From bda133a980f2345aad52f2eda1ac743209d4607b Mon Sep 17 00:00:00 2001
From: okxlin <61420215+okxlin@users.noreply.github.com>
Date: Tue, 7 Nov 2023 14:45:53 +0800
Subject: [PATCH] =?UTF-8?q?feat:=E6=B7=BB=E5=8A=A0maddy-mail=E5=88=B0?=
 =?UTF-8?q?=E5=88=97=E8=A1=A8=20(#574)?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 apps/maddy-mail/0.7/data.yml           |  56 +++++++++++
 apps/maddy-mail/0.7/docker-compose.yml |  29 ++++++
 apps/maddy-mail/README.md              | 126 +++++++++++++++++++++++++
 apps/maddy-mail/data.yml               |  20 ++++
 apps/maddy-mail/logo.png               | Bin 0 -> 7045 bytes
 5 files changed, 231 insertions(+)
 create mode 100644 apps/maddy-mail/0.7/data.yml
 create mode 100644 apps/maddy-mail/0.7/docker-compose.yml
 create mode 100644 apps/maddy-mail/README.md
 create mode 100644 apps/maddy-mail/data.yml
 create mode 100644 apps/maddy-mail/logo.png

diff --git a/apps/maddy-mail/0.7/data.yml b/apps/maddy-mail/0.7/data.yml
new file mode 100644
index 00000000..041ab794
--- /dev/null
+++ b/apps/maddy-mail/0.7/data.yml
@@ -0,0 +1,56 @@
+additionalProperties:
+    formFields:
+        - default: 25
+          disabled: true
+          envKey: SMTP_IN_PORT
+          labelEn: SMTP inbound port
+          labelZh: SMTP 入站端口
+          required: true
+          rule: paramPort
+          type: number
+        - default: 143
+          disabled: true
+          envKey: IMAP4_PORT
+          labelEn: IMAP4 port
+          labelZh: IMAP4 端口
+          required: true
+          rule: paramPort
+          type: number
+        - default: 993
+          disabled: true
+          envKey: IMAP4_PORT2
+          labelEn: IMAP4 port
+          labelZh: IMAP4 端口
+          required: true
+          rule: paramPort
+          type: number
+        - default: 465
+          disabled: true
+          envKey: SMTP_S_PORT
+          labelEn: SMTP Submission ports
+          labelZh: SMTP 提交端口
+          required: true
+          rule: paramPort
+          type: number
+        - default: 587
+          disabled: true
+          envKey: SMTP_S_PORT2
+          labelEn: SMTP Submission ports
+          labelZh: SMTP 提交端口
+          required: true
+          rule: paramPort
+          type: number
+        - default: mail.example.com
+          edit: true
+          envKey: MAIL_HOSTNAME
+          labelEn: Mail MX hostname
+          labelZh: 邮箱 MX 主机名
+          required: true
+          type: text
+        - default: example.com
+          edit: true
+          envKey: MAIL_DOMAIN
+          labelEn: Mail domain
+          labelZh: 邮箱域名
+          required: true
+          type: text
diff --git a/apps/maddy-mail/0.7/docker-compose.yml b/apps/maddy-mail/0.7/docker-compose.yml
new file mode 100644
index 00000000..a544c656
--- /dev/null
+++ b/apps/maddy-mail/0.7/docker-compose.yml
@@ -0,0 +1,29 @@
+version: '3'
+services:
+  maddymail:
+    container_name: ${CONTAINER_NAME}
+    restart: always
+    networks:
+      - 1panel-network
+    ports:
