From f8e27ee19b961f5927d4fec4730d93d1466168e1 Mon Sep 17 00:00:00 2001
From: Dominik Stadler <centic@apache.org>
Date: Mon, 11 Apr 2022 13:51:31 +0000
Subject: [PATCH] Prevent an overly large allocation when using HPSF

Add a sample document from fuzzing which contains invalid/oversized values

git-svn-id: https://svn.apache.org/repos/asf/poi/trunk@1899749 13f79535-47bb-0310-9956-ffa450edef68
---
 .../main/java/org/apache/poi/hpsf/Array.java  |  14 +++++++++-----
 .../apache/poi/hssf/dev/TestBiffViewer.java   |   2 ++
 test-data/spreadsheet/poi-fuzz.xls            | Bin 0 -> 7680 bytes
 test-data/spreadsheet/stress.xls              | Bin 38912 -> 39424 bytes
 4 files changed, 11 insertions(+), 5 deletions(-)
 create mode 100644 test-data/spreadsheet/poi-fuzz.xls

diff --git a/poi/src/main/java/org/apache/poi/hpsf/Array.java b/poi/src/main/java/org/apache/poi/hpsf/Array.java
index 94af1369f8..eeaf58683f 100644
--- a/poi/src/main/java/org/apache/poi/hpsf/Array.java
+++ b/poi/src/main/java/org/apache/poi/hpsf/Array.java
@@ -16,12 +16,15 @@
 ==================================================================== */
 package org.apache.poi.hpsf;
 
+import org.apache.poi.util.IOUtils;
 import org.apache.poi.util.Internal;
 import org.apache.poi.util.LittleEndianByteArrayInputStream;
 
 @Internal
-public class Array
-{
+public class Array {
+
+    private static final int MAX_NUMBER_OF_ARRAY_SCALARS = 100_000;
+
     static class ArrayDimension {
         private long _size;
         @SuppressWarnings("unused")
@@ -33,8 +36,7 @@ public class Array
         }
     }
 
-    static class ArrayHeader
-    {
+    static class ArrayHeader {
         private ArrayDimension[] _dimensions;
         private int _type;
 
@@ -47,7 +49,7 @@ public class Array
                 String msg = "Array dimension number "+numDimensionsUnsigned+" is not in [1; 31] range";
                 throw new IllegalPropertySetDataException(msg);
             }
-                
+
             int numDimensions = (int) numDimensionsUnsigned;
 
             _dimensions = new ArrayDimension[numDimensions];
@@ -86,6 +88,8 @@ public class Array
         }
         int numberOfScalars = (int) numberOfScalarsLong;
 
+        IOUtils.safelyAllocateCheck(numberOfScalars, MAX_NUMBER_OF_ARRAY_SCALARS);
+
         _values = new TypedPropertyValue[numberOfScalars];
         int paddedType = (_header._type == Variant.VT_VARIANT) ? 0 : _header._type;
         for ( int i = 0; i < numberOfScalars; i++ ) {
diff --git a/poi/src/test/java/org/apache/poi/hssf/dev/TestBiffViewer.java b/poi/src/test/java/org/apache/poi/hssf/dev/TestBiffViewer.java
index 1059213502..5013e45258 100644
--- a/poi/src/test/java/org/apache/poi/hssf/dev/TestBiffViewer.java
+++ b/poi/src/test/java/org/apache/poi/hssf/dev/TestBiffViewer.java
@@ -40,6 +40,8 @@ class TestBiffViewer extends BaseTestIteratingXLS {
         excludes.put("XRefCalc.xls", RuntimeException.class);
 
         excludes.put("61300.xls", IndexOutOfBoundsException.class);
+        excludes.put("poi-fuzz.xls", RecordFormatException.class);
+
         return excludes;
     }
 
