ó
    ’ÒiûK  ã                   ó  • S SK r S SKrS SKrS SKJrJrJrJrJrJ	r	J
r
JrJrJrJrJrJrJrJrJrJrJr  S SKJr  S SKJr  S SKJr  S\R8                  \\R<                  \   \R>                  \S4   \R@                  \   4   S\!4S	 jr"   SS
\!S\RF                  \   S\$S\RF                  \   S\RJ                  4
S jjr& " S S\ RN                  5      r( " S S\ RR                  5      r* " S S5      r+ " S S5      r, " S S5      r-g)é    N)ÚTagClassÚTypeTagNumberÚget_sequence_valueÚ	pack_asn1Úpack_asn1_bit_stringÚpack_asn1_enumeratedÚpack_asn1_general_stringÚpack_asn1_object_identifierÚpack_asn1_octet_stringÚpack_asn1_sequenceÚunpack_asn1Úunpack_asn1_bit_stringÚunpack_asn1_enumeratedÚunpack_asn1_general_stringÚunpack_asn1_object_identifierÚunpack_asn1_octet_stringÚunpack_asn1_sequenceÚunpack_asn1_tagged_sequence)ÚGSSMech)ÚKerberosV5Msg)ÚNTLMMessageÚ	mech_list.Úreturnc                 óœ   • [        U [        [        [        45      (       d  U /n [	        U  Vs/ s H  n[        U5      PM     sn5      $ s  snf )a  Packs a list of OIDs for the mechListMIC value.

Will pack a list of object identifiers to the raw byte string value for the mechListMIC.

Args:
    mech_list: The list of OIDs to back

Returns:
    bytes: The byte string of the packed ASN.1 MechTypeList SEQUENCE OF value.
)Ú
isinstanceÚlistÚtupleÚsetr   r
   )r   Úoids     ÚH/home/james-whalen/.local/lib/python3.13/site-packages/spnego/_spnego.pyÚpack_mech_type_listr!   !   sB   € ô i¤$¬¬sÐ!3×4Ñ4ØKˆ	äÉ9ÓUÊ9ÀCÔ:¸3Ö?É9ÑUÓVÐVùÒUs   ­A	Úb_dataÚmechÚunwrapÚencodingc                 óØ  • U R                  S5      (       a  U(       a  [        R                  " XS9$ U $ U(       a#  UR                  (       a  [	        U SS 5      S   nO[	        U 5      S   nUR
                  [        R                  :X  aD  U(       a=  UR                  (       a,  [        R                  " [	        UR                  5      S   5      $ UR
                  [        R                  :X  aº  UR                  S:w  a  [        SUR                  -  5      e[        R                  UR                  5      nU(       a  U$  [        R                  " UR                  5      nU(       a@  U[        R                   :X  d  UR                  (       a  U(       a  [#        UR$                  US9$ U $ UR
                  [        R&                  :X  av  UR                  S:X  a  [(        R                  UR                  5      $ UR                  S:X  a  [*        R                  UR                  5      $ [        S	UR                  -  5      eU(       a  [        R                  " U5      $ U $ ! [         a    Sn GNf = f)
aU  Unpacks a raw GSSAPI/SPNEGO token to a Python object.

Unpacks the byte string into a Python object that represents the token passed in. This can return many different
token types such as:

* NTLM message(s)
* SPNEGO/Negotiate init or response
* Kerberos message(s)

Args:
    b_data: The raw byte string to unpack.
    mech: A hint as to what the byte string is for.
    unwrap: Whether to unwrap raw bytes to a structured message or return the raw tokens bytes.
    encoding: Optional encoding used when unwrapping NTLM messages.

