From 3bd704c5921cd6fb3d1eaead9fb76817ba7d1208 Mon Sep 17 00:00:00 2001
From: CoderSherlock <haopengzhan@gmail.com>
Date: Fri, 19 Apr 2024 01:14:15 +0000
Subject: [PATCH] Added new post about inotify leaking in kubelet

---
 ...40b622142f1c98125abcfe89a76a661b0e8e343910 |   2 +-
 _config.yml                                   |   4 +-
 _posts/2024-04-11-Debug-kubelet.md            |   2 +-
 ...-04-11-inotify-watcher-leaks-in-kubelet.md | 154 +++++++++++++++-
 _site/404.html                                |  20 +--
 _site/archive.html                            |  59 ++++---
 _site/assets/search.js                        |   2 +-
 _site/feed.xml                                | 166 ++++++++++++++++--
 _site/index.html                              | 139 ++++++++-------
 _site/posts/charles-is-not-a-good-tool.html   |  28 +--
 ...e-train-on-limited-edge-devices-part2.html |  28 +--
 ...w-do-we-train-on-limited-edge-devices.html |  28 +--
 ...enerate-word-cloud-with-chinese-fenci.html |  26 +--
 _site/posts/intro-xv6.html                    |  30 ++--
 .../posts/some-of-my-previews-exper-work.html |  30 ++--
 _site/posts/welcome-to-my-blog.html           |  26 +--
 _site/robots.txt                              |   2 +-
 _site/sitemap.xml                             |  40 +++--
 static/2024-04/kubelet_inotify_leak_logo.png  | Bin 0 -> 59989 bytes
 19 files changed, 549 insertions(+), 237 deletions(-)
 create mode 100644 static/2024-04/kubelet_inotify_leak_logo.png

diff --git a/.jekyll-cache/Jekyll/Cache/Jekyll--Cache/b7/9606fb3afea5bd1609ed40b622142f1c98125abcfe89a76a661b0e8e343910 b/.jekyll-cache/Jekyll/Cache/Jekyll--Cache/b7/9606fb3afea5bd1609ed40b622142f1c98125abcfe89a76a661b0e8e343910
index 34fe350..cde8acd 100644
--- a/.jekyll-cache/Jekyll/Cache/Jekyll--Cache/b7/9606fb3afea5bd1609ed40b622142f1c98125abcfe89a76a661b0e8e343910
+++ b/.jekyll-cache/Jekyll/Cache/Jekyll--Cache/b7/9606fb3afea5bd1609ed40b622142f1c98125abcfe89a76a661b0e8e343910
@@ -1 +1 @@
-I"v{"source"=>"/home/coder/share/CoderSherlock.github.io", "destination"=>"/home/coder/share/CoderSherlock.github.io/_site", "collections_dir"=>"", "cache_dir"=>".jekyll-cache", "plugins_dir"=>"_plugins", "layouts_dir"=>"_layouts", "data_dir"=>"_data", "includes_dir"=>"_includes", "collections"=>{"posts"=>{"output"=>true, "permalink"=>"/posts/:title"}}, "safe"=>false, "include"=>[".htaccess"], "exclude"=>["CHANGELOG.md", "HOW_TO_RELEASE.md", "Gemfile", "Gemfile.lock", "LICENSE", "README-*.md", "README.md", "gulpfile.js", "jekyll-text-theme.gemspec", "package-lock.json", "package.json", "/docs", "/node_modules", "/screenshots", "/test", "/vendor", "configure.sh", ".sass-cache", ".jekyll-cache", "gemfiles", "node_modules", "vendor/bundle/", "vendor/cache/", "vendor/gems/", "vendor/ruby/"], "keep_files"=>[".git", ".svn"], "encoding"=>"utf-8", "markdown_ext"=>"markdown,mkdown,mkdn,mkd,md", "strict_front_matter"=>false, "show_drafts"=>nil, "limit_posts"=>0, "future"=>false, "unpublished"=>false, "whitelist"=>[], "plugins"=>["jekyll-feed", "jekyll-paginate", "jekyll-sitemap", "jemoji", "jekyll-last-modified-at", "jekyll-seo-tag"], "markdown"=>"kramdown", "highlighter"=>"rouge", "lsi"=>false, "excerpt_separator"=>"<!--more-->", "incremental"=>false, "detach"=>false, "port"=>"4000", "host"=>"127.0.0.1", "baseurl"=>"", "show_dir_listing"=>false, "permalink"=>"/posts/:title", "paginate_path"=>"/page:num", "timezone"=>"America/New_York", "quiet"=>false, "verbose"=>false, "defaults"=>[{"scope"=>{"path"=>"", "type"=>"posts"}, "values"=>{"layout"=>"article", "sharing"=>true, "license"=>true, "aside"=>{"toc"=>true}, "show_edit_on_github"=>false, "show_subscribe"=>true, "pageview"=>true}}], "liquid"=>{"error_mode"=>"warn", "strict_filters"=>false, "strict_variables"=>false}, "kramdown"=>{"auto_ids"=>true, "toc_levels"=>[1, 2, 3, 4, 5, 6], "entity_output"=>"as_char", "smart_quotes"=>"lsquo,rsquo,ldquo,rdquo", "input"=>"GFM", "hard_wrap"=>false, "guess_lang"=>true, "footnote_nr"=>1, "show_warnings"=>false}, "text_skin"=>"default", "highlight_theme"=>"default", "url"=>"https://blog.pengzhan.dev", "fakebaseurl"=>"", "title"=>"STSD", "description"=>"My personal blog, some contents are useful, the others are not. Just like my mediocre life.\n", "lang"=>"en", "author"=>{"type"=>nil, "name"=>"Pengzhan Hao", "url"=>nil, "avatar"=>"/static/avatar.jpg", "bio"=>nil, "email"=>"haopengzhan@gmail.com", "facebook"=>nil, "twitter"=>nil, "weibo"=>nil, "googleplus"=>nil, "telegram"=>nil, "medium"=>nil, "zhihu"=>nil, "douban"=>nil, "linkedin"=>"pengzhanhao", "github"=>"codersherlock", "npm"=>nil}, "repository"=>"CoderSherlock/CoderSherlock.github.io", "repository_tree"=>"master", "paths"=>{"root"=>nil, "home"=>nil, "archive"=>nil, "rss"=>nil}, "license"=>nil, "toc"=>{"selectors"=>nil}, "mathjax"=>nil, "mathjax_autoNumber"=>nil, "mermaid"=>nil, "chart"=>nil, "paginate"=>8, "sources"=>nil, "sharing"=>{"provider"=>false, "addthis"=>{"id"=>nil}}, "comments"=>{"provider"=>"disqus", "disqus"=>{"shortname"=>"codersherlockblog"}, "gitalk"=>{"clientID"=>nil, "clientSecret"=>nil, "repository"=>nil, "owner"=>nil, "admin"=>nil}, "valine"=>{"app_id"=>nil, "app_key"=>nil, "placeholder"=>nil, "visitor"=>nil, "meta"=>nil}}, "pageview"=>{"provider"=>false, "leancloud"=>{"app_id"=>nil, "app_key"=>nil, "app_class"=>nil}}, "search"=>{"provider"=>"default", "google"=>{"custom_search_engine_id"=>nil}}, "analytics"=>{"provider"=>"google", "google"=>{"tracking_id"=>"UA-82637164-1", "anonymize_ip"=>false}}, "jekyll_compose"=>{"default_front_matter"=>{"posts"=>{"description"=>nil, "cover"=>nil, "category"=>nil, "tags"=>nil, "published"=>false, "sitemap"=>true, "permalink"=>nil}}}, "serving"=>false}:ET
\ No newline at end of file
+I"€{"source"=>"/home/coder/share/CoderSherlock.github.io", "destination"=>"/home/coder/share/CoderSherlock.github.io/_site", "collections_dir"=>"", "cache_dir"=>".jekyll-cache", "plugins_dir"=>"_plugins", "layouts_dir"=>"_layouts", "data_dir"=>"_data", "includes_dir"=>"_includes", "collections"=>{"posts"=>{"output"=>true, "permalink"=>"/posts/:title"}}, "safe"=>false, "include"=>[".htaccess"], "exclude"=>["CHANGELOG.md", "HOW_TO_RELEASE.md", "Gemfile", "Gemfile.lock", "LICENSE", "README-*.md", "README.md", "gulpfile.js", "jekyll-text-theme.gemspec", "package-lock.json", "package.json", "/docs", "/node_modules", "/screenshots", "/test", "/vendor", "configure.sh", ".sass-cache", ".jekyll-cache", "gemfiles", "node_modules", "vendor/bundle/", "vendor/cache/", "vendor/gems/", "vendor/ruby/"], "keep_files"=>[".git", ".svn"], "encoding"=>"utf-8", "markdown_ext"=>"markdown,mkdown,mkdn,mkd,md", "strict_front_matter"=>false, "show_drafts"=>nil, "limit_posts"=>0, "future"=>false, "unpublished"=>false, "whitelist"=>[], "plugins"=>["jekyll-feed", "jekyll-paginate", "jekyll-sitemap", "jemoji", "jekyll-last-modified-at", "jekyll-seo-tag"], "markdown"=>"kramdown", "highlighter"=>"rouge", "lsi"=>false, "excerpt_separator"=>"<!--more-->", "incremental"=>false, "detach"=>false, "port"=>"4000", "host"=>"127.0.0.1", "baseurl"=>"", "show_dir_listing"=>false, "permalink"=>"/posts/:title", "paginate_path"=>"/page:num", "timezone"=>"America/New_York", "quiet"=>false, "verbose"=>false, "defaults"=>[{"scope"=>{"path"=>"", "type"=>"posts"}, "values"=>{"layout"=>"article", "sharing"=>true, "license"=>true, "aside"=>{"toc"=>true}, "show_edit_on_github"=>false, "show_subscribe"=>true, "pageview"=>true}}], "liquid"=>{"error_mode"=>"warn", "strict_filters"=>false, "strict_variables"=>false}, "kramdown"=>{"auto_ids"=>true, "toc_levels"=>[1, 2, 3, 4, 5, 6], "entity_output"=>"as_char", "smart_quotes"=>"lsquo,rsquo,ldquo,rdquo", "input"=>"GFM", "hard_wrap"=>false, "guess_lang"=>true, "footnote_nr"=>1, "show_warnings"=>false}, "text_skin"=>"default", "highlight_theme"=>"default", "url"=>"https://dev.pengzhan.dev", "fakebaseurl"=>"/proxy/4000", "title"=>"STSD", "description"=>"My personal blog, some contents are useful, the others are not. Just like my mediocre life.\n", "lang"=>"en", "author"=>{"type"=>nil, "name"=>"Pengzhan Hao", "url"=>nil, "avatar"=>"/static/avatar.jpg", "bio"=>nil, "email"=>"haopengzhan@gmail.com", "facebook"=>nil, "twitter"=>nil, "weibo"=>nil, "googleplus"=>nil, "telegram"=>nil, "medium"=>nil, "zhihu"=>nil, "douban"=>nil, "linkedin"=>"pengzhanhao", "github"=>"codersherlock", "npm"=>nil}, "repository"=>"CoderSherlock/CoderSherlock.github.io", "repository_tree"=>"master", "paths"=>{"root"=>nil, "home"=>nil, "archive"=>nil, "rss"=>nil}, "license"=>nil, "toc"=>{"selectors"=>nil}, "mathjax"=>nil, "mathjax_autoNumber"=>nil, "mermaid"=>nil, "chart"=>nil, "paginate"=>8, "sources"=>nil, "sharing"=>{"provider"=>false, "addthis"=>{"id"=>nil}}, "comments"=>{"provider"=>"disqus", "disqus"=>{"shortname"=>"codersherlockblog"}, "gitalk"=>{"clientID"=>nil, "clientSecret"=>nil, "repository"=>nil, "owner"=>nil, "admin"=>nil}, "valine"=>{"app_id"=>nil, "app_key"=>nil, "placeholder"=>nil, "visitor"=>nil, "meta"=>nil}}, "pageview"=>{"provider"=>false, "leancloud"=>{"app_id"=>nil, "app_key"=>nil, "app_class"=>nil}}, "search"=>{"provider"=>"default", "google"=>{"custom_search_engine_id"=>nil}}, "analytics"=>{"provider"=>"google", "google"=>{"tracking_id"=>"UA-82637164-1", "anonymize_ip"=>false}}, "jekyll_compose"=>{"default_front_matter"=>{"posts"=>{"description"=>nil, "cover"=>nil, "category"=>nil, "tags"=>nil, "published"=>false, "sitemap"=>true, "permalink"=>nil}}}, "serving"=>false}:ET
\ No newline at end of file
diff --git a/_config.yml b/_config.yml
index 9a54ca0..d644fb7 100644
--- a/_config.yml
+++ b/_config.yml
@@ -18,9 +18,9 @@
 ##############################
 text_skin: default # "default" (default), "dark", "forest", "ocean", "chocolate", "orange"
 highlight_theme: default # "default" (default), "tomorrow", "tomorrow-night", "tomorrow-night-eighties", "tomorrow-night-blue", "tomorrow-night-bright"
-url     : "https://blog.pengzhan.dev"  # "https://dev.pengzhan.dev"
+url     : "https://dev.pengzhan.dev"
 baseurl : ""
-fakebaseurl: "" # "/proxy/4000"
+fakebaseurl: "/proxy/4000"
 title   : "STSD"
 description: > # this means to ignore newlines until "Language & timezone"
     My personal blog, some contents are useful, the others are not. Just like my mediocre life.
diff --git a/_posts/2024-04-11-Debug-kubelet.md b/_posts/2024-04-11-Debug-kubelet.md
index 91a0347..3bfbd5e 100644
--- a/_posts/2024-04-11-Debug-kubelet.md
+++ b/_posts/2024-04-11-Debug-kubelet.md
@@ -27,4 +27,4 @@ TL;DR: Bumping up to level 5 would satisfy most debugging needs.
 By the time, this note was written. In `kubelet` related code, level 8 was only used in `pkg/kubelet/prober/prober_manager.go` and level 7 was only used in `pkg/kubelet/logs/container_log_manager.go`.  And there are  11 occurrences that level 6 was used, and all of them are not part of workload lifecycle related.
 
 ## Further readings
-[Inotify watcher leaks in Kubelet]
\ No newline at end of file
+[Inotify watcher leaks in Kubelet](/posts/inotify-watcher-leaks-in-kubelet.html)
\ No newline at end of file
diff --git a/_posts/2024-04-11-inotify-watcher-leaks-in-kubelet.md b/_posts/2024-04-11-inotify-watcher-leaks-in-kubelet.md
index f3a5520..3af5be2 100644
--- a/_posts/2024-04-11-inotify-watcher-leaks-in-kubelet.md
+++ b/_posts/2024-04-11-inotify-watcher-leaks-in-kubelet.md
@@ -1,12 +1,156 @@
 ---
-layout: post
 title: Inotify watcher leaks in Kubelet
-date: 2024-04-11 16:35 -0400
+date: 2024-04-18 16:35 -0400
 description: 
-cover: 
+cover: '/static/2024-04/kubelet_inotify_leak_logo.png'
 category: 
-tags: 
-published: false
+tags: ["Kubernetes", "Kubelet", "Debug", "Inotify"]
+published: true
 sitemap: true
 permalink: 
+author: Pengzhan Hao
 ---
+
+## Symptom
+Recently, I faced an issue where Kubelet on a node reported error message failed to create file descriptors.
+
+```bash
+error creating file watcher: too many open files
+error creating file watcher: no space left on device
+```
+
+After short checking, I found the node has `max_user_watches` of 10000, but the `TotalinotifyWatches` is beyond this value. (P. S still not sure why watcher can initiate more than cap). In order to find which process occupied the most watchers. I used following command[^flbit_ino] to find it out.
+
+```bash
+echo -e "COUNT\tPID\tUSER\tCOMMAND"; sudo find /proc/[0-9]*/fdinfo -type f 2>/dev/null | sudo xargs grep ^inotify 2>/dev/null | cut -d/ -f 3 | uniq -c | sort -nr | { while read -rs COUNT PID; do echo -en "$COUNT\t$PID\t"; ps -p $PID -o user=,command=; done}
+
+COUNT	PID	USER	COMMAND
+7491	8412	root /home/kubernetes/bin/kubelet --v=2 --cloud-provide=gce --experi
+2620	1	root /sbin/init
+....
+```
+
+Surprisingly, Kubelet initiated more than 7000 inotify watchers. I assumed there was an inotify leakage in Kubelet.
+## Leakage check
+
+### Clean Kubelet
+To better understand the situation, I created a clean cluster with only 1 clean node on GKE. Roughly 70 inotify watchers were there. I created a single nginx pod and the number increased by 3. Theoretically, these 3 watchers are used by Kubelet to monitor any changes on `rootfs `, `kube-api-access` and `PodSandbox`. But to verify it, we need to check more details on which inodes are monitored by Kubelet. 
+### Check inotify file descriptors
+To do so, let's take a look how to track a single inotify file descriptor. Opened processes' `fdinfo` folder, we can examine each or them to find an inotify fd. 
+
+```bash
+# Find kubelet pid
+ps -aux | grep kubelet
+KPID=2430
+
+# File the an example fd
+sudo ls /proc/2430/fdinfo
+
+0 1 10 11 12 13 14 2 3 4 5 6 7 8 9
+
+...
+
+sudo cat /proc/2430/fdinfo/8
+
+pos:	0
+flags:	02004000
+mnt_id:	15
+ino:	1057
+inotify wd:1 ino:3f327 sdev:800001 mask:fc6 ignored_mask:0 fhandle-bytes:8 fhandle-type:1 f_handle:27f30300e5059ea2
+```
+
+This is very confusing, so I rely on `man proc`[^man_proc] to understand every piece of them. In given fd, the needed information to continue sit in the last line. It's an inotify entry represents the 1 file or folder to be monitored. And the most useful data is `ino:3f327` which represents the inode number of target file (in hexadecimal). And `sdev:800001`, which represents the ID of device where the inode sit on, and it's also in hex.
+
+Using `lsblk`, I can see there's only 1 disk I'm using on the node, so finding the target file would be easy.
+
+```bash
+# Cast to decimal
+ino=3f327
+dec="$((16#${ino}))"
+
+# Find the target file
+loc="debugfs -R 'ncheck ${dec}' /dev/sda1"
+sudo eval $loc 2>/dev/null
+
+debugfd 1.46.5 (30-Dec-2021)
+Inode	Pathname
+258855	/etc/srv/kubernetes/pki/ca-certificates.crt
+```
+
+Put all processes above into one single script, I can retrieve all target files, that would help to understand if there's a real leakage. Also, I count the unique inode amount, this could also help to know which inode are monitored multiple times.
+
+```bash
+cat << EOF | sudo tee -a test.sh
+echo "kubelet pid="${PID}
+in_fds=$(find /proc/${PID}/fdinfo -type f 2>/dev/null | xargs grep ^inotify | cut -d " " -f 3 | cut -d ":" -f 2)
+echo ${in_fds}
+echo "Count: $(find /proc/${PID}/fdinfo -type f 2>/dev/null | xargs grep ^inotify | wc -l)"
+
+uniq_fds=$(echo "${in_fds[@]}" | sort | uniq)
+echo ${uniq_fds}
+
+while read -r element;
+do
+  count=$(echo "${in_fds[@]}" | grep -o "${element}" | wc -l)
+  dec="$((16#${element}))"
+  loc="debugfs -R 'ncheck ${dec}' /dev/sda1"
+  loc=$(eval $loc 2>/dev/null | tail -1 | cut -d " " -f 4)
+  printf "%-6s %-10s %-6s %s\n" "${element}" "${dec}" "${count}" "${loc}"
+done <<< "${uniq_fds}"
+EOF
+
+sudo bash test.sh
+
+kubelet pid=2430
+3f327 3f321 ...
+Count: 120
+1 10b 1259 128a ...
+1	1	72	Inode	Pathname
+10b	267	1	267	/etc/systemd/system/multi-user.target.wants/snapd.service
+...
+```
+
+The given results are consists by following parts:
+- One line for get Kubelet pid
+- One line for all target inode numbers
+- One line for tell how many unique inode (120)
+- One line of sorted target
+- Following 120 lines, each of them represents a unique inode number, its decimal number, count, another time of decimal number and the target file path.
+
+I used the same script to the problematic node, and it showed the following result. In summary, most Kubelet watchers were targeting `ino:1 `. And there are 6649 targets files, which likely to be leakage, because there were only 150 pods on this pod. Unfortunately, `debugfs` can't find any target files, so the output showed as meaningless string `"Inode Pathname"`.
+
+```
+kubelet pid=8412
+...
+Count: 7491
+...
+1	1	6649	Inode Pathname
+```
+
+### Bad apple
+Why `debugfs` can't help anymore? The reason is simple, each cgroup for a pod is using its own rootfs. This means the watcher are somehow residing on different rootfs and using independent inode index.  There are some other ways to do it, I choose the most common tool `grep` to find out.
+
+```
+sudo grep / -inum 1
+/home/kubernetes/containerized_mounter/rootfs/dev
+/home/kubernetes/containerized_mounter/rootfs/proc
+...
+/home/kubernetes/containerized_mounter/rootfs/var/lib/kubelet/pods/5325873d-f2a0-48df-83e2-0b911df2f77f/volumes/kubernetes.io~projected/kube-api-access-227jg
+...
+/dev
+/boot/efi
+...
+```
+
+This turns things easy, because I can just use pod ID to compare between running pods to find out if there are any terminated pods are there. And it did show there's some non-existence pods still being watched somehow.
+
+## What to expect next
+
+- [How Kubelet leaked inotify watchers?]()
+- [debugfs]()
+
+## References
+
+[^flbit_ino]: [Fluentbit error "cannot adjust chunk size" on GKE](https://stackoverflow.com/a/76712244)
+[^man_proc]: [proc(5)](https://manpages.courier-mta.org/htmlman5/proc.5.html)
+[^list_ino]: [Listing the files that are being watched by `inotify` instances](https://unix.stackexchange.com/a/646113)
\ No newline at end of file
diff --git a/_site/404.html b/_site/404.html
index 0a1c79e..80f9437 100644
--- a/_site/404.html
+++ b/_site/404.html
@@ -5,7 +5,7 @@
 
