From 1d5265b30cb5a01d4d14630027aec97fcf5c5cfb Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 12:08:47 -0300
Subject: [PATCH 01/10] Add tests for empty proof and empty pub inputs

---
 batcher/aligned-batcher/src/mina/mod.rs | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

diff --git a/batcher/aligned-batcher/src/mina/mod.rs b/batcher/aligned-batcher/src/mina/mod.rs
index a396278ca..fcfc656a5 100644
--- a/batcher/aligned-batcher/src/mina/mod.rs
+++ b/batcher/aligned-batcher/src/mina/mod.rs
@@ -22,9 +22,9 @@ mod test {
     use super::verify_proof_integrity;
 
     const PROTOCOL_STATE_PROOF_BYTES: &[u8] =
-        include_bytes!("../../../../batcher/aligned/test_files/mina/protocol_state.proof");
+        include_bytes!("../../../../scripts/test_files/mina/mina_state.proof");
     const PROTOCOL_STATE_PUB_BYTES: &[u8] =
-        include_bytes!("../../../../batcher/aligned/test_files/mina/protocol_state.pub");
+        include_bytes!("../../../../scripts/test_files/mina/mina_state.pub");
 
     #[test]
     fn verify_proof_integrity_does_not_fail() {
@@ -33,4 +33,14 @@ mod test {
             PROTOCOL_STATE_PUB_BYTES,
         ));
     }
+
+    #[test]
+    fn verify_empty_proof() {
+        assert!(!verify_proof_integrity(&[], PROTOCOL_STATE_PUB_BYTES));
+    }
+
+    #[test]
+    fn verify_empty_pub_inputs() {
+        assert!(!verify_proof_integrity(PROTOCOL_STATE_PROOF_BYTES, &[]));
+    }
 }

From 824a10b8adab972ae2f0d8b1a631ceee4b9393bc Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 12:18:47 -0300
Subject: [PATCH 02/10] Add tests for empty inputs in Mina verifier

---
 operator/mina/mina_test.go | 40 ++++++++++++++++++++++++++++++++++++++
 1 file changed, 40 insertions(+)

diff --git a/operator/mina/mina_test.go b/operator/mina/mina_test.go
index 4fba72c24..cbd979380 100644
--- a/operator/mina/mina_test.go
+++ b/operator/mina/mina_test.go
@@ -35,3 +35,43 @@ func TestMinaStateProofVerifies(t *testing.T) {
 		t.Errorf("proof did not verify")
 	}
 }
+
+func TestEmptyMinaStateProofDoesNotVerify(t *testing.T) {
+	fmt.Println(os.Getwd())
+
+	proofBuffer := make([]byte, mina.MAX_PROOF_SIZE)
+
+	pubInputFile, err := os.Open("../../scripts/test_files/mina/mina_state.pub")
+	if err != nil {
+		t.Errorf("could not open mina state hash file")
+	}
+	pubInputBuffer := make([]byte, mina.MAX_PUB_INPUT_SIZE)
+	pubInputLen, err := pubInputFile.Read(pubInputBuffer)
+	if err != nil {
+		t.Errorf("could not read bytes from mina state hash")
+	}
+
+	if mina.VerifyMinaState(([mina.MAX_PROOF_SIZE]byte)(proofBuffer), mina.MAX_PROOF_SIZE, ([mina.MAX_PUB_INPUT_SIZE]byte)(pubInputBuffer), uint(pubInputLen)) {
+		t.Errorf("empty proof should not verify but it did")
+	}
+}
+
+func TestMinaStateProofWithEmptyPubInputDoesNotVerify(t *testing.T) {
+	fmt.Println(os.Getwd())
+	proofFile, err := os.Open("../../scripts/test_files/mina/mina_state.proof")
+	if err != nil {
+		t.Errorf("could not open mina state proof file")
+	}
+
+	proofBuffer := make([]byte, mina.MAX_PROOF_SIZE)
+	proofLen, err := proofFile.Read(proofBuffer)
+	if err != nil {
+		t.Errorf("could not read bytes from mina state proof file")
+	}
+
+	pubInputBuffer := make([]byte, mina.MAX_PUB_INPUT_SIZE)
+
+	if mina.VerifyMinaState(([mina.MAX_PROOF_SIZE]byte)(proofBuffer), uint(proofLen), ([mina.MAX_PUB_INPUT_SIZE]byte)(pubInputBuffer), mina.MAX_PUB_INPUT_SIZE) {
+		t.Errorf("proof with no public inputs should not verify but it did")
+	}
+}

From caf7e32da9ce42008f0078dc5098b3f1f3e0770e Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 12:42:58 -0300
Subject: [PATCH 03/10] Update Mina test files

---
 scripts/test_files/mina/mina_state.proof | Bin 48342 -> 48342 bytes
 scripts/test_files/mina/mina_state.pub   | Bin 1056 -> 1056 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)

