From f9980aaa7e4667cdb0556ef85ba2991897109447 Mon Sep 17 00:00:00 2001
From: lukechampine <luke.champine@gmail.com>
Date: Mon, 15 May 2023 15:05:25 -0400
Subject: [PATCH] add Bao functionality

---
 bao.go                   | 146 +++++++++++++++++++++++++++++++++++++++
 bao_test.go              | 107 ++++++++++++++++++++++++++++
 blake3_test.go           |   6 +-
 compress_amd64.go        |   8 +++
 compress_noasm.go        |  17 +++++
 go.mod                   |   2 +-
 testdata/bao-golden.bao  | Bin 0 -> 20845 bytes
 testdata/bao-golden.obao | Bin 0 -> 1224 bytes
 8 files changed, 282 insertions(+), 4 deletions(-)
 create mode 100644 bao.go
 create mode 100644 bao_test.go
 create mode 100644 testdata/bao-golden.bao
 create mode 100644 testdata/bao-golden.obao

diff --git a/bao.go b/bao.go
new file mode 100644
index 0000000..01eb12b
--- /dev/null
+++ b/bao.go
@@ -0,0 +1,146 @@
+package blake3
+
+import (
+	"bytes"
+	"encoding/binary"
+	"io"
+	"math/bits"
+)
+
+// BaoEncode computes the intermediate BLAKE3 tree hashes of data and writes
+// them to dst. If outboard is false, the contents of data are also written to
+// dst, interleaved with the tree hashes. It also returns the tree root, i.e.
+// the 256-bit BLAKE3 hash.
+func BaoEncode(dst io.WriterAt, data io.Reader, dataLen int64, outboard bool) ([32]byte, error) {
+	var counter uint64
+	var chunkBuf [chunkSize]byte
+	var err error
+	read := func(p []byte) []byte {
+		if err == nil {
+			_, err = io.ReadFull(data, p)
+		}
+		return p
+	}
+	write := func(p []byte, off uint64) {
+		if err == nil {
+			_, err = dst.WriteAt(p, int64(off))
+		}
+	}
+
+	// NOTE: unlike the reference implementation, we write directly in
+	// pre-order, rather than writing in post-order and then flipping. This cuts
+	// the I/O required in half, but also makes hashing multiple chunks in SIMD
+	// a lot trickier. I'll save that optimization for a rainy day.
+	var rec func(bufLen uint64, flags uint32, off uint64) (uint64, [8]uint32)
+	rec = func(bufLen uint64, flags uint32, off uint64) (uint64, [8]uint32) {
+		if err != nil {
+			return 0, [8]uint32{}
+		} else if bufLen <= chunkSize {
+			cv := chainingValue(compressChunk(read(chunkBuf[:bufLen]), &iv, counter, flags))
+			counter++
+			if !outboard {
+				write(chunkBuf[:bufLen], off)
+			}
+			return 0, cv
+		}
+		mid := uint64(1) << (bits.Len64(bufLen-1) - 1)
+		lchildren, l := rec(mid, 0, off+64)
+		llen := lchildren * 32
+		if !outboard {
+			llen += (mid / chunkSize) * chunkSize
+		}
+		rchildren, r := rec(bufLen-mid, 0, off+64+llen)
+		write(cvToBytes(&l)[:], off)
+		write(cvToBytes(&r)[:], off+32)
+		return 2 + lchildren + rchildren, chainingValue(parentNode(l, r, iv, flags))
+	}
+
+	binary.LittleEndian.PutUint64(chunkBuf[:8], uint64(dataLen))
+	write(chunkBuf[:8], 0)
+	_, root := rec(uint64(dataLen), flagRoot, 8)
+	return *cvToBytes(&root), err
+}
+
+// BaoDecode reads content and tree data from the provided reader(s), and
+// streams the verified content to dst. It returns false if verification fails.
+// If the content and tree data are interleaved, outboard should be nil.
+func BaoDecode(dst io.Writer, data, outboard io.Reader, root [32]byte) (bool, error) {
+	if outboard == nil {
+		outboard = data
+	}
+	var counter uint64
+	var buf [chunkSize]byte
+	var err error
+	read := func(r io.Reader, p []byte) []byte {
+		if err == nil {
+			_, err = io.ReadFull(r, p)
+		}
+		return p
+	}
+	readParent := func() (l, r [8]uint32) {
+		read(outboard, buf[:64])
+		return bytesToCV(buf[:32]), bytesToCV(buf[32:])
+	}
+
+	var rec func(cv [8]uint32, bufLen uint64, flags uint32) bool
+	rec = func(cv [8]uint32, bufLen uint64, flags uint32) bool {
+		if err != nil {
+			return false
+		} else if bufLen <= chunkSize {
+			n := compressChunk(read(data, buf[:bufLen]), &iv, counter, flags)
+			counter++
+			return cv == chainingValue(n)
+		}
+		l, r := readParent()
+		n := parentNode(l, r, iv, flags)
+		mid := uint64(1) << (bits.Len64(bufLen-1) - 1)
+		return chainingValue(n) == cv && rec(l, mid, 0) && rec(r, bufLen-mid, 0)
+	}
+
+	read(outboard, buf[:8])
+	dataLen := binary.LittleEndian.Uint64(buf[:8])
+	ok := rec(bytesToCV(root[:]), dataLen, flagRoot)
+	return ok, err
+}
+
+type bufferAt struct {
+	buf []byte
+}
+
+func (b *bufferAt) WriteAt(p []byte, off int64) (int, error) {
+	if copy(b.buf[off:], p) != len(p) {
+		panic("bad buffer size")
+	}
+	return len(p), nil
+}
+
+func baoOutboardSize(dataLen int) int {
+	if dataLen == 0 {
+		return 8
+	}
+	chunks := (dataLen + chunkSize - 1) / chunkSize
+	cvs := 2*chunks - 2 // no I will not elaborate
+	return 8 + cvs*32
+}
+
+// BaoEncodeBuf returns the Bao encoding and root (i.e. BLAKE3 hash) for data.
+func BaoEncodeBuf(data []byte, outboard bool) ([]byte, [32]byte) {
+	bufSize := baoOutboardSize(len(data))
+	if !outboard {
+		bufSize += len(data)
+	}
+	buf := bufferAt{buf: make([]byte, bufSize)}
+	root, _ := BaoEncode(&buf, bytes.NewReader(data), int64(len(data)), outboard)
+	return buf.buf, root
+}
+
+// BaoVerifyBuf verifies the Bao encoding and root (i.e. BLAKE3 hash) for data.
+// If the content and tree data are interleaved, outboard should be nil.