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
 ">
-<link rel="canonical" href="https://blog.pengzhan.dev/404.html"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/404.html"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -14,7 +14,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -27,14 +27,14 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
 <meta property="og:description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
-<link rel="canonical" href="https://blog.pengzhan.dev/404.html" />
-<meta property="og:url" content="https://blog.pengzhan.dev/404.html" />
+<link rel="canonical" href="https://dev.pengzhan.dev/404.html" />
+<meta property="og:url" content="https://dev.pengzhan.dev/404.html" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="website" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="Page Not Found" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"WebPage","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-10-25T14:53:15-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"Page Not Found","url":"https://blog.pengzhan.dev/404.html"}</script>
+{"@context":"https://schema.org","@type":"WebPage","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-10-25T14:53:15-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"Page Not Found","url":"https://dev.pengzhan.dev/404.html"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -446,7 +446,7 @@
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/archive.html b/_site/archive.html
index 127c65b..6d378d0 100644
--- a/_site/archive.html
+++ b/_site/archive.html
@@ -5,7 +5,7 @@
 
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
 ">
-<link rel="canonical" href="https://blog.pengzhan.dev/archive"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/archive"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -14,7 +14,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -27,14 +27,14 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
 <meta property="og:description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
-<link rel="canonical" href="https://blog.pengzhan.dev/archive" />
-<meta property="og:url" content="https://blog.pengzhan.dev/archive" />
+<link rel="canonical" href="https://dev.pengzhan.dev/archive" />
+<meta property="og:url" content="https://dev.pengzhan.dev/archive" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="website" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="STSD" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"WebPage","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-10-25T14:53:15-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"STSD","url":"https://blog.pengzhan.dev/archive"}</script>
+{"@context":"https://schema.org","@type":"WebPage","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-10-25T14:53:15-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"STSD","url":"https://dev.pengzhan.dev/archive"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -442,7 +442,7 @@
   <ul class="menu">
     <li>
       <button type="button" class="button button--secondary button--pill tag-button tag-button--all" data-encode="">
-        Show All<div class="tag-button__count">9</div>
+        Show All<div class="tag-button__count">10</div>
       </button>
     </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Binghamton+university">
           <span>Binghamton university</span><div class="tag-button__count">1</div>
@@ -450,8 +450,8 @@
       </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Charles+proxy">
           <span>Charles proxy</span><div class="tag-button__count">1</div>
         </button>
-      </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Debug">
-          <span>Debug</span><div class="tag-button__count">1</div>
+      </li><li><button type="button" class="button button--pill tag-button tag-button-2" data-encode="Debug">
+          <span>Debug</span><div class="tag-button__count">2</div>
         </button>
       </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Diary">
           <span>Diary</span><div class="tag-button__count">1</div>
@@ -459,11 +459,14 @@
       </li><li><button type="button" class="button button--pill tag-button tag-button-2" data-encode="Edge+computing">
           <span>Edge computing</span><div class="tag-button__count">2</div>
         </button>
-      </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Kubelet">
-          <span>Kubelet</span><div class="tag-button__count">1</div>
+      </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Inotify">
+          <span>Inotify</span><div class="tag-button__count">1</div>
         </button>
-      </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Kubernetes">
-          <span>Kubernetes</span><div class="tag-button__count">1</div>
+      </li><li><button type="button" class="button button--pill tag-button tag-button-2" data-encode="Kubelet">
+          <span>Kubelet</span><div class="tag-button__count">2</div>
+        </button>
+      </li><li><button type="button" class="button button--pill tag-button tag-button-2" data-encode="Kubernetes">
+          <span>Kubernetes</span><div class="tag-button__count">2</div>
         </button>
       </li><li><button type="button" class="button button--pill tag-button tag-button-1" data-encode="Log">
           <span>Log</span><div class="tag-button__count">1</div>
@@ -491,24 +494,26 @@
         </button>
       </li></ul>
 </div>
-<div class="js-result layout--archive__result d-none"><div class="article-list items"><section><h2 class="article-list__group-header">2024</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Kubernetes,Kubelet,Debug">
-        <div class="item__content"><span class="item__meta">Apr 10</span><a itemprop="headline" class="item__header" href="/posts/Debug-kubelet">Debug Kubelet</a></div>
+<div class="js-result layout--archive__result d-none"><div class="article-list items"><section><h2 class="article-list__group-header">2024</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Kubernetes,Kubelet,Debug,Inotify">
+        <div class="item__content"><span class="item__meta">Apr 18</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/inotify-watcher-leaks-in-kubelet">Inotify watcher leaks in Kubelet</a></div>
+      </li><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Kubernetes,Kubelet,Debug">
+        <div class="item__content"><span class="item__meta">Apr 10</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/Debug-kubelet">Debug Kubelet</a></div>
       </li></ul></section><section><h2 class="article-list__group-header">2022</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Xv6,Teaching,Operating+system,Binghamton+university">
-        <div class="item__content"><span class="item__meta">Feb 22</span><a itemprop="headline" class="item__header" href="/posts/cs350-labs">Labs of CS350</a></div>
+        <div class="item__content"><span class="item__meta">Feb 22</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/cs350-labs">Labs of CS350</a></div>
       </li></ul></section><section><h2 class="article-list__group-header">2021</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Research,Edge+computing">
-        <div class="item__content"><span class="item__meta">Oct 31</span><a itemprop="headline" class="item__header" href="/posts/eddl-how-do-we-train-on-limited-edge-devices-part2">EDDL: How do we train neural networks on limited edge devices - PART 2</a></div>
+        <div class="item__content"><span class="item__meta">Oct 31</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices-part2">EDDL: How do we train neural networks on limited edge devices - PART 2</a></div>
       </li><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Research,Edge+computing">
-        <div class="item__content"><span class="item__meta">Oct 13</span><a itemprop="headline" class="item__header" href="/posts/eddl-how-do-we-train-on-limited-edge-devices">EDDL: How do we train neural networks on limited edge devices - PART 1</a></div>
+        <div class="item__content"><span class="item__meta">Oct 13</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices">EDDL: How do we train neural networks on limited edge devices - PART 1</a></div>
       </li></ul></section><section><h2 class="article-list__group-header">2020</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Visualization">
-        <div class="item__content"><span class="item__meta">Sep 15</span><a itemprop="headline" class="item__header" href="/posts/generate-word-cloud-with-chinese-fenci">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</a></div>
+        <div class="item__content"><span class="item__meta">Sep 15</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/generate-word-cloud-with-chinese-fenci">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</a></div>
       </li></ul></section><section><h2 class="article-list__group-header">2017</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Xv6,Teaching,Operating+system">
-        <div class="item__content"><span class="item__meta">Jul 28</span><a itemprop="headline" class="item__header" href="/posts/intro-xv6">Xv6 introduction</a></div>
+        <div class="item__content"><span class="item__meta">Jul 28</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/intro-xv6">Xv6 introduction</a></div>
       </li></ul></section><section><h2 class="article-list__group-header">2016</h2><ul class="items"><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Research,Log,Miscellanies">
-        <div class="item__content"><span class="item__meta">Oct 28</span><a itemprop="headline" class="item__header" href="/posts/some-of-my-previews-exper-work">Some of my previews experiment works: 2016</a></div>
+        <div class="item__content"><span class="item__meta">Oct 28</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/some-of-my-previews-exper-work">Some of my previews experiment works: 2016</a></div>
       </li><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Network,Charles+proxy">
-        <div class="item__content"><span class="item__meta">Oct 27</span><a itemprop="headline" class="item__header" href="/posts/charles-is-not-a-good-tool">Using charles proxy to monitor mobile SSL traffics</a></div>
+        <div class="item__content"><span class="item__meta">Oct 27</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/charles-is-not-a-good-tool">Using charles proxy to monitor mobile SSL traffics</a></div>
       </li><li class="item" itemscope itemtype="http://schema.org/BlogPosting" data-tags="Diary">
-        <div class="item__content"><span class="item__meta">Oct 26</span><a itemprop="headline" class="item__header" href="/posts/welcome-to-my-blog">STSD: Stop Talking Start Doing</a></div>
+        <div class="item__content"><span class="item__meta">Oct 26</span><a itemprop="headline" class="item__header" href="/proxy/4000/posts/welcome-to-my-blog">STSD: Stop Talking Start Doing</a></div>
       </li></div>
 </div>
 </div>
@@ -658,7 +663,7 @@
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/assets/search.js b/_site/assets/search.js
index 796be97..ff92cac 100644
--- a/_site/assets/search.js
+++ b/_site/assets/search.js
@@ -1 +1 @@
-window.TEXT_SEARCH_DATA={'posts':[{'title':"STSD: Stop Talking Start Doing",'url':"/posts/welcome-to-my-blog"},{'title':"Using charles proxy to monitor mobile SSL traffics",'url':"/posts/charles-is-not-a-good-tool"},{'title':"Some of my previews experiment works: 2016",'url':"/posts/some-of-my-previews-exper-work"},{'title':"Xv6 introduction",'url':"/posts/intro-xv6"},{'title':"Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries",'url':"/posts/generate-word-cloud-with-chinese-fenci"},{'title':"EDDL: How do we train neural networks on limited edge devices - PART 1",'url':"/posts/eddl-how-do-we-train-on-limited-edge-devices"},{'title':"EDDL: How do we train neural networks on limited edge devices - PART 2",'url':"/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"},{'title':"Labs of CS350",'url':"/posts/cs350-labs"},{'title':"Debug Kubelet",'url':"/posts/Debug-kubelet"}]};
+window.TEXT_SEARCH_DATA={'posts':[{'title':"STSD: Stop Talking Start Doing",'url':"/proxy/4000/posts/welcome-to-my-blog"},{'title':"Using charles proxy to monitor mobile SSL traffics",'url':"/proxy/4000/posts/charles-is-not-a-good-tool"},{'title':"Some of my previews experiment works: 2016",'url':"/proxy/4000/posts/some-of-my-previews-exper-work"},{'title':"Xv6 introduction",'url':"/proxy/4000/posts/intro-xv6"},{'title':"Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries",'url':"/proxy/4000/posts/generate-word-cloud-with-chinese-fenci"},{'title':"EDDL: How do we train neural networks on limited edge devices - PART 1",'url':"/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices"},{'title':"EDDL: How do we train neural networks on limited edge devices - PART 2",'url':"/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"},{'title':"Labs of CS350",'url':"/proxy/4000/posts/cs350-labs"},{'title':"Debug Kubelet",'url':"/proxy/4000/posts/Debug-kubelet"},{'title':"Inotify watcher leaks in Kubelet",'url':"/proxy/4000/posts/inotify-watcher-leaks-in-kubelet"}]};
diff --git a/_site/feed.xml b/_site/feed.xml
index 09ff5cf..d749886 100644
--- a/_site/feed.xml
+++ b/_site/feed.xml
@@ -1,5 +1,151 @@
-<?xml version="1.0" encoding="utf-8"?><feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en"><generator uri="https://jekyllrb.com/" version="4.2.2">Jekyll</generator><link href="https://blog.pengzhan.dev/feed.xml" rel="self" type="application/atom+xml" /><link href="https://blog.pengzhan.dev/" rel="alternate" type="text/html" hreflang="en" /><updated>2024-04-13T17:17:15-04:00</updated><id>https://blog.pengzhan.dev/feed.xml</id><title type="html">STSD</title><subtitle>My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-</subtitle><author><name>Pengzhan Hao</name><email>haopengzhan@gmail.com</email></author><entry><title type="html">Debug Kubelet</title><link href="https://blog.pengzhan.dev/posts/Debug-kubelet" rel="alternate" type="text/html" title="Debug Kubelet" /><published>2024-04-10T03:34:00-04:00</published><updated>2024-04-10T23:51:19-04:00</updated><id>https://blog.pengzhan.dev/posts/Debug-kubelet</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/Debug-kubelet"><![CDATA[<h2 id="debug-logs">Debug logs</h2>
+<?xml version="1.0" encoding="utf-8"?><feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en"><generator uri="https://jekyllrb.com/" version="4.2.2">Jekyll</generator><link href="https://dev.pengzhan.dev/feed.xml" rel="self" type="application/atom+xml" /><link href="https://dev.pengzhan.dev/" rel="alternate" type="text/html" hreflang="en" /><updated>2024-04-18T21:14:05-04:00</updated><id>https://dev.pengzhan.dev/feed.xml</id><title type="html">STSD</title><subtitle>My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+</subtitle><author><name>Pengzhan Hao</name><email>haopengzhan@gmail.com</email></author><entry><title type="html">Inotify watcher leaks in Kubelet</title><link href="https://dev.pengzhan.dev/posts/inotify-watcher-leaks-in-kubelet" rel="alternate" type="text/html" title="Inotify watcher leaks in Kubelet" /><published>2024-04-18T16:35:00-04:00</published><updated>2024-04-11T16:57:07-04:00</updated><id>https://dev.pengzhan.dev/posts/inotify-watcher-leaks-in-kubelet</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/inotify-watcher-leaks-in-kubelet"><![CDATA[<h2 id="symptom">Symptom</h2>
+<p>Recently, I faced an issue where Kubelet on a node reported error message failed to create file descriptors.</p>
+
+<div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code>error creating file watcher: too many open files
+error creating file watcher: no space left on device
+</code></pre></div></div>
+
+<p>After short checking, I found the node has <code class="language-plaintext highlighter-rouge">max_user_watches</code> of 10000, but the <code class="language-plaintext highlighter-rouge">TotalinotifyWatches</code> is beyond this value. (P. S still not sure why watcher can initiate more than cap). In order to find which process occupied the most watchers. I used following command<sup id="fnref:flbit_ino" role="doc-noteref"><a href="#fn:flbit_ino" class="footnote" rel="footnote">1</a></sup> to find it out.</p>
+
+<div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="nb">echo</span> <span class="nt">-e</span> <span class="s2">"COUNT</span><span class="se">\t</span><span class="s2">PID</span><span class="se">\t</span><span class="s2">USER</span><span class="se">\t</span><span class="s2">COMMAND"</span><span class="p">;</span> <span class="nb">sudo </span>find /proc/[0-9]<span class="k">*</span>/fdinfo <span class="nt">-type</span> f 2&gt;/dev/null | <span class="nb">sudo </span>xargs <span class="nb">grep</span> ^inotify 2&gt;/dev/null | <span class="nb">cut</span> <span class="nt">-d</span>/ <span class="nt">-f</span> 3 | <span class="nb">uniq</span> <span class="nt">-c</span> | <span class="nb">sort</span> <span class="nt">-nr</span> | <span class="o">{</span> <span class="k">while </span><span class="nb">read</span> <span class="nt">-rs</span> COUNT PID<span class="p">;</span> <span class="k">do </span><span class="nb">echo</span> <span class="nt">-en</span> <span class="s2">"</span><span class="nv">$COUNT</span><span class="se">\t</span><span class="nv">$PID</span><span class="se">\t</span><span class="s2">"</span><span class="p">;</span> ps <span class="nt">-p</span> <span class="nv">$PID</span> <span class="nt">-o</span> <span class="nv">user</span><span class="o">=</span>,command<span class="o">=</span><span class="p">;</span> <span class="k">done</span><span class="o">}</span>
+
+COUNT	PID	USER	COMMAND
+7491	8412	root /home/kubernetes/bin/kubelet <span class="nt">--v</span><span class="o">=</span>2 <span class="nt">--cloud-provide</span><span class="o">=</span>gce <span class="nt">--experi</span>
+2620	1	root /sbin/init
+....
+</code></pre></div></div>
+
+<p>Surprisingly, Kubelet initiated more than 7000 inotify watchers. I assumed there was an inotify leakage in Kubelet.</p>
+<h2 id="leakage-check">Leakage check</h2>
+
+<h3 id="clean-kubelet">Clean Kubelet</h3>
+<p>To better understand the situation, I created a clean cluster with only 1 clean node on GKE. Roughly 70 inotify watchers were there. I created a single nginx pod and the number increased by 3. Theoretically, these 3 watchers are used by Kubelet to monitor any changes on <code class="language-plaintext highlighter-rouge">rootfs </code>, <code class="language-plaintext highlighter-rouge">kube-api-access</code> and <code class="language-plaintext highlighter-rouge">PodSandbox</code>. But to verify it, we need to check more details on which inodes are monitored by Kubelet.</p>
+<h3 id="check-inotify-file-descriptors">Check inotify file descriptors</h3>
+<p>To do so, let’s take a look how to track a single inotify file descriptor. Opened processes’ <code class="language-plaintext highlighter-rouge">fdinfo</code> folder, we can examine each or them to find an inotify fd.</p>
+
+<div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="c"># Find kubelet pid</span>
+ps <span class="nt">-aux</span> | <span class="nb">grep </span>kubelet
+<span class="nv">KPID</span><span class="o">=</span>2430
+
+<span class="c"># File the an example fd</span>
+<span class="nb">sudo ls</span> /proc/2430/fdinfo
+
+0 1 10 11 12 13 14 2 3 4 5 6 7 8 9
+
+...
+
+<span class="nb">sudo cat</span> /proc/2430/fdinfo/8
+
+pos:	0
+flags:	02004000
+mnt_id:	15
+ino:	1057
+inotify wd:1 ino:3f327 sdev:800001 mask:fc6 ignored_mask:0 fhandle-bytes:8 fhandle-type:1 f_handle:27f30300e5059ea2
+</code></pre></div></div>
+
+<p>This is very confusing, so I rely on <code class="language-plaintext highlighter-rouge">man proc</code><sup id="fnref:man_proc" role="doc-noteref"><a href="#fn:man_proc" class="footnote" rel="footnote">2</a></sup> to understand every piece of them. In given fd, the needed information to continue sit in the last line. It’s an inotify entry represents the 1 file or folder to be monitored. And the most useful data is <code class="language-plaintext highlighter-rouge">ino:3f327</code> which represents the inode number of target file (in hexadecimal). And <code class="language-plaintext highlighter-rouge">sdev:800001</code>, which represents the ID of device where the inode sit on, and it’s also in hex.</p>
+
+<p>Using <code class="language-plaintext highlighter-rouge">lsblk</code>, I can see there’s only 1 disk I’m using on the node, so finding the target file would be easy.</p>
+
+<div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="c"># Cast to decimal</span>
+<span class="nv">ino</span><span class="o">=</span>3f327
+<span class="nv">dec</span><span class="o">=</span><span class="s2">"</span><span class="k">$((</span><span class="m">16</span><span class="c">#${ino}))"</span>
+
+<span class="c"># Find the target file</span>
+<span class="nv">loc</span><span class="o">=</span><span class="s2">"debugfs -R 'ncheck </span><span class="k">${</span><span class="nv">dec</span><span class="k">}</span><span class="s2">' /dev/sda1"</span>
+<span class="nb">sudo eval</span> <span class="nv">$loc</span> <span class="m">2</span><span class="o">&gt;/</span>dev/null
+
+debugfd <span class="m">1</span>.46.5 <span class="o">(</span><span class="m">30</span><span class="o">-</span>Dec-2021<span class="o">)</span>
+Inode	Pathname
+<span class="m">258855</span>	<span class="o">/</span>etc/srv/kubernetes/pki/ca-certificates.crt
+</code></pre></div></div>
+
+<p>Put all processes above into one single script, I can retrieve all target files, that would help to understand if there’s a real leakage. Also, I count the unique inode amount, this could also help to know which inode are monitored multiple times.</p>
+
+<div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code><span class="nb">cat</span> <span class="o">&lt;&lt;</span> <span class="no">EOF</span><span class="sh"> | sudo tee -a test.sh
+echo "kubelet pid="</span><span class="k">${</span><span class="nv">PID</span><span class="k">}</span><span class="sh">
+in_fds=</span><span class="si">$(</span>find /proc/<span class="k">${</span><span class="nv">PID</span><span class="k">}</span>/fdinfo <span class="nt">-type</span> f 2&gt;/dev/null | xargs <span class="nb">grep</span> ^inotify | <span class="nb">cut</span> <span class="nt">-d</span> <span class="s2">" "</span> <span class="nt">-f</span> 3 | <span class="nb">cut</span> <span class="nt">-d</span> <span class="s2">":"</span> <span class="nt">-f</span> 2<span class="si">)</span><span class="sh">
+echo </span><span class="k">${</span><span class="nv">in_fds</span><span class="k">}</span><span class="sh">
+echo "Count: </span><span class="si">$(</span>find /proc/<span class="k">${</span><span class="nv">PID</span><span class="k">}</span>/fdinfo <span class="nt">-type</span> f 2&gt;/dev/null | xargs <span class="nb">grep</span> ^inotify | <span class="nb">wc</span> <span class="nt">-l</span><span class="si">)</span><span class="sh">"
+
+uniq_fds=</span><span class="si">$(</span><span class="nb">echo</span> <span class="s2">"</span><span class="k">${</span><span class="nv">in_fds</span><span class="p">[@]</span><span class="k">}</span><span class="s2">"</span> | <span class="nb">sort</span> | <span class="nb">uniq</span><span class="si">)</span><span class="sh">
+echo </span><span class="k">${</span><span class="nv">uniq_fds</span><span class="k">}</span><span class="sh">
+
+while read -r element;
+do
+  count=</span><span class="si">$(</span><span class="nb">echo</span> <span class="s2">"</span><span class="k">${</span><span class="nv">in_fds</span><span class="p">[@]</span><span class="k">}</span><span class="s2">"</span> | <span class="nb">grep</span> <span class="nt">-o</span> <span class="s2">"</span><span class="k">${</span><span class="nv">element</span><span class="k">}</span><span class="s2">"</span> | <span class="nb">wc</span> <span class="nt">-l</span><span class="si">)</span><span class="sh">
+  dec="</span><span class="k">$((</span><span class="m">16</span><span class="c">#${element}))"</span>
+  <span class="nv">loc</span><span class="o">=</span><span class="s2">"debugfs -R 'ncheck </span><span class="k">${</span><span class="nv">dec</span><span class="k">}</span><span class="s2">' /dev/sda1"</span>
+  <span class="nv">loc</span><span class="o">=</span><span class="si">$(</span><span class="nb">eval</span> <span class="nv">$loc</span> 2&gt;/dev/null | <span class="nb">tail</span> <span class="nt">-1</span> | <span class="nb">cut</span> <span class="nt">-d</span> <span class="s2">" "</span> <span class="nt">-f</span> 4<span class="si">)</span>
+  <span class="nb">printf</span> <span class="s2">"%-6s %-10s %-6s %s</span><span class="se">\n</span><span class="s2">"</span> <span class="s2">"</span><span class="k">${</span><span class="nv">element</span><span class="k">}</span><span class="s2">"</span> <span class="s2">"</span><span class="k">${</span><span class="nv">dec</span><span class="k">}</span><span class="s2">"</span> <span class="s2">"</span><span class="k">${</span><span class="nv">count</span><span class="k">}</span><span class="s2">"</span> <span class="s2">"</span><span class="k">${</span><span class="nv">loc</span><span class="k">}</span><span class="s2">"</span>
+<span class="k">done</span> <span class="o">&lt;&lt;&lt;</span> <span class="s2">"</span><span class="k">${</span><span class="nv">uniq_fds</span><span class="k">}</span><span class="s2">"</span>
+EOF
+
+<span class="nb">sudo </span>bash test.sh
+
+kubelet <span class="nv">pid</span><span class="o">=</span><span class="m">2430</span>
+<span class="m">3</span>f327 <span class="m">3</span>f321 ...
+Count: <span class="m">120</span>
+<span class="m">1</span> <span class="m">10</span>b <span class="m">1259</span> <span class="m">128</span>a ...
+<span class="m">1</span>	<span class="m">1</span>	<span class="m">72</span>	Inode	Pathname
+<span class="m">10</span>b	<span class="m">267</span>	<span class="m">1</span>	<span class="m">267</span>	<span class="o">/</span>etc/systemd/system/multi-user.target.wants/snapd.service
+...
+</code></pre></div></div>
+
+<p>The given results are consists by following parts:</p>
+<ul>
+  <li>One line for get Kubelet pid</li>
+  <li>One line for all target inode numbers</li>
+  <li>One line for tell how many unique inode (120)</li>
+  <li>One line of sorted target</li>
+  <li>Following 120 lines, each of them represents a unique inode number, its decimal number, count, another time of decimal number and the target file path.</li>
+</ul>
+
+<p>I used the same script to the problematic node, and it showed the following result. In summary, most Kubelet watchers were targeting <code class="language-plaintext highlighter-rouge">ino:1 </code>. And there are 6649 targets files, which likely to be leakage, because there were only 150 pods on this pod. Unfortunately, <code class="language-plaintext highlighter-rouge">debugfs</code> can’t find any target files, so the output showed as meaningless string <code class="language-plaintext highlighter-rouge">"Inode Pathname"</code>.</p>
+
+<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>kubelet pid=8412
+...
+Count: 7491
+...
+1	1	6649	Inode Pathname
+</code></pre></div></div>
+
+<h3 id="bad-apple">Bad apple</h3>
+<p>Why <code class="language-plaintext highlighter-rouge">debugfs</code> can’t help anymore? The reason is simple, each cgroup for a pod is using its own rootfs. This means the watcher are somehow residing on different rootfs and using independent inode index.  There are some other ways to do it, I choose the most common tool <code class="language-plaintext highlighter-rouge">grep</code> to find out.</p>
+
+<div class="language-plaintext highlighter-rouge"><div class="highlight"><pre class="highlight"><code>sudo grep / -inum 1
+/home/kubernetes/containerized_mounter/rootfs/dev
+/home/kubernetes/containerized_mounter/rootfs/proc
+...
+/home/kubernetes/containerized_mounter/rootfs/var/lib/kubelet/pods/5325873d-f2a0-48df-83e2-0b911df2f77f/volumes/kubernetes.io~projected/kube-api-access-227jg
+...
+/dev
+/boot/efi
+...
+</code></pre></div></div>
+
+<p>This turns things easy, because I can just use pod ID to compare between running pods to find out if there are any terminated pods are there. And it did show there’s some non-existence pods still being watched somehow.</p>
+
+<h2 id="what-to-expect-next">What to expect next</h2>
+
+<ul>
+  <li><a href="">How Kubelet leaked inotify watchers?</a></li>
+  <li><a href="">debugfs</a></li>
+</ul>
+
+<h2 id="references">References</h2>
+
+<div class="footnotes" role="doc-endnotes">
+  <ol>
+    <li id="fn:flbit_ino" role="doc-endnote">
+      <p><a href="https://stackoverflow.com/a/76712244">Fluentbit error “cannot adjust chunk size” on GKE</a> <a href="#fnref:flbit_ino" class="reversefootnote" role="doc-backlink">&#8617;</a></p>
+    </li>
+    <li id="fn:man_proc" role="doc-endnote">
+      <p><a href="https://manpages.courier-mta.org/htmlman5/proc.5.html">proc(5)</a> <a href="#fnref:man_proc" class="reversefootnote" role="doc-backlink">&#8617;</a></p>
+    </li>
+  </ol>
+</div>]]></content><author><name>Pengzhan Hao</name></author><category term="Kubernetes" /><category term="Kubelet" /><category term="Debug" /><category term="Inotify" /><summary type="html"><![CDATA[Symptom Recently, I faced an issue where Kubelet on a node reported error message failed to create file descriptors. error creating file watcher: too many open files error creating file watcher: no space left on device After short checking, I found the node has max_user_watches of 10000, but the TotalinotifyWatches is beyond this value. (P. S still not sure why watcher can initiate more than cap). In order to find which process occupied the most watchers. I used following command1 to find it out. echo -e "COUNT\tPID\tUSER\tCOMMAND"; sudo find /proc/[0-9]*/fdinfo -type f 2&gt;/dev/null | sudo xargs grep ^inotify 2&gt;/dev/null | cut -d/ -f 3 | uniq -c | sort -nr | { while read -rs COUNT PID; do echo -en "$COUNT\t$PID\t"; ps -p $PID -o user=,command=; done} COUNT PID USER COMMAND 7491 8412 root /home/kubernetes/bin/kubelet --v=2 --cloud-provide=gce --experi 2620 1 root /sbin/init .... Surprisingly, Kubelet initiated more than 7000 inotify watchers. I assumed there was an inotify leakage in Kubelet. Leakage check Clean Kubelet To better understand the situation, I created a clean cluster with only 1 clean node on GKE. Roughly 70 inotify watchers were there. I created a single nginx pod and the number increased by 3. Theoretically, these 3 watchers are used by Kubelet to monitor any changes on rootfs , kube-api-access and PodSandbox. But to verify it, we need to check more details on which inodes are monitored by Kubelet. Check inotify file descriptors To do so, let’s take a look how to track a single inotify file descriptor. Opened processes’ fdinfo folder, we can examine each or them to find an inotify fd. # Find kubelet pid ps -aux | grep kubelet KPID=2430 # File the an example fd sudo ls /proc/2430/fdinfo 0 1 10 11 12 13 14 2 3 4 5 6 7 8 9 ... sudo cat /proc/2430/fdinfo/8 pos: 0 flags: 02004000 mnt_id: 15 ino: 1057 inotify wd:1 ino:3f327 sdev:800001 mask:fc6 ignored_mask:0 fhandle-bytes:8 fhandle-type:1 f_handle:27f30300e5059ea2 This is very confusing, so I rely on man proc2 to understand every piece of them. In given fd, the needed information to continue sit in the last line. It’s an inotify entry represents the 1 file or folder to be monitored. And the most useful data is ino:3f327 which represents the inode number of target file (in hexadecimal). And sdev:800001, which represents the ID of device where the inode sit on, and it’s also in hex. Using lsblk, I can see there’s only 1 disk I’m using on the node, so finding the target file would be easy. # Cast to decimal ino=3f327 dec="$((16#${ino}))" # Find the target file loc="debugfs -R 'ncheck ${dec}' /dev/sda1" sudo eval $loc 2&gt;/dev/null debugfd 1.46.5 (30-Dec-2021) Inode Pathname 258855 /etc/srv/kubernetes/pki/ca-certificates.crt Put all processes above into one single script, I can retrieve all target files, that would help to understand if there’s a real leakage. Also, I count the unique inode amount, this could also help to know which inode are monitored multiple times. cat &lt;&lt; EOF | sudo tee -a test.sh echo "kubelet pid="${PID} in_fds=$(find /proc/${PID}/fdinfo -type f 2&gt;/dev/null | xargs grep ^inotify | cut -d " " -f 3 | cut -d ":" -f 2) echo ${in_fds} echo "Count: $(find /proc/${PID}/fdinfo -type f 2&gt;/dev/null | xargs grep ^inotify | wc -l)" uniq_fds=$(echo "${in_fds[@]}" | sort | uniq) echo ${uniq_fds} while read -r element; do count=$(echo "${in_fds[@]}" | grep -o "${element}" | wc -l) dec="$((16#${element}))" loc="debugfs -R 'ncheck ${dec}' /dev/sda1" loc=$(eval $loc 2&gt;/dev/null | tail -1 | cut -d " " -f 4) printf "%-6s %-10s %-6s %s\n" "${element}" "${dec}" "${count}" "${loc}" done &lt;&lt;&lt; "${uniq_fds}" EOF sudo bash test.sh kubelet pid=2430 3f327 3f321 ... Count: 120 1 10b 1259 128a ... 1 1 72 Inode Pathname 10b 267 1 267 /etc/systemd/system/multi-user.target.wants/snapd.service ... The given results are consists by following parts: One line for get Kubelet pid One line for all target inode numbers One line for tell how many unique inode (120) One line of sorted target Following 120 lines, each of them represents a unique inode number, its decimal number, count, another time of decimal number and the target file path. I used the same script to the problematic node, and it showed the following result. In summary, most Kubelet watchers were targeting ino:1 . And there are 6649 targets files, which likely to be leakage, because there were only 150 pods on this pod. Unfortunately, debugfs can’t find any target files, so the output showed as meaningless string "Inode Pathname". kubelet pid=8412 ... Count: 7491 ... 1 1 6649 Inode Pathname Bad apple Why debugfs can’t help anymore? The reason is simple, each cgroup for a pod is using its own rootfs. This means the watcher are somehow residing on different rootfs and using independent inode index. There are some other ways to do it, I choose the most common tool grep to find out. sudo grep / -inum 1 /home/kubernetes/containerized_mounter/rootfs/dev /home/kubernetes/containerized_mounter/rootfs/proc ... /home/kubernetes/containerized_mounter/rootfs/var/lib/kubelet/pods/5325873d-f2a0-48df-83e2-0b911df2f77f/volumes/kubernetes.io~projected/kube-api-access-227jg ... /dev /boot/efi ... This turns things easy, because I can just use pod ID to compare between running pods to find out if there are any terminated pods are there. And it did show there’s some non-existence pods still being watched somehow. What to expect next How Kubelet leaked inotify watchers? debugfs References Fluentbit error “cannot adjust chunk size” on GKE &#8617; proc(5) &#8617;]]></summary></entry><entry><title type="html">Debug Kubelet</title><link href="https://dev.pengzhan.dev/posts/Debug-kubelet" rel="alternate" type="text/html" title="Debug Kubelet" /><published>2024-04-10T03:34:00-04:00</published><updated>2024-04-10T23:51:19-04:00</updated><id>https://dev.pengzhan.dev/posts/Debug-kubelet</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/Debug-kubelet"><![CDATA[<h2 id="debug-logs">Debug logs</h2>
 
