From 38b0f6c453dfc4248bb8e6514946212701fb5e2d Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:01:41 -0500
Subject: [PATCH 01/27] pin to Java 21
---
build.gradle | 10 ++++++----
gradle.properties | 2 ++
2 files changed, 8 insertions(+), 4 deletions(-)
create mode 100644 gradle.properties
diff --git a/build.gradle b/build.gradle
index 80d3344..d764c15 100644
--- a/build.gradle
+++ b/build.gradle
@@ -8,9 +8,11 @@ repositories {
mavenCentral()
}
-compileJava {
- targetCompatibility "21"
- sourceCompatibility "21"
+// Build/compile against Java 21 regardless of system default Java
+java {
+ toolchain {
+ languageVersion = JavaLanguageVersion.of(21)
+ }
}
dependencies {
@@ -30,7 +32,7 @@ dependencies {
testImplementation libs.org.junit.jupiter
}
-compileJava {
+tasks.withType(JavaCompile).configureEach {
options.compilerArgs << "-Xlint:deprecation"
}
diff --git a/gradle.properties b/gradle.properties
new file mode 100644
index 0000000..a88eab0
--- /dev/null
+++ b/gradle.properties
@@ -0,0 +1,2 @@
+# Force Gradle to run using JDK 21 (required; JDK 25 trips Groovy/Gradle script compilation)
+org.gradle.java.home=/opt/homebrew/opt/openjdk@21/libexec/openjdk.jdk/Contents/Home
From 3383ea64712e2a3cf4a9bcc8d9ebdd054257bdd7 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:06:54 -0500
Subject: [PATCH 02/27] Make builds cross-platform: remove org.gradle.java.home
pin, enable toolchain, bump wrapper to Gradle 9.2.1
---
gradle.properties | 8 ++++++--
gradle/wrapper/gradle-wrapper.properties | 2 +-
2 files changed, 7 insertions(+), 3 deletions(-)
diff --git a/gradle.properties b/gradle.properties
index a88eab0..b6dbb2f 100644
--- a/gradle.properties
+++ b/gradle.properties
@@ -1,2 +1,6 @@
-# Force Gradle to run using JDK 21 (required; JDK 25 trips Groovy/Gradle script compilation)
-org.gradle.java.home=/opt/homebrew/opt/openjdk@21/libexec/openjdk.jdk/Contents/Home
+# Keep builds cross-platform.
+# This project uses Gradle toolchains (see build.gradle) to compile with Java 21.
+# Do NOT hard-pin org.gradle.java.home to a machine-specific path.
+
+# If a matching JDK isn't installed locally, allow Gradle to auto-provision one.
+org.gradle.java.installations.auto-download=true
diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties
index a441313..23449a2 100644
--- a/gradle/wrapper/gradle-wrapper.properties
+++ b/gradle/wrapper/gradle-wrapper.properties
@@ -1,6 +1,6 @@
distributionBase=GRADLE_USER_HOME
distributionPath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-8.8-bin.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-9.2.1-bin.zip
networkTimeout=10000
validateDistributionUrl=true
zipStoreBase=GRADLE_USER_HOME
From 422d92d577d863ab258157198affdf8ae579b09e Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:22:37 -0500
Subject: [PATCH 03/27] Improve SAML editor: prettify XML on load + add
syntax-highlighted XML editor
---
build.gradle | 1 +
gradle/libs.versions.toml | 2 +
.../java/application/SamlTabController.java | 61 +++++---
src/main/java/gui/SamlMain.java | 14 +-
src/main/java/gui/SamlXmlEditor.java | 142 ++++++++++++++++++
5 files changed, 190 insertions(+), 30 deletions(-)
create mode 100644 src/main/java/gui/SamlXmlEditor.java
diff --git a/build.gradle b/build.gradle
index d764c15..f73e253 100644
--- a/build.gradle
+++ b/build.gradle
@@ -25,6 +25,7 @@ dependencies {
implementation libs.com.sun.xml.security.xml.security.impl
implementation libs.org.apache.santuario.xmlsec
implementation libs.xerces.xercesimpl
+ implementation libs.rsyntaxtextarea
testImplementation libs.com.formdev.flatlaf
testImplementation libs.net.portswigger.burp.extensions.montoya.api
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
index 881deb4..f7a43ce 100644
--- a/gradle/libs.versions.toml
+++ b/gradle/libs.versions.toml
@@ -8,6 +8,7 @@ org-apache-santuario-xmlsec = "2.1.7"
org-bouncycastle-bcpkix-jdk15on = "1.52"
org-junit-jupiter = "5.10.2"
xerces-xercesimpl = "2.12.2"
+rsyntaxtextarea = "3.5.4"
[libraries]
com-formdev-flatlaf = { module = "com.formdev:flatlaf", version.ref = "com-formdev-flatlaf"}
@@ -19,3 +20,4 @@ org-apache-santuario-xmlsec = { module = "org.apache.santuario:xmlsec", version.
org-bouncycastle-bcpkix-jdk15on = { module = "org.bouncycastle:bcpkix-jdk15on", version.ref = "org-bouncycastle-bcpkix-jdk15on" }
org-junit-jupiter = { module = "org.junit.jupiter:junit-jupiter", version.ref = "org-junit-jupiter" }
xerces-xercesimpl = { module = "xerces:xercesImpl", version.ref = "xerces-xercesimpl" }
+rsyntaxtextarea = { module = "com.fifesoft:rsyntaxtextarea", version.ref = "rsyntaxtextarea" }
diff --git a/src/main/java/application/SamlTabController.java b/src/main/java/application/SamlTabController.java
index cec7758..0f001d1 100644
--- a/src/main/java/application/SamlTabController.java
+++ b/src/main/java/application/SamlTabController.java
@@ -13,6 +13,7 @@
import gui.CVEHelpWindow;
import gui.SamlMain;
import gui.SamlPanelInfo;
+import gui.SamlXmlEditor;
import gui.SignatureHelpWindow;
import gui.XSWHelpWindow;
import helpers.CVE_2022_41912;
@@ -73,7 +74,7 @@ public class SamlTabController implements ExtensionProvidedHttpRequestEditor, Ob
private SamlMessageAnalysisResult samlMessageAnalysisResult;
private String orgSAMLMessage;
private String samlMessage;
- private RawEditor textArea;
+ private SamlXmlEditor textArea;
private RawEditor textEditorInformation;
private SamlMain samlGUI;
private boolean editable;
@@ -84,7 +85,7 @@ public SamlTabController(boolean editable, CertificateTabController certificateT
this.certificateTabController = requireNonNull(certificateTabController, "certificateTabController");
this.editable = editable;
samlGUI = new SamlMain(this);
- textArea = samlGUI.getTextEditorAction();
+ textArea = samlGUI.getXmlEditorAction();
textArea.setEditable(editable);
textEditorInformation = samlGUI.getTextEditorInformation();
textEditorInformation.setEditable(false);
@@ -126,7 +127,7 @@ public HttpRequest getRequest() {
setInfoMessageText(XML_NOT_WELL_FORMED);
}
} else {
- String textMessage = textArea.getContents().toString();
+ String textMessage = textArea.getText();
String parameterToUpdate;
if (this.samlMessageAnalysisResult.isWSSMessage()) {
@@ -163,7 +164,8 @@ public HttpRequest getRequest() {
@Override
public Selection selectedData() {
- return textArea.selection().orElse(null);
+ // Our custom XML editor isn't a Montoya Editor, so we don't currently expose selection.
+ return null;
}
@Override
@@ -199,8 +201,9 @@ public void setRequestResponse(HttpRequestResponse requestResponse) {
resetInfoMessageText();
isEdited = false;
if (requestResponse == null) {
- textArea.setContents(null);
+ textArea.setText("");
textArea.setEditable(false);
+ textArea.resetModified();
setGUIEditable(false);
resetInformationDisplay();
} else {
@@ -258,13 +261,24 @@ public void setRequestResponse(HttpRequestResponse requestResponse) {
updateCertificateList();
updateXSWList();
orgSAMLMessage = samlMessage;
- textArea.setContents(ByteArray.byteArray(samlMessage));
+
+ // Show prettified XML (editable) for sanity when working with big SAML blobs.
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
textArea.setEditable(editable);
setGUIEditable(editable);
}
}
+ private String prettifyXmlOrFallback(String xml) {
+ try {
+ Document doc = xmlHelpers.getXMLDocumentOfSAMLMessage(xml);
+ return xmlHelpers.getStringOfDocument(doc, 2);
+ } catch (Exception ignored) {
+ return xml;
+ }
+ }
+
private void setInformationDisplay() {
samlGUI.getTextEditorInformation().setContents(ByteArray.byteArray(""));
SamlPanelInfo infoPanel = samlGUI.getInfoPanel();
@@ -311,10 +325,10 @@ private void resetInformationDisplay() {
public void removeSignature() {
resetInfoMessageText();
try {
- Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getContents().toString());
+ Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getText());
if (xmlHelpers.removeAllSignatures(document) > 0) {
samlMessage = xmlHelpers.getStringOfDocument(document);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("Message signature successful removed");
} else {
@@ -329,7 +343,8 @@ public void removeSignature() {
public void resetMessage() {
samlMessage = orgSAMLMessage;
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
+ textArea.resetModified();
samlGUI.getStatusPanel().setText("");
isEdited = false;
}
@@ -340,7 +355,7 @@ public void resignAssertion() {
BurpCertificate cert = samlGUI.getActionPanel().getSelectedCertificate();
if (cert != null) {
setInfoMessageText("Signing...");
- Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getContents().toString());
+ Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getText());
NodeList assertions = xmlHelpers.getAssertions(document);
String signAlgorithm = xmlHelpers.getSignatureAlgorithm(assertions.item(0));
String digestAlgorithm = xmlHelpers.getDigestAlgorithm(assertions.item(0));
@@ -351,7 +366,7 @@ public void resignAssertion() {
xmlHelpers.removeEmptyTags(doc);
xmlHelpers.signAssertion(doc, signAlgorithm, digestAlgorithm, cert.getCertificate(), cert.getPrivateKey());
samlMessage = xmlHelpers.getStringOfDocument(doc);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("Assertions successfully signed");
} else {
@@ -378,7 +393,7 @@ public void resignMessage() {
setInfoMessageText("Signing...");
BurpCertificate cert = samlGUI.getActionPanel().getSelectedCertificate();
if (cert != null) {
- Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getContents().toString());
+ Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getText());
NodeList responses = xmlHelpers.getResponse(document);
String signAlgorithm = xmlHelpers.getSignatureAlgorithm(responses.item(0));
String digestAlgorithm = xmlHelpers.getDigestAlgorithm(responses.item(0));
@@ -386,7 +401,7 @@ public void resignMessage() {
xmlHelpers.removeOnlyMessageSignature(document);
xmlHelpers.signMessage(document, signAlgorithm, digestAlgorithm, cert.getCertificate(), cert.getPrivateKey());
samlMessage = xmlHelpers.getStringOfDocument(document);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("Message successfully signed");
} else {
@@ -440,7 +455,7 @@ private void updateXSWList() {
public void sendToCertificatesTab() {
try {
- Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getContents().toString());
+ Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(textArea.getText());
String cert = xmlHelpers.getCertificate(document.getDocumentElement());
if (cert != null) {
certificateTabController.importCertificateFromString(cert);
@@ -495,25 +510,25 @@ public void applyCVE() {
switch (cve) {
case CVE_2022_41912.CVE:
samlMessage = CVE_2022_41912.apply(orgSAMLMessage);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("%s applied".formatted(cve));
break;
case CVE_2025_23369.CVE:
samlMessage = CVE_2025_23369.apply(orgSAMLMessage);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("%s applied".formatted(cve));
break;
case CVE_2025_25291.CVE:
samlMessage = CVE_2025_25291.apply(orgSAMLMessage);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("%s applied".formatted(cve));
break;
case CVE_2025_25292.CVE:
samlMessage = CVE_2025_25292.apply(orgSAMLMessage);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText("%s applied".formatted(cve));
break;
@@ -530,7 +545,7 @@ public void applyXSW() {
document = xmlHelpers.getXMLDocumentOfSAMLMessage(orgSAMLMessage);
xswHelpers.applyXSW(samlGUI.getActionPanel().getSelectedXSW(), document);
samlMessage = xmlHelpers.getStringOfDocument(document);
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText(XSW_ATTACK_APPLIED);
} catch (SAXException e) {
@@ -551,7 +566,7 @@ public void applyXXE(String collabUrl) {
String xmlDeclaration = "\n";
samlMessage = xmlDeclaration + xxePayload + orgSAMLMessage;
}
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText(XXE_CONTENT_APPLIED);
}
@@ -592,7 +607,7 @@ public void applyXSLT(String collabUrl) {
String firstPart = orgSAMLMessage.substring(0, substringIndex);
String secondPart = orgSAMLMessage.substring(substringIndex);
samlMessage = firstPart + xslt + secondPart;
- textArea.setContents(ByteArray.byteArray(samlMessage));
+ textArea.setText(prettifyXmlOrFallback(samlMessage));
isEdited = true;
setInfoMessageText(XSLT_CONTENT_APPLIED);
}
@@ -638,11 +653,11 @@ public void update() {
}
public String getEditorContents() {
- return this.textArea.getContents().toString();
+ return this.textArea.getText();
}
public void setEditorContents(String text) {
this.isEdited = true;
- this.textArea.setContents(ByteArray.byteArray(text));
+ this.textArea.setText(prettifyXmlOrFallback(text));
}
}
diff --git a/src/main/java/gui/SamlMain.java b/src/main/java/gui/SamlMain.java
index 7016be1..aa52232 100644
--- a/src/main/java/gui/SamlMain.java
+++ b/src/main/java/gui/SamlMain.java
@@ -18,7 +18,7 @@ public class SamlMain extends JPanel {
private final SamlTabController controller;
- private RawEditor textEditorAction;
+ private SamlXmlEditor xmlEditorAction;
private RawEditor textEditorInformation;
private SamlPanelAction panelAction;
private SamlPanelInfo panelInformation;
@@ -37,14 +37,14 @@ private void initializeUI() {
splitPaneActionTop.setPreferredSize(new Dimension(0, 460));
splitPaneActionTop.add(panelAction);
- textEditorAction = BurpExtender.api.userInterface().createRawEditor();
- textEditorAction.setContents(ByteArray.byteArray(""));
- textEditorAction.setEditable(false);
+ xmlEditorAction = new SamlXmlEditor();
+ xmlEditorAction.setText("");
+ xmlEditorAction.setEditable(false);
JPanel splitPaneActionBottom = new JPanel();
splitPaneActionBottom.setLayout(new BorderLayout());
splitPaneActionBottom.setPreferredSize(new Dimension(0, 100));
- splitPaneActionBottom.add(textEditorAction.uiComponent(), BorderLayout.CENTER);
+ splitPaneActionBottom.add(xmlEditorAction, BorderLayout.CENTER);
JSplitPane splitPaneAction = new JSplitPane();
splitPaneAction.setOrientation(JSplitPane.VERTICAL_SPLIT);
@@ -91,8 +91,8 @@ private void initializeUI() {
updateUI();
}
- public RawEditor getTextEditorAction() {
- return textEditorAction;
+ public SamlXmlEditor getXmlEditorAction() {
+ return xmlEditorAction;
}
public RawEditor getTextEditorInformation() {
diff --git a/src/main/java/gui/SamlXmlEditor.java b/src/main/java/gui/SamlXmlEditor.java
new file mode 100644
index 0000000..f4daf48
--- /dev/null
+++ b/src/main/java/gui/SamlXmlEditor.java
@@ -0,0 +1,142 @@
+package gui;
+
+import burp.BurpExtender;
+import burp.api.montoya.ui.Theme;
+import java.awt.BorderLayout;
+import java.awt.Color;
+import java.awt.Font;
+import java.io.Serial;
+import java.util.Objects;
+import java.util.concurrent.atomic.AtomicBoolean;
+import javax.swing.JPanel;
+import javax.swing.SwingUtilities;
+import javax.swing.event.DocumentEvent;
+import javax.swing.event.DocumentListener;
+import org.fife.ui.rsyntaxtextarea.RSyntaxTextArea;
+import org.fife.ui.rsyntaxtextarea.SyntaxConstants;
+import org.fife.ui.rtextarea.RTextScrollPane;
+
+/**
+ * XML editor with syntax highlighting + Burp theme-aware colors.
+ */
+public class SamlXmlEditor extends JPanel {
+
+ @Serial
+ private static final long serialVersionUID = 1L;
+
+ private final RSyntaxTextArea textArea;
+ private final AtomicBoolean modified = new AtomicBoolean(false);
+ private volatile boolean suppressModifiedFlag = false;
+
+ public SamlXmlEditor() {
+ super(new BorderLayout());
+
+ textArea = new RSyntaxTextArea(20, 80);
+ textArea.setSyntaxEditingStyle(SyntaxConstants.SYNTAX_STYLE_XML);
+ textArea.setCodeFoldingEnabled(true);
+ textArea.setAntiAliasingEnabled(true);
+ textArea.setBracketMatchingEnabled(true);
+ textArea.setAutoIndentEnabled(true);
+ textArea.setMarkOccurrences(true);
+ textArea.setTabsEmulated(true);
+ textArea.setTabSize(2);
+
+ // Font: match Burp editor font if available
+ Font burpFont = BurpExtender.api.userInterface().currentEditorFont();
+ if (burpFont != null) {
+ textArea.setFont(burpFont);
+ }
+
+ applyBurpTheme();
+
+ textArea.getDocument().addDocumentListener(new DocumentListener() {
+ @Override
+ public void insertUpdate(DocumentEvent e) {
+ onChange();
+ }
+
+ @Override
+ public void removeUpdate(DocumentEvent e) {
+ onChange();
+ }
+
+ @Override
+ public void changedUpdate(DocumentEvent e) {
+ onChange();
+ }
+
+ private void onChange() {
+ if (!suppressModifiedFlag) {
+ modified.set(true);
+ }
+ }
+ });
+
+ var scroll = new RTextScrollPane(textArea);
+ scroll.setBorder(null);
+
+ add(scroll, BorderLayout.CENTER);
+
+ // Let Burp apply spacing/colors to swing container bits (scrollbars, etc.)
+ BurpExtender.api.userInterface().applyThemeToComponent(this);
+ }
+
+ public void applyBurpTheme() {
+ Theme theme = BurpExtender.api.userInterface().currentTheme();
+
+ // Conservative palette: readable, high contrast, but not blinding.