diff --git a/scripts/test_files/mina/mina_state.proof b/scripts/test_files/mina/mina_state.proof
index c13ba0c52fb953dfb6ce7c6babaa7da9abbc1ce8..81b579ad192a4f3cc8ae7e8510aa50113ede961a 100644
GIT binary patch
literal 48342
zcmeIb1yoht+V@R&r-Zb0cXxwGNea>;jdZ7!fHX)+cXtcY(jf=}5>nDBDWAUQ>~$2+
zIXCw^&i#(>IS+G;&Dv}6pL5N;esf+cHh%StdDX1@a}J%C1aMX8laku|L8#rnv6jdC
z+v!(&>7S%xf>Ia!H|*eywodMGB(vc}1Z40mVho~8>2}hdkAZ>0Gg1Fz)+W0Y{4*^@
z9XT7qJIm9w<eqMDHsm#MVSeTIlLRRteWAUWW;%}XSOHI+TbwP?UC@i;f^FXuy$&^o
zEJC}~7-l7Mb6z5fS~`R^ChdbhMr|xQy{K#=jUI6t7LY>3$B7OZX{`<7%@BUo)2N-a
zJ{d#=D<pmw12KKyIWQedpxHygZfOxF__0m}I%jXXje@vqCLYvt#@BKtl|&NWo!^?p
zSZ(X8r#;(4R&C#n8-5LK3_N_pi-_^WokUNi<FT|!V^lD@9a+U(2*Dno|BPZ2<P(Fa
zc+S9PN7<*G&P{J$wLYf6q!(r3ShU)H+(!)&?!uSyIwUT8=Aa4UdqtoH_#Wo;nQU{>
zWZf5PcIkbS+5qzvuIU*35c3T4t>GXy$=_=W5gT2x_>F#|fnty*Lz!mY{d3g;j|s(4
zi+sCT4t5Pbkj~;O=2yuKccog{F15o-ecOJrJUt4^uZ4+5<pcQ}p^&<f7HeBNFT(>b
zLp%hzCMIcCM#H5LU|!(3M9Pxc3Pr!lc}O;W+)mpO`CPxvq$0@246>;*+Y)m3X*5fz
zH5bG}%W=2c+5NY2B#YR~pSxLFk}J!3+>aQG-ca`yYPwcty(rxjQjuzSBBmYd<W6tT
zFub&+&14)(lOhw^f(uUY4)s34>lcslgkNmO<i=q0smFeMKqjcRf2C}g%msVduN=*$
zhb0U-EnIL}r90G@r0Pu6h1iyJl)idEv*cS#r8s&JtP_h7Va$=->tB7^niw9*uNA}n
zgoT?I>n@p)aEFIO**j)^<T~}k+M$l=kPVw+*w`&MV=%Yg@WLqknz5#La#ltS%Pv~!
z4l3+e&WiA|({QS|5J@jzxe5jskt@k+-G8h*{fa?HIkbdIB#$?Qy|dRB{DdNRlb;4$
zjOvx@dg7}(zFdnT+6q)CnD_6KG9PzyOI<Z~!8WT&H$a#8%bzV_P09wLkV$=o^hlmI
ziM?2nu6h73@$9JnUgVBWE|+1%eY8C_C*dug9Ha{HH%iA($KM`QNwNpS)$$|4VUekR
z`dHr&i?q!tefAV;T<uBm0KZUiZO*vyp(cC2tCk%7fy1i2Fm|EeZtB{5hdmON2kouX
z{8f+vP7TXoKRVTqK=Ob7f`N@9Yc}SS3i|EE(&TRNLh*~_zaAdzT8*WEkZmS%mZk&g
zEVl>xPlvU2?$ad_TDkd?7^Eg>^pL6t@8aEEkJ^G^0O>lrAOxk#xj6aeqr%HPDdmZm
zwjEof$mAd%Hj<{I3}b+F<fIm925&4l6E5Vn?-s3#!xqod({42AX?~N=JRu<`2jz2_
z!4R3p^Ce*^$LoWr<x(N=62r|?B+b05#%@AZPuf@aDj8X39F33Yy<btkE{}gs9*u1|
z#OA%GShzcjn^^(rTqY~4ggF_iN0hUwGH9i}Gxp_(5sU$SAJ?xg6>o?Wu8-(gN6yUY
zv1#HamT{f4enQeDF$OQ=#=%@3&&W*PP9LoU*UMrF`ZkS03I_x*F>)ft&&a|3b)nd>
zp%WYkC>!n>8s1z=BPTD3?$T*P1b>-ELDcG|zL2zpe_^Yb$Cc=K;y)q_&exLWk*C_s
zuxEF_pg|{HG+t%qBFgWq++%0#DDz3<1En>)&*T@-^wSL+vf`TIO;a;d5yzfM=k>I?
zYE?FN#TTi2@5xUeaDurrg&PnCY6kXGX4oBfCztNmq~7&aCHFk?I36*te}5bhkv9C*
z4a=04LU_<X*8rthjn$B#tMq(<I34YoH+-Z>(YqERjnkaoTESQEiPW3hjRrCm6$(r{
zzqKK(Vtufj)AjvSbhjcK_G2e*2HZEVf|d0NR0UspuX=?9-s6jRPz1JgK`iYwlqEIY
zMLdx^N<NoTFHvU#WBEG7T=T)+um+3}ec;wBgf7UiX{tQck}6%EA9aX19&Imy$n6_}
za%VU_Ms;pcT|8%v)DT#}bYQ8&sI}>W6O>M5>vzBzse4zRQPw6sSZ>?81Z6@1>Mu{3
zWWuKN$G5(z`Bb_qNkwz3dw-mESvU;ade#2UWDydiOIo4Ai+<HRnaa0}rCmL*)#i@4
z`|j>1dOCGIR(ddbJaDkT1(3d$CE3DLc>5fF(5CO0{%nZm!2@v2vv?`r_t}@8Z;}PB
z>&2eBX}U3MPz7;$JXGe^5qpvI6py~U!eAwdH$n&jf&03?xGxD&x`R->&TBHY%uftk
zZbtFWoSLk~TWt4@$?_WT>-tHZEmQVQYOP!fJb35r0kC~;rdb`*Gcl@XZ^{Y@&nd6#
zq0Grh>6lKyx}_Xq?lIOppcUey@!69DgY=Y%PkJ-OcU`Yc(oG`3;TBVN-}M4+m!sWp
zw1B{>>_}4Hg*a`J_2TYzeT2~#B7d+d<UOI|qZOOT?#wqbu5M+}ClMj49(E}v=-2h*
z_91r$$WqmDt&Br^3nPN`_7a&B9P1a$EC^r<jr2LM>rWEE#ORFZl9veBqeyY2@q3n)
z#}E%a)YVM-7TI~$c(3a*w}u7s8*!{12gy0~cN{-Q(>wJB`SqgAu7;jqr%3%)KMGHa
z-6f~OHC<x*kgS*F&vC_bza>8vSa+V)Qj$PMLB5`Tf@q}Y>Jh5F?5_SrBAiUJRHPNm
z9x9@pt>rUqbpQR|>NDR(4u$^8GZ0A!l81ZiDFbwed0_dy#TYD-ne3&m)Zgl7>a+n3
zN?V~Uj^QoCr?wAUoAC5B?gBvqg4?^w&JsRs*YjhNjW!ovypXs-Btnns{6vA)0z(a}
z?O21%v(G}{;xW{9eT=_((f;fl@A{PsKkK#<HJyKaIbE#&Hg?|5@rI-4Z~Zd~0atlQ
zqgCtmdbv|=JmLEZ$b-W3N5&(up<#S3l=#rs(-&#_?0G<9(PlZPXdK6If<JY4cxTXj
zr|s$Hl{SMwCeL+!SIom@yG%U$nMYdL<AyPpaB>GO3|+_&Qd(N5zJk1v*Y%<%u2-V1
zO-^dh)WqL>eEbDlB~|ExZD$ANLat{^aSH3Y{xW2bssBzT7;?*|i&c(}N*cBedfPJm
z1(VOHC%1I@Z{;POOAvrgf8j>d0Ret$DP9XLA1vym_{>zmQIAa<DxKtd`sgKJmGH((
z8j^CF^O2*dO(s6-s3$5%HqCmzE1sQ7p}(&8j_6{LCNFM$g%8u!GRUfUhu3MV`<%t!
z)&j~93l9Izbv@B~W0*f_$Afe4nNgvtVG1KWCak-`_ur}=eTs2nr6Rkorw%VEf!1E6
zMr+9Z0#$h$b9!c!^Wt9ZQ!%J%G<*-4-|U<2B>AqH`)PoXIV|dhtM5q5$(2W8Kc{`P
z1&a!57B|K9^e+y2ma1POV7XJDl0UX!Boo7-{dAW$ZSWwGL_mkV1@*e#Yh|UQPz%nc
z$RQdnubHL`ofx)nGoPnp>s+UC1Wow2`n>uy&6^65rnoPAhaJ9Tk8MuX2wSw9#J@ao
zcFN*QJ<Ij<(<C>oXe<a8JL9FrUTOswW*Ae#`YOqY4d7EDRPD|GmVfz8;|0@~8Qm+Y
zyPuSq$3A4ElyYK!h@PIRQ^V+?&;QMyH&x2;Ye+CH;B0AD>V5_{d50xMe(-=mD&f)S
zR791=Z~2Fj?=PdePfj!EqP2?r)eNi4NzsJNPc5@BEi?9^G}CY6_Zekly#b!5xO(lq
zdAYerYTO)ra+vPbVu?4ek$J_ISg)5i>MJ-mcWm`5Ricvuh)_bi;GCxx&pw2Z1%scI
zg{?NjUe|lQBAWQ3mp?d@#T$}hgj;gfF)UwYM{Q;9Dv2$L$c=VgUtNJ`+*a!&B3n{d
zGY%=45gpS~l&nAPCgH@vL!v;zcwKMWXZ~e8qcyhmGLKHut;?t~M}pFmFkE2PhZ@Uo
z9TVreo`+4hH;csd_|tjGhm0lSF#gd#>-W}f)$6VC*-Ro1#Mkv=u%UQ5o7Q$>uyiP1
za0yf!3A8!t3+ldNtS)7UZ{>a)FT<Fcn+4MZuWc)zTyVig;_A&Qj|OBXD}Mu{k2SVE
z|Ba{WhUa?Obn~9WM}u!H2lK?1R$O=YM@-f}hf2ox)|dUpi-O2!1ECRTAsqLY<iE5$
zYR!C02l+COjsEpFBb+pbn%~-2IKcZ@6ml~lwo*?)PP|>AS|D`b#S<ZYB>@(Pe)}}4
z>*XD}SUu3OZ>jtGW+ON!*0L1s<Gv!PU2Kn+r#i#J{?2cDAHz#A;qy@XB(FI*h{IL2
zN~cIFvcfyg#avMi{uVaBwXf5uh<DKX`&5+R<rSH4yifG+P9%TIL=shUadCK01BZD%
zKjN4RA16L|Ozk2=nKY1#Y`RiAI62_xTbqa-;9};q{nkGpng@0G&xSI&r|u2xQv0PX
zZ+MZVX_P6`yJv`@AcFsv{|g5x+~^?eZvQ#5M`kMKgl_UK;zThs_jch#KEvfG{MH{{
za7j~c)v)ePfiZI^tV|rH5)fIDi=bLvFw}}i-1Ggdy=n}Y%;jl`G^@Wp8P~N;p`(&8
z4m~lbLjx=6^z=S`|C@af&HRi=NPeufh9Z!bx!btL;bP=w$&Nt7F#JL;)t8w6di{{1
zO1;02w$o}vy`mE{MDx7VBp<HL(v?7`Utk|6AeipD-bAry0YjHZ`n~rROiJ5=gS&#`
z*(c!u-+acG5`sx&?AP^Q>}c`YaJ81b;itak26i#9f!Dsc?4ehNAWCBG9NNRUt}h);
z&S!kCC+yyOc=xqcS1KY(8lH+UQ-JE%p;3w4#NWz$?{$UZIx{2Mm&_?Utjwb>u-daw
z>X>F-LIkIcWYV19<|p)T%@~Knkmoyyy-O4G7K8{j7{FBgnpdha11~<Adi*wD3Mi-N
zAC6(fqdS3{)GQ96e#+pE05u_EIf62{{edS{@Ou8e{Gh0ZRlgX7iEqYZF1P9sCN+7W
zp&CG}^_pj>XUY6#|78c^o?v@;K8B-Fwjb9RX3*`3;neu@X40_dLP@FPInnj>=iKi+
zGnTe(2&Y33qzJ3h2y=F17ou}GRbGe&i(Q|<y{?B~3~Lp=!!^3E80&O^v(jkaafn2W
zFDsAiC`MY6{`9x`%skx^o_JE&lJq+hg&<y!#VV#9#Z!0pU@4NRe5g?srt9hZJ}M^b
zm*rz4i-`gAK8oCBkNs5bU+n0~5kS)~#fS3Se0UReE#`h|;HW%bh?zu|l>+mnO~tYG
zn}ar;yvms!Ir!`8qe#Ac7<Il+Lj8ae<Ku)eZ19QLN%<VlShlM{)l!r;!*zW$?bcpY
z%f9TRMHs{^meE&eA|}b1`Oo}#5sIA_FqeKSZ<`a7(5odaYG;1-fN!0eQ7^wLS<6}t
z5aj1m8K<|n{>F<Suk0yW@ySy-LHP~8fp}<K?%cLH9uGvE(*sOvIDYEu`7yfVqh~d7
zMY3)psb;W2i~LmAN}Y*KbWR3Mpn>H?9Pzq7&i(LlzN?SpY@29>A&)B48>W*ip=_`b
zVI=Pj6kdnl=3~3GMSdDA@<aH-=iEtTl!b5?Tg+7b=Tyv3pUyyVTK+b_Wt6unvilt0
zQXu@4(%+lqd!5fwysyrw<VE^Cf^CQW+k7=sFg5n`w+~XE*c#XBS#i-ELkb$BcU6p9
z8p>GSiERDWKaU5I9+Yi}&GCJ#vY7fRfqSLNiid0+qPhBN!`+f9`nUFlH?ln2zdwD+
zsFJ74nS%=d)wa_A4vFMTxFxrI_+9~o>-E$4>`h^jc@!f;=VuyYrVqIfpmM#Oo`fe7
zmQJQ-f7@Wbu3y{Vz`4JVrQ%S4P=DGemEfaqYsos+Y$r(^cX|HR`nUW*UlvmNmsRbV
z<)x$fvYwa<6ufNjSIYi!06{PNSa0*U@nt>BX&aJ2(ZKf@lY22;`{VZb+ZJlix2GY*
z4~%kM#(ta6tE9cpk|e*sSbd<^H)bXjAo}d`nP^wXNY;E5`KP;Vzx7YC&9ctf1_(>u
zyVZe~MJ{@<!#MX7$P1CP>j!a%FphuYMYvu)Z+~G+Zz5x=UG@EuO{U9<`pKeca`Sgu
z^dX|^Fn@Os{Ja6V3cm75D94UhY+vlZvV&L<^q_EF!~fKR2$MCQn=@qk6>x3&l{p&m
zJm+{h5@@|7+s!?HGz+n8*RB0#<H;H6Cdwu{C_U52vnnOn^fe+1Jsc=Dq-6Ui%XS+z
z9Z{Ox+qkn;On^(Hi%SVY1F4*f-pxU2_O%?iXbeJ*6Q^%I3Wl)4+bw!dP<ljjyPw;k
zTWzOWzUgSz$5@bCMxnAajb0VwE1_Y;5aEGzvB&QrO~3mHx=0nD!(?MK%WpgkJupR<
z*W!FQbn%%MAEc{lJWw_*Lzin3EmlF4sg<PHl~E^esHZ1>K}vj*W^xy#1JCc$Evm2-
zY<ZT(_pz~t8{1PyCIGi|&-9Gs%C^Ex2&7A}+#t1&677FJ5XxN{+`Ntj`)>X;olf^s
zJrPo%{4L<ho)M^6ADxZTf6idt;>g@8iY~77K-tl7`(0&r6gAD_Jy3e25|hDUgO|!~
zahuW^Nvg=TqSRGV(|2fTC4C-eV`Nf;bduJ^1oWSEm=Ql*M4&vEUu%j_VABF~7{g>O
zJCmbJ09=>L+6|d)M;;i%?a`<YC`87UtcwEDg{h{thcT`Dx$=oY={ZAx<0(6gbd`M<
zOE*TbcEFQ{HmM8O$PJ_8CF`?Yjt$cF2|lhtn;sTS8lmlny!sf0cQ*EzSgHH~Ot0Q7
zxnG<Mq?@wn1}n55CY%r>mxJmr4d8B=Mg6u_WNsEzCscRH3<1(fw6KWJ-{VqcR%2mg
zn&x~Fb$3{j?%Yt@IlxpHw;CQ6q>JlAMC?Q4>V;qH4Jm^9n4oH~4DM29g``1S$w6>h
zNe0rnFApA3zAqZTqKrDE(%<I}sx^X?4q_Q^8Z3{t057Ei>Ebks5{xBA?NcJ2$bF4^
zYp<L_0=4CNDKbr2>a9i93ApI?orFSalaEQie2Hk}L4Hm^kX?d)*sR{xb^6MsG6hi(
zl%Dv!k*W#Lc^Jl9iDy1ny`I%WWIO!tQ1;{kTN&+8S(rgOkH^L?c|s2yxTM;$UQb{x
zN_L<wjp39(vC8^<>D4ui3DTW9?9K6$c!4F<-pziIHP+L&tk9ZvP*@cn#EZVhElCN|
zZIpFYZbf3q`Rgirl$SK!aVd=)n)jdiK>i_MabWBn7DzYxc;v`Su;qhq53<y!BpXhb
zFFhX+8C)irt(nBT^=0mWbc2jjXj-Y4w1?UuZx<5Zxe=vtTSgqaWRaSBD=$}~0QO)I
z&tr&BD2|%=D&@-Ao&N({h}_V+v6_92q3ScpXk*~KCYOuY?IK8MahO>&FEvR!kKZGa
z=zNtqqIqm2e`>Oi13E8s6>1N!TELo<hkToo^yI6(RcXik@F&v;L(7Zd#3URb9d$4_
zWZzdA9SIm}JaTiZ?)z1Ks~0K;L-h_-%6!M^>>ypKD_e8{v0j-+p2O;i2#Ek!gRjCV
zT3^^6bEy#HNH#b~hvyYvq}LgDM!MtqW?)Mo(lilWnkkxUr_Da_*;l+%1dwjIl6=dy
z{h1$2CzZ$37_c$pE~xfPs$4Z3iJ8=R5g%TVu6m)VL$Ya@hA)mTL>N0fwT)f3QdILB
z{c8s-UI`p79+1v-WtBfGR-cs2?y-43qV_lbC4cM?p3K451o*7*aRESitwv2EBD3Fc
zceCv@C&Dv7uQ;A?&ujkjX(uvkQ-ie&36x&5p~p#<&#D0ISg&o__^Si{Bu9GIj>i_8
z7$M_biHGnYU5ocb9&zXr)HrG276b%bL|y*)vm-+CrktG+c5IRoV0?^;gc)Q}&N$;(
z8m#8^<-)C7N+Qsj2<mvIIUxHV+5wkPI(w)-U-ZkZ2&$-7qwzMl#mH#Ev@4W5+rsgA
zcDoV)_PI@(<KvP20o-xX4mzv3qTA7P7|UpUapC!o!A|eS+>k-}v)+@KcZ(Y03wSER
z^wQP3@Xm;Qp@U3Yhs}v-7A}(q8%TF=A`TH8*(fDqUc}T|U!@K+?;*wlvb(u8o%_pa
zZeLoE4henjH0iLyI$D6v0z(I9__^Dxq*K0J29nkL<wns6px?s_^UNe<p9IxmsKpcv
z*3o}Px0r15pI{&h6sMPX@(8eh;&oDGt0X%VYkCNk4>B7&J{YE2SAY={8Q^bFWX81u
z?Q5uPnQn8~kIG$V3ASb-^RVb$x{4_Y14;3l2%`_xQly~#sZL>SGxWN?;CrH#vT?~o
zMzZ1=?&(9BkdtA*BJA}6u%|&&Q(?mhQBT#~Kb?sLg>7*aFYuB1x!fV@7DJq4K%fDo
zCzMMmbeGvv^_~|uch&O}pCe~FdT&ENN}cYZ10pS3p#DgaP&-I9B`NYcyd>{7CuU9;
zJ2yv>E##>?L#@!vegy2x7Lh>SQIyoK1uRL2!{>EepHr}O$p_sSJ%SUAu~*)}C0ONl
z@2NQHv;aoD3>NW}nOy?J@Ze1b3kp~S3r2y%d0<>Bdv3j@1!tPhOf*Da=zDr!Yd+zq
zvfZgC`Gb<zL^%t<X;OoTh=ea2E%tlr>xLS(n9IGRB|8oyP2e9SvByP108SI)AnMYx
zbQ`xb?HX~Kl@NzVd3KCByJzRmWeK*U)<A>m1!npcz0l!1CPmlx_t>e$?<>Q#rbLS(
zMNtKInr?XX0(J;0*GS)&-nEn|cZ8z*qtf^?dc1jycInyFTC{QW2nE2SWlgD}+|I9+
zK?GdStcWJg^D|Rt5Br|8G3@Gm=;Aa2crGKlGGq8Pxi!x8L77okbgAfMAR5*k2m{S#
zKlr|!Il#X3QM|{7tXpl}T`$P>pa>2i#z@<V^f{T!e!<)H5Xlc{-vKS8&YTl);v(aA
z&IO2570u<q7KjC(3dJ_VhBlHa0Z@4nU^CZ5P1elAeZg%TV+EH9hiHwpL<uYt)Ka{K
zQr-jU&8$;BhR6Nr-8<uHcS1N)giW%{1p^)bDRShz9gD03up26H79Ga)m^lFhUvjt;
zMy+rb+SF+4kOQR-cGcmc=z#JrkMX*2`C}+>f!BA9z{8aUI^+1pmFY0vb-432gqaJN
z4;5D@p@pjxt<2Y963{fJ8C%z2zQgWT@vnI0zDbj4j0h?R8-^uaJ3U!mKNK3$<LOsw
zoqqa|)LMD0XQ^k<wi9TKAl>windn*PgdR;oMePUL7Nb(tfe&nIyC<~k$*C^nj{zQ$
zyMI#dc!-t_^$~W_7IWuuV%S3+Cx>@dt6Ez8<3Wc&KPc#;S;>Etej?9uwaaow+?W5s
z#HoBOrvPyYk2f+_m=JW{Txng><@)%{H|1V<(5=y&9LB8iX5m#Zdr4TF3<h^lK{~xu
zU1sH1>3sGzBd~3~FmNN0$TWhhTK)&S4+*hZ6;MFBun#Ho5AznMXp}YfgPiNT!TBks
z2mP7Xv9zHxT2R6PJE@h5Llr&Fds(VJGHzq`;IN9SFt)rl*{X2dy;&xMnG}>B_aRhr
z){yejApMIT28D1FOF!EU({glAe0rbhdmYKZe7v>u^~(Z}xw*FbSDaz;d7adHCB(UR
z@0FK_kYySbtN`;I4%G!8-$}4iOZ%0sV?^Aqi-VkLutqYwQWHD)lf?&seX$<Is6m~A
z%9|phVjitnHki!f!Lnt8^cog_K*<-O0_0EjU_y8V^TG+m_-w(dK(w&UHPKwmO*VAM
zJhGmRo*m%oa&<41pLFy$52Ah5SiQSwg)VHbYd9~dBYH{9E%WIqK;@kvUU(R%GS_M?
z*veUn6CVeYmQBAVoC^bXD1&i9#0%K_YUi}(3G+v6Q1ml~jqBvK=xCh2x``>}r>T6D
z^bG0%SD#vo84r+iq^2lrZ^%VOf6!{ffeo;3LToin%x9<}2JAEUV<PgbsdoX%_CD?4
z@BvtE8D8H`pXx38xHt+CY6$@IY@5h|9Zc~jlsb=27IR)m;&J4EIc6MsZNH5Gp&!wF
z0MyI28zkdv!_%G6ug@Pf(;S_6kR<p#iR+=~Kcj(uIfVwypVx6dFgtT06)K}|du>%0
z#e6Yje$LaA;X~t)kE<Hw3j?Z`;i9a}%q%Vku$S-Btm&IHT_=ZHdYiWK)DmC{4`<?l
zah@-L)ZxqEi1xsY>)XzbX29JtsUbcrTc0okm-+jYML_-<)m$+@Hxx4W+>O5~u?RSG
ze9>P=zaxX);G!Gb5dRS9_r!aP4XcY@{Y_E3jZXDWg`9GvCsUG2ephJTM=?4GfW68e
zMo_xK2-iW9BV?L<85Hw2g`1V7%Lt==vEW$g2`?}oA3&yJ8~i$Uiu9E&s=}M!UEeo^
z&Fg4-{2}!RkN2gTn4t1%N#VQnq9JS~Wae#$V36F~UfNA)s*Tt@jzl-D3#$V9!Cn<v
zX6OQqWSkj-;tIJSUoUsoz<>+b;gE_x`D7p)P%l(`onCgI-&DD7x00rehNtl$@Z>4g
z>8h&NF%q@xI0EY}Dp7W=K_{0N6N@}5wP##AP*w~OZfN(kjm6!v?&v-M*0t6!lBlCY
zVhlB{tzFX&#dnlPpTR!=B;ytLjeuM{6bUG=Fo(|;o=Az&@Z)dug+h;r#GglytX<i-
zy6mSE_Drb)c0948&TqNC;bo9}ow~vNm5Il|l;en<#s>p^k>;|DWuP2P_SE}qlo<%p
zh5h)AuJxb%%`mxB_2RVd4+r-dhPMFqXN(N_QIG&@BC0j4ZUP;VS#$Ae-O<O7q}=O5
zstYh2K>I#Oi!5W@Pmp{C-kcp(3}I7?yH^A8z9t4uF3(5xP6{xN;0gnn7xTj8@f_b6
zB0x$-TO6ys!@P(+?4aUu#(y0K@S|tsJPHy~O&_7!&Pe2u+bYfT;4XK(A*j*}k?8UF
z8Nj-mRxvX4rOEOYW$`Y)dLR0(4GIkcpLvNGO9Uwb8HFgog{yE@WIUK)U&k&RB|SGK
zx_)13b|$R*T$bR<#-8aoxS;;xb$X&)|Gt2~TIT?~e!3hxTKd)HfN%(0mv0-_Beaje
zINyV)P>4@fwP*g|u|Hh&`D9H_atOKOk&pS&==jJQCkZG$MO{ZR{Y_})XamPq3XF%Y
z0VhUE@oc@lchcNQy6D0HyJqC&#dUecO83?Nt7GccWvUaggR;RUCt_po(U+AN0bspv
zAP@-|J-izsU~tCpsX#r|gQ#`_elZG_Kx6m=vl#(k|60q_NA54e_(e?_$bD_2_dI)L
zp{K8K+)z82d}${68V;1duUuQZ$N{`jpC`{)okxh+SM|+&0w-U@hD7AZ8Xg$}?G|8?
z5VBiZMT3PT;8i>v#nxQ@C3UD?FV-X!Z@)H+44A*z`O!S?Ib5QgHRT(Q)+VH+*JRD3
zce@m6m(MN<>8J(+ofpQ5cLe(k(*!Oysht_c%SWGsjQQmS)02#W5P=b;O@M<Q1ut6A
z^UTLoc*v92>?q`Fkj=DOUP>hRY_Y>xR%!w1X&6<x4wAup-xW#X9^HUQE18-FPthPP
zntw@pxVI$@tfPFO!E2wG6c73#wbijJJd{QYIrJ=VIH~rLXEcW=ydnbS&)O@ROOKDj
zij9!R=v!nTB{^+!Z31O_j2clXX)g&9FyEzyKqD;}d4MM_iDzJL9C9>-bm_Oag-Tjh
zH+)$~@__}EUia=X%53+mrCqucUuZ9u$&@f6+q~o|Gem<O2i7M&02iJVk~B)QyiLr%
zbQyPFqW(CDHA-zUYIIrX_Jw25#TS^z=BJY*zgY{ZYH@a=(;II#neAG*oA!|U&OrVv
zjz{w+Y@qW#dKP|uSb)bBaMvG=HkZ3&@5>Qs>G{UG?I~T*&X^Ox{miExk@r9IHwZf{
zt`_hmprKvFUml+x$RzQzIOjCd1N~3#wX@S*GFw4B<nmQHnOHsPG^8@_ZnP$8WUAD4
znHXSvJWqUVmXsLr(unsg9#!YHwu#Ft6j38V>A{1YkTM))U|!eQN$>ekpN6H>(SYHt
zt{jy+vQqTAK_mOKFh6iSI&i>W60Tq9ptxX`L^lvt1daKOEo7C7gCT=m@l$pl6Y0el
zpkAa#6l@P4e9fB=arS)`Q5?q%MVG&9hF!SLJm#F~a2FgE>~8^7KU44v%Oe#fZ6)A%
z{O1tbL=91Gg$@)g=q+TK>#DPSP$1phNy0OQFWUO{jwb{#pQ=OjNrnX6-^o%{)FL~J
zF1-Ny7kcC)_#R2Z!~X61%|}nu)|C@eC<@@R>x2<xo-)QV1NCEykB323=3J=-*N?+D
zpHU+z#YC=l4<@^^Pr)}OX9%!^5pmY@c3<GaY#{DqI5MTuvMp<$V1-QFOFyttg+tE;
z_)pIQX_{!L;>P=hSycG5Y3E89yty!ndGwOUGq0#IYoLGe&d3r)f=BM(6J&eATt&Cj
zhewD5r-HbYQba4d;+YAIJKv>v3Gs|c+t9#V9P_NDO2!!Q>VBzli4ODpQ7qzEa!|dr
zEEt4to;LKRBh77}MyMZ>3fl#hZQ)p{WN<+dB#Q(7xE{t)Gc*SdL0sHC$H4cacK)_=
zeeKA~p|gDbI0ey|0B`8wK0J6^vNzlidN;Ku$$2sZCrGl5*Muk9jG1mP!5Uca=`cz%
z=WYuH#(Qf#(op1Th9%^;@hRnL#h_^@O)b&}=I@Ix$LNZY6ly))F=?)xdvRn}D>8DT
zK8^Z#9*KEk)&L(Mj19Oj$L3<*lbJcc%~s&+7AMt-qkB%<A{}fpAwv$V`>j{e8q3F-
z<<j1Uisnku;tP7!K15P>iGN5tWXkQ6#1E<$k--@#y-9L2eCFqC+0tkh3S1K(Rh+%$
zahkdJcwU$Q^{iw;Vqn$d&k8@6Nix5`ScX*C)BH72*xDcf`{{OIF<@sHU_GtEh$Xik
zFsgkKFu=BR_5zQ|uPl{pIuZewba(=+2VR1!Y8O6Q95!Yd;^F6DQQ0kLImAs2Tf2W$
zgQ;Q)4zvfV5HA0lD13>FaLrVTp>1EoP5eDw5Ad{vPS4^yef0F8ay-E~^aM+Kti_OX
z6+@%<pr~P<R@&QVHW8}Qx#Z<Nd!XHBL!G-wQ)v1O%xV;DvDbUl#j{Gb(UPjVV&LOu
zeENZTOfN@W=t~T%O`n?bXx!lgLhS{5wb=U5E`5eOsRfsYfZqw?gI^6zYrH90LKqr&
zs0yDkM7TEoZv2~~^o9&8e^tP*GZ`-}(Lty;b0ATb8I?Li9izyws0A7BGbx-e;t9J7
z_#1YpVT$1tN`!h%A9G1@IGbP@l&fxjQ;sy+eD6QZ@Elkdsu6#IYTHWyZxb4Uea)w~
zS?*6^fIVN<cjq3I#F~;Pa9&IC{l}CA@=aWq4WyKa+Bx5twNEtUF*@#e2Ij}Az5wi2
zhsNpEYnq1EEYmyp3WtpDo={>5dCMZowkA$^aJV`H9KQSUoNbky!fg7ZnbC#3RL`3d
zX^|?fok0>$X2Le{M?iXJ-Ln;FAISt*qN)+nL>~&k4K!IBH7_u8`*h1#Lbd>YCxZJK
zX%8Q8vr9z_2=SMi@+BT9HXa+cuJ;C4_?u}s0P6t`-8g1u2_ESgoY6pKW->nYnd9JE
zzNzB7C`-sfk7I!P3*1v-nNngN9h+W*ml?Jfo}X$TBE#q*rp_nPdm1bQ%y-^re>OSY
zCi6tX_hCx8uQ7&jX)O}r`~=S=hiA$wHwWPLd3x}EyNE85#XAL;+HH91>}Si`b}Z!Z
z%pysUEVwj)f4R=2hK)bMU@)ti0Ib5eMrw&%Rd2JrUz>T+#(7^-0+{#mn#~YQIGD%R
zPcC6CyGmQPD80AgvQ{3}@ce4b@;nxpms2lORFe9U?RmplF&fhnyzP;#2#e&&x9!mw
zrH{fD2G#?tUeDSdDU#h~yuT)<86Dx9Eru>Q`|wjrYHlr;(||3oUYSo{F6c9S$}g~u
zd9`1mCOzB5vw?>Gsj@36h&Rq?8{kKY8Sb#>J?X}fk=(b2{M;EZ54UUITXXUaHodjc
zkP!#wfp#wrm<M#vxUn$qF*J#E<?XMaZDPv})jvL!()Mn&1?)j?Fu^d_v#G&M=C`Q@
zmTP9w7&K*Q&MX-0pXHG_DH?!!Mne*;VEmc~Ht;Yl#fQdNB~-T&Ek!}y8;L&8-4`Yt
zIPd6kvW{}?V%cE3GMHI!VGR$B&LPf|y_pV9icIy8dSLv<uXl?JPBQ95<(8Zks-leG
zqHY}NZpeE+ijN3DP!|ArWcV(=9q$b-6JqeHHYA%Qfi?8Iz6r?rtZ*ltvutsD!0xU%
zIIo<f$!DHXhf5ufN0>)Nv-jWq_yjxH5}!n&u^X_bvzFs(S(fIi$eyn$44z=8&LL9C
zgY%!ghU@bgi`cXR{L9Z<pQFD0l35O>w)#kVODJEuGXD5p^qeKfJ0`)N(?Vb#lL*tM
z!MIYDKPc+6c!lt~e^zz`j`zTZzOrXiGCnC5=zpC)vd@NFdkX^%SK-6>!rM;TO5Kc`
z^myqO>=Z{9FM)oAsiftY2-$RZv4yf(uIA{thi{1d$}MKNAtcGZcCZ``WKX|}Ku4hE
zzC!q-fuTBAKpnX+ndSWgz397Z6Y2n2h!(KpL7k9CZ%@HtG?irIoGM=geQB)rLqIKT
zn8C&u?qTQzcpg2ENvaabjhW@2?+|Ih>6>D;H$}dj;-;)KRrY!;0I>J>{Do4KRupiS
zJRaFPeZORqt=K_tGP3r}Lug(6dB$g8Ua~=?Sy+GAhPpU+cA!O5LBIv~U`!`gF+XIT
zwsS)M9>CwVZ4*VlC-+}Q89Vx|kmXblYeogc<iQWE_?J!Hg_;HC(OI0xM^I@`xQ=WS
zw%$u9$xFUqO1ALz!^cBW(+uTk0sPA%Qh_KN@EK>P5iiwf48-i=<FwH5GbUN|_as>C
z87u+&5}eb<rI)nVLm9jx$b$QX??GUSMD`xzYAt~_y^>l4Fb_NVgrWVs509@XhRH`B
z-si9iWrr3DP8p5UCmn+Y))$yxF+dScR#k-2Z+3`|tsB)^8M{kxsAPRkT5t7O?jMH-
z%KN!%+J%c8TbV!WLDuCP5oH&w{Wac$P5!MG<;P!9N`QV^*7S*G?$z$jL2lk;2=}tb
zSC%kD6^k*i%iLJjT%TEBUJ{x2r2?yUeRDC_4QcsNON5ZQ{0<+lYwYOO)ScXDN`ObQ
z{50$ai!zR_>!nQ=@10rlcE8WIyxk}FJ>C304m$xq0z!0QJKI8|>>Mi7_7kXLsFq<7
zgEyqJuL-g;%&-tuf&SO&DLe(AO0A8YHKe<fgWsyqpr<qDfKz+nWI>aJ;j#$or+nB9
zYT^*)yN$BA38r{ed?VJH?BQTakqx;U;mlI$z<m2+=)@aK!3kP3BZ<i-$78obd6NzT
zslDFR<aOPE?q`5UbjR?Bcl@njN-zaJw!yZhb!?${*)797PlBPt=j#>$xWD?v&z;F2
zT*e+F;jpnk5hIHreCHss<lFtpu5$I`e86waQU9Ju$K4)F?c@oG9fn9AHH6(z*IOLZ
zOSi7hz~O$N-C!t3WD*GNt7|6G2JfpY6@@dBNt2b$;&lywUr)%Y<Ach3Q=LVZ%`zp?
z`BcAjXV5^#VIvLIux4xNuuX6HL=2;e2*6daKM0`n{(%gz<A0?4SO351dBA^802~y{
zCG;Ct`0SW>nXF;bmY9-|53N|eBDlWfWS9}HQ#mhSU2@thT3jcm#9(x4ZD=;;m7=Ze
z!g};PZOd$6uXZ^Jf!?Bdnw{8RQLu^5zRy3IOa4&)oc_I(L^y`xBLoT$bADhodehb*
zp+fk45h)q`3h84NORSKNufu8y`w)sAOF8vf#Eb(Is2u;hT1_W5-gcEar<+J)2U3CB
z4}G4sBxKF?$)E=s+oeNf9>Bo2BM^%bX~;edvzc7I6DoA_ggJNLq&Ib4rfQ4h_atM2
z3ES$2!u+jcfNJuWe)6|}{mZ}qH*xfIDiNZ-p9B;aixw$bV-mI{u<q?nCsJ79Y82dO
z6r#CBCwXsmQOQ}zV`XSCgzq_k{Qg1w{`nE0zki^<e|}{B$LGg)(Eg7t=>I>qB;P+j
z!aHTU#nztBH5c*IhHoAopL!y1sk(@7WFgk6$4Y-se2tAW!<B~s>xY*3`;DBR34VM7
z18e^V3#7q{lkfsF1xI%5A&bz;ok>D4h;QpxHpd9f#j%Ntxc6b!qW4T9B_RRZZY35+
z#*vj+aT?}RR0r*mqbd5_XciwYqxHV_vuTuiz;+&iMH^HeqPAKrP^|2GZM5LoL?>Sn
zbQhln)1aL^?g8eamu7>oj}QZzNV{}C3O$H;;HDOi`>Z>RX>Yoy6aDZQ{4>Ts%6k-~
z;^Jo)k}6pA?ClzUBgMJ$h7k8LrcoH29$oL49qgJL5_@a{Dv;L?Dy_C2bdB=H&+lni
z_VL{FT-ZS&$XR%d_%R(VGLReKeQsIq7QXA&C%JDOog%?Ou@4aBlyMpFrMBQFe$>zU
zhkxx^8l276;hn)l5wqw-@Gr@ghBL8(m@j8d=()`5T8H?u(80jKNxoO`kKi$H9MBWd
zx1`_~xZliDbv}ioEz|yt4;8nvchtXe4H9U9v1XTS>5XJ3wlMK?X!ada3TEj1pn)8H
zcrr?uEjUvFaFQR%eGh*q1po1H%8y2d{jRow`#+Juyzk_9gnvIy^0!^EDIeY7apGmU
z(gij@HiqinwE!1&6Dieutv)kv<<sx6f^;{9eGar`eOb;UT&Ba62rkwuUYk{eebc-a
zOrn1JsUDA7!0Bz#r6s&9+(^HRy${8||ICK7{h}iq<xwFg+9LtDi0L<=^WGHpcm3)K
z;B-H@pfpFK6ep}oaSrD8duLhBd|E8+kXc~>7WucZzlA***e&e;KK%c_0gbj_kKTOm
zrt!ZUo__>zlD~idpA36%!kS-TPXk%CjJSarr|JHB`F_D6csWW$FB&I3@4}b6^ZW>l
zuwQQgdl1|~;0Nvh40~4iW<F+ZE>!HpVF<ROL&$-Y<a;Bcm}8Ey?ah5mzrvp6C)jt~
z!u~ITefH0=cbhI`4qT8c*zQ6sf9T1H2-Yt(x*+A&zNgl#mrx5u3-o+L)As`hZ*%bu
z8m~h87H2iFpLr<h1w%uiom1eVY!UL@TzDhcU!X}WDh|KcTq0p;$W07W2K(4tr-qwB
z;*T^Qrq{|3c=T@ydz>o%I)x<KZN5pxiuGbgIQ?hh*iw}9GsT$J@cIdIfCqkJywCUf
zF;}|Z)>vFPx<F^vyeW1OFNYtQXMy?^7L+B(5Zn~@q<v|5d$5fwcC7S04+mCK?~C?@
z<rI9Fqi{SDQ4PKWT-mvW{VnWoVgGl^0vph10}lMjFE@?<-v|4&k9EJmK1|q9yOYby
z2fNJ!1;z5j6f%D#DgLyc+G}&#JY7xD>g0y7|4~!_4)!?BF*I~IBRn;le4>$p7Q;!4
zoRLYLGbFFiN#_`>Lw;G=ll}zz&Rf|3C9u!=8TNPWy<JSm7}o-qt<<{GhiT90%RKbV
zw}m@-w6~Dne!~R^jhFwN@J6u5A;W2B4wcZBPW0W@O&un26<V4an16jPPQ!&IWWGcS
z%GOO`KZ>{F_XUP``Q@PG>UxRt@I{Taz|wslyA>p#L17pT;Br$s*Z!yX@yKl!5H42f
zg{~V9P9!gg<FyKRSEJ?htF0(N=e;THv84Lv!1beqr^WK>ps{deQs(EVqUq*&Dsq(8
z)tkit2k9;BZ()B6d$4N(G}^8mzVYr&<Nx=;zBRG&7ucuvA5P$it-%rnuV;^hiA^I^
zWecJ6dN<l(rA^80e<?q`A?zW(*ZseP{kk0F(_X7EcFEojYO95fR$0*&g7xZXPc3b*
z3GjKLUtmx66YRTgVgHxFKKEzXt5S(FsWS2AZQeUr$|yGZpo?rLeeoGp3j-2KDFx{>
z0XS&9{O5!>g8d|8UWQu*<vp<B0_^PzcZ3ruHdhV?w?h0?@}ASuG~k)`o5CJF<QZ|!
z`-R4Dst&r9`Q&N4W9?^}LlQ@i&*w6G3pv?9#bjH9L%UmxHd_Cd{8=GpDRh1}zUbh6
zvd7=#&I`uz$x1-Fo5Efa0|H|9cp3F`9onN;BSfQWyLEYWT$N0RiqphpO5(sI;}-U}
zu)l>p*tGx}ZPyOpc=x99|NCG+ui5eo?DgY5x5@U{I5c4>NA~maYH~hWspYumN1$r2
zGAo<)RQ2qJu>WyQ|KGu$ajyS}ti~+!nE?e|<sK)}C8kH@-ZSYKR-vw~Gx1;D_~bvq
zzWWyTe+lgKeuh1#H(ib)srXb0=g58y+*-WI4AZ&@en)4Tq>%=a&(S|%UvI$iY<@ns
zU?l2UN9iy-lDiy!ugljD@1}TSYcX*@{^Oec9|~^-`_xgUeq>%xk(YkU58;l9&>Az_
z&X*&;s+vy{yLSvL0}nji6!s|b<@V6B@1aslOQqzDscS3O9M3po8RXGVWliAA*nt)M
z{Md=ecJL_vvNL0rEE(Az-SHYHj2nMoCN;RDgaLR9$b8%s_S0h7VT&uwbeBTtcxEpJ
z;imJSo@d|PM=YI?yi-c1i3>{a7WTKWzlHsGlKc`#e%br;J2#F0-v@gzytZFpUlBJA
zdnZL4!}#v8wZMhKN8Qy1RZ7Vh4oXeVm{96A&F43S{U6<+w;v?Eu2)v7J2B>p(aJf*
z@H$tEh91|mPB0p&=)~Yx*i-xj`<`3a|0S@`{~7kZhpp$;i3P4{PQ%ZuxS!&epEQ3E
zgE)VHMOckLWV=TW1{yDR6SXu-L{R5Bl!cLz58XZe&>%u!8qU2__uhRo!p=jyx$s7?
zf0%?EDsD+pgIU&>YFrQL;xEf;HilA<`&f4f<-Q;)uoAy1?6sTfjdZPy0xS408e2;P
zM4rI$BoI<Hxyl^J5*fS~13U!}Dhl7WR8f+9C2JFjCEF@ILY@!uKoNwK*aRPyMVbx<
zRmV+XzXf6MI93p!XQ~SJW|VnU5=Kh2#NOwK1p%|HRQYHJ8kF8G>~CRz3wy9@0W><U
z9lr7IP2>Of!Jgzp`!BE;SiDH`lRuZO=Z<#4j0x^LXywN@^i+FS>yd10!sf(vaYNYu
zxEb%?t?UbEvEDUK`p+*aO`_KaI%6kI_Qz~0_U+1!@E9K1{R;bgKf%8D7WRJ$><fN|
zy$Kk1yK|#w^<<XanXu|7^zrnZ7i7csG+^Sm_jr#jp#g^fKfXZ^-tpkf4%Xhr0kgI{
znM&QbU8CHQq#?m=Uu!X&SIp>7-=O#DZ9|;i+Mr0vZgn`!fh$pwdck};Hg;3`ou}vf
zOIX0&_)(7vu2x?t*<Fk`QneZ)2Q9p)_MM4fPr6V((G^p40v=g=+*R0(^re(cNr%Jz
z&~0^Zm~sOBjKn916uD+j@sW-k$jt17nD60<KFCB-djuw}?C?5#<$m@)TDi!hag%v+
zT&>${_P3AT-9CEvFX0UuMgLOp2miQf{Qo}K3&(f;0()1t{sz?N$o*u7%1gL1&&|M7
z)YreQVAsIPHI!a)8y;WY5cWSn|L<TwX!DjR`+jZAOicHBFN^2mLFvImO{Rq_+!mrI
z8c}+`T(hVA3HI-9VgHxFzVK(*|K~2ng9g?grg)>3J-XvuP+^90Et8K|7z&pTOp<t<
zL>#Ok>5)D(qs$No@V<(huIy!{#vjOk(m>g1Dh(Gof61C`q|Y)=2k%IFnC*=ZQ3JT~
zC;Z*nlVuwC6${S`Z5|aH7;E_isey%Oj!C|mR5%wm1C_D{&-EEYX;s;lv<hRy3*sp9
zfUB4nVvwZ~i%3lcoL}5QI%mK4A8fPBb_O<`GdTM7BSjv`=ajVBO)jLbQ(;SM0v?K+
zuI&HQPi)`xIr|fS8tA+`QYu^YW{I}vxxAma$=}OIAI#78^*bQ%vjXoyyQ%Jf*Av_L
zRI0D~j?o+rYCO>J0%Lg1wuAWZA(i+b603fHdj%8lR*QL8g0rX!tSIg`tuJe!A1aE{
zEy1>C82YrG9km&07u*B&stuviLY+r~EO$Cp3=&vl_y#0r1X483u;{_ui3jOofhp-t
zTVpCG_c-B^y>(g&0YtMYO3V4Dgoq`%Z;Pz8unQ;?HNcGje^;yh(ev}5*7&2=1rug<
z@BRD3>!3KlOfSIxefYnL<Bi?_3+$bRRz>kuXGu`Bj;0jomhf%%W(H0Z)LBEG&dhoi
zZB2gr6R`i0_aE;3AFF)O7L>;^MQ(_15T9cNus-&s+C{{x<);b96@}VS^0+3CNC<<i
z*_jfFOZ@FQd+MKH-+v4HzXbM0Kf^vMcwm4c7rMt`(jlE-Xxh8??k;YOBZ<YQcINs1
z-a<HVP%HlDgg1iyla8=sbdHx){BHb^dhhB;yPT${1rxVEQn!cbN%TGfUWRm2*xQ0_
zo+Ae6YcwND&CSOi+q6nB2%7s68X_L8yuvKc045I<0+@5F8PZJ8O^9p-Q#jqF2gO$^
zX&-SgEs{j=>120-s^g}x=V_@*ogwhKG%t5muU3)7$6$v)6NuieawKJ84?&*<?mf7L
z{eQC?|BrA0>Q%R}2m2*}>gAV%e`4pR@qa-tI4IWtWZ1VxkNg7r#y*B`8P4yB7)G#!
zS@h}XCrKmkmnW#JEDgU_E#;@>xcU>Y|8Yk?2=bsUsLtl<F~wWhcL|L72q%l0{So%5
zAUNN&yJLDm<pk*AeRt#k1bf<_U_W>Z`@aPC#XrOTTe(zzmQr6>H7W9PHC3CCYzp|$
zA`TC-RAUZ%LFq?Epy&VLyK+Fy{fELE!JeHd0-|_IUph~2e(3I2YFcr%!n)W>9wR38
zr%m79&%oN{rm#=dXzFnBo`b^eHf7#b!{ljvD9v9%z$7x?9^T7C%tr^xeeIi3+F*kY
zS=xBYyT}@sP|feV;<LbKAZ2YjxQ5zAra-!z!XC^5YX(fd?A<(t5yoC2k2>WYF0ly7
z%iQ%@MKL%q7+z3%x3Is3Js8+6?7@BspwaQm!9THc)A;{=u%A~R{{{B!RU)+z2Dv3s
zcv3H^^mFYOvo00diNP0SpIUW`?_!&Qsr>O9^g!3^f83D|f;?yos%aU0X+oo84qF&K
z-oR+BDpCQXcePIstrd<^#A?4ke)kLP>3)L!&@Jr$64;mg410$a%1Ok2RNLMz;!mvz
zB6K6=>yX+-n6fTkQ3+D=&FH{Et@!`=ntge}VEB+t<ttu{ep5nxz5DU;M|52paPY)R
zVQKHhc!Adv-xT(AW&L`(fhTnSg}S7S{Ewlq<Z<;zR9FdekWq-3_GQUI#l*_x?@Y{1
zkuim?;C}d!PQzP$h!3s;%!jXe`jfF7(mF_YQ`l$JkV8B+Plt4>q!apN^pHDt_siQ%
zof48sfm8mX!C6>PdbhB@h5aq;!L9|+=(u+H#=AF-|KA6Dl98!jU_U7Clq166t$ZdV
zQvF)?^9hPa8T%V<HX7S4d~cHQ+$Hco0s9|-2SFaR1=TbqFT><^z$p^_D2B+C`j^z|
z&4yQB(iWiaI7742z2*M}_6$G4e&iPRe+leMe};X%PJUV&1D$wDAUVJO_I=Y@>LJ@t
z!<1AsrU?AVmAY8qpjQ0P32(Hre`<f~Tgt|AUt(X<2D~dyuCa55aOKInSIFgVaY2~l
zz;9dJ6!s7OeHiJnKDbv897_m<y12elvwp4gT(07y`JijwE;R7^U2M+{9(SR)YjJt}
zY6$(k=5Bp_GXc__MUrgK9mX?Cf!|=cDeMIW%diJLMLxBpM|)3@uzQ_)UachIPN^}E
z^+0)#tlnO;|6g%~-mM$|J0E@uBtL!scVBO+`&Vh)H2!}d?1dv{et|uMOp>-?b{v8v
zlSsP{mA;M_LSwPAy1R*70Pe1Rza$~VpMd?(*XpmsUVWE!z`cuFW*vHEFt2=aMyg~V
zPKwW^)4sj#%^>%$D|^PDU_W{b`@aPCWk16nZcb`N%=!+y2iADDxBc#Be{wwODuUb#
z6Kn5|i<nYAaL{-ue-V$!;jpG}!k8pspd|RN-BJT@u>4)np0p_cx=r3cUZVep!W+T<
zG6(82gHXu*oD7~aNhUpMM!2DJ%z*<bVryZMtI<Z_2U>0ldy7ao4T0!KpU01>5RN&L
zqnMl7R_m9YbNufxq1;nEA_EnZyMN8i>%bJc?@lD0-e85bf3KTuO7zEe_9sGiP_UZ7
zjdwSNeH7$3Yn0RaxWlWDpZJK&v!)X8srOf!iHZB>IRr4R|MYYAw>Rj4{SrX!_RGP4
zvU5}2KZ*K(4&5~VKgY%`?0>D-o7Uz{b-$+mkG-45|L3jtKlz%yH_GBKu<yP5G>1g{
zTx(P8gx2q6*buZ(X8;p4pRVN{QW<)Av3bZp3Hu*4_A~TBHBBpJ_5#_qh^4%A!lW8s
zJ-GC=eVN*n+)Hh$My_*5?U$83^G~oJzlHr@0{ilxVV`&@5*~$=k|95a7`4SL5m$pJ
zYW`NfF?4IiYL0?^{~wRf|L24^g8evQa+i_&n@#kR?0rS>tMf!^8X6lJTKuO^?zMpX
zX#l@CbyL{)lv5>e!Ox(2OxL@pl@LuC5aO<}^oGeuCJkFuQl<iv2TnMh2qv(M4@_M?
ze&vr&)xbo0q$g7RyG$FYFXjRv^g*5arm)v8nVRSd)^1J1=i3#LQCpLY4H4bfeY&wg
zS+yJRN{JSf-mM$|){TGb#s|9=K%?W@;T!MXH2!}d?C0ga`~rIyL;u=Yt}YB`qke-!
z=OT=%XC|ai2BQYPt-UisaUHXQ`jfE#ag*LZgMID2%^<qEAkwO0c?-fjGzt&w#NjJ_
z+wIm3(^*PuQGS6v+fT5cyoLQ=0{e=eVK0`e_U)b^Cb8ME!LgdFdH|6>%KPf%p$htq
zl|k3`5+X3rc=^u>Zv=Z^&Y5glA6pS|6!52=>Lr~U4*qiAOdaFWUS0_Y(@XzpH@-64
z3y(YdOlJkXeipv37_C+&f|46-Q)i-_;~x*i#skoOF+jl;rik>WN{2{!I}mEP_c^)Q
z16W+Lk}Z=&JdY^g`T3i|zL-FqFv8g8xLtDrtNB$9UaMvp{fwRdsZAv7IQqkS;E}ak
z*x$nb7WUUE4l+L1kKc6vrt$y#U{CUH=NH)Hi=y#u#IP(kdXIl~RI$e-X5FqH?54S*
z`m)$vHghTm{U>4n<0id-274K8Z;J9-xyqNQ55n#fko#F4!q3QDL>5{~Z*Z$7{_4i(
z_zCt?x3K?9U|;z&>=O(`n~y8bUo59mJhuz*Ls%uol;zKt!N`PAh$q%r!3SWUgcSFX
zw~DnF3HSMQx>+9+t3+NLJ%WoKnlCoV?AAM8aL~Z|L*b2Jf4j2(=f7uv>&E|XWqt}I
zKYjmqUvH}WS83cd{y)dYtsDQ>dcA3F-c<K%>i^igY5afQYX6hn__r(j+uyVQ@q70F
Izh2q@e{x#quK)l5