 <p>Like all others program’s debugging, the most straightforward way for newbies and the easiest way for advanced developer is relying on logs. Same to debug <code class="language-plaintext highlighter-rouge">kubelet</code>, bumping up verbosity to show more logs is the most intuitive approach when facing an issue. Like most component in Kubernetes, <code class="language-plaintext highlighter-rouge">kubelet</code> uses <code class="language-plaintext highlighter-rouge">klog</code> for logging and there are 10 verbosity levels(0-9).</p>
 
@@ -65,7 +211,7 @@
 <p>By the time, this note was written. In <code class="language-plaintext highlighter-rouge">kubelet</code> related code, level 8 was only used in <code class="language-plaintext highlighter-rouge">pkg/kubelet/prober/prober_manager.go</code> and level 7 was only used in <code class="language-plaintext highlighter-rouge">pkg/kubelet/logs/container_log_manager.go</code>.  And there are  11 occurrences that level 6 was used, and all of them are not part of workload lifecycle related.</p>
 
 <h2 id="further-readings">Further readings</h2>
-<p>[Inotify watcher leaks in Kubelet]</p>]]></content><author><name>Pengzhan Hao</name></author><category term="Kubernetes" /><category term="Kubelet" /><category term="Debug" /><summary type="html"><![CDATA[Debug logs Like all others program’s debugging, the most straightforward way for newbies and the easiest way for advanced developer is relying on logs. Same to debug kubelet, bumping up verbosity to show more logs is the most intuitive approach when facing an issue. Like most component in Kubernetes, kubelet uses klog for logging and there are 10 verbosity levels(0-9). TL;DR: Bumping up to level 5 would satisfy most debugging needs. Level Meaning Example 0 Always on (Warning, Error, Fatal) https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L757-L757 1 Default level logs when don’t want any verbosity https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L2527 2 Most important logs when major operations happen, also the default verbosity level https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L483-L483 3 Extended information https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L2176 4 Debug level https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L1731 5 Trace level https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L2821-L2821 6 Display requested resources https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/cm/cgroup_manager_linux.go#L401 7 Display HTTP request headers https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/logs/container_log_manager.go#L299 8 Display HTTP request payload https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/prober/prober_manager.go#L192 By the time, this note was written. In kubelet related code, level 8 was only used in pkg/kubelet/prober/prober_manager.go and level 7 was only used in pkg/kubelet/logs/container_log_manager.go. And there are 11 occurrences that level 6 was used, and all of them are not part of workload lifecycle related. Further readings [Inotify watcher leaks in Kubelet]]]></summary></entry><entry><title type="html">Labs of CS350</title><link href="https://blog.pengzhan.dev/posts/cs350-labs" rel="alternate" type="text/html" title="Labs of CS350" /><published>2022-02-22T16:08:17-05:00</published><updated>2022-05-04T19:45:56-04:00</updated><id>https://blog.pengzhan.dev/posts/cs350-labs</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/cs350-labs"><![CDATA[<p>This will be a series regarding lab I gave during the spring 2022 semester.</p>
+<p><a href="/posts/inotify-watcher-leaks-in-kubelet.html">Inotify watcher leaks in Kubelet</a></p>]]></content><author><name>Pengzhan Hao</name></author><category term="Kubernetes" /><category term="Kubelet" /><category term="Debug" /><summary type="html"><![CDATA[Debug logs Like all others program’s debugging, the most straightforward way for newbies and the easiest way for advanced developer is relying on logs. Same to debug kubelet, bumping up verbosity to show more logs is the most intuitive approach when facing an issue. Like most component in Kubernetes, kubelet uses klog for logging and there are 10 verbosity levels(0-9). TL;DR: Bumping up to level 5 would satisfy most debugging needs. Level Meaning Example 0 Always on (Warning, Error, Fatal) https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L757-L757 1 Default level logs when don’t want any verbosity https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L2527 2 Most important logs when major operations happen, also the default verbosity level https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L483-L483 3 Extended information https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L2176 4 Debug level https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L1731 5 Trace level https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/kubelet.go#L2821-L2821 6 Display requested resources https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/cm/cgroup_manager_linux.go#L401 7 Display HTTP request headers https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/logs/container_log_manager.go#L299 8 Display HTTP request payload https://github.com/kubernetes/kubernetes/blob/d9c54f69d4bb7ae1bb655e1a2a50297d615025b5/pkg/kubelet/prober/prober_manager.go#L192 By the time, this note was written. In kubelet related code, level 8 was only used in pkg/kubelet/prober/prober_manager.go and level 7 was only used in pkg/kubelet/logs/container_log_manager.go. And there are 11 occurrences that level 6 was used, and all of them are not part of workload lifecycle related. Further readings Inotify watcher leaks in Kubelet]]></summary></entry><entry><title type="html">Labs of CS350</title><link href="https://dev.pengzhan.dev/posts/cs350-labs" rel="alternate" type="text/html" title="Labs of CS350" /><published>2022-02-22T16:08:17-05:00</published><updated>2022-05-04T19:45:56-04:00</updated><id>https://dev.pengzhan.dev/posts/cs350-labs</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/cs350-labs"><![CDATA[<p>This will be a series regarding lab I gave during the spring 2022 semester.</p>
 