+ if (theme == Theme.DARK) {
+ textArea.setBackground(new Color(0x1E1F22));
+ textArea.setForeground(new Color(0xD6D6D6));
+ textArea.setCaretColor(new Color(0xEDEDED));
+ textArea.setSelectionColor(new Color(0x264F78));
+ textArea.setCurrentLineHighlightColor(new Color(0x2A2D2E));
+ textArea.setFadeCurrentLineHighlight(true);
+ textArea.setLineWrap(false);
+ textArea.setMarginLineEnabled(false);
+ } else {
+ textArea.setBackground(Color.WHITE);
+ textArea.setForeground(new Color(0x1F2328));
+ textArea.setCaretColor(Color.BLACK);
+ textArea.setSelectionColor(new Color(0xBBDDFF));
+ textArea.setCurrentLineHighlightColor(new Color(0xF2F6FF));
+ textArea.setFadeCurrentLineHighlight(true);
+ textArea.setLineWrap(false);
+ textArea.setMarginLineEnabled(false);
+ }
+
+ // Repaint on EDT
+ SwingUtilities.invokeLater(textArea::repaint);
+ }
+
+ public void setText(String text) {
+ suppressModifiedFlag = true;
+ try {
+ textArea.setText(Objects.requireNonNullElse(text, ""));
+ textArea.setCaretPosition(0);
+ modified.set(false);
+ } finally {
+ suppressModifiedFlag = false;
+ }
+ }
+
+ public String getText() {
+ return textArea.getText();
+ }
+
+ public void setEditable(boolean editable) {
+ textArea.setEditable(editable);
+ }
+
+ public boolean isModified() {
+ return modified.get();
+ }
+
+ public void resetModified() {
+ modified.set(false);
+ }
+
+ public String selectedText() {
+ return textArea.getSelectedText();
+ }
+}
From 50a4b20624983048a7d795df0d6f633835e49152 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:26:49 -0500
Subject: [PATCH 04/27] Add Format XML button to SAML Message panel
---
src/main/java/application/SamlTabController.java | 12 ++++++++++++
src/main/java/gui/SamlPanelAction.java | 8 +++++++-
2 files changed, 19 insertions(+), 1 deletion(-)
diff --git a/src/main/java/application/SamlTabController.java b/src/main/java/application/SamlTabController.java
index 0f001d1..2e9b478 100644
--- a/src/main/java/application/SamlTabController.java
+++ b/src/main/java/application/SamlTabController.java
@@ -341,6 +341,18 @@ public void removeSignature() {
}
}
+ public void formatXml() {
+ resetInfoMessageText();
+ String current = textArea.getText();
+ String formatted = prettifyXmlOrFallback(current);
+ if (formatted.equals(current)) {
+ setInfoMessageText("XML is already formatted (or not well-formed)");
+ } else {
+ textArea.setText(formatted);
+ setInfoMessageText("XML formatted");
+ }
+ }
+
public void resetMessage() {
samlMessage = orgSAMLMessage;
textArea.setText(prettifyXmlOrFallback(samlMessage));
diff --git a/src/main/java/gui/SamlPanelAction.java b/src/main/java/gui/SamlPanelAction.java
index 93d6b6d..dc72cef 100644
--- a/src/main/java/gui/SamlPanelAction.java
+++ b/src/main/java/gui/SamlPanelAction.java
@@ -37,6 +37,7 @@ public class SamlPanelAction extends JPanel {
private SamlTabController controller;
private final JButton btnMessageReset = new JButton("Reset Message");
+ private final JButton btnFormatXml = new JButton("Format XML");
private final JButton btnXSWHelp = new JButton("Help");
private final JComboBox cmbboxXSW = new JComboBox<>();
@@ -73,10 +74,13 @@ private void initialize() {
controller.resetMessage();
});
+ btnFormatXml.addActionListener(event -> controller.formatXml());
+
var samlMessagePanel = new JPanel();
samlMessagePanel.setBorder(BorderFactory.createTitledBorder("SAML Message"));
samlMessagePanel.setLayout(new MigLayout());
- samlMessagePanel.add(btnMessageReset, "wrap");
+ samlMessagePanel.add(btnMessageReset, "split 2");
+ samlMessagePanel.add(btnFormatXml, "wrap");
btnXSWHelp.addActionListener(event -> controller.showXSWHelp());
@@ -202,6 +206,7 @@ public void disableControls() {
btnSendCertificate.setEnabled(false);
btnResignMessage.setEnabled(false);
btnMatchAndReplace.setEnabled(false);
+ btnFormatXml.setEnabled(false);
btnTestXXE.setEnabled(false);
btnTestXSLT.setEnabled(false);
cmbboxCVE.setEnabled(false);
@@ -222,6 +227,7 @@ public void enableControls() {
btnSendCertificate.setEnabled(true);
btnResignMessage.setEnabled(true);
btnMatchAndReplace.setEnabled(true);
+ btnFormatXml.setEnabled(true);
btnTestXXE.setEnabled(true);
btnTestXSLT.setEnabled(true);
cmbboxCVE.setEnabled(true);
From ca7158484540cc529dc67fec8efd8444ac516c8d Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:33:27 -0500
Subject: [PATCH 05/27] Fix editor editability and remove Parsed & Prettified
section
- Remove applyThemeToComponent() call that broke RSyntaxTextArea key input
- Explicitly set editor as enabled and focusable
- Remove redundant Parsed & Prettified panel from SAML Message Info tab
---
.../java/application/SamlTabController.java | 10 +------
src/main/java/gui/SamlMain.java | 30 +------------------
src/main/java/gui/SamlXmlEditor.java | 7 +++--
3 files changed, 7 insertions(+), 40 deletions(-)
diff --git a/src/main/java/application/SamlTabController.java b/src/main/java/application/SamlTabController.java
index 2e9b478..bb6a07f 100644
--- a/src/main/java/application/SamlTabController.java
+++ b/src/main/java/application/SamlTabController.java
@@ -8,7 +8,6 @@
import burp.api.montoya.http.message.params.HttpParameterType;
import burp.api.montoya.http.message.requests.HttpRequest;
import burp.api.montoya.ui.Selection;
-import burp.api.montoya.ui.editor.RawEditor;
import burp.api.montoya.ui.editor.extension.ExtensionProvidedHttpRequestEditor;
import gui.CVEHelpWindow;
import gui.SamlMain;
@@ -75,7 +74,6 @@ public class SamlTabController implements ExtensionProvidedHttpRequestEditor, Ob
private String orgSAMLMessage;
private String samlMessage;
private SamlXmlEditor textArea;
- private RawEditor textEditorInformation;
private SamlMain samlGUI;
private boolean editable;
private XSWHelpers xswHelpers;
@@ -87,8 +85,6 @@ public SamlTabController(boolean editable, CertificateTabController certificateT
samlGUI = new SamlMain(this);
textArea = samlGUI.getXmlEditorAction();
textArea.setEditable(editable);
- textEditorInformation = samlGUI.getTextEditorInformation();
- textEditorInformation.setEditable(false);
xmlHelpers = new XMLHelpers();
xswHelpers = new XSWHelpers();
this.certificateTabController.addObserver(this);
@@ -280,14 +276,11 @@ private String prettifyXmlOrFallback(String xml) {
}
private void setInformationDisplay() {
- samlGUI.getTextEditorInformation().setContents(ByteArray.byteArray(""));
SamlPanelInfo infoPanel = samlGUI.getInfoPanel();
infoPanel.clearAll();
try {
Document document = xmlHelpers.getXMLDocumentOfSAMLMessage(samlMessage);
- String formattedDocumentWithIndentation = xmlHelpers.getStringOfDocument(xmlHelpers.getXMLDocumentOfSAMLMessage(samlMessage), 2);
- textEditorInformation.setContents(ByteArray.byteArray(formattedDocumentWithIndentation.getBytes()));
NodeList assertions = xmlHelpers.getAssertions(document);
if (assertions.getLength() > 0) {
Node assertion = assertions.item(0);
@@ -303,7 +296,7 @@ private void setInformationDisplay() {
Node assertion = assertions.item(0);
infoPanel.setEncryptionAlgorithm(xmlHelpers.getEncryptionMethod(assertion));
}
- } catch (SAXException | IOException e) {
+ } catch (SAXException e) {
setInfoMessageText(XML_NOT_WELL_FORMED);
}
}
@@ -318,7 +311,6 @@ private void resetInformationDisplay() {
infoPanel.setSignatureAlgorithm("");
infoPanel.setDigestAlgorithm("");
infoPanel.setEncryptionAlgorithm("");
- textEditorInformation.setContents(ByteArray.byteArray(""));
}
diff --git a/src/main/java/gui/SamlMain.java b/src/main/java/gui/SamlMain.java
index aa52232..878ec65 100644
--- a/src/main/java/gui/SamlMain.java
+++ b/src/main/java/gui/SamlMain.java
@@ -1,16 +1,11 @@
package gui;
import application.SamlTabController;
-import burp.BurpExtender;
-import burp.api.montoya.core.ByteArray;
-import burp.api.montoya.ui.editor.RawEditor;
import java.awt.BorderLayout;
import java.awt.Dimension;
-import javax.swing.JLabel;
import javax.swing.JPanel;
import javax.swing.JSplitPane;
import javax.swing.JTabbedPane;
-import javax.swing.border.EmptyBorder;
import static java.util.Objects.requireNonNull;
@@ -19,7 +14,6 @@ public class SamlMain extends JPanel {
private final SamlTabController controller;
private SamlXmlEditor xmlEditorAction;
- private RawEditor textEditorInformation;
private SamlPanelAction panelAction;
private SamlPanelInfo panelInformation;
private SamlPanelStatus panelStatus;
@@ -59,27 +53,9 @@ private void initializeUI() {
splitPaneInformationTop.setPreferredSize(new Dimension(0, 375));
splitPaneInformationTop.add(panelInformation);
- textEditorInformation = BurpExtender.api.userInterface().createRawEditor();
- textEditorInformation.setContents(ByteArray.byteArray(""));
-
- var splitPaneInformationButtomLabel = new JLabel("Parsed & Prettified");
- splitPaneInformationButtomLabel.setBorder(new EmptyBorder(5, 5, 5, 5));
-
- JPanel splitPaneInformationBottom = new JPanel();
- splitPaneInformationBottom.setLayout(new BorderLayout());
- splitPaneInformationBottom.setPreferredSize(new Dimension(0, 100));
- splitPaneInformationBottom.add(splitPaneInformationButtomLabel, BorderLayout.NORTH);
- splitPaneInformationBottom.add(textEditorInformation.uiComponent(), BorderLayout.CENTER);
-
- JSplitPane splitPaneInformation = new JSplitPane();
- splitPaneInformation.setOrientation(JSplitPane.VERTICAL_SPLIT);
- splitPaneInformation.setLeftComponent((splitPaneInformationTop));
- splitPaneInformation.setRightComponent(splitPaneInformationBottom);
- splitPaneInformation.resetToPreferredSizes();
-
JTabbedPane tabbedPane = new JTabbedPane();
tabbedPane.addTab("SAML Attacks", null, splitPaneAction, "SAML Attacks");
- tabbedPane.addTab("SAML Message Info", null, splitPaneInformation, "SAML Message Info");
+ tabbedPane.addTab("SAML Message Info", null, splitPaneInformationTop, "SAML Message Info");
panelStatus = new SamlPanelStatus();
@@ -95,10 +71,6 @@ public SamlXmlEditor getXmlEditorAction() {
return xmlEditorAction;
}
- public RawEditor getTextEditorInformation() {
- return textEditorInformation;
- }
-
public SamlPanelAction getActionPanel() {
return panelAction;
}
diff --git a/src/main/java/gui/SamlXmlEditor.java b/src/main/java/gui/SamlXmlEditor.java
index f4daf48..9860aa9 100644
--- a/src/main/java/gui/SamlXmlEditor.java
+++ b/src/main/java/gui/SamlXmlEditor.java
@@ -77,8 +77,9 @@ private void onChange() {
add(scroll, BorderLayout.CENTER);
- // Let Burp apply spacing/colors to swing container bits (scrollbars, etc.)
- BurpExtender.api.userInterface().applyThemeToComponent(this);
+ // NOTE: do NOT call applyThemeToComponent() here — it recurses into
+ // RSyntaxTextArea's internal components and can break editability / key bindings.
+ // We handle theming manually via applyBurpTheme().
}
public void applyBurpTheme() {
@@ -126,6 +127,8 @@ public String getText() {
public void setEditable(boolean editable) {
textArea.setEditable(editable);
+ textArea.setEnabled(true);
+ textArea.setFocusable(true);
}
public boolean isModified() {
From c504a110e40fceeabd9ad7b7fb8ec91f749bd13e Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:37:21 -0500
Subject: [PATCH 06/27] Switch XML editor to Burp-native RawEditor
RSyntaxTextArea had key input issues inside Burp's Swing environment.
Replaced with a thin wrapper around Burp's own RawEditor which handles
theming, editability, and selection natively. Prettification is preserved.
---
.../java/application/SamlTabController.java | 5 +-
src/main/java/gui/SamlXmlEditor.java | 127 +++---------------
2 files changed, 23 insertions(+), 109 deletions(-)
diff --git a/src/main/java/application/SamlTabController.java b/src/main/java/application/SamlTabController.java
index bb6a07f..6009ef3 100644
--- a/src/main/java/application/SamlTabController.java
+++ b/src/main/java/application/SamlTabController.java
@@ -160,7 +160,10 @@ public HttpRequest getRequest() {
@Override
public Selection selectedData() {
- // Our custom XML editor isn't a Montoya Editor, so we don't currently expose selection.
+ String sel = textArea.selectedText();
+ if (sel != null && !sel.isEmpty()) {
+ return Selection.selection(ByteArray.byteArray(sel));
+ }
return null;
}
diff --git a/src/main/java/gui/SamlXmlEditor.java b/src/main/java/gui/SamlXmlEditor.java
index 9860aa9..dd9a7fd 100644
--- a/src/main/java/gui/SamlXmlEditor.java
+++ b/src/main/java/gui/SamlXmlEditor.java
@@ -1,145 +1,56 @@
package gui;
import burp.BurpExtender;
-import burp.api.montoya.ui.Theme;
+import burp.api.montoya.core.ByteArray;
+import burp.api.montoya.ui.editor.EditorOptions;
+import burp.api.montoya.ui.editor.RawEditor;
import java.awt.BorderLayout;
-import java.awt.Color;
-import java.awt.Font;
import java.io.Serial;
-import java.util.Objects;
-import java.util.concurrent.atomic.AtomicBoolean;
import javax.swing.JPanel;
-import javax.swing.SwingUtilities;
-import javax.swing.event.DocumentEvent;
-import javax.swing.event.DocumentListener;
-import org.fife.ui.rsyntaxtextarea.RSyntaxTextArea;
-import org.fife.ui.rsyntaxtextarea.SyntaxConstants;
-import org.fife.ui.rtextarea.RTextScrollPane;
/**
- * XML editor with syntax highlighting + Burp theme-aware colors.
+ * Thin wrapper around Burp's native RawEditor that exposes a simple
+ * String-based API. Burp's editor handles theming, editability, and
+ * basic syntax colouring automatically.
*/
public class SamlXmlEditor extends JPanel {
@Serial
private static final long serialVersionUID = 1L;
- private final RSyntaxTextArea textArea;
- private final AtomicBoolean modified = new AtomicBoolean(false);
- private volatile boolean suppressModifiedFlag = false;
+ private final RawEditor rawEditor;
public SamlXmlEditor() {
super(new BorderLayout());
-
- textArea = new RSyntaxTextArea(20, 80);
- textArea.setSyntaxEditingStyle(SyntaxConstants.SYNTAX_STYLE_XML);
- textArea.setCodeFoldingEnabled(true);
- textArea.setAntiAliasingEnabled(true);
- textArea.setBracketMatchingEnabled(true);
- textArea.setAutoIndentEnabled(true);
- textArea.setMarkOccurrences(true);
- textArea.setTabsEmulated(true);
- textArea.setTabSize(2);
-
- // Font: match Burp editor font if available
- Font burpFont = BurpExtender.api.userInterface().currentEditorFont();
- if (burpFont != null) {
- textArea.setFont(burpFont);
- }
-
- applyBurpTheme();
-
- textArea.getDocument().addDocumentListener(new DocumentListener() {
- @Override
- public void insertUpdate(DocumentEvent e) {
- onChange();
- }
-
- @Override
- public void removeUpdate(DocumentEvent e) {
- onChange();
- }
-
- @Override
- public void changedUpdate(DocumentEvent e) {
- onChange();
- }
-
- private void onChange() {
- if (!suppressModifiedFlag) {
- modified.set(true);
- }
- }
- });
-
- var scroll = new RTextScrollPane(textArea);
- scroll.setBorder(null);
-
- add(scroll, BorderLayout.CENTER);
-
- // NOTE: do NOT call applyThemeToComponent() here — it recurses into
- // RSyntaxTextArea's internal components and can break editability / key bindings.
- // We handle theming manually via applyBurpTheme().
- }
-
- public void applyBurpTheme() {
- Theme theme = BurpExtender.api.userInterface().currentTheme();
-
- // Conservative palette: readable, high contrast, but not blinding.
- if (theme == Theme.DARK) {
- textArea.setBackground(new Color(0x1E1F22));
- textArea.setForeground(new Color(0xD6D6D6));
- textArea.setCaretColor(new Color(0xEDEDED));
- textArea.setSelectionColor(new Color(0x264F78));
- textArea.setCurrentLineHighlightColor(new Color(0x2A2D2E));
- textArea.setFadeCurrentLineHighlight(true);
- textArea.setLineWrap(false);
- textArea.setMarginLineEnabled(false);
- } else {
- textArea.setBackground(Color.WHITE);
- textArea.setForeground(new Color(0x1F2328));
- textArea.setCaretColor(Color.BLACK);
- textArea.setSelectionColor(new Color(0xBBDDFF));
- textArea.setCurrentLineHighlightColor(new Color(0xF2F6FF));
- textArea.setFadeCurrentLineHighlight(true);
- textArea.setLineWrap(false);
- textArea.setMarginLineEnabled(false);
- }
-
- // Repaint on EDT
- SwingUtilities.invokeLater(textArea::repaint);
+ rawEditor = BurpExtender.api.userInterface().createRawEditor();
+ add(rawEditor.uiComponent(), BorderLayout.CENTER);
}
public void setText(String text) {
- suppressModifiedFlag = true;
- try {
- textArea.setText(Objects.requireNonNullElse(text, ""));
- textArea.setCaretPosition(0);
- modified.set(false);
- } finally {
- suppressModifiedFlag = false;
- }
+ rawEditor.setContents(ByteArray.byteArray(text != null ? text : ""));
}
public String getText() {
- return textArea.getText();
+ return rawEditor.getContents().toString();
}
public void setEditable(boolean editable) {
- textArea.setEditable(editable);
- textArea.setEnabled(true);
- textArea.setFocusable(true);
+ rawEditor.setEditable(editable);
}
public boolean isModified() {
- return modified.get();
+ return rawEditor.isModified();
}
public void resetModified() {
- modified.set(false);
+ // RawEditor resets its modified flag when setContents is called,
+ // so re-set the current contents to clear it.
+ rawEditor.setContents(rawEditor.getContents());
}
public String selectedText() {
- return textArea.getSelectedText();
+ return rawEditor.selection()
+ .map(sel -> sel.contents().toString())
+ .orElse(null);
}
}
From 6a108ad571a9b8732e5e9d496afcc3848ee19212 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:47:49 -0500
Subject: [PATCH 07/27] Restore XML syntax highlighting with RSyntaxTextArea
Use plain JScrollPane instead of RTextScrollPane to avoid focus/input
conflicts in Burp's Swing environment. Set thread context ClassLoader
during construction so RSyntaxTextArea can load its internal resources
through Burp's plugin ClassLoader. Theme colors applied manually to
match Burp dark/light mode.
---
src/main/java/gui/SamlXmlEditor.java | 121 ++++++++++++++++++++++-----
1 file changed, 102 insertions(+), 19 deletions(-)
diff --git a/src/main/java/gui/SamlXmlEditor.java b/src/main/java/gui/SamlXmlEditor.java
index dd9a7fd..af1d8c5 100644
--- a/src/main/java/gui/SamlXmlEditor.java
+++ b/src/main/java/gui/SamlXmlEditor.java
@@ -1,56 +1,139 @@
package gui;
import burp.BurpExtender;
-import burp.api.montoya.core.ByteArray;
-import burp.api.montoya.ui.editor.EditorOptions;
-import burp.api.montoya.ui.editor.RawEditor;
+import burp.api.montoya.ui.Theme;
import java.awt.BorderLayout;
+import java.awt.Color;
+import java.awt.Font;
import java.io.Serial;
+import java.util.Objects;
+import java.util.concurrent.atomic.AtomicBoolean;
import javax.swing.JPanel;
+import javax.swing.JScrollPane;
+import javax.swing.SwingUtilities;
+import javax.swing.event.DocumentEvent;
+import javax.swing.event.DocumentListener;
+import org.fife.ui.rsyntaxtextarea.RSyntaxTextArea;
+import org.fife.ui.rsyntaxtextarea.SyntaxConstants;
/**
- * Thin wrapper around Burp's native RawEditor that exposes a simple
- * String-based API. Burp's editor handles theming, editability, and
- * basic syntax colouring automatically.
+ * XML editor with syntax highlighting, backed by RSyntaxTextArea.
+ * Uses a plain JScrollPane (not RTextScrollPane) to avoid focus/input
+ * conflicts inside Burp's Swing environment.
*/
public class SamlXmlEditor extends JPanel {
@Serial
private static final long serialVersionUID = 1L;
- private final RawEditor rawEditor;
+ private final RSyntaxTextArea textArea;
+ private final AtomicBoolean modified = new AtomicBoolean(false);
+ private volatile boolean suppressModified = false;
public SamlXmlEditor() {
super(new BorderLayout());
- rawEditor = BurpExtender.api.userInterface().createRawEditor();
- add(rawEditor.uiComponent(), BorderLayout.CENTER);
+
+ // Ensure RSyntaxTextArea can load its internal resources through
+ // Burp's plugin ClassLoader.
+ ClassLoader origCL = Thread.currentThread().getContextClassLoader();
+ Thread.currentThread().setContextClassLoader(RSyntaxTextArea.class.getClassLoader());
+
+ try {
+ textArea = new RSyntaxTextArea(20, 80);
+ textArea.setSyntaxEditingStyle(SyntaxConstants.SYNTAX_STYLE_XML);
+ textArea.setCodeFoldingEnabled(false); // requires RTextScrollPane — skip it
+ textArea.setAntiAliasingEnabled(true);
+ textArea.setBracketMatchingEnabled(true);
+ textArea.setAutoIndentEnabled(true);
+ textArea.setMarkOccurrences(true);
+ textArea.setTabsEmulated(true);
+ textArea.setTabSize(2);
+ textArea.setEditable(true);
+ textArea.setEnabled(true);
+ textArea.setFocusable(true);
+ } finally {
+ Thread.currentThread().setContextClassLoader(origCL);
+ }
+
+ // Match Burp's editor font
+ Font burpFont = BurpExtender.api.userInterface().currentEditorFont();
+ if (burpFont != null) {
+ textArea.setFont(burpFont);
+ }
+
+ applyBurpTheme();
+
+ // Track modifications
+ textArea.getDocument().addDocumentListener(new DocumentListener() {
+ @Override public void insertUpdate(DocumentEvent e) { onChange(); }
+ @Override public void removeUpdate(DocumentEvent e) { onChange(); }
+ @Override public void changedUpdate(DocumentEvent e) { onChange(); }
+ private void onChange() {
+ if (!suppressModified) {
+ modified.set(true);
+ }
+ }
+ });
+
+ // Plain JScrollPane — avoids the focus/input issues that
+ // RTextScrollPane causes inside Burp's component hierarchy.