+      - "${SMTP_IN_PORT}:25"
+      - "${IMAP4_PORT}:143"
+      - "${SMTP_S_PORT}:465"
+      - "${SMTP_S_PORT2}:587"
+      - "${IMAP4_PORT2}:993"
+    volumes:
+      - maddydata:/data
+    environment:
+      - MADDY_HOSTNAME=${MAIL_HOSTNAME}
+      - MADDY_DOMAIN=${MAIL_DOMAIN}
+    image: foxcpp/maddy:0.7.0
+    labels:  
+      createdBy: "Apps"
+
+volumes:
+  maddydata:
+    external: true
+
+networks:  
+  1panel-network:  
+    external: true
diff --git a/apps/maddy-mail/README.md b/apps/maddy-mail/README.md
new file mode 100644
index 00000000..ea3bd9e7
--- /dev/null
+++ b/apps/maddy-mail/README.md
@@ -0,0 +1,126 @@
+# 使用说明
+
+## 1. 准备域名证书
+使用`acme.sh`、`certbot`、手动上传等方式准备好域名证书，注意需要按需修改。
+
+证书对应域名为邮箱`MX`主机名如`mail.example.com `。
+
+## 2. 创建Docker存储卷
+```
+docker volume create maddydata 
+```
+
+## 3. 安装应用
+
+应用商店安装应用，
+
+第一次安装会显示异常，容器无法正常运行，不必在意，因为缺少证书文件。
+
+忽略错误，进行下一步操作。
+
+
+## 4. 域名证书存放到存储卷
+
+存储卷默认路径如下
+`/var/lib/docker/volumes/maddydata/_data/`
+
+```
+# 进入存储卷路径
+cd $(docker volume inspect maddydata --format '{{.Mountpoint}}')
+
+# 创建证书文件夹
+mkdir -p tls
+```
+上传证书和私钥到`tls`文件夹，并重命名为
+- fullchain.pem
+- privkey.pem
+
+按要求上传完成证书文件后，容器会自动正常运行。
+
+## 5. 设置DKIM DNS解析
+### 5.1 获取DKIM值
+
+当容器正常运行后
+
+在`/var/lib/docker/volumes/maddydata/_data/dkim_keys`路径下
+
+会有个类似`example.com_default.dns`的文件
+
+其中则是需要获取的相关信息。
+
+- 注意按需修改域名
+
+终端查看
+```
+cat /var/lib/docker/volumes/maddydata/_data/dkim_keys/example.com_default.dns 
+```
+
+会得到类似以下内容
+```
+default._domainkey.example.org.    TXT   "v=DKIM1; k=ed25519; p=nAcUUozPlhc4VPhp7hZl+owES7j7OlEv0laaDEDBAqg="
+```
+
+### 5.2 设置DNS TXT记录
+
+根据获取的信息设置`DNS解析`
+
+例子如下：
+为 `default._domainkey.example.com` 添加`TXT`记录，值设置为`v=DKIM1; k=ed25519; p=nAcUUozPlhc4VPhp7hZl+owES7j7OlEv0laaDEDBAqg=`。
+
+## 6. 设置DNS解析
+
+- 注意按需修改
+
+| 记录类型 | 域名  | 值   |
+| --- | --- | --- |
+| A   | `mail.example.com` | `服务器ipv4地址` |
+| A   | `example.com` | `服务器ipv4地址` |
+| AAAA | `mail.example.com` | `服务器ipv6地址（如果有）` |
+| AAAA | `example.com` | `服务器ipv6地址（如果有）` |
+| MX  | `example.com` | `mail.example.com` |
+| TXT | `mail.example.com` | `v=spf1 mx ~all` |
+| TXT | `example.com` | `v=spf1 mx ~all` |
+| TXT | `_dmarc.example.com` | `v=DMARC1; p=quarantine; ruf=mailto:postmaster@example.com` |
+| TXT | `_mta-sts.example.com` | `v=STSv1; id=1` |
+| TXT | `_smtp._tls.example.com` | `v=TLSRPTv1;rua=mailto:postmaster@example.com` |
+
+## 7. 创建发送账户
+
+面板`容器`界面，连接容器终端，执行以下命令
+
+- 注意按需修改
+
+```
+maddy creds create postmaster@example.com
+
+maddy imap-acct create postmaster@example.com 
+```
+结束
+
+# 原始相关
+
+Maddy Mail Server
+=====================
+> Composable all-in-one mail server.
+
+Maddy Mail Server implements all functionality required to run a e-mail
+server. It can send messages via SMTP (works as MTA), accept messages via SMTP
+(works as MX) and store messages while providing access to them via IMAP.
+In addition to that it implements auxiliary protocols that are mandatory
+to keep email reasonably secure (DKIM, SPF, DMARC, DANE, MTA-STS).