 <p>The reason why I am writing this down is because it has been a week and no students ask for the solution of the last Lab.
 I realise that learning gap between students are huge, especially when a non-profit university is admitting more and more students.
@@ -421,7 +567,7 @@ It’s time to switch from the running scheduler to the selected process. Wait f
       <p><a href="https://sourceware.org/binutils/docs/binutils/objcopy.html">3 objcopy - binutils mannual</a> <a href="#fnref:objcopyman" class="reversefootnote" role="doc-backlink">&#8617;</a></p>
     </li>
   </ol>
-</div>]]></content><author><name>Pengzhan Hao</name></author><category term="Xv6" /><category term="Teaching" /><category term="Operating system" /><category term="Binghamton university" /><summary type="html"><![CDATA[This will be a series regarding lab I gave during the spring 2022 semester. The reason why I am writing this down is because it has been a week and no students ask for the solution of the last Lab. I realise that learning gap between students are huge, especially when a non-profit university is admitting more and more students. To help all students in understanding concepts of modern OS, I decided to write this post. It starts with the past lab content I have (as the skelton), and will be amended with extra materials I think it helps. Remember, it’s for helping in learning. DON’T COPY &amp; PASTE CODE! Index Lab1: Introduction of Makefile and Xv6. Lab3: System calls for process management. Lab4: Inter-processes communication. Lab6/7: CPU scheduling. Lab1-Introduction Lab3-Process Lab4-IPC Lab6-7-Scheduling First user process in xv6 Kernel works In xv6, as the same as conventional linux OS, the very first user-level process is init. Before init’s running, all the OS bootstraps happen in a highly privileged mode(kernel level). Xv6’s kernel has the entry point as the main function located in the file main.c. The main function invokes 17 functions to set up kernel page tables, interrupt handlers, I/O devices and etc. When all kernel preparations are done, by calling the function userinit(), kernel will boot up process init. int main(void) { kinit1(end, P2V(4*1024*1024)); // phys page allocator kvmalloc(); // kernel page table mpinit(); // collect info about this machine lapicinit(); seginit(); // set up segments cprintf("\ncpu%d: starting xv6\n\n", cpu-&gt;id); picinit(); // interrupt controller ioapicinit(); // another interrupt controller consoleinit(); // I/O devices &amp; their interrupts uartinit(); // serial port pinit(); // process table tvinit(); // trap vectors binit(); // buffer cache fileinit(); // file table ideinit(); // disk if(!ismp) timerinit(); // uniprocessor timer startothers(); // start other processors kinit2(P2V(4*1024*1024), P2V(PHYSTOP)); // must come after startothers() userinit(); // first user process // Finish setting up this processor in mpmain. mpmain(); } It’s tricky since that init is a user process, but kernel can’t call any user-level system calls to create it. Why? 1. Kernel has all privileges to create a user process. So it doesn’t need to call system calls such as fork(). And 2. All other user processes can be created by forking from its parent. Forking including clone the whole user virtual memory layout. However, the first process has no parent to fork from. That’s why it makes the creation of the first user process becomes so unique. In proc.c, userinit() define there gives us the whole procedure of creating init. Similar to the fork(), but more simple. Process control block(structures for storing the process status) was created at the very first by calling allocproc(). After then, by invoking setupkvm()(defined in vm.c), kernel memory map was setup for the process. During setting up kernel memory map, a page size virtual memory will be assigned to the process as ready. And later, this page size memory will be used to store instructions of init. Followed by setup kernel stack for the init process, calling inituvm() will load init’s text into the page that is just being allocated. inituvm() takes 3 arguments: a pointer to the process’s page directory (p-&gt;pgdir), a char-type pointer declared from external which point to init’s text segment(_binary_initcode_start), and a char-type pointer which points to an external integer as the size of the init’s text segment(_binary_initcode_size). Simply put, it will load instructions of init into the memory. So now, the problem becomes when and where did instructions for init have compiled into the kernel? void userinit(void) { struct proc *p; extern char _binary_initcode_start[], _binary_initcode_size[]; p = allocproc(); initproc = p; if((p-&gt;pgdir = setupkvm()) == 0) panic("userinit: out of memory?"); inituvm(p-&gt;pgdir, _binary_initcode_start, (int)_binary_initcode_size); p-&gt;sz = PGSIZE; memset(p-&gt;tf, 0, sizeof(*p-&gt;tf)); p-&gt;tf-&gt;cs = (SEG_UCODE &lt;&lt; 3) | DPL_USER; p-&gt;tf-&gt;ds = (SEG_UDATA &lt;&lt; 3) | DPL_USER; p-&gt;tf-&gt;es = p-&gt;tf-&gt;ds; p-&gt;tf-&gt;ss = p-&gt;tf-&gt;ds; p-&gt;tf-&gt;eflags = FL_IF; p-&gt;tf-&gt;esp = PGSIZE; p-&gt;tf-&gt;eip = 0; // beginning of initcode.S safestrcpy(p-&gt;name, "initcode", sizeof(p-&gt;name)); p-&gt;cwd = namei("/"); p-&gt;state = RUNNABLE; } Where the user-level code was integrated? If you search the keyword “_binary_initcode_start” in the source code, you can’t find any references. The clue comes from the Makefile. In the makefile, initcode is a prerequisites to compile the kernel image. Step 1: Before kernel was compiled, initcode.S was first compiled to a runnable binary initcode. This binary was very odd because it was not supposed to let any other OS to run it. Initcode.s was first compiled without any standard including, and generating the intermediate file initcode.o. Step 2: Initcode.o then linked to Initcode.out with two uncommon settings. First it specify the entry of this binary file as when “start” symbol points to. This “start” symbol was declared in the assembly code. Second it specify a absolute address(0) for the text segments. By doing this, text segments will be placed at the start of the binary file (except the header of the ELF)1. Step 3: Initcode.out is already a minimized binary but it’s not enough. That’s why when using objcopy to copy it to the file initcode, it further strip all headers and debug information2. At this point, we have a minimal binary file initcode. From the first byte of this file, it’s only includes runnable instructions. And the size of the file is only 44 bytes. initcode: initcode.S $(CC) $(CFLAGS) -nostdinc -I. -c initcode.S # Step 1 $(LD) $(LDFLAGS) -N -e start -Ttext 0 -o initcode.out initcode.o # Step 2 $(OBJCOPY) -S -O binary initcode.out initcode # Step 3 $(OBJDUMP) -S initcode.o &gt; initcode.asm This binary later were appended to the kernel using following commands. And during this appending, 3 symbols were generated and added to the symbol table of the kernel1. “_binary_initcode_start” contains the address of where the initcode segment was appended to. “_binary_initcode_end” contains the address of where the initcode segment was ended at. “_binary_initcode_size” is a *ABS* type symbol with value 0x2C(45) that specify the size of the initcode segment is 45 bytes. kernel: $(OBJS) entry.o entryother initcode kernel.ld $(LD) $(LDFLAGS) -T kernel.ld -o kernel entry.o $(OBJS) -b binary initcode entryother # &lt;- This Line $(OBJDUMP) -S kernel &gt; kernel.asm $(OBJDUMP) -t kernel | sed '1,/SYMBOL TABLE/d; s/ .* / /; /^$$/d' &gt; kernel.sym In short summary, using objdump, we can verify that source code initcode.S has been compiled and loaded into the kernel. Also the segment of initcode’s instructions was located by the pointer “_binary_initcode_start”. That’s explain when calling inituvm(p-&gt;pgdir, _binary_initcode_start, (int)_binary_initcode_size);, functionalities implemented in initcode.S will be loaded into the runtime of the first process within xv6. # Header of the file kernel kernel: file format elf32-i386 kernel architecture: i386, flags 0x00000112: EXEC_P, HAS_SYMS, D_PAGED start address 0x0010000c Program Header: LOAD off 0x00001000 vaddr 0x80100000 paddr 0x00100000 align 2**12 filesz 0x00008c6a memsz 0x00008c6a flags r-x ... Sections: Idx Name Size VMA LMA File off Algn 0 .text 00008586 80100000 00100000 00001000 2**2 CONTENTS, ALLOC, LOAD, READONLY, CODE ... SYMBOL TABLE: ... 8010b50c g .data 00000000 _binary_initcode_end ... 8010b4e0 g .data 00000000 _binary_initcode_start ... 0000002c g *ABS* 00000000 _binary_initcode_size ... User-level code Take a look of content in the initcode.S, you will find the code can explain itself well. There are no other jobs but just calling system call exec to run a user-level binary “init”. Initcode.S: # Initial process execs /init. #include "syscall.h" #include "traps.h" # exec(init, argv) .globl start start: pushl $argv pushl $init pushl $0 // where caller pc would be movl $SYS_exec, %eax int $T_SYSCALL # for(;;) exit(); exit: movl $SYS_exit, %eax int $T_SYSCALL jmp exit # char init[] = "/init\0"; init: .string "/init\0" # char *argv[] = { init, 0 }; .p2align 2 argv: .long init .long 0 The “init” mentioned above is not a pure user-level binary executable that compiled from the source code init.c. Within init.c, a file named console will be created at the runtime for saving standard outputs and errors. Then it will forked a child process(the second user process), and let it run program “sh”. “sh” is the xv6’s default shell, a user-level program that generated from source sh.c. After the shell boots up, you can interactive with the xv6. This’s how first process (and second process) was started in the xv6. init.c: // init: The initial user-level program #include "types.h" #include "stat.h" #include "user.h" #include "fcntl.h" char *argv[] = { "sh", 0 }; int main(void) { int pid, wpid; if(open("console", O_RDWR) &lt; 0){ mknod("console", 1, 1); open("console", O_RDWR); } dup(0); // stdout dup(0); // stderr for(;;){ printf(1, "init: starting sh\n"); pid = fork(); if(pid &lt; 0){ printf(1, "init: fork failed\n"); exit(); } if(pid == 0){ exec("sh", argv); printf(1, "init: exec sh failed\n"); exit(); } while((wpid=wait()) &gt;= 0 &amp;&amp; wpid != pid) printf(1, "zombie!\n"); } } Xv6’s round robin schduler The Scheduler is the core of an operating system. With the scheduling of processes, the kernel can achieve near-real-time execution of multiple workloads. The scheduling problem is also an active aspect of computer science research. You can’t have one algorithm to fit all scenarios. Xv6 by default has a round-robin scheduler. It’s controlled using two-level for-loops, where the top-level for-loop is an endless loop that will keep the scheduler busy running. The second-level nested for-loop will iterate a data structure named Ptable where all control information for processes is stored. Information including pid, process name, etc. is stored in a structure called proc. Ptable is an array of processes. Every runnable process in the Ptable will run strictly 1 time tick until the for-loop reached the last process in the Ptable. Then it will loop back to the top-level for-loop for the next iteration of processes. // In file proc.c struct { struct spinlock lock; struct proc proc[NPROC]; } ptable; // In file proc.h struct proc { uint sz; // Size of process memory (bytes) pde_t* pgdir; // Page table char *kstack; // Bottom of kernel stack for this process enum procstate state; // Process state int pid; // Process ID struct proc *parent; // Parent process struct trapframe *tf; // Trap frame for current syscall struct context *context; // swtch() here to run process void *chan; // If non-zero, sleeping on chan int killed; // If non-zero, have been killed struct file *ofile[NOFILE]; // Open files struct inode *cwd; // Current directory char name[16]; // Process name (debugging) }; // In file proc.c void scheduler(void) { struct proc *p; for(;;){ // Enable interrupts on this processor. sti(); // Loop over process table looking for process to run. acquire(&amp;ptable.lock); for(p = ptable.proc; p &lt; &amp;ptable.proc[NPROC]; p++){ if(p-&gt;state != RUNNABLE) continue; // Switch to chosen process. It is the process's job // to release ptable.lock and then reacquire it // before jumping back to us. proc = p; switchuvm(p); p-&gt;state = RUNNING; swtch(&amp;cpu-&gt;scheduler, proc-&gt;context); switchkvm(); // Process is done running for now. // It should have changed its p-&gt;state before coming back. proc = 0; } release(&amp;ptable.lock); } } It’s not hard to understand why this logic makes a round-robin manner. This is very important to understand how to pick a process to run because scheduling is about always picking the appropriate process to achieve higher performance. You can always come up with some new ideas for designing a good scheduler policy. Understanding how to switch from one process to another is equivalently important. Once the process for the next time tick is selected. It’s time to switch from the running scheduler to the selected process. Wait for a second, there are two questions we haven’t answered. What is the running scheduler? How did the last running process stop running and give the CPU back to the scheduler? Lab ld(1) - Linux man page &#8617; &#8617;2 3 objcopy - binutils mannual &#8617;]]></summary></entry><entry><title type="html">EDDL: How do we train neural networks on limited edge devices - PART 2</title><link href="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2" rel="alternate" type="text/html" title="EDDL: How do we train neural networks on limited edge devices - PART 2" /><published>2021-10-31T13:01:14-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"><![CDATA[<p>In the last post, part1, our idea of distributed learning on edge environment was generally addressed.
+</div>]]></content><author><name>Pengzhan Hao</name></author><category term="Xv6" /><category term="Teaching" /><category term="Operating system" /><category term="Binghamton university" /><summary type="html"><![CDATA[This will be a series regarding lab I gave during the spring 2022 semester. The reason why I am writing this down is because it has been a week and no students ask for the solution of the last Lab. I realise that learning gap between students are huge, especially when a non-profit university is admitting more and more students. To help all students in understanding concepts of modern OS, I decided to write this post. It starts with the past lab content I have (as the skelton), and will be amended with extra materials I think it helps. Remember, it’s for helping in learning. DON’T COPY &amp; PASTE CODE! Index Lab1: Introduction of Makefile and Xv6. Lab3: System calls for process management. Lab4: Inter-processes communication. Lab6/7: CPU scheduling. Lab1-Introduction Lab3-Process Lab4-IPC Lab6-7-Scheduling First user process in xv6 Kernel works In xv6, as the same as conventional linux OS, the very first user-level process is init. Before init’s running, all the OS bootstraps happen in a highly privileged mode(kernel level). Xv6’s kernel has the entry point as the main function located in the file main.c. The main function invokes 17 functions to set up kernel page tables, interrupt handlers, I/O devices and etc. When all kernel preparations are done, by calling the function userinit(), kernel will boot up process init. int main(void) { kinit1(end, P2V(4*1024*1024)); // phys page allocator kvmalloc(); // kernel page table mpinit(); // collect info about this machine lapicinit(); seginit(); // set up segments cprintf("\ncpu%d: starting xv6\n\n", cpu-&gt;id); picinit(); // interrupt controller ioapicinit(); // another interrupt controller consoleinit(); // I/O devices &amp; their interrupts uartinit(); // serial port pinit(); // process table tvinit(); // trap vectors binit(); // buffer cache fileinit(); // file table ideinit(); // disk if(!ismp) timerinit(); // uniprocessor timer startothers(); // start other processors kinit2(P2V(4*1024*1024), P2V(PHYSTOP)); // must come after startothers() userinit(); // first user process // Finish setting up this processor in mpmain. mpmain(); } It’s tricky since that init is a user process, but kernel can’t call any user-level system calls to create it. Why? 1. Kernel has all privileges to create a user process. So it doesn’t need to call system calls such as fork(). And 2. All other user processes can be created by forking from its parent. Forking including clone the whole user virtual memory layout. However, the first process has no parent to fork from. That’s why it makes the creation of the first user process becomes so unique. In proc.c, userinit() define there gives us the whole procedure of creating init. Similar to the fork(), but more simple. Process control block(structures for storing the process status) was created at the very first by calling allocproc(). After then, by invoking setupkvm()(defined in vm.c), kernel memory map was setup for the process. During setting up kernel memory map, a page size virtual memory will be assigned to the process as ready. And later, this page size memory will be used to store instructions of init. Followed by setup kernel stack for the init process, calling inituvm() will load init’s text into the page that is just being allocated. inituvm() takes 3 arguments: a pointer to the process’s page directory (p-&gt;pgdir), a char-type pointer declared from external which point to init’s text segment(_binary_initcode_start), and a char-type pointer which points to an external integer as the size of the init’s text segment(_binary_initcode_size). Simply put, it will load instructions of init into the memory. So now, the problem becomes when and where did instructions for init have compiled into the kernel? void userinit(void) { struct proc *p; extern char _binary_initcode_start[], _binary_initcode_size[]; p = allocproc(); initproc = p; if((p-&gt;pgdir = setupkvm()) == 0) panic("userinit: out of memory?"); inituvm(p-&gt;pgdir, _binary_initcode_start, (int)_binary_initcode_size); p-&gt;sz = PGSIZE; memset(p-&gt;tf, 0, sizeof(*p-&gt;tf)); p-&gt;tf-&gt;cs = (SEG_UCODE &lt;&lt; 3) | DPL_USER; p-&gt;tf-&gt;ds = (SEG_UDATA &lt;&lt; 3) | DPL_USER; p-&gt;tf-&gt;es = p-&gt;tf-&gt;ds; p-&gt;tf-&gt;ss = p-&gt;tf-&gt;ds; p-&gt;tf-&gt;eflags = FL_IF; p-&gt;tf-&gt;esp = PGSIZE; p-&gt;tf-&gt;eip = 0; // beginning of initcode.S safestrcpy(p-&gt;name, "initcode", sizeof(p-&gt;name)); p-&gt;cwd = namei("/"); p-&gt;state = RUNNABLE; } Where the user-level code was integrated? If you search the keyword “_binary_initcode_start” in the source code, you can’t find any references. The clue comes from the Makefile. In the makefile, initcode is a prerequisites to compile the kernel image. Step 1: Before kernel was compiled, initcode.S was first compiled to a runnable binary initcode. This binary was very odd because it was not supposed to let any other OS to run it. Initcode.s was first compiled without any standard including, and generating the intermediate file initcode.o. Step 2: Initcode.o then linked to Initcode.out with two uncommon settings. First it specify the entry of this binary file as when “start” symbol points to. This “start” symbol was declared in the assembly code. Second it specify a absolute address(0) for the text segments. By doing this, text segments will be placed at the start of the binary file (except the header of the ELF)1. Step 3: Initcode.out is already a minimized binary but it’s not enough. That’s why when using objcopy to copy it to the file initcode, it further strip all headers and debug information2. At this point, we have a minimal binary file initcode. From the first byte of this file, it’s only includes runnable instructions. And the size of the file is only 44 bytes. initcode: initcode.S $(CC) $(CFLAGS) -nostdinc -I. -c initcode.S # Step 1 $(LD) $(LDFLAGS) -N -e start -Ttext 0 -o initcode.out initcode.o # Step 2 $(OBJCOPY) -S -O binary initcode.out initcode # Step 3 $(OBJDUMP) -S initcode.o &gt; initcode.asm This binary later were appended to the kernel using following commands. And during this appending, 3 symbols were generated and added to the symbol table of the kernel1. “_binary_initcode_start” contains the address of where the initcode segment was appended to. “_binary_initcode_end” contains the address of where the initcode segment was ended at. “_binary_initcode_size” is a *ABS* type symbol with value 0x2C(45) that specify the size of the initcode segment is 45 bytes. kernel: $(OBJS) entry.o entryother initcode kernel.ld $(LD) $(LDFLAGS) -T kernel.ld -o kernel entry.o $(OBJS) -b binary initcode entryother # &lt;- This Line $(OBJDUMP) -S kernel &gt; kernel.asm $(OBJDUMP) -t kernel | sed '1,/SYMBOL TABLE/d; s/ .* / /; /^$$/d' &gt; kernel.sym In short summary, using objdump, we can verify that source code initcode.S has been compiled and loaded into the kernel. Also the segment of initcode’s instructions was located by the pointer “_binary_initcode_start”. That’s explain when calling inituvm(p-&gt;pgdir, _binary_initcode_start, (int)_binary_initcode_size);, functionalities implemented in initcode.S will be loaded into the runtime of the first process within xv6. # Header of the file kernel kernel: file format elf32-i386 kernel architecture: i386, flags 0x00000112: EXEC_P, HAS_SYMS, D_PAGED start address 0x0010000c Program Header: LOAD off 0x00001000 vaddr 0x80100000 paddr 0x00100000 align 2**12 filesz 0x00008c6a memsz 0x00008c6a flags r-x ... Sections: Idx Name Size VMA LMA File off Algn 0 .text 00008586 80100000 00100000 00001000 2**2 CONTENTS, ALLOC, LOAD, READONLY, CODE ... SYMBOL TABLE: ... 8010b50c g .data 00000000 _binary_initcode_end ... 8010b4e0 g .data 00000000 _binary_initcode_start ... 0000002c g *ABS* 00000000 _binary_initcode_size ... User-level code Take a look of content in the initcode.S, you will find the code can explain itself well. There are no other jobs but just calling system call exec to run a user-level binary “init”. Initcode.S: # Initial process execs /init. #include "syscall.h" #include "traps.h" # exec(init, argv) .globl start start: pushl $argv pushl $init pushl $0 // where caller pc would be movl $SYS_exec, %eax int $T_SYSCALL # for(;;) exit(); exit: movl $SYS_exit, %eax int $T_SYSCALL jmp exit # char init[] = "/init\0"; init: .string "/init\0" # char *argv[] = { init, 0 }; .p2align 2 argv: .long init .long 0 The “init” mentioned above is not a pure user-level binary executable that compiled from the source code init.c. Within init.c, a file named console will be created at the runtime for saving standard outputs and errors. Then it will forked a child process(the second user process), and let it run program “sh”. “sh” is the xv6’s default shell, a user-level program that generated from source sh.c. After the shell boots up, you can interactive with the xv6. This’s how first process (and second process) was started in the xv6. init.c: // init: The initial user-level program #include "types.h" #include "stat.h" #include "user.h" #include "fcntl.h" char *argv[] = { "sh", 0 }; int main(void) { int pid, wpid; if(open("console", O_RDWR) &lt; 0){ mknod("console", 1, 1); open("console", O_RDWR); } dup(0); // stdout dup(0); // stderr for(;;){ printf(1, "init: starting sh\n"); pid = fork(); if(pid &lt; 0){ printf(1, "init: fork failed\n"); exit(); } if(pid == 0){ exec("sh", argv); printf(1, "init: exec sh failed\n"); exit(); } while((wpid=wait()) &gt;= 0 &amp;&amp; wpid != pid) printf(1, "zombie!\n"); } } Xv6’s round robin schduler The Scheduler is the core of an operating system. With the scheduling of processes, the kernel can achieve near-real-time execution of multiple workloads. The scheduling problem is also an active aspect of computer science research. You can’t have one algorithm to fit all scenarios. Xv6 by default has a round-robin scheduler. It’s controlled using two-level for-loops, where the top-level for-loop is an endless loop that will keep the scheduler busy running. The second-level nested for-loop will iterate a data structure named Ptable where all control information for processes is stored. Information including pid, process name, etc. is stored in a structure called proc. Ptable is an array of processes. Every runnable process in the Ptable will run strictly 1 time tick until the for-loop reached the last process in the Ptable. Then it will loop back to the top-level for-loop for the next iteration of processes. // In file proc.c struct { struct spinlock lock; struct proc proc[NPROC]; } ptable; // In file proc.h struct proc { uint sz; // Size of process memory (bytes) pde_t* pgdir; // Page table char *kstack; // Bottom of kernel stack for this process enum procstate state; // Process state int pid; // Process ID struct proc *parent; // Parent process struct trapframe *tf; // Trap frame for current syscall struct context *context; // swtch() here to run process void *chan; // If non-zero, sleeping on chan int killed; // If non-zero, have been killed struct file *ofile[NOFILE]; // Open files struct inode *cwd; // Current directory char name[16]; // Process name (debugging) }; // In file proc.c void scheduler(void) { struct proc *p; for(;;){ // Enable interrupts on this processor. sti(); // Loop over process table looking for process to run. acquire(&amp;ptable.lock); for(p = ptable.proc; p &lt; &amp;ptable.proc[NPROC]; p++){ if(p-&gt;state != RUNNABLE) continue; // Switch to chosen process. It is the process's job // to release ptable.lock and then reacquire it // before jumping back to us. proc = p; switchuvm(p); p-&gt;state = RUNNING; swtch(&amp;cpu-&gt;scheduler, proc-&gt;context); switchkvm(); // Process is done running for now. // It should have changed its p-&gt;state before coming back. proc = 0; } release(&amp;ptable.lock); } } It’s not hard to understand why this logic makes a round-robin manner. This is very important to understand how to pick a process to run because scheduling is about always picking the appropriate process to achieve higher performance. You can always come up with some new ideas for designing a good scheduler policy. Understanding how to switch from one process to another is equivalently important. Once the process for the next time tick is selected. It’s time to switch from the running scheduler to the selected process. Wait for a second, there are two questions we haven’t answered. What is the running scheduler? How did the last running process stop running and give the CPU back to the scheduler? Lab ld(1) - Linux man page &#8617; &#8617;2 3 objcopy - binutils mannual &#8617;]]></summary></entry><entry><title type="html">EDDL: How do we train neural networks on limited edge devices - PART 2</title><link href="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2" rel="alternate" type="text/html" title="EDDL: How do we train neural networks on limited edge devices - PART 2" /><published>2021-10-31T13:01:14-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"><![CDATA[<p>In the last post, part1, our idea of distributed learning on edge environment was generally addressed.
 I introduced the reason why edge distributed learning is needed and what improvements it can achieve.
 In this post, I will talk about our motivation study and how our framework works.</p>
 
@@ -525,7 +671,7 @@ The other platform is the <a href="https://www.raspberrypi.com/products/raspberr
 