Returns:
    any: The unpacked SPNEGO, Kerberos, or NTLM token.
s   NTLMSSP )r%   é   Nr   z:Expecting a tag number of 0 not %s for InitialContextToken©r#   é   z9Unknown NegotiationToken CHOICE %d, only expecting 0 or 1)Ú
startswithr   ÚunpackÚis_kerberos_oidr   Ú	tag_classr   Úapplicationr   r"   Ú
tag_numberÚ
ValueErrorÚInitialContextTokenr   Úfrom_oidÚ	this_mechÚspnegoÚunpack_tokenÚinner_context_tokenÚcontext_specificÚNegTokenInitÚNegTokenResp)r"   r#   r$   r%   Úraw_dataÚinitial_context_tokenr3   s          r    r5   r5   4   sî  € ð2 ×Ñ˜×(Ñ(ÞÜ×%Ò% fÑ@Ð@ð ˆMæ×$×$ä˜v a b˜zÓ*¨1Ñ-‰ô ˜vÓ& qÑ)ˆà×ÑœX×1Ñ1Ó1¶d¸t×?S×?SÜ×#Ò#¤K°·±Ó$@ÀÑ$CÓDÐDà	×	Ñ	œx×3Ñ3Ó	3à×Ñ !Ó#ÜÐYÐ\d×\oÑ\oÑoÓpÐpä 3× :Ñ :¸8¿?¹?Ó KÐö Ø(Ð(ð	Ü×(Ò(Ð)>×)HÑ)HÓIˆIö
 ˜)¤w§~¡~Ó5¸)×:S×:SÖX^ÜÐ 5× IÑ IÐPYÑZÐZàˆà	×	Ñ	œx×8Ñ8Ó	8à×Ñ !Ó#Ü×&Ñ& x§¡Ó7Ð7à× Ñ  AÓ%Ü×&Ñ& x§¡Ó7Ð7ô ÐXÐ[c×[nÑ[nÑnÓoÐoæ	ä×#Ò# HÓ-Ð-ð ˆøô3 ó 	Ø‹Ið	ús   Ä= I ÉI)É(I)c                   óf   • \ rS rSrSrSrSrSrSrSr	Sr
\S	\R                  S \4   4S
 j5       rSrg)ÚContextFlagsé‰   r   r)   r'   é   é   é   é   r   c                 óæ   • [         R                  S[         R                  S[         R                  S[         R                  S[         R
                  S[         R                  S[         R                  S0$ )NÚ	delegFlagÚ
mutualFlagÚ
replayFlagÚsequenceFlagÚanonFlagÚconfFlagÚ	integFlag)r=   ÚdelegÚmutualÚreplayÚsequenceÚanonÚconfÚinteg©Úclss    r    Únative_labelsÚContextFlags.native_labels’   s[   € ô ×Ñ Ü×Ñ Ü×Ñ Ü×!Ñ! >Ü×Ñ˜zÜ×Ñ˜zÜ×Ñ ð
ð 	
ó    © N)Ú__name__Ú
__module__Ú__qualname__Ú__firstlineno__rK   rL   rM   rN   rO   rP   rQ   ÚclassmethodÚtypingÚDictÚstrrT   Ú__static_attributes__rW   rV   r    r=   r=   ‰   sL   † Ø€EØ€FØ€FØ€HØ€DØ€DØ€Eàð	
˜fŸk™k¨.¸#Ð*=Ñ>ó 	
ó ó	
rV   r=   c                   óZ   • \ rS rSrSrSrSrSr\S\	R                  S \4   4S j5       rSrg	)
ÚNegStateé    r   r)   r'   r?   r   c                 ó†   • [         R                  S[         R                  S[         R                  S[         R                  S0$ )Nzaccept-completezaccept-incompleteÚrejectzrequest-mic)rb   Úaccept_completeÚaccept_incompletere   Úrequest_micrR   s    r    rT   ÚNegState.native_labels¦   s:   € ô ×$Ñ$Ð&7Ü×&Ñ&Ð(;ÜO‰O˜XÜ× Ñ  -ð	
ð 	
rV   rW   N)rX   rY   rZ   r[   rf   rg   re   rh   r\   r]   r^   r_   rT   r`   rW   rV   r    rb   rb       s=   † Ø€OØÐØ€FØ€Kàð
˜fŸk™k¨*°c¨/Ñ:ó 
ó ó
rV   rb   c                   ó¢   • \ rS rSrSrS\R                  \\4   S\	SS4S jr
\S\R                  4S j5       rS\	4S	 jr\S
\	SS 4S j5       rSrg)r1   é°   a«  GSSAPI InitialContextToken object.

The InitialContextToken is the ASN.1 structure that contains the first GSSAPI token that is sent across the wire.
The ASN.1 definition for this structure is defined in `RFC 2743 3.1`_::

    MechType ::= OBJECT IDENTIFIER
    -- data structure definitions
    -- callers must be able to distinguish among
    -- InitialContextToken, SubsequentContextToken,
    -- PerMsgToken, and SealedMessage data elements
    -- based on the usage in which they occur

    InitialContextToken ::=
    -- option indication (delegation, etc.) indicated within
    -- mechanism-specific token
    [APPLICATION 0] IMPLICIT SEQUENCE {
        thisMech MechType,
        innerContextToken ANY DEFINED BY thisMech
           -- contents mechanism-specific
           -- ASN.1 structure not required
        }

Args:
    mech: The OID that defines the structure of the `token`.
    token: The token of the GSSAPI value.