+func BaoVerifyBuf(data, outboard []byte, root [32]byte) bool {
+	var or io.Reader = bytes.NewReader(outboard)
+	if outboard == nil {
+		or = nil
+	}
+	ok, _ := BaoDecode(io.Discard, bytes.NewReader(data), or, root)
+	return ok
+}
diff --git a/bao_test.go b/bao_test.go
new file mode 100644
index 0000000..bbcac9f
--- /dev/null
+++ b/bao_test.go
@@ -0,0 +1,107 @@
+package blake3_test
+
+import (
+	"bytes"
+	"os"
+	"testing"
+
+	"lukechampine.com/blake3"
+)
+
+func TestBaoGolden(t *testing.T) {
+	data, err := os.ReadFile("testdata/vectors.json")
+	if err != nil {
+		t.Fatal(err)
+	}
+	goldenInterleaved, err := os.ReadFile("testdata/bao-golden.bao")
+	if err != nil {
+		t.Fatal(err)
+	}
+	goldenOutboard, err := os.ReadFile("testdata/bao-golden.obao")
+	if err != nil {
+		t.Fatal(err)
+	}
+
+	interleaved, root := blake3.BaoEncodeBuf(data, false)
+	if toHex(root[:]) != "6654fbd1836b531b25e2782c9cc9b792c80abb36b024f59db5d5f6bd3187ddfe" {
+		t.Errorf("bad root: %x", root)
+	} else if !bytes.Equal(interleaved, goldenInterleaved) {
+		t.Error("bad interleaved encoding")
+	}
+
+	outboard, root := blake3.BaoEncodeBuf(data, true)
+	if toHex(root[:]) != "6654fbd1836b531b25e2782c9cc9b792c80abb36b024f59db5d5f6bd3187ddfe" {
+		t.Errorf("bad root: %x", root)
+	} else if !bytes.Equal(outboard, goldenOutboard) {
+		t.Error("bad outboard encoding")
+	}
+
+	// test empty input
+	interleaved, root = blake3.BaoEncodeBuf(nil, false)
+	if toHex(root[:]) != "af1349b9f5f9a1a6a0404dea36dcc9499bcb25c9adc112b7cc9a93cae41f3262" {
+		t.Errorf("bad root: %x", root)
+	} else if toHex(interleaved[:]) != "0000000000000000" {
+		t.Errorf("bad interleaved encoding: %x", interleaved)
+	} else if !blake3.BaoVerifyBuf(interleaved, nil, root) {
+		t.Error("verify failed")
+	}
+	outboard, root = blake3.BaoEncodeBuf(nil, false)
+	if toHex(root[:]) != "af1349b9f5f9a1a6a0404dea36dcc9499bcb25c9adc112b7cc9a93cae41f3262" {
+		t.Errorf("bad root: %x", root)
+	} else if toHex(outboard[:]) != "0000000000000000" {
+		t.Errorf("bad outboard encoding: %x", outboard)
+	} else if !blake3.BaoVerifyBuf(nil, outboard, root) {
+		t.Error("verify failed")
+	}
+}
+
+func TestBaoInterleaved(t *testing.T) {
+	data, _ := os.ReadFile("testdata/vectors.json")
+	interleaved, root := blake3.BaoEncodeBuf(data, false)
+	if !blake3.BaoVerifyBuf(interleaved, nil, root) {
+		t.Fatal("verify failed")
+	}
+	badRoot := root
+	badRoot[0] ^= 1
+	if blake3.BaoVerifyBuf(interleaved, nil, badRoot) {
+		t.Fatal("verify succeeded with bad root")
+	}
+	badPrefix := append([]byte(nil), interleaved...)
+	badPrefix[0] ^= 1
+	if blake3.BaoVerifyBuf(badPrefix, nil, root) {
+		t.Fatal("verify succeeded with bad length prefix")
+	}
+	badCVs := append([]byte(nil), interleaved...)
+	badCVs[8] ^= 1
+	if blake3.BaoVerifyBuf(badCVs, nil, root) {
+		t.Fatal("verify succeeded with bad cv data")
+	}
+	badData := append([]byte(nil), interleaved...)
+	badData[len(badData)-1] ^= 1
+	if blake3.BaoVerifyBuf(badData, nil, root) {
+		t.Fatal("verify succeeded with bad content")
+	}
+}
+
+func TestBaoOutboard(t *testing.T) {
+	data, _ := os.ReadFile("testdata/vectors.json")
+	outboard, root := blake3.BaoEncodeBuf(data, true)
+	if !blake3.BaoVerifyBuf(data, outboard, root) {
+		t.Fatal("verify failed")
+	}
+	badRoot := root
+	badRoot[0] ^= 1
+	if blake3.BaoVerifyBuf(data, outboard, badRoot) {
+		t.Fatal("verify succeeded with bad root")
+	}
+	badPrefix := append([]byte(nil), outboard...)
+	badPrefix[0] ^= 1
+	if blake3.BaoVerifyBuf(data, badPrefix, root) {
+		t.Fatal("verify succeeded with bad length prefix")
+	}
+	badCVs := append([]byte(nil), outboard...)
+	badCVs[8] ^= 1
+	if blake3.BaoVerifyBuf(data, badCVs, root) {
+		t.Fatal("verify succeeded with bad cv data")
+	}
+}
diff --git a/blake3_test.go b/blake3_test.go
index e08de27..8a2f566 100644
--- a/blake3_test.go
+++ b/blake3_test.go
@@ -5,7 +5,7 @@ import (
 	"encoding/hex"
 	"encoding/json"
 	"io"
-	"io/ioutil"
+	"os"
 	"testing"
 
 	"lukechampine.com/blake3"
@@ -22,7 +22,7 @@ var testVectors = func() (vecs struct {
 		DeriveKey string `json:"derive_key"`
 	}
 }) {
-	data, err := ioutil.ReadFile("testdata/vectors.json")
+	data, err := os.ReadFile("testdata/vectors.json")
 	if err != nil {
 		panic(err)
 	}
@@ -197,7 +197,7 @@ func BenchmarkWrite(b *testing.B) {