 <p>The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14.
 We used <a href="http://dlib.net/">Dlib</a>, a C++ library that provides implementations for a wide range of machine learning algorithms.
-We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices.</p>]]></content><author><name>Pengzhan Hao</name></author><category term="Research" /><category term="Edge computing" /><summary type="html"><![CDATA[In the last post, part1, our idea of distributed learning on edge environment was generally addressed. I introduced the reason why edge distributed learning is needed and what improvements it can achieve. In this post, I will talk about our motivation study and how our framework works. How does data support us training on edge? Before designing and implementing our framework, we first need confirmation that training on edge resource-limited devices is worthwhile. We were using a malware detection neural network to show why a small, customized neural network is better. We collected 32000+ mobile apps feature as global data. With these data records, we trained a multilayer perceptron called “PerNet” to determine whether a given feature belongs to a benign or malware app. We called this detection. As well, PerNet can also classify malware apps into different types of attacks. We called this classification. The global model can achieve 93% above recall rate and 96.93% above accuracy. With all these data, we selected two community app usage sub-dataset for local model generations. Large categories (Scenario 1) We chose the 5 largest categories of apps, including entertainment, tools, brain&amp;Puzzle, Lifestyle, and Education, as well as the 5 largest malware categories. All together, 12000+ apps were included in this sub-dataset, almost 50 to 50 between benign and malware. Campus-community categories (Scenario 2) We chose the 5 most downloaded categories from college students as benign groups, as well as a similar amount of 5 malware categories. To ensure that malware apps are included in 5 benign categories, we also considered synthesizing some other malware apps within categories of 5 most downloaded(benign) categories. With these two types of sub-dataset, we used the same PerNet to generate multiple local models. Under each scenarios experiment, we compared global and local models on the preserved test dataset. In all classification performances, local beat global in every scenario. In detection performances, local also share the same accuracy as global does. In summary, local models were trained on special occasions. Under the same circumstance, a global model can achieve no better accuracy than local models. The reason why local is better might be because of overfitting. I believe this issue also be considered in the machine learning communities that they brought transfer learning, a technique to optimize global models to special scenarios but performing more training to a global model once it’s shipped to local. Design and Implementation Overall design The basic EDDL distributed training setup consists of 3 parts. EDDL training cluster, a device cluster that consists of edge or mobile devices that are participating in training. EDDL manager, the initial driver program that works as collect training data, relay data to training devices and initial training clusters. Training data entry (TDE), a data storage for all training data. Dynamic training data distribution Existing distributed DNN training solutions usually statically partition training data among workers. It can be a problem when the training node joins and exits. We designed our framework that can dynamically distribute training data during learning. Before every training batch started, a batch of TDE will be sent to devices. In our experiments, we found that by applying this design, overall training time was shortened by doing. Especially in large amount devices cases, this optimization can be 50% less than statically divided. Scaling up cluster size Our framework was designed to have both sync and async parameter aggregation. Asynchronous aggregation can allow a high outcome of training batch but with a sacrifice or converge time. Synchronous aggregation allows a quick converge time in epochs, however can’t ensure performance when there’s a struggler worker. As showed in experiments, we chose sync as default because the converging time is dominant in overall training time. But, we also considered the possibilities of that async with more workers can achieve similar overall training time. We introduced a formula to determine whether adding more training nodes can help or not. Here we used bandwidth usage coefficient (BUC) as \[BUC = \dfrac{n}{T_{sync}}\] In this formula, \(n\) is the number of devices, and \(T_{sync}\) is the transmission time of parameters. With an increasing number of workers, n increase linearly but transmission time does not. When \(BUC\) increases, the cluster can speed up training time by adding workers. Otherwise, adding more workers won’t help with overall training time. Adaptive leader role splitting The idea of role splitting is simple that a device can work as a worker as well leader. The advantage of doing this is straightforward that we can transfer 1 less parameter and training time will be shortened. However, in our current settings, it can’t perform much better help since only 1 leader role is in a cluster. We can benefit from this in our future works. Overall architecture Details were given in the image. Prototype hardware and software EDDL was designed to be run on two single-board computer embedded platforms. One such platform is ODROID-XU4, which is equipped with a 2.1/1.4 GHz 32-bit ARM processor and 2GB memory. The other platform is the Raspberry Pi 3 Model B board, which comes with an ARM 1.2 GHz 64-bit quad-core processor and 1GB memory. The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14. We used Dlib, a C++ library that provides implementations for a wide range of machine learning algorithms. We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices.]]></summary></entry><entry><title type="html">EDDL: How do we train neural networks on limited edge devices - PART 1</title><link href="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices" rel="alternate" type="text/html" title="EDDL: How do we train neural networks on limited edge devices - PART 1" /><published>2021-10-13T16:53:20-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"><![CDATA[<p>This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published.
+We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices.</p>]]></content><author><name>Pengzhan Hao</name></author><category term="Research" /><category term="Edge computing" /><summary type="html"><![CDATA[In the last post, part1, our idea of distributed learning on edge environment was generally addressed. I introduced the reason why edge distributed learning is needed and what improvements it can achieve. In this post, I will talk about our motivation study and how our framework works. How does data support us training on edge? Before designing and implementing our framework, we first need confirmation that training on edge resource-limited devices is worthwhile. We were using a malware detection neural network to show why a small, customized neural network is better. We collected 32000+ mobile apps feature as global data. With these data records, we trained a multilayer perceptron called “PerNet” to determine whether a given feature belongs to a benign or malware app. We called this detection. As well, PerNet can also classify malware apps into different types of attacks. We called this classification. The global model can achieve 93% above recall rate and 96.93% above accuracy. With all these data, we selected two community app usage sub-dataset for local model generations. Large categories (Scenario 1) We chose the 5 largest categories of apps, including entertainment, tools, brain&amp;Puzzle, Lifestyle, and Education, as well as the 5 largest malware categories. All together, 12000+ apps were included in this sub-dataset, almost 50 to 50 between benign and malware. Campus-community categories (Scenario 2) We chose the 5 most downloaded categories from college students as benign groups, as well as a similar amount of 5 malware categories. To ensure that malware apps are included in 5 benign categories, we also considered synthesizing some other malware apps within categories of 5 most downloaded(benign) categories. With these two types of sub-dataset, we used the same PerNet to generate multiple local models. Under each scenarios experiment, we compared global and local models on the preserved test dataset. In all classification performances, local beat global in every scenario. In detection performances, local also share the same accuracy as global does. In summary, local models were trained on special occasions. Under the same circumstance, a global model can achieve no better accuracy than local models. The reason why local is better might be because of overfitting. I believe this issue also be considered in the machine learning communities that they brought transfer learning, a technique to optimize global models to special scenarios but performing more training to a global model once it’s shipped to local. Design and Implementation Overall design The basic EDDL distributed training setup consists of 3 parts. EDDL training cluster, a device cluster that consists of edge or mobile devices that are participating in training. EDDL manager, the initial driver program that works as collect training data, relay data to training devices and initial training clusters. Training data entry (TDE), a data storage for all training data. Dynamic training data distribution Existing distributed DNN training solutions usually statically partition training data among workers. It can be a problem when the training node joins and exits. We designed our framework that can dynamically distribute training data during learning. Before every training batch started, a batch of TDE will be sent to devices. In our experiments, we found that by applying this design, overall training time was shortened by doing. Especially in large amount devices cases, this optimization can be 50% less than statically divided. Scaling up cluster size Our framework was designed to have both sync and async parameter aggregation. Asynchronous aggregation can allow a high outcome of training batch but with a sacrifice or converge time. Synchronous aggregation allows a quick converge time in epochs, however can’t ensure performance when there’s a struggler worker. As showed in experiments, we chose sync as default because the converging time is dominant in overall training time. But, we also considered the possibilities of that async with more workers can achieve similar overall training time. We introduced a formula to determine whether adding more training nodes can help or not. Here we used bandwidth usage coefficient (BUC) as \[BUC = \dfrac{n}{T_{sync}}\] In this formula, \(n\) is the number of devices, and \(T_{sync}\) is the transmission time of parameters. With an increasing number of workers, n increase linearly but transmission time does not. When \(BUC\) increases, the cluster can speed up training time by adding workers. Otherwise, adding more workers won’t help with overall training time. Adaptive leader role splitting The idea of role splitting is simple that a device can work as a worker as well leader. The advantage of doing this is straightforward that we can transfer 1 less parameter and training time will be shortened. However, in our current settings, it can’t perform much better help since only 1 leader role is in a cluster. We can benefit from this in our future works. Overall architecture Details were given in the image. Prototype hardware and software EDDL was designed to be run on two single-board computer embedded platforms. One such platform is ODROID-XU4, which is equipped with a 2.1/1.4 GHz 32-bit ARM processor and 2GB memory. The other platform is the Raspberry Pi 3 Model B board, which comes with an ARM 1.2 GHz 64-bit quad-core processor and 1GB memory. The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14. We used Dlib, a C++ library that provides implementations for a wide range of machine learning algorithms. We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices.]]></summary></entry><entry><title type="html">EDDL: How do we train neural networks on limited edge devices - PART 1</title><link href="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices" rel="alternate" type="text/html" title="EDDL: How do we train neural networks on limited edge devices - PART 1" /><published>2021-10-13T16:53:20-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"><![CDATA[<p>This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published.
 As the first part of the introductions, I focus only on the motivation and summary of our works.
 More details in design and implementation can be found in late posts.</p>
 
@@ -602,7 +748,7 @@ Smartly schedule work balance and handle join/exit issues also need under consid
   Devices with sufficient bandwidth can also work as virtual leader devices.
   This approach helps minimize physical devices we used and more leaders can further scale up workers’ limits.</p>
   </li>
-</ul>]]></content><author><name>Pengzhan Hao</name></author><category term="Research" /><category term="Edge computing" /><summary type="html"><![CDATA[This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published. As the first part of the introductions, I focus only on the motivation and summary of our works. More details in design and implementation can be found in late posts.]]></summary></entry><entry><title type="html">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</title><link href="https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci" rel="alternate" type="text/html" title="Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries" /><published>2020-09-15T22:00:14-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"><![CDATA[<p>Let’s generate a word cloud like this. 
+</ul>]]></content><author><name>Pengzhan Hao</name></author><category term="Research" /><category term="Edge computing" /><summary type="html"><![CDATA[This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published. As the first part of the introductions, I focus only on the motivation and summary of our works. More details in design and implementation can be found in late posts.]]></summary></entry><entry><title type="html">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</title><link href="https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci" rel="alternate" type="text/html" title="Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries" /><published>2020-09-15T22:00:14-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"><![CDATA[<p>Let’s generate a word cloud like this. 
 Don’t understand the language is not a big deal.
 If your written language is based on latin alphabet(or other language has space between words), skip tokenization.</p>
 
@@ -761,7 +907,7 @@ If your written language is based on latin alphabet(or other language has space
 
 <p><img src="/static/2020-09/2020-06-28.png" height="150" /></p>
 
-<p>This generated word cloud figure reflects the most popular economy news’ keyword in the week started 06-28-2020. Two largest words in the figure are “新冠” and “新冠病毒”, both means “Covid-19” (This figure was in the week of the second covid spur in Beijing, China). The size of the image fits my phone screen and I can use an app to automatic sync it to my phone’s wallpaper. However, in this image, too many location nouns are presented. This will be something I can make progress on in the future.</p>]]></content><author><name>Pengzhan Hao</name></author><category term="Visualization" /><summary type="html"><![CDATA[Let’s generate a word cloud like this. Don’t understand the language is not a big deal. If your written language is based on latin alphabet(or other language has space between words), skip tokenization.]]></summary></entry><entry><title type="html">Xv6 introduction</title><link href="https://blog.pengzhan.dev/posts/intro-xv6" rel="alternate" type="text/html" title="Xv6 introduction" /><published>2017-07-28T14:56:55-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://blog.pengzhan.dev/posts/intro-xv6</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/intro-xv6"><![CDATA[<p>In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes.
+<p>This generated word cloud figure reflects the most popular economy news’ keyword in the week started 06-28-2020. Two largest words in the figure are “新冠” and “新冠病毒”, both means “Covid-19” (This figure was in the week of the second covid spur in Beijing, China). The size of the image fits my phone screen and I can use an app to automatic sync it to my phone’s wallpaper. However, in this image, too many location nouns are presented. This will be something I can make progress on in the future.</p>]]></content><author><name>Pengzhan Hao</name></author><category term="Visualization" /><summary type="html"><![CDATA[Let’s generate a word cloud like this. Don’t understand the language is not a big deal. If your written language is based on latin alphabet(or other language has space between words), skip tokenization.]]></summary></entry><entry><title type="html">Xv6 introduction</title><link href="https://dev.pengzhan.dev/posts/intro-xv6" rel="alternate" type="text/html" title="Xv6 introduction" /><published>2017-07-28T14:56:55-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://dev.pengzhan.dev/posts/intro-xv6</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/intro-xv6"><![CDATA[<p>In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes.
 Understand system call and know how to implement a simple one will be coved as the first half.
 In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb.<br />
 <!--more--></p>
@@ -836,7 +982,7 @@ Using ssh may connect to different physical devices under same domain name, this
 
 <div class="language-bash highlighter-rouge"><div class="highlight"><pre class="highlight"><code>target remote localhost:28467
 <span class="c"># target remote [ip-addr]:28467</span>
-</code></pre></div></div>]]></content><author><name>Pengzhan Hao</name></author><category term="Xv6" /><category term="Teaching" /><category term="Operating system" /><summary type="html"><![CDATA[In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes. Understand system call and know how to implement a simple one will be coved as the first half. In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb.]]></summary></entry><entry><title type="html">Some of my previews experiment works: 2016</title><link href="https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work" rel="alternate" type="text/html" title="Some of my previews experiment works: 2016" /><published>2016-10-28T12:27:33-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work"><![CDATA[<p>This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.
+</code></pre></div></div>]]></content><author><name>Pengzhan Hao</name></author><category term="Xv6" /><category term="Teaching" /><category term="Operating system" /><summary type="html"><![CDATA[In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes. Understand system call and know how to implement a simple one will be coved as the first half. In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb.]]></summary></entry><entry><title type="html">Some of my previews experiment works: 2016</title><link href="https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work" rel="alternate" type="text/html" title="Some of my previews experiment works: 2016" /><published>2016-10-28T12:27:33-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work"><![CDATA[<p>This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.
 <!--more--></p>
 
 <h1 id="2016-10">2016-10</h1>
@@ -946,7 +1092,7 @@ unxz ubuntu-14.04lts-xubuntu-odroid-xu-20140714.img.xz
 <span class="c"># dump file</span>
 su
 <span class="nb">dd </span><span class="k">if</span><span class="o">=</span>/dev/block/mmcblk0p37 <span class="nv">of</span><span class="o">=</span>/sdcard/boot.img
-</code></pre></div></div>]]></content><author><name>Pengzhan Hao</name></author><category term="Research" /><category term="Log" /><category term="Miscellanies" /><summary type="html"><![CDATA[This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.]]></summary></entry><entry><title type="html">Using charles proxy to monitor mobile SSL traffics</title><link href="https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool" rel="alternate" type="text/html" title="Using charles proxy to monitor mobile SSL traffics" /><published>2016-10-27T22:50:33-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool"><![CDATA[<p>In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one.<br />
+</code></pre></div></div>]]></content><author><name>Pengzhan Hao</name></author><category term="Research" /><category term="Log" /><category term="Miscellanies" /><summary type="html"><![CDATA[This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.]]></summary></entry><entry><title type="html">Using charles proxy to monitor mobile SSL traffics</title><link href="https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool" rel="alternate" type="text/html" title="Using charles proxy to monitor mobile SSL traffics" /><published>2016-10-27T22:50:33-04:00</published><updated>2021-12-11T13:35:39-05:00</updated><id>https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool"><![CDATA[<p>In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one.<br />
 My current solution is using AP to forward all SSL traffic to a proxy, <a href="https://www.charlesproxy.com/">charles proxy</a> is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy.
 <!--more--></p>
 
@@ -975,4 +1121,4 @@ You also need to save charles Root Certificate, it also contains in the same men
 
 <ul>
   <li>Set Proxy and SSL Proxy</li>
-</ul>]]></content><author><name>Pengzhan Hao</name></author><category term="Network" /><category term="Charles proxy" /><summary type="html"><![CDATA[In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one. My current solution is using AP to forward all SSL traffic to a proxy, charles proxy is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy.]]></summary></entry><entry><title type="html">STSD: Stop Talking Start Doing</title><link href="https://blog.pengzhan.dev/posts/welcome-to-my-blog" rel="alternate" type="text/html" title="STSD: Stop Talking Start Doing" /><published>2016-10-26T22:50:33-04:00</published><updated>2024-04-03T18:23:31-04:00</updated><id>https://blog.pengzhan.dev/posts/welcome-to-my-blog</id><content type="html" xml:base="https://blog.pengzhan.dev/posts/welcome-to-my-blog"><![CDATA[]]></content><author><name>Pengzhan Hao</name><email>haopengzhan@gmail.com</email></author><category term="Diary" /><summary type="html"><![CDATA[]]></summary></entry></feed>
\ No newline at end of file
+</ul>]]></content><author><name>Pengzhan Hao</name></author><category term="Network" /><category term="Charles proxy" /><summary type="html"><![CDATA[In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one. My current solution is using AP to forward all SSL traffic to a proxy, charles proxy is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy.]]></summary></entry><entry><title type="html">STSD: Stop Talking Start Doing</title><link href="https://dev.pengzhan.dev/posts/welcome-to-my-blog" rel="alternate" type="text/html" title="STSD: Stop Talking Start Doing" /><published>2016-10-26T22:50:33-04:00</published><updated>2024-04-03T18:23:31-04:00</updated><id>https://dev.pengzhan.dev/posts/welcome-to-my-blog</id><content type="html" xml:base="https://dev.pengzhan.dev/posts/welcome-to-my-blog"><![CDATA[]]></content><author><name>Pengzhan Hao</name><email>haopengzhan@gmail.com</email></author><category term="Diary" /><summary type="html"><![CDATA[]]></summary></entry></feed>
\ No newline at end of file
diff --git a/_site/index.html b/_site/index.html
index 2a20b7b..ca7d07b 100644
--- a/_site/index.html
+++ b/_site/index.html
@@ -5,7 +5,7 @@
 
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
 ">
-<link rel="canonical" href="https://blog.pengzhan.dev/"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -14,7 +14,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -27,15 +27,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
 <meta property="og:description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
-<link rel="canonical" href="https://blog.pengzhan.dev/" />
-<meta property="og:url" content="https://blog.pengzhan.dev/" />
+<link rel="canonical" href="https://dev.pengzhan.dev/" />
+<meta property="og:url" content="https://dev.pengzhan.dev/" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="website" />
-<link rel="next" href="https://blog.pengzhan.dev/page2" />
+<link rel="next" href="https://dev.pengzhan.dev/page2" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="STSD" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"WebSite","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-10-25T14:53:15-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"STSD","name":"STSD","url":"https://blog.pengzhan.dev/"}</script>
+{"@context":"https://schema.org","@type":"WebSite","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-10-25T14:53:15-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"STSD","name":"STSD","url":"https://dev.pengzhan.dev/"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -272,7 +272,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -427,9 +427,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -439,134 +439,147 @@
               <div class="col-main cell cell--auto"><!-- start custom main top snippet -->
 
 <!-- end custom main top snippet -->
-<article itemscope itemtype="http://schema.org/WebPage"><header style="display:none;"><h1>Home</h1></header><meta itemprop="headline" content="Home"><meta itemprop="author" content="Pengzhan Hao"/><div class="js-article-content"><div class="layout--articles"><div class="article-list items items--divided"><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2024-04/Kubelet.webp" /></div><div class="item__content">
-          <header><a href="/posts/Debug-kubelet"><h2 itemprop="headline" class="item__header">Debug Kubelet</h2></a></header>
+<article itemscope itemtype="http://schema.org/WebPage"><header style="display:none;"><h1>Home</h1></header><meta itemprop="headline" content="Home"><meta itemprop="author" content="Pengzhan Hao"/><div class="js-article-content"><div class="layout--articles"><div class="article-list items items--divided"><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2024-04/kubelet_inotify_leak_logo.png" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/inotify-watcher-leaks-in-kubelet"><h2 itemprop="headline" class="item__header">Inotify watcher leaks in Kubelet</h2></a></header>
+          <div class="item__description"><div class="article__content" itemprop="description articleBody">Symptom
+Recently, I faced an issue where Kubelet on a node reported error message failed to create file descriptors.
+
+error creating file watcher: too many open files
+error creating file watcher: no space left on device
+
+
+After short checking, I found the node has max_user_watches of 10000, but the TotalinotifyWatches is beyond this value. (P. S...</div><p><a href="/proxy/4000/posts/inotify-watcher-leaks-in-kubelet">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+              <a class="button button--secondary button--pill button--sm"
+                href="/proxy/4000/archive.html?tag=Kubernetes">Kubernetes</a>
+            </li><li>
+              <a class="button button--secondary button--pill button--sm"
+                href="/proxy/4000/archive.html?tag=Kubelet">Kubelet</a>
+            </li><li>
+              <a class="button button--secondary button--pill button--sm"
+                href="/proxy/4000/archive.html?tag=Debug">Debug</a>
+            </li><li>
+              <a class="button button--secondary button--pill button--sm"
+                href="/proxy/4000/archive.html?tag=Inotify">Inotify</a>
+            </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Apr 18, 2024</span>
+            </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2024-04-18T16:35:00-04:00">
+    <meta itemprop="keywords" content="Kubernetes,Kubelet,Debug,Inotify"></div>
+      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2024-04/Kubelet.webp" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/Debug-kubelet"><h2 itemprop="headline" class="item__header">Debug Kubelet</h2></a></header>
           <div class="item__description"><div class="article__content" itemprop="description articleBody">Debug logs
 
-Like all others program’s debugging, the most straightforward way for newbies and the easiest way for advanced developer is relying on logs. Same to debug kubelet, bumping up verbosity to show more logs is the most intuitive approach when facing an issue. Like most component in Kubernetes, kubelet uses klog for logging and there are ...</div><p><a href="/posts/Debug-kubelet">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+Like all others program’s debugging, the most straightforward way for newbies and the easiest way for advanced developer is relying on logs. Same to debug kubelet, bumping up verbosity to show more logs is the most intuitive approach when facing an issue. Like most component in Kubernetes, kubelet uses klog for logging and there are ...</div><p><a href="/proxy/4000/posts/Debug-kubelet">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Kubernetes">Kubernetes</a>
+                href="/proxy/4000/archive.html?tag=Kubernetes">Kubernetes</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Kubelet">Kubelet</a>
+                href="/proxy/4000/archive.html?tag=Kubelet">Kubelet</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Debug">Debug</a>
+                href="/proxy/4000/archive.html?tag=Debug">Debug</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Apr 10, 2024</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2024-04-10T03:34:00-04:00">
     <meta itemprop="keywords" content="Kubernetes,Kubelet,Debug"></div>
-      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2022-02/BU.jpeg" /></div><div class="item__content">
-          <header><a href="/posts/cs350-labs"><h2 itemprop="headline" class="item__header">Labs of CS350</h2></a></header>
+      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2022-02/BU.jpeg" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/cs350-labs"><h2 itemprop="headline" class="item__header">Labs of CS350</h2></a></header>
           <div class="item__description"><div class="article__content" itemprop="description articleBody">This will be a series regarding lab I gave during the spring 2022 semester.
 