Attributes:
    this_mech (str): The object identifier that identifies what the inner_context_token is for.
    inner_context_token (bytes): The token value as defined by `this_mech`.

.. _RFC 2743 3.1:
    https://www.rfc-editor.org/rfc/rfc2743#section-3.1.
r#   Útokenr   Nc                 ó^   • [        U[        5      (       a  UR                  nXl        X l        g ©N)r   r   Úvaluer3   r6   )Úselfr#   rl   s      r    Ú__init__ÚInitialContextToken.__init__Ó   s#   € ÜdœG×$Ñ$Ø—:‘:ˆDàŒØ#(Õ rV   c                 ó   •  [         R                  " U R                  5      n[	        U R
                  US9$ ! [         a    S n N"f = f)Nr(   )r   r2   r3   r0   r5   r6   )rp   r#   s     r    rl   ÚInitialContextToken.tokenÚ   sF   € ð	Ü×#Ò# D§N¡NÓ3ˆDô ˜D×4Ñ4¸4Ñ@Ð@øô ó 	ØŠDð	ús   ‚ 6 ¶AÁAc           
      óx   • [        [        R                  SS[        U R                  SS9U R
                  -   5      $ )z/Packs the InitialContextToken as a byte string.Tr   )Útag)r   r   r.   r
   r3   r6   )rp   s    r    ÚpackÚInitialContextToken.packä   s7   € äÜ× Ñ ØØÜ'¨¯©¸DÑAÀD×D\ÑD\Ñ\ó	
ð 	
rV   r"   c                 óH   • [        U 5      u  p[        U5      n[        X25      $ )z*Unpacks the InitialContextToken TLV value.)r   r   r1   )r"   r3   r6   r#   s       r    r+   ÚInitialContextToken.unpackí   s&   € ô *5°VÓ)<Ñ&ˆ	Ü,¨YÓ7ˆä" 4Ó=Ð=rV   )r6   r3   )rX   rY   rZ   r[   Ú__doc__r]   ÚUnionr   r_   Úbytesrq   ÚpropertyÚAnyrl   rw   Ústaticmethodr+   r`   rW   rV   r    r1   r1   °   s€   † ñ ðD)˜VŸ\™\¨'°3¨,Ñ7ð )Àð )È$ô )ð ðAv—z‘zó Aó ðAð
eô 
ð ð>uð >Ð!6ó >ó ó>rV   r1   c                   ó.  • \ rS rSrSr      SS\R                  \R                  \      S\R                  \	   S\R                  \
   S\R                  \
   S\R                  \
   S	\R                  \
   S
S4S jjrS
\
4S jr\S\
S
S 4S j5       rSrg)r8   éö   a®	  The NegTokenInit GSSAPI value.

This is the initial negotiation message token in a GSSAPI exchange. Typically the `NegTokenInit` value is sent
when sending the first authentication token. The `NegTokenInit2` token is an extension that adds the `negHints`
field. Unfortunately as the tag number for the `mechListMIC` is the same for `negHints` unpacking the value
requires some extra checks.

The ASN.1 definition for the NegTokenInit structure is defined in `RFC 4178 4.2.1`_::

    NegTokenInit ::= SEQUENCE {
        mechTypes       [0] MechTypeList,
        reqFlags        [1] ContextFlags  OPTIONAL,
        -- inherited from RFC 2478 for backward compatibility,
        -- RECOMMENDED to be left out
        mechToken       [2] OCTET STRING  OPTIONAL,
        mechListMIC     [3] OCTET STRING  OPTIONAL,
        ...
    }
    ContextFlags ::= BIT STRING {
        delegFlag       (0),
        mutualFlag      (1),
        replayFlag      (2),
        sequenceFlag    (3),
        anonFlag        (4),
        confFlag        (5),
        integFlag       (6)
    } (SIZE (32))

The ASN.1 definition for the `NegTokenInit2`_ structure is defined as::