+ var scroll = new JScrollPane(textArea);
+ scroll.setBorder(null);
+ add(scroll, BorderLayout.CENTER);
+ }
+
+ private void applyBurpTheme() {
+ Theme theme = BurpExtender.api.userInterface().currentTheme();
+
+ if (theme == Theme.DARK) {
+ textArea.setBackground(new Color(0x1E1F22));
+ textArea.setForeground(new Color(0xD6D6D6));
+ textArea.setCaretColor(new Color(0xEDEDED));
+ textArea.setSelectionColor(new Color(0x264F78));
+ textArea.setCurrentLineHighlightColor(new Color(0x2A2D2E));
+ } else {
+ textArea.setBackground(Color.WHITE);
+ textArea.setForeground(new Color(0x1F2328));
+ textArea.setCaretColor(Color.BLACK);
+ textArea.setSelectionColor(new Color(0xBBDDFF));
+ textArea.setCurrentLineHighlightColor(new Color(0xF2F6FF));
+ }
+
+ textArea.setFadeCurrentLineHighlight(true);
+ textArea.setLineWrap(false);
+ textArea.setMarginLineEnabled(false);
}
public void setText(String text) {
- rawEditor.setContents(ByteArray.byteArray(text != null ? text : ""));
+ suppressModified = true;
+ try {
+ textArea.setText(Objects.requireNonNullElse(text, ""));
+ textArea.setCaretPosition(0);
+ modified.set(false);
+ } finally {
+ suppressModified = false;
+ }
}
public String getText() {
- return rawEditor.getContents().toString();
+ return textArea.getText();
}
public void setEditable(boolean editable) {
- rawEditor.setEditable(editable);
+ textArea.setEditable(editable);
+ textArea.setEnabled(true);
+ textArea.setFocusable(true);
}
public boolean isModified() {
- return rawEditor.isModified();
+ return modified.get();
}
public void resetModified() {
- // RawEditor resets its modified flag when setContents is called,
- // so re-set the current contents to clear it.
- rawEditor.setContents(rawEditor.getContents());
+ modified.set(false);
}
public String selectedText() {
- return rawEditor.selection()
- .map(sel -> sel.contents().toString())
- .orElse(null);
+ return textArea.getSelectedText();
}
}
From d2514e905c79f6a2c903ded2eb022178494a8317 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 15:55:14 -0500
Subject: [PATCH 08/27] Replace RSyntaxTextArea with custom JTextPane XML
highlighter
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
RSyntaxTextArea breaks keyboard input inside Burp's Swing environment.
Replaced with a pure-Swing JTextPane + state-machine tokenizer that
colors XML tags, attributes, values, comments, CDATA, and PIs.
No external dependency — zero Swing/ClassLoader conflicts.
- Debounced highlighting (150ms) for smooth typing
- Dark/light theme support matching Burp
- Horizontal scroll (no line wrapping)
- Removed RSyntaxTextArea dependency from build
---
build.gradle | 1 -
gradle/libs.versions.toml | 2 -
src/main/java/gui/SamlXmlEditor.java | 294 ++++++++++++++++++++-------
3 files changed, 223 insertions(+), 74 deletions(-)
diff --git a/build.gradle b/build.gradle
index f73e253..d764c15 100644
--- a/build.gradle
+++ b/build.gradle
@@ -25,7 +25,6 @@ dependencies {
implementation libs.com.sun.xml.security.xml.security.impl
implementation libs.org.apache.santuario.xmlsec
implementation libs.xerces.xercesimpl
- implementation libs.rsyntaxtextarea
testImplementation libs.com.formdev.flatlaf
testImplementation libs.net.portswigger.burp.extensions.montoya.api
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
index f7a43ce..881deb4 100644
--- a/gradle/libs.versions.toml
+++ b/gradle/libs.versions.toml
@@ -8,7 +8,6 @@ org-apache-santuario-xmlsec = "2.1.7"
org-bouncycastle-bcpkix-jdk15on = "1.52"
org-junit-jupiter = "5.10.2"
xerces-xercesimpl = "2.12.2"
-rsyntaxtextarea = "3.5.4"
[libraries]
com-formdev-flatlaf = { module = "com.formdev:flatlaf", version.ref = "com-formdev-flatlaf"}
@@ -20,4 +19,3 @@ org-apache-santuario-xmlsec = { module = "org.apache.santuario:xmlsec", version.
org-bouncycastle-bcpkix-jdk15on = { module = "org.bouncycastle:bcpkix-jdk15on", version.ref = "org-bouncycastle-bcpkix-jdk15on" }
org-junit-jupiter = { module = "org.junit.jupiter:junit-jupiter", version.ref = "org-junit-jupiter" }
xerces-xercesimpl = { module = "xerces:xercesImpl", version.ref = "xerces-xercesimpl" }
-rsyntaxtextarea = { module = "com.fifesoft:rsyntaxtextarea", version.ref = "rsyntaxtextarea" }
diff --git a/src/main/java/gui/SamlXmlEditor.java b/src/main/java/gui/SamlXmlEditor.java
index af1d8c5..53a8532 100644
--- a/src/main/java/gui/SamlXmlEditor.java
+++ b/src/main/java/gui/SamlXmlEditor.java
@@ -4,125 +4,277 @@
import burp.api.montoya.ui.Theme;
import java.awt.BorderLayout;
import java.awt.Color;
+import java.awt.Component;
import java.awt.Font;
import java.io.Serial;
-import java.util.Objects;
+import java.util.Arrays;
import java.util.concurrent.atomic.AtomicBoolean;
import javax.swing.JPanel;
import javax.swing.JScrollPane;
-import javax.swing.SwingUtilities;
+import javax.swing.JTextPane;
+import javax.swing.Timer;
import javax.swing.event.DocumentEvent;
import javax.swing.event.DocumentListener;
-import org.fife.ui.rsyntaxtextarea.RSyntaxTextArea;
-import org.fife.ui.rsyntaxtextarea.SyntaxConstants;
+import javax.swing.text.BadLocationException;
+import javax.swing.text.DefaultStyledDocument;
+import javax.swing.text.SimpleAttributeSet;
+import javax.swing.text.StyleConstants;
/**
- * XML editor with syntax highlighting, backed by RSyntaxTextArea.
- * Uses a plain JScrollPane (not RTextScrollPane) to avoid focus/input
- * conflicts inside Burp's Swing environment.
+ * Editable XML editor with syntax highlighting, built on JTextPane.
+ * Uses a simple state-machine tokenizer — no external library needed,
+ * so no Swing/ClassLoader conflicts inside Burp.
*/
public class SamlXmlEditor extends JPanel {
@Serial
private static final long serialVersionUID = 1L;
- private final RSyntaxTextArea textArea;
+ private enum Tk { TEXT, BRACKET, TAG_NAME, ATTR_NAME, ATTR_VALUE, COMMENT, CDATA, PI }
+
+ private final JTextPane textPane;
+ private final DefaultStyledDocument doc;
+ private final Timer highlightTimer;
private final AtomicBoolean modified = new AtomicBoolean(false);
- private volatile boolean suppressModified = false;
+ private volatile boolean suppressEvents = false;
+
+ // Attribute sets for each token type
+ private final SimpleAttributeSet aDefault = new SimpleAttributeSet();
+ private final SimpleAttributeSet aBracket = new SimpleAttributeSet();
+ private final SimpleAttributeSet aTagName = new SimpleAttributeSet();
+ private final SimpleAttributeSet aAttrName = new SimpleAttributeSet();
+ private final SimpleAttributeSet aAttrValue = new SimpleAttributeSet();
+ private final SimpleAttributeSet aComment = new SimpleAttributeSet();
+ private final SimpleAttributeSet aCdata = new SimpleAttributeSet();
+ private final SimpleAttributeSet aPi = new SimpleAttributeSet();
public SamlXmlEditor() {
super(new BorderLayout());
- // Ensure RSyntaxTextArea can load its internal resources through
- // Burp's plugin ClassLoader.
- ClassLoader origCL = Thread.currentThread().getContextClassLoader();
- Thread.currentThread().setContextClassLoader(RSyntaxTextArea.class.getClassLoader());
+ doc = new DefaultStyledDocument();
- try {
- textArea = new RSyntaxTextArea(20, 80);
- textArea.setSyntaxEditingStyle(SyntaxConstants.SYNTAX_STYLE_XML);
- textArea.setCodeFoldingEnabled(false); // requires RTextScrollPane — skip it
- textArea.setAntiAliasingEnabled(true);
- textArea.setBracketMatchingEnabled(true);
- textArea.setAutoIndentEnabled(true);
- textArea.setMarkOccurrences(true);
- textArea.setTabsEmulated(true);
- textArea.setTabSize(2);
- textArea.setEditable(true);
- textArea.setEnabled(true);
- textArea.setFocusable(true);
- } finally {
- Thread.currentThread().setContextClassLoader(origCL);
- }
+ // Override to disable word-wrapping (XML reads better with horiz scroll)
+ textPane = new JTextPane(doc) {
+ @Serial
+ private static final long serialVersionUID = 1L;
+ @Override
+ public boolean getScrollableTracksViewportWidth() {
+ Component parent = getParent();
+ if (parent == null) return true;
+ return getUI().getPreferredSize(this).width <= parent.getWidth();
+ }
+ };
- // Match Burp's editor font
+ textPane.setEditable(true);
+ textPane.setEnabled(true);
+ textPane.setFocusable(true);
+
+ // Font: prefer Burp's editor font, fall back to monospaced
Font burpFont = BurpExtender.api.userInterface().currentEditorFont();
- if (burpFont != null) {
- textArea.setFont(burpFont);
- }
+ Font font = (burpFont != null) ? burpFont : new Font(Font.MONOSPACED, Font.PLAIN, 13);
+ textPane.setFont(font);
+
+ applyThemeColors(font);
- applyBurpTheme();
+ // Debounced highlighting: re-color 150 ms after last keystroke
+ highlightTimer = new Timer(150, e -> applyHighlighting());
+ highlightTimer.setRepeats(false);
- // Track modifications
- textArea.getDocument().addDocumentListener(new DocumentListener() {
- @Override public void insertUpdate(DocumentEvent e) { onChange(); }
- @Override public void removeUpdate(DocumentEvent e) { onChange(); }
- @Override public void changedUpdate(DocumentEvent e) { onChange(); }
- private void onChange() {
- if (!suppressModified) {
+ doc.addDocumentListener(new DocumentListener() {
+ @Override public void insertUpdate(DocumentEvent e) { onEdit(); }
+ @Override public void removeUpdate(DocumentEvent e) { onEdit(); }
+ @Override public void changedUpdate(DocumentEvent e) { /* style changes — ignore */ }
+ private void onEdit() {
+ if (!suppressEvents) {
modified.set(true);
+ highlightTimer.restart();
}
}
});
- // Plain JScrollPane — avoids the focus/input issues that
- // RTextScrollPane causes inside Burp's component hierarchy.
- var scroll = new JScrollPane(textArea);
+ var scroll = new JScrollPane(textPane);
scroll.setBorder(null);
add(scroll, BorderLayout.CENTER);
}
- private void applyBurpTheme() {
- Theme theme = BurpExtender.api.userInterface().currentTheme();
-
- if (theme == Theme.DARK) {
- textArea.setBackground(new Color(0x1E1F22));
- textArea.setForeground(new Color(0xD6D6D6));
- textArea.setCaretColor(new Color(0xEDEDED));
- textArea.setSelectionColor(new Color(0x264F78));
- textArea.setCurrentLineHighlightColor(new Color(0x2A2D2E));
- } else {
- textArea.setBackground(Color.WHITE);
- textArea.setForeground(new Color(0x1F2328));
- textArea.setCaretColor(Color.BLACK);
- textArea.setSelectionColor(new Color(0xBBDDFF));
- textArea.setCurrentLineHighlightColor(new Color(0xF2F6FF));
+ /* ------------------------------------------------------------------ */
+ /* Theme */
+ /* ------------------------------------------------------------------ */
+
+ private void applyThemeColors(Font font) {
+ boolean dark = BurpExtender.api.userInterface().currentTheme() == Theme.DARK;
+
+ textPane.setBackground(dark ? new Color(0x1E1F22) : Color.WHITE);
+ textPane.setForeground(dark ? new Color(0xD6D6D6) : new Color(0x1F2328));
+ textPane.setCaretColor(dark ? new Color(0xEDEDED) : Color.BLACK);
+ textPane.setSelectionColor(dark ? new Color(0x264F78) : new Color(0xBBDDFF));
+
+ setAttr(aDefault, font, dark ? 0xD6D6D6 : 0x1F2328, false);
+ setAttr(aBracket, font, dark ? 0x808080 : 0x333333, false);
+ setAttr(aTagName, font, dark ? 0x569CD6 : 0x0000FF, false);
+ setAttr(aAttrName, font, dark ? 0x9CDCFE : 0xA31515, false);
+ setAttr(aAttrValue, font, dark ? 0xCE9178 : 0x0451A5, false);
+ setAttr(aComment, font, dark ? 0x6A9955 : 0x008000, true);
+ setAttr(aCdata, font, dark ? 0xD7BA7D : 0x800000, false);
+ setAttr(aPi, font, dark ? 0x808080 : 0x808080, true);
+ }
+
+ private static void setAttr(SimpleAttributeSet a, Font font, int rgb, boolean italic) {
+ StyleConstants.setFontFamily(a, font.getFamily());
+ StyleConstants.setFontSize(a, font.getSize());
+ StyleConstants.setForeground(a, new Color(rgb));
+ StyleConstants.setItalic(a, italic);
+ StyleConstants.setBold(a, false);
+ }
+
+ /* ------------------------------------------------------------------ */
+ /* XML tokenizer (state machine) */
+ /* ------------------------------------------------------------------ */
+
+ private Tk[] tokenize(String text) {
+ Tk[] tokens = new Tk[text.length()];
+ Arrays.fill(tokens, Tk.TEXT);
+ int len = text.length();
+ int i = 0;
+
+ while (i < len) {
+ if (text.charAt(i) != '<') { i++; continue; }
+
+ if (regionMatches(text, i, "", i + 4);
+ int endPos = (end == -1) ? len : end + 3;
+ Arrays.fill(tokens, i, Math.min(endPos, len), Tk.COMMENT);
+ i = endPos;
+ } else if (regionMatches(text, i, "", i + 9);
+ int endPos = (end == -1) ? len : end + 3;
+ Arrays.fill(tokens, i, Math.min(endPos, len), Tk.CDATA);
+ i = endPos;
+ } else if (i + 1 < len && text.charAt(i + 1) == '?') {
+ int end = text.indexOf("?>", i + 2);
+ int endPos = (end == -1) ? len : end + 2;
+ Arrays.fill(tokens, i, Math.min(endPos, len), Tk.PI);
+ i = endPos;
+ } else {
+ // Regular tag: or
+ tokens[i++] = Tk.BRACKET; // <
+ if (i < len && text.charAt(i) == '/') {
+ tokens[i++] = Tk.BRACKET; // /
+ }
+ while (i < len && isNameChar(text.charAt(i))) {
+ tokens[i++] = Tk.TAG_NAME;
+ }
+ i = tokenizeInsideTag(text, tokens, i);
+ }
+ }
+ return tokens;
+ }
+
+ /** Tokenize attribute region inside a tag until closing '>' */
+ private int tokenizeInsideTag(String text, Tk[] tokens, int i) {
+ int len = text.length();
+ while (i < len) {
+ char c = text.charAt(i);
+ if (c == '>') {
+ tokens[i++] = Tk.BRACKET;
+ return i;
+ } else if (c == '/') {
+ tokens[i++] = Tk.BRACKET;
+ } else if (c == '=') {
+ tokens[i++] = Tk.BRACKET;
+ } else if (c == '"' || c == '\'') {
+ char q = c;
+ tokens[i++] = Tk.ATTR_VALUE;
+ while (i < len && text.charAt(i) != q) { tokens[i++] = Tk.ATTR_VALUE; }
+ if (i < len) { tokens[i++] = Tk.ATTR_VALUE; } // closing quote
+ } else if (isNameStartChar(c)) {
+ while (i < len && isNameChar(text.charAt(i))) { tokens[i++] = Tk.ATTR_NAME; }
+ } else {
+ i++; // whitespace
+ }
}
+ return i;
+ }
- textArea.setFadeCurrentLineHighlight(true);
- textArea.setLineWrap(false);
- textArea.setMarginLineEnabled(false);
+ /* ------------------------------------------------------------------ */
+ /* Apply highlighting */
+ /* ------------------------------------------------------------------ */
+
+ private void applyHighlighting() {
+ String text;
+ try { text = doc.getText(0, doc.getLength()); }
+ catch (BadLocationException e) { return; }
+ if (text.isEmpty()) return;
+
+ Tk[] tokens = tokenize(text);
+
+ // Group consecutive same-type tokens into runs and apply style per run
+ int runStart = 0;
+ Tk runType = tokens[0];
+ for (int i = 1; i <= tokens.length; i++) {
+ Tk t = (i < tokens.length) ? tokens[i] : null;
+ if (t != runType) {
+ doc.setCharacterAttributes(runStart, i - runStart, attrFor(runType), true);
+ runStart = i;
+ runType = t;
+ }
+ }
}
+ private SimpleAttributeSet attrFor(Tk token) {
+ return switch (token) {
+ case BRACKET -> aBracket;
+ case TAG_NAME -> aTagName;
+ case ATTR_NAME -> aAttrName;
+ case ATTR_VALUE -> aAttrValue;
+ case COMMENT -> aComment;
+ case CDATA -> aCdata;
+ case PI -> aPi;
+ default -> aDefault;
+ };
+ }
+
+ /* ------------------------------------------------------------------ */
+ /* Char classification helpers */
+ /* ------------------------------------------------------------------ */
+
+ private static boolean regionMatches(String text, int pos, String prefix) {
+ return text.regionMatches(pos, prefix, 0, prefix.length());
+ }
+
+ private static boolean isNameStartChar(char c) {
+ return Character.isLetter(c) || c == '_' || c == ':';
+ }
+
+ private static boolean isNameChar(char c) {
+ return Character.isLetterOrDigit(c) || c == ':' || c == '-' || c == '.' || c == '_';
+ }
+
+ /* ------------------------------------------------------------------ */
+ /* Public API */
+ /* ------------------------------------------------------------------ */
+
public void setText(String text) {
- suppressModified = true;
+ suppressEvents = true;
try {
- textArea.setText(Objects.requireNonNullElse(text, ""));
- textArea.setCaretPosition(0);
+ textPane.setText(text != null ? text : "");
+ textPane.setCaretPosition(0);
modified.set(false);
} finally {
- suppressModified = false;
+ suppressEvents = false;
}
+ applyHighlighting();
}
public String getText() {
- return textArea.getText();
+ try { return doc.getText(0, doc.getLength()); }
+ catch (BadLocationException e) { return textPane.getText(); }
}
public void setEditable(boolean editable) {
- textArea.setEditable(editable);
- textArea.setEnabled(true);
- textArea.setFocusable(true);
+ textPane.setEditable(editable);
+ textPane.setEnabled(true);
+ textPane.setFocusable(true);
}
public boolean isModified() {
@@ -134,6 +286,6 @@ public void resetModified() {
}
public String selectedText() {
- return textArea.getSelectedText();
+ return textPane.getSelectedText();
}
}
From f6b202c35e7facc823f6abea4f91f071d37c8e90 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 16:01:09 -0500
Subject: [PATCH 09/27] Add live search bar to XML editor
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Type to search — all matches highlighted, auto-scrolls to first match.
Enter = next match, Shift+Enter = previous, Escape = clear.
Match counter shows current position (e.g. 3 / 12).