+
+It replaces Postfix, Dovecot, OpenDKIM, OpenSPF, OpenDMARC and more with one
+daemon with uniform configuration and minimal maintenance cost.
+
+**Note:** IMAP storage is "beta". If you are looking for stable and
+feature-packed implementation you may want to use Dovecot instead. maddy still
+can handle message delivery business.
+
+[![CI status](https://img.shields.io/github/workflow/status/foxcpp/maddy/Testing%20and%20release%20preparation?style=flat-square)](https://github.com/foxcpp/maddy/actions/workflows/cicd.yml)
+[![Issues tracker](https://img.shields.io/github/issues/foxcpp/maddy)](https://github.com/foxcpp/maddy)
+
+* [Setup tutorial](https://maddy.email/tutorials/setting-up/)
+* [Documentation](https://maddy.email/)
+
+* [IRC channel](https://webchat.oftc.net/?channels=maddy&uio=MT11bmRlZmluZWQb1)
+* [Mailing list](https://lists.sr.ht/~foxcpp/maddy)
diff --git a/apps/maddy-mail/data.yml b/apps/maddy-mail/data.yml
new file mode 100644
index 00000000..4749c12e
--- /dev/null
+++ b/apps/maddy-mail/data.yml
@@ -0,0 +1,20 @@
+name: Maddy Mail Server
+tags:
+    - 邮件服务
+title: 可组合的多合一邮件服务器
+type: 邮件服务
+description: 可组合的多合一邮件服务器
+additionalProperties:
+    key: maddy-mail
+    name: Maddy Mail Server
+    tags:
+        - Email
+    shortDescZh: 可组合的多合一邮件服务器
+    shortDescEn: Composable all-in-one mail server
+    type: tool
+    crossVersionUpdate: true
+    limit: 1
+    recommend: 0
+    website: https://maddy.email
+    github: https://github.com/foxcpp/maddy
+    document: https://maddy.email
diff --git a/apps/maddy-mail/logo.png b/apps/maddy-mail/logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..1e1313c0a1730bc3a3a60879da88ea085ea9d65d
GIT binary patch
literal 7045
zcmV;08+zo4P)<h;3K|Lk000e1NJLTq006WA006WI0{{R33KRAK0008|P)t-s0000W
zyZ8aG^Z>B&0I~7_tNCMi*a5Ni8Kv|=uI~kb*8(u&0Il{Gt@j5r+&YHX0g>DT9OnRg
z*iE_RSh?V4zT8B&=>c-sV}H{DtMVjz(nE#UN3rGrZr2vD@Eo4+DzfhYh1fB&?gBsJ