literal 48342
zcmeFZ1yCJJyYCGIcXxLS1eZW?m*Bxkf)iYV6P%!dV8Pwpg1ZykNpN=w5+uNvyzgFf
zvdKNQIj3&jug=-Ks}{Z1@SmQRr=MSUPtUx&o}rlbnTx`tlOLEJ?0&B6EG#ke4SV82
zCCBK(!_QHv%GkH{c6~YEnUGSp!Y}Bm@C!SY{X3lFQNJxt1?m!mfx;ErBP}vsJK;@3
zxbh;@BPvl06SE}>oK@~?272@QbBb2p1EVYVq@((+oafSRO0o>D{F^i<KaP2Zvp;=e
zRuBD(LVwWE$dyME5ku&!k+kzW)wj(o4z<y*Kc*KbdjuqF_(|6%B<>zwb?q@wpW8r7
z8q`6OFMOflc36y?7^i5nsvy($Fc!{!9-9Nc`CK}pEQvmPJh!2@rImQp%c1>q!HV0C
z1+0%?!?{W3_{-~rBukZ*FkY>O_!Xnk!g@vIO24=2UU7}w$5+Azg^I1GVM|JA&U#q~
zPG}BD{-Kqt2wz_i!lE0)Kh`KzSbu?z=Lufmnsj<pZXF_@IuCUN@uMP8hdSFJ+A#1u
zwG>u;rricr{GZSeXNq@82u_JdTS$NACjFzfprSN!&DY?|-=L&ZYQ>sqY!AY`^gJg1
z(%#OVHJilE2GZ%Br)_u(6NWl07_)zQMnS21^}(bi?8EDNI!=j>X$JyvG&FRD{1OBP
zqeRVW^n;4pc;o6NI*M+3gTYZx+qBFAzi%Vyy>Gs6xp5Vk69=*goiT&cJ#F3SG&{)J
zmy3-rGpnAJ!SvN%OGOlvldE7mi7Fb(DWdQ8pTX0TJ9>{n7qP_8YeL2uhZ@JY{(=m%
zrnzKa>oES%=$aRC<3Oy17B2<{YlPbmr(O7FDa=D=<-?Wz<+F>4?<&IDW=m<t?4(6e
zXc19X`gp#XWv!9up6_nDVD%NA;4maL+1hEW%HV%fwYHShklv4N-?<?r9oa=@_Dz9%
z0Rg++@UpHkyTnZ86p_|^al7v{71yEQthe8eQQLu`PWjqY`z4{HBtO>4H@Q&i+WEjt
z_QG*@?h~eN72bJCk43S=#5#y~+!vdXuaC(qm^{#B2^~5=F11=wdzWE7e}s`TdN`<n
zPt;)J{)#7VWSdNLdHX|G<!FO=Ho4i%ELRWnPyrGmGw-9Mz1MM!fg|pWT(z!`@C#Dd
z2181Ab#ncXJc4eBlzPvDdYMM^PZ4bm-m-fYi7oV7_lb9~v)GIFiinnBUTHT*acS=r
zy@R38_HW*cc$fDkjkEN9S}<?(Ce+O_LdgScx(*#}DQJ;hd}5g`Tr##{nhlJUj+RaF
zZd%GB$Xn;1M)fn0{_8IoST7lKj+daNM^&2CCj+4i>V{04wChYa8rB@97isfD2q2w3
zI@R}nbeiJNsLb){_R@IcTGHQ5Maa%;@|GkE)2h%xx&_=t9sVSd;B%#;^Vr<0p;5mN
zxs;C{8Y(8(Pim!OQiF6T?0A?c$l=~QJ|d}~FBx%Ooj-F4?msuSKI2@n?(Ibd<x|^B
zU~}Ns#N)CLXGnfrP^z`I<S06}K4`i7OqpzM&6pszr!J9XUN0DH@b!pZ;phvk?>!;|
zw_u!-Y{UXar(~Gz`^wu<3Yz1=E=8e1IHzUKdj$e0t9%r$;~&KQyEidRT=3mZ#FH^Z
z(Q0MKuXn;dL*Dq*Wpr+Z>lwciQ`B3fgzw!>+~mU**$v0b$j_c7rB}Acwr(%BL*64K
zOl(8@c1aafkVr4;hqj31Q#9=zyBfRx@r|LLynh-Av0QEUHTKsSNN{#4im-?`=rhoU
z2V9d$0g9EngvAI;tF}DI)7T}8{0HIwmJW#~nleQ*M)ZLnFLKRDA{Rbehr7|$(&wmE
zTH6(UPd=KUxOmD5=EfZMk}yCcpr1P3?yNhp<m<;|B5xH6k5l)vkyo`7Xa3=-!{1yn
zP3S2F2Vd&GL@rWe)hFmGxmqGgL$&pUix4X8Ya&*^$nLFv5;sBotg+o-AVWbu-=y=V
z6@CMA+G1YUd!dl1JPYPaCr&!-&71u7tw|JlZ^k#Z@*jB5zV|^A*f6|hX{Vzu{@7i}
z6LFyEbuIA@Wi}xCafgUY9#}K0{|NCk_wxd%{B-MviVIDNlC{NAhp4mB_F{;fPa}|S
z4=>J8oSIaYuUI40`Ij&pSZdI#t-D~KNXE1EJ7AC0^p&NTwn`3`*|e-c8WDi(g;Sec
z3*C{^qYwvtGQtH+UR?uDHA+vWs+!jBnPvqCFG%;`N(#q8deE5%ulZ#LZqov%tHGo$
zYMxNkF*>?>#ug7a*uMivPr{Ds@hrGOW4A~Ti!+I)9Ev6yL5(<}L3wc6Je&)k@~-~8
z5PtX8I29!{BS%{<;AjS?Re4Z5DwoKEjFi@=sFU}u{@`^1NBnpJ6<7OqGzoM?-Il+f
zN<PYrfNN8uyd=Cl`dz(?+7rq0$*#lX;NJIS3@O8n!?T_5N+TWBYE<)K`Dsb+>W$JS
z_1d*Q7w}@nX5dL=_@NP=Su^{$?pkyo48mSqAl%hIBuo7&EGpbj%FnQJ9e=88Df4ty
z8j&tJfE^<c@f8&GUHuxue6-sVO59K*n|^7@K_4W^*OF+@n6=wAa_5gvSAWaT_Dw1_
z*M!pBN1WgiEh@#|^Pcf#p?L3!b!2B~e;;UjayNa3AlA2famrO~%aZkd399R;0p=;X
zLuKkDL^`rT6sW{^^?OmWIpL9y9)-pn>SW^DSGx^;dT0|*S#2U}=kl6%4(YD`?FZZN
zN3h#v==wOCRHS6(N~no_VZi}9CoKc4H;$I@clB#HUG__T0+-D_(8oMFgYtM7Aszfl
zvoFZo3$ecp9bw$nLs^tQ>wR)9)W=L}tpX+32$j|;)RwpuWaoMnZ?(Y$epjzaVdn8=
zyyAu8s5N#2&rC1|!H0JUJ3G&Unwxzvt}VFl>ftAz#IpGJVdHzmzPQes77r~MX`rT_
zn!&Cwg7R!xhq|jzkl^TnYY|<RUKkd0Bh8m0|Jc4!MMWu`AikR$&1^w&S3mZN?}hOC
zsU-2@O5R#l0@)+x=);H(eNW?N#xs=%T)21j!HmME7>S<q;GU}nuTq6cWKMBKXo~$K
zie73X3@AKCy{qp=$cZm-x#-X%pT?Mx0GBg2!1+Y?xn<t7AK#a$cZ=<=KFZwS8WP4M
zL@0r#bb3p>&H_0pn%&5x@v-e7c9`ZA_FX-!%o8K<`iv|NsV67`*dJbcZ^X=bfiryo
zClL&W3mHVYtEW~hEANNYUNJ6wR$$oHh+|UhQeDCj!KQT1x`)%W_4uw{fSIdb(~ooY
zGTLgAHwEGI=YkNHAZaQQFDXfE?k^EUclC&ruw*0!T>A%T;%tZByG?sE%}x(rBIisV
zO)wB$e)_F_DfZ*%C!{oNt5%GBziTuwDr$aX@2H5Jo1{*{2zjE2d^de_e6trCiTrD1
zhS9c9LSpEq#U@Q#)|g4qg=0t%qG{mn>Xm}rg)I}VL*n6@zHfM4W~xBUbQt!v;D5m-
zA#v3DKy_EIZCv(XUh2rlit8~6&B-|t1cSz!mQd0D<yCnc{;iR~UA<0o<u|56{aGkP
zCap>WU&S3Oh-IEvv0zVG4shchF|yy)kNaAE=0FhfO#IlL?aL+`HYM69Szw3-UtH(O
z9&?uVTmC7z`cV_E6|tvh7(F?Q=lTe;!)}qj<3$=r7w^G-xA`sqompoCMyk?D&-TQ!
z9+@xF6cjnnO;(Me%<U+D@!gf<znh=yRsU6mNti=qN<%iz<@enh=2#SDSqDUjgB}C1
z{guDjXYbLj=hZ^B?c(Rj4d|~20%ShgnPwbHJ@Nt#HGbdgf78!D7#{i3>azw<)G+Jd
zp)idTZLhCAqxU838m3xmhMntfek{d9stQ|utqc(!`_RgvjD10e%FbU5w}e((;VqV>
zX1c2{6=riZrg+<-ka?XTA}u%3JiyGJ%5dQU+m>~r(E6P8uD&IFPG`+&<+_QFPck=D
zkH)%^>-N#JIYC>vEzGy;UBCI~FkZYz$4?yFq;o&;J}})ER_0kIb+wmO`GTE^{XR(%
z?{4~`>nE@Y<osdnbA588QPSb+*d}a)E!qU06YjhdHa*OD_3BejqIu*)U@H}C-z&D_
z1>3SMV>g06mDUtimIRl3Qs31N^i8F<IBSIm?v_?ZaAkO7p_s6})A2EMNbhzF*3`wn
ztFLT;krk(&&UxX0w*w9rTbovlp8#1k>0-wJt}!IM|2MuwxUEZ$E(W`L^L=E}tGYGV
z(p%((@e5H5T!Q1DI@0*9KJC)Su^ZDuVUKJ-oL%aoBv8Gy_4wqz&)*fWGnJc%@SA@?
zJsu}{t@@y&z=iAzY88z~5zgLUyUC&J7J>R`jTY;-{&iYQ&PKmCCV{fs7hje9#BS{M
zP@+hy@oWn>UFs*e#0PiF`=le$q0wpeIR?p;LuIUD1MFL;ZmE-3QxS%kPgGnU{KhX#
zxPqQpM)C6XgQrLfQ}Iv0W+gN}q}1e&6Atadey;n?9^(B6s2!Ia)w5$)!d#Y{Vx^y8
ztH>8-nuKGkl|8Dp`He?*0Yy!uADvdviy2#<u=r9oHICr6lk97*VH@rl`q%xIA8k4R
zn=I=Ft5HkM7>d>xg^SqDhDfnl;e5Mh+xx5hzwy*M?5K`@A`VAz?fLv>T}Iv>md|$B
zC6#4z?98OGxcqPa0jfu+KZ@~PT8Wo^3y%v1IYIr@aeKEDx&VBLsmE7;&b#&5*)8aU
zMpo*tVs}ni-;pJHQ)p8-ZGG@5@6pTafkVcJclBlQ_L^MAavjbi^1Pu|<Z^KvH66hr
zPT$$~#0Q3iv@q}LaUD+UwqzzaLS!FgPh+r{X2ZXF?ZMYS#2E7VMb}3ug1h?T_m!$z
zL%yU^SUEa;JJVH}p0WYPVba{O#Q9@!n>+M(^@3cJrV~TScr?AFToVYTkDGXO8@2{+
zEeS<^6F*2){l-VAJaF7qs&LY1CL5X4?sp9Y2^Ma84YV~2W`&hg&62;32OiZPM!$hT
zFOsZ`qae|mx}4gVQ1q*;+eM;q+`v%m`E9&WIP@SL5;^QS!4<ZCH%|*mi1YAZI_@E*
z>^Z)3sa42t?JMDn{T}sP&2VDmhK5~82$DSSy$3;a*#N~WtmjL&TMT#0OLmxN%gHcB
z0AF^#q+4T7SNR&QKgl=r&C6l%CxdSye$yLXC9ekKq%6mn<1R<$fwNOX5Q+-Ft<XCE
zrop5wZOM2yeKq)5&%OSN03UFOWlq9YFDcr6b!~1{u~&1Cd-508ezOMxy#lVU6i8oF
zD^2%yM%62H#JlWV&$?;!t%)41eXV{Qe-^0|8i|)un%KU2$U%H~mddi*qSPMyc1oYJ
zuxkhFl>Baf8tep~r<o8<QWB+kaSwf(oEGF1?XvT-biY+9K)DY8ZTxSkYR~juMJ#G+
z4Bg~KZ=8wL%*rRXi>rZI-7nZFs=Rb}(-&Iwi1WBUiQmwm@bJWTOV+MKrX(I}FR+Ce
z+2(Y3_FMnWJuQe?uWD?c%UOLn@WSUr^ZE_(W!#tO#QcK58Af}wyXhAs$1l_4ENBkN
zM5%|(Nz|puCgVFj(WRRErco$?(Dhq+-|w%G#e4%JjgDCJu;sQqE|p}6OJ|2Ph@+?^
z!5+x{tv*R`brXt?=Uw`jiOC2zX%H}7EE0Hh9g3`1WF2bKJANB)yn6k4Z?$r#_$tPj
zJ|8M#sDUerbwxC&+XEUqHNZjmH(tx|;mE2mOnEWn4Yn&E)A{&11@IF=>2N*nVOgi~
zfc?#$8$Jp(vbi^zt4s)z6GPcq_iB!cXu^x@+lnN=@@Go;t^X!xwFNnhepVCesdA(r
zzSXq3_A(V1#i=8^NeW96H2ICcOekg?5^(W1+eG!YbldnCD9a7$PRQ-=-#YIkB&-qs
z#tWGaTFh&59qbl<XVWkQT+&(bP+e-)n+|Zi-YSkotl!4lFP*Rkd$PN|bypQwmT0t=
z1~+_-{iv6O>z^KV?Y6%9&Hv{yU~}UKF>`H^k>EcYd;OJyMOwysJ3rE^5vi1Smh?B?
zp?tGtn~$M<@<{@cmiWf@A|WO!r*HC_?##*d=^};gZ{y(`2o7E!K}saw27b&@E;r6i
z6OF4`SX8vtf#90WXtdwPOLE`{wvbT$43Q1i50=+#8YN<o6#cvGDJ;Is4R`nT(*ChL
z@M{EGDj<%TruALD$<!TN+&#9y`uzGZ0euDanDfb3m4iHmePWQ#wOqM69C=<ks3t<l
z<s1Tz_x7@H+WuQmpS&+bJ4+TLNY^K>co1k;em0Ty^|m0(variDU6}~_i%vYX2_43v
z*&~q7yE&R*CIM{j<jW)p=L*|r(Zj$O>0ZO9n-fEY^QH)dAl)4CRuTt~JP)!FBy&8Z
z--caRU{%?`n|h+ypt`M{Hz*(-B&2E$^Mm8S88BG&MZ1?B6j1X4yHu2~I4be|17}@W
zKsvYLPX|JuXQG7r3`isp9L|p&DCFZh&DSC%EIG1I!6`sGDNP6sS!-cI$x?bZixwV;
zm(>p77%|9JfdZWTGV+DMb=T}XQ|YhMW4~INGcxw-OQUGuQy|S+@QloealCfUL<Xg|
zvfjo&%-}PRX%y}ZmQ!$PVtHLJk*;cHm#x-3XA*!2(vf|6@A1yrS%wDZ+$~-X4h0Vd
zQeru+c|5e_h0lv{89<i?=@cygwg1*aUb4h~cGmBb6n>W)G1Aiw!@NhW#uf&Y-feup
zC!b(m3WaLu`+}?~!ReMLY4e#<e4#PEl*Xxcpq}ZozfUU5S7RK;m|K>15MaaN+dlew
z%P0lMo|}LuOv?vKk5l%2KmJ3Gc`BPDKTq;N(Q+ilZtZf<CV%)O>-h3OAb(*cm2-1R
z<rAon--g)HKEH0y)Fd4e;d&?T26HG`qYW&<j>2qbzu4!Op2%St+UhAAO--T9pd3t7
zrV6v<c`b#=4!SN)^=>L`%!i0Yex-`wRsN%M4d3#VJtT|rO-Q-Pp=4l5ZCNyC6D^i;
zn9tpPz_Z?GedOxJRvQNfp}MMzMoDHU5-2?}_<;5ZtMm)@)!}t{?j2-23?t}}tN3>g
zuAAn&F6Qtc9kGIX$zba1$%7od!Ch)RGm990-s#U*OaA7GJAuV`k3l-IF#gM`h>RAV
z_cn?QI-8R1vlQjK({@zm@@)AJjy?gp7)`f>2gDDP=CG4CsREZ8B5a!p52&~t7S_$4
zPA7hb1*I3T5|>NW2Jys|a65r-5Umy#=jC;7)C)xxk+;MiZjf{!og5=%@B(y1iDe7g
z#!d*URGt}&`=Czi)J42!auLQ3D@a$Y_MVPRWSwmMhQ>u}Gve%H&Vz*^fhu$|L96k~
zZC+B44sPLT@6$duVoV>Rk+!CpL^<A-@&3_(*lf47EgTk8p#EaGx%7SazrBjgbqp9%
zd5B1-4=2m;+`YWaGozZm&K$58et`;B7_2wDQUaHwr>tbL`MJ%}i$T7a$d3|tn|d+;
zJ2=>S%+22WUaq@snlljELEo`$RXBrLhFcg}@F`PE3{YNj9N(gyHr4d%QF-ci;cm}O
z{a2-Hhc9c!_-hG!b8Ij{<rx3AJ-f)p9-=2DC?e*KGpHj6C-GEK^C7%%lB-(FLoAT4
zqIsNf5j|<(QIJWNk5Zz^Zl+}RWv6Ah<&mF01jhgeNSB`${A~EEuWl?WFMV>NlAsYk
zWjmjyo)ef);fU~v0npF$M>ScP!UnnF97tu8&)&-gibUii%V|7+dLfY@zT5-Y!G`m6
z&o^oq>n5hdwX%FACI>D~%g#FUlvWQy0$J-TFwk{Zxt|R#!n$rT7CkgSX&apY+dH<V
zST=Op@*F1c@=*fnPh21h@ulXfq2re~Ba-Qz=<EhX4JAIRC#Ri6#H;1?fd6CNPQ#~g
zo?<E_mGeF#kx{bu)Z?;rmVlvkBSMXTHuDg4-6xwE(}yP^{k3^l&y)8w==w|Q@*nDt
z79;y@(FoDQ19rt)g>5d%a?<-obY3QY3Ijs8oy%g)9aRn9d$R+AVi@R`H`)vVr6$Wq
z8*fyJ#<<BnQTFNej~Cw?4}a3n4MY|P(sR|zXvuU)Y}MJ}tt%Cnp@?Z~MDVjvPx>yQ
zxhjq=N(9PZxSq0*V70d?pZx$V<H!h$E(5Q((MWVEce=rhV`?NENT+hmzW6y^CK5hR
zY0Q7#rl`-59rvA`jC(y#SP)@O32>{?SJ~}wkthe*C;hcnD^3RGy!3GYlm+p2RydcX
zxX=X9zHhlDAK00G(S=S#$}6>lAeGnnD1+rnMwo<cv>T62NejAe&GGaxsl1b2y(0Wp
zVHe7=WI3$A#KttW8rAJBhfxM#2a>E&ujhMBb2dV9bW+6jCQC@Px{$kb`1^CligjRf
zf$LTuy*wdjz8FJ$9D}0EK<&HOP631SeqdBW69df)Rt2~Pl?nOfTnNLr9~P@JPzWa>
z6WdKJ?b>(owtzxym(~aps6SCG#^4Apm5fI<ud{iulo&Q`q7GmM3^c^N=_nv$*#Z0O
zX}2XL&wrck%CfBMfCq_O)I$I>PmDyr%FLf=yO#&_^9)XV?Hu<M_!6xsZHcA_^D&=}
z3bTi*>{t%z$IaK<fc!mwFW0(T0QSMqv6;7kh*AFHTQRzN2`R1f=hC|8(aSub`a5E`
z7)DD&w0QMtCz+DHeGG9%XqeK&haR(J)q99L7-%<l8PoTcYDOq99HH;cd!fwDOVw26
za&p#LA<E`TX9(~>>Gj201*_EtjAwY+V3C!~ZAPe1XC942xEN4X8*Dg10=JT@r(RQ9
zDHBHojy<+a!x-x9WI#ngHj_g+!y|X*$hsy6rKcI55dk?JCv&Y?i8^5Y&ZkyO<K-Hs
z@evZFLz3APIp9xMHmc-nJ0PJ==i!~Sy1^PvY|P$geLD`o%Cb^Q+m{7&NN(_z_R?xR
zUfB6*pGzcUcZG_c_vJcpxbS%4h>1D^?G_<*f|Q#nkMgo}@Pr9<G<R^tvH+8S=?X!K
zcA@dx8BmVz&qSd<&F75ev(GmOr4sB>Z-I5TJxmJ2b>K^JNv6O6m4n^*1DI{C$a}q}
zq-!#ii_6u0p#c&G6o@F-v3l*Z3&8$z1;3`my07jRjrGIqh3FY)^6W7Wz=g{i_Byup
zT;u}%9JlaHw(+(7+km=|EWI{6sSVatc_BPPv;3E25UWwRfPap=W-eFv%}yum4#wW}
zAP&3^SlucLmAC7BcRTAQfePGuEv__<CxAH#?!x`hw>vTUl5<MkE2cj?-A;E)<6!PF
zC8!)De&J}<rAro8jyUbcN)hyeG^M!9T*_qm>d}a%qF2B;0xdoSUm83DJ}d;|`n>=I
z`Q%w<?&Xv}{Oo6F91K2oV0@ZTzD#s31m*qh))N{EU#_!2_hHt>AR%<z)))dtG9553
zj*c$SlRs2RDJ7v<sUdJzlRw46_}(<0VN4JgKPwam@SJLGmsf<aB@3}@H^sCjc092q
z#!VgEvgsh06aozC6ex%IM8iTnl`gSQ8^1lZf~?3Tn68<x#Wr}y3o$4^Ixe7n$!?#L
zhxmE8r7*2M=~m!&9&FKbNrwOI;&^GMBdv@Cj9=_H`cq|DAeLW@Ixxm8sG8`XWQ=Hp
zMm*GNOc-*rGyuwhB||TP`F#PY9v!0mg@{9}e~68Q#)Z-hpNdO%$A@wVP(7>4pSLH2
zE3d~Ks%9WLj(cMr`C&HgCS+{mXNV+h`QU?eDz;8Neuu1jTKG;$Je?Ti8%`o-BP(F#
z^Vp}vWn()eAl;G9CDFO@3m+3O*cZ<FD_U4au1;&dKh`lDD^A)iXaSu7ygSjXML`#(
zRn8#`WVAs4CAPkT^r24=f@Iw0@JnDkUeTh_m1Rnx-Hpz%E}q!;(BgSLpLf`i>Sfti
zuwyeUF3@%9jAYb5CM+<J4M*mZP+Onk+>)ZjhYcI_UUp9l^*#ao^C~~1I7$8`!o$Pr
z)gnG@J+>;gu7l^{i{YhY$n;}%K>s+LPKta=!J#P)vrU9Grnrj1)%c}hkeuu(jS^O*
zZV%vxHjUpX=@YRM2c0Zq*RtX{9Pb-(Dz)nfTh6ZSp`4OD0p)Mf<D}4u?LtFKj3F2<
zF(C}bYv3SB)Zo!-y&NA$cP%h}xo|sgR17{`C~39I$-rq+;XVn$JVtZr{@%$RO_g53
z4@!?kkXAKQF|N^(-f?xcMV)k2Q4vB7Yq+OILsDcETLs{6P;|on7Y`c}G_9<)Lnrqm
z=M8m!&9N7ZsZqYy&(YkeK<PcI?I{ubB5dBhXV5+|(iC=3nsq*(u>16daLlxYV+GJ2
zU!?10njg9b3~)W9aJpg&x<)n8KC$Qi5)%!fPQD}#_%-`xsRO1Lv`psk6}Tz*0gNL1
zNiietGf!=e2<qqr{g^@59a#7*E4<Rw`Ch4?WJ*C4C#1#{mP&O(FBN0VFu_$7@TXe=
zQ67X4?=U?M!$~k)p`QlxbEU-2ynC_6delQ1RSj@D07uKQ(tD@p^sNAFglH8nI|H#!
z;@5<ZE4ue$mV5`$pzFfE38*Ast|)DfaB4jFY-%DxPe^~brC&YiPVTJHa{%~LT2YE{
zFdM9@I9Gpg0aJx9vPCKNi7l-8dq%7Dl@AYSK<TxWgw!9_Uw0y8ec|GssZl7R;8g3P
zYck2JvrZ)RUIXT#2U}f@-9~=(v0Gp@Inb~lX9FIQy=%}0t1%<QvrI(>`sMqyBNfN3
z?sXhba)eD%A#}qBtQrE3p+)ytdjok7H37eot4I<X>{5)+!GfbGTK1uL&pQ`kp6*6n
z`dHzbpZp3K-xvE{7bYskhQgD+O#3wNwk8H?0(%vBG^}=;4^_lg1NgO)<0Vb4NUj+x
ztT#pljQQJ-GhKBfAM0}jT3|M83EKhohqg}E`Lg-Q`7l4Q-pyrb@tgjcYnj^^MfA}1
z3sGw@z^+pKkq$a6#Ct#Ox;c2FW>j!+7Rv9wR*9)KD<BKzn*{PFp_q}9XoR>V-z5i@
zq_fyQf|*$2ONYP}#j?Eq)u|mA?+!0Zl6*O~xTYi(W_`$F9LJWa?bTDeCuLtWshY#H
z1C#>|O?E&hMP6dI^iBM0p55t)1oEp)<1|fI0hFh8W}gARji@OH(W`9SI>QD)y~9G}
z$O&SOTpUDoWy$N~yt$6V0k!Y(rB(haVrrUXp94Kkhy|90{Fmnz1TZ?{<ejv<_>lmQ
zNXG3ND#o4%q)gjYi%7vJe|f(fKCL;k-#|4Ir%9v-lq1`a#+OoiYNeYbRY0pZbVF3|
zjhwpQv25E;=Mb}CB;a?KrZ;tYa3JNKrjJfCCXFUa85f<1F3uFm&O#1j7@MF#`O`=%
zv0^5wSFTd23am1k;qi%^fe6JrZjF`~cr?Vl3)r89PlHSvl~;d*H$>lNR2%R5`Fj@J
z+?gQ`3fb;-H#5KwjXr|2Ox6wK(QblW{sy%)R(Ae$d)Jj%z2r<mPpcIUXkVf-ipzr9
zy#wrO@cwi=S+i3DA<d9sTm1`W*?koLX(mwq1ZrtE>nrkwZjKmAWo7Wj53>slK4PdY
zo0SH4$#Yo(<?vd<in-1YfO$(|qMf@~7}erKlE4$xJlj@bzjnoC4EX2R8XQW`C#!b)
zah8f58v_k_RUgYwn(Uzt%^o9&>fiwLORc{C23ai|LBR!?WPLWJ(+t$s*I(Y$%}5Tx
ze%6ua0LtsMG%QPQk(E#PMn0v{=%m#45qt%;W_(v0sal!_B?i#G{Zlg|jMofrCtPxO
z$~G)C4?7=y)wA&qDdH3GTRorv@~4aK^2y8gA*q}62G6o#g(L;9&;@$M#H^o)|JcBS
zEZ`@roxT;L4xm~YAwbJ7eliA2sxHP0>v3kuHIFhbNG1TrS9EW~x5X`K6t|*}*b>}L
zeZW^L&%U(oZH|5-eXA`#0C2EsRX8%mq3s6Yu(O)QT564(nDAAEv&eViXxJtlE^5I3
zoVxhF29z;mP9{6U82C+J+V0C8yM5Ev8MK_(A%DpR_@UB_GRS~(G4Yl-*+ekJbd^+t
zain*HthHwm0yU{TaeyCB!Gl5^d{zvH6yH>tl;x19h!cLJ-~+x~=#(c9D@6GKWCy}@
zBBlsWdoyd_;0>71v=Px+2!;?#_~O$x2(({mg#-SX=0)wa4I?{P_do|FX1>wl%`4cP
zOe2?y=%uJ|{V{X`6tI5>P`V2VA#j+h`@y=iq|yGd$nVs<Ew+#Mmh2-&3droPYk~S%
z=6vbe%zN!%Our*RxM@-?i{+W`IPtPUt<bpoYp*1bPue-GOcS3EIc0>dTY=m!Fl6<d
z{gaV~(a<(+LLyUVf$><`PSYtX5_09<v&Z!j>je<ODKa|aHx7NC(3}(`KfE+3e-uY>
zX2Uz>YpidH?6-t)ycx8}*PC&=e(WT)^LjU~1I&N2zp8ZW<9Q!Ed3p`W3{Ev`t<lD|
zED5H)-$gnf_y!H&l2y^yI+_t7RTqDPAR<H=bdIVB-y)oyws1p_C8KQ$RM2&8cRxwc
zCL6_<2J>sk)=RLQq2g*#KMGk-w)!xF((4BBHBzjnEKjdJ%)n8_Q3GC6va8Xg6tgY)
zt6?pfxWfw`p#Gi@PY#w8u}(!Z*LfYa7W3hJX8-IIAh&_c@StF8n+zz&#vD6eXptO6
zN&52#`axWI97311i*c$>$FEJx(R?g{`Mg$K(Pir%_hib`Qyw&{WA(+t{0}4_nGW4a
zuJ?)F;{$xP!i?VN3O1ad^HvekK@MwC{^l!UkH|0+VOygyxU&b?E3@k%VHzS!GAd(6
zAvt`-sc8UL)x4@Dk%qjrkL_0+z#sJ?p!+R;Wqc5l{OF=L+C2t5(boByGmWi+Om;kN
z4<|5AEpT;Mol#h9emi&+f~Y}s=IR#vU1v&%N^)=S0przE!2Z+2+{h-6zH<*)p%^#x
zqJ$n{a~ewGQ_^{@OLiqy)X{_5gA_{372?EKr*;6Ua#HGP%Z!S4UL9iYb#5aX<Xg%M
zaFC8~eJ4h@%yM|=So|?x->W3ODaZOy3N@nYbJqFevmn6!s(OW%cH(OiyM{1Pa|}A|
zp1En|X1wYjYckJK&?TA%=JQ%%gTWewm~R{s`fuOBaLuh+)tW{x$|a6bbBgf2=>_Up
zM`xr){Fz)@L@$~<JjUe1MID#3?^S;4BHZ!BMqsc&{k8emJk4fk!z1aPlOm)QAb_Av