 The reason why I am writing this down is because it has been a week and no students ask for the solution of the last Lab.
 I realise that learning gap between students are huge, especially when a non-profit university is admitting more and more students.
-To help all stud...</div><p><a href="/posts/cs350-labs">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+To help all stud...</div><p><a href="/proxy/4000/posts/cs350-labs">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Xv6">Xv6</a>
+                href="/proxy/4000/archive.html?tag=Xv6">Xv6</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Teaching">Teaching</a>
+                href="/proxy/4000/archive.html?tag=Teaching">Teaching</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Operating+system">Operating system</a>
+                href="/proxy/4000/archive.html?tag=Operating+system">Operating system</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Binghamton+university">Binghamton university</a>
+                href="/proxy/4000/archive.html?tag=Binghamton+university">Binghamton university</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Feb 22, 2022</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2022-02-22T16:08:17-05:00">
     <meta itemprop="keywords" content="Xv6,Teaching,Operating system,Binghamton university"></div>
-      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2021-10/f.5_Impl_leader_worker.png" /></div><div class="item__content">
-          <header><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"><h2 itemprop="headline" class="item__header">EDDL: How do we train neural networks on limited edge devices - PART 2</h2></a></header>
+      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2021-10/f.5_Impl_leader_worker.png" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"><h2 itemprop="headline" class="item__header">EDDL: How do we train neural networks on limited edge devices - PART 2</h2></a></header>
           <div class="item__description"><div class="article__content" itemprop="description articleBody">In the last post, part1, our idea of distributed learning on edge environment was generally addressed.
 I introduced the reason why edge distributed learning is needed and what improvements it can achieve.
 In this post, I will talk about our motivation study and how our framework works.
 
 How does data support us training on edge?
 
-Before designin...</div><p><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices-part2">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+Before designin...</div><p><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices-part2">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Research">Research</a>
+                href="/proxy/4000/archive.html?tag=Research">Research</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Edge+computing">Edge computing</a>
+                href="/proxy/4000/archive.html?tag=Edge+computing">Edge computing</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 31, 2021</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2021-10-31T13:01:14-04:00">
     <meta itemprop="keywords" content="Research,Edge computing"></div>
-      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2021-10/edgelearn-1.png" /></div><div class="item__content">
-          <header><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices"><h2 itemprop="headline" class="item__header">EDDL: How do we train neural networks on limited edge devices - PART 1</h2></a></header>
+      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2021-10/edgelearn-1.png" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices"><h2 itemprop="headline" class="item__header">EDDL: How do we train neural networks on limited edge devices - PART 1</h2></a></header>
           <div class="item__description"><div class="article__content" itemprop="description articleBody">This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published.
 As the first part of the introductions, I focus only on the motivation and summary of our works.
-More details in design and implementation can be found in l...</div><p><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+More details in design and implementation can be found in l...</div><p><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Research">Research</a>
+                href="/proxy/4000/archive.html?tag=Research">Research</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Edge+computing">Edge computing</a>
+                href="/proxy/4000/archive.html?tag=Edge+computing">Edge computing</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 13, 2021</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2021-10-13T16:53:20-04:00">
     <meta itemprop="keywords" content="Research,Edge computing"></div>
-      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2020-09/2020-06-28.png" /></div><div class="item__content">
-          <header><a href="/posts/generate-word-cloud-with-chinese-fenci"><h2 itemprop="headline" class="item__header">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</h2></a></header>
+      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2020-09/2020-06-28.png" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/generate-word-cloud-with-chinese-fenci"><h2 itemprop="headline" class="item__header">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</h2></a></header>
           <div class="item__description"><div class="article__content" itemprop="description articleBody">Let’s generate a word cloud like this. 
 Don’t understand the language is not a big deal.
-If your written language is based on latin alphabet(or other language has space between words), skip tokenization.</div><p><a href="/posts/generate-word-cloud-with-chinese-fenci">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+If your written language is based on latin alphabet(or other language has space between words), skip tokenization.</div><p><a href="/proxy/4000/posts/generate-word-cloud-with-chinese-fenci">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Visualization">Visualization</a>
+                href="/proxy/4000/archive.html?tag=Visualization">Visualization</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Sep 15, 2020</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2020-09-15T22:00:14-04:00">
     <meta itemprop="keywords" content="Visualization"></div>
-      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2021-10/Xv6_LS_Command_Output.png" /></div><div class="item__content">
-          <header><a href="/posts/intro-xv6"><h2 itemprop="headline" class="item__header">Xv6 introduction</h2></a></header>
+      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/proxy/4000/static/2021-10/Xv6_LS_Command_Output.png" /></div><div class="item__content">
+          <header><a href="/proxy/4000/posts/intro-xv6"><h2 itemprop="headline" class="item__header">Xv6 introduction</h2></a></header>
           <div class="item__description"><div class="article__content" itemprop="description articleBody">In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes.
 Understand system call and know how to implement a simple one will be coved as the first half.
-In the second half of this post, I will discuss a little bit more on how to debug ...</div><p><a href="/posts/intro-xv6">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+In the second half of this post, I will discuss a little bit more on how to debug ...</div><p><a href="/proxy/4000/posts/intro-xv6">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Xv6">Xv6</a>
+                href="/proxy/4000/archive.html?tag=Xv6">Xv6</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Teaching">Teaching</a>
+                href="/proxy/4000/archive.html?tag=Teaching">Teaching</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Operating+system">Operating system</a>
+                href="/proxy/4000/archive.html?tag=Operating+system">Operating system</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Jul 28, 2017</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2017-07-28T14:56:55-04:00">
     <meta itemprop="keywords" content="Xv6,Teaching,Operating system"></div>
       </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__content">
-          <header><a href="/posts/some-of-my-previews-exper-work"><h2 itemprop="headline" class="item__header">Some of my previews experiment works: 2016</h2></a></header>
-          <div class="item__description"><div class="article__content" itemprop="description articleBody">This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.</div><p><a href="/posts/some-of-my-previews-exper-work">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
+          <header><a href="/proxy/4000/posts/some-of-my-previews-exper-work"><h2 itemprop="headline" class="item__header">Some of my previews experiment works: 2016</h2></a></header>
+          <div class="item__description"><div class="article__content" itemprop="description articleBody">This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.</div><p><a href="/proxy/4000/posts/some-of-my-previews-exper-work">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Research">Research</a>
+                href="/proxy/4000/archive.html?tag=Research">Research</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Log">Log</a>
+                href="/proxy/4000/archive.html?tag=Log">Log</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Miscellanies">Miscellanies</a>
+                href="/proxy/4000/archive.html?tag=Miscellanies">Miscellanies</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 28, 2016</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2016-10-28T12:27:33-04:00">
     <meta itemprop="keywords" content="Research,Log,Miscellanies"></div>
-      </article><article class="item" itemscope itemtype="http://schema.org/BlogPosting"><div class="item__image" style="vertical-align: middle"><img class="image" src="/static/2021-12/charles-proxy-logo.png" /></div><div class="item__content">
-          <header><a href="/posts/charles-is-not-a-good-tool"><h2 itemprop="headline" class="item__header">Using charles proxy to monitor mobile SSL traffics</h2></a></header>
-          <div class="item__description"><div class="article__content" itemprop="description articleBody">In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still did...</div><p><a href="/posts/charles-is-not-a-good-tool">Read more</a></p></div><div class="article__info clearfix"><ul class="left-col menu"><li>
-              <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Network">Network</a>
-            </li><li>
-              <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Charles+proxy">Charles proxy</a>
-            </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 27, 2016</span>
-            </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2016-10-27T22:50:33-04:00">
-    <meta itemprop="keywords" content="Network,Charles proxy"></div>
       </article></div>
-</div><div class="layout--home"><div class="pagination"><p>9 post articles, 2 pages.</p>
+</div><div class="layout--home"><div class="pagination"><p>10 post articles, 2 pages.</p>
     <div class="pagination__menu">
       <ul class="menu menu--nowrap"><li><div class="button button--secondary button--circle disabled">
             <i class="fas fa-angle-left"></i>
           </div></li><li>
               <div class="button button--primary button--circle focus"><span>1</span></div>
             </li><li>
-                <a class="button button--secondary button--circle" href="/page2"><span>2</span></a>
-              </li><li><a class="button button--secondary button--circle" href="/page2">
+                <a class="button button--secondary button--circle" href="/proxy/4000/page2"><span>2</span></a>
+              </li><li><a class="button button--secondary button--circle" href="/proxy/4000/page2">
             <i class="fas fa-angle-right"></i>
           </a></li></ul>
     </div>
@@ -585,7 +598,7 @@
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/charles-is-not-a-good-tool.html b/_site/posts/charles-is-not-a-good-tool.html
index d0cb81e..0d8fbd1 100644
--- a/_site/posts/charles-is-not-a-good-tool.html
+++ b/_site/posts/charles-is-not-a-good-tool.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>Using charles proxy to monitor mobile SSL traffics - STSD</title>
 
 <meta name="description" content="In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL t...">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/charles-is-not-a-good-tool"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one. My current solution is using AP to forward all SSL traffic to a proxy, charles proxy is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy." />
 <meta property="og:description" content="In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one. My current solution is using AP to forward all SSL traffic to a proxy, charles proxy is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2016-10-27T22:50:33-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="Using charles proxy to monitor mobile SSL traffics" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2016-10-27T22:50:33-04:00","description":"In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one. My current solution is using AP to forward all SSL traffic to a proxy, charles proxy is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy.","headline":"Using charles proxy to monitor mobile SSL traffics","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool"},"url":"https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2016-10-27T22:50:33-04:00","description":"In this blog, I will generally talk about how to use proper tools to monitor SSL traffics of a mobile devices. Currently, I only can dealing with those SSL traffics which use an obviously certification. Some applications may not using system root cert or they doesn’t provide us a method to modify their own certs. For these situation, I still didn’t find a good solutions for it. But I’ll keep updating this if I get one. My current solution is using AP to forward all SSL traffic to a proxy, charles proxy is my first choice (Prof asked). It’s a non-free software which still update new versions now. So mainly, I’ll talk about how to charles SSL proxy.","headline":"Using charles proxy to monitor mobile SSL traffics","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool"},"url":"https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,10 +441,10 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>Using charles proxy to monitor mobile SSL traffics</h1></header></div><meta itemprop="headline" content="Using charles proxy to monitor mobile SSL traffics"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Network">Network</a>
+                href="/proxy/4000/archive.html?tag=Network">Network</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Charles+proxy">Charles proxy</a>
+                href="/proxy/4000/archive.html?tag=Charles+proxy">Charles proxy</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 27, 2016</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2016-10-27T22:50:33-04:00">
     <meta itemprop="keywords" content="Network,Charles proxy"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -483,9 +483,9 @@ <h3 id="install-charles-and-configuration">Install Charles and Configuration</h3
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2016-10-27T22:50:33-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/posts/welcome-to-my-blog">STSD: Stop Talking Start Doing</a></div><div class="next"><span>NEXT</span><a href="/posts/some-of-my-previews-exper-work">Some of my previews experiment works: 2016</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/proxy/4000/posts/welcome-to-my-blog">STSD: Stop Talking Start Doing</a></div><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/some-of-my-previews-exper-work">Some of my previews experiment works: 2016</a></div></div></div>
 
 </div>
 
@@ -521,7 +521,7 @@ <h3 id="install-charles-and-configuration">Install Charles and Configuration</h3
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/eddl-how-do-we-train-on-limited-edge-devices-part2.html b/_site/posts/eddl-how-do-we-train-on-limited-edge-devices-part2.html
index 06c043d..b087668 100644
--- a/_site/posts/eddl-how-do-we-train-on-limited-edge-devices-part2.html
+++ b/_site/posts/eddl-how-do-we-train-on-limited-edge-devices-part2.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>EDDL: How do we train neural networks on limited edge devices - PART 2 - STSD</title>
 