    NegHints ::= SEQUENCE {
        hintName[0] GeneralString OPTIONAL,
        hintAddress[1] OCTET STRING OPTIONAL
    }
    NegTokenInit2 ::= SEQUENCE {
        mechTypes[0] MechTypeList OPTIONAL,
        reqFlags [1] ContextFlags OPTIONAL,
        mechToken [2] OCTET STRING OPTIONAL,
        negHints [3] NegHints OPTIONAL,
        mechListMIC [4] OCTET STRING OPTIONAL,
        ...
    }

Args:
    mech_types: One or more security mechanisms available for the initiator, in decreasing preference order.
    req_flags: Should be omitted, service options that are requested to establish the context.
    mech_token: Contains the optimistic mechanism token.
    hint_name: Used for the NegTokenInit2 structure only, should be omitted.
    hint_address: Used for the NegTokenINit2 structure only, should be omitted.
    mech_list_mic: The message integrity code (MIC) token.

Attributes:
    mech_types (List[str]): See args.
    req_flags (ContextFlags): See args.
    mech_token (bytes): See args.
    hint_name (bytes): See args.
    hint_address (bytes): See args.
    mech_list_mic (bytes): See args.

.. _RFC 4178 4.2.1:
    https://www.rfc-editor.org/rfc/rfc4178.html#section-4.2.1