z`>_Csk$70VkJ_uX4e(*4I7%Az1$20H^6QH8LRRG-y!VRuHzYZ)jH*Me3O#^vOqs!V
zoL+p()Q&Q^65D8M_B?18IH+7f8=DbUMC8C%IG}oQdm~TFv2h$mm6huz>MWmu_x+5c
z791ng<TFNS;A$#h_oMPVB`jU_;BntrJD(Sfo|d)Ja8sL%`J!a`>2xooV}sJWVKY^I
z)!KL=`f2nziQ9{Dm$QuZER#nWQ%K|}??kQuyZR_6BLkL|)E1Xi=h#3tp!XC$<KiH|
zo!h|J-=Z}l5m>iNGe&yM9^Xa-p;Sh0bod6HZ={tvX*`7ZjAzb0Md3LxAMLltMEL5K
z_6o)h-3dInXA<*(F>SO^`K0&;KI9X&BhcR-IfwCws|UrE>WqdVwU8YOQJyK2OBJng
z#p>i>rm_-(%8^m1e)Il|+K42UJGpHXXLF<`JOONW!(+RTw_<qkj{$qu>Is#)tS|K!
z6cm$~ZhXr8weE$Atn_V^@kv)*UTYRm4*Sk(8E65WkS1F&0%0}ju&d72hk9d{u`5JY
zrn2WbK)XTA8Am$jVdJZ0%j{nzc^AE^DO(JBM(ouSp-CgyMF9A#>u>6b0cD>1(bN4C
zOwL9*kIjP4n}d+eGq^d-pRHT~;}h9vzrv~hO!LC&XVRa<)iai8t5M0j+gG)}K<9*}
zHUK=7l1IfE(I_C#VaT3Z(BVDBmHbdFT_{?A<wRtoGy4Xx7v`@SmynK(P{<@E$ud#v
zVgu4079j%2V;|dIiC~ox1M@fo0-6InJJoZMC+wP1%+@X;ka<lS6PPlntLxw|i^+iT
zB5P!VUL(TO!hp4=k)XiXeGyiiT9!;Z`wOVq3!1`AU_2p176K-nkx}?Dz>*Ay7WuU8
zdH8rRL|IXs1_>c_o-$A`H+h_1Ig73b0uP$#v)&zxeyX=%j0D4fPFW>t7n*kh)U(f<
zZ2#H`WLai}9j1?mdfy+v_8_9B_v_qGJRNjcHvsIO|6Kz@>>$0RP|N92va_&D_aSOI
ze5G_usK>I1&{H>nZ}?2qI1y>LUF{O*xDE;expofFA|G0b=jrUkQzZ7HfcriOHEP7+
zkE8=0N7h0H(29SoPSX48Mon%tz<w0Vn!X2&+m-~`PVh7tV8(m*Qiiw5P7W+QCISWa
zqEuAbOv(BLfq8=sePg~{kwX;;C+#BStI)Yf&zo*;n~-v$$B*9+r#AuP-cMl`OfJ++
z3@sFFpGGMdQo_H|t*^rQq+f!?#X=Jm1KctRRD!|idE+jj8)v2QRZC;(g^cZlrbD$P
z_M2lF4>MrA12caOua8(y;gygZ>MFy^w7tDHUUL}9*fckPu=foWm^bWQ6A!a-lF%tx
zi@l16?Bw{GOxNhX7Vw&gz$ot~`U)rq)mJYu6MiQl_pd$!3=$n+D2_NIZO$h=0TaxN
zoKR(ezt7n?Bw+ET%2egogd^DnholaD2=8NhCM5d(Wj;<2A>fCS#b($)yJ)(+5ezSs
zw>_Yk6Hcv2@^2k-e^cwKcE$v(C-Gl#OU13kRGzBHH;CWjAd*vuM4NnhShZzlB8s3b
z3ixrhv1Mr_%rY4_1b+`KulY%K6>ph~L#~(Vw`=(RUgH3_4*8Z)c`xxo1=;C#jnX=$
zYpSc2Ea$^`#tgAl&YtrE<yfBoB*DXJ%bz0`cBQrRmJN%HZ~O_T4fK`DNBL7P4q!Zc
z&SSIyn|-pb!{i*R6Q><oF6<<034S)M9Pmko|LHW~Un+--3BtF&51mpq2R9Wj=oBfW
zevey5%19>ejjPaa0M<<^7i=Yts$os#UMjd^t_3}iKh0F}?R|>Y$x`8M@Av}nlj_GG
z3{};~pvZca1ubzK%+WGcFi#2ihZdk=!_J)109`pJ*c6Eo*W*~ya#P8&Ml0r<M+^$Q
zns2PF#81*>8i4UyPQwQ{qSh_9&c`csH~n(cub+G!fDS%Byl^|c*;p{=1o>TvLylp+
z(0n0M%?gAO3ay~}H6~S=ei1a}<<G~uG>{x1UA@8eu8E@n1lJ2Z{TRf@bww95b_;zE
z_E8%8%7Rn;0RO`CMc43P|6=Lo4ZVrEU_gcU#%4BAa>CKfHd7&(OoApTy=R|3w=?cM
zd*BPNEk)ZfK*aeCM%`3#E1Tq*vA9`_WdKMA6Tr=u-}7KF<|%i7&}qBrOP^{^$ZsEn
zPwm9Fo;yPW>-ba{)yrs>`ecgp{BxTYkZ-+~){m373Ode77PfR?Y=QilH&%%85t>>f
zLRfFE2~bu}WuO{@$3J6#sya9YO@Rc=libEo#}T<)D^nd@Tcp5w=Z4wwD5hz0$+Se3
zOt3~q0YA=BJ3*}DW{;_MZcJ*2E|g0PVK>y(hHY}~+SM5_+z;3lKStFX92gJ1Fqich
z_w2F=LS(o@E@ac)id8%ZHO(`?Uhb<i@3LN_Ccc{Km+X8ykbY86M>DL^QZj7a8#Wom
zWF!R4L%{wbfa>`#WPn}$mF_?L|9!6m{%Zo@ptGoDDB>}B$i9m@lQa|LOHNp#w|kXw
z!cp)u^rsPs-tdBStOn2&FG<IoNZ_aP6po_Zjm?>VY^}aPXBPipjV+e}j9!R^_gX5Y
zp>=t^6=j9Xja;j)-lyZ>el@iZYm!M@HT^HQ8W$Y1oeS1*GCOWqvvOr+3cY;mvp3?U
z;|)(E>D7FhaY6a}d$rnq`_Nyt8W^d1Mh@7&1E?ndWG8?8?>~$FJLf!isjrFnaS_nD
z!3Vy_#*`f07h?Siv>B&piq;BAA+Hd&>}0HvJ-iIz0_UK>pnqh5=*I`)$LD8&`tgCh
z6F>OlHz@vDj-NWxAD^G$Ox{3y&&PnQROit9)iwC^cVtKDk(b~QY6Y?ul0Om?^5OLG
zD6l~NsYS>K16w8d`R&Jd2{<5)%0#FHT6p1AR?6<2#R8O$U~%q%K3h1^YhN>2TdgJt
zp-<4e1spGdG1r&Nlfq{-<wf%IM=PF+*NKkB{zC%`s3_=ypEtd}y#;)1b7ouo%u49-
zj)8VuunHex(Mwzbif5d$&JSb_T_Z8cN&l4-FtD<ojF>7u405_ywr`t;*c{wdtuK=@
z-M_rxNGws}{!ZNaWAOu|b%nMR>z6%7<0m@vJd-Mlu-tZ_fN{XB$_z$j-n=cL7ux8k
z#4j}m@+!jLjbeuqZC&UH83{Gw9qAG2qNqHk#95*zZgyio0IZwst%;rYHldRa+mNYQ
z=|dQndachAV6PCm$Ryh{InDv|%D>`d;*SOb2W1v2Stz7)!p}(E>B-r-A^ba!x5e><
z3Eg`x82r+#Q%<aaup^p`DX5donH*;D`y?KAfYONNfPiFEtW~~9+t|`OGNAb2-^xX!
zIt}*JoQ&ftMkg+@yj$Ep%2bmZ!{yK+Z&Sd6f&bi``LmH>z`($)VSoJj86eBo-u*aE
z`mY~gU^q{+`hrb^2O3xnIFNR9ngrhk522cyMSpX6ooD(X3>fs?7xt<oN%1BQIQdo;
zYEl%3(peOBvm(PWJ52hBr;(TG#R8z~&XT4cDI)2trx`*~<~-2fZv0rmnHJ6V$iS9x
z3u#z07Nol`>`M@lyWqktFOi&1zDul#exhu3jsNx(ZZOv9OAVQ%4izZ9e_;O)?7_hP
z3L7A6`3Lr3_X?o;`YZ7d$MYWnob-?H|C3?w$<y>F*tZPNB!4uz&PzZ9w+=9ZZNTf5
z%}{XeiVkWohKZz_8wvUg*#89j&kqRlp!jFa{R;bvh<zxnBVj=qqbm#5k+)zt*F*Wa
zeUUr7e1^}j?3KWOg+1agut)rx!2ac?so1JeEYX7h3Y2)S(zaa9HPZ?X&l`7I)C!FS
zhyOC{|B91IKN<*}^hYE84A~_@JZN5A#<JRi-wayW-X&QGz7g;udEsa9uz6>63Kg96
zr|L&Ia;`%1Bw`Ojlyhnr$IlstoHjk9(|45)l;CI4{0>hAPWn^zBm8BG_k#V$iUjqS
z5<$0!S78FJPzV$Wu&bKj?k7Hr6faS;3||2|ChrUT>cY1%LnR34Z38J0^XnG!;1S41
zE#<jrYjf(Y&}1&a+@-x+4m@|@6_u_LF4m7HJb4?-=CL7e_|Ru4@%WgV9lnwNtBhb^
z_k}%%rK#PgXvELOZt$W0A<mNgt+*8daOug#7}lsWOi94X(m$~O2loHK{*TTDM4;XV
z9QZGOx$pV^`(U4X-ts5d$AxST3Wsi?)wx7xJnTDd^>gnv&|i1<!_)S9iS*XrF8Cg>
z|5-~Q$b;g$u-C@rsN>H8BdB92UN!r6{`$?0$XNv?r)JTUnSs-X5B@Z>NBRZ!NPiR9
zbF3QYP(Ai^_+ExCm8h|g1LKta$vxp^oVEm({x?w?U?u;)GyA{dWb&`D4?(+HW}GR^
zVN;HXROabCU(XJsE55B@F?{=Ebr>~M01VV$$bye?Vvo{%YBxAmb_nxTq8QX4nSB*_
zlAol8{Q2tZe=GsqR(oWxN6WHJ#RM2+@HDAb)(a(FUpWk?r)?o_s#W9OZ)U%;c9_>-
zbP!3SY?FSf7D2>9$In0zb@J}Edee2!@ENcSeP7tumYJhDtm<#%8cMtuTKLQqa*`&u
z#F>Xd*kVq9Odbv_LyH8mI-Unsc9Tpb9q`SaAYPE9B5$5Z=@fmc&1{Wk$^cb|NU>-;
z?8w<keV?Dcp%?_03!;6w^yo6V;o0b@%VYa|kS>ahrzG8nGqCHZ$h$65mE}=54k>I$
ziM+uW!NNAoFtA+x5A6Se{Xek(L6biP(m(zBum8C3`9F~b1aQ(nzWz_1*|$`;{|WXk
zvJ*O7ZXf85(J65?>6qqxUq<T0Z=@KrqhmjJucn^}xd-eae$)#H@}T%G>}d-qxc8=x
zWSyF}VkH{J$r>*$<ucM58WJ-C%s8X}yo`_h3+$2qCa^~<jzyDt$ue5A4=-BvgtQu(
zVv?4TcKh*ucQZF0xd9Bw_U;S&zv5)dudtt|=PINIpZeZ#LVw&-o!so)cEpm#NxH>3
zs}a)4ihvKm-U8XZj@S)R8h(_~J71fuHcCg*eKFv%&M^$VErQiMK0vrasSz|dJ@Z}%
z&-M!et~Z^??O>}Yq9cwkngk{K`Vunuy=L}pf*sXuN###uP7I>A0)-@&=u<0tFwOKt
zm)G0bi2q|R+<jp$O(vBe8Xx7xQYiUBF&Xcz2+@06mTxBCs2(s2W=X!K1XVKrW_A3K
zv(3QgY~zpfA^Z4XVjCWbb2omkrX4dMQbW{$bk9gWH?zT%Y9=MwJ_#zyaJzW`jlpSa
z`I36YFtS$ly#+`YKojPXtpbKpv5UAP8I{tGc9O_7t3q0fp)b!*<QD_%DY!4}|8L*@
zz3)AHd{>B9=_$}V;^p*Y)kzGEu$cKJv-ETZ@kh%2(7rlkpz_{V_xHN{yP&uAh_svS
z8+}`gEHd4Agf5?vniqmKR-`sZvfRXTU}qSv5{w0`FG9p4C!54=rX&PTE#r4xiS6xV
zTkMla-2!N!S~e>14TEHnd1WVB8^{=eKAB&?6yIJqJ(gYH?RQ=v`52_TZ)?;%f7ULh
zOu#r_SN@J<f!E}iFxj-)@wP2^CPT-=9|?Hk@9))W_r0m|SFHvnSStSXCl!AL(trK^
zv9$U}e4psQbI#)Hu0O$kmB~`+3#9lin+w0B4tXi++vukcp~64emPeGiMXX_e4!sBL
ze*zu^c~Jbb9KSB(*Heh9laAysdTu7&924w>pS(w1w}qeFWiZ{d5cR|W6KY@Y7%2Sr
zJ$sa2V2|=QfjxrkK-)U0Y*;$Nc*=uUKGQ6h;0WkRI@vZBl7+U^Ho!Af_l5mmaWeHs
z1A&wNXr!MZe0Xu4b!|JglTgQ%wP4^4EFF~ssvI*TIbRM*wvD6!IO$K-k5IeNU`F=H
znaJ-|B?mzT#_LA}+3V|!P>qT)eU$tc7wq7qKUF_MS}(dp2~nX55ty#PQzq7f8)768
zTqTpkqYiG5VrEX(`@tTQ=v0*YvOZ_vXtVb_&N|y#=A(XS9^2bwwo!dUDluTW<G!#*
z^>Gr<9S|TwNf%b5!-YmFVLZ}|Hh4Hq>0;N+H2{Z0`mel$feoEZZFdk#XI)Q^sZHo&
z2-IO2#j}ZMna|;f=P@WFU4V4=h5hRB5lodEjl`~EI+mM&<I^~mMP218`I$$Q{3Bmc
z1A!HVe_;Q=d1n6)?EmOqe?*{O^yj0$|GKa4_cQ-}<i6+s3BBN;v;HT;9*nd1Pq5cj
zZtq-svxLQjfQSCNfQ4wQ6@uThBr){(+gA}*WZ}NBd%*tZW<3z(LGfMKJGV;?I(z$B
zCSI*VsQct9KUS}|sv)7yaWojf63_lIv;PJ5sK3A-^=|@ul2gNe2C4C#z6}5RAQ5b3
zaGP4HR}bEK3pXGp@IBxJ9^kky?Ei|BX}`igG%a;z*f}#GO~<oQx|_k<fTgFijjm^$
zkdA6SdvA>vu>5;((6c-t5oaEm=P!Jqwgyw@2od69AEV%zARL-l5?|Bp!h1j1BQrSm
z7FjvI|K`kZ_2>y!hG35jI-QE&e#}1YEy5NRu#w@uu*ZEN!ztTxSOE5YdY+G#bds%L
zv8g|MCs@eXLipBV5+BsT3Asap<JARU1>CYDTr>MMH~0y#qLR^&anDhbrv^F!gN*ya
z{sDI?fwJo9QdX8I%M#cNcOIWD$c-JNExr(24$Y;fKso+_{Xeh=1N*BvBFIYrnc4r~
z&OHL@Jv2Wh|NCGsSULD7*pt?9sMmy%ahLBa8)!!kk|p>~r_?QDVZ?^Xi<vN7g}l25
z?0?SSL68T<cVX{u6H~3?Z88aSy&zCV40h%UeoQ@%fE)N4)mg_%7W_}JNB;%(=zkN~
zlgBC9QzNlP@hBcm$+NYMO9X9C<Iwbagf`(2)SlKukp48sAK|{R|0_<W{|b9Xceppa
z;hCg)a6aR5%oRtI!3#_eojwhxCuOl0*pEVkk^bx2|IcUkg3;?s!4&$O#Zk|`Pd;+9
zRTz;W+zHNyIcT*|@NRhp?4G|b?3dlyo+BoAeC%mC#CXjFJ6La?YanYSm*t$!134qk
z2yFNpO;q>tuOT34Sky=sMj2FkPK`i=o7r;NfE#~H*1AIhs*cJ4x}}GP3O(K|RZz<s
zGQp?g<R8U*raKhgE2%$EpU45}9!k_U-{#@XdK9siCy3SsftMCD=NNBAv=hY&7HB*N
z9=iGm_W!{CAK3rlYk&yUi+}_F#V_|g|9>CspWBW63HH}s(yy3;7aMJmzZ=if*!Wm=
zZr;QMJrR9kGy1xiYS%pc9<cxUXdVdip!hEAC8LTVIo0M|$Ka#8cMZ`wVP0W*lBPnA
z_Fq1>sCIw$C)i{B0(*?V3G6GIu;i5!H}&~^1vL#LNg+08q|E~}E&W1*{B+-KTLQ15
zxG(Jgijx_?!oFbJ>&adQtg}ex2*lUOxu(&6YU>_u+sci`SFwlo-UI;bQ5Osn>;+kJ
zk-S7I5TDaMSd7b-dKTJ06_gexR*Mw@0}kp~e<{4zJ$tKB^MW+_MmuSb1b&)Bs}7H|
zfVOSAC&_Nlo55PH`x!x3yD#itjJ=l<6#yS<ALNN*URq0Q5JiCKs*_xj_moNQqT2-C
zi})h7o|5Szumd{vyBNMQ3Jym3mO`-aApu;FU=S0$!aC@>_MZiD$Xr@i>EEoYnHFa(
z;B_~q?@VtqOsl(Sr#cxMfOJ_Cm5xy{OqwFGM~;<zY7n+#BdtCDN@U&dlg_$6l#+vV
z_l5oc?FHfc-m@pddX0-Q;-Jfv&^3y~i~&CEue>=Bb55OuKRX|9pAD>x+*kMay8G+6
z6zx5lSQeIP)1aAia66&%sK!hJMi19{{T)I2yLRASJa2fzi-(%c4;iKt5g^<lx{{u}
zT0m=5vG0fr4w*<p0p79{)ouN)<5_z9b1XDXzkH%wOr70^rhR$okHTWZK0+119)SC{
z#)|eXbSH+1uKfUWSpPE`ggTg`XEa`v8pICokkfk0fam-FUafZDb(X(swf{fv*?Y2%
z{|WXsx;vWQ$>=VYms8W;^{;8eYjB*rc&V44M)(Kk2U-$E+!OX7xc_IcPfWRR?e06)
z?8hrWC1QLh2rFxbzeH;y<#JPX1pVXrbfE{a2t>vIzGsj53+yrfCa_;K^ls!^Ze@|K
zZZAriBeS^P=rMk5W&0V|o|J&IFdle1>%Or6D^6zq3j34p4b=mBGAio_==wv{$80-z
zdCaEP5RF*j5zZ;L{r~ak-T&id{61Z*CTqv}OoP<6V9(~Kuc^eLm6e{x%<ntUD9kf|
zB?Uq9zOb*%_`;@!X_?{Cvc#(;$b0h08b|(vf7Iyy6Y_^mG*u{|^d@iV?L)i>5qcyR
zwZ!aCQ+%Dj=%*@i$$w6*n7G!>2?goy3wyThKB7pqL-ogxBE(}DSHU<MRj-&@OTg-B
zf4rGk<q~))+dr`X-#oMb2lilp3ZP!}r-T28ANSS$A5Q((q5Gcy6JbCAC;j8=|76%N
zTFw3m_Uyer<qzHK2;<~UuRAqDkDjO{KmHo<faYcjw#oUmZrb~M!v5!u{9l*zLGTCF
zndB&U&iY)$hBVQal~_#ISR9D5UI}pReIo^fI={j{!ye}s*yH?7V1EMDCfm^DM%b!-
zcKiASDFROGWC=>>mWy5G!lpBT0^rbnVgFa0%=#7f*fOt4nofyvSaM+9(3*K=FuuoD
z>R2i%Y|PTCwlRWHfq`1lJdsyPOQn1`E3cvumvJ$s`8(IKv-E>8aF!`F&-P?uaFFnv
z3cP@x7UjcUR)4RlSYQ!{in$3kq`8=nZ&;>~06*US9=*f0Q_gk#lGu^}F19%BVvT{M
zGZTLkad1QW5e<hZUkRAI+!ywR58i*SQIqP-R}5~#{6wPn4BN<nF5V^IBA3UpGPD2^
zlzW)g9JyVQGS^UcSg_AoJrq4r5iDd9mu5#qRwe?SG~ytgPu;WpLasn9)#QlO2k=cn
zS=pu4WJBLkX!6@0+z7(~Z-m6P)vvev_@NojNR_Ql>Pu>s6h=h^ZPn)K5M;PS`XVJL
zy?<c;5A4Cf{%Vd0vX*~l_F(r4p!)hN@&7*93l^>Z3HHy>8EgX>1Vheb6^3}gEC?bg
zC$%leteX`-?6nNUYlKJM6ZW7PJt)2ld)L;dP7U?`7Ao&G4#;GBYDo2Fy}~{9&eKDn
zpxEku+_V2>W{>|1?D795urE*<^=9u?Hf&h)w4s;2+`4#o8;>3okf$)q$&YJO3A`Eh
zzOer*PG<iKd)xST(wvIZLVX+a<J8E3mJB8gYJt;sOp^8)5XZq^D8NDeg|^Hg=^~;n
zU-@7@m|{AsPsGepltlB{vx*SQX0b|m0zjAs76Xfw--oKcsbD=kRwr9}vN`|hBw_nJ
zb)em+V+;3w8}uNWQ40;((b7VgEhACsOjAR?<w^%nZk*41F=qw!>#%^bbzj&QI9$2F
zmnflw&x>Qhep3&Lf_^8#O=*q95i+K>JUjusW*cfB#YoCZtXehox{pt}6HGOFs2o{g
zRw#wznAGAc!4~Mc_$z9rWywTpF(2%@S-Q@rZda;(YiBW<&f^6*vKX%2K)PC<?yHEx
zuhtLZQ@etBRtCQsjejb2ObsyI5?uMDDTV;j-52)%x95oWUB+kJ$0zJ+QFnV1$*ME<
z5tdp;w`h}a7CzYA>kx9+krH@h<i5JU*MjiG)xomWlw9>i$%6SQmNKs(^!m~w0eax4
z#v4^{9xrN;707FcrNi>=rtzqTjlH<#Nim-z=gD^d>L!Nw2@cuK3b4{2%c5-`F&5t%
zcJ@-)ut_m}k)0`kU2sUv_~8HfxgI01UUc8qz&CZRn)J$`l~>}AMO>iZtZg|Gj+tPN
zd;QwkoMHwH7z+QrTJ63=ufJ+FutgKc=$~8Je+1Hh{k^j#@Q-8vS@hpI=ehaDpJ4A>
zihrGGw<hjRk;l6)fp7h7RNOL<#1Eai`IR)~>%GmW{{rlP0{%aP{d&<A@z|v^DL>={
z_ZW0~-i=jT3=5<p#n$ZLcJty7*st7rmzV#08K2-6*c1FsU_bdq-x%G8pc2+2vmFv2
z-6G#tJEzc4etlGlwCz)eJvpeY?+g3C;$+URu+QXnUeLIuK%@M)`pUbTZ2db`?G3FH
z;a17>WKk(HH3YyqH?s-z$)Q-u#8phsJ##g{Lu&APo(&GbAD?hlhae2{0>bTjRYLke
zs0B_v+TN!=-#4JJFAR8+QVD7@m3NR-q-gI4dom$E36VEwm4=t|!tsV#u&Em0!OU~E
z3*Z=3=>K1P=N;8Vwg&J70Z~eLz#_$H0s=uKJWweH7o>;+Qq-(bq)E|$G+A8`1eLBJ
zQj7wR`UFy>M2dhSMXG&81f&I7Hwdf<0s>NA@}4t>^UgkoKi-~Q$#>4o+?n&uWX|{H
z&hLEpe)ryqjUHexB2?JBGR3!DzsDaq*kwJoLCCE1;Cg!D0!3Vhuw~eN-|TL1?&84K
zwwU^=hK<a#GNdSN<jF|g?krDUb&sH+H6OL~w_O690TuShmt#?)8A%6)<Wur)JT-41
zA<83(2(8`mX-bD_#l7Gp3S8KK%aJ`7_AEYd2#TZpzlu=xe(xDj?`Pu+6gcWj@vjW~
zjKSeWu-6bh?6y8qGB)Cjg(DelJ9)46iol1OCoz$&4)dQ%Br2{g1NNMg>#!}yZq^5E
zMyhu%ZaMHW?%@R0Uv<u@H|57v>7f^yt&Fra_AtN2ut##h9=Sqb-yXD^@cOiF1<F;p
zMB1XuWD287GWD7WH%Fw@FkYTp1K1HN?3dysndKlj@KDOI+3--rHT9@Q<*QTribG?~
z;!ZOr7xo`_@$vobsDKFQMNf?YIgv9y^axY&49Pb6RBDr(to>F*V`2T+31gg>CaB04
zb3$eGM+^0hl?<`9DYdJz1MQ|i609+rB;{(<t`R+G&G^X41xr81y0>i=RC~WlT?}RR
zyhXGX!{Kg6-$%!1gWACRLxnx{p|lD7+TK^2WGKS#BfLy5r(#=5_!w=YF06F91P`!V
zz*O&f_It(9bY|7e_~7c@j&G}vg=LL|&G)s|rAg%Qivzz474~%fks#p*Mn>kIc-g;C
zX?rjYXmH%Hf^^R-Vc~Ej74!oa_FUM*U`xe_z`u_h*~1_SV6UZ=SzpAj0!Mu*|CM21
zO&M7P`x;Ebk$O`?Nb={{%JOG{P8D~itPKunJLaU5Lx}OGYe~z1Jv*xZy~zIc9s{4Q
zqYY=W2ueRuo)?v0%@a~TwEY-8Ost?$|01i;o+Gl~zybRWD+KnUJ!^RE&8(B?9pPP5
zV);I?Iil}~9csaATTbSCE5pIjUQl7b6elU1u=mxPm{{}k`KEga>|S!*gLLO9x{q2Q
zU5weS<lpJ0|24_p**?=TVJFX|$Xg)=kAp`fs}Q#@38>lO;(BiOwu}3yfK|kxjEHLY
zJ}%*_<$#mksLj0Z5|H8J*5RIYQv=&oqpbohve%yxM%VGSP4(U~whVbE=qBQo@KfPb
z&RIfv3C$vG2iV*J74~XMIbKx)k*oZ8>7^OT?y5?f>6>KgcZ79GGWe|TD}Z^<1s~zr
zeDx#B1JP33tLDf9jP;FYn$f#!+^}K%Let{5z=r@T?2D;`r)4TaZuRdE^Q^;H!JIcM
z=&sum{tH!Ol;B&W4>o^uVb6s<7xrH$3m$;l23}ZZ0qXtV9_(S5iAAta46TcFSI!na
z`3^0<%h=A(>7*wTFaHo@c?(}U(TM4~z6{uNPOihY9A{)ttVF!*zbF<}bDV^{-elbG
z<W$`0?cCisk?WUk!CGvD6ZR+$*rQem><`;qQGEEr=~tbzvMpo#@|r`X3R`bw*hli)
zU|(b@62YJoD(siyB$X5PFJv!0`=?sMIC=YEdctIG0iHA`IE|P_N3^{37<a^~!hrg+
zP!Jp(^|~nWXzgU}uwJa_@s>GaXpm)a?}s?vkeqr=IAldgL+?7jE5wBIlQQ{LT8H{~
z>CN=1w-?RhqqSzOk#a>BuYidRP+{K`eR<mXv(jaXjj|o})S*uF_PqI+7#Mk?J90S4
z_cl0gzg;LqTF);od(5=RnKlu0QT_$OOy%)HU%TsfiFLV6;P`o{uopoxv+)D<;W9Lu
zl+jG|)hP$~6wV8)qF-XGYu6tKPSV4LJs0*|*t5v7NKlK;mVW~E{%;TV`Z+U;U|-ht
zxa1e5vmTq{1hFSf>f*Hy?@$PKyuq7`)XP{krts^HWx^hSJa7ao-J!ItNF9}nPOs2N
zF=3*eo+?*9%~;rBpze=90CQLz*~@XjUT%fJz8QI8+`a1koV)LV0TVHiBb|+Px+$_o
zM;E41=GAr@;2>P6uwROkG?s(lfOGz=&G_BP7TN}5de&mwG&FKuCM&%73b1qD-tw9y
zs%GR~OK|pYsIXVDzk#w6Yra_|UurnF&T(t1Wa`#)`1_mg@{<Ts^wpq|r^|Wg(ZpWE
z=l-&Zs^xxRCB4H;ZD(O8Bg#VMBWF@RV7HKLi!)T6e&kx?ZAJYRa@ifE(Fo5s_Ap!1
z0G}W|K{B9+VF*<EoGPd{3W??2>yoVb{POqq&dl;1st>fZ0`_HssZ>y5ucKE{Ca0J;
zpz2K$o9vvGaed{U6E!N{Yhom*CpiZLyBXT?dvI3OacMI@l(`ZD{U}>J-Fa0M$0ca#
zj5nubV-<k+gPNe1YAE%OM|=2Ok_Z=S!z3gelD2n061EC@U29k{B%9o<20Ra{-pWe#
z@^q9k%--vOoqlx;*VCii_VdGCyS!T|X^imTtT#NoN`UpC>WvujT~rfK`TRnYHs7-+
z$-2ezeFIt;?SG2c5NUfJ4G!Re>J7}EUv=V7VCy~|xRbAL!IP^}8c}=g&>Y>Ssk-dR
zg*!UH`>iamL9Ihec?|}uk=e-(e_4Y1_x}H%pr_AUSj@Se{SzxB--6~djNE`ret)}2
z=wo^vzmQO4DcM!#DItJKNbdUY_3VM>dd^6mU1o1=$OG5eM-*#gi;9F1UAfxaHr;Hb
z)+=DsIa!_r6zv4<fHHX)6F8^DTJ<i{uw4B=33~D5uj|>z8?TJ@?Duc3B4-kP`dS5T
zaOX|FziwoA8|Sc4dlywb|69%3zk#c-LWTWOoXlhS1dd|u*kWUW9J-K<?%Ysq-!_O#
gB78#JTb=YlV=IC_zw>clq9h!})?&#YG&lag0AMLTZvX%Q