z1s&xyv+Dvj<^(Y7D6Z`^v+My;-vEr;0BF_`t@R(U?m)EZKXKJbXT||_+X0E$6Rz(W
zt?wFd)Go8`HnHnTfz=SL@CrTQCu`9?x9b35*$^}29I)^tt?d%B@)s=W9JKKzwC^dh
z?hAL)8MO2uv+*%_(lmS00aV)+vh)*d)D*4oBen7^jM+O?(IH>iDW>lyw(}6P_8({0
z4W8~Vwe0~$;vB5+9)Z~>tL`ah(lt!r9<}u#t?w;|+7D;g8GPFxtnMCh*C>qIEwAh=
za?%e&`59){B7xT<E!rnC*ep5L0y6Fog4qvp*C31BF<9j=PuUhF-W@2}Fpt?0UDy+Y
z))-IR7$@5smfjp$*99cx5gy(YecTjc)fa-*8>jIjVAUpj)hkx-3x47ZS=ben-Xcx+
z9ZdQpncWeV-yA{UCsp|oP2Cns`WZ<1B!$-yEZ`AC<N%7;0E^fFZr1>>@c?Vr0EO2B
zA?N_H^a3p90Cm;@h}Qu`-T-*m0FBxJd)NSS*8?Qy0EgHBe%JtL)&PUp0H^l?FXaJ2
z-vF=k0FT=MfY<{l<^WmP0EgKCao7VW<N-Y309DxnHsSze*8xb}08-ijVb=jV;Q(FO
z0YBgXg4hEq=K?b108iWjOWh2s_X0HI0I~K1CFBDm<pE6F0Iu}_t@;8l=mRI{09e`s
z9q9r%;s9yc0CL&@X4ej|@c?7l0Cm^^VA=qz@&haC0Fm4RGUo`f@&X^^0A|?-tnUC^
z+W@Wi0jcx@CF=>Z_5l{=0ess4gxLW;;sli50C(E~JLLl*>IsF`0W|Uk8Q=h@`2k4Y
z0E^lLJog5z@(g*`0E*fGZrKWJ*#URq0Yc&jDc_&6k9+_C0GD)9PE!B`{QUg-3jK0C
z{r>vTPcZ!c{2UYwEBp`oYc(YN=#6^(T>bo0{``td{`~yW!8Ilr{QUFT*K9%^`{a2%
z{N~H0_UY4|gJ;~dN<jSW=;5kvEtisy{iKU!{?WFXYCy!gUi!+huX%D;{>7M<d0qYX
z^rc-)-Lz8b=+Mi<w*B+q-Pfmzhj#w_;i}A#^Rkcd@8FE|@<E;~8vp<oqe(<TRCwCd
znO{g#Q5?tTCR;IIWGMwP#->YqSPGMs70s~7NEY@7RLXo1EYNyTBa|jlNEFx~>fu5g
z_~O$XG?<1`(iEo-AAIm(Fozflf{+aNl+f>Y&(Twyd)HhyU0;HVZtml6zt8V?c2p^!
z9P*pCAZPpU|3eB+nw~l<TrQWhrKH&KUtpiCGA@0KEJsL^_LkDD$1b%kMWfNYov4Ak
z(X7haKs66GFGU5-k-X)d<f+waf3mSOJBtlWN2`{ET#Y6giBvi-m=2h3T)lKNyc|L7
zh2|64hYdW3N-7aq@Gm+Y1{F=Asd^<G7O^iFvJbn}C<q!&uCQ2hR{Sn7M9i8Mk=kEb
zQjkU108(6m$QohM2FQ$z{PC;}v2#6w(V@zc<RDd2L>8)xWoAls*aOw}_^XSvq1e<v
zME2CCD5Rs7U@zMC-ALjeBIkM*ZX9Ab{Bs32Zi10IwP&Gf-;D(SNHbq81eDb8$W?4@
zoz8#$;(i#(`{z7KF;e&b9l*xc-UlO@e@nzampR@4V!jj(>kzwQFOB5=6YQqlyt=8D
zEStr>-jV1P_$M;6O_#2@V5CmmkyS_c7TdAyUk$5Q+Sr9)q)xY2JCgZFC$lq?(_0R#
z_B(X78(TAj$lO0;y(;6Nk!q-R5{#6M^8Wqpv~3l4WUdE}E6Vl=Z_#zwe-MwHf4emj
z=ifgzvei!fQ(|7Bku_i><X;+Tru$D&;H<`WBw~jZ-jU3BCv9dWzdqfOVMTW&dna4u
z{VP-LBIVo{#~rEDu~Vy3$c9^hEVKWbdbWBxRcWT~VJ|++8;MOqcce1NS`+n8q84@i