.. _NegTokenInit2:
    https://docs.microsoft.com/en-us/openspecs/windows_protocols/ms-spng/8e71cf53-e867-4b79-b5b5-38c92be3d472
NÚ
mech_typesÚ	req_flagsÚ
mech_tokenÚ	hint_nameÚhint_addressÚmech_list_micr   c                 ó`   • U=(       d    / U l         X l        X0l        X@l        XPl        X`l        g rn   )rƒ   r„   r…   r†   r‡   rˆ   )rp   rƒ   r„   r…   r†   r‡   rˆ   s          r    rq   ÚNegTokenInit.__init__9  s+   € ð %×*¨ˆŒØ"ŒØ$ŒØ"ŒØ(ÔØ*ÕrV   c           	      ób  • S[         R                  [         R                  [        [         R                  [         R
                  4      S[         R                  [           4S jnU R                  b!  [        R                  " SU R                  5      OSnSU R                  [        4SU[        4SU R                  [        4/nU" SU R                   ["        4SU R$                  [        4/5      nU(       a;  UR'                  S	U[(        45        UR'                  S
U R*                  [        45        O"UR'                  S	U R*                  [        45        U" U5      n[)        U5      n[-        [.        R0                  R2                  [5        [6        R8                  SSU5      5      R                  5       $ )z(Packs the NegTokenInit as a byte string.Ú	value_mapr   c                 óŒ   • / nU  H;  u  p#nUc  M  UR                  [        [        R                  SX$" U5      5      5        M=     U$ )NT)Úappendr   r   r7   )rŒ   Úelementsrv   ro   Ú	pack_funcs        r    Úpack_elementsÚ(NegTokenInit.pack.<locals>.pack_elementsL  sI   € ð ˆHÛ)2Ñ%˜IØÓ$Ø—O‘O¤I¬h×.GÑ.GÈÈsÐT]Ð^cÓTdÓ$eÖfñ *3ð ˆOrV   NÚBr   r)   r'   r?   r@   T)r]   ÚIterableÚTupleÚintr   ÚCallableÚListr}   r„   Ústructrw   rƒ   r!   r   r…   r   r†   r	   r‡   rŽ   r   rˆ   r1   r   r4   ro   r   r   r7   )rp   r‘   r„   Úbase_mapÚ	neg_hintsÚinit_sequencer"   s          r    rw   ÚNegTokenInit.packI  s^  € ð	Ü—‘¤v§|¡|´C¼¿¹ÄVÇ_Á_Ð4TÑ'UÑVð	ä[‰[œÑô	ð 9=¿¹Ñ8R”F—K’K  T§^¡^Ô4ÐX\ˆ	à—‘Ô!4Ð5Ø	Ô/Ð0Ø—‘Ô!7Ð8ðQ
ˆñ "àD—N‘NÔ$<Ð=ØD×%Ñ%Ô'=Ð>ðó
ˆ	ö ØO‰O˜Q 	Ô+=Ð>Ô?ØO‰O˜Q × 2Ñ 2Ô4JÐKÕLð O‰O˜Q × 2Ñ 2Ô4JÐKÔLá% hÓ/ˆô $ MÓ2ˆÜ"¤7§>¡>×#7Ñ#7¼Ä8×C\ÑC\Ð^bÐdeÐgmÓ9nÓo×tÑtÓvÐvrV   r"   c                 óÀ  • [        [        U 5      S   5      n[        USSS[        5      =(       d    /  Vs/ s H  n[	        U5      PM     nn[        USSS[
        5      nU(       a  [        [        U5      S   5      n[        USSS[        5      nS	=n=pxS
U;   a˜  US
   R                  n	US
   R                  n
U	[        R                  :X  aS  U
[        R                  :X  a?  [        US
   R                  5      n[        USSS[         5      n[        USSS[        5      nO[        US
SS[        5      nU(       d  [        USSS[        5      n[#        X4XVXx5      $ s  snf )z#Unpacks the NegTokenInit TLV value.r   r8   Ú	mechTypesr)   ÚreqFlagséÿÿÿÿr'   Ú	mechTokenNr?   ÚNegHintsÚhintNameÚhintAddressÚmechListMICr@   ÚNegTokenInit2)r   r   r   r   r   r   r=   Ú	bytearrayr   r-   r/   r   Ú	universalr   rN   r"   r   r8   )r"   Úneg_seqÚmrƒ   r„   r…   r†   r‡   rˆ   r-   r/   r›   s               r    r+   ÚNegTokenInit.unpacks  sb  € ô .¬k¸&Ó.AÀ!Ñ.DÓEˆô (¨°°NÀKÔQeÓf×lÐjlÐló
âlô *¨!Ö,Ùlð 	ð 
ô
 ' w°°>À:ÔOeÓfˆ	Þô %¤Y¨yÓ%9¸"Ñ%=Ó>ˆIä'¨°°NÀKÔQiÓjˆ
à37Ð7ˆ	Ð7LØ‹<ð   ™
×,Ñ,ˆIØ  ™×.Ñ.ˆJàœH×.Ñ.Ó.°:Ä×AWÑAWÓ3WÜ7¸À¹
×8IÑ8IÓJ	ô
 /¨y¸!¸ZÈÔUoÓp	Ü1°)¸QÀ
ÈMÔ[sÓt‘ô !3°7¸A¸~È}Ô^vÓ wæÜ.¨w¸¸?ÈMÔ[sÓtˆMä˜J°:È,ÓfÐfùòM
s   ¶E)r‡   r†   rˆ   r…   rƒ   r„   )NNNNNN)rX   rY   rZ   r[   r{   r]   ÚOptionalr˜   r_   r=   r}   rq   rw   r€   r+   r`   rW   rV   r    r8   r8   ö   sÚ   † ñ@ðH 9=Ø37Ø-1Ø,0Ø/3Ø04ñ+à—O‘O F§K¡K°Ñ$4Ñ5ð+ð —?‘? <Ñ0ð+ð —O‘O EÑ*ð	+ð
 —?‘? 5Ñ)ð+ð —o‘o eÑ,ð+ð —‘ uÑ-ð+ð 
õ+ð (weô (wðT ð*guð *g ó *gó ó*grV   r8   c                   óÔ   • \ rS rSrSr    SS\R                  \   S\R                  \   S\R                  \	   S\R                  \	   SS4
S	 jjr
S\	4S
 jr\S\	SS 4S j5       rSrg)r9   i¡  aI  The NegTokenResp GSSAPI value.

This is the message token in a GSSAPI exchange that is used for subsequent messages after the `NegTokenInit` has
been exchanged.

The ASN.1 definition for the NegTokenResp structure is defined in `RFC 4178 4.2.2`_::

    NegTokenResp ::= SEQUENCE {
        negState       [0] ENUMERATED {
            accept-completed    (0),
            accept-incomplete   (1),
            reject              (2),
            request-mic         (3)
        }                                 OPTIONAL,
        -- REQUIRED in the first reply from the target
        supportedMech   [1] MechType      OPTIONAL,
        -- present only in the first reply from the target
        responseToken   [2] OCTET STRING  OPTIONAL,
        mechListMIC     [3] OCTET STRING  OPTIONAL,
        ...
    }

Args:
    neg_state: The state of the negotiation.
    supported_mech: Should only be present in the first reply, must be one of the mech(s) offered by the initiator.
    response_token: Contains the token specific to the mechanism selected.
    mech_list_mic: The message integrity code (MIC) token.