---
src/main/java/gui/SamlXmlEditor.java | 141 +++++++++++++++++++++++++++
1 file changed, 141 insertions(+)
diff --git a/src/main/java/gui/SamlXmlEditor.java b/src/main/java/gui/SamlXmlEditor.java
index 53a8532..b4894d9 100644
--- a/src/main/java/gui/SamlXmlEditor.java
+++ b/src/main/java/gui/SamlXmlEditor.java
@@ -5,18 +5,26 @@
import java.awt.BorderLayout;
import java.awt.Color;
import java.awt.Component;
+import java.awt.Dimension;
import java.awt.Font;
+import java.awt.event.KeyAdapter;
+import java.awt.event.KeyEvent;
import java.io.Serial;
import java.util.Arrays;
import java.util.concurrent.atomic.AtomicBoolean;
+import javax.swing.BorderFactory;
+import javax.swing.JLabel;
import javax.swing.JPanel;
import javax.swing.JScrollPane;
+import javax.swing.JTextField;
import javax.swing.JTextPane;
import javax.swing.Timer;
import javax.swing.event.DocumentEvent;
import javax.swing.event.DocumentListener;
import javax.swing.text.BadLocationException;
+import javax.swing.text.DefaultHighlighter;
import javax.swing.text.DefaultStyledDocument;
+import javax.swing.text.Highlighter;
import javax.swing.text.SimpleAttributeSet;
import javax.swing.text.StyleConstants;
@@ -38,6 +46,13 @@ private enum Tk { TEXT, BRACKET, TAG_NAME, ATTR_NAME, ATTR_VALUE, COMMENT, CDATA
private final AtomicBoolean modified = new AtomicBoolean(false);
private volatile boolean suppressEvents = false;
+ // Search
+ private final JTextField searchField;
+ private final JLabel searchStatus;
+ private final Highlighter.HighlightPainter searchPainter;
+ private int currentMatchIndex = -1;
+ private int[] matchPositions = new int[0]; // start positions of all matches
+
// Attribute sets for each token type
private final SimpleAttributeSet aDefault = new SimpleAttributeSet();
private final SimpleAttributeSet aBracket = new SimpleAttributeSet();
@@ -95,6 +110,49 @@ private void onEdit() {
var scroll = new JScrollPane(textPane);
scroll.setBorder(null);
add(scroll, BorderLayout.CENTER);
+
+ // --- Search bar ---
+ boolean dark = BurpExtender.api.userInterface().currentTheme() == Theme.DARK;
+ searchPainter = new DefaultHighlighter.DefaultHighlightPainter(
+ dark ? new Color(0x806030) : new Color(0xFFE08A));
+
+ searchField = new JTextField();
+ searchField.setFont(font.deriveFont(Font.PLAIN, 12f));
+ searchField.setPreferredSize(new Dimension(220, 26));
+ searchField.setToolTipText("Search XML (Enter = next, Shift+Enter = previous, Esc = close)");
+
+ searchStatus = new JLabel("");
+ searchStatus.setFont(font.deriveFont(Font.PLAIN, 11f));
+ searchStatus.setForeground(dark ? new Color(0x999999) : new Color(0x666666));
+
+ // Live search as you type
+ searchField.getDocument().addDocumentListener(new DocumentListener() {
+ @Override public void insertUpdate(DocumentEvent e) { doSearch(); }
+ @Override public void removeUpdate(DocumentEvent e) { doSearch(); }
+ @Override public void changedUpdate(DocumentEvent e) { doSearch(); }
+ });
+
+ // Enter = next match, Shift+Enter = prev, Escape = hide
+ searchField.addKeyListener(new KeyAdapter() {
+ @Override
+ public void keyPressed(KeyEvent e) {
+ if (e.getKeyCode() == KeyEvent.VK_ENTER) {
+ if (e.isShiftDown()) jumpToMatch(-1); else jumpToMatch(1);
+ } else if (e.getKeyCode() == KeyEvent.VK_ESCAPE) {
+ clearSearch();
+ textPane.requestFocusInWindow();
+ }
+ }
+ });
+
+ var searchBar = new JPanel(new BorderLayout(6, 0));
+ searchBar.setBorder(BorderFactory.createEmptyBorder(3, 6, 3, 6));
+ var searchLabel = new JLabel("Find:");
+ searchLabel.setFont(font.deriveFont(Font.PLAIN, 12f));
+ searchBar.add(searchLabel, BorderLayout.WEST);
+ searchBar.add(searchField, BorderLayout.CENTER);
+ searchBar.add(searchStatus, BorderLayout.EAST);
+ add(searchBar, BorderLayout.SOUTH);
}
/* ------------------------------------------------------------------ */
@@ -254,6 +312,89 @@ private static boolean isNameChar(char c) {
/* Public API */
/* ------------------------------------------------------------------ */
+ /* ------------------------------------------------------------------ */
+ /* Search */
+ /* ------------------------------------------------------------------ */
+
+ private void doSearch() {
+ textPane.getHighlighter().removeAllHighlights();
+ String query = searchField.getText();
+ if (query == null || query.isEmpty()) {
+ searchStatus.setText("");
+ matchPositions = new int[0];
+ currentMatchIndex = -1;
+ return;
+ }
+
+ String text;
+ try { text = doc.getText(0, doc.getLength()); }
+ catch (BadLocationException e) { return; }
+
+ String lowerText = text.toLowerCase();
+ String lowerQuery = query.toLowerCase();
+
+ // Find all matches
+ java.util.List positions = new java.util.ArrayList<>();
+ int idx = 0;
+ while ((idx = lowerText.indexOf(lowerQuery, idx)) != -1) {
+ positions.add(idx);
+ try {
+ textPane.getHighlighter().addHighlight(idx, idx + query.length(), searchPainter);
+ } catch (BadLocationException ignored) {}
+ idx += query.length();
+ }
+
+ matchPositions = positions.stream().mapToInt(Integer::intValue).toArray();
+
+ if (matchPositions.length == 0) {
+ searchStatus.setText("No matches");
+ currentMatchIndex = -1;
+ } else {
+ currentMatchIndex = 0;
+ scrollToMatch(0);
+ updateSearchStatus();
+ }
+ }
+
+ private void jumpToMatch(int direction) {
+ if (matchPositions.length == 0) return;
+ currentMatchIndex = (currentMatchIndex + direction + matchPositions.length) % matchPositions.length;
+ scrollToMatch(currentMatchIndex);
+ updateSearchStatus();
+ }
+
+ private void scrollToMatch(int index) {
+ if (index < 0 || index >= matchPositions.length) return;
+ int pos = matchPositions[index];
+ textPane.setCaretPosition(pos);
+ // Select the match so it's visually obvious
+ textPane.setSelectionStart(pos);
+ textPane.setSelectionEnd(pos + searchField.getText().length());
+ try {
+ textPane.scrollRectToVisible(textPane.modelToView2D(pos).getBounds());
+ } catch (BadLocationException ignored) {}
+ }
+
+ private void updateSearchStatus() {
+ if (matchPositions.length == 0) {
+ searchStatus.setText("No matches");
+ } else {
+ searchStatus.setText((currentMatchIndex + 1) + " / " + matchPositions.length);
+ }
+ }
+
+ private void clearSearch() {
+ searchField.setText("");
+ textPane.getHighlighter().removeAllHighlights();
+ matchPositions = new int[0];
+ currentMatchIndex = -1;
+ searchStatus.setText("");
+ }
+
+ /* ------------------------------------------------------------------ */
+ /* Public API */
+ /* ------------------------------------------------------------------ */
+
public void setText(String text) {
suppressEvents = true;
try {
From 2af437fd5515e7b33301fa13351ebbba8134caa7 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 16:06:08 -0500
Subject: [PATCH 10/27] Compact attack panel layout
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Flatten all attack categories into 4 rows instead of 5 titled sections.
Replace verbose Help buttons with small '?' buttons. Combine CVE and
XML attacks into one row. Reduce panel preferred height from 460px to
130px — gives much more room to the XML editor.
---
src/main/java/gui/SamlMain.java | 2 +-
src/main/java/gui/SamlPanelAction.java | 108 +++++++++----------------
2 files changed, 41 insertions(+), 69 deletions(-)
diff --git a/src/main/java/gui/SamlMain.java b/src/main/java/gui/SamlMain.java
index 878ec65..bf1cf0b 100644
--- a/src/main/java/gui/SamlMain.java
+++ b/src/main/java/gui/SamlMain.java
@@ -28,7 +28,7 @@ private void initializeUI() {
JPanel splitPaneActionTop = new JPanel();
splitPaneActionTop.setLayout(new BorderLayout());
- splitPaneActionTop.setPreferredSize(new Dimension(0, 460));
+ splitPaneActionTop.setPreferredSize(new Dimension(0, 130));
splitPaneActionTop.add(panelAction);
xmlEditorAction = new SamlXmlEditor();
diff --git a/src/main/java/gui/SamlPanelAction.java b/src/main/java/gui/SamlPanelAction.java
index dc72cef..ee8c056 100644
--- a/src/main/java/gui/SamlPanelAction.java
+++ b/src/main/java/gui/SamlPanelAction.java
@@ -39,7 +39,7 @@ public class SamlPanelAction extends JPanel {
private final JButton btnMessageReset = new JButton("Reset Message");
private final JButton btnFormatXml = new JButton("Format XML");
- private final JButton btnXSWHelp = new JButton("Help");
+ private final JButton btnXSWHelp = new JButton("?");
private final JComboBox cmbboxXSW = new JComboBox<>();
private final JButton btnXSWPreview = new JButton("Preview in Browser...");
private final JButton btnMatchAndReplace = new JButton("Match and Replace");
@@ -50,9 +50,9 @@ public class SamlPanelAction extends JPanel {
private final JComboBox cmbboxCVE = new JComboBox<>();
private final JButton btnCVEApply = new JButton("Apply CVE");
- private final JButton btnCVEHelp = new JButton("Help");
+ private final JButton btnCVEHelp = new JButton("?");
- private final JButton btnSignatureHelp = new JButton("Help");
+ private final JButton btnSignatureHelp = new JButton("?");
private final JComboBox cmbboxCertificate = new JComboBox<>();
private final JButton btnSignatureRemove = new JButton("Remove Signatures");
private final JButton btnResignAssertion = new JButton("(Re-)Sign Assertion");
@@ -76,95 +76,67 @@ private void initialize() {
btnFormatXml.addActionListener(event -> controller.formatXml());
- var samlMessagePanel = new JPanel();
- samlMessagePanel.setBorder(BorderFactory.createTitledBorder("SAML Message"));
- samlMessagePanel.setLayout(new MigLayout());
- samlMessagePanel.add(btnMessageReset, "split 2");
- samlMessagePanel.add(btnFormatXml, "wrap");
-
+ // --- Wire listeners ---
btnXSWHelp.addActionListener(event -> controller.showXSWHelp());
-
btnXSWPreview.addActionListener(event -> controller.showXSWPreview());
-
btnMatchAndReplace.addActionListener(event -> showMatchAndReplaceDialog());
-
btnXSWApply.addActionListener(event -> controller.applyXSW());
- var xswAttacksPanel = new JPanel();
- xswAttacksPanel.setBorder(BorderFactory.createTitledBorder("XSW Attacks"));
- xswAttacksPanel.setLayout(new MigLayout());
- xswAttacksPanel.add(btnXSWHelp, "wrap");
- xswAttacksPanel.add(cmbboxXSW, "split 4");
- xswAttacksPanel.add(btnMatchAndReplace);
- xswAttacksPanel.add(btnXSWPreview);
- xswAttacksPanel.add(btnXSWApply, "wrap");
-
btnTestXXE.addActionListener(event ->
Optional.ofNullable(JOptionPane.showInputDialog(btnXSWApply, "Enter Burp Collaborator URL (e.g. https://xyz.burpcollaborator.net)"))
.ifPresent(controller::applyXXE));
-
btnTestXSLT.addActionListener(event ->
Optional.ofNullable(JOptionPane.showInputDialog(btnXSWApply, "Enter Burp Collaborator URL (e.g. https://xyz.burpcollaborator.net)"))
.ifPresent(controller::applyXSLT));
- var xmlAttacksPanel = new JPanel();
- xmlAttacksPanel.setBorder(BorderFactory.createTitledBorder("XML Attacks"));
- xmlAttacksPanel.setLayout(new MigLayout());
- xmlAttacksPanel.add(btnTestXXE, "split 2");
- xmlAttacksPanel.add(btnTestXSLT, "wrap");
-
cmbboxCVE.setModel(new DefaultComboBoxModel<>(new String[]{
- CVE_2022_41912.CVE,
- CVE_2025_23369.CVE,
- CVE_2025_25291.CVE,
- CVE_2025_25292.CVE
- }));
-
+ CVE_2022_41912.CVE, CVE_2025_23369.CVE,
+ CVE_2025_25291.CVE, CVE_2025_25292.CVE }));
btnCVEApply.addActionListener(event -> controller.applyCVE());
-
btnCVEHelp.addActionListener(event -> controller.showCVEHelp());
- var cvePanel = new JPanel();
- cvePanel.setBorder(BorderFactory.createTitledBorder("CVEs"));
- cvePanel.setLayout(new MigLayout());
- cvePanel.add(cmbboxCVE);
- cvePanel.add(btnCVEApply);
- cvePanel.add(btnCVEHelp, "wrap");
-
btnSignatureHelp.addActionListener(event -> controller.showSignatureHelp());
-
btnSignatureRemove.addActionListener(event -> controller.removeSignature());
-
btnResignAssertion.addActionListener(event -> controller.resignAssertion());
-
btnSendCertificate.addActionListener(event -> controller.sendToCertificatesTab());
-
btnResignMessage.addActionListener(event -> controller.resignMessage());
- var signatureAttacksPanel = new JPanel();
- signatureAttacksPanel.setBorder(BorderFactory.createTitledBorder("Signature Attacks"));
- signatureAttacksPanel.setLayout(new MigLayout());
- signatureAttacksPanel.add(btnSignatureHelp, "wrap");
- signatureAttacksPanel.add(btnSignatureRemove, "split 2");
- signatureAttacksPanel.add(btnSendCertificate, "wrap");
- signatureAttacksPanel.add(cmbboxCertificate, "split 3");
- signatureAttacksPanel.add(btnResignAssertion);
- signatureAttacksPanel.add(btnResignMessage, "wrap");
-
- var actionPanels = new JPanel();
- var actionPanelConstraints = "wrap";
- actionPanels.setLayout(new MigLayout());
- actionPanels.add(samlMessagePanel, actionPanelConstraints);
- actionPanels.add(xswAttacksPanel, actionPanelConstraints);
- actionPanels.add(cvePanel, actionPanelConstraints);
- actionPanels.add(xmlAttacksPanel, actionPanelConstraints);
- actionPanels.add(signatureAttacksPanel, actionPanelConstraints);
-
- var scrollPane = new JScrollPane(actionPanels);
- scrollPane.setBorder(new EmptyBorder(0, 0, 0, 0));
+ // --- Compact layout: one row per category ---
+ var panel = new JPanel(new MigLayout("insets 4 6 4 6, gap 4 2", "", ""));
+
+ // Row 1: Message actions
+ panel.add(new JLabel("Message"), "split");
+ panel.add(btnMessageReset);
+ panel.add(btnFormatXml, "wrap");
+
+ // Row 2: XSW
+ panel.add(new JLabel("XSW"), "split");
+ panel.add(cmbboxXSW);
+ panel.add(btnXSWApply);
+ panel.add(btnMatchAndReplace);
+ panel.add(btnXSWPreview);
+ panel.add(btnXSWHelp, "wrap");
+
+ // Row 3: CVE + XML attacks
+ panel.add(new JLabel("CVE"), "split");
+ panel.add(cmbboxCVE);
+ panel.add(btnCVEApply);
+ panel.add(btnCVEHelp);
+ panel.add(new JLabel(" XML"), "gapleft 12");
+ panel.add(btnTestXXE);
+ panel.add(btnTestXSLT, "wrap");
+
+ // Row 4: Signatures
+ panel.add(new JLabel("Signing"), "split");
+ panel.add(cmbboxCertificate);
+ panel.add(btnResignAssertion);
+ panel.add(btnResignMessage);
+ panel.add(btnSignatureRemove);
+ panel.add(btnSendCertificate);
+ panel.add(btnSignatureHelp, "wrap");
setLayout(new BorderLayout());
- add(scrollPane, BorderLayout.CENTER);
+ add(panel, BorderLayout.NORTH);
}
public void setCertificateList(List list) {
From 376c258f1ec488c426fadd1ad0cfe44fb15a5b7a Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 16:13:56 -0500
Subject: [PATCH 11/27] Add row spacing and rename Send Certificate button
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Increase vertical gap between rows (2px → 6px) and padding around edges.
Rename 'Send Certificate to SAML Raider Certificates' → 'Store Certificate'.
---
src/main/java/gui/SamlPanelAction.java | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/src/main/java/gui/SamlPanelAction.java b/src/main/java/gui/SamlPanelAction.java
index ee8c056..db12b07 100644
--- a/src/main/java/gui/SamlPanelAction.java
+++ b/src/main/java/gui/SamlPanelAction.java
@@ -56,7 +56,7 @@ public class SamlPanelAction extends JPanel {
private final JComboBox cmbboxCertificate = new JComboBox<>();
private final JButton btnSignatureRemove = new JButton("Remove Signatures");
private final JButton btnResignAssertion = new JButton("(Re-)Sign Assertion");
- private final JButton btnSendCertificate = new JButton("Send Certificate to SAML Raider Certificates");
+ private final JButton btnSendCertificate = new JButton("Store Certificate");
private final JButton btnResignMessage = new JButton("(Re-)Sign Message");
@@ -102,7 +102,7 @@ private void initialize() {
btnResignMessage.addActionListener(event -> controller.resignMessage());
// --- Compact layout: one row per category ---
- var panel = new JPanel(new MigLayout("insets 4 6 4 6, gap 4 2", "", ""));
+ var panel = new JPanel(new MigLayout("insets 6 8 6 8, gap 4 6", "", ""));
// Row 1: Message actions
panel.add(new JLabel("Message"), "split");
From 641ab97b6b6f35d8ce69e438491f1e0674445b00 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 16:16:43 -0500
Subject: [PATCH 12/27] Improve attack panel section clarity
Add bold section labels and horizontal separators between groups:
Message | separator | XSW / CVE / XML | separator | Signing
Split CVE and XML into separate rows for clarity.
Move Store Certificate under Signing section where it belongs.
---
src/main/java/gui/SamlMain.java | 2 +-
src/main/java/gui/SamlPanelAction.java | 44 +++++++++++++++++++-------
2 files changed, 33 insertions(+), 13 deletions(-)
diff --git a/src/main/java/gui/SamlMain.java b/src/main/java/gui/SamlMain.java
index bf1cf0b..22a4668 100644
--- a/src/main/java/gui/SamlMain.java
+++ b/src/main/java/gui/SamlMain.java
@@ -28,7 +28,7 @@ private void initializeUI() {
JPanel splitPaneActionTop = new JPanel();
splitPaneActionTop.setLayout(new BorderLayout());
- splitPaneActionTop.setPreferredSize(new Dimension(0, 130));
+ splitPaneActionTop.setPreferredSize(new Dimension(0, 195));
splitPaneActionTop.add(panelAction);
xmlEditorAction = new SamlXmlEditor();
diff --git a/src/main/java/gui/SamlPanelAction.java b/src/main/java/gui/SamlPanelAction.java
index db12b07..7a5371d 100644
--- a/src/main/java/gui/SamlPanelAction.java
+++ b/src/main/java/gui/SamlPanelAction.java
@@ -7,6 +7,7 @@
import helpers.CVE_2025_25292;
import java.awt.BorderLayout;
import java.awt.Component;
+import java.awt.Font;
import java.awt.GridBagConstraints;
import java.awt.GridBagLayout;
import java.awt.event.ActionEvent;
@@ -101,44 +102,63 @@ private void initialize() {
btnSendCertificate.addActionListener(event -> controller.sendToCertificatesTab());
btnResignMessage.addActionListener(event -> controller.resignMessage());
- // --- Compact layout: one row per category ---
- var panel = new JPanel(new MigLayout("insets 6 8 6 8, gap 4 6", "", ""));
+ // --- Compact layout: labeled sections with separators ---
+ var panel = new JPanel(new MigLayout("insets 6 8 6 8, gap 4 6, fillx", "[grow]", ""));
- // Row 1: Message actions
- panel.add(new JLabel("Message"), "split");
+ // Row 1: Message
+ panel.add(sectionLabel("Message"), "split");
panel.add(btnMessageReset);
panel.add(btnFormatXml, "wrap");
+ panel.add(separator(), "growx, wrap");
+
// Row 2: XSW
- panel.add(new JLabel("XSW"), "split");
+ panel.add(sectionLabel("XSW"), "split");
panel.add(cmbboxXSW);
panel.add(btnXSWApply);
panel.add(btnMatchAndReplace);
panel.add(btnXSWPreview);
panel.add(btnXSWHelp, "wrap");
- // Row 3: CVE + XML attacks
- panel.add(new JLabel("CVE"), "split");
+ // Row 3: CVE
+ panel.add(sectionLabel("CVE"), "split");
panel.add(cmbboxCVE);
panel.add(btnCVEApply);
- panel.add(btnCVEHelp);
- panel.add(new JLabel(" XML"), "gapleft 12");
+ panel.add(btnCVEHelp, "wrap");
+
+ // Row 4: XML
+ panel.add(sectionLabel("XML"), "split");
panel.add(btnTestXXE);
panel.add(btnTestXSLT, "wrap");
- // Row 4: Signatures
- panel.add(new JLabel("Signing"), "split");
+ panel.add(separator(), "growx, wrap");
+
+ // Row 5: Signing
+ panel.add(sectionLabel("Signing"), "split");
panel.add(cmbboxCertificate);
panel.add(btnResignAssertion);
panel.add(btnResignMessage);
panel.add(btnSignatureRemove);
- panel.add(btnSendCertificate);
panel.add(btnSignatureHelp, "wrap");
+ // Row 6: Store Certificate (under Signing)
+ panel.add(new JLabel(""), "split"); // indent to align
+ panel.add(btnSendCertificate, "wrap");
+
setLayout(new BorderLayout());
add(panel, BorderLayout.NORTH);
}
+ private static JLabel sectionLabel(String text) {
+ var label = new JLabel(text);
+ label.setFont(label.getFont().deriveFont(Font.BOLD, 11f));
+ return label;
+ }
+
+ private static javax.swing.JSeparator separator() {
+ return new javax.swing.JSeparator(javax.swing.SwingConstants.HORIZONTAL);
+ }
+
public void setCertificateList(List list) {
DefaultComboBoxModel model = new DefaultComboBoxModel();
From 07c9d92b81319a0819209728dadf3241c6510cd9 Mon Sep 17 00:00:00 2001
From: intrudir <24526564+intrudir@users.noreply.github.com>
Date: Wed, 4 Feb 2026 16:20:23 -0500
Subject: [PATCH 13/27] Update SAML Attacks screenshot in README
---
doc/saml_attacks.png | Bin 229733 -> 269259 bytes
1 file changed, 0 insertions(+), 0 deletions(-)
diff --git a/doc/saml_attacks.png b/doc/saml_attacks.png
index a647cd53a2cd3f4e5c2118bbe98ae298aa60cf3a..11678e2e2f6fa48bd5f7524400fa879cd5951fdd 100644
GIT binary patch
literal 269259
zcmZ^~1z1(v_XSD{NF6}BK^p0hPU(g=Kc+V-%q1$ZN*(1HT5ne3{z?