zdapOQ^{_6jDz_EI^H(?EVa`aUccj@xJA>^%MxpnG^pN0I+bPwb(%u`7yW>Sgs~c_Q
z@;lO@gnx|`*;UU|oC}3MO-<=V?04;2RjPD$0rE^7QWW3lZO@S~60svmVx$uO*-hO0
zcK`I$)cpJ>h=}do>bjq*ncZ>sG-PImU`sp<MtZ~xDceB~I}`tI@&0ws&kqlO#z3(N
zHZziIX7`L6nUR`cZ*255DSc|iBlAT&Fe5Vm`LC>h__Jjgg50#&h%Ieo`@89BcM!v{
zivSxQ=08UwHX3;-6Ksc(AWIx*4nG@MvkVQ5Ll7IOS+(2Bxn>Rqy-3Wc33gn{$g|W)
zA%jyZ9GPYBUv8fsA0HSZ8AoVZY|2fHWbcXhD||1QZEV&f`Cz1$JFQoH$jwfLd3RT~
zHu;s^**!2YIv@t2$0;@#NfZ0p#l~Nsb?#Wq=hN$bh|O1fl^Mz3?D)AMo7u{)dpw#L
z6+@r_duW(qi?PP6{Y}3-|6=p|F>5Fk@-ggRsS%quvY_NVF;eb0$tj#-WtU%@O-#<t
zQs^CQA|%FQT|eES`YlZ_0Xr5$YDsKdHoTFB3oG0pkslebvgJmG_RQ-^K!!}t5^Bm#
zja;*=ufOl(U!d>J<^zh&Q-8>Z)|N8z1YQxRHAw1R1X&~T8K~pY#KhRx#O#C!4M{L;
z1h=fMTdu)t^Ev$L-sS^q413$hI(wTMu~%1n+qnXkii0FC;;(I$EpzITak+bJ?8+Es
z0;wkvnpB%`TP$l0{j$fVvKRNDM-ZD)BQ&7~Zooz(`PGg;wTTE7W|?B2ko}a6{*8=W
z8G%shNeECU;1{88`0=CrvJ5e8ZN#1<)T~Da5gMuUC5^;E63G)+d!baBOV}xc_wRWi
z5Ev1I(3F~#8`%>L4X?q!)aiJ;NwB@Y6?<@IkYI~OmT`08;`wkyG}6Q|8{ja9$dwYe
z%x4}2NEo$<O~@gD+^0=rn)bb6*sRtVQfy)*KS*wd{XiXU)-p2umqI(enB(Wm-6w&-
zmoJPOp-Hxx6UV{7v{H^n9-BjK!u>J$kwPOiGm^VUi>Q-FqK!~c7K8mKuXYmJR1k*&
zJRS@xF1S9c#tm^P5sMoZN?cK?QbC0(ih{+0I}{WI5iKr=7q2mbfnc>!kw#iDP{jy(
zsYzoJk~9c4w$~yalz8&{&rC9TdBMCH)DI7~m;U<kpEvWS8KOr<m5cE`XWqQ=ya5_)
z*)_RE>g(&T?swSEG^|Ks3v~$U5L5H@h_<bJ<TzSy14DICI~_7d$h_Wq_-<(J&wBb{
zE~*D#4hl8`F@p7{l#6V$5$s4`2#Gz$dPE2<R-}b}cpIrt%I_>D^NyKjG9BjbWYeC0
zgsBmx23x@Q*4JM?=1>kB?I>eM9!3bw*{p5BwjOa8?1TEp(jsye2KxT)*%jt-O_%#Q
znbeXEHFtx2=cZE;EH@isN5GD7Hd8ZpJRYB3ZAH#pI8-;ZaCWI^JW%FTn2&Xa!|pJp
zjLk=cyZ6@bZEaNL%FU+4j&L@qiA`#Rtw^U?z3B(ki-q&ZK;4U#(#+RiFy#&gQx-M3
z^ZEQ>esJ*2d_Ax{N6EHBoXydqY}zBu>a9R;5Px+4F)*-grs-tV8ceuhhB{?cBVc!)
z(vVs=8_tHhkEtI^b)2?#^JcT=%TV2yP0YV^r0&H@(_^XA=OeOEo7vfH)|1a)Zqk%m
zH=8IzYOrHaOEhcynyKs!sCp;J80nF^0X8Wj&22uH4+;7#Y9#CN<UO@F6Q#`tWk(*G
z)xwP#Dc@^ujIgI3u!n$ND$#p>d0k$wx2R4Dbvn(=9#7VDby_Wq`ep-lAJ8G$HPpQ9
zb8@Ix0=<R(@8HPffmQOC@8~sPCN;Us*>HQZ>5Vlv6OGMgMGnspG1gF<N9247Jpt6!