diff --git a/scripts/test_files/mina/mina_state.pub b/scripts/test_files/mina/mina_state.pub
index 51ac31aa0ac9bd8188977f85c678bd58ca200675..6b7f457b72b161bc94067cd71df26e740f7ecfb9 100644
GIT binary patch
literal 1056
zcmZoNyR%fQvCz?lk1_LT_`0L7OIy7EWt2@@(Es0|Q^&*lW@B9E75S&$>mM378|!X8
z`J$~dJk32s^+4mDLp}>tjs6I@J_@+d{pPWP?ylvtdV?5l@7)n5zDS{k=SpwF0UJIs
zC9%T>J+9Fnvzp$;&AXsbW&il**$4A~yJ(t=*k?ahyso!mQS~M@RfY?zMBn|X;riij
zTxF_Ty;|zI@`<187YNR~q<@Cjs?M>$`DrM}H#vdbix2*OI^lar_I3H1BNu{rLTB^#
zxa6vA6W(xoUg}Qf$`&u9tjl~m#pC17^ZDBG8*`R@{#DFgQcx<q{rDX9@YKT*8_N`S
z&8Yqq^=PS;a|)ke*}aa{i-NZ6H`e#^na8rtcA4fnjXhcMYa*+j=Xq1<^dr6B1Wo(Z
zZK`dU6He_=JXU_|mfftkw>1uTCAgl9kvGwwz_j*eqQ?sF2j^wq&Rei{tKUoKXDjrC
zHSWJ@I{Cz6<EnFg=L<H^v=Ta#AtROGJAL|B?PC!fobrLa3$8j_nP-;#Y+7$@=<E8)
zt$^{^H1FL<@5nq$KQ)tgWA(HS;VagEm$5w2weRv>w#agWn|^|a9>@8O!e>9b%jY{d
z{=c+a_KM7$V<|QJ-w3W-`YC|%|L<8EnwkZkT2h(ms{0t5BQ%-_#IK-)n$bjm_WWoW
z-zg#23$j)6Wfk0BbSHd1=jr)_d7E%$&p-3NyO$d_cqPw%>l|p`sO7vffHBeSdT)wW
u`9>?H;Vv(w9y0UvH-Xa6+iC?Q+oxD%z3Z@1<yqIrEg#b8!>MmN+~omM;?;}*