zLL7#nk6@_BQ56@~8&?Ct6TX=ahewVuIwCYtdOO|y0d=scjlBMD#QO+*l+|$7^yG6k
z%pK3S?Sl&yPAy5%|6UEM@5QzhC9KcR2~wELqB9gZE);!RROfIK3nhhU3=PZF)6()%
z)-gPHX|M6a-O}3)|>=xAfVo8@TV50ul?v$lWZ!pC*
z1xG$e`|*v?VMX>RUW-dsfu^CM6t^7mV4(W8LKQ|gpU1r35Dv2K=8wf&^9d4QXU9DO
z*-6e4oy3yylVr!9>JhcC7!}YOIlYE~S1dQ}IBxlDBmJy!^=UEc$u0vDb^GXoPxu$y8z=m`$lG=NoQXxNNO!O>0Pg?G3o(aO6w8Ij*&=oGMT
z7<|Ne4tD6a%UB%^c?&c?%Ox?Xa}LFHL{6f;eA_)p0Rs>W3=Tmbl~yEj=!a1rA9Hb
z!yxYGmlWAJjNIdGb2!@bgGJizS)z^23=+cJ*-j3Hw_Ps+K_Gad0ETxTpf(N@I!8zG
z4dAR}^MvU!5uJDBHu6q(ZCGc_aF&**m+{}9IP=|TgB$o9NyrKOv~})jprW)w`?98u
z`k;smLgo6?r{zeXb8L{?QYp&i()fyUd+qUr;Rb|>EuaP7!3_m)enS{(Bldt50>O2N
za7aNRL*XKdP{(}W{|3j1ke@?TijXeCIScI;;N<{C^vrhk^=nwB_YA89_3$K6Ja|yd
zZHOKSJ!FU-A}>OpTZ-JqAeq3=iJ|miod$~LNYO&e1jEJP#fiw~B);WQg;o>e%YC*3
zazWvR)%)O;>;0CL1Fkt(u$?vqrKGd*8y!EPS)1Hzyr|&qPMFuoOhK}%-yN`Z5spH1
z*4U4+uW=Yd4BEcXzNg5wpoLA~3=c5M?NAE)s+#cPJBnIxvG`PO+FRnUOg~T)h&Ur}
zLwi0KS@6yiK%&sZdvh9g7|+?x30ycENtVI|Ls|k3#iDasjcDJA1l};ZpeJ
z=n62a5hg$IL^piIZv%H4RdST#Ps0<2%C{95;u_Dqt20cmEUavv^*f+N3z_WDTH|+E
zdyU3~pb@?hz7Wm#u_=nM&9^Q7_}0T4EF_4*+*8q}v3|9txL)xyd#x9d9uDgRA$dj{
zh8q?yq6QLd5bJ09@yH#KNa_NNWUP`<`L46BkS^|*nEf#uGHJ4yvEkBcd4YKm
zd4dy?RRnW!LliWzrW@Zknl~mlyf?UCJnv3emzU1lcss33KxB7FfpBX-mPTOvWCF}=I0gj!LtTk%?P
zYO%HIRgu0jv1(^gYVl3c$q$(yZbg}D`-PvsN~q!_%IZlk$qOhFzwIqfFRGrJ{4qF%
z{`Kl>w8dA;*H&Ft8`eK8GR9&i-*TuBq$i2!Nb<=w$=`8^xj%D$=HIi2FV9{+>QTX?
zGN}_^p;a(f>M45`kE1uJ$e?E(sGdGeX{XKHbs9S_~{
zev8Ui$Qv=r)Z<;^{nF^w2;GReRMu$j8ggObwd`f-m42?Uhq|kBA#m~LHvL?2SE$f>
zEcG143;Th{w@bK}Y)shf+hk7fyP>fmmL7+XhSh77l%Fv=X{RjWl?um0D_b1Do?!lz
z_<2VShZP()W)dNt-0!WzKKXi5t-!V*&@9c&rdqUGqB>;jg){RR;~DQ+I*ulC@SDbN
zt_bU-Z~5{0V^uw;#n?8RHdIyfW>b8~?1QdJ9_mY_eA6b@1+L|;UtF_MhpD^FKFX&L
z56<;eW0~8hEOFkIl*QWyL+ln1+^pP0+!zjc5A+vw=A9wd2ll*giSCKRiROv*d9-;>
ziR<{5T|e`F);%vohwQB8s41R=pl6Z=RDtzA!
zT?oq>&>lbtbM(!1PS*|A`(+=Mh2>boJ0}NK2iN0x&>+ZCN|Kg{;6)?rxnYWQ%Infs
zL_yV^+`&TOED?R-*RD)%c3q2U4T_Wyiez!OH%eb{Bp?x9xDc#nrdyFn&q&4sc6A;u
zx?1u}-wb=*HyQkXZub+{3`p}xpMx&Nb&YJ+v%1DT{m!^X38kE5=;a#)R&4wp?`4r|
za7`FrSHATmH(!f2k#o{LZP^&ja8MvN=lGbZoX*x^>R9Jsa18cL_Ym_z_k(}ZDwec*
zvzOB*_DzZ9xK=``CY2Se)HbCat1^c`Z5eIp&I(>*r7M=N%3MKRI<8%d
z>aJ#kF|uQXO$3-euh_TbWcor!NCUaVe(L%M$IRZ3@^atSPj!%6wa^Nn$Kk-zg^T;aVYvZbE62h3vP#SLp#F)zr?1IF!?WbzU|-(5Y0i#M
zRXw>6(svca#{y%^CQCKdsnfcCAfg0fA3xfgF-T{72wyZy6bCUUkM@G7EuHm8ZDei9
z`5@cV%b?3;W0787zC}K5zwbA$M~;C%IcYc)O8KPuwVX~DiaJ!j6jBw2j3SPlyE7g5
zIB-243_ClIUSyyP`k#Dw`dF$QEJ1wM3r7(!hk#I>uk*KfdfE4gwTf;73u9rhia9-=J|)?e-U9X?bd
zbfdGP50Vt|7yFc+)gQV?tfX&_oMQR5_%11a&f?$MzHGgwyo(-%rBb9*WXRqXvc{_+
z=WS
zKWQ3rH$EB^wDA4<)OS65L3cP=T?rnoA5}A8Y;o~HeY`!^*{ZY0j7nfvdY%*Wtgry)
z*ozq|0S@Zx3>4W&dT9xb&1sWiT$}%T|Galc%)sWDB~;HKpT9lS9tPJN%_6+_h#Nff
zgl%YO;aqC4ia+*$;uxU{Py6Yp`|SJ-*Xmv+<k{b04ZZUb;v&{9>?MN?jm*Vx{c$S6hB
zOLoqG4+|I|^RGM1tV}G-|6j#iEY1FZiv7CtyVzgj`rRD=ugZAeT6&n;Xo*|en%X%7
zT@z$w<>BD}tDXPXt$%y^yQrG8sgsz!El|=$P{r8E6sW<%-sSJYf8PAR1^;SO^WQeP
z+1dVV@{c=zl>9XYUPUKMpf$r^lPJi_&;0-T?(gUMnSagjA2a@YIsf_=SWm&{{LKIC
z4Z-K`@&wILP{L5s;v%XZ&Tc=x2oDI@;aofk_S1nxZNA6q8cSEV{XE@=J
zk>II(SzI2k^RHu4@8SOZuql$UvMQ;UX(y5ggzD6>**FLO=e`tK5FCYQ3Qjx)G$z>}
z9|ua|cF41!^q0ag|9(I+Fc`{G8#q5@MEesgW1)~@{`tI*5Dv0HanBVkZnXTjz+Z*Q
zY2Jy-?5v^jXi!W2QJFAIurOTnf(_Dt9*^;bbI}qmM^5qeNM-w@eqoWnYT0Dk8Ge7I
z_(wG{dT@Bkae5}HOn*ELg+vP-obV0*-~Is|73RVWMWKdZQpqfy*m!t9jDL|deZ0Rp
z9bl;F+Z;@W9P(ex7swNaMMT6u++7U@qY|E~&S`1>F)abdFF`-zsVOPI+4@DwRQQ}$
z3HKW`LP(>0s5z?9g12AqH<|robHzfQIdCbG|1q0n&`)q+1`DB?ma`GQ31F$to*K5Z
z;^S!)(->|q_P0+4GBQ$9<2^mWT8A(HEEnJcBl0ofby22}zrI2yuc_NBtt#s4531%)JB1E2AXr{hla!HfMF_~mmA1K+8GK*@)(TrucP_|c1<@h|yi
z!)aTNmrZVvIPMi66&xmAS}YocgrFd}c(auj-+ZMn5>8JKSLwEo{~2z;5N2P^s+(D8
z{Wi`k?G!yiZaa<+e0{Ufx#=<;?Q>x{TK
z3g+hXI65?N7igh3nl$e6*!=E2JWu;+zEnz$59Pi-<)pdTTK;Dd@~fQ&P+&n
zd5wN|xnM6JD)rrJYRHYuAEw`Ws#xs<8|BdE&uAg8tTWgB>3(3!LFbj*TYO^AK%Tk8zblRjE(n7km-x5FE8
zOmo%}F`sh~9C`CPbdv0|Vaw@!rE!RsFP!5dB9(}T?A77Yu)oU-!J7>%^EjVBkEAdR
zIXN)cI(B!&J=(7VkkY4=h>RJ@|h_U;Lkh?Zy*qY3f
z+>Nku`Pk|UN-~okW>9S#m+icXK5GM3@Yy#bBx;q3Kkcs+83Wu%CXsZR$jX&6>VxY!EXLXp?Y&_x5#nZm&9wQ6dzodOm^c7963ao&a+$nST`rUY
zjHsbi?=D_=O#as%$Ed-4e2yFS%VBJzP;i%oH5x>NP($s4V(XDzGa_7@Fl1mHKbb<2
zN39t?ZVNrp9W`HNNu$XkQK;Xy1;7fD5+5-$cLj(oQvQIK#pV@Lw`r*SK_*^z;j!@G
zL-nWaf;ND|#KMwCtU1e&qI*dV*VVxOH%!B$2!nTh5IFc`TVL`BGy?XXXGT+!aFr^>@(5n^CP(MbKD`DMl$la8;eTIwWb%vpIjbZ^)1
zIFtU<36e1)iIe38{r5P&j1hpN_|Yy;`JWzR_EEz$GQPX+b}*l8X4Cqw1#yJI`1t&z
z0g8K+%DdqIIxTrP3Om-km+52wr_7l7$SUgr$A9V}3pgNumjpkQm6uBY$1xQqgF6n|
zciQ}%uUTodWjPa|8|Vy}GIC(gj?=hivmL=Uqitj7@yjMNQND@5VOQivPrx7<^0?T;
z_VxJLkTch~jnN;2>Hcz&`kx^MWKcq_=`=Vc=5*z}A}$AfN8Sr&ecdP`X(UZNoIHMG
zBYKl?TXFFqr&oqSxBccp4LDPNIQjMx!ceAD
z$K`0>mqFqd-aT*ID?o+|)8DKcnn
zVbrOWLn9Sryju3I_$7_|@w9sfIA^-;PEf^<#8OITGzqjshlj@nz#bvy}+p+`E
zV0dt~J4&y0DjQ<+ajVl3;I`Ni?b0R8^nsoD%5*R(F_X`|fvG~Z=<{QX{sbsW+3Dfd
z6*ZP8pZHUH`A;ohl}e*GMLKomD<*D-iQos%+~!R9uZ0LDOfhH_^=Vp_JFlS8R}#IRdw7hc3L5=7ZoIKi6|or~
zEi@9KY+`_O`Ph>w=o+$0;&>&%<~=RfD#~^zliZMS(tWyDQt>?Kq~jy4q+*XjP+(V2;t;gOdbk3y``y9Ud6@IBc7>28Iv{i#>zkyT9aknkF_{la-`=!CW&
zfIN(&LQnkgb$qYw;(x(UJd8Gb#hcS{`fnAoAD?f+N8yGl%mRR56R_d*QL-gu(aC*%
z9k&Zkw1fE}7Aw^>Kkc=Wuu#bYka3x0Y-~&~oC*alhztoG9o6J$)(_^Kd&t#uMd9Zv
zjm`VSuTt5~53iRlRaG-^Wg<|fobAozvZ<|SN?A<<9j@D>{qnMo>_m_colFO%kuq(q
zhkX|g(d#s}AHLZ5-d@J9QA+d;;j>R!dvPs>>*Nfo6erfN%WbjR>me6qMR?Y`>j(U
zmEAjuj;VuKA3*!2jnDJt3Auw$ajG(=FChyx+xV8?CD3AKlS|?w?Ct*Bx1Lzx$5Wr*
z^zhx!{#5)b%uA)hfdX~ui>oGz%r|GM>>}JWj&kL-qP!3?x
z1!)=78IuD;&<3LY?y-K3JncW-MU-lPm&x)tr3=$&zfA4v7fonadE87kSgb@<`q3Sdc(5#I6G2!sRke>cTgeUKckWlB1n4H95_~ziI
zqW^WX4|HxpmXaorl&baAEF%-2ZAarFG^7#GD^7)@3TK%)9e
zwW>`TrZGx=ZcZoUB`pAkR|IkUh=hutONpb9F67@5<|&rJjY1Lz5SYPpMz^RKcYrJW
zC{fZ&aGw+A?vAM_DRcG)kG#O8fz129nUjZSo-1mN#T0&Xr75)zWxge*3sK8lcA
zq1Jwd30>&^8yN60Y!+i=8Yjj^MjM&#%dCtbnLvlsWPLAbvX*hQbWUsP)*mB`r|l1u
zznyYbHk3HC3#hAx^S<`oMcnl@0d+#xVefvCO5rD#=%^^CL$q6g8p0sIn^RW(CrU6p
z$pyU{Jwj$n1u|I;d3`hfz%zjt^numI0G;xC`U!rUR<4XmaDg_C!c3a8Dnvc$Tci(}
z;3a}Fyc|a$-HX1H*j*~D5d6Mf%&2vrcuCY1x}Q|0EnPUGXL3(NI!FcC71mw#N^vH1
zEDL;wp7acraA5kCP9&aQwU=w(hpTFs%k~hG5eJ_7mdE)gxuczMh0phIJ72UsxTT&H
z>w{Ccf137wc+W9xc#}(+68km*x{k)D#L+6$ua7mVCiN8FO?XXn}hN
znXkLjDztAt3C0h*ZZ&w&Mzh>DObVY}d?!
zm1W)4Z@5l5e*wVw@~oRR>e9|6;%28HKNLc)p^TYob48Vv<8brtRZDk*`3ZEtV^|e5
zAEc)(?$%g*cC(aO=LC#r(2yEv*k^dma9uoEqP1^?n2+BtD8P1cPu!kQD$1uik~Vu?
zu=W1pI}+v&kQoDih+NYD4ry##7*=8Aw_t?na<~sidlYXdTsiI|QyClVSD-a^$l%x{
zCVf8=K2z4cAF)|!nLH{&eE6zS5yhLUkb>vjiVNoe1Kx7r*i4|Jp+V>xJVjS)pqQc|
zj;kU2Tx+*vG$D$zTXe2D2}IaF+Ah>ifj?gb*UzpzohX_uJT|0|^cvR*G-s)|e;SLu
zgz)u|eA2L827d&9)*o=dZt;u7gJZ`P#}7>qg;Vi6H8gxIyn6$F{Z^VLbxcsw&Wn>NTK;rD2B
zsnxEvp^6tue^C{NUQ5*8($mwECb`|=9r5(-87e`a!PBhuCpn^)}<|GeHQ?-_)s35a!rUOw3U9r8;#x
zJuw0rkurwANr%XNC$xnIO~C8uNJdPy_D{zc
zug!8Z9a`sXXA?#%@(D(7A}moH(~g}oiGuC#r|5XGc8F}3
zGhSX<(ZGGdQZP)OtmDv>ls;^I^4py(jF!Fs@&)!J>^PE(U?M&z7hmY{B>EzPaZZiD
z6cdL0@Wp4)hGv+_PztM=$MZpWv#Bw^Re_K-*Zb=eY6YTo?~T4#YMafO@yn
zIEJ!%!f6XgIhGjfyvff&@~Sd&b>cJf(q6*5@m*m)iPz!P0t?pHGJk>Km&rsCZtTRCC9|UY^sBGCN;5ty_Cp)IzDzS7~{uCmh38G8N5%b|L{kkkhscm)nrx!dh5WL;8Bc6ziQMp%LW#R2q3R
zDv^jqT%T=L#EZTzq`>+HS(+^J;F}8nn=|4CDeJijdz00i
z_S4KB@$FjArYClDh4g1(9%uHh@{V$TJ~xRP!=NW_`fHH=MZLoGU4D5wN(DComf7QH
zR^wr_^V4r1A}(CErhUDdgc5qEODcGM54~5o*`q6MC#drhK*cI>XJi^z4xx&Um*4kh{`3Pv4ow*cz{Dx=k
zkrF+55KcAX+r9zlc&N=G3ySGo_VkYk)>1SK>Qcy#B>=B;=l}7NA?%sgD*{YWV9bOuc5kQA#pKUy?Bq%F_}z$h*3F@=zT){*^$VgcsU9|g)2+;H*@6=NJ)8a
zRx`ekc+C`IPPlTTFsxc_299z_;(#GqLwA_SoACTj0i&+2WYdDeBL)GI-+B{bR9h;0VdNPc8n$Bak&|L0w7!G&wXHC)
z9IgDByB=5zbE$>w{@Zu&&iMUF*66!AhS+|}SdVZ#G)raybHCMKRvl-=rEkseoygE1
zbdp`KF3{g|kizk=Y-7R)9VFETi#%$}vW7{EH`41`FPLJDtekax+bM>+MijZ`qZ_gx
zXt+-ot&2)`qDpr7A1N#VEYqeUC7pHZu&s8?$o+4JshAb=`OtR3iM~M7U
zjWCR7()(17uwLb#B8>l6HygrgQ{hp}9H=*Q&)dPOjaP}gDB=rvm5_CF;7RpI5227Y
z>|sEQK+s~yAs)ksyDQSK6WH9p*kB}~1th#0+jLqwIy$GbtzpK3B=+PG;|KUjrm6`y=iqNwy1cFj
z7V{S$k#WJLcOf`1)XviIJ!i+o8_3W2usdTO~Jz}086;H70gjPLS2e7Qrs_=VunY^9jhOgV&?d6s+m)OYP>`;%m|Wb~nO
zbK~>7@I*G7=xi3Hd1`7IAhH7RL2XdSDWq}Deg4|nK&-*UzBrQ>^G&<_EYZ#s}r)V4zA&<^PEp}IeQbGI;i!VQN32%mBjkA-C`uw^RMv=%!$
zIz8UQYt`9hTBdtaMfT$&|84ik0`4Wq1_xmP_$`G-%=;1`m@)j1*TxgolIUU4(HhX-
z^xY2UO+6Bs^t1^q4tD3i@0$R#;dHpjgSu%EAF$aYpPuJ&vi`xt8V}AAH~^*>X`J{Y
z$Yz}yEzVmb<4zgLFR@Jla)ote8&tRGdxfY~=hqBA9Vj`y;Fir-%wGP$v4-To9@e`#
zd-9X*@DulDNq0oPeYW6)=-@s_S2{W=mt4!eQ!dl{79GIg<5fPihma0D>3a`%d7w|n
zd|0e;C>L@-%G1kHcuQKJ{M3BeXfs={MB;M{P3hyydgVH#@jz*_gJip3L{Rv2ThCn+
zNeBd5MwH8Sc_szHiQO6kV)tS$+*Y$vk`Xv5rts1E**@GHmob6Cz15z^F>C8?SnU+~9Um
z>{I8{Ad;F;GdF}KOxQ^a(^X2d)v^b>>sj)2J3qpzva<1v5GN!4yw;#2-Zv?AvjHRJ9Mi
z|3rYCQiK~ptfE=j^#xm?Ei!uTQhLSk(GXM0OW;O?sxfV|$w9fHdVlsL?=4V6fD8=H;Hq|S^oUQNI4cmT0uU>{Ftlm5quTSpy#U7sa^6Feb0Xuu;#eQh
zO+fYs=7tf?9|9w{<_a(#KMQ6IIVo`(%gYQN{nWc+^z4g@^~>uMEPVCc06dA5go>*A
z=i5JrftZ7yB>64!u8FaG#DrvzXo8rF4qqw5Q%>0z=e0%q=(EKCMbXHv5XB3mAwxnB
z&m3no(T<-UF6_%^_cu0PXjQwFAyt3PAG|g6AnDvFRLFK)+Lh8vgk!BzXm2(j)yJ~?