diff --git a/test-data/spreadsheet/poi-fuzz.xls b/test-data/spreadsheet/poi-fuzz.xls
new file mode 100644
index 0000000000000000000000000000000000000000..9acb7005e07f64a8c685e8130849bd8f27318ff4
GIT binary patch
literal 7680
zcmeHMZHSar6h1S~?9S$@v%6|)Ilb%}xgTS@N@S_KW35X<o1!ZU8RN|OZaX>a%FOsl
z)L2Ro28DtpMhQhkP*zy|=!Zigiy%cPp$KaDCkV1AP+50+p7XvlzB@XiS&}w)Irrnd
zXP$fRx#ynyvEP4Jb9&#WQ_e_HYL`(moU4)w2j7LdFW>fy+=V)M!?|3J>?#nd<#Zca
zpvs4dtnkY4y+<muAyhG;XT&Z0Jz3-;KY>=tI?j84B$?`qBofB0NRO!w5f^nh2%YA+
zD&T8wc;#N?V`Z{xSF3rQ=AWqS*P73hTG=FX<;gi)r_BZe{d9#pq;jumUa$FB<SzMA
ze{(`PZ8Aj$A)kBkb-Ff^*EL^~5|@Z1<lp-m@C3w*QAtBfLqqFIqrS7de$L9EqZRNp
zU^NCtN<6*9T>VUu*fgn>`)siptwmS`M!?gENu73uoD<O@+%8S>h)6itWH@vR2ccsz
zhcflSdTR`j2nR#qV8GKZjnX;-A>0}69*JOc3J8U^B6LZM%y%FZ)N_J3nKn*GN3kwl
z(tIUSu{w%W&_KsTqyh&zotE+HBY)-$Ev@XJK|b9_`G4d;U7Jr&znXk0K2fhGe<$-@
zVsLnN%G<Nqvcvgeeq#xKRSABJ&3~{6zv&A3oo<i#Gox}WYcdsD)@Hm~N=CG-%XqXL
zpQ+5P(g?F%{BqGtaG&%<qGlptwvpFXIf6HnyxF?Z7UX8_5D%hHn`B)+kjSdIONL~+
zdKo=!sz|4qG@eZkoH7mLWYkQiVtvVYZ`xdI^q8r14!gBa2GM&pq`7ljk>5We@{e{~
z{!D#{`USTCbD%LAC##XKmT_9I(P-%h=Fo?~{m>m<+!0oOlk%H2e@QtR$mG-guoq&h
zY{i$XhkZ=|y{yvPG~XxnD&a!^E{vJ!)v0rbF1>K7BVURvgDl429;@G}sim*ajonP^
zdLRLFoLth;3iM|B5iyiKh_t(Fb$lWrZClw?$c?h97OcpxdI)+L%+hAFy3OPKj0yd3
zn=G%XZ3b<IE;Hdy|9~0JVdC#_GdN6Eu9huOw!p2h08d2aRJK6b0yl4gB{G1&v>38L
z)}l<x<{JW?i2HH=xr6J{@L8+#poP-q1bgV@dEfEDtZNLI8S7{#%h7vM)<{(KSmPAG
zt~y=-3jI@$>-rIe>=T<;mdbkR$6rLpz7SUERh`I5<K902PU$oq{qvy6GvjsjZ=WjN
zcIlN)^bk`WOr3!n(`WYI7(cHd9>*b<GsY&Tgx~n)$14fn^+=cOk~asoN25ehPIrI>
z=!VYu=ltg9pZ7Mt>GImcIp_Ry?ef;e+Z2~j4T!%fr`yv4oL8peGJwftOyK<I-zuDq
zna;*6sfIY+2+x!18uOD;GoDUG6KB(DGpR^cz&Q$s)8`HdhCuW``++PoggQYyU{bmo
zC1cVGl#EO7+HK14?I4Udyw&oA#?K{U$_7MhQ#Q)u*u!FYtu<vKqN{~PpABP=V^ojh
z8>4Jgo`XybQQqo@zD>;a;PmMpa9JLoREJ5|km&?+3UB2J^s!l<Lf#L2YfSqwkU9fn
zN6E2mnb36+kF<P?$aF(v?lNKMYwbRUY=IVrEW%#Y3)C2J4Crg3Zb0`K^h;`ME%GFA
zh-HA*q0L=<K&_F6K9mjFrSmsI?K1&HV$6UgsVi~#CbRgeI4$U7Iew7<rir{ClK=O_
zXnFglVVsz}y6Q%b!G-4O?eF}4VNsv|qc?og{J`hOTfsXD;=aJ|i$S_RZC(OpEhq!x
zUhyV~YwA5v9cVv@YxgTqKCyikAPgLgHTi!s(VI*05No769!n0S271%Rf=w|q0S`yN
z^LBjZI*>iYx(vTHc;HahWknqepL<nLJZ&Z(HNNd@F*Zh0Mh8W2CY7=u$K^hD<k;RB
z_xN}2hW%PDeB241w}{sYL;eCj$DX$-_tq7lyFs)mV>4qE$NfBrw%i7q2-*Rnjdy`)
r^KU>-n{w}7+C3@x!P}wt&n-JSG`VrZo}Ps#cFjG!_3SHq4$t`u+##=;