Attributes:
    neg_state (NegState): See args.
    supported_mech (str): See args.
    response_token (bytes): See args.
    mech_list_mic (bytes): See args.

.. _RFC 4178 4.2.2:
    https://www.rfc-editor.org/rfc/rfc4178.html#section-4.2.2
NÚ	neg_stateÚsupported_mechÚresponse_tokenrˆ   r   c                 ó4   • Xl         X l        X0l        X@l        g rn   )r¯   r°   r±   rˆ   )rp   r¯   r°   r±   rˆ   s        r    rq   ÚNegTokenResp.__init__È  s   € ð #ŒØ,ÔØ,ÔØ*ÕrV   c                 ój  • SU R                   [        4SU R                  [        4SU R                  [
        4SU R                  [
        4/n/ nU H;  u  p4nUc  M  UR                  [        [        R                  SX5" U5      5      5        M=     [        U5      n[        [        R                  SSU5      $ )z(Packs the NegTokenResp as a byte string.r   r)   r'   r?   T)r¯   r   r°   r
   r±   r   rˆ   rŽ   r   r   r7   r   )rp   rŒ   r   rv   ro   r   r"   s          r    rw   ÚNegTokenResp.packÔ  s±   € ð —‘Ô 4Ð5Ø×#Ñ#Ô%@ÐAØ×#Ñ#Ô%;Ð<Ø×"Ñ"Ô$:Ð;ð	g
ˆ	ð ˆÛ%.Ñ!ˆC˜	ØÓ Ø—‘¤	¬(×*CÑ*CÀTÈ3ÐPYÐZ_ÓP`Ó aÖbñ &/ô
 $ HÓ-ˆÜœ×2Ñ2°D¸!¸VÓDÐDrV   r"   c                 óü   • [        [        U 5      S   5      n[        USSS[        5      nUb  [	        U5      n[        USSS[
        5      n[        USSS[        5      n[        USSS	[        5      n[        X#XE5      $ )
z#Unpacks the NegTokenResp TLV value.r   r9   ÚnegStater)   ÚsupportedMechr'   ÚresponseTokenr?   r¦   )r   r   r   r   rb   r   r   r9   )r"   rª   r¯   r°   r±   rˆ   s         r    r+   ÚNegTokenResp.unpackå  s   € ô .¬k¸&Ó.AÀ!Ñ.DÓEˆä& w°°>À:ÔOeÓfˆ	ØÑ Ü  Ó+ˆIä+¨G°Q¸ÈÔYvÓwˆÜ+¨G°Q¸ÈÔYqÓrˆÜ*¨7°A°~À}ÔVnÓoˆä˜I°~ÓUÐUrV   )rˆ   r¯   r±   r°   )NNNN)rX   rY   rZ   r[   r{   r]   r­   rb   r_   r}   rq   rw   r€   r+   r`   rW   rV   r    r9   r9   ¡  s£   † ñ$ðP 04Ø/3Ø15Ø04ñ
+à—?‘? 8Ñ,ð
+ð Ÿ™¨Ñ,ð
+ð Ÿ™¨Ñ.ð	
+ð
 —‘ uÑ-ð
+ð 
õ
+ðEeô Eð" ðVuð V ó Vó óVrV   r9   )NFN).Úenumr™   r]   Úspnego._asn1r   r   r   r   r   r   r	   r
   r   r   r   r   r   r   r   r   r   r   Úspnego._contextr   Úspnego._kerberosr   Úspnego._ntlm_raw.messagesr   r|   r_   r˜   r•   ÚSetr}   r!   r­   Úboolr   r5   ÚIntFlagr=   ÚIntEnumrb   r1   r8   r9   rW   rV   r    Ú<module>rÄ      s"  ðó Û Û ÷÷ ÷ ÷ ÷ õ( $Ý *Ý 1ðWØ|‰|˜C §¡¨SÑ!1°6·<±<ÀÀSÀÑ3IÈ6Ï:É:ÐVYÉ?ÐZÑ[ðWà
ôWð* &*ØØ%)ñ	QØðQà
/‰/˜'Ñ
"ðQð ðQð o‰o˜cÑ"ð	Qð
 ‡ZZõQôj
4—<‘<ô 
ô.
ˆt|‰|ô 
÷ C>ñ C>÷Lhgñ hg÷VQVò QVrV   