 func BenchmarkXOF(b *testing.B) {
 	b.ReportAllocs()
 	b.SetBytes(1024)
-	io.CopyN(ioutil.Discard, blake3.New(0, nil).XOF(), int64(b.N*1024))
+	io.CopyN(io.Discard, blake3.New(0, nil).XOF(), int64(b.N*1024))
 }
 
 func BenchmarkSum256(b *testing.B) {
diff --git a/compress_amd64.go b/compress_amd64.go
index fa2eb11..b647b6d 100644
--- a/compress_amd64.go
+++ b/compress_amd64.go
@@ -134,3 +134,11 @@ func mergeSubtrees(cvs *[maxSIMD][8]uint32, numCVs uint64, key *[8]uint32, flags
 func wordsToBytes(words [16]uint32, block *[64]byte) {
 	*block = *(*[64]byte)(unsafe.Pointer(&words))
 }
+
+func bytesToCV(b []byte) [8]uint32 {
+	return *(*[8]uint32)(unsafe.Pointer(&b[0]))
+}
+
+func cvToBytes(cv *[8]uint32) *[32]byte {
+	return (*[32]byte)(unsafe.Pointer(cv))
+}
diff --git a/compress_noasm.go b/compress_noasm.go
index 0d30ba2..c38819d 100644
--- a/compress_noasm.go
+++ b/compress_noasm.go
@@ -1,3 +1,4 @@
+//go:build !amd64
 // +build !amd64
 
 package blake3
@@ -74,3 +75,19 @@ func wordsToBytes(words [16]uint32, block *[64]byte) {
 		binary.LittleEndian.PutUint32(block[4*i:], w)
 	}
 }
+
+func bytesToCV(b []byte) [8]uint32 {
+	var cv [8]uint32
+	for i := range cv {
+		cv[i] = binary.LittleEndian.Uint32(b[4*i:])
+	}
+	return cv
+}
+
+func cvToBytes(cv *[8]uint32) *[32]byte {
+	var b [32]byte
+	for i, w := range cv {
+		binary.LittleEndian.PutUint32(b[4*i:], w)
+	}
+	return &b
+}
diff --git a/go.mod b/go.mod
index 8f0680f..c94c10c 100644
--- a/go.mod
+++ b/go.mod
@@ -1,5 +1,5 @@
 module lukechampine.com/blake3
 
-go 1.13
+go 1.17
 
 require github.com/klauspost/cpuid/v2 v2.0.9
diff --git a/testdata/bao-golden.bao b/testdata/bao-golden.bao
new file mode 100644
index 0000000000000000000000000000000000000000..d6e8149d1a565ea6a4859533f51d2cdea8b1495b
GIT binary patch
literal 20845
zcma*v3*7HxnJ(~Zn93fLuq!$(Yfl>O%I|z&Dw|;>(tLEJw)q_`Wm68Z7=$!!cFG}*
zB8SAJqv<d@35}9UWp;@obV4PR86DLA-haE#>z&p5Sdz8YyWaPAc%J*d?(4el`}x0j
z*M}|s*(!hKhKK%Lv+*N#{mA<-XzERWxy`{}+~S^ZY<t_cpI*Idhwp#o<)7GjRdV3f
zcjl{BfArWZ{_6(+<sXkd<b6N+>6y(|Tio-B?e;ma-srIMg9qIHtrM!`sH2OIz5K-O
zo;|*Lt834DQ@!%WH@sk8?*khi{+rF8vHx#>x!I-9dHV37%P%|Pf-R1z|D|}xmiNAM
z*JHQa;)?Q?7v6p3+28ouA=iHXgSYMW>PtR%MRUj(?*G&&>m7B@Ift*j<ww`8_sYlp
z{a!ch`>gx6EXTK8bowUe?y}Ea|F+vT+w4^w_GkOu@`KC%WY4Rg{De<F?}Ar+^AUR;
z`sK6MJLTAuF5da1i$3?3+mj9N|Kb(LKkG4X+wkO-<+bm9?BU-`|7HE>Z1$|{K6}k^
zN8kIR;ed1Yy6cqrwKw1M{4d{o?rZMcWY1sU|EcfZwC`Sfe0}e&jy?FWzk2QCzW(}0
zoca4LvTe@3{*8b7$kUVSuetCOPkrLvSAO>3Ki~G_`+aGXUwmf!BQ{vEV&!Y5)hoAI
zvGUMW-N6T~IC#~xV#obnzwbe-Rvdc3f#Zt#fCE>|2ktxVKdyXceDly9G#%vI_wt7o
zE8^$lpOyRW|Jp+i-h01ke}9$4H!i-qsyk>^T)LanylDG&F6XvOyQ)iyq!_0zuf}0$
zi?;2DJ}ZZ|8;3N_`q~$}HXpjFNasAOvMEXCB%kWOYP&hB`g-oVIceu%%=0`clRR(6
zah{T<?3-a|s&?qwrq7aUNSdt3yR4eaqN(eqotn9-l5U==p>3zRosyx<`Zk;Dyv>uW
z=$fP`+hK0gxu~nTo#(M1yE;kIA<L$;Z2Ka~syv;ux^|Ol&c<mT=QOFCtjY4UnCdF8
z+P2Hnq0D__RTfz~3{zS>uz-tovEtLX_a9cL&3f-#R!K39`A}Es+>X^;WqF$oP1j~w
z-HnOG^2TLt6`Fibi?-=}dzFlqBW=<;?Xo$`x}tB3Cd-C8N#mi?G9UXcE84Ufir#vT
zSzDAtmQ0?=s?}9ik9l9`LqE55U$^yGPG##FLp{xP(^$8>&c?YYr}#IsE458(hIA~_
zv?#i^E}MQTo3^t0RX?Ru*Y}er$f`0=+hm-)*wE#D)(u71Rc+>t(xhsOtSpASPN$|!
z`=OZ^;k8(uaXN6{*H3%@|FF!4A#c62_0Q9?n5V88XCadIshyl%HXDb2Og+)m*p)u%
zlX1-3zMjfttj9Jft2`MzWaeq+Va}(jDKZh+kK<@Thoo%=OIqhv-o_@CAnL|;Oq!<a
z3hQ1MRb6I7)hEMLbxrODU6YPwTNQ0q*26eAQ=d=mT#sV85w%H{&Yf6p$7z~-i<1d0
z5jQuLP)cX_O4_NK602Gyb8C6*Y$;gkaUSzdk|cTAcU9H2W7BrY%0)^Y`9Nm<(X30?
z$hyph#%Y}AH0|TnilJ$$DKER(#Ve064r5bywV<f`a!5;$ot0xUm+~P?^C9o5p>O&K
z#VJdMu`ly-ZpO4LXD?OdMK-oW(pO&128*asV#uy>?$W&O^Rns2VyxQ;t)d=svE>hG
z-CD5PPqcMiO>>iHu9|19r|UaAlhkvc=1t$1Nj4WrlMb#u2&Qr<8v#=d@jNg>=nfE}
zO7p3A$8;*~Y6&vtRL(Y5Q!p>Z)$**X#=5D6(mcC~(9KIhlcaf8H=S&?TxB5;k`8=~
zdC?DP*XL5J0TDx6_ElN=+oDbEWRd1cQqBEXWDyDT7&suK1)r_%irO1?zF5z7KiA1T
zR_RcH9>1@PrYR>7kW3ysD}{Pri1W6o#$twHnE=f5)PMU*@D`v29!&zx#oK0<luZjX
zz+RHMYSs0r)w2~6Tim4$Z0fT)@4L2Z8k>|fqYNpAsY}zP)mff(!a1ArBJnMC=U#(*
z1Ei))+i3zi?J#s%-`8+_sPm+PC0Qkmq3h7Y-BK#{ZQ9RG)Ap5}9)xy13m{nr*yo{3
z`f`LylB+0yrB|p^8RK1{NtsmEsqMO^OG+VRL+wh^4HYEl1<l;eUVCV~FdXX2cFbh3
zJTB5Y$@0#2RxP9ig~G9{r+OaBQiZ9@bnIufXttm2khxX>(>(Qx&eYnjs+bcnT$brN
zWSx7hk$7p6CLS)Crm+*6ZJzZVG_X-a-DPP7K<s!CMQ+MUdD8b?tq3&Y0g|O%+GKLl
zOQn6{p|d^(qIH=h;8mrAv-ZOaS$7cM*Ihc+x%Y$^Q4!mrtfJVJwfs&zK%GkPS_v6j
zQ6z(VFK2`LEpK@9yZ-Kq3xBcMEgL<({pI@~zwv7h*zKh2?|RqOkKX0sAKvSZr=4D}
zxbA{;PJHH}$GyF|b)#3Dc;aQZZuq^;|Ie!*UEX=^>;BtwzoV2(03ewaeLt3+GCroU