zB{Zg6q`lYZ>awUg+LKPVC~PK5E0WY9i+T*|c>H)7`fCaOzJ%W6GW=aqjgT4{M$&CJ
z=l*>&4EJb8a(tVybiFKor3Sh^WB8d`vJ;flaAJ74y+J{uy4j%YoJlR<W0>yaR`j#+
zC3Is)z|YaWLM_nlMB>aI1%=jT19mJH3z^kpfS)U(pH)LQ`)ByM8faOzE0Jh9p&-y4
zZOjO%VMa=5<Wg1i#Nvrxpef!WyO2n<-Eunqd7QUTe`8&9^ka$M?ku9m3-qEg^e&()
z)vkiKz0vVs(s=h<E+Pj+phw5H&#i$D2sNdbQfO&*{I?w6Tv8Jp|HejZq2~b|2r#u^
zcNs>r*0ub&`8pHgxF8>VER{`vtd5pyhR*!d`RR0o(K?_^eHfubNUVe&9kqdeB-DcK
z_iLihgl}r0`)~?D)g`tKbYR9KsfIhFi#`=jwKZy@%hfRjv`}X<{(v63Gwe<s&>Ih^
zX{-^L2|ZdHZBpx^kA?9XfvPpo2<BR_?V^z~bU+L3><qets9Fcj?{P?N7yW2bH&+XH
zfY6#nQ`NfY2-GY<=S=7+RnbrjHll}iwgiFJsv79$V2f)UYCC5OZB{?hKsS+DuWFzX
zprKYl3$->HMf*6~oj9P3elGr`RJ_KqjfR@S%s{Ib?Q)Bk`L+f<G#_k=Ep!i8^Jt;x
zw%`r|XrE5iK;si63@zM*cK#9FJ*h{kDH>=L?L)xUs2XVGIU>=yTIeM`73yxF6^q8j
ziBAMo>!79D9{O#Cx_go$y2-~cdqhyR8k#;A05qb8hML06K&ux`aq+5yt!n6Z%b}*K
zg*$2o{nV`P?g3i0Xr#ALDDb*}HK?Pd8t7<lb8WO#BZ_Dg-OFCnk{!2_Y)D**Rz>uy
zSLNzx)DD`|6g_m4*C4c!yyZBWMCYni6PnamjDJEOGNT_<sNVvuQgj#IcwoLh&e5=z
zE>G~xZdF2m0-CF>=<n6gy9f=n9FZQN6^llUWHVk;&!TFmy}$PBpb>^f{yZMLdX_wZ
zT9&PdM$vQ#H<IoAl1;tpsUPt19HB<I+S0TIjR-YG4c*jb5IXsjkMXUfp;$H0uU`wb
zV1NEx6TR*UN8`!I*-wGCU$mcMWX_7OJCa@mRV$&Pmgvtm(ND{&ehaih(fn<=V^(ot
zqiV#5s_ml@LcjX(?t?w_@9OR}#-%8V1NfjB(MX7W8GDF*-?t!$UF^Zws+5q(Sdu|V
ztU<yjNvY;VZK)+5NyWY;BoaOdLJ4B~P+NQ;_7DE&-rJtn_o}@^JH{dQ<(D((-uwDG
z=e(<3!cbE{4L8sqs+2I%oumBTS9h#MPPGpDY%}^KE>+fGKS5;JJ%Emcg&9F^LhC2G
z8oj7|x6X3=<6doX)A)OplB20YZ0KVt(XR!XN<_F}eyxqpAG5!jcu`rL$KgFyTikh_
zuZzAT(H3=!Oz5M8wxs%X3D7h5!c6GymKbyI6sKAjt<)5R*2y%f!&3d4(K?A%x2K{}
zNKeTd#dIY?sop(B6Madcp_a*Rp@H^?RaJxi8ebwnYbF|IsqWl4T3dy@%dMYkpsysU
zHPA=f_#;45NOVve-TffYQXPF4rMQQnOd}}O+UP4lQ`}ML7MU{L#_tDOs$tea^Ic+v
zeuwCccqi0g!%eByM$25QZ0n(sYZ<SDjMh#xvEKnK<)oH@4MY=tT%xH&NPR~Ot<({G
z4Qiu3`xE9^HF(!;E?!)u*vkFAz9yQ~oa@Z!NSj?kji6LR4zy;X)ho1Wu~^LO5m$M>