 <meta name="description" content="In the last post, part1, our idea of distributed learning on edge environment was generally addressed.I introduced the reason why edge distributed learning i...">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="In the last post, part1, our idea of distributed learning on edge environment was generally addressed. I introduced the reason why edge distributed learning is needed and what improvements it can achieve. In this post, I will talk about our motivation study and how our framework works. How does data support us training on edge? Before designing and implementing our framework, we first need confirmation that training on edge resource-limited devices is worthwhile. We were using a malware detection neural network to show why a small, customized neural network is better. We collected 32000+ mobile apps feature as global data. With these data records, we trained a multilayer perceptron called “PerNet” to determine whether a given feature belongs to a benign or malware app. We called this detection. As well, PerNet can also classify malware apps into different types of attacks. We called this classification. The global model can achieve 93% above recall rate and 96.93% above accuracy. With all these data, we selected two community app usage sub-dataset for local model generations. Large categories (Scenario 1) We chose the 5 largest categories of apps, including entertainment, tools, brain&amp;Puzzle, Lifestyle, and Education, as well as the 5 largest malware categories. All together, 12000+ apps were included in this sub-dataset, almost 50 to 50 between benign and malware. Campus-community categories (Scenario 2) We chose the 5 most downloaded categories from college students as benign groups, as well as a similar amount of 5 malware categories. To ensure that malware apps are included in 5 benign categories, we also considered synthesizing some other malware apps within categories of 5 most downloaded(benign) categories. With these two types of sub-dataset, we used the same PerNet to generate multiple local models. Under each scenarios experiment, we compared global and local models on the preserved test dataset. In all classification performances, local beat global in every scenario. In detection performances, local also share the same accuracy as global does. In summary, local models were trained on special occasions. Under the same circumstance, a global model can achieve no better accuracy than local models. The reason why local is better might be because of overfitting. I believe this issue also be considered in the machine learning communities that they brought transfer learning, a technique to optimize global models to special scenarios but performing more training to a global model once it’s shipped to local. Design and Implementation Overall design The basic EDDL distributed training setup consists of 3 parts. EDDL training cluster, a device cluster that consists of edge or mobile devices that are participating in training. EDDL manager, the initial driver program that works as collect training data, relay data to training devices and initial training clusters. Training data entry (TDE), a data storage for all training data. Dynamic training data distribution Existing distributed DNN training solutions usually statically partition training data among workers. It can be a problem when the training node joins and exits. We designed our framework that can dynamically distribute training data during learning. Before every training batch started, a batch of TDE will be sent to devices. In our experiments, we found that by applying this design, overall training time was shortened by doing. Especially in large amount devices cases, this optimization can be 50% less than statically divided. Scaling up cluster size Our framework was designed to have both sync and async parameter aggregation. Asynchronous aggregation can allow a high outcome of training batch but with a sacrifice or converge time. Synchronous aggregation allows a quick converge time in epochs, however can’t ensure performance when there’s a struggler worker. As showed in experiments, we chose sync as default because the converging time is dominant in overall training time. But, we also considered the possibilities of that async with more workers can achieve similar overall training time. We introduced a formula to determine whether adding more training nodes can help or not. Here we used bandwidth usage coefficient (BUC) as [BUC = \dfrac{n}{T_{sync}}] In this formula, \(n\) is the number of devices, and \(T_{sync}\) is the transmission time of parameters. With an increasing number of workers, n increase linearly but transmission time does not. When \(BUC\) increases, the cluster can speed up training time by adding workers. Otherwise, adding more workers won’t help with overall training time. Adaptive leader role splitting The idea of role splitting is simple that a device can work as a worker as well leader. The advantage of doing this is straightforward that we can transfer 1 less parameter and training time will be shortened. However, in our current settings, it can’t perform much better help since only 1 leader role is in a cluster. We can benefit from this in our future works. Overall architecture Details were given in the image. Prototype hardware and software EDDL was designed to be run on two single-board computer embedded platforms. One such platform is ODROID-XU4, which is equipped with a 2.1/1.4 GHz 32-bit ARM processor and 2GB memory. The other platform is the Raspberry Pi 3 Model B board, which comes with an ARM 1.2 GHz 64-bit quad-core processor and 1GB memory. The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14. We used Dlib, a C++ library that provides implementations for a wide range of machine learning algorithms. We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices." />
 <meta property="og:description" content="In the last post, part1, our idea of distributed learning on edge environment was generally addressed. I introduced the reason why edge distributed learning is needed and what improvements it can achieve. In this post, I will talk about our motivation study and how our framework works. How does data support us training on edge? Before designing and implementing our framework, we first need confirmation that training on edge resource-limited devices is worthwhile. We were using a malware detection neural network to show why a small, customized neural network is better. We collected 32000+ mobile apps feature as global data. With these data records, we trained a multilayer perceptron called “PerNet” to determine whether a given feature belongs to a benign or malware app. We called this detection. As well, PerNet can also classify malware apps into different types of attacks. We called this classification. The global model can achieve 93% above recall rate and 96.93% above accuracy. With all these data, we selected two community app usage sub-dataset for local model generations. Large categories (Scenario 1) We chose the 5 largest categories of apps, including entertainment, tools, brain&amp;Puzzle, Lifestyle, and Education, as well as the 5 largest malware categories. All together, 12000+ apps were included in this sub-dataset, almost 50 to 50 between benign and malware. Campus-community categories (Scenario 2) We chose the 5 most downloaded categories from college students as benign groups, as well as a similar amount of 5 malware categories. To ensure that malware apps are included in 5 benign categories, we also considered synthesizing some other malware apps within categories of 5 most downloaded(benign) categories. With these two types of sub-dataset, we used the same PerNet to generate multiple local models. Under each scenarios experiment, we compared global and local models on the preserved test dataset. In all classification performances, local beat global in every scenario. In detection performances, local also share the same accuracy as global does. In summary, local models were trained on special occasions. Under the same circumstance, a global model can achieve no better accuracy than local models. The reason why local is better might be because of overfitting. I believe this issue also be considered in the machine learning communities that they brought transfer learning, a technique to optimize global models to special scenarios but performing more training to a global model once it’s shipped to local. Design and Implementation Overall design The basic EDDL distributed training setup consists of 3 parts. EDDL training cluster, a device cluster that consists of edge or mobile devices that are participating in training. EDDL manager, the initial driver program that works as collect training data, relay data to training devices and initial training clusters. Training data entry (TDE), a data storage for all training data. Dynamic training data distribution Existing distributed DNN training solutions usually statically partition training data among workers. It can be a problem when the training node joins and exits. We designed our framework that can dynamically distribute training data during learning. Before every training batch started, a batch of TDE will be sent to devices. In our experiments, we found that by applying this design, overall training time was shortened by doing. Especially in large amount devices cases, this optimization can be 50% less than statically divided. Scaling up cluster size Our framework was designed to have both sync and async parameter aggregation. Asynchronous aggregation can allow a high outcome of training batch but with a sacrifice or converge time. Synchronous aggregation allows a quick converge time in epochs, however can’t ensure performance when there’s a struggler worker. As showed in experiments, we chose sync as default because the converging time is dominant in overall training time. But, we also considered the possibilities of that async with more workers can achieve similar overall training time. We introduced a formula to determine whether adding more training nodes can help or not. Here we used bandwidth usage coefficient (BUC) as [BUC = \dfrac{n}{T_{sync}}] In this formula, \(n\) is the number of devices, and \(T_{sync}\) is the transmission time of parameters. With an increasing number of workers, n increase linearly but transmission time does not. When \(BUC\) increases, the cluster can speed up training time by adding workers. Otherwise, adding more workers won’t help with overall training time. Adaptive leader role splitting The idea of role splitting is simple that a device can work as a worker as well leader. The advantage of doing this is straightforward that we can transfer 1 less parameter and training time will be shortened. However, in our current settings, it can’t perform much better help since only 1 leader role is in a cluster. We can benefit from this in our future works. Overall architecture Details were given in the image. Prototype hardware and software EDDL was designed to be run on two single-board computer embedded platforms. One such platform is ODROID-XU4, which is equipped with a 2.1/1.4 GHz 32-bit ARM processor and 2GB memory. The other platform is the Raspberry Pi 3 Model B board, which comes with an ARM 1.2 GHz 64-bit quad-core processor and 1GB memory. The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14. We used Dlib, a C++ library that provides implementations for a wide range of machine learning algorithms. We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2021-10-31T13:01:14-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="EDDL: How do we train neural networks on limited edge devices - PART 2" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2021-10-31T13:01:14-04:00","description":"In the last post, part1, our idea of distributed learning on edge environment was generally addressed. I introduced the reason why edge distributed learning is needed and what improvements it can achieve. In this post, I will talk about our motivation study and how our framework works. How does data support us training on edge? Before designing and implementing our framework, we first need confirmation that training on edge resource-limited devices is worthwhile. We were using a malware detection neural network to show why a small, customized neural network is better. We collected 32000+ mobile apps feature as global data. With these data records, we trained a multilayer perceptron called “PerNet” to determine whether a given feature belongs to a benign or malware app. We called this detection. As well, PerNet can also classify malware apps into different types of attacks. We called this classification. The global model can achieve 93% above recall rate and 96.93% above accuracy. With all these data, we selected two community app usage sub-dataset for local model generations. Large categories (Scenario 1) We chose the 5 largest categories of apps, including entertainment, tools, brain&amp;Puzzle, Lifestyle, and Education, as well as the 5 largest malware categories. All together, 12000+ apps were included in this sub-dataset, almost 50 to 50 between benign and malware. Campus-community categories (Scenario 2) We chose the 5 most downloaded categories from college students as benign groups, as well as a similar amount of 5 malware categories. To ensure that malware apps are included in 5 benign categories, we also considered synthesizing some other malware apps within categories of 5 most downloaded(benign) categories. With these two types of sub-dataset, we used the same PerNet to generate multiple local models. Under each scenarios experiment, we compared global and local models on the preserved test dataset. In all classification performances, local beat global in every scenario. In detection performances, local also share the same accuracy as global does. In summary, local models were trained on special occasions. Under the same circumstance, a global model can achieve no better accuracy than local models. The reason why local is better might be because of overfitting. I believe this issue also be considered in the machine learning communities that they brought transfer learning, a technique to optimize global models to special scenarios but performing more training to a global model once it’s shipped to local. Design and Implementation Overall design The basic EDDL distributed training setup consists of 3 parts. EDDL training cluster, a device cluster that consists of edge or mobile devices that are participating in training. EDDL manager, the initial driver program that works as collect training data, relay data to training devices and initial training clusters. Training data entry (TDE), a data storage for all training data. Dynamic training data distribution Existing distributed DNN training solutions usually statically partition training data among workers. It can be a problem when the training node joins and exits. We designed our framework that can dynamically distribute training data during learning. Before every training batch started, a batch of TDE will be sent to devices. In our experiments, we found that by applying this design, overall training time was shortened by doing. Especially in large amount devices cases, this optimization can be 50% less than statically divided. Scaling up cluster size Our framework was designed to have both sync and async parameter aggregation. Asynchronous aggregation can allow a high outcome of training batch but with a sacrifice or converge time. Synchronous aggregation allows a quick converge time in epochs, however can’t ensure performance when there’s a struggler worker. As showed in experiments, we chose sync as default because the converging time is dominant in overall training time. But, we also considered the possibilities of that async with more workers can achieve similar overall training time. We introduced a formula to determine whether adding more training nodes can help or not. Here we used bandwidth usage coefficient (BUC) as [BUC = \\dfrac{n}{T_{sync}}] In this formula, \\(n\\) is the number of devices, and \\(T_{sync}\\) is the transmission time of parameters. With an increasing number of workers, n increase linearly but transmission time does not. When \\(BUC\\) increases, the cluster can speed up training time by adding workers. Otherwise, adding more workers won’t help with overall training time. Adaptive leader role splitting The idea of role splitting is simple that a device can work as a worker as well leader. The advantage of doing this is straightforward that we can transfer 1 less parameter and training time will be shortened. However, in our current settings, it can’t perform much better help since only 1 leader role is in a cluster. We can benefit from this in our future works. Overall architecture Details were given in the image. Prototype hardware and software EDDL was designed to be run on two single-board computer embedded platforms. One such platform is ODROID-XU4, which is equipped with a 2.1/1.4 GHz 32-bit ARM processor and 2GB memory. The other platform is the Raspberry Pi 3 Model B board, which comes with an ARM 1.2 GHz 64-bit quad-core processor and 1GB memory. The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14. We used Dlib, a C++ library that provides implementations for a wide range of machine learning algorithms. We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices.","headline":"EDDL: How do we train neural networks on limited edge devices - PART 2","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"},"url":"https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2021-10-31T13:01:14-04:00","description":"In the last post, part1, our idea of distributed learning on edge environment was generally addressed. I introduced the reason why edge distributed learning is needed and what improvements it can achieve. In this post, I will talk about our motivation study and how our framework works. How does data support us training on edge? Before designing and implementing our framework, we first need confirmation that training on edge resource-limited devices is worthwhile. We were using a malware detection neural network to show why a small, customized neural network is better. We collected 32000+ mobile apps feature as global data. With these data records, we trained a multilayer perceptron called “PerNet” to determine whether a given feature belongs to a benign or malware app. We called this detection. As well, PerNet can also classify malware apps into different types of attacks. We called this classification. The global model can achieve 93% above recall rate and 96.93% above accuracy. With all these data, we selected two community app usage sub-dataset for local model generations. Large categories (Scenario 1) We chose the 5 largest categories of apps, including entertainment, tools, brain&amp;Puzzle, Lifestyle, and Education, as well as the 5 largest malware categories. All together, 12000+ apps were included in this sub-dataset, almost 50 to 50 between benign and malware. Campus-community categories (Scenario 2) We chose the 5 most downloaded categories from college students as benign groups, as well as a similar amount of 5 malware categories. To ensure that malware apps are included in 5 benign categories, we also considered synthesizing some other malware apps within categories of 5 most downloaded(benign) categories. With these two types of sub-dataset, we used the same PerNet to generate multiple local models. Under each scenarios experiment, we compared global and local models on the preserved test dataset. In all classification performances, local beat global in every scenario. In detection performances, local also share the same accuracy as global does. In summary, local models were trained on special occasions. Under the same circumstance, a global model can achieve no better accuracy than local models. The reason why local is better might be because of overfitting. I believe this issue also be considered in the machine learning communities that they brought transfer learning, a technique to optimize global models to special scenarios but performing more training to a global model once it’s shipped to local. Design and Implementation Overall design The basic EDDL distributed training setup consists of 3 parts. EDDL training cluster, a device cluster that consists of edge or mobile devices that are participating in training. EDDL manager, the initial driver program that works as collect training data, relay data to training devices and initial training clusters. Training data entry (TDE), a data storage for all training data. Dynamic training data distribution Existing distributed DNN training solutions usually statically partition training data among workers. It can be a problem when the training node joins and exits. We designed our framework that can dynamically distribute training data during learning. Before every training batch started, a batch of TDE will be sent to devices. In our experiments, we found that by applying this design, overall training time was shortened by doing. Especially in large amount devices cases, this optimization can be 50% less than statically divided. Scaling up cluster size Our framework was designed to have both sync and async parameter aggregation. Asynchronous aggregation can allow a high outcome of training batch but with a sacrifice or converge time. Synchronous aggregation allows a quick converge time in epochs, however can’t ensure performance when there’s a struggler worker. As showed in experiments, we chose sync as default because the converging time is dominant in overall training time. But, we also considered the possibilities of that async with more workers can achieve similar overall training time. We introduced a formula to determine whether adding more training nodes can help or not. Here we used bandwidth usage coefficient (BUC) as [BUC = \\dfrac{n}{T_{sync}}] In this formula, \\(n\\) is the number of devices, and \\(T_{sync}\\) is the transmission time of parameters. With an increasing number of workers, n increase linearly but transmission time does not. When \\(BUC\\) increases, the cluster can speed up training time by adding workers. Otherwise, adding more workers won’t help with overall training time. Adaptive leader role splitting The idea of role splitting is simple that a device can work as a worker as well leader. The advantage of doing this is straightforward that we can transfer 1 less parameter and training time will be shortened. However, in our current settings, it can’t perform much better help since only 1 leader role is in a cluster. We can benefit from this in our future works. Overall architecture Details were given in the image. Prototype hardware and software EDDL was designed to be run on two single-board computer embedded platforms. One such platform is ODROID-XU4, which is equipped with a 2.1/1.4 GHz 32-bit ARM processor and 2GB memory. The other platform is the Raspberry Pi 3 Model B board, which comes with an ARM 1.2 GHz 64-bit quad-core processor and 1GB memory. The operating system running on the above platforms is Ubuntu 18.04 with Linux kernel 4.14. We used Dlib, a C++ library that provides implementations for a wide range of machine learning algorithms. We chose the Dlib library because it is written in C/C++, and can be easily and natively used in embedded devices.","headline":"EDDL: How do we train neural networks on limited edge devices - PART 2","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"},"url":"https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,10 +441,10 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>EDDL: How do we train neural networks on limited edge devices - PART 2</h1></header></div><meta itemprop="headline" content="EDDL: How do we train neural networks on limited edge devices - PART 2"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Research">Research</a>
+                href="/proxy/4000/archive.html?tag=Research">Research</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Edge+computing">Edge computing</a>
+                href="/proxy/4000/archive.html?tag=Edge+computing">Edge computing</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 31, 2021</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2021-10-31T13:01:14-04:00">
     <meta itemprop="keywords" content="Research,Edge computing"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -558,9 +558,9 @@ <h3 id="prototype-hardware-and-software">Prototype hardware and software</h3>
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2021-10-31T13:01:14-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices">EDDL: How do we train neural networks on limited edge devices - PART 1</a></div><div class="next"><span>NEXT</span><a href="/posts/cs350-labs">Labs of CS350</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices">EDDL: How do we train neural networks on limited edge devices - PART 1</a></div><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/cs350-labs">Labs of CS350</a></div></div></div>
 
 </div>
 
@@ -596,7 +596,7 @@ <h3 id="prototype-hardware-and-software">Prototype hardware and software</h3>
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/eddl-how-do-we-train-on-limited-edge-devices.html b/_site/posts/eddl-how-do-we-train-on-limited-edge-devices.html
index dcd2c3e..3d197d5 100644
--- a/_site/posts/eddl-how-do-we-train-on-limited-edge-devices.html
+++ b/_site/posts/eddl-how-do-we-train-on-limited-edge-devices.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>EDDL: How do we train neural networks on limited edge devices - PART 1 - STSD</title>
 
 <meta name="description" content="This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Compu...">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published. As the first part of the introductions, I focus only on the motivation and summary of our works. More details in design and implementation can be found in late posts." />
 <meta property="og:description" content="This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published. As the first part of the introductions, I focus only on the motivation and summary of our works. More details in design and implementation can be found in late posts." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2021-10-13T16:53:20-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="EDDL: How do we train neural networks on limited edge devices - PART 1" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2021-10-13T16:53:20-04:00","description":"This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published. As the first part of the introductions, I focus only on the motivation and summary of our works. More details in design and implementation can be found in late posts.","headline":"EDDL: How do we train neural networks on limited edge devices - PART 1","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"},"url":"https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2021-10-13T16:53:20-04:00","description":"This post introduces our previous milestone in project “Edge trainer”, as the paper “EDDL: A Distributed Deep Learning System for Resource-limited Edge Computing Environment.” was published. As the first part of the introductions, I focus only on the motivation and summary of our works. More details in design and implementation can be found in late posts.","headline":"EDDL: How do we train neural networks on limited edge devices - PART 1","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"},"url":"https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,10 +441,10 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>EDDL: How do we train neural networks on limited edge devices - PART 1</h1></header></div><meta itemprop="headline" content="EDDL: How do we train neural networks on limited edge devices - PART 1"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Research">Research</a>
+                href="/proxy/4000/archive.html?tag=Research">Research</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Edge+computing">Edge computing</a>
+                href="/proxy/4000/archive.html?tag=Edge+computing">Edge computing</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 13, 2021</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2021-10-13T16:53:20-04:00">
     <meta itemprop="keywords" content="Research,Edge computing"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -531,9 +531,9 @@ <h2 id="our-proposal">Our proposal</h2>
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2021-10-13T16:53:20-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/posts/generate-word-cloud-with-chinese-fenci">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</a></div><div class="next"><span>NEXT</span><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices-part2">EDDL: How do we train neural networks on limited edge devices - PART 2</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/proxy/4000/posts/generate-word-cloud-with-chinese-fenci">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</a></div><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices-part2">EDDL: How do we train neural networks on limited edge devices - PART 2</a></div></div></div>
 
 </div>
 
@@ -569,7 +569,7 @@ <h2 id="our-proposal">Our proposal</h2>
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/generate-word-cloud-with-chinese-fenci.html b/_site/posts/generate-word-cloud-with-chinese-fenci.html
index 626cd6b..af3f408 100644
--- a/_site/posts/generate-word-cloud-with-chinese-fenci.html
+++ b/_site/posts/generate-word-cloud-with-chinese-fenci.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries - STSD</title>
 
 <meta name="description" content="Let’s generate a word cloud like this. Don’t understand the language is not a big deal.If your written language is based on latin alphabet(or other language ...">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/generate-word-cloud-with-chinese-fenci"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="Let’s generate a word cloud like this. Don’t understand the language is not a big deal. If your written language is based on latin alphabet(or other language has space between words), skip tokenization." />
 <meta property="og:description" content="Let’s generate a word cloud like this. Don’t understand the language is not a big deal. If your written language is based on latin alphabet(or other language has space between words), skip tokenization." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2020-09-15T22:00:14-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2020-09-15T22:00:14-04:00","description":"Let’s generate a word cloud like this. Don’t understand the language is not a big deal. If your written language is based on latin alphabet(or other language has space between words), skip tokenization.","headline":"Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"},"url":"https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2020-09-15T22:00:14-04:00","description":"Let’s generate a word cloud like this. Don’t understand the language is not a big deal. If your written language is based on latin alphabet(or other language has space between words), skip tokenization.","headline":"Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"},"url":"https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,7 +441,7 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</h1></header></div><meta itemprop="headline" content="Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Visualization">Visualization</a>
+                href="/proxy/4000/archive.html?tag=Visualization">Visualization</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Sep 15, 2020</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2020-09-15T22:00:14-04:00">
     <meta itemprop="keywords" content="Visualization"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -611,9 +611,9 @@ <h2 id="draw-word-cloud">Draw word cloud</h2>
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2020-09-15T22:00:14-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/posts/intro-xv6">Xv6 introduction</a></div><div class="next"><span>NEXT</span><a href="/posts/eddl-how-do-we-train-on-limited-edge-devices">EDDL: How do we train neural networks on limited edge devices - PART 1</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/proxy/4000/posts/intro-xv6">Xv6 introduction</a></div><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/eddl-how-do-we-train-on-limited-edge-devices">EDDL: How do we train neural networks on limited edge devices - PART 1</a></div></div></div>
 
 </div>
 
@@ -649,7 +649,7 @@ <h2 id="draw-word-cloud">Draw word cloud</h2>
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/intro-xv6.html b/_site/posts/intro-xv6.html
index e986be2..2ac9c37 100644
--- a/_site/posts/intro-xv6.html
+++ b/_site/posts/intro-xv6.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>Xv6 introduction - STSD</title>
 
 <meta name="description" content="In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching...">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/intro-xv6"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/intro-xv6"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes. Understand system call and know how to implement a simple one will be coved as the first half. In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb." />
 <meta property="og:description" content="In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes. Understand system call and know how to implement a simple one will be coved as the first half. In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/intro-xv6" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/intro-xv6" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/intro-xv6" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/intro-xv6" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2017-07-28T14:56:55-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="Xv6 introduction" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2017-07-28T14:56:55-04:00","description":"In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes. Understand system call and know how to implement a simple one will be coved as the first half. In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb.","headline":"Xv6 introduction","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/intro-xv6"},"url":"https://blog.pengzhan.dev/posts/intro-xv6"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2017-07-28T14:56:55-04:00","description":"In this post, you will learn a few basic concepts of xv6. Learning path will be closed coupled to first project assignment I gave when I assisted in teaching OS classes. Understand system call and know how to implement a simple one will be coved as the first half. In the second half of this post, I will discuss a little bit more on how to debug xv6 using gdb.","headline":"Xv6 introduction","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/intro-xv6"},"url":"https://dev.pengzhan.dev/posts/intro-xv6"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,13 +441,13 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>Xv6 introduction</h1></header></div><meta itemprop="headline" content="Xv6 introduction"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Xv6">Xv6</a>
+                href="/proxy/4000/archive.html?tag=Xv6">Xv6</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Teaching">Teaching</a>
+                href="/proxy/4000/archive.html?tag=Teaching">Teaching</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Operating+system">Operating system</a>
+                href="/proxy/4000/archive.html?tag=Operating+system">Operating system</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Jul 28, 2017</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2017-07-28T14:56:55-04:00">
     <meta itemprop="keywords" content="Xv6,Teaching,Operating system"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -532,9 +532,9 @@ <h2 id="debug-xv6-with-gdb">Debug xv6 with gdb</h2>
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2017-07-28T14:56:55-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/posts/some-of-my-previews-exper-work">Some of my previews experiment works: 2016</a></div><div class="next"><span>NEXT</span><a href="/posts/generate-word-cloud-with-chinese-fenci">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/proxy/4000/posts/some-of-my-previews-exper-work">Some of my previews experiment works: 2016</a></div><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/generate-word-cloud-with-chinese-fenci">Generate Word Cloud Figures with Chinese-Tokenization and WordCloud python libraries</a></div></div></div>
 
 </div>
 
@@ -570,7 +570,7 @@ <h2 id="debug-xv6-with-gdb">Debug xv6 with gdb</h2>
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/some-of-my-previews-exper-work.html b/_site/posts/some-of-my-previews-exper-work.html
index 20bd818..1d04b8c 100644
--- a/_site/posts/some-of-my-previews-exper-work.html
+++ b/_site/posts/some-of-my-previews-exper-work.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>Some of my previews experiment works: 2016 - STSD</title>
 
 <meta name="description" content="This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/some-of-my-previews-exper-work"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics." />
 <meta property="og:description" content="This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2016-10-28T12:27:33-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="Some of my previews experiment works: 2016" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2016-10-28T12:27:33-04:00","description":"This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.","headline":"Some of my previews experiment works: 2016","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work"},"url":"https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2021-12-11T13:35:39-05:00","datePublished":"2016-10-28T12:27:33-04:00","description":"This blog contains only some basic record of my works. For some details, I will write a unique blog just for some specific topics.","headline":"Some of my previews experiment works: 2016","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work"},"url":"https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,13 +441,13 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>Some of my previews experiment works: 2016</h1></header></div><meta itemprop="headline" content="Some of my previews experiment works: 2016"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Research">Research</a>
+                href="/proxy/4000/archive.html?tag=Research">Research</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Log">Log</a>
+                href="/proxy/4000/archive.html?tag=Log">Log</a>
             </li><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Miscellanies">Miscellanies</a>
+                href="/proxy/4000/archive.html?tag=Miscellanies">Miscellanies</a>
             </li></ul><ul class="right-col menu"><li><i class="fas fa-user"></i> <span>Pengzhan Hao</span></li><li><i class="far fa-calendar-alt"></i> <span>Oct 28, 2016</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2016-10-28T12:27:33-04:00">
     <meta itemprop="keywords" content="Research,Log,Miscellanies"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -567,9 +567,9 @@ <h3 id="how-to-extract-android-images-dump-an-image">How to extract android imag
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2016-10-28T12:27:33-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/posts/charles-is-not-a-good-tool">Using charles proxy to monitor mobile SSL traffics</a></div><div class="next"><span>NEXT</span><a href="/posts/intro-xv6">Xv6 introduction</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="previous"><span>PREVIOUS</span><a href="/proxy/4000/posts/charles-is-not-a-good-tool">Using charles proxy to monitor mobile SSL traffics</a></div><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/intro-xv6">Xv6 introduction</a></div></div></div>
 
 </div>
 
@@ -605,7 +605,7 @@ <h3 id="how-to-extract-android-images-dump-an-image">How to extract android imag
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/posts/welcome-to-my-blog.html b/_site/posts/welcome-to-my-blog.html
index b7ee9b4..455da88 100644
--- a/_site/posts/welcome-to-my-blog.html
+++ b/_site/posts/welcome-to-my-blog.html
@@ -4,7 +4,7 @@
 <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"><title>STSD: Stop Talking Start Doing - STSD</title>
 
 <meta name="description" content="">
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/welcome-to-my-blog"><link rel="alternate" type="application/rss+xml" title="STSD" href="/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
+<link rel="canonical" href="https://dev.pengzhan.dev/proxy/4000/posts/welcome-to-my-blog"><link rel="alternate" type="application/rss+xml" title="STSD" href="/proxy/4000/feed.xml"><link rel="apple-touch-icon" sizes="180x180" href="/assets/apple-touch-icon.png">
 <link rel="icon" type="image/png" sizes="32x32" href="/assets/favicon-32x32.png">
 <link rel="icon" type="image/png" sizes="16x16" href="/assets/favicon-16x16.png">
 <link rel="manifest" href="/assets/site.webmanifest">
@@ -13,7 +13,7 @@
 <meta name="msapplication-TileColor" content="#da532c">
 <meta name="msapplication-config" content="/assets/browserconfig.xml">
 <meta name="theme-color" content="#ffffff">
-<link rel="stylesheet" href="/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
+<link rel="stylesheet" href="/proxy/4000/assets/css/main.css"><link rel="stylesheet" href="/static/2022-09/all.css" >
 