z`gOcbJBhf|%XJgH8_Q-E>g7DNHerSbb<!mR_?1gpKuI&oFX`w<W#m$5E>B#^mrgJ@
z$+Jcz&w!ws#H!S<^0Dcv5%9Fa&E98o59Z`lRS2iFS6HW}O_b#^o2s#q;5H!X%0BXB
zZe^U+FPmvD6GdSdqv~aCRrO-9QoUSU;Z*XQO0Ig3N)a8~ej4UdjhWK{a@sKKo|S2-
z<RC4=e8}@L#S!A35<{%jQyzCv{SvoBW?;{>pc#TPQDsJCWl}{1NbTvzE^A8b=ALDj
zCQGZcJaOxyORFITwndRwz^a<$TQ$yA(Zhz!uh>ZAhFJy}>Y_|)i|^8)e-d(oh0LU6
zQdCtswJ1Yds!=d|Dnyrx2sUdadjyb^-R}As8jI1Xhk58gGt59BZ7eaAP!hcssI*m3
zJj<<BlUXVE7%JE=I7hGE)u}CMio^<6=$K#2vdk5uX@(nh-L*qrCjFpLl@<PgwE<{B
zrF0BMF-_jEfd_MvjO&!R#TtoQfXf0C45rl;5Ivs<8!@?VTO&JzODk2lhVAI&5O6Ck
z0r0gcbDa)zgLR=k0u(@%N!hnhZdSjV94C!@sjPBpJ+nb2gnyj~Qcn@fLO9K0xx?|W
zjH1AFrEiaCm02w+>ay#bPEja4iE7zrL6%#4?T+xRR-N0lo)eX-9Bg_#NsYbc7D{z*
zE9It|upYI1D2EPKD!Bz{s;3dR?rgxc6k5v@uP%qe^UV>NeKD6_Qf5y@lZ+Uo%^MIq
zu~N-ybfA^^ljUH&9cs5xk`X;oUyI~Sbt|NNkOu%}wWh478x*ea+tP}**i%xao(OaC
zA~S}d_S*Qg8=KT};vk@Z==x4vVQxyA;!<{HUQ|<GA`F=*YD8g?OM84G0oRr#QD*6a
zpu<J0Tvr)7luTe+wHu1D@f4#iN<B0RT=#IPhNu&^zqC64De=J1FxItOA_tYMM{;Xy
zAguv}jR_*qS@o%{gp&t^Cw^@Tx}#3iO{q~Osx~R3GRZwx8sh0mjG~(|G6oHik`;{v
zr93Yv#d6520?raKCAKfk>699SN$hUlHHCuFl#;sa@`7H%#i|Nrt;=Z~=^TJjian^2
zG#Hndavx;K`e#D0gGMRPv3a&74cRnKLsd^r(peTT*I*RQFh%uQr^GAQNW9U;1n(*=
zn7Wh~a|cl?v{6`8`K%t6MVhq%Z6sL~eo=#jrgFY0gpwNW!3zu5!iS)qRLn%%%~=W9
z(C)mf3y1`|Fd(WyGO2^KSp~pyH9A2B3TfC{2kC1uCV|mTqpLzVI$#8q0B{(GRuQcL
zgK$UNJu*mzlfI5%QMssmX8{ZNmkbKOFDZ9OqB>Usm$7dtA$W(KXHAlHeN}f$p|w2m
zJo$*cj2L57jcjP?VU;YmGwP@OAiPA5h_Vf}EbQxmrm?DuNzuwfOTv<R9>K8n6o*Pv
zorpbe6tR~>)fU&JnFOuNgIsBxrjmIWt*4D9Tyk}(20-v==<wa0w*K8+2h{WG8+Y90
z>fikSz>6RKzMp<<lNG0a`eVn9H=S_9wYQyl-Rb}P_RYTh+f)DhtEPAUe2Yt8fAe|Y
zJ!}6>Hhxog$-B2Y`qp=U@Qls&{ij`CanZA`J@PHvSHJoC_mBV8%}?6o@f+Xv$@P!>
z^mjk~#FO5)!H2({ocyzU{_O2<`t;V@U4DOk%;woUlAV5h#_-qM|HZdnCxg|drbHg*
z5(8A}P;s1yrc}>Lpd>?vhN}Q&1@;V!@Zy2^%}JvN)ITdi?sak(ep?<~m*5S7n)o6v
z4aM`dR$S$&!+**-fl&xAMVdBfY8$#6!5>0s&WOW2s^R#NlF;P{K$6#Ce9#>TV=fC}
zCdy<xh(Q5?Nq8)XSqjPqt48NUS=Eiuo3^#3@;Vz;<tAbQyJ?9@!T~Rrzkn9$DXJ_@
z8zd8>%v480X{6f4CRe~UXl0Lxg$1pyD#3{~PgHr7EH_m9P*QZNV~3=08P8VM3(-G!
zk|@Qj>CA^td{wJiBk@%yZ;=Eu9>(x5Mg<A|?G~~#!~GF-+JFL|ln#!Ee9j=hrMA8#
zO_f-4nUzxA(?FdN&0by1)~!m8f7BQVz0(xdx=6c0{VNBYjkn>#VA>1k>RM_MCm;jq
z;50!%zEmj<tL9`?$T8~#uoYtafMJV~0SASJeWwO?IofLvQdye1gpEM)%br02^b-O=
zQjuU)-VG{!R7!MFfoa#4_zi-<lIXIjOGxK53tr`UNhPvKx`#`_6jN)^!g^5HAbcAd
zylr87LK5|@yQug;sIloi?Tn+=xM!YV9S9U_3`;1GgE>c{t$m8DsMg_21tC}0;1~~q
zpdtQcPXTsQ;<IOo2;JTmOawYgQ!o&$UZ|XqIbnD(ZQMK<B!?{L!A&9RT?o)FtQ+*O
zb8Cshs|#pKQlLvbStkWxX?6Zn#qAenR@4Z>iHsfwQV~ZWvco@1>X86fFTzQaVVnVU
zn#%^?n{MGDgw~q+89x(wtUnCIW>$7@3=2a1^EhaEPERR<MgnCR1Rh!+CSzA4c@wvW
zJaEOX#9Tu|j9t%K2-Z^<hzG`OPq4l++#+>Nec(#X1@*^sKwRcZf(8k!i(YZ2`pc^A
zsk)YmQGe{S5{%#k3iC%=@n4LJLX)pk;<aleUi^F=_R2_S+87cu6n!??T230fE%r|7
zVwCcR*sZ{(#;815p5%#`v*Tm!Ux~*l2yaB7BIs6>jGt;HT)Nm&DNbt+Y?GNZ%_aiE
zK2I(CQGqOi1!efC;@on7?76yHSZxfh4p9{TN&uD+34&rhX<%Cmp_!mcH9mqC^#qnp
z6tB22kHK@+dBNckid@@9)tv?<4*ny<Aa=}`LTh=&ZIMmoT1BK&G3JteJ0gaG5j-Cl
z#8P4FV0ns+#1S&QCx%08d=LP69>Rz>EW#3;OF^!2)bJeQt)Vh`N7_Z~1#`y}=mhkE
z94hd2IfhlJ7xaUA!tszVElZFBLK;Jnj-lOn+{A1_@e^Ut&ZE$t?!latYAy%wJ4AY(
z`PaR|*0H6DS_qC^V>5Zdtzn2V0JEkb!)6;6bZBXHmM0!KV&-5ZVusM<LRWrt!aRCR
z2~w3LAQ6*M=&W~<-9uzq!lz}Nhx%^pSKWdEjJ_u|)c_e1wHM>aS^pkCk}BN8s0V}>
zSIJ_5ZQ>h2qnyg}v@hIn)z6RL;*7m7`M`YXeVZQj`A5Ftq=)bEANQQM#~sISw$r_P
zeD(RK-+#eJKXTa)yKQp!-cQ=<%<b=Z>#9{}&+j@q{px=G@85hZR^Nr?4V*fGqfVry
z2T?mF@`5B%Ju~VoRXm2O;?hL2h;R?5B1>+PPtD~ekf34I+Xn(sj{~uWE4jqQ3xkaD
zY?Nc*KSfpUtA|cp@tduYxUrNyeioz->qA^&hdrLSY-B4Rqm(l|ENGpnd&*_Wb{e^(
zXbtC%lgP<t3N`p)(&Txm_^VXjaIPBZ#b05s3}qswG4j40v=0>88J<PoCJlI^ZShF&
zX*0r@$VE^;hTfXWv6~jcm*1=g&*5eCOk6$(21B@7WGx>k$3Ss^M5jQPuoLP6Z|kB2
z!QzIm$ZO;Qh6#`JRQ_Rvs;&?6Ete;*AB$263izg}&HzpuMw=8G=urj0mWwihHJ1^c
z;ZjsM7-C4MF~DbXY)o(rHhyhQ<QUn@FDLWCacRrJd&1%&gLDD_dQ@{+4;uYIV4M6w
z-e6eTqZHnW)0gmH)QX1r-)TT`gB6)Z(#Uynk}%J#Tx64P*I1f-``Doj6{}R{=giBx
zwB4!oV*bJkfoVY*>a6E!=yT+VCr@RsEpfHVMrOPSmcpSNv7lc0ZtO61s~->=AkXL^
zDh1B@E`G~|xlu9VOpl7s&gvsRFdXax07lSwrOM9h$%KtQ6WkCE6-ZQJ)}_kgh45p}
zeAfD(Qb^b-;OG$Qz%T13PKh#$SuyUy)eUvhbBNgCA!_9o_g#UcvTcqUq~2m)!4NI4
zT3m-J6>#(_YLYb?amWb!we6z3cy#;OuR|{-3db6WCjh8Jl^d<HLWE-tGi?rusBi&d
zdw>P-f;js!u)rs4Q4y9Q(LoO=i3$WoqE0~^SjK&%L{$#uiYi!i>OhR{m42eW9tF$v
zXKXhG9JLz$Mse$*fIsm{yRz!ALy`lzl$ja?><T-ScLG--Z6UCy3`rp5LK5Po;!%}G
z5;-B!D%Cy%6zZ|;n@jOKXlG%2A#c$HU`R<<Y@`RZ>6Ry+SDMBNX0qRS4mL>J0z5QY
z9|er0w;J&T8rVpHQ@6}2Mg8Gy5k&Yz#Vwz)0^EpvLB(`%M1|;=S%3-zdADfCB2Gep
z#3%3EFVmSEs4GfuMj;Uxfvj=K)#nsMXD988l9`iZqeXx>7Ol;-Xuj1JQ*2mB9wdJ!
