACtC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,KAAK,CAAC;IACf,CAAC;IACD,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,iBAAiB,CAAC,KAAK,CAAC,CAAC;QAC3C,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,qCAAqC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC/D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC,CAAC,EAAE,CAAC;AAEL,IAAI,oBAAoB,EAAE,CAAC;IACzB,KAAK,IAAI,EAAE,CAAC;AACd,CAAC;AAED,SAAS,iBAAiB,CAAC,QAAgB;IACzC,IAAI,CAAC;QACH,OAAO,YAAY,CAAC,QAAQ,CAAC,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,IAAI,CAAC;YACH,OAAO,YAAY,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC9D,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC3B,CAAC;IACH,CAAC;AACH,CAAC"}