zuy)hvy4UvsKJ{vPsx)<#-N63?p)59+{j%J$*PX52I`dQz^8HFgE6ZkU4r{g21$#Np
zc$tm{Pd*I6AbAJy3^CRUpR$Hoz_#CLmVmPU$2BkPr88VcmX1>QBYn2hEN?(qgb;*y
zFY6{x`geSP%pkh|9>H!tlEQm?#ZXbtBvyFTb3rJWnmj>8)I24*KV1f%erh<|&NKWH
zEb(Ju^A*E>RT7XlfNfyvh|LsX50d#H-M^zcdp}+~*8XL7ghE&Ue;8#>m~7ZL=_A65
zjhZ5>kws-`Ha0Yf&sMuGX^EZqKF{{LZZLuA%Nh#kt@)>IkRcn(Mxb{v4HgBV
z<2E1yVlXba>2_L_W=@a5uaDMQd!UGOmRpZkeT*dL>yh&llRJdY6h|5y4zpX+_D`bJ
zfA}8pQt#%OHDCo7`yCX;bK4G(1CG$MN
z6>_Jlw!L#pEtgF(Oz{V7cKO34YVa93o_38?x`l;+D`-9C{=3=tkp8$`;=lmdXR{`{
z6&2P*H-LK><`PFV8t~m*Q0`_P2-UPMRsPWLHe%al-r4!EuyQ|-xQ@-BK45u~x9tDq
zdwS&$ehCB>*h^GVc2-v8ECRVn(9hdpeKNSzCU0Wd-jnri)COI{-OMTa8!3qRoC2u~
z)#qd6=K86gq)`{!;Ar7__zs3|PQ7n4-}8Emk+EyP_plp+7cLwoJhOM9D6KOt(Wto8
zdcvaiE8aJ{O3o7SPKhF>w!(>`wGkBn46mob$QAc@y@k7)ijkj(N71{q10J8ANO@gC
zwV)A*xk8T{oQ2$l5*PlNG(%xwF>&OTy~(=hRQ{C2({~<(jx|)Sscn;mqbb*OrFpn$
zGwZoL$0k{m4(M`G;y$HDU5eAtr5Js6hoEJZq
zFmEkK0md#aU&g9WMNg~2D)9xA?kv9&c1bW0L)I?fCdxkn&BsO0cbbq4fu
z_~k$0PBxL8R0+XSu%k_14TK>BsU#P51F=bxQm>9YW=Ov+c6?xW`vG*m?iEkI$b4gw}u#Km1$^
zHoqH4WN^AUH4TS+81M02rsCDLK(@fLAUy23TvvE$Z+};E1om}j6!?o>3D;vvMHkY(
zW=JH9+(-)sjY+jhL)pUEb}r58FNSSI+uC1b3LQqd|0aSUJGke%Q0zvv7`@Vz&@|9B
zNQx)-Hp~h#H`~p1waF1;smuEt=PK)MCM-&y-gct-HO2)XQOo3_c&a=j0w77RbiT7Kgxcy=`h48S
zTQMPpHqWfzb~;{#=JDD2c6az~!EU-VHGxr0W+YR90Z{AR5}7M)b?AW9H6mV@w+dOW
zcW-s!CNAxq8>j|bbq;0X?f+h2vI?wF4&;OvIchRhUpfX7=qO
z?Wz>=lZ@_-&}93`3?#my`PtK4zP`Ok+~1IF`_%H_bTG^6tpD%~Rd=(+?|~Qoiuk3Q4^YK2lK;;HZ5Wk0wfdytNp&T{Nq!1>;iPOaS>
zy`!U}a+88>Dw}7O+i~OIvVeEKQFl0IHi)@5nmBo`+Dv-JZYfV4qFtcpE9hQsv(Pwf
zvRS5Z*!%4Gon
z`A_Jx8q&@mVy+gAMbB?Pzlj*A{Ml=oR#5%a292LXkte^;)o6EWI@jvos#>P4w(PTS
zOF6;6>AO3T&o_{g$yeN^7OTT;FWvCfNx8|*Hh!w5+4~dj?FmgbOV$n$O~;RgA%B6P
zq!~pjL=EAqNe=Y#m&IX@MZ0Zr&t3*X;1q!Ru?}fmYI2u#aj6MQ?fy=qn04-D4XR`b
ztpp4c;aY?jPY#Op>phHRC;OWldK&(l<-@i0j}dG>T@E68J~!RC%HOp)Ma)qtyhjdr
zPFFk8^Bu?0ex+j8#K+-i=!@?!Yj|#rrf*;PoecyC`rg&^F9OMaN%la9(1(e{d)<+p
z7e?vRh};*6PcO@5GVZshG=?2rM2|_cv4b!TZ$z8WAut_8wkJSPB_Uzs#iV1{j2Dod
zvUHj(^q^I&QE~WP0mfEi2X7>cQ%7Q%PkF&R0f{P=)%TWo2iDfxUAK?;Z-)}2hzR#W
z+33ji>QI25!Ws#@_$##`Yc7+%7=Xjp3IW0ZmyRjbY)~dm^cB6mfG}{|FD6VDDyHrW
z-q}=PycPI?6>=P}c>zT!aP`owYVloOE`dt6C27g~vX9cZS1LM7;D>jUdZXJe1?Zsu
zkqO&|>PN{lk@Z(cNLV!U>)U<%lcW6cs8s<#F-Ta&oFI&m1$k6t`U6U%^-2*f-x4tep=UJPm|iDD%!?px>RS1IaGuj%|>=
zq20;a*9BsmMS+AC3(i!)tB${u;A2J+;WpQnTa25~3^if_*V|9^(B2ay9O{s~YL|v%
z^kED(2u&Cy{B~Fk8fky!iD|B=#7$1g{-Wm-VZO=TCCSy#+xX)#wXj6>S2_fS2D;t!
zT|72Dk@!xxL-<8`%kw~ncbcz!^M)F!7zRq&
zo3i!*BOvw%^P=Yft(euoQjBS*vY8I+@Wo;oQuIan>92LnkS2P3r+}cbW
zZnHKMA!xcS4t+(x42~h0?7YC|Py{-(RHqyu#lveMceYwcmb4Z9%#9X=Wr97GKXx5;{-!Q7r9&W<89@e{t
z4^BjR!t8>#mi6-~pI+nsR@nl2Y*-|t(Y0=~)6{)m#aQCAcPp<9?2KFqxop0Q{Y1?-
z9mFB1Abb^psZv$skylA7exY
zGa?*X5wtH1SG;_?WiUY&q3FS7I!y}Yg%PaYu@(0|iOv^$YWhcO>)jC_8YOA0+rc+I
z)t}xXq+G;^Ml$O({^!`|>f;
zjiXF&T%n?A36nJ2v^SSYugR+n%RH@RUX7HvU9|W1ylAq@<3xka=Gwt>rX|y6+!W@@
z3NLXI#?pJ_>?Z4P40MVWfauy&4F70xbwN0teiwr4)ftS6uX(UsywQ8_@1Kzr(+P5
zk@~Dc<8!%uef}g~{Yhx~)Gadx**-3Ql0V_N3rJOMcTrB;_gVr3lK8_V?><_+oBRMb
zVXKl^@KZZN-in@kYHT1Djbh3~2m8T3ugiOo7YrebLykhEYy>_xANYQ5=PNtnJNL81
z>yA4-rB>Na{
zts&r+X48H3NkiMEg6|4Z2d3a2dCnm?L$Z_vyys_XG*T-DO)_H*L~eOzjXkzszJyh+
zc|+^l6LM`ZmbBJx^W#ERLxdh<_x+R0>%{CcwoiUzR{$%)!|YM0cV`wfHYd$^;*q}u
zeK_VinhEpLM1_8~)S^q8p$sTNVbzBPBsDKCmWR_@+wQNYzbfhZ=<#SVcG|I{
zOF4+D`JyL%LJJ;yeSq6mh7HS*yv^RqyhFoNuKjF{v~*7JG5&Htu{;{Lh
zV{mHUf@CtHZkeG3iw=&z?Px~EV{h=(tS^;J-glLz;eTv`EZlQ!CL+%g_iRDx8cJ1o
zNgJ9+%7iuozYJCklq70`3AmiPhvOK-RMt@MyFk5GKi>vfWAT~Yyw0+P+J3P;?5K(Q
zaUh96vHV&?(Q|=qm6N=sAhm0EF?sTcoFlXHJD2|=GhRS?e5Sx5gtu#By#=Ghx>M_b
zQ_J%r3D|vJe8D5wLEMMPS=!c`rq9sd@|0ZM&lSe!MV7xmTfE9*&#dvke>ie_T=euV
z*1GA&;+{d$@(KJtc?DTXCr@0oWA?y9nHLgd&*idrH9G4rcQc(Fg=i>VWGg?|k9HT1^;*bb;+Pgz5Jm>c{6IBxgIyyP}tE1Zte}}|gynxxQ
zMuUxB8*k(zk0<7_G|F;hiA2SiCHGP3f3}j{7}vd8xR(<{w|LAkNo{p
zSbzk3irMfPdOxpoAh`lwE8z>hcpI#LJrLb{k0s3CREU)ESb?&HzdR4OAiIMXq9U`r
z$CokCSM~c3^+TliukqPBj(8G*wzy+MDWGlS3=5K
z&U%+ln0~W`j!*BOy3;$$y0jQa!?1dX62{1jXfK~IeziB2G!lz
z+mR-&uI^#VeYu4%>9++X(?!Y?x~A5Rz`b=MH+xORsYN=gB=QXgE;z{&J{d|>VzpZ$
z-64Aincjx^ro{HT6T5}@O!e1MX0uipt4`a@s{&;??xnI+e$Jb$mrubC0{qsbYB
z*}Br%c=)eGa)=Q+R%r2e7T(|d^F3Tun6L>M$>BA@R5hJ9_3!xk|9avX()I|85XfXB
zJP2b(y_O@}f&5RoUl(Mgn5%jHKAJ^fsy};mOb#LsT|;|W{?cb)DDJ;6-ei%-Y^`k#
z_4BJ3GSdFp>tza1Y^@a1%(Ee#sh)|rzj)~13ylr4yYJv^+XhxPWTg2&Wh{;AJ4=TE
z44FtURU!=}z2<>B_2eLn6R+=NlbHwG14A|d$nX9`^FIQ~s_rZw)W`NHfT|BnS!--|
zh5dAb%yULl83}lGb!5&7zlX3A=CJh>(Zs|tMJ8wo>&dk;$cAACCR`4me<+7eS(*MKSTSrCpb^qhiLzhZ-NlPOG(p?JD
zCEX=GlysLMpp-Py-60I!T|Bvhs02hlYZWMkB}ia&7+
z5pofj%?0B-Y$GGo_oaUu7OqYcQ>iy~^fCvS@(-=b)PV?OUM+}kA>DR#_0h=!pl{{E
zJqtCIXEG0)4QkaQTMeY_saJ`K@OeE$ltkepp*M)TLx`vlp|Srhp8Y9=g^HQIWD0{e
zDW~x!gm;CQ{|P!GrvNCt$!{a{kBq4;EF{kuDnnqD+bp#g+y#(32b$gXmGAAMwnjF8
zeNP0W5#nHp#s1I$A(I&p&mt7UN_BXcb&8YH!QPqxXmQZY@uy@{YQHg_
z9rQs?%O#+%F`_=@I@mKJI(m9WT*V5kT{xGK=njXa9j60n=pcZyDv@5^jx6H5ym>m?
ztZd7ivrYx8cbFl*ow6`8yj8C@leaFgr*wa~<H)FYWdzTyA
zQ%3+He^IwT&6U-$+~OWWJMe9?NWG!_kNmBcy_T!+Rg>UVmZ-mqJABE!oi+U~$Tw@D
zp2F_67u-j6iK~$2=GgevhhK92j(r-qOc!7a@3mE~&ZqROUYQqA*$P1MpLNCZ_!qb3GDn*KmA=-(H&iYwvbMySg91S(2T;u69#X@h;2*AK_CeT|
zW(9PV#^yuq{;Pg;AFB*H#F6H>YVX95uM$;788!!#6P-5<1t^Hp$_wXgniui*td|$-
zK9L2IWiYrljw%aU3b~DPH@i4fg8d&`Te%LgpNSNvw**1{+?98XUdLueOC2}2wmL8U
z#pRAzBt^^;*G3g6+dbF3;bj6Vt`CeMPq7GH0Hp`4W=w>YYjddO((Q0khf(!biN9Df
zR0c7d7B7CyZ|(6eUpi_Fi04gid{%rSA|jHh9*)DBv6eNwc8xfP3?6P3Ow#zv8{c_G
zGAVzh=Y0H0BvX3-i0jY$bLZyBU$t1XjHROWmWuAv;oh7o$}%P)obUS}2n&GGea4izJq
ztEM>;(H7wL$BTGRmIu5y`ksTyuN0y!ArT1i8X5pfgYexiejyDr7~ZN8*Wkn5uLp~B
z+9;Uq@$Zj&rybuI)!VInGFU)KI)q%P2{=q@lUjj^h0VgFseVVC&+voNz?S9d8e<+n
zCL1#!>UsMsH%?g(4phW`>@O(8mJSVCl=Z&9rCR|V0{L$9sY;Q~6v&|#p*9hab2SUE
zlqa6&IfJqCHdQIJZ
zJie~ipKzJTI$^cegx^bPucITWeFA<^JB)i*=O3cf68h40cp50e3!M1R8cH2BkZax&HoA&vD*UIdbf!v)KzDT-E8fH
zGF*4NPAzyhjyXw9$Hm1_3b3-CBpNXVtEDdS?%r}k9P^kTT$@P#=tVQe&&?4{Y)PmG
zs1zVf1#&07(CMjVjwO)2siwidCED-*&D_;mo#K#nJovHk>5p
zR>?o^_#sHet)u1k%Q&^5-1tN<2(vw<^@RMcU%Tw=Q*TMcYDmjblb%V*y98<7IX%8~
zEDA0k_hkPD{n^rXie!`>!LcobFr4n{3irLT95&qO=A5&D)oNREn`ZYw1cSR`5__11OIjb7$K*5yX%xWdD_<09b4KMpEcZ
ziq;2WV-*PbuTNklE5Xd_g#-Ez$d*m&B$dYiMVIv4lFPGL~vsmL3-HATeKnNO(uuoZYRWrRk$^Ctus7j0wiO=NIj#m#X
z-&R_?Wc<^wp4^Tz-lrN?eQMTzT5tb73X(DYNX?RNO`~}S5SzHKLOs2GI@Vms
z!?WqoEuU<$0IL^FKM;pb_@+_7b&$VAa{a5HdyD%%BOnsQZnUT4GP>G~%Br|WYN~J&
zMe8E4$D>myQY8LqX>R}&%%HU;QA8YHg|0M-!pBta4z27aD_1FG<0#)w=nj)h_NQ`Y
zTBXS$(Gu9B{Un8fS^|wJk?Ymfr~C+qN6$q^h3yvF>eRR04v%Du`aAUe8!{&+w8QQ1
zdw-spO}UDq4k)yorCC4|R_Tv+-r0Bt)#J;X+(rk{^7d0RllO5mF%8*f-
z&db>6%^w!6bgkasYMmBA$S|a(h^y>Hg3xcFTC)EAFAGtsbHT~a}6!ix(z3;#{B;ATC
zjf5}(wJ)yNt80RYIjZ@#J@y|>3&wZ}K#0cub1~9^wZ3XKt$#SS`dWc-#oqPPnpXf5
zPSyUggn;7&E!3Pi()%dG!@TSIWJ?j_Vo_f*zVrqhdp28cV5-uGOK}=}-I;O)p?G^@
zVRl)(6aCwo2bOZ3>bUeAa52GDX6v
zTiYLP!aEa--%j{)kLz(mRS7IMKj-Z0<7;My@50Vl@^~cr`?CNa2WjXiad1J)%^)mu
zpPfA%wRS{-P?YGadJJ2?rzSuzTmeW3`Xrf
zS3-GThG)UWM!Z$Ks9W^a?N!g=M`
zJ!^7d7JZMo+qCawqt+hge%3QD?mb(on#2h`ROIJb+Wg6)%}XFI2H+Bs~YrY@Mib
zXk#Pg*%)q5C#6>qlGttS8%xO}W2&Ev6_>0#w<>h~{#_@jrhfpntT3Al?faG34cUQ3
zcY7jYd2zjf`OvUu#%L>{OcRu0t0G;74#H->ZYn>>u>}IxWihW_nx8(MVwP+(F=6P^
zU-RukX76^+-I%G<({jOX{pww}!O+$ntSUbJo=SN0rjx(8@i33>brF@1!?ENpj=HGxp4R+t5p%&!AD4|@y?Rcja{`@oI4_Pn=%v!e~%bCdmT;dUx)$}cxtJW
zjKd~T@P&wvak|ou#wz1X*lU>&2bUIW#Wtx$V@T5?m3(_mzuU3FW}(aT?D9aK
zl_}Od<(0IDpjW+f$8~jBc)-WNZ74+i2Ra2Y7E~`Pq6r?-8LUez70Tz|=S(TgiWiK>
zFIj7fTyrvS0fpm+KCC@-p6Wyq`7=O6aRsv3^<2M*)xK4VwkwDJ7)s$xc|{6AG)BjL
z;B>k8hNV^64)iXT_7?t0kMb)uK0qaO@p!_#N;ZMCLo
zdJpbVgv3b=vzRg=lU|Wtjv}oflt3MXk5}RTAv>M)7Q~@NWea0@%kJ%{f96l66#Xy+
z?PMjCd995z2#pL*u34|7v+)qN^V*w{edG^>;#r&x-
z1bjdvib~fwAs%KtupkD2blATj(ThJ_B9Gqtl$Wl#pH{*}goKnm>6TMZt&f~JuW>NX
z{iw%J3@|NG+F{=32iEPY;Ju^Lzvl~)5T+9(+i<=Aw1EN?mo9`xlSjM^CI}p#NN3?W
z8_+|Z>>cTD2qQBT>y|K0ea!G!c>9QjnP~3gYV{~QQ|3I8yM0ru
z?gaI=YQx8K!fV9S?Iae~)ZRKOsd%3D5-nJ$bVi=a*EI)2LehPQ{)@w26?u-~QBPC~
zF(+QRcsP=T{Bckm_m3$}fV^m+;8e$Yx2*fRR4$N{ZOK-JxLv7GDf8D{Vk)7z^VWod
zr1Se@zu{S8FWX#zrQ#gRURU$!(xxu?
zWQfEo%-~^L0_XbxrY;D1q3sgCNh!c|u^U9Gxbio8h_jn8wg4RhRv7Y0D&K^&X>f=`
zrNc1oQJu3u^5TWKl!~=bNm8{yDwb}hjXoR;Xb$dcAyS1*B}FZyfBcQkXLGS`O$POT)1LeC6piqR
z+KwifS{q;i*~@UYrXRX_d^j}*ZZqnHjwHlNR*S=kD+3gq_yZ~Q6=J2>VtvKkX%DWk
zrZ(BU`s3)ucH4^5YoSW#4b%!Zgy&X{*D7Li)O)KOB>PfpoY=v}Vos9uKN~Psk>oI8
z*KJOrErL_nGu~{b7^_5w2rCfctsc*6_Px$NWMiL04x1gb^{#};chHmLHtRVu+;hLZ
z-F{aOw>Q+hX!ei6G9cf|!bRUXGxUkFUpkY^=npt6un7mXf3zs>JO1QX3AV-cY=NL0zr@Ef
z7b#6lzWu(9UsVZYP6CbY`M+O^?;I+|jnx=BfWLFUDSrVyHkKSQ>pe>L-)^?+4CEXp
z!j7eJaH;mw#(RDmM3gDuys0X36MPb^qL}qAMKk%KfC$I2h|l%Od+oaJ+}#vo_tXyK
zyMz8It*?0BQa>UEiMf2mo|2E6P_YGTcOq{~_6M*FGt66#z?{?fc|G6Lgc@HXTy&#I
z`r*x3VdCw$OKg;W;fe7K4L{1I5C?rBA??FGBI=UEQ$RTSWmu-yO$w#1woe0WZ|un|
zV90*0m5VBVFNa8TK`+BiSxKwx<0|y4Chx~hKFtG?qSe2188o)lYT-Dq84XzO>y7hGBIKQYrR=RIq&6+zqfyNI#p8GeA$Ocqn!Ez
z1cf%)5vSVE%^z`M4_{TTzPir*;muk-adWj5H+^y-xW`Cl6%R(pB25rN`M1=B*}9ZaE)T`by9IyxQL?@3f>dyPn;rD?Db4l$MvWtw<8T+X8qNs}|2MlA
z;MZrP)i*7ptIn>1mAavA4euBECvkoOtGdhBs*zWa2<0ez;=xd&llG}~V+w0S{RtQ?