zIusUI&`fxU0#I=+>!ju0*a}3Y!TzG}#LCM%hGbM*tV8c%c#vnkykaWT`e_j-QdaCn
zHD~|jwYtKY0R%ydL<??-OS7XpUWUA;AEQcAK<N8~8Z)vxEkV1eBaP%(&5XDKBjI-`
zw5+r=?CS~Diq58xLeVf_7=lxf$Ek;(l&4r|Ym!iUps(Qshnd$mp_!Rc9fMm{W{vQX
zc$Va%JG6RD+-WPN6UG2sbW6#b&^xG~3#aTmd25HGeM)e2uE@je%7?Ca%$I77#7op<
z!Zzgv<Eqi(<-8**;wX~QwnPsyo5VjWA4i-^s7`=n_OPu$ns9Uhiio6(7l6aakOKOn
z>iBnTy7Ldue9EDZdB*1+_UjLAaN{?3zwd^tzO?o3duJDx-+a&IE1rDA^FQ~MBcIsb
z_`Pk;`TDnyeCgHqeB;%(-}17JKXUrxHofrLCmp-{SzrF~jUPB=y<eZY)5Y7~lznWs
z>n~Sb-k6;Dq03)&!DnuH)kljHcmGVW{{7n@^vqM<d}aTJXaD=#_uOjhNB!$d&%flj
z$9~}OSAG4Bd%WliH(j>#X?r~UNx%D#ZO?h+<G%T;w>@?1=WTe%xx4&p_O1VU+rH<&
zbL;On-+SRxj<2pe{G(UieEIE<IrZ$L&szWd7d?Kr4fUaw3eK}-m)&Ycj8ODQswjmI
zbd?AaT?3>=Nbm-jFAsF!&}g-vmxzfYqcwpG&e*Ch#jl7Clx1S|+jIq;b%m8Pt%L;h
zne@>|&ZF%BJSc-H0doNCUSVc^6P?Y$PvsyTC(RyYpDYIsh=ExpKnw+CTe0x9rIl9T
z1OoY?>JjOU17MYPbQ}4its=_u)B@}KXh0(oK@c=mBfX=aM}0E=Jg;`XW-`he#xjZ$
zc7Ch|<m8@<CD#<N<SC*MD-h&Ub?R8q&_}a_|K@_;hj6HPvU)m9cU=@zNsC2`4`(+C
zkZ=aHK1%<$o|@>0M+_&#7zV=-@#dTQc?-fEutbWOPQRMCR;sP`Vk-EPCM6qu0cUU>
z2omM$iAM@CCdXx25JH01fQ3#C-Ojc`uqZQaXKGzKYa3cf&0BV)c?#n((flDNXi%}C
zr%l<ig&~d!m{BbSSgIUH5vx(F6j+i_0fa?dZ0#a`d+@gCz8Wjgm%#7YXm;JUmo}Am
zrWXnP)e+fP=z-+^YuysLh>4I-3IGe5Vv9Ot0RdgX72?m}gT=Z5N4*Ac#ITOK<^6R9
z@TJ~l4gBRQFqz$`z&n}EYH@;+(yGA2qJb^Wh`mh|Vvu6f8MG|K61!0gX&Vdf2cxPF
zaD|_ultj%pE|8>3Luj1P&cclo0TmIDQM;2aBm`O3x-(1&`%nId=Hbd~l-VY@59(S!