zbw4=UwUKH)v{DlpU*ErP(T7jOH0UtxArZ>7CVJt1m??-{I5N?U<njK1TV?zENDcI9
zLUUOY`h8}!Of{7V)Vi7W9zF^2Nsx;cC;#~og<B*W2l^r%^uFUt4KyM%x}HQM;3c&t
zdSNv;?lr)@YP0h`X_aNfh8wSEbkO^Vok;cjl;}n_^e3U#%QPq2?LHYhykT6;l)qiD
zvq-YNnrNkdb6OXT@JlwKBmPik^umL<1?Vm;PSa_CHTmO5=N}94lgw!D>j3=C8$GmK
zj0m`O(B9a|qGjneG?IF}TYmiTX3X>zg@*c#Hu}IPm}Tf@+7nx~Q<QQB_DHNr4}O#x
z&5Kb3Jx-z3X04g&#XeEW8tj5)g?Z^?$(4`iEozWcq9<C>U#lKCuuH1d&PV7hMxAn*
z(dQXW>Smf~r4IYEjRrXb`uKT5D>a2Snm21dp-VBA?;|t?qu*$tIn{{LM_)gWh^xu1
zgSM-?lrs9JwKME@=owb@r>ZB&%<57_L$mz+O{*I5v)RuC`q*#LP+M}{#a~>SLs}+W
zzp2zBbkQQ!N-fw$p1jhEPHSPdsR^CO=yp!@0Ycky?GF`}QiY&*@Y)4J%f+bJ(|-0T
zmlk~jXsDBO-6iy4XPvy9$E?*iuTdi&p{;759hn|zK^Fs^QXN_~E-$yyYsv*8D>SPK
zy*e$rpz7nt5*<HdWQByfghLxf=5k0&->nx$jf%HeDK+9F%+sb#VDw9g-gvAs&??qE
zt_n4=l{&FoqehnX$~Ki-q%X*RM^+2A>Kk0)M8C42iydf{>QD$ZQsm3aMRZ(y=5|uQ
zBh+9^H#!HYIuyEc0$ul2&pcbI4}i_;5UKrO2R9VwWj!`+1)0L823y98IC^Ljnj0DF
zqpG1s*mE5Q95s^d?Qh}w+qW;PW;TgtHR4+9>k};97jg7Jpe-#UzPDg2G$N7fkWh!3
z1hcyRjbDp?NA6`~bv#D3Udw0v44|jW3nrk4GCFTN)WlZjIja#u9b8o}OXU1bTQ94A
zN7aAFi&3>`!pt!bEje=pdI8Y%Ba8ZRRaPIctAkB~Zf{n$znLr1?Zf?!w^^-XRO<^9
zY;91tCW`;K(yLdmdM7oUjeGmHs@g<UuF36Zb(3Hgw!iv|6j`BPkeS&aqkE9sYDoJ0
zQTbb~1Ui2#Qk~q|S7i;@Tp=<Dt<=Q+%k8hu1dtO=VGq%G2Q{)S*{Vr%QOBgq)_F*D
z!<uSMqW7$Kflza@cc4a8uKAczW~fmkS2v9KtIFUWO?2K-zhJzJSA@M47QE)4A5};+
zP8Rfrdb+JhYiy?);Z1}qM5@6)>Ms1lZk>^f9^jKviLBJbMzTeXsMs3sUg9=!vx3>R
zMq>M;M&b7P$!grAK(ec{nnI$5nQG*!`%hX)I!!tEtgY-CRPA>Ugc>yhxQNy-rr7gQ
zYqW{^#S0S1nq#33baTxA=&(kx5u9vB;~jK-me#6;C9aIQ&+fM6Mz#kc9;#62MI#-<
zMF*KKm)YL(Oa1OYdXD~l=Zvi4ZHdxGd=hGZLXBvG`;PUsx4&|zjP8<*;9MgvDmC?$
zt{>r?;}tMm6^w>8tiRgyb3l!#u>-~t`!Oe*&hrqzr+XE*c-@O@=vT&(yA8PcPN1b*
zMgNBndHwM;g!_ie<uV$|-GbHk%?bgR8E{VIskwc}W5p)4N;T9Xh>aSlr&$?G@9u$F
zqFHSv&+VJ<7-2lffVrY!Z^uW448!lx97#;%u|;*YBGn}n%>FRk3H4RH1%T~OqcZmF
zR%BKa`&m35Jmc<N9wA3$z=qh106)#2G})+Fp4dE*hYuUDSq(PS@mx!`J5#e_uPGq!