literal 1056
zcmV+*1mF8zoYkyVC%zF63>*_gWnlCt%z5ln_bQd<*`uG9EDtpoPo>I>X^YLgGGsLk
z>s`J;kBiR`Y-*MFb#|#~n2tTRvzu6AM~eRp`;I@s1q&ma2;^D;ee{FiBVrJxWos?t
z<?yMzX77_HQ*om8R*@YsDLpG2l=P4Px9EHAWmgo!K*YDgow7bl^kkLki9tu<DxkB-
z6lz~Y;^xCM9@sn-9rZ*e`n#vi@#x9?7v?kNq%h0|IdcD=Gty&aB}FO@D|gAQZ+DXS
zc|C71J{6-t$V(C_RE6%A?kN8Y=_M&ZmFD4#BV#tMlvn)LFnn@Q(Mufbi>e3j!EI22
zz-vEm(rl}tPQ7zVew#ff@NdL^_J_jiDL$TjV7~ys{md-NUKPG@ciyCApu&rQzfX20
zMg~(-PnO>9bth2XFY+K5b5p2y+nm6g0Y%{0dT<jBUD=xck?;N>wh<Q{s!}rozYwft
zG!dbUFK&|%DQTdL_ozyX*5~-%fiI<s%v~`dL4`*{e-X50`rbmCWu*w9SpkbL-E!Xn
z6D1P$A8jxl_Ww_K;1}iBx~gAzy*wzX{D4l3P~c#@+2QkH&+0fp`VAq(1lRcAtVK_Q
z=?iKOZ<BYh_@;VTxwWfKg*qbJ6|g9T29}`)E7j}cK|lK8G1#;IRg5?MQ5_<)f{r#b
zAY72j^!32>MMeo>pm>=}qL5s4(w0`OH^#ro41hViWc}=DcRvC*VHsnV3_H55`Pp;d
z$^-5XyvnhQpM@J$ADx<Lbr-5{vsOtX@Jgj4y4*w1mg_EK4E2-xqOL!;tcaG+uL}~w
z&7YCp=50;^kq&0SvZxW|-B`f}A$l0Ov1}1_<YVWkWk-@h-`XyW^r21RHmMUFz-%h>
zB9J~xAxWx@nv{GotVozqo*9Tk9g=b}_h|Pe11~_ONQfj5gLp=$%|9IvqC!?F7zPcm
zEb&^EWG&bvdUL-w%?TG6VM{hl!0@X8{Mg<+C?M7|tKh!Ort6DAXKh0NZPps%eKTMT
zp2W7u!0;1xE(p%MY^Y>RZ%w6nqB#WFMl3C1(~?O<KLO9f&N-AX;pL&cL<<7Ox=7(p
zfJ>gnDd;k^quVo96mFw_z~MSuKsxj=a2HOPhLqCoJ|Zo?C$$f(1CrXfR!POGQH#D5
z%O77?7G`8AntG~js5y7EjjIH!b^Ce>uTl~L-bNJ&_gIXS29HNLBybHijMG-)(A5=Y
z=MyxSyas&g+)?r#3`@3D9I>$fsS`O^EbMDd{6-L}${9xil}Xkl8mSHLhi^xVoi5Y0
z1>o25Wypq7lWj9EC#G+|2#5oC1hKZDnrkg5HlHLK#X5!D7T^U@z9lZmjEnhX`zMR3
aTPa?ua#!0SHLd=QjR2_i-H7adbFx1Lmj1v1