zFY1PhsY{%&iD>nKZX(urzL=iW(pOV{$XG3lUdcd0e48T0=G71an=vy{Es??Hi5I;r
zsOTLulBldjA=GozBa%ks3Wq24EV8DyjH)``rqMbe=Num|z-aW$iZ1R;98JE=L6i!L
z6A={FHp`kh3UJM8C<{VoF_J}VDkumqZ^6KpL69INQbkWl!<*|B&W+ZfG||gZU-3)4
zJvOq{OlAyBEqjlx#-<lq2|cR8W!!+!gj&=iZ>5(s48ewRCUJR)ssu+I<-i+gGV=jT
ztFydfYb!m_F|&!KuB-N>CVG)sCVnag&FRt8QtNcD+!IF$@*Pp5SZYIiDT|?t2rqep
z00*<TP}<=9T0yNUh7~23OlSzt7&kFXk`tBu=t<klTOl(<5Yh~$J%Degh3$<Yua=cu
z0C<^W&u~7?3ypDlDkddHJB!w9a#R?Ab`vqgu!-R;PFVO!rM$%8byfM6i`E*`paW`p
z^!x#@vo5YK;lJj*A8Sk*D!q6k?iq{$wHd;MTWQ_^uoz6je^bPy*1=6NbgPGp=-lM|
zQIW5X$2g$Ajv^0i;TUR-ODk5PtpFMq9~mBze9M|}h@<rt(ji!5>`uWn#Xnoz0FA|`
zJ%g>7_~FI@lsJ~La&2gf05UyfItMJ_K@tE$vR;)URv{>7?ddn6t-vwjK>x?E6EDA%
z^9YrepE)b~*k}^~L#&rVYkA_C(qWGku4NFwyGvufu<li+zYRh8$oysfDuP0XNUv23
z!hV>&(X*tQ`+{8e>oBf9Y1g;@VA%2b-#hN*zdB>jS6uhvI}SSUjPLwl>qEX@efice
zZGXWgm;d;wZ~NMh&c5X4?CNhlyMNv*Z~o%RkNwFr9+kam)en!jrhN)ohdGj@DwVXa
z1Z6#8ntrD(Pm^eF>9ClqD46Ufz`~7ZEGcmzO}*=klbcCG=83C}Z_qIVXlOGkdY&RX
z;*onMK)tLmn1~ic0uqKLs#y#x>@&9512ozck>uKmYFeF)qe>KRIIO=yO``H9CG6YM
z>Ml=QGEnXsoTOw&+DX{pzk&plh&H+@LGZ3^2Ff%Gxf#(NBb7>1l$>*YHj84H5hb=c
z@RMj!$i%65$(a$VsPGv@Y!Hk&wRG~Ieg|9<Ge%$Bf%(mRXERf15;{@(g{1lkDr&Qf
z%8A6YM9L;K6E-xP39(Gh=>AyA=<yK(++|B5d16Gy<eB=dbaDGY8NQ*bpU#Z*PEm<&
zM^B8eLpw&|t~oMDWhhyucyN;_)y$W$Znd>BekKVkDGVV@(Yym#v_Ij{WnnFnV2kFI
zAK^CA|JstgS<+pq2Cs~EY^x1sQj^Njgw=oxeW?e-h8{*86^1a<Ny;$VwarN@$PlD~
zgG)=soG6<vk{~QF1r-m%HKJK(y>jta#Bc=tuWGO{<*FjhW>AIo%LNcOk9Qf)J^rQ9
z!$m=l7S>I$ATxIDgH+t|#6_MIAj%X9;h#l;meFTg^kdBb>f}&t!KnklqD#lnR{<3q
zV^P=)53|N`7{#ijF;-K&$;5o*)!~rQ)G?A5JzP1!A7|O|Li$lNDPgs$yoO7n;xoaF
zi9jGPM5nf)NRgC0YV&A_M@IwSP^|5eUS0r|F%fZtZ6InuQ@;yhAz85A<7YBMufiTn
z4m=07>-a;`5&2|h#$2_kg#cptYfHRd@?zh{0q}+J%?DIQ?HAkBi7p1Ri!{-lg4uKy
z&q`+_L`d5c&%8w23Cj6&f<6|2kQFn%SX445Lv8HhNoLVEIx=tv`^Pm^HOOcbF}hEf
zs7c!B9mSjx;BGK@ZY!9Z;S<8)iR^-QzLtI{;%Fdeqrn3#i<MTPhni{nK?*^NHF6S|
z|J*N40L@^Nya~q4I5SVpxGQ6%j<2&A3$NCJs>+KsCy!#>(&{2!g>q;ec>1c3s%YLQ
zWVEJ**j4V47Eu=~hK_P5XmD*(04wrwdHJBtY$U=wBdp?42hkFcAVlGy6EHE|C=8_?
zX$RrL>#*B`CFaJ=#=&CHru-N<5X8_#k%;o0<9ZQwdZbn~26PlG#wXhDS;7?Y?Tr;w
z8}WJuDx28v6?BdsABR4{qheZv)yJ;ZY?Q93D;{jrWv%TPd>0_PFYi^5SSjrZnG!Bw
zT#JE$XM$EWJVtIMhdB@JV*PdGA8R(3W}XXN`vaIHUZu$7D;}B~&kE8T2|#DTh*<tD
zT>v|@_llVX!{G(8oNbyGvyt{J{Bq`Lapt1orNl)ugBL*|%SMelguo@tR0Vh8y4eef
zjme;KXc@+fW|(Rb+l+gYaYpPyMjIIpjS7e~_4S>j>2KTCTJcQO^U0#$rAGy0Z4)Lz
zj~J1IwHCm+1O;8C5%3vGt;7WrEUO!i+ABS8`_(&~aQyE3jn{tVgcH8~w^tmy&C21-
zy>{O5_g~xn&o^Ct&+RY%>x*u`Xva%$`Cotfj5{B(?MF6x|0TbF=B=Cj@RsBMegDmm
zI{C*(9CO}R`-{H&nJ2$u^D|F<?ndW*;~$T`>X4In>$ke&r}y3W_xqf%>dCu&;XC_0
z?w-4kx%4#`Uim+M^62_YpW5c?M_#k(*S>S&Wnvo-<*p(1*k`~F1dbH2$fS?FM$(8N
z9cXdqYwAHT-59k{JNTFEf$%KY*JwR%0<id+U|#1D?<4VrG&bl*bn;@3n&ZZPR%zqt
z0zWSX7OCY#7YtMdMugvohf%Pabr1(N;k=SHzJq`>za<rwp-FST@@K~8{Lto>#9wpr
z$>w-|GXYRReZd>?r4Tgb#7$8YtbqFHmRJ=dl7zS03^^xaP+pxWxh3UU#5{Qx7h5bS
zUHl2vqJ8nVSS}Zikr=~4<}RbcM>fi$(1`+#BTBL{I203<*eDJ6nj$d@&qk9si$O!P
zmcaoRN__zc{B6d+Y3sHo=CMS59*up{9{O{K3N*aNr*!RjA#nmApK(Pta6Gjg<Sl}&
zrJAz5;<mJ|nj$*5v3{1vA`x=AX@$~-PLE+aMbfa=WMnLBqR$4oXVYqMP8{)*xDX!D
zx5QAjC6t#0zIh*vO(%xa3|A1i#o-I;T`xvRQRy0(Y%c7@9vd@?IXs52!FF2Q^kP&k
z=QWI;n%<A|De3`}CT9B?v4-@_KVk)jtaJeNwHYO(r1rl{!7R3^ImVc1=_f4T#DSkI
z@)4wTy1a%zY`mygTAk%ocQHQ{9zlX1#Doi6*Rwa^!yPcR#4r+1io6EBPMEr76=UQt
zW+u7GK#LOb=Fy$hmr-*=1=v4IQM*Bd!+25fO)j2_4wsCZur(k~8`FOZAc7TRj%;O(
zAKe(vEU0EJYXl(AEJdU6><sF`1sI7mjdM|ToEwnv(R+@*LM(tmH5AfsgMWBRPJ9`I
zCla(Fm`FHVCL2siXp9P5XFmv|hfX|fd(Fus%LX^mijc=auK9$fLk(3L`{PA<c_lxI