z!79YvVkiI)KU#RhCGPiOGEwTL8Tc|O1q>ngWRkE~|ZzUJukLy9*zxGzFLRcTm
zNX(tN)`?l&k29=;>Fh=*HUbh(5o}zo_M)4AGH|C0(t9n78T~{^sa>M@$FzDM!_&m;
z`%U-}&KrKuTM2tB$@XC_Sg%{aQVOTvfKe4zo4vk?c#=GHr$nU?bZw=&b<}u98Z1OUWnT0$k80=JX{e|5Z(OJ=?nk9Dl)BN{E8|Hkgjk`^R)thJqP;cZF%~=&Ig#K*O5>c&
zK7G_Sqv0@PT69!Fokyeu!||ZBi(5C8WHX{h{!mTfJ;WOS;WRx^er*VFUkP_=bqfxn
zMomjjc#`V*b=+A)E6C~f;Oh;IB@6+?BG&0IEmf4u5l&zxP^HKgviVlR@;@hOIZD{w
zHbC?|497S;Cah2Oe3qY>^rG2OfTQwBqGF0eg|clNZ64Bzct7<$U+^8u=O+^KB;Ie{*k)b*?dS9lO9_sA
zOt157iG->m1Kz}q^gqBI0>KMv%^|prmJ%GVAlE2^C7aGgk(MLS_gT5uT$R*HPpm*ooJ|W=<@I=eh
zhZ&~~cR_w?Kl_mwQhbOwFr@ytB>N8~yGfjyn>`pTEWD)cO=hcHm`8bXE!DI1q+8e}
z^P_LS>V?gWt5^Rr3C5Go{{h>k+&|UC)r`F%b}*y<7$)(QRdaeeuCT6GQpe-*bnwl~
ze+>Y|I0)s8^67;$`O(KNcc(00)Vnmj{pEgn?37E9^y2M(Y|h&H>tl$~Y%EF7C57h)
zH?%#Zi@;lPktV$t`=dsNhh8p!+Yx<4{*Wl9&5j8gW9)t&gFKEiPPv3_Oh0#S9aDSE
z@bRxtxKC#^v@V@(@&AKb{$dQMBv@)f5A@o`Mhst&x#wW_LI36_+%szll--6{eReC&
z{>J}N5}s%=Gl$oWdjHq24X~-?LQJrjUV)DL#(t*mkFNYA58!AFfM7|=swpv1-3-_;
zKS;LOL`2yC0$e&RvUnC)G>YZiGUA)u;X>BS#h=gO_aDSv461Em56XaaGtZ<4gRvg4
z3x$&4Xq9TejnkNx_p#*r4JGL^@iExm*AB&6;y>XedIhPqn_M20YYc0B#!tAW`eLYyZ+*E)jz9;kWOV!pYAb^P_fOwH!}$>xJrk
z*PU_074P3j)+?<|)87qbdsS28X&xw-TfW%x+s(i5Se{Xhr4Z#v;V>L_!eN9kFnK>;
z0@CUPM&-0Y^tN(9DOas}Mk#8XgKodG+>+vYFfJZj5+4~G$sPDRH%^qR@9%*PY_k8@
zSrkTT{RAZ<_O|9gK`Vz$?`Zi>fgTx(dVab5l338jD4Q@9KKJZ6^ifbEAl(Bs`ELyZK6S
zF!o(c(WPrfh4-b#Ypvc`0V~Y83L}q$f$Q1TlW0rJBh3v)<>+}C4hF^Kq+9I0q2!U3
zeL8PN7w`rC)sp?;*8
zXw1t%Vqy{TflUy+xH3Cjzr8(eo5pV+Js&FT{qq`qQeAY2-A$_4Wsc+N(kl)0;jq7`
zebjm&Db#94kkmw?s<49uu4aV}9Z*{RdY(Tpld&XwP@W_G?;gXck%4?^z5S@wQ+8bWu>#9b^u6-6%U1NO^x|xBQz~C6(L}C5r^FHYv>3pcpfGkJG~8jj
zG2xX*jk{Dvz1?ngWx6M6Hibg%#OEO`;tF5DvhbUXaGB;tD^)ww-)5TuPE2^r)~f9%
zI-{DT^#OvbN9}qX05tb<+W}U;?5W49QA(f2J4z7P;+)tk<0N3c)SVu5j1tWEG;
z;F$UK>dQ^gx@&MH`MCBwkD5TDJA9Q1xeX^k?T|N5r&r?m(-sBxJp#6vKyWL$;9YcnzlIIaRv@mPU~I0E|{uG#bFro(%o@c>)V~mIyCuyw
zeghIbv+dXnnekW>u#Dm3cE>$s14?%>>Go(Q&x#A^Cs5E;sIeGPY9^ZkJ6!6wnv^5j
zRYXF7>UWIFw4(oSv=vgQbM)=Ebimq}?+y;hRqQDxN<^5ZVH%@DL!dG3MvG$Dx^!
z3ab>=ilaj2?56A@+ndwEt{7H`O|
z#|^$%XSR4=s}d+u5gIv%;efj}-|idMgbF>MRoUx)1+pP4S&FMvmPg10P_n5Sdtq*ZV=%68uPbiqOwa4eY;LUuiF*{AwWxTa;B>p?`jOzOZ{=(F
z7v_(Hhx@u$rpI=Yc6!b+_J#A8zi!-B>6q%*mu32pvq^|i#QNC9Q9J>z_b-_FkiN87
zBa-k)r8jRkMqgTkm4ooi{5D*$OT4tqprse&FpQ~P_u+GB055MAl~SOqK({$`X`8$;
zD{O346MM>Lruj4PI~t?cZ4^|q@~xKVG!i|mtIwB?d%&XZ)Cb9ouJ?d4W&1zS2K*y
zy&~3ok%w0RjXWIiCB*miPB@D13{oxv{p_g14XwrJU$3Q=j%w_pYc&WvYojPBqd`72
z508!DuiE!ae9OU?
z;P#P_YG1}*WZU*0=Sl21UHObBOHw4QEeJR8cZVY
zWQsx@9Qvb`!UF@Kk_rW@ybHvDgxg0;yx$}UW@$=mE6;%i%lqKG>?AbL;__{7a*tB!
z4_+&;D9L_T{%(Q(b6&3M;Uxf3&`8RmcS8h88rNJxyzpl?C{#90b^e{h+K9V0RqH{tw3-*
zbtX(#X&C+taHyg~c8L|b27s)Ix3D7Ct=gk;!%!@WNCTk>E_SwlJHf|;nS`fFn44Aw
ziB9(O@?f}Br+Umw0@llkU1`gw#tZ<$Q4Ki^9g}Q~u(Kq=ZxPXe@d+RO>mk#Ri#&qJaoBk|~^778Kh2+bj@95YUfBNJ;ZP
z9d+W@0Cc`U*_N$UT1uEt`_*Mz=;N8TLwlGOap-X@07^GSa@(9+8Gu_d-A{FQt;82UCDidf
z`p3t*>o+m1K(7LSg=JA%o@nxBuVYBw5(DJMBnMe19hQQ4eyspV?
zQ?#1XSZweuWPm_Rn=qJH#s!ZM2O6vsjnxFh6ul3)3?Y5G?IdrAuMf%ld*jrWGAtN$1XJcD>(GQR0j$535VGN3R^>qUi9YuYcdCNI?(
znwM;H-3+Nbf!?Iv6GyN0^0{pJaiqLUe-GbBXqLdh>H@TB)`1!VrGR^Zp;QuC;=mF%
z>z77YwPOe05P9=a-ykb-yZ_;WB{z9s17#vJe$?wXLz6OK>SI#BJGe(d%|!90T*cgt
zB9EjDCBK7lPD$Yl>IPr!iC;q@nE53fCH&f2onpjLz&x49(@go)Va~kHhcfbD(Hs_H
zE6dT*xj2@pjajo|sz)#U20f6BYw@_bt1=LMlvBMv+Sq1$!>XuVd*pyv^qVCuXRA=mq}DCuTCd?pe4q(s@qa9Eu+xb
z2-;N2M)pr)i7fFgUPY;S20(2ePE_@TMpvcrUJ!o>+h&`FPL6!#pO{g)yk-r=zsJMI
zW5)a3^Z<><0sVBMd89dqPQ0yBU@0?_;g4Uf#z!FaBJ1e37
zX4OkrMYz3H$N-$(NIO)BY@_$s^Vvmg9
z0%7bQ1^ibzk2vB8#fVWDE4Ew(Q6vP9SJQ65hpjk-H1H|WjJvZTZ^w&73b$?ciuoS5h&f0QIQSAS&K%6{<
z5Dqqkk?Cj
z%rO3QqyGG|_W21)gBGvwzijir|ER-+myId$|MsZ?Sn7GfyDk=yPnk`U{aA}}C)Oq%
z7v9}beySTPGafNhRcu)&n2kYmYHDSThYW4fa(n-CRWB-$yKHpC^f2*UHB2^s?ai?M
zu?zD3xu)zLUa_F`1otVkW@*v-k+q2VtTMlr7-QmFA?V
z+I-j?eAZNoE1ErzBhHSNfb1CrzRsmwigDXep%<=yn9=i0`jr3Aa0CR(Q`=AGy;cCH
zWBsWMMYz>2(LH%ALh~?PZX`sn0Cero4fD;c{~7vk@A3Z>rdlmjXf4RNzW;S>rpdOB
zKoj8L`Rkx;1+gi4`#)rQGu(i1-tQEKl!pgR8U=rQRsK7WuT-h4zsbQh%k<~-S&kkF?&XVel79?YWcsG7HX;iZl~6#2z!{qdRNFMKzb%1q}aGhPh?V2sQEp%
z;`T%9t@#lWeO`R#6L~pR5PLS!E``+7ss;nr$hMXi|7AB1cw}>V^K4ydTRu9qsI7#+{iXW$=#bJhCdlS!5%eLRu=tqR!vkS7iIwott
ziuYD>d!)X`D2+}>HmO0Bh9-bEmv*41CnPd5(h9BNOXMlW>G^qS3x}oERIl=dljF$k
z3~Mww9x^h5xELPr67XF12eTHlHO|ull{6VcL&N8Z9BgdDOkKWx87>2JeJLwm+xF5w
zhIw}T^B`M2JYI-9B#`a024*IvFtK_|10hA_H$EGy73y!^Xtg-EwzX-HpPg6v14XK{
zWGC=lop|9+Z<=FHYAP||4wF*49M$6$Qk@TNIj7y(QQH1M_SYIeMwCw!e_za>YjRRR
z#tMdwvM|gUc(Y@Z3x3or)0I|Cew08!csxIr#679@WwKgVjoN9pt$6$S&Usy8vC=qq
zk&?%P*WklRkIfxmx}2lJk+D-i=9tH4J2&~WN3=nZxTEYoMr5h{*ZR8nMsJ+f4FDlY
zB;*6s$Sid)pH$G@^{w`_FrBd{usEFO0{-+<3^f)LKo1|4sRC7Xug78Sq?&D5g5Zl5
ziy^-oX?#!n)y1z1x{W;kz<1mwSyfMf4-P8a-cOCaYsqq+z>3^oNbFTj7aK}>upwO8
zD$N>+W_a^wy#F5dbVLNC_4*nG^l(=@JFFNAa5CTqFdzjffZPlK#=(++V-UBd*%L)3
z-maK+56kM2j^E{x8{6BK^h?B#bBXY^wfD_Vy;vBSxVbEs#6XXiG)*=maSCE8a#cB{
zH>U`t*zM+L&vi#A;=K=BQd(1;pbpJ97Jy+Yh5c&1GJO9x`~A9Xqz|=PzKF-6{s#|_
zLZmy~@mM%4W`aB-SK6?{!B<4J__=$#FYxtFE-uvLO}7JeukP5y~jbWRI
z!V+#56eYV*{+UV$;%oQPKWOCTH8h^FUq5*Gk7nEXt$kv+z7i4>%i)UNf{d<&6;u@qfBjlsVyrF#_`UWRj^CrH
zsX-vbz>mNSFFRr@+c(oGMs>Bz$?`mU>H76&kL!IQj12P1%IbH=AFcp>L-RbvBrm7E=jt|MyTzAQd?D&ohX+TV;NNDIdP|VsD^mgPr$01lrbSvKuLUH43)xgiR^WoiJYT|(_%V$?sz6?wzBBU@*
zwYr%hGP0RC@I&etDsNmO#x*>#o+_OBDIFEv_h+8?-DatNkyBVaZQd;NwQqKZ7YoIo
zb);4B{ss!&Hj}JEBBp&Y`44xO)+y5M|D7gcctv4P2pymbOBWKuI6(J}&svk99M{XW
zKqq~-&1dJN73J9^!W{zx-d6LK*$R7=2^SNEH+<{cQJ+&jm*fD#goN30o!t8M0arIJ
zrP|0nT1;Z1v~TRKw-zk!4O9-
zK2h|yr-qDpsa?Rg$k*1>vz2J9+ps@rsjI+dl)+isBo+YdC8Knny8@!;!QtUNrpHSy
z2JzE1bA+CM7tTMEzB2TqB;{dvIEWN%5k1M||ARGF-*@J7a9w`knF5)$H7YYY_k5FW
zA?;GC87M|zmW{umabEDN?{0oC6y}8z2QBq=un$6o{3=R_)Sh`aS2U0ip9mCE)f0Z9
zD>Yv_g(2pZ6gA4>J6M$)*DWo4G~jgsAP~v35&DNIGgHN5WV;YGVv>nQ}#
zPLK%;;n@hpz8*oNguLk}sRw!t%q`NRJHl-fyXGi@y}QHlfAtZ*h>FBuX5`oOYQx09
zkmE$+25dAM?ACFX79n#AIR8v0;6?0C{F@5Y9ya9rjL1DiaYw0gM
z+wt`Y{XRvK!_|hY+sl2$hLNV2N<>8=58l}dy~3Z4u;$Ne&Y|7ZY^7mB1rJa~HEIR~
zzvE9qc2K{cpN(GPtI8{Kw2nKZe|H-K+3cbsBOjke7f`X6vipFC>JSc@*_dw=w7vu=
zVa$2*dc5Yk4d6fSvCK;QVeh9bEX?NJadE*TFXsN=d-!dHW<0=X&)EXVc#u^yYP8>(
z@p86lPTKUGT%2v1Bb2<`mM{WY&2a(D{Q9-r20-w@k^!EDIwW6&ud{Bm{V6v(Tb@R@tw8?YPg+qT?`fC0cr~h~
z3wJ_xMn}|5t
zmsb<~tXR;iY;#fY2IbRF^uHJCKL@MRQ1cLG?0t|k{_m~*GeC=^h!Tyk#b=*y|8vT}
zE=%wk@c#cl$G0j(_(ny88mQz={_p<)A=;A%3`2FW%d;heTe#2#8tFd-{&#=*>)>%z
zd^~x1veqIshX3B3KT*QAxEQG6Odpdu;{SX?j7;jADcZKrgc(_|ZZZA8d)43PqQu|v
z+``h*d$5h0NfE;Q@96w>ijk;~oltg%!!2nYHKKpxkiSODssYqUoDOqxX<+}e1xN>n
zC4_~cxy9pzG&fpan^0Ah7nGLLy;E0LKMHJVZdQB$9?#7ku0#QjZ0(>F`|wR3U(olK
zH$%`XFftNj7f9-#PbKqP<3E2jF9nh#v!kVE_`)dtjRBTV=f!8ex#(=t%0}Jq4kP>!
zWEZ5rwMAjxqXgT3!&@+tv$4Ltt+;M%?D~Rlh8`U+Eq?8dkaJEb3kwTz%@pH$H64hT
z50OI1m0qA>w0L=QYjc`zd6F@W)LDLv9KkwhE4;s*hkE=IeA3Wx^rNgEGg1o|jB=s3
zC&03$wpOXXzC0h$gDL^gxSK3?+OZvU-(V!;DGlsmEdgod%ewPr1~DO&2&vXd{Ve+0MKL;TlAo{hObSl}qJ$=gxWy&8btnFNX{
z(tUIfyR>weWE{ayc-WE0^dr3-4DJ283P6g^zGWPt*Egv9Oppvy>Q`o
zf!lMqWP7{cJ2ic!yQ?F|y$f93Ng-pf}-s=0Ly8S4wMMPfn4$HtB@Y$_SRY-l?KkHuQ`1Gl-Q
zC0Oxf(fn1a6Zp0De0
z@Ltx-G2H$t>ur;`b)|11!}#p!(-$D`i$nWXDqCCI5T`6#=!avUGus@|GOjW4hnun{
zIM$e9+2hvOYq+QPO|RqF^3{?uLO?(-OB@L}wEb>NPeDO}n=&ybS^7t|eBw@>q2G=9
z`4!V|nKq&#k;|FS%zclPtPOC&9icp$7(-h)+CIP3B2q6HK{aOzcdm0jFIEh{u>&n&atTibka
zH&+ef?LBLazFcv`=i3d~lV4ga&0iu0OwAC|;neHs86==pV!iJ^UQbGI4Fi%P6-iHG
z?gV*h6?YuCynObN|8>IY8Ma|!?=*p}M3yaS%)ph82$~sW_JGyup?SuYmlJSqYDPnw
z+Tq%;UdKH{&n%hcPU7LzA6GRXAzA>Ox{pY$s-LGXp*23+`CHu?D-9E_0*&
z*0b3zr)oa^pWZ!$gG~bFoInt-#^&Lt7^&DFg)VSVkmgw6W;@5scJ79YfuW`yEGt#?
z%$J*++ltxaqk?A=g5g^4w1N3f_wPm9v}q1`2@~2f{VFv#v58CeFLmyrGcl!gs(Nrz
zueC=?5er_<-^4{S-qmsB*;&`G0~?lSMN$(JP3xBRAe7q0aXeJE!!9pbgmjl1cCB}(
z>uj|cGFaJO%D^}Z@zB}h^)0c0M(Q*v^0_e3QB
z%;&wy{HUH)TD>d8NeBD=`R{b=UhQAZO|G$rM@AU#S#)%>OY4Rf4NtQ~yz5PaVXI?K
zbOF(MHDND*q&9?zmJdmfGr$P7vH_}QLp*SRi0tS4219^av$GG>>H}4t;
zck-)poXQ60@gL$gW!oX5>^T`=kFR;gtdyitb?0yEFHNW?s9}VRN;w)OnqT7`;_cy{
zwx8_vqYgWlKZiC~R#vVM#8Bs0s$|g^`QfYDl^VO!(}@@)EWPqrDsQcBNpxqOjG;;Z
z!pQGo9XEU&oUB?I829ne#I)WF0XgN$-^aOeZzw(Fj-kMFkXDUj$y`ARLUCR8dwg^i
ziJM*%j)xc-88M=wDwnW&7gZ&LfBp<|6_YxFqAXvx5*cxGMlN1i#(2^by0pGJfjPEk
z-%&Oi;bRClieIDQkjfE7w|*S@pzVeyb9xEnkAe^SfhnuH#FVMCP6K12Hf&7EzQLLz
zZ8(Z}G`}>4bw8*cj$66OE<3dN#tsrnQJes66&15-vd??>D+G!UpCdR|2f?e9e-c=Y
z$>Q-^2|4?}4?cY}b4LG^=3+@9@vrkO!HI$<$a-YlX=$NCaN4P$LV{$VcY8A)>O1t~_(C?Z$G
zHG78jZWTmlHF&vzbKHe`aEt%%M;71VC~MFo`^^D1E^fnO!N&+uQP{=UYkz-H4W{F#
zBWq8(Tu4sN#~^T$$jaU&%)2YV4w*tw`#3=S!z;H%-nzD^n`G^M>Pnz>af}npFbW(o
z0O~(2dP|3nOp`_iKU^Mgjc*GkiYCs6ER<&$d>8dr?Tw*OWWGmg&l34abc!?+pLep+I}uGn#L@*H5PbwmlGguRQ0Q=@wrkU0UqD@$?dQ9^FoS*C
zZpl~NKiaOSX4^=Cr@}Hkmd!uBU}ul1cZ8`VGOBJh;5JVb#H1y0kV)P2ra9!S(}hks
z%w~3amym=D_tW+xGa}zQ_u+LD=)&a_nVgpdF^uE*U*|TegK#}nMi=Di(9s{>!2l^1
z*~9U}Rir0CObJ4sEER}9``vm{0C^$$IL9N$wKlK}I3zS-#dLS;!NKe*G~3
zX{K8RkC3=Mdp|U!>pVE1
zWAP9~c>Q=xHxtkd=#!H+)*r4`)Ki5|8aj%%pUKgM*OqyUL{N}XFHu_n5;si(K|$MN
zJ8AE#OJV-L4u-5YPvhh|{)?N!thb1BI=>Ijt^}fm7F+CYEnmo7m(DEDw!PoJ>RJ|cfhe3`zfV1+BP;jQ*Y3rdEzzS|?qb1x^`CpA^OJ5?u%
z`~}tT=}RvBU@`&>VQn$bZGQnHuP?b?*KWjxxDnmjhrArAqN|?m4GnRNvy2JG;mzN^
zRZ_0cTDU_c!&<)$h4OZ$1C5-;gRpQf-?WR4za0-Bp>FqB;|lbl7Z#S7ahuJrc?Se(
z?YBP_(~Rq#I^z(rGAUy0N|5*;5jeGD9cG0zy*rQn-oN=q8Yn6MO|FQLs;dOOw
z*KmWzP8-{4Y+DT)+qSur9W*u?qp_XFwr$(C`R(g|p7(vP-pBVdN3yfmTyw59&pF08
z$GGWQ)=HbzizB00Ad)|PH2~*bu54l*R^<_)WR7T?X_UjAc4fK_RRIz)_^as%T$^4H
z)T$7~NRByGRvtXnt|cF2wWMwR=;{;eD=8T`$*9DV>>R{FSiqQ&iCAB1S%`DLgB!dc
z%9l32V9&4vYIuMtuAsbbv4XY|266cEI_l3qAwC?1NW4CM68t17Dx~}~vgs%@yZ+er
zM3+&nhV5bNw9D=*$hD(h>qZLenjOWKg1`RMP*;N_zAYfre!>9}$R$WZu(Ra>=)Mhj
zQBJ2&dr@$5Dc`wi?iK1an3K_^WdqQa^UbZmyZlL+|!{
z)ih@GpBb+LAHL?{qMnxqP(;=B`?AuS8WuzuywpXtht(;v%edTsZ#%hJ81
z+Jfley3{pV#6%X5(bs4-|HaMjFiqy-IeR!&>vDoo3Ysx6cfYwy=*v1M~_$zMmHuyp_+e?;aSgv+5
zD`J#i*Okhms;rL~q?$iJL5!~RnV0es=^V7M?Q<<==XMFX_RnkOxI|L}AGkBrhIkDT
zp@Zwgl$n8T28dn%JZwhp0jrv6(+#j^OK#8c2JI*r6O3i`LHE|S&t^sC%`45A?Rr(6
zyi2Mp!Cz2G!6c&h>ol>+c4}Z4N%zx|_?+s??v2Z*mvje2(6v&iT+ZfIP=j-MyM*na
zH8S}ucfU8kH=leN!e$?>atz=fZ?fiadp=OCpXbHQ1HQX$Bm<%}Yj`!+#ayPL4nNso
z8xs(%UaI?2MH?TXeRuld5=qh(6PFbnmH*1xotF=db~c7A_iC;`$W87Z&Fuy$o&E|y
zlT%P2mLmyM$-o3u)0}+g9)|`?9(_J)%y76xschdFN7e_p;aH`<#k}#n0d4mK0OQU;G!0YmN{o5RV9XjiO`uiW{sLoY(m{YVys3qIRbHNs>WYSi
zWbuDCS;O<6%;x|o=B0sMNvy$`HsGYH`z5cr^!}j}%KBVTavKoeLZ|||8<7N-;i=v0
zMH%CNCdbw`XiDkcbk<6Vs`06&GH<*I+=fToOc>zU#8;!@ruE?0=B&l+NmaSd7R!ar
zz3@D>mPqTr>w*F1>Xl7Xc7l|N$YM*U_eZ#m6S8Ma9m$>>{<5aJ`taq#XOji-p!*8?