From 664a8136666b93477fae6bf82ab189e5ef7e0d64 Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 12:43:26 -0300
Subject: [PATCH 04/10] Test empty inputs in Mina FFI

---
 operator/mina/lib/src/lib.rs | 30 ++++++++++++++++++++++++++++++
 1 file changed, 30 insertions(+)

diff --git a/operator/mina/lib/src/lib.rs b/operator/mina/lib/src/lib.rs
index 67c55e8ca..1d13df840 100644
--- a/operator/mina/lib/src/lib.rs
+++ b/operator/mina/lib/src/lib.rs
@@ -234,4 +234,34 @@ mod test {
             verify_mina_state_ffi(&proof_buffer, proof_size, &pub_input_buffer, pub_input_size);
         assert!(!result);
     }
+
+    #[test]
+    fn empty_mina_state_proof_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+        assert!(pub_input_size <= pub_input_buffer.len());
+        pub_input_buffer[..pub_input_size].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result =
+            verify_mina_state_ffi(&proof_buffer, proof_size, &pub_input_buffer, pub_input_size);
+        assert!(!result);
+    }
+
+    #[test]
+    fn valid_mina_state_proof_with_empty_pub_input_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+        assert!(proof_size <= proof_buffer.len());
+        proof_buffer[..proof_size].clone_from_slice(PROOF_BYTES);
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+
+        let result =
+            verify_mina_state_ffi(&proof_buffer, proof_size, &pub_input_buffer, pub_input_size);
+        assert!(!result);
+    }
 }

From a67bb78f0a11aeedafd757fbbc33fdf557cb6109 Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 12:54:14 -0300
Subject: [PATCH 05/10] Make unchanged mut vars immutable

---
 operator/mina/lib/src/lib.rs | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/operator/mina/lib/src/lib.rs b/operator/mina/lib/src/lib.rs
index 1d13df840..f59e15d82 100644
--- a/operator/mina/lib/src/lib.rs
+++ b/operator/mina/lib/src/lib.rs
@@ -237,7 +237,7 @@ mod test {
 
     #[test]
     fn empty_mina_state_proof_does_not_verify() {
-        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_buffer = [0u8; super::MAX_PROOF_SIZE];
         let proof_size = PROOF_BYTES.len();
 
         let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
@@ -257,7 +257,7 @@ mod test {
         assert!(proof_size <= proof_buffer.len());
         proof_buffer[..proof_size].clone_from_slice(PROOF_BYTES);
 
-        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
         let pub_input_size = PUB_INPUT_BYTES.len();
 
         let result =

From 6b14da0d9b5628c70d473d8398e8241006077557 Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 13:07:26 -0300
Subject: [PATCH 06/10] Update Mina account test files