zDMt|jb4){`$07#l#30L%u_U6hg^=lU+Hqu@;MeTvp|F-Bz|qUr7NS2C2z6nMUBx)V
zUC`a|_g*cA!*r7~jMjK6L(O|J@T|Pqa$Qk#N;V85=i)-In6Pj;#LjqnG&7~G#+$yW
z9tH_)<ym+_g1RxEh3U!auu+NOKITxdL2+jAVC_`bE}J`3UngXrDha`>=Z>lxqX33l
zL=!n}-~pMUl`xhdo`lzc0((7!90nnS#2aKm77RrZbRHv)%cyXZu>~m|trJ$Ip;KFd
z^hZNatqfrmEoW&$e?t&jM3FSJms7%vb0EPO76?Ndnm#wZC>Sv}$xJus+VEvDVX}zh
zM69yMqXVZcr^9XX5hu`JjH6LH#s+0Q6$gz<M2rx1p;tZ#mX;@8xWo=!I6@Jl0_Ixe
zjQKNVl~QDYGlGpHc?LPfm_Se%NNmRFjDv|7Znsw)2c9<iAn++$V{1|ZV8cwjCA>=J
z46KNbm#Hgrz8d9B4E~$klXv)vfxRw*S4ET^`g8{N5M;SREQXeqN_4b=CLXLf4r-*p
zn$oeszHJCsA4)<_m>JEbAl{8x!<lYjv#EPf&D;^2+R;G<6iLd5R5sTs@z$I?LXQN9
z8+rd1?)%B7-@bbFsV`f3(`GmC`wxG!`5S(>*Kbcbf9DteZvVT7jn2C0;=>=d!$1GY
zPM=x*`MV#x`fu+$|2?;_|DqTC!&g84)F)oN{%P0W@fEro6LuWbAOuOJE~v{|*6Kh^
z<byptmRU!|^OLoUY5cIdls}Vl_ywFdacp5nQR^40<7^doZ|3_#v6uq0^Z*r>Im4nK
zX_&j!_g83~u&|>FE<+p|u~SD<#aLJ1ueL!JjR7Wv0HD$J2x$>fr`KoBhGR*B#XvBk
zqA9H38B9_6;`s!B(b8a;P?W4$=9Qr$)54+u1lZ6l)r930lh?>ZW--WBQoxF^)yNZ8
zquV4g^RMgd5DFfkx{-a7k+9Z2;Ut>y)umKK!)}i5icv>ZMA0_>Mhit)EE;TB8WL^F
zLz2aMGT@v`1L0^jxC_gj)sFqjk2nP=rGuGxNtmT299>4a&C9|8^hp$;==Vz@9-k?X
z+DwX{Wv7|sg+2~N8j`0Uwff@k-AFE|3GhclQel-BEOYH<joo5tb(SZtes-MpnG7}<
zV`ow$eq1<>LnammW21zF)51i8cJ%0IFaWa_7=dXwQ!DZmXb~SV8mj^_8^a&*L^|ML
z7wXWd(Qc&P<f}+AtN||+Sft;%Cs?CUM`4SlqB7K1tciSANMnSV$$-oUr$pyt;tcID
zI~DDHW;ulb0TE`o%GUNU^cKHgef1RuM0BWIjx)#f1BC+xRdl^^&=jucxDMtJWM6ag
z$oufZVvbh#PyNu=(19i=4FPITi4CWx;y@z^HCu0%+=}AzT>MxliHLH5V6xK?8qeBT
zp&38*zJvMJR3FgjQ4FO>If~VZA^2rELSt&*#}N#hAIFrLBpMCT*D`%(lk~Twyqf8h
zH`7HgPv%AcF`5dj7t6}mh`lt%L9Yue)261V6kl*}-US<QcG-l3nqcrDjv2B<ydD>l
za;966T7#}jp|w2mSh8r1ktgpKdu-Y`=IE3!r4G9>suNQ;;b@0*Es+{&L7v8;BF7bi
z3t@ZYkS8W~!oUvC5DM6Rt_Y)yoJIs3bVuOG1cnSF1E8ok@L3eFp<=E;3Pjseg$g}u
z4lItQJ1Zv^HC|*mU1~gnC8K~LqG9*Z>lBu*nB#i*zh>rQ_L=pHH8Yx2uo%5m<(Yn!
zr(ci(hfL5Jy$Bvfr2(_FI?EH!5Vc8Bg57T%qBkaHe#jKOuD)X?WVUXYA|G{^Xq%la
z8_9d4U*Vj^VKxsPr~05e-^17uqZk*lo+>a>X^(Y1V)_pJ(*ZJ0-r*|997HB^3>zb2
zT+BFC#?#ROjIxHnJ6orxqlX!#jk`dgv&BR^3)_#`en-hM{h0gGA7GQjxU(@|iUNkl
z3|O@OronA=UhRRH4ci(h1k7VLke=~fKXk>Ecxz4`In$%FD6O6DaA_Y<5aT2|%IFdb
z&fLH(!&k!zNG)tcn?(%hXXsQThw6<tL&SVULJX3{$zMo__HqNTC=Ru`0Eb_LdM-{W
zMPDx_KH_Y+AB!pbaA0tFOids#p3Tqb1)%GMi%~H;i7z5faAos3_F2hcE(+3^AY;{;
z7d5(Nve3Mk)B7BXU|%W-5KsbCAiRh>X-9bzI3F^``qsZOtup`7KIV4s*zL|^PW$zZ
zd%XWG?URpPo&Vw`>7D1ke4j1PKK%)o{@YDQ{L{<#yz-)}-g*8H`oG-pnjO|V{;Vh5
zcT)AKryYIVw?F>N`rMtSyI=6^1Fm}Fb6@)5kH34ne22rX|Huhv9Cp*ipLp&@7k=Sk
z<)e=H=_~Kp;?`&V&Cd_|W%{)9x4CWm+h20kTf05h|Eo*39Up$e8}I+wU7w8)w-8I<
zjlaa=H&ThLFJ|M+NT~WiodIMa5oG;10>daJnU6UmWsY9iC4Q%E0F)y-Z9k!-gR8tG
zvOD^J95p_Go)Xy5dO>ofBHI_nx7G^oInz(ThtuV3vD>3^s3cZx+oFj|2%GCR-ep``
zSPNjjHvna<3u_ZzF#tOwccvLIhf2;cAaO_qN4iHJSNSC_@N%bVC>$<Xs3k>M?!_eF
zS`%LZ<9=}?Sf<LlURs>>(#|!cVPo0Yx&u+r)m~#18pR98R|10xcScP0)IE+#Tn&TJ
zwwwnKK*I2Hg(I^}35Q~F;sebfH4q0O<hYm!jA035WeT|OrI(<;MNtmqjgaGmITWsx
z#%pV)pnu^i;(yk{q?3={aQe{n9g_+`u^^2?;^ii>NfbZn41`VLMstGW(2%18d_Lf9
zB+EfQ`fyl>kwY$Nv!*Rf(EvgofCiEo3ieivctUF4jiV*@Snl8ylqz1MRn5y~Qk$hv
z<}oeLXV~0wGqz!v3^##|=b<Wk50s$I79)BTdgN>`)~8uA9V#4GJBrjcuWsgw@*+bG
z!V)ZUF-#xcJ$e}@53vyGOd*(grzA{SCNu}Fp{nU~I@P4xz{ifWk%n^F2nb;KXF6aw
zw!k7h$XJmUAF2^&^1+XWr<&A;K3<Bg<t119-&~Mm#}2+2mDHN|@fmnFX02LMNJ^!y
zfdK^GZXCCYal0^C!axAq(E~B$Y@Rdb2Z`F4ZbnkHn21~QychV=mYhZJu$eG_RSWUX
z$CYE|<FrZmJJDNKA!4Q{j1=WcFhMmkS*t3h4Qa%v`*B2E)B^*<fKE7bhV&h|0X!x0
zf*%|%wNT>ASOdvx5;G_i-QnPYiu6FAmd_I(fD*?)msV$a$#p$%5&cuAp}eds#gSzE
zR#h}Cg>Fzs`UU8#;h~T%Aj{!7(l`dnJWljioP{<~fxOud6A);#Oo&x7OBJP+O|1tO