literal 0
HcmV?d00001

diff --git a/test-data/spreadsheet/stress.xls b/test-data/spreadsheet/stress.xls
index d8237a26ff2dac5ff5d76c4f4dc4d7bdf5c65bcf..ecfae46d48327d4a9ae75c48bfde0706c51a7cf9 100644
GIT binary patch
delta 6214
zcmZXYd3+S*8ONX5oP>l;3_95?Llz-{Bpb4koDgCtsGLT^l?yQ>n@xaZm+V4rb^~5u
zr05GhtVfT}r>$tMy0*2}delFxXwlXlR%+GO*0c7at;H&R-e;c~@{Y+Tlf1wA{l3rh
z&dfWrnb?Dl*dvZ(zO1#tU)cbwA6kCKaq(3se0u);dGlwT9N)I_<%g5Eri!~W^2FAR
z_3_6t7HfIMH8Pt4R}6RgLy^AVK==m8hEoH#XHKP*CjqR8-<El!;m!jHhX(zf-Qixp
zKT;kF_LcSQ8y#IdyeBNaUhQ2{4sdla;_(jz_XT=A-JOw6&mv#3Cld6?5N`JF^M@n;
zZqK61V$aTzh(EkbyjWdyrKiGMSzYU`s_}Visw=&oo%<r5NUz`1-#OgZzpvl3$3GB=
z^m=-NgDCff5!4kN?Dj-PLVgbpD||k$&*u|oD%QsJ62F#G4-MH6A20Q3@rS%6De=O~
zCX(Z)t9w)O^Wm#-JQW}lr+Z=%z`Gj2Th#!y+40r&ZQ8sKJr~O(0TbxZ@cYA@3u6a3
zAYVMQyu6}&<Pyu33aRjd`+_SCKzlAdF$Tvh@*RxNZzx?5t;E46c$7CHNQW6X(j2Kc
zN`idWlfi%+EmsPTZn9jd;3iiyDlWKzUCr2}4ko#o$W@$aw#dzZ<ZKJw3=(~_cx|U{
zn4nDrN@wh*1W4p`>3xSSEd}!62*Wqwyb}#=M#TlUuxqoz*-V@%&TO_C+Kdh9u*S+r
za;LbhOV@4{_jbA4k8)y*mDoZFFDJI(4D#UfmdosAD=IEH#;&c{iwn#-ZKYn0ih^!k
z^NO18LhW|3z1zLeJQ3ThTHC0W!IW)OONe{Amt1~=E4EnP7V>_9y)ESZqUAFCYDL8b
zUlKWfw{}95`SqxoXjKxe)=_Pv#Fv@drp%;`W@7fzX7$ph^wOq~+bnXsBuC*6Mz<^I
zb_LyTq1zR7yMk`F&>htDSD4(PkUJD|O^1c<P|zI;y2C<mC-j}d)#EO>3;%usSLk+3
z&V>TJ4pV7qTuYw2#ipKx%cko)NWX_t8L$J}a^sS7P-X}Ap@T`>A&K!Pd-@#W#)etx
zQH-R)c@QOiOOuc&0(~{~`)hr<x?H?Fi6s~HPMTg8fOxu3-!K<ER##nA{hM69OR3&P
z)xSmiGNB8r=TDnYHzmI<*6eae?`2Q7ZO(r3oTR-O;8*B=qTk0!zb)BA$@_6D`|rV|
z3-jhk-lD!^jgq1`l%RxFF5U;Mkz9)3#gRN9J=O^epyGlDar*?~14?57YV0A}mx=q-
z)7VSNhdJ3xNzt%-RzaKty|zFf1s)N*ce`87<J4#K>>|(i7`jVoXP0uEcG;4<DfxZz
z`fhiDd8T&TJbTFV1L4}^jy_5?GGUL+(@&ls(%uZ{S32ldu7iGCa)6SLadJRO4p8z(
zv@a6|AUUcmi6BKE=V(xg1}XYujs|T-L#XR`?h@xbgh?HqB=0N;;l-Yh-*S<q&@~al
z^X`JDaQ_y0iR{Hcba)!KiP7}%-p_>hQurtA9;ECu)<|a4#oPUbD-T=R^e54vb;*U5
zWSCkuAB|yJpH-r1KzCO&CrtMm`PoNax?#x?lLM|5<`W~5$ngFM9<IcLI)aBv2eX?9
zQOxIJgeYeQ7HU-@DcGt#E4Byqz6D%yKY3R&aX)$!#3594_$j-FsPjx~B-i4zoEfsZ