z>|Qv--TQhMHlud4@HYE$>1728Z%Cy(Bu}e
zoLS@}W~P_zGzRLyo7;wxRe;(hd&qURf3PxpVM>{$joeFpe1|K-T~D3}*7wNuEKqt6
z7N?;5G*dAYe#8pE<&zA7$kL{PUV|&027FCmxGMjd)(CKAzPtn-3a@+7sj>t4&-xQ)
zrcZVV|2$RjDil7(A)#-0V&Z*yzI(e*Lm_){hw5@&a2X`jMOAxlLEws|S^aWhdDU2l
zo$46^4eXlZ3Ek;76DNStVEI2!(era%pp8VP|8m{*v2}a&PXC7TdbL|6>AOLOdN~)%
zWe&XzZ!jC=N22HbvZWGL!&41%oPXWWRt#3g?z1neRRP~YtsPziXqwJ+q-U_(>*}+;
zctlc`t+0vSPCHWz$Dkm?4YP!in|%=!N8tPc_vQT{45*HZ)R~$h7to10kaV_V_+W5ko`lu2tXzkFe;<
z7dUOFL0H}~cg>>G2eK*L2{VLpAbu>6oXRRv0U^WA&Tk!6fNbBxO0*Y_8%vnZ?1DM5
z*RSw319+j3?(fdf*1LWwW#sXr4GbHGjPfvMGnYflAmjjsUelu!tXTt4&I%iiQQ);B
zh6f<>f2~b?x`JGZ72#OXOV0YL7{-ru>Yff;s}&$yZsN4`Q4e;npUCm><8jTGD`v$;J-mev0@g#ZJD3cTzpg`+E5
z|K68Jfw`{MODxXsr;Th}l!nyZczATVK6Hn=LIA#EZ3W^bYg5d-qQ^aTrjkvq9;F%2%ernN3R1#u{IF5CEapN$wsC56
z7P;}gUz^_j6I4KYg&X~|&Xv-p`YJg?&WyWx+^bIY*`(QH;kB>DuZdPu;ETKcDeg&)LsTFXFW4DM3
zIpx3vpN2|<*N}YBMlm09wV<^>u)
z@s8&7k;Nck%-hUw4>b@?D#K)@XSZdqWxu7Q)k->v8g~?fhQBx)BIWVJS5UfM8tBd@
z=0%1G0X{}T?EqzuY=)m5a>)o6a*sK!<0iDZ#6KQ)SB-`1NEkWbPI1EAh$?H>PDxDRW$NQga$}mjC`v5KrE+#)!;e
zOh);H=m7dHDNI&*)>z2DmO
zj+f`iMs2gn|BG`_BAP5xkxI?oP3LyW0a*})8X6kP#AY%&ka#_AARmHSK%D=d^5YDH
zbW2D`$axKM0e!G?9n{Pt_~CWo^^KZ(iqI9X(n{Y&+{JpcolM)%PgSj>p&^;+^PF-`
zFwtlZ)pvI)xkD){Kj7KgHZ-tMD0bJGq~{(;vT|8psavP{10$W+1kN`^&lQA~Zb1{W
z!y(-?8|Rr7MfHJtAe22oS=5RfA1{wa-@ei2tVy;=!doc^dB(bDME;N%NB?VC+v9;H
zu^?*uuUzHfV$3Wo$ff@z-xX|@mX@{{nvgaJVSQq(7flzs*M{AQEl2xlAWu7&TCWv$
zF;Ah<9#RrOXg5pzuU|saPrQH(;KR`mq5+`Ny`s4}RbPMKbSXoJFeqIt8{TX*tLl=m
z#L%w=_+YE~$5X5=G>eJW5g8e|5R}|AB_UHbGCZvO4ytOLL2iIC9X_9gZ2gj&A)%qQ
zWLVnOJlmM#za-6;!XJlwWW9ob#9bXVwRk6xn3NSTs4oR#ffMO9hNVwGPm8gbDT*2g
ze3JudC5-M^5)u*}T8UXbM$NxM?~U*O^3B9}7gf^({%GU%&8%}A$y5Ja{`&75viTd8
z5zsinmEt5v6e&r{Iz<%sk6hv;?}mzxE2M9q9`O#`Flo7)yWP!kT94)02eC`!h2U-|yVY@WR62u;3_g7-vvo
zoyxOCvBj&GcwpB^RK7_}QpwGFTS?TLx*kFAiT1~15AyJd_v@pB=KD$IEGeyw#de_%
zr%t{_RA#wjnvp?Snf2d99V?7)l?=X=#d|~IwJV{w*K?}{P
zp=8z|cq6_mkByi~0aXrA)baT0^n4p9ci8C*v3qbK0rCT62M4QsI;nh1+i$x?yW5dW
zAu7Mbv3q}WyT@WsxC)BKs(`7wB3u7d9Ee|8qPQ{tj)=>?YMF}vWE0Nlh3&1`Sf#5|
zTf3zpuCtXMsw03R83np~cG9<8LaufCQWT&_>WuW_`uq;kP}ykZO_$q5SwiRxW1i3kxZK
z=(hp2wSUJp&(6=6?99I}ed7=Zzg1V47K!?st6UWCw1D9N=`gSue}XbbM8kbF^LXb{
zQc`YvH{MHj33ZNJ$BLr%*(!=i2PPG*Fi^}F=YfG%k9XUt2}#&6{{#X=k`b&s(>|E-
zQ=`UWplA*XJv%MMx}GTxMKo@L=OYI@LwGo8Sv0q_lses-Ob+|mmD4{P)z{aNqt%T=
zZR>WS^9a=wOMud|k;%!)r>gTis3z{uoGyxzekT_GvxpQJP`UoEQs_UcX%hw9C7|VQ
zVOv&mJs0L71eJ6!no=I)k0^K?#?~D@71d^4QFu|ktf?=oKhY?4nL!4#%{N4B?tqe#
zs6S-A|D5s^#~^X7G#(-@G>`*8=Q>u$+3yKz|C~)rV&Vi7eaWA0p(-DP?r_aV7nx3{
z+7;8G!6Uy)>HmXmE!%5Z2&dT&jh+}%N97x-^Lky+QkRSq^?^iltooaRi7{m9I&Fb2
z!oJ$#G8q9DkSn}$T6^pR-HIB!$$#%mUXTdjMwEaRvXI?qf!8A5{+M5&=8T|CcUd`U
zB~24$6VO=*G6k}`r`toG8t9y@R#8->Pu(X<&gYwiIRe*xQw9R2?DD{dhQJfcJBd0v
zj|qd32$XeQTqaKmS!V?pbY(70gRjU$V{By3weLrm>lEQ~R-}|hv|i?8IV!`;=L~NR
ziZ;~rJd2Mx9HvF@KxTDKK5s5uR?{3bw40F~d-Gb4B{=IO$0rA+)oc?ps!er{!wr88
zqO%F4>S*gWE4Z9?|LlTeCJ`GR7Gdh;yrcVQ$l%p#gGLkE*wRFU$WDQKjJUO|==q#~
zQWZfELLE|{3q_*oQYK~5kIw}ihkOMk6Qk?3{_KPsTTs`0I8#%1wzHGV4X&Oj&m!Y0
z%2f);q2ztrH>H~hieKUVA#wlq`btg8vi7S8P2yh#lJ5x2nx;P_YV|)~
zqPgs-{jdKFCX~ew?lJ;i-yYQBJ+&M1*KPPoWdBY&NrlMKnioR>Dq{XARQ%XUDgIq3
z0YQQSqggUa*$jP&izYZl6CBkE*mw_s37_^-c*0jG-=l(2jR+G)1O$L9XmaO^Wkh+<=J
zZo4J_{CxrA$dKIMpc@XQ#-mHg^S}Ic<(wBNpdFegq+++V#ZgiJue#p%2HclhGIaDe
zFGEG*7sY?ySE0>Tkt`*U5$FdhF0O=%ipqh`R(|JyD%M&tND3J&IW--3a+mYf6cBr;
z@)e(N9^)#8`#+_xJwNee8<1moXo!ir8ormz>*cl}cJrJ945Y~TAMFV@OavDHZ*6UD
zn2kO$u@aOh0;_a1>5BiYhwD-7h4hEly_DtU^=UE!{V1k4HI)tV0F9?kvO31|(*q${_^ZUs5vaqCPJ4KMq++1cVzxLAUPTRyLM7cw(r-H`
zR&C)sx2kiVkmMG(i@a4+8a>03)uB2L_ZeImE@v!nn-}$my`}%OP01j?@0$5ypqirV
zu`ajMb9~PbQkuiprbgF->TcfP35)N&Om8`Z8zbpaiK>b+RRV}-*y6$PQb*2f;YAdP
zA>>K2_{ELe0FhXmy2eHo#IsIE)YCvM{!*9dXF#(;RR>2pzgLj#Ecd#rX6|g_<(;!r
z{-mHCx681{Qybr^G7pdY@O90ME(o%(Q|AAD^8I;!eD2`vJD!&(a0MdQ-@?-nfn3zJ
zkp4WKx}|7!om%$m`j-i0tuyEc4~h3pt(W9?aI8&xrz24VA^yANthR$paz-0IJ=(q`
zBR@eU(#@lzEqPGb6Sc$PsA|YAI-UfnotN02wvvkY09?)CVl{fR_xDJo%!3uW0D=$auPO;i
z(@F~w%*3_ly6d|uY{}bD+Jf(Ez{&Hv4$j}UO5zB|sFF439)9%?@CL>oX>9Y)XfUR?+IUU^+4_7>`tJ%Oa>;9H_@bc(?z3nH$R_*Sf{U-?
zvm-E(PsFSqj3>MBPVh@IvVB=y%C`HRp^)-L&hEq!}Dnw&*$L-BVI-i`f<3>ZH_Jjzsh^RvhF
zK7FCPIiq8y+V%`*p9a|QDnDeW{PD&O%(8$w6$5J<0rW7>xHM|Caq`8x@Be9DI~2+5o^DbkakLvD9>Ia6LF<)-=!tH+^;
z2qDM&5+XZ2hcA&qU)e_G8Zd1MHn8t~R%??8JbakO3`m}?U+Z|mr~K)0mnN{oR4Wno
zAG^_$m9%AjUT)QzcOoy2ewc^kP6sK_pN&3m?C*&nfM%@tXRV7VLor=Ve0%w0RDjLu06xn3V8OoT
z#U*#_cvCOz^?e@LAL6iHq#e|%>yl$9$?+{Gd<%i^);5k%eD_@w{c=&ZUp9}KLRm@p
zf4A$T$+&ggk@CHFm^kM(j&3m@l7a-a^2VZ&XR8T$0<hm>R*yb(ARF_I7*2u*^
z{&%m!3G$B1_Tk(NAA1&j^(*4J3`XAC7RVqb{s){(>OuMSqvajMlUlNZi0D{ibWsRpT;qZ?Y>AV_rg{eDcl~*o4?txLJ1UVH3Q?tNF0JjP-wr$R*z<*^SF3k+H`DTwH0?_et
zh^Rc44xt{M@piZ@Fh=UeK&X4Mm_XqEVdmmF5wur(o2xd*{{A^AU`FTT+0T!3huZzE
zvUayet*AOL22ETpKXhSDQm6GTD>tjHqcW!}jy^lRgD&S{t^OPY){Cj4<)7EYRL9Es)z49N`xKWLA+I+s(BT>}IW<(!V
z7el;K7xZhwUk6TX`J-5;|X_X@~5`ma{VmU{pu)=j@?f8D$|j>^Ox#p@xB!oQ4rqma$6GB
zH2lCVY5fU0M4L>k7t**T1AH%9jLGn+X>(&f+4XZPyW4GOwkm8*`{xt6jbaHY=)6(+
z=Zm}deRVE-hV<&TNKPZr3n1=5PQ=cLThtpMB~Q|sO!9zy)=y#_6{vQD^lIV`bquGm
z0C)y)^Yar2O-@x|Mhz0uZAdKz?y<5Hr$Y4wmfV!Tu`pzk9+8&Adx+V;oDSnR@s;3n
zr}Bp!=c+~Ii)r1LHt+BPf_H$BQ{fxs1-?_ntUzVGYgacV{Lk7OOsm98RSapgA0C;R)y!b2(U$J(ozRRTIpvN~Gv8?WzkXgK2mx7EMAsN*Yr?m{)6>8O9K
zbsP$grtr&1YHVVAN1RNPc1qNxcjyVEyg&89`5k;b!$MFoF(*r4tx`AS`RVF4X5=$`
z)x0)7d-8?3{Amj9T+E6K?d^f*!*<+yh|@0*{+MfF2+5n(QXV#8s_HY=X|
zLqR1P+vTfEB(@AsJ1|3*fPu6l1d<}ZP(__wT06#8ej@wJL>}HsRUGAbY}a)w>-8;i
z{v|QyFSiFQiW|EW6kDw)o>=~Ccu6cdppSdBrTRcR=LzxLAI{c2O2}d_w+o`>nny&(
zyW4!-INO|=I!g16$`6&THuWHg(2=N%jNG4tkYV^s!wK7a{3NrJdWY0>SmMCUsi@hC}pE@KC?Z^r#ljhsba1-`CDz>M=6!wHCTPT
zc(Ffm=0SoGCU(kI|CH7*s;a*l3SYPawP?Su2}xWpj9>IYB9hsBLa(Jiuc$RtE5R^+
zcp+%lC1SatT^hY}$i?kP&WZ!!rUN4lxD%g=apoxf*e}eQhPQw0j`#kElUZf82q9^2
z9CyeTa=u#>U3Q&h#Iuw6$uW907i_UY45sVZ)^@m%9z09zV~0GaF!GHyKcu2PETU3U
zwopN)+u*(%720MLwMLm=V*0@d&3&bon09CByAC#`l_~X`aJydO8Kra}+yv*AS*aBPpf`YhEsOJ~
zn#P{ss6`zX2L1Fq3l-fn&$E@*H}e5Agvi41}5PY-4{=JJ^m-MUSWMIw?CsKx(n4vkv?Wy
zHeGvYZY>;^@nJi~Sq;NDwp8LR*nv{bO^oD$)+0S^+O0%xv9q}UmiJXXX~3A9(*3J6
zAMb1-?Ez6Bg-p>6_>D+55(c2Eltzlm?Lk8rY}=!ZGp&`zun{k>J~H%#y*f@!@q)U+
zk-s!D!vvBC6sUaEvy$01lVw3;>IMAd1}E6Km5v-CljlVvz#MD-QN=&oHeoK-xHW|w
zawstrA?MIfe|I$HQ(dup&w(y3rvQnidp4cR#kw;uLB(yrn18lz`LH`K6JZ1$k!7d*
z9)2y}LmC+xnd<)hNPYH@^Pp>t)~<~oC5t8XHlSlJ+=wc#p(vUu;MDQw%-ljB+(x$_
zjNEN1%3_1ks-$@HJ9l9JpNGtkDx0CrruFJwt*_4J2NxxyM5|TRe%dMvy!TZ`FP-x)
z0nTl2{)e6KYw-y#qJ1nMY6=FI)jcOg8k)MWTSm4kOEk^ZQM=?d(9H}VMSk{1;Ce_v
z-rQ!w0h_G)yMtx;h3#(AHtPYQI$U%-LH{MCV#-x)iSVPF4Obi=vbvkwjihLqthc4W
z(=C=eRVxSDz(V7Fr3)DUcXXUNQZbX$sdY)dl+_BI_Q-FgvcHuY6C3L6fKOHjfi-T}
zaT-E{t_6FF#OTBl2+zicg}!Tv{z0yv%2|2qJ-Q=nhoj~utpq9tjC#$9*1euQ&2Oft
zyP&TTrA=Y=ym*l*_>o6(egr#)TVMlm4U!>YdPIj>Qq1Y}k(s%zb{4e|FKXKCos;p{
zr1zZ2-gxNo#&2*Pzb^Iieg-|6UcG%@=wmpZfYdF-_l+=o%P->6g;lSdXJg;w18PEG
zx%U-+?|MABUR6mqwmi9JgYiE51F;^rokH>{cN+c6+(Umw*S%mG6rodyb`0P%pDkP6
zutiRaD2uqG>jGL)a`fhJxT$Dhl@0e;Uwe!hdt!P32qGyaq%5PE>hQFojs
z$sDTkk10_rV~ksjvM2YS+RelEJ1Gjks?jm{V%i6k5!H&e5ZZ3My478_
zQhfx~NTdqV1QD$%g!hG~C
zm$Yn-W?~YYnHO`*v4cw3a&qu_7VK>N(5JaZGb&&RhVM^LEoCq=+A|kvJ~O0|!<$_k
zhOBR~W=i^!*I=}BoKW>KcLm4ia{!kl?xXS;Wk=%L2B~FO$JtgDHEst^^DFyw#tF7M
zeA<8Sx3>SxX?`jt_M{t~cl!j4F*xF-R;`g)@9z~r`OAjzHcv2n9zMD
zvOIjXksHf@S6HJilZAt*WE`w9ou6Ll?$~n;P5Ak(vAv^uK+CRu`!vtM@hf?1d++)7E54A=_!bd1%S1PT!zJ?gCjLIrw%=9A@
zC`z>SM>7U-#|n_FNN*@+a9)V2aJ2*S
zwyI&^sXCm!oor(YGKKam_Oyr{WutzW_Y==M$mM3LUuO^NBz>nF5#$B}QpsRRbVfwk
zI14!N%eCmMfTFZkO%J7j1W@kjXXo`)`c~XvBepL$`EMn(GC{0Eqw`2c2I})wx!rxd
zCG7@YJ7(kc5Ig^AM^;DzB67%WQ
zq$h@@wVbFR5^>>rK(uT9v}@$RgKoK6j%PGOcI63|blxV5_oe#AJ+x6jj>zh$#|p7W
zzAZ?L%1-TavZeksH&I>%pKI#=Dss*$D>w4+*e>2ya5?vah&Y4I6Sd%%O^k4vwL%H%ftuS32*^TTEgUW2HP?vMxHbeo`qxI1k#m_^-X9&YaZ
zHKYj*8Y$0B(cq5YS;r@NjK1_$&#iS}fHT2;qP&_zGzSe)x9zae8M?d
z@K(3GO%-?>DBkVHXBo4uBczLZ$1Qy@KghKO+-E`LYS6_Q1!w_PEv{}iAfRsxK|TD#
zrs?(TynKKFR{9`Aqnx3MiRdW2p@I#c4VhqfWmGb485DbQNbTCR1~xdiSjujE{q4x;
zh6c>OzJA4zUT<0@PNBd7L~_tsMV0$BCIEJKfi$Du>rT!{;j4n-nyW-&N+&-!Lcl(cWv_LK!Su<2uzHfYk4BwU@
zA{rA;-vZeijU;BE?cB$``R7B41_lo#!wY4vk-wpP0r$VZf6x7MlvzZp;Bv;K&%9Hm
zWzpEuhnU;V+G9_!%ay