z13c_QL#EP1Ij1<tI~y3EZb3~+5JCXT83Q3wIWj$v$K}IP>-E6=N1dY0lxkI%%Zit9
zR9Fj0PS_FFi(5wA0N6NW1^XB<@{k(0Y6_hbbb5p_K@6KLFdn%MCD()gk%kOiY>vkY
za)IN_IVl%hA0C9cu51Y+&R$etTH4sDrZC}&_+u%da}aVcucH`d0O2C+jetivbGV&T
zRDlJf!5lW75f#rQW*l%43DI&TP<WO$eKB?}=E!)UX@JTw!-9({12La76N-47HIevo
z%=S`hv;&UF@<doHvXNt0M=WUz$OZz$<B+xvoxm+KV9}R=j}Zr+9lqmbCYskuc6CoY
zvfRW>z?@(OhkR-ng?IoUuo@D@Glc$3kV`n^GlsMvZLPuCutZtOTnfsLzrhe<NTEzo
zkuZuVfkY8eM?D}Tf|L}bLJf-R+eV|BkW}6r3naDF4K@!Kmcl@4xxZ$8wG{cns)3pn
zBjM3wK#<fFTV%k*j2R~rS&z?A^4OTaAoM`MN%i17N5Ql@@>$)}(BkEg6AMGhNXW`(
z?%c0@Ua{vZPv7r3pWoo_xBkVJFWdb+SAOGz%_%SW(0-d8`O<qgTW|YU|Lo`Q-SNZc
zrl)Vd>)THG==Yv|=8LyH?RAen;)wHpu*W6;cb`9eP}cIyHI4vH*;!nE4L-&NBH{F%
zPMOX+IEa%8PzEj=39<uBtvHs5h8qGTKI{0P6SznxNsxFkLj*c--YBM3Oiu`U48$k}
zeIbyz!Un11csa?S$q%5-r5JSKryz-Vm<nQi6eTd*r8631_Hl?OdLz33F_j`!iE^c(
zG&&TA{(Wu?8$KEUi&id25A-<=!4{FTWH0C3ODIof;#36vRFYc95P!jE9-1tJRsXCp
z_GfYj&4?bb`Ep{68Sg>k(k9`<N{b`<)Vlep_=FDwo;(L}!tcg+qA+S2ImbXc#JHdl
zSLkT8%wb7F&}^So;{(LUC{d&24<r(3DSItGdrL#X*+vevaFy-hBQTSBjihlOM*_`L
zN2gCCS%qR-#UQzO(~K2{t`y@ndg#yq1+yEA&j8WuLYPfwMYDws8wUinh8-Y*ha@ua
z1cS&O{m6aJ)|$Gy<_<>Cf@aW|Q@B$!+>O<+fS{Syh^Csn(j51KiY4)-7I;C85|qK_
zdIhvzE5xiD!zCIHd|V^3%B%NsJ=zjU(s_{5aLjArL}7d)AjUPY5Yw!JIeJjh4Ixg+
zRc9A;mP~O$4_D)WsyPIm3u`9Odd!$Oug~*~+5+;8bof98Oxf~<#y88);^DC&5PAio
z3-@4sDp`O!^a)2h3i;ZKCQj{~B1IQ1<b_Ry(-X(Io{1Gx4D5X9$SR0A-snX+FM~3o
zVR$yk&>4x(Vqnq%Wo}X&bE90v1S%IMthYBEiYmnribrh2_Trf+Dk>&E=1<B4qud}Q
zPNB+1Md5^NNcwx_)dx86JvI9w8t)4`gO$=v&%u(%$1cHQn8&}za##u`CU|(}%tBU&
jiENIJafwW8vn*(K3|ZFkF%&dr_6KJdI=yOxBRBYe_xblZ

literal 0
HcmV?d00001

diff --git a/testdata/bao-golden.obao b/testdata/bao-golden.obao
new file mode 100644
index 0000000000000000000000000000000000000000..03884f36dedc8a09efc40da2b5fc79a1b4ed30e1
GIT binary patch
literal 1224
zcmV;(1ULJoOaK4?0000fGh7XKU^o&2Ot7n_I5!mZI&{Y&^3gl!*e5odL*vX?wn%6&
za?0*AXnC`O!W9Y&n1Xew>+GC3DIxN<Kxc9{5O_7MZ|T;GHZXpFG_+WYKrUozDbk{b
zHzM7DOJ)SD4SM?;DsKGr8NNLyW3Iu#d!`|QH@7sGCiR+3f<Pg{HQ`S2eV@_Kb<)GF
z=uK+4zrr|m#{IgI1b(2PdLrTG*92S^d|TRSE%+uiWR0qp6QN3H@Y7AsI$Jb&3~b@#
zzyn&!9T>SkrdibjTX)Ny1d@V|u}F@pzm4fI4gJT$g)I+|4Ur->(xnl4)iJjPJsB<6
zz0QMw^-yDPpj+^gW^my0Nz3)2Ywi<T`u)1x-f3G?&|fKnba*^)7SMJAoc|#*I-l8u
z1_zcf+0Li79~)oAy>t#cwQR`~^SnYP+K8KA!l&~Y;SeV|^s5&VYi~`C+3=gn2}%L4
zTk0j2Hz3!hpo=VbgOxbq5Lt_hz~T+x8jNZQHSW@JBR<<kFaGdvH)eU=MM}#1|8lVj
zsqC~9Ad|bagJj-{+S2Hp*OrOt8O!{WD_v!p?;*Z+;G*1}ZW9uQVYr?tf8w64nHg!Q
zN?EEc(tV9WHv7=yh56td6BiQbxdnr}+`Ai&sS2;yFp=%@43&nvFF?WlH-Q>5moP@>
znPWskB-U}1#@fj5g&~<=xU6Qr_!NG_2Y`+NQ}^<sQ|g5oM)gz8NtXSlv#`KJO%w57
z94VYa>W^q>pJtnXG0kjZ|A>O-HiefINadU!cMmGR0Q#;9-PKR{+Q`W-PhT>pHPxfR
zARXFCzs!9bIo;nnpwQTTR?70xYU$xu60nvQ6sOW0f=`{x=iRK51p1Rku{+)}v`yK;
zGd4JcFpI9iU8cO@U9&WcPrNh*{X%mrl8D7(fG+lxS}89G#8#xZgAuHHUC@M6P{!WC
zNR(3n9RBw^pa&M!`H&wkKMi%EO2jhOUg&A0nlIxx-%cKdHrINy#o)o|50jsNodu*&
z7flU$j!ci_V?{~dgIM{QT3Odr>T{x*+vG2G<2K9U$wH<R!RH^4&*q=F;4;eAE@D4i
z;Kz{>>naE`hG^w`&N&|1ep@l3LU}`qg->i`(#(pA*ipiQIwE77TS!I!&rc2%dGhI0
zM5^hkMZV!}1}g3XJFpO|xc@BT6XoHB_HG(}k>`7XqRnEe+`JuG8l00p5TenTg2;7|
zO=2nP?D+V6XNqVYO2*q~7V`0dzH6t&LF)-O$+|kq2hJ4F+l#<XX}Krqd3lppBHkI`
zX@^G|fc{(jlB7sZ{%-MO5S^;AdH_SR14g`g!|@S$QTU{z=><?rht0Jg8?gnH+3L(d
zmrd@0l=|IMtBpAwf_XFZRWa_NSZ5}mmKeU%-g~H6TE(i!nxy1nC=Jd-1cjX#_>MNZ
zC4Yn1we&ZkMrH9!E^o*iK31=_o<K80c-gRunRwo@wmuN2#sD=4d+c25A>u7Z?{oAq
zC8Rp&Lg`h=k6}{<Jh(e#0g8nE?eM)wVj@2@T3nWFJ;Ms|k0d5nPou@rtvHfZu51~7
mR`nSKLTc^rrA4oyF_s!kkdm|CE}T>*lyM1rd!po1xYTF=3uWE_

literal 0
HcmV?d00001