z7@{sr@=$^-UJL5RbDSJjIKwoXXGKm(UudR=m41e;enya>!zs}ea=UW5@`zP=gepHT
z4uuL={)}slDo1-%IdY>`a+H$h@gJq?HRAnHq4nWtOi7Me$uT84mPm4EV^-he)c1?r
z)3`GKaU!qd%(z7!m*glsZ-wN=^^#>XPtgP_I+*AQLYo)Lgo2*1&=b^j5tApV>7O%s
z!fN^eDp4JN!L|d0HkaA~M9ZZnp9_hlb^wDec$wYu5v9W~t&v<U=3P8WStst3*LT!v
zD~fGh_@Eg@?!4LXE6XPF>5goOiOGiC=p^cCkb@tT0U9+YE$A5jeW7SfIm|ICT7?c-
zG-efzDMe$ls8usYQ<Ap|Sxtvu<5oU3CPDMi+!N30NrdTO-r*+^h(|>jgF8G+G0=!V
z=9d9ZNNU0w*ab8}Q~b`sc1_C{AB79F=i+&hZ#bO4!F{r#bm;JkIJLi6`>i;;zf^lw
zc!o-~Gh#h%e<y~AO3PkjZwh(kV^MzmNTHd^Q<F@jRMd6&y?ANJt-UTj7;@LW!MQZb
z$zvibreRKp*Ks80m_|p)WXLN@hc`vzuw--$yX*eIsTm4mhQgSkFyx$c_@j7`7%w2>
zEoRJA7&8^dOobtDK05qKct&I&^&{@OKQkjsVPq+cEQKNe`O)ERaf}%EBjX)rI2DFd
zVc?0QQ=T}c*~EDF_EFi!oKbh(dyL3Y5IG7WM?qXfi1$T^7*ojjfEl?8BUfSMDva60
z_=|XBv_|_-<c*bTe-*26`!^99D|P;zd3nT}5+}!uvVXAVN@zHemy8Q*Bvx}`dilit
zr#L%Sqn#Dr@fz)4qI<kl`?olT+y98iar;sHo$>n|+JD9IXsLEiJcZkj#RpM$-3fwb
zz@<v7^9lJs+{$ZhzB0x6G{sLuW6Z66Dmr5Bmh;S5pfC!Ffl*=<5<|n0oI;^(3i9rz
zgM+<A>=iG@=42<axX=_oj?L*!W^s{1U1Xyc6E%gs#frDs<}D#_Dtk-JV$sPt&NLQF
zNlX_fCymw_ta%d}j^wnwHfR|^GuT^3Uil1`-ZGnaF?nYS&%x4YCMU`*x;zc#n9$)U
z<>hGlCGMki7Uz6cPFC{SDpino7JDlcZ-w-VQwMXLPTqf6V!wFrpb^MsZHbauV&ltC
zOFG@`W!II8x6<a7w=*3sVr~`J8aQM)b6Klq?T$l6U^Z(t3bV$>tR?2f?5$P2wKi`Z
zc`spa9oL$Bz2VeZTguwn>y1DjYs(boG8?m=m@f9#E8cpWcR6|U*}I%;oyPiZ)*4tl
zhuR$0E>CFjq8sjVEHhYaR0=iP3ay|*bJ@Fsp`YGlI15<&9BU;v8vze%D;4HS8*>#g
z=dpK{;$3C)UP0bV*?R@odf;ZmIiIyFS$h@hFJSE|g?W{Yxtf@T>|L#RSKGX6$XmqT
zHC*f3!-jJqYin6Ma@YtgVr`wmTxVmhCuT8w*DK!jHtz=VmaumN*P3<2aF()mHET<c
z7y&P9O$xKg#=M4@W$e91@m^!|ZY1ww_HN`_PhkCW))H?4)5UvO-^Uui(8H0uk;oT%
z(;qyWiCMv3erd;E`O<E>cMEwhWA7HOKX8lTT*8`s(I)>%yW<ukP|4ahWlq~{%obu+
zvA0F>w%EL_<gI3JE7zJkWjJeClds2Q{k2m@pq4fHUJErG$@$CoTGQv$LCiY#$~RRP
zyz))ebnkZZE@kg_u5}vgFJtXm*3O|;&zgMABzr2lwSU=i)~-|PTxYA(Np%|7+iBLh
z)o@<Unta_PndeYzWKF(MLM>i&^tATyvD&08d0%YAA9%I-6NlI+az%^COm{UuI(2fx
cE1H;>JX^%XS#6Ejcl?m!%_H%1$5WI3535zqV*mgE