---
 .../mina_account/mina_account.proof           | Bin 1588 -> 1832 bytes
 .../test_files/mina_account/mina_account.pub  | Bin 64 -> 3496 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)

diff --git a/scripts/test_files/mina_account/mina_account.proof b/scripts/test_files/mina_account/mina_account.proof
index 12eecb298bee12c99c114aa65f079e4b4e76b918..bf82354d50505ccdaf2cb2a6781abb778e4aacf7 100644
GIT binary patch
delta 1077
zcmdnOvx0AeNPUfB^@JIxSn{=$Vkaam7e0A2`h;)ut1nBhhveCc=&&0z0D%IC0D|&L
zroHlt-~LytWvM<sw99xI@7-I!I+LcPXJwc_ef<rrMgdGRFl?%nG<FKSXz}mpFQpcZ
z&2h0Mi}rhYOz%&s?NwjoD8tVPR0mXB4_0orf}!h$antjUDNbL5JM@-Xnlhj4zajBR
zApW-Ztb>x0P{m-ie<w9q1w3V$DrRe?ZhZgC#dB9=`@Xw8{`6jEwony+st&SRx#ea&
z3pn=|-d^aGZgHYk_54#~#~c6FFPZVivQ1V=!WwKp&=p|tz%0<m^2yut*U~CvK5TK7
zNS67<H}&?FOByzAnO^DX1|UTWV3iCE-*0!XmQp`@$GqVG)*~Vwx0P%o6t*cC-C_#6
z_^q<OQwmw_v=@cN%NKO)PGA?_^YO5~+2`PX=`(J#?uRs%T{f)W^O^%$afiB~dj0or
zQ{2D1-`d7&ZM#c!%6`#xg-<3YB>iSy%B_X0mgy4zU4`nICXw}z7o;^<UlnD0(VePd
zdQYx&-WRcJd|b#OarNiN<$Tw!HgkT>_gNF2r)hSo(jfn&^5%MHy)`U}%4gY-6-x?i
z`EPgcQpD*K-`&@(=QiKlX*BPf%S7|?{bq|!3UeqRJ3^(eW!0O&Mpr>Lr7z8=gI&w_
z=ly7zT|Vbl#r!Qvffi!OYD=w^WwUHuZe3XPNh~Mou<i{e$$HxpyIYqTZfN*?W2=`q
zvf{?Mt)I-RYRY7e{M;+C{QE)ezuKL1ibHr01RDfO>j&u~t36QH!s)8Ob3)xivpYPt
z;pFPyd0cDSzVc4}ukwBB@$V?n5uz7SXOpsR;hyJjAKmQ`+I;E0p2S1Od{OmDQ&=ae
zM*rj6tib$*sXokequ23E!p}KRYw^#zA(>G7P2lPKg|dgX1m{H>7VKkYQ~)^u2tWZx
z4A^2L-=^}(9jsIVs)1X?hRxNpDzbg~j{Y<gKIYp~?74WqbZ0JJQLm|ZZu&+pMwm*X
codY!)FU1U%MW#V)5N3kVVqgwT5Jocq03=XL8~^|S

delta 831
zcmZ3%w}oedNIe7lIn%@Q?iBel`g^ol{#eei&-!uxi|ed);#Eqa5tsQGfItC600HZ+
zHE&xquB&H0pX+<BHZ0t6=d=?BVK1trIe%HR%f+%V0@Wyh6avAEr0WfQ?{dHW(VDYj
zfA{uin~7B+`}Tc$V<EhJ&f;QE9grFY28MbN&5&~ANE_z?#jA?#ZyQd})Ns3QGG$Y?
z#IC(2KWn(wz0hU_sZjtCKp<Cp-M;hG_svh3`&FzSa__y^bbH?Iz_K-4?wkl>RXnJJ
z?1-Hnf7rGDx75DaS5}(-cvfDz9h=SZ-gf3#jmU=+y%cO2LG~+vjb&gk_;#l}FDalc
z?p>|?mhLwPx7-Lnb=pKwd@q-2Q;UX;5=a?LZTvTX`JFlYnbt_(&(=#459p4!N}Z6K
zx$XbufBAEd2Xi4iV(Z1cGgkxNO<izf>n86$>pfL%>pt*W7Q`-8vc9KVAJd|atXQhj
z!&ZE5)0Wv`P7j-AUYvUM(zUfuwT{mhSo2Bq)U+vD$Z9<we_Wij-n-_*S^YmTUE8?l
zXg}AvcC&N39Jh*XtVE<Gvf3}KiSak0rfhopVME?zM$>1e*)bbtJlf1q|ETED$MpYi
zw2>7{uG+BXD(_46BNtt3FSRXwBgVT+&AmM5;)dqw?z&Chn#dt>Y4PC%)~9RaH}a}}
zm~&Cc?2B-5vDQ}QCm)`#ef{I+Zx&>=E>6c^PS#@TbGv!sKvjWp!Y}UZdX)vN3MZzY
zo>rl{ieCj;@zQw5-bKw1PaR~ttsF1AX1kci>&1qu0oJ^H>Oy-$c7c>KD1b=@hDA0k
z4v$<{zbM}jCp0Pk;D^03->Q#<u8Ow~p7T#}${%rL&*e?`)OfmI!)3!_my14uLe2_&
zJ<VG*F1+7jF>`UJP0$Ul%?iw4m=qX;<sNn4P@8nV_xgl?Zw+4jPyfRdRDL{iMUKJG
I>DT;t0pHj*r~m)}

diff --git a/scripts/test_files/mina_account/mina_account.pub b/scripts/test_files/mina_account/mina_account.pub
index c2a7f7d0a968c5f40d82eb17abad7d841b90187c..75f513491f59b9760eefa229c9404cc0f66d9084 100644
GIT binary patch
literal 3496
zcmb1A51D!Tn?UL3ZM6cD?Nh9>-gVfh@~ms*mJez4;nX*6;AJ2ND1>=#^g4b?_&Mik
zE&f?IBok`C2|RtjQ1;N4;Jiq~f_=;c3}Iv>pa8!#^8uXl?w?fJ<ZZU#l!r=ii`cNa
zdR9fYFW=FhX2QpOdx||5@0ae(#Va%w&rRRRMXCP?*+0bP3B@lV@6lR6A@d2zGZF9r
rA^n3~p7{X*|BXtIhQMeDjE2By2#kinXb6mkz-S0iH3T>l2pI<e06sju

literal 64
zcmV-G0Kfm%_$?U?TEjZ56g`4KmVi;JJTPER|MRza2NKS@j-Lg^(nbM>_ai)#etojs
W#{<CS0Jc-gf+stB`q%_rg`{x8p&pq4


From a979e1f5e53f5666fada996ec60c92382f94113e Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 13:14:03 -0300
Subject: [PATCH 07/10] Add Go tests for empty inputs in Mina account FFI

---
 operator/mina_account/mina_account_test.go | 39 ++++++++++++++++++++++
 1 file changed, 39 insertions(+)

diff --git a/operator/mina_account/mina_account_test.go b/operator/mina_account/mina_account_test.go
index 0cdd18777..89e34fa50 100644
--- a/operator/mina_account/mina_account_test.go
+++ b/operator/mina_account/mina_account_test.go
@@ -35,3 +35,42 @@ func TestMinaStateProofVerifies(t *testing.T) {
 		t.Errorf("proof did not verify")
 	}
 }
+
+func TestEmptyMinaStateProofDoesNotVerify(t *testing.T) {
+	fmt.Println(os.Getwd())
+	proofBuffer := make([]byte, mina_account.MAX_PROOF_SIZE)
+
+	pubInputFile, err := os.Open("../../scripts/test_files/mina_account/mina_account.pub")
+	if err != nil {
+		t.Errorf("could not open mina account pub inputs file")
+	}
+	pubInputBuffer := make([]byte, mina_account.MAX_PUB_INPUT_SIZE)
+	pubInputLen, err := pubInputFile.Read(pubInputBuffer)
+	if err != nil {
+		t.Errorf("could not read bytes from mina account pub inputs hash")
+	}
+
+	if mina_account.VerifyAccountInclusion(([mina_account.MAX_PROOF_SIZE]byte)(proofBuffer), mina_account.MAX_PROOF_SIZE, ([mina_account.MAX_PUB_INPUT_SIZE]byte)(pubInputBuffer), uint(pubInputLen)) {
+		t.Errorf("Empty proof should not verify but it did")
+	}
+}
+
+func TestMinaStateProofWithEmptyPubInputDoesNotVerify(t *testing.T) {
+	fmt.Println(os.Getwd())
+	proofFile, err := os.Open("../../scripts/test_files/mina_account/mina_account.proof")
+	if err != nil {
+		t.Errorf("could not open mina account proof file")
+	}
+
+	proofBuffer := make([]byte, mina_account.MAX_PROOF_SIZE)
+	proofLen, err := proofFile.Read(proofBuffer)
+	if err != nil {
+		t.Errorf("could not read bytes from mina account proof file")
+	}
+
+	pubInputBuffer := make([]byte, mina_account.MAX_PUB_INPUT_SIZE)
+
+	if mina_account.VerifyAccountInclusion(([mina_account.MAX_PROOF_SIZE]byte)(proofBuffer), uint(proofLen), ([mina_account.MAX_PUB_INPUT_SIZE]byte)(pubInputBuffer), mina_account.MAX_PUB_INPUT_SIZE) {
+		t.Errorf("proof with empty public input should not verify but id did")
+	}
+}

From ad9aa0867dea5604f805d7c9832f694b9a51ac6c Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 14:10:57 -0300
Subject: [PATCH 08/10] Test empty inputs in Mina Account Rust FFI

---
 operator/mina_account/lib/src/lib.rs | 70 ++++++++++++++++++++++++++++
 1 file changed, 70 insertions(+)

diff --git a/operator/mina_account/lib/src/lib.rs b/operator/mina_account/lib/src/lib.rs
index 971f6f651..2ff36d440 100644
--- a/operator/mina_account/lib/src/lib.rs
+++ b/operator/mina_account/lib/src/lib.rs
@@ -64,3 +64,73 @@ pub extern "C" fn verify_account_inclusion_ffi(
 
     verify_merkle_proof(leaf_hash, merkle_path, ledger_hash)
 }
+
+#[cfg(test)]
+mod test {
+
+    use super::*;
+
+    const PROOF_BYTES: &[u8] =
+        include_bytes!("../../../../scripts/test_files/mina_account/mina_account.proof");
+    const PUB_INPUT_BYTES: &[u8] =
+        include_bytes!("../../../../scripts/test_files/mina_account/mina_account.pub");
+
+    #[test]
+    fn valid_account_state_proof_verifies() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+        assert!(proof_size <= proof_buffer.len());
+        proof_buffer[..proof_size].clone_from_slice(PROOF_BYTES);
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+        assert!(pub_input_size <= pub_input_buffer.len());
+        pub_input_buffer[..pub_input_size].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result = verify_account_inclusion_ffi(
+            &proof_buffer,
+            proof_size,
+            &pub_input_buffer,
+            pub_input_size,
+        );
+        assert!(result);
+    }
+
+    #[test]
+    fn empty_account_state_proof_does_not_verify() {
+        let proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+        assert!(pub_input_size <= pub_input_buffer.len());
+        pub_input_buffer[..pub_input_size].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result = verify_account_inclusion_ffi(
+            &proof_buffer,
+            proof_size,
+            &pub_input_buffer,
+            pub_input_size,
+        );
+        assert!(!result);
+    }
+
+    #[test]
+    fn valid_account_state_proof_with_empty_pub_input_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+        assert!(proof_size <= proof_buffer.len());
+        proof_buffer[..proof_size].clone_from_slice(PROOF_BYTES);
+
+        let pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+
+        let result = verify_account_inclusion_ffi(
+            &proof_buffer,
+            proof_size,
+            &pub_input_buffer,
+            pub_input_size,
+        );
+        assert!(!result);
+    }
+}

From 1c85ce2fc7fff1c8b83ed8d22fd597f3189f61fa Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 14:50:33 -0300
Subject: [PATCH 09/10] Add checks for huge input sizes

---
 operator/mina/lib/src/lib.rs         | 50 ++++++++++++++++++++++++++++
 operator/mina_account/lib/src/lib.rs | 50 ++++++++++++++++++++++++++++
 2 files changed, 100 insertions(+)

diff --git a/operator/mina/lib/src/lib.rs b/operator/mina/lib/src/lib.rs
index f59e15d82..e2c945113 100644
--- a/operator/mina/lib/src/lib.rs
+++ b/operator/mina/lib/src/lib.rs
@@ -33,6 +33,16 @@ pub extern "C" fn verify_mina_state_ffi(
     pub_input_buffer: &[u8; MAX_PUB_INPUT_SIZE],
     pub_input_len: usize,
 ) -> bool {
+    if proof_len > MAX_PROOF_SIZE {
+        eprintln!("Proof length argument is greater than max proof size");
+        return false;
+    }
+
+    if pub_input_len > MAX_PUB_INPUT_SIZE {
+        eprintln!("Public input length argument is greater than max public input size");
+        return false;
+    }
+
     let proof: MinaStateProof = match bincode::deserialize(&proof_buffer[..proof_len]) {
         Ok(proof) => proof,
         Err(err) => {
@@ -264,4 +274,44 @@ mod test {
             verify_mina_state_ffi(&proof_buffer, proof_size, &pub_input_buffer, pub_input_size);
         assert!(!result);
     }
+
+    #[test]
+    fn valid_mina_state_proof_with_greater_proof_size_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let wrong_proof_size = super::MAX_PROOF_SIZE + 1;
+        proof_buffer[..PROOF_BYTES.len()].clone_from_slice(PROOF_BYTES);
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+        assert!(pub_input_size <= pub_input_buffer.len());
+        pub_input_buffer[..pub_input_size].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result = verify_mina_state_ffi(
+            &proof_buffer,
+            wrong_proof_size,
+            &pub_input_buffer,
+            pub_input_size,
+        );
+        assert!(!result);
+    }
+
+    #[test]
+    fn valid_mina_state_proof_with_greater_pub_input_size_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+        assert!(proof_size <= proof_buffer.len());
+        proof_buffer[..proof_size].clone_from_slice(PROOF_BYTES);
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let wrong_pub_input_size = MAX_PUB_INPUT_SIZE + 1;
+        pub_input_buffer[..PUB_INPUT_BYTES.len()].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result = verify_mina_state_ffi(
+            &proof_buffer,
+            proof_size,
+            &pub_input_buffer,
+            wrong_pub_input_size,
+        );
+        assert!(!result);
+    }
 }
diff --git a/operator/mina_account/lib/src/lib.rs b/operator/mina_account/lib/src/lib.rs
index 2ff36d440..258467131 100644
--- a/operator/mina_account/lib/src/lib.rs
+++ b/operator/mina_account/lib/src/lib.rs
@@ -19,6 +19,16 @@ pub extern "C" fn verify_account_inclusion_ffi(
     pub_input_buffer: &[u8; MAX_PUB_INPUT_SIZE],
     pub_input_len: usize,
 ) -> bool {
+    if proof_len > MAX_PROOF_SIZE {
+        eprintln!("Proof length argument is greater than max proof size");
+        return false;
+    }
+
+    if pub_input_len > MAX_PUB_INPUT_SIZE {
+        eprintln!("Public input length argument is greater than max public input size");
+        return false;
+    }
+
     let MinaAccountProof {
         merkle_path,
         account,
@@ -133,4 +143,44 @@ mod test {
         );
         assert!(!result);
     }
+
+    #[test]
+    fn valid_account_state_proof_with_greater_proof_size_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let wrong_proof_size = MAX_PROOF_SIZE + 1;
+        proof_buffer[..PROOF_BYTES.len()].clone_from_slice(PROOF_BYTES);
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let pub_input_size = PUB_INPUT_BYTES.len();
+        assert!(pub_input_size <= pub_input_buffer.len());
+        pub_input_buffer[..pub_input_size].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result = verify_account_inclusion_ffi(
+            &proof_buffer,
+            wrong_proof_size,
+            &pub_input_buffer,
+            pub_input_size,
+        );
+        assert!(!result);
+    }
+
+    #[test]
+    fn valid_account_state_proof_with_greater_pub_input_size_does_not_verify() {
+        let mut proof_buffer = [0u8; super::MAX_PROOF_SIZE];
+        let proof_size = PROOF_BYTES.len();
+        assert!(proof_size <= proof_buffer.len());
+        proof_buffer[..proof_size].clone_from_slice(PROOF_BYTES);
+
+        let mut pub_input_buffer = [0u8; super::MAX_PUB_INPUT_SIZE];
+        let wrong_pub_input_size = MAX_PUB_INPUT_SIZE + 1;
+        pub_input_buffer[..PUB_INPUT_BYTES.len()].clone_from_slice(PUB_INPUT_BYTES);
+
+        let result = verify_account_inclusion_ffi(
+            &proof_buffer,
+            proof_size,
+            &pub_input_buffer,
+            wrong_pub_input_size,
+        );
+        assert!(!result);
+    }
 }

From e46b6f553362f491dcf9b1806c2e2cb8b016cde0 Mon Sep 17 00:00:00 2001
From: gabrielbosio <gabrielbosio95@gmail.com>
Date: Thu, 19 Sep 2024 15:01:30 -0300
Subject: [PATCH 10/10] Refactor input size check

---
 operator/mina/lib/src/lib.rs         | 25 ++++++++++++-------------
 operator/mina_account/lib/src/lib.rs | 12 ++++++------
 2 files changed, 18 insertions(+), 19 deletions(-)

diff --git a/operator/mina/lib/src/lib.rs b/operator/mina/lib/src/lib.rs
index e2c945113..fc31e89bf 100644
--- a/operator/mina/lib/src/lib.rs
+++ b/operator/mina/lib/src/lib.rs
@@ -33,31 +33,30 @@ pub extern "C" fn verify_mina_state_ffi(
     pub_input_buffer: &[u8; MAX_PUB_INPUT_SIZE],
     pub_input_len: usize,
 ) -> bool {
-    if proof_len > MAX_PROOF_SIZE {
+    let Some(proof_buffer_slice) = proof_buffer.get(..proof_len) else {
         eprintln!("Proof length argument is greater than max proof size");
         return false;
-    }
+    };
 
-    if pub_input_len > MAX_PUB_INPUT_SIZE {
+    let Some(pub_input_buffer_slice) = pub_input_buffer.get(..pub_input_len) else {
         eprintln!("Public input length argument is greater than max public input size");
         return false;
-    }
+    };
 
-    let proof: MinaStateProof = match bincode::deserialize(&proof_buffer[..proof_len]) {
+    let proof: MinaStateProof = match bincode::deserialize(proof_buffer_slice) {
         Ok(proof) => proof,
         Err(err) => {
             eprintln!("Failed to deserialize state proof: {}", err);
             return false;
         }
     };
-    let pub_inputs: MinaStatePubInputs =
-        match bincode::deserialize(&pub_input_buffer[..pub_input_len]) {
-            Ok(pub_inputs) => pub_inputs,
-            Err(err) => {
-                eprintln!("Failed to deserialize state pub inputs: {}", err);
-                return false;
-            }
-        };
+    let pub_inputs: MinaStatePubInputs = match bincode::deserialize(pub_input_buffer_slice) {
+        Ok(pub_inputs) => pub_inputs,
+        Err(err) => {
+            eprintln!("Failed to deserialize state pub inputs: {}", err);
+            return false;
+        }
+    };
 
     // Checks the integrity of the public inputs, also checks if the states form a chain.
     let (candidate_tip_state, bridge_tip_state, candidate_tip_state_hash) =
diff --git a/operator/mina_account/lib/src/lib.rs b/operator/mina_account/lib/src/lib.rs
index 258467131..1b15c722d 100644
--- a/operator/mina_account/lib/src/lib.rs
+++ b/operator/mina_account/lib/src/lib.rs
@@ -19,20 +19,20 @@ pub extern "C" fn verify_account_inclusion_ffi(
     pub_input_buffer: &[u8; MAX_PUB_INPUT_SIZE],
     pub_input_len: usize,
 ) -> bool {
-    if proof_len > MAX_PROOF_SIZE {
+    let Some(proof_buffer_slice) = proof_buffer.get(..proof_len) else {
         eprintln!("Proof length argument is greater than max proof size");
         return false;
-    }
+    };
 
-    if pub_input_len > MAX_PUB_INPUT_SIZE {
+    let Some(pub_input_buffer_slice) = pub_input_buffer.get(..pub_input_len) else {
         eprintln!("Public input length argument is greater than max public input size");
         return false;
-    }
+    };
 
     let MinaAccountProof {
         merkle_path,
         account,
-    } = match bincode::deserialize(&proof_buffer[..proof_len]) {
+    } = match bincode::deserialize(proof_buffer_slice) {
         Ok(proof) => proof,
         Err(err) => {
             eprintln!("Failed to deserialize account proof: {}", err);
@@ -42,7 +42,7 @@ pub extern "C" fn verify_account_inclusion_ffi(
     let MinaAccountPubInputs {
         ledger_hash,
         encoded_account,
-    } = match bincode::deserialize(&pub_input_buffer[..pub_input_len]) {
+    } = match bincode::deserialize(pub_input_buffer_slice) {
         Ok(pub_inputs) => pub_inputs,
         Err(err) => {
             eprintln!("Failed to deserialize account pub inputs: {}", err);