zreO8myVRY@LH|ZM`_xxKHiotO?POP@Jh6Gm4$qHKY^A1DGn>?4Z%%jh*LUgeQ!uj{
zaTjj%W&(cqF23h2gGX2?^618C=SULU2&9;R?V%OP>QHipTs`SN$))Z1heveB`-t2u
zh~Q+a=)TZ7buthT<Utwc1GO4l5p4Xyu8s5U|F=&b?W#iT>NKU@Yd$_x?-0VlPLRjc
zOEtpEh0q$II+a!==17`6Rho}>VoNn5Nll+uOEpqhB}HXKqlpH#-FEjkw3RO9ErWMC
zdg=gH7?*0gMP5z}+pFj@ob$VJw9^%dJY{6IC7Re!gMHP#*jn0D8GEDLnaS!zi{{<$
zi#s`{-u0$p=9##f18EJ6zcii>cdSS{+S{}NTdG6y6GNcBDuPb-qI#CfD2%?VMr}T<
zwzBd0%HQYn$Hum0(DthrJZz8HJd=>u$C|e%p#DVaFiuCyr<UPcpi$V2UKWd0gWA?l
zD#Y|2|F<+-#;~cnVjgWH*oJ{oZqAKFvPo^Z4k7aE*Q-3XH<=5;wkI0_^1XY!W$>Wr
zKtSzsRH`LpV<RE9%P><+!1C>Qe4-7h!y<$_7zDY<m+!oK_JX~i*#dnCWapMqFz~)4
z^Pa08JZz8HPY3g`J${Yw_&}SlU-4$6P=|w&CQV*{Se*Kmqi2I;NB2fmfXrJ44~mxS
z52sr}$;rHmCo47|?YxnoM!=592zQC3yN@$&9kI!+;)`R;C`W^$HMR_$6**b0$bkjU
zjpXsCHeIB;OC*BZ3TYzWS48Z01n>MV%2z5ps8$v8Ukr+7+HAEVF>KGyF5Y(H6O#QE
za;(1$QDgBIuww_Sz1!~{=~zJW$Tkg)vA4P_Qq+jiaDnqRf@Bx@baK;i*_Ie$oyT!x
z&!Hn5=U)~di-Dv4hT$T1iq{CfZJ*j;{pm&h!Y%83jw5@<eS^r^dL$4Z?SsG;N4s+)
zDMqzxM?uZsUFB;&D52!D<|}6X-^SEQ!)5Tcn#JI!Kk&6;R+h_jwPoM{%X;t}U0ULS
zL0K5cO&b%|pCIS<u{1PC*JXnJmpc<*GP}z2M=obEwV`5nYyMZ{{GnZGm#bj%<!=sx
zkM=?0W`p_kj|Ot{`Demx@(Ya|1%F)S&4xc4$jvWV@obf0rSU*N9+7W|$<}<dm*{U}
z{qci>avwY*U$MI`C|A-!?O1;Zp1NF$(G;)RsYW!P1;ytd6?692pZ<fL3^^iSe=$uJ
z>(6E8;{4M;+Mx#f{ya*X&iQ9hmUDIf=^yQiJ%d(chV}Q^%<=iBf3#N=H9}iK`j5(e
zkYO$xkE9eM@;`&^cxZ+5{tMRMKY!F<Tr}D+%j2Dd&+S>{yqF8POk;3adCY2JMOKh!
zr2T~?-TyS>*Pmr4<b5<^W7hnPTJqNr^8LSoqL|C$v4~~qL8VDI<V`%YwrTam+ci_?
z+&9Tw79K#EdPNR1Zh?IZ58s`>v1Q|-6E{xp{pgk{9`!l9UzsG!N3GquB_7C}2(gLd
zVy?`R#l<$*FDrAvUvXHOd3^0}**#`YeklU_TeqGL8s5CjKf0TA1x+UnA24j}*kJ>P
j|1S?oj|=6FmlN_Y9-|Uiqxg(^00000NkvXXu0mjf0$I|3

literal 0
KcmV+b0RR6000031