delta 5792
zcmZ9Q3s@A_702%^?5fMcfJnw=8BqfwEJg$s6(upoVAT2o<*_JHz*SLTg&-gcM3ER@
zD7V^|)#OY2C2bmwZu&~2ZEC+Ssco%&BqnOp+BSWrNm}j0v}(^ib7pq$B%hPq|NZ}e
z=iEE5b^2d%^uO#lT#)z}qkobaD?2mqnj_`zy?gh}KZ{}V?va&O&c?5C@n-i@UgI9a
zPmLN8Ip_8(V}mnA*3A}n);G4cZ*FOB+ryIC`K`mA1J3brjFm=?cn0-InZHqqoXIax
zoO9WL$|5(W<T?4Byv31(qHsJf%*$7@_>sIxk<-QVoufyylkC$j#ymj2n#0%wO2j>{
zMwxJPe3~f6!Z4%2zc*8&V+V7vOunad>a<N=_gO9%bFs_5sA~jc%B7LUm^qTr*B5!e
z)Ssn}guxwH$VvcdY>;Qxr!{FzY>lBh*;uw7MvB7)9vAbWz6umCdx~7EpeZjiNvn{w
zmolqZ980H6JXFZHGJ^axKUuH!?IW#R;*?9Aa*I>WVmakZaQ0KRa;w7%P`vB_kt-x}
z1(HWmrh?CCP;+$4DR>9XIg7U%6fZl(n;LvMLo~bE>S;ChbeI^cv8N;ar3OtOCT)$>
z!5Zvfh~H??l*9aXL$<<sW@D6GX^|@>awU=1Hx>oVE~+eVmE^55ywq!zwUTO3yzD6T
zRW0>ZO?`dTsP&nvsg^j^7N-U|$KZG#uAds<_~1-C@LbnGPa69S&Us)ip6P5H%)4+l
zfXUBNG9V=bW^xT+JuG00)?)N?6s?t_wPqBPwYKD1On#o11bvxbz`Td8wRzT|=Qw{N
zn6ogp;X2e$z){==by!v09(A}~iJ%)JvFMX95}nrxcH~NMv%`_1@HJcJ#HF)woNp<f
z7farN<S${y%{EBu*?{Z$GVwMTz4DZ%)PSf~4_+^8gjr)GZr|svk?2GujX80{ykL#Q
z1^yKniM7;Qr?UYRFZ(JFH2L~og#Q<7Xt3>%sODu~!&x`fjy>g#*zHS{Y_ugeV)7Iv
zH%iHkn0$_s8(I7q>1qjL^faHc)mLq9M$m@egr1iPze&PxLj1FY-(*W}#^f3P>{egq
zS@LYQdA6V@!mmLGCTEMy(}bQ^kl<!bQU^`g!Pkl2WJ_+v<Tv>8ZN9#5l4q;Uvki2O
zeG87_gl+@6#=ec-Bp5m1zDvhFbJDyEPSdO8ZpQ3)tWj*XS<dzWycw<tFMEybEf_v$
zjYQad(6`{#KLh5(mDB=@G#>OV(7XoMkI`%kK0dx{xy)BcD<~Q>$*s7gzUdTdmC&sg
zx)ssl-7EH?7170nZnZAu5Td_Ft`MTlrb7}rWRXLHJk#nrBy}CK(AyFHI-$2C+QZK^
zXZK}Unz+9fz)0-Mc1Rk#(uT?JldH{0S|f4yUZ6~y)l?fU*Ce-LPbRs|BDV|jIQ9dA
zwM*!BT<-<m*P{7MP`d<b7a)G7B}ciy-)*T5q*5ClRvR7I#v8=%!1SAz%Us|NP&D>K
za_zt_%=5X!*mZueRoiTyy&cFg&)yDeIi1M4NSscI(<z<3POHOC>AL7N$UHHm=|3V)
zm$WNg$XUYYhcx94ULDF_VEVezXI?Gch7TCxWOiHiy0P9QVs~S`pYYd1*-Om3awjCk
zT?r3;m=#y+PFSIr{gg62@L!ExwnpN{G9TtWm{s}m?P-1E+0QJGlTBbhhmq)|2Wf&E
zmPlb~ona)Iw`kbvKMegx$zkX)N)B7(Uib|PZT$iYh*x|spv8iWS9~wPG-f`vdjTlk
zZ@KMt{N&-Z1ScS&Q8+pyFSG}g37O;4KrnyA#<Tu}=oqZZrASuCa}M>FU=fQFS&hBL
z-|oy+-X8AqD_3|v9N*zpaD0~!bote*WObtTd49f2SFZ8vUB21ZVMa9U!u6&@YXUg}
zRE_<LQX?=WcE*?!H{f+%(Ct&+<4e1vjFA#U{ASeHuPHT3VvK@~5sYVm@f-eH48tuk
z5|D9&7zq+1ff&g<eadfn{?2G09*H4-a%k*##7LAFiNxp!#_##@7)FxBP?7OIF;t16
z660fF{DFIVqJ1Pwj1*-2kr*iwBZU}`_xO}Q@tzpQXo(@7HyZmhF;XQ)Dlskt<1hS!
zo?_*%JS*&1KHw|h_&44Y_E&#M$+4Imgpv5^G8U4?{b!tgFIM@8yk5!cwRzLg`|)sZ
zvGR953y%Nbt-XHbCO;0xTl`Hp{xfo`_eF>DFaFGve&yf%$4~la|A*KUr4>xX6%4_g
zxFRP?E59G>+~x(le99+$=`P=*{}LlhVq_uXf5ga=7}?0UL%D3s-DUjru8ib+Bu+BL
zYr8VUPb0kIb4WCHE6272laZ>Bce3Q2Z1d)#*FoM~vsm5kjN~{H^GtF7?u=kOiGCEF
zFcRm>Z=;I8Cu+<^-h9cMZ}Uz;?+EfvLGJ~gG@vUZdH#UEY!uB*wJ74Ap9&O>?S-s3
zGgGBqEkL51as@_?pBT{91k$FFc5y%tdPpm@_+mwcwl0g1nMmFu$y;Reiub0*lE^!q
zYAxHNt14+TNbBCC2a`#gDKTf-nBq;Vu@v$aOWtCecNTg_lXn)?x(oGFNt;bt-k=^F
zL)sjPImgB<L1r3xOC)cJ%{v#p_mOul)jBn(s~TzZNV__ymy9K?RAQFem=7Y;OWp?!
zZ=~?4FFMq85+5Sydr#}CkF@!ux%cV84ALH!3O#HqBz~c3OegOG$-BVjeFVMZ$omM@
zI<!w$Gf7)W+N)51JZX<g%tvj^GGtC5Z<*vRvw0VxcOrQgQLWPbx_UopkCC=zzaGpY
zZL!2$Y-27#W;S`3NZutj?^5(mBJWbF^&!;HA?;J7r616PlSx}9F_+nx%aNH&-sO^a
zxy`!*y?NwaLA6dC&{aQaD@nTu_47#+AG|bXKDxvQuh>^jIWnh^SA5ipdc{YrSZ@V-
zA0V&zOa)%P?4YhrC2cin-3Rqx0cql6Qj{q^CdD!<kvWaLm6Es8=B+|+A$hB))?KJy
zM4I?OBznp_qz9*yCO-B=>(|(r0c6e~ulT$Z^#*L-TJ+8&ulSxLYMnZytHq?PCGF}V
zy<`??>m=qn8?z3Xv&k#I)(B?d&^C1rX^)$AhIF-rwDo44A-!ZSY2tfKwD%3RI`vp*
z9(l$081P044_{JvLA>Ye@T|B*@yvY){`7Bjb~yOTqp7^=sAuFVcixrTN$)6pLi`xs
WfAp5Jh(B>`x8tq7kx!1f;{Fd{dVdW7

-- 
2.39.5