 <style>
     @import url('https://fonts.googleapis.com/css2?family=Poppins:ital,wght@0,100;0,200;0,300;0,400;0,500;0,600;0,700;0,800;0,900;1,100;1,200;1,300;1,400;1,500;1,600;1,700;1,800;1,900&family=Roboto+Slab:wght@100..900&family=ZCOOL+XiaoWei&display=swap')
@@ -26,15 +26,15 @@
 <meta property="og:locale" content="en" />
 <meta name="description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
 <meta property="og:description" content="My personal blog, some contents are useful, the others are not. Just like my mediocre life." />
-<link rel="canonical" href="https://blog.pengzhan.dev/posts/welcome-to-my-blog" />
-<meta property="og:url" content="https://blog.pengzhan.dev/posts/welcome-to-my-blog" />
+<link rel="canonical" href="https://dev.pengzhan.dev/posts/welcome-to-my-blog" />
+<meta property="og:url" content="https://dev.pengzhan.dev/posts/welcome-to-my-blog" />
 <meta property="og:site_name" content="STSD" />
 <meta property="og:type" content="article" />
 <meta property="article:published_time" content="2016-10-26T22:50:33-04:00" />
 <meta name="twitter:card" content="summary" />
 <meta property="twitter:title" content="STSD: Stop Talking Start Doing" />
 <script type="application/ld+json">
-{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2024-04-03T18:23:31-04:00","datePublished":"2016-10-26T22:50:33-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"STSD: Stop Talking Start Doing","mainEntityOfPage":{"@type":"WebPage","@id":"https://blog.pengzhan.dev/posts/welcome-to-my-blog"},"url":"https://blog.pengzhan.dev/posts/welcome-to-my-blog"}</script>
+{"@context":"https://schema.org","@type":"BlogPosting","author":{"@type":"Person","name":"Pengzhan Hao"},"dateModified":"2024-04-03T18:23:31-04:00","datePublished":"2016-10-26T22:50:33-04:00","description":"My personal blog, some contents are useful, the others are not. Just like my mediocre life.","headline":"STSD: Stop Talking Start Doing","mainEntityOfPage":{"@type":"WebPage","@id":"https://dev.pengzhan.dev/posts/welcome-to-my-blog"},"url":"https://dev.pengzhan.dev/posts/welcome-to-my-blog"}</script>
 <!-- End Jekyll SEO tag -->
 
 <!-- end custom head snippets -->
@@ -271,7 +271,7 @@
         }
       },
       paths: {
-        search_js: '/assets/search.js'
+        search_js: '/proxy/4000/assets/search.js'
       }
     };
     window.TEXT_VARIABLES = TEXT_VARIABLES;
@@ -426,9 +426,9 @@
 </g>
 </svg>
 -->
-          <img src="/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
-" href="/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
-        <ul><li class="navigation__item"><a href="/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
+          <img src="/proxy/4000/assets/favicon-32x32.png" style="margin-right: 5px;"><a title="My personal blog, some contents are useful, the others are not. Just like my mediocre life.
+" href="/proxy/4000/">STSD</a></div><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></div><nav class="navigation">
+        <ul><li class="navigation__item"><a href="/proxy/4000/archive.html">Archive</a></li><li class="navigation__item"><a href="https://pengzhan.dev">About</a></li><li><button class="button button--secondary button--circle search-button js-search-toggle"><i class="fas fa-search"></i></button></li></ul>
       </nav></div>
   </header>
 </div><div class="page__content"><div class ="main"><div class="grid grid--reverse">
@@ -441,7 +441,7 @@
 <!-- end custom main top snippet -->
 <article itemscope itemtype="http://schema.org/Article"><div class="article__header"><header><h1>STSD: Stop Talking Start Doing</h1></header></div><meta itemprop="headline" content="STSD: Stop Talking Start Doing"><div class="article__info clearfix"><ul class="left-col menu"><li>
               <a class="button button--secondary button--pill button--sm"
-                href="/archive.html?tag=Diary">Diary</a>
+                href="/proxy/4000/archive.html?tag=Diary">Diary</a>
             </li></ul><ul class="right-col menu"><li><i class="far fa-calendar-alt"></i> <span>Oct 26, 2016</span>
             </li></ul></div><meta itemprop="author" content="Pengzhan Hao"/><meta itemprop="datePublished" content="2016-10-26T22:50:33-04:00">
     <meta itemprop="keywords" content="Diary"><div class="js-article-content"><div class="layout--article"><!-- start custom article top snippet -->
@@ -451,9 +451,9 @@
 </div><section class="article__sharing d-print-none"></section><div class="d-print-none"><footer class="article__footer"><meta itemprop="dateModified" content="2016-10-26T22:50:33-04:00"><!-- start custom article footer snippet -->
 
 <!-- end custom article footer snippet -->
-<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/feed.xml">Subscribe</a></div>
+<div class="article__subscribe"><div class="subscribe"><i class="fas fa-rss"></i> <a type="application/rss+xml" href="/proxy/4000/feed.xml">Subscribe</a></div>
 </div><div class="article__license"></div></footer>
-<div class="article__section-navigator clearfix"><div class="next"><span>NEXT</span><a href="/posts/charles-is-not-a-good-tool">Using charles proxy to monitor mobile SSL traffics</a></div></div></div>
+<div class="article__section-navigator clearfix"><div class="next"><span>NEXT</span><a href="/proxy/4000/posts/charles-is-not-a-good-tool">Using charles proxy to monitor mobile SSL traffics</a></div></div></div>
 
 </div>
 
@@ -489,7 +489,7 @@
             </div></div></div><div class="page__footer d-print-none">
 <footer class="footer py-4 js-page-footer">
   <div class="main"><div itemscope itemtype="http://schema.org/Person">
-      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/"><div class="footer__author-links"><div class="author-links">
+      <meta itemprop="name" content="Pengzhan Hao"><meta itemprop="url" content="/proxy/4000/"><div class="footer__author-links"><div class="author-links">
   <ul class="menu menu--nowrap menu--inline"><li title="Send me an Email.">
       <a class="button button--circle mail-button" itemprop="email" href="mailto:haopengzhan@gmail.com" target="_blank">
         <div class="icon"><svg fill="#000000" width="24px" height="24px" viewBox="0 0 1024 1024" version="1.1" xmlns="http://www.w3.org/2000/svg">
diff --git a/_site/robots.txt b/_site/robots.txt
index 6c9fc8d..f770bad 100644
--- a/_site/robots.txt
+++ b/_site/robots.txt
@@ -1 +1 @@
-Sitemap: https://blog.pengzhan.dev/sitemap.xml
+Sitemap: https://dev.pengzhan.dev/sitemap.xml
diff --git a/_site/sitemap.xml b/_site/sitemap.xml
index 58b43b0..7a61f79 100644
--- a/_site/sitemap.xml
+++ b/_site/sitemap.xml
@@ -1,75 +1,79 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <urlset xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.sitemaps.org/schemas/sitemap/0.9 http://www.sitemaps.org/schemas/sitemap/0.9/sitemap.xsd" xmlns="http://www.sitemaps.org/schemas/sitemap/0.9">
 <url>
-<loc>https://blog.pengzhan.dev/posts/welcome-to-my-blog</loc>
+<loc>https://dev.pengzhan.dev/posts/welcome-to-my-blog</loc>
 <lastmod>2024-04-03T18:23:31-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/charles-is-not-a-good-tool</loc>
+<loc>https://dev.pengzhan.dev/posts/charles-is-not-a-good-tool</loc>
 <lastmod>2021-12-11T13:35:39-05:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/some-of-my-previews-exper-work</loc>
+<loc>https://dev.pengzhan.dev/posts/some-of-my-previews-exper-work</loc>
 <lastmod>2021-12-11T13:35:39-05:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/intro-xv6</loc>
+<loc>https://dev.pengzhan.dev/posts/intro-xv6</loc>
 <lastmod>2021-12-11T13:35:39-05:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci</loc>
+<loc>https://dev.pengzhan.dev/posts/generate-word-cloud-with-chinese-fenci</loc>
 <lastmod>2021-12-11T13:35:39-05:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices</loc>
+<loc>https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices</loc>
 <lastmod>2021-12-11T13:35:39-05:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2</loc>
+<loc>https://dev.pengzhan.dev/posts/eddl-how-do-we-train-on-limited-edge-devices-part2</loc>
 <lastmod>2021-12-11T13:35:39-05:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/cs350-labs</loc>
+<loc>https://dev.pengzhan.dev/posts/cs350-labs</loc>
 <lastmod>2022-05-04T19:45:56-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/posts/Debug-kubelet</loc>
+<loc>https://dev.pengzhan.dev/posts/Debug-kubelet</loc>
 <lastmod>2024-04-10T23:51:19-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/archive</loc>
+<loc>https://dev.pengzhan.dev/posts/inotify-watcher-leaks-in-kubelet</loc>
+<lastmod>2024-04-11T16:57:07-04:00</lastmod>
+</url>
+<url>
+<loc>https://dev.pengzhan.dev/archive</loc>
 <lastmod>2021-10-25T14:53:15-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/</loc>
+<loc>https://dev.pengzhan.dev/</loc>
 <lastmod>2021-10-25T14:53:15-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/page2/</loc>
+<loc>https://dev.pengzhan.dev/page2/</loc>
 <lastmod>2021-10-25T14:53:15-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/static/2017-07/eps_poster.pdf</loc>
+<loc>https://dev.pengzhan.dev/static/2017-07/eps_poster.pdf</loc>
 <lastmod>2024-04-03T17:11:49-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/static/2017-07/p163-hao.pdf</loc>
+<loc>https://dev.pengzhan.dev/static/2017-07/p163-hao.pdf</loc>
 <lastmod>2024-04-03T17:11:49-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/static/2017-07/p169-zhang.pdf</loc>
+<loc>https://dev.pengzhan.dev/static/2017-07/p169-zhang.pdf</loc>
 <lastmod>2024-04-03T17:11:49-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/static/2018-02/a7-hao.pdf</loc>
+<loc>https://dev.pengzhan.dev/static/2018-02/a7-hao.pdf</loc>
 <lastmod>2024-04-03T17:11:49-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/static/2021-10/eta-infocom18.pdf</loc>
+<loc>https://dev.pengzhan.dev/static/2021-10/eta-infocom18.pdf</loc>
 <lastmod>2024-04-03T17:11:49-04:00</lastmod>
 </url>
 <url>
-<loc>https://blog.pengzhan.dev/static/2021-12/eddl-sec21.pdf</loc>
+<loc>https://dev.pengzhan.dev/static/2021-12/eddl-sec21.pdf</loc>
 <lastmod>2024-04-03T17:11:49-04:00</lastmod>
 </url>
 </urlset>
diff --git a/static/2024-04/kubelet_inotify_leak_logo.png b/static/2024-04/kubelet_inotify_leak_logo.png
new file mode 100644
index 0000000000000000000000000000000000000000..a8eb9d40bd4e78bdc4226bb8463b92b6a1c16943
GIT binary patch
literal 59989
zcmeFYV|ygu_dPs_ZEIp<GO;GMolI=on%K6JiEV3Qr(>t%bZqnA^ZDNI;C}jhP~CNP
z*Hu+#*Ewsiz4oeb1vzm<I6SydpFSZ<N{A?Z`t<qs-v$E({$+e|GXnetYcHYc^yw2L
z*}v_xdy#<ar%%Vwk|KgC?pddAZdt!HwKijWa-Ghr%BKXY)acBjDa~Y8S5^p?MW%Xn
z{~lObGY<`5vkyIn_TpgG)@_Ub2w{Rk@1(CabwjM=m^zh<fh!=;E^~5I-EhjeAO@+q
zNFS%nE2)+(H~~Azn%XNa_*#yEH(a3b>lr2)+IR_av~Uqy%ZX^Bpa1qq<4>sIJpbDp
z|4n`P-{16K|Ky32f_Li?!UBl?9W(Ns<o^!(zYzT2Ecm~L@c#n~67czcgW<=cApfv)
z6T5JbES#R|e@GJ<-bZKwr8rF%FHx9JP4cw4r>A%8gsKAj!2&9J!X^zE3GTs-(c*C>
zccl5>QJ--zkj)ue?*s;ab5CD3DTmHoJ}Z4G!xZTQsPwi)(K{I<@zM;@2EZOOX~KBV
zLWBm4_TerB;QbZv^81Po$p?l$yx-`7o`VsBDD!ls;?`otd6s`ooLz9#+^BBdv{$7=
zgixbYfA(sA*VA{TG%^<B^5NfIZ&fPeR${?HE7yY5{&t7e2?@bO)P$)3yF=t5jP~DI
ztI>l=4u-aL*wV()18>^m5?Q7*Yc2A!RW}r<dxK4%c(+GrMe_=baR+K`RQn#Ic9&}%
z_oB=?vkXLQGvd-|)zC#gBTIeT%;MQ$e~XsHxCKY7O%8&2M?rM}%U<pZGq#C&`Kxy5
zs^&r_#0d{0$2c9^x7=tCbp*7SQvHGHIm%n>AVjO}k=p%7$>GPs;S~tXUM=Vh1MhEX
z4`g;4{{?*HPb()g!>jf{oJTL0eC8z1vAkwa{okLty*Q2^o|mEHqQi+9g%xGQT9Dq1
zZ$t3eP_{aWwFX7|11oUD@}^NTFse+;^ZFF<i=R*#361umfBtu$>8a~AI`D4j$Qpl1
zjst&{=NVqP*OwQiaYI2P;D>PIoT3%lzTe{@;B}rjQFyzGp9@9<lvn$5**|nJbD@V|
z3Cn72N(Vwd1HxJD-IpC~*Of(U!%6T0_Arpeu3-M)l5Rh^OyTl2-H4`q{cjo=>p~2E
z(F_w>B0u$FOVuvmbSZTzEHjz3G<eewPu3BdOgeXx#A<4z_L_$^6tdLPV1B&JO+%S>
z_3x%VmaQ#Zx?cNndJ7M0O`sG4g-{|ELBOxMf10MC+PjKigmDFR0!fZ2KIi?FDZ&!t
zW?$^TL27<VreE%66YV5X5*&yx+xnhgprPOY+u$s(sHN+m=e}ukN_pbvU_Nb_#sKv`
z0;L&&5qiuhZhiudE+M-^Qbfo(dwvDEb0h2!=ijZO=DAew62ghAL6H^axcYV`gGcY7
z{B7F)0wIcqLNQ5^OPFKA#os%l7z1hg&SCWU|9gC$)MC9AzpJ)nLrg_GrH{<VHF!!Z
zi6stg8uEx5;mAwV+PQ!g!#IKZs7X$VIl?8ZQ!$*Trb$v_?p;@<rZ7Z5L@H9@r0nea
zj?a_weW{Cbcwdn)V`ns_KmD{cIQwm)n!A5m>Ue3KtZWn`d4-cCl(6+{IT;@T__QvC
zqRBWS-owo0r?~xZF$a=aDtu1$SCltPt#^gA#-X3lP2vrkOx*8q$WQsII~l!#rOL^d
zPr!Y|>B3&{3o@})|9L3EtP1eF=+x2r5a9XOlRKi;qjsSEbAA=XJp3f}mVylbm%;go
zH=vX0y2GAIav~_$agdC1P-}F!WG1kC;(w&%ChzxnWdE(J#$t_(CTrZZB0{%atZ*kR
zCJ?6ELXiYH&q<e)m6m{8d4E0~4l`H3DsD@G7z-}!;5(7)ny#=`CQC#q2`vdy2^I*Q
zTRJ8>Fs11$td0#zP}c$egZnoKz%~e`X?s1*(cL}6$c&Jcu{VPB5rrCClU+nGR)o}!
z1Ve_%ych~q^k$EFba%Sz!5Cuc>1T&YzkXjva){ygOycUFRevH$+%aWryIs@2^B%9b
zmG`APh!ScjMg@(yCX*~0{J<_wh3)QMLT20SHD8vl_zmxWk`&RmiV2IaPT|~={v1Ca
zO4!b!$ydN9;i};rCGUZhld*k>Ytn95w^KJ1^oi@M9AC!8HDW%nlPc|CSJ(IGKWyu)
zQ|KZ|_=QRzK~^AB+Q&YhUTdJ*H=P$Z917Yt=TFr#SS%p?Gf$_=$#%@ee9FlIWejD6
zA#;|Dh{wOxwS&1DnX*8q|MuHJ)a>&>D1|?ue@9fYjG_$krgQi^H>5Z~h0Ar7g%6QZ
z5h64n2ErdXGRS+0=^G(qePj4P#+ZUS7QP$0+ya6`I`>Q79Y%IMo>wd`ruuw%c4W4&
z#l2Xy*>_OY(%>@8cY9ksz(s*-Vp3!97H3i`PEDE8ZaH3QuwDTj-(J(6MME{kjg)&E
zC6iKS$g)VHH3&0ZxOyzcfQzfkKw+h^pl33!;16WXWFnr(QnSr>$+VnwBOc=Csv_Xu
z<#eVrvZO3r#ZNS--0Ffx5EEj~4qtqtkpH)k9p`qlb_YTH!<*i($XxdJ4}W|gdS8e@
zR^9iR?k~G;_3cZ0LWFoZX<FY>^7bGS`F<M|?{Il6I$b91o~l5G=IcZ328L@z57MPk
zE~s&MSl}%vbnz+Y8>59h>+f0~UdYw9QS_S2&KFf*kv60RN<kuJyAp8fm^w-cB2aP+
z;=ACmw3<8XUH><oIM}G<33eX*9zZJ(&vZ*JS$>yI#9N_$Te-7y3zF3Pcz@O{*?^Xq
zOC{xF;ReLCjk3w8WQDU(#vc1@nc8>4f_OFw2%cZv2NxNjk(jo+2JsAPm+D=p4NPK3
z2Q$|{nA&i=)y}4V2Psae1nrs;ipx#e`_B3^knUVZxTR<)xmx@;an>6<@2^vzm_DAU
zN>%6(xqwyL?AIM1ci5UOu59zsr)_bm!NOF@!X*_lNflu@XhwpBq(rKj>Ph2X36Zdq
zT6o{<Jw}vQv*5(~I4vRfJK>HYq?7$IDcGx|G-nV8gF2~YFXJ*ji9Bt3(Uewc8Ml`;
z_oqj{8zm~-2_*zE^W1%d5)>8Q)9-@!W=La7J0`38uR3X?S?PG;;=hI$2zsc_AKs|9
zW%GOX>X|C<75vMp%TB<nxxajgz=|mtRn}IRiZb@(RKn$O`UwQcJ~&NB&*JyV3cpgM
zq#RC9PaiPBRHD;>r}ON<Jv=d5*!olvs#foMhqqXzJNb-grP<&aW|$B2bC63eni^W(
zGz+)l4=_$c$n`hJU9|)0w^$%(&{pJ6<vPrNNSqln6VLj3EALB%p13Q^^{!3ao%?Yc
zNxc22x&3%VGc*o4pjBC>U%0sYI`p02HK(g1*XW@FaCt4Qw=>bU9YWC3rLuPx%QsT}
za<M(N=IS_X)1pk><X}4CbSW}4dZU^Z`UCdrGqB_*+)%zTiq9EG)W0HauXq>P_W|@Y
zVI}~ack+Jh@Qvyq_NFRBMdPIvO2Kbp;4odi1vc0{+<2d}`VA`UJ$ERmR*xpZ(dgaf
zv|Q&ubf*pjZ(+=aDhN0=O&_hL*wAH^hA1OEBR!e#s-5H2(5>3Q6<}t>cA|I&<H0B5
zw}#Cfe;xVXb;ce<uE)a0t%-~0LaNE?y50#ruaO_kht%&UCdEqo$R9iCl{y_E90Kns
z747tN9jlxIg{K0V+Y>M{^6*1=X!tu&KU{s<zWr~~V*>c!j#9Efr)>uJXCC3&u0ZVX
zi=T2|LbPcPN<w3=s6KYpJ>G+vnlCF;ueZ7$6r@vF-PN4o-!^Qrh(indafheW(#nlB
ztZGQf8O6pq0{;ca_z2aqA|!xuDD?VJ0|np&@NG8fU%pv&I$ic47854P!d9;sS^bj4
z<g=~(`tJ7uvp*&yJ>|}I-ucFEDU>zbK}Pi4kpyJyA6lS@$#Nv%%4Shjj6!^R@zBXp
zxK2?(frd0A(B*BG40Z#C{WlJ2Bs)R2e)qxlA4yutw6<doTU$9P(Yt@&)%~Xd1f@&*
zcI;DJ{LfT9Q&jv<R1933$?oIA53_4?{!8?B$l52U>J@=Zw~fL8)BcbqSaEq{0v;Wc
zMuZ{Sa25?>+6A7IOE|UQfR@%)MLV2-yk{h#-(9qGP$D2TDvCB;OKeEK$(aC*A5%S+
z*~i8Uv>$J7zA;p}&ub~!H&WJ{S1={R2z2d5L@0-f0~0o@Xsg{W*g<RTl-9qJ9bX%F
zN9=>0SR-%(lNEH?MK8-a(<g6Ye+h8NO!t5~fQz?Ir=D93-j81IE^`3%aC(y%BH-{S
zdMKXf#CeXd>uG08{%~b}P>i8rp5gcU^4WNe#anU&iiP4Vr*Bg^0voe89v4sjn;(M|
z6bGLOE8H%h)Q2_a=7x$@Q!u;G{;Zr(nB4sN?qNWvnqNR|t(RMCE5Yf=y?a>uoqu2P
zLeZ)hC(AM_)Q-d<lqj6usr&KiW3q(*&J2<7pc)!D3n7?`nB+)moUT+`>ub_iEZF}u
z)&$Vq*bD09U2JxZc-<TRhy(bX+i7`D(HYqEEy}h8U~zfdh8US43U{S2Ske3Vr2LpK
z7G}G3$3_e`Rl$f=kYeCj)L^d)LI;hV3dB43qFt)Oh4))YA;eiBfWyy$o8abK{bpq#
zWHF|3VE8ycgU=TPUwZcm*+j|AsxYv(E$(_g1qL4qoxO%}dW}t6p|Pu=pvXvPMqs(#
z>CAWE;{6riS78F`&^qrvF@Up(Fb}DNV(P1lk4iMEt;c7t{DDyQdwy|j9j`OU-90jo
zv(po<%wV^iRQRi?T-G?J<M-Wl4SyLz_L)xBjdi8QrzMY$H7ycdV*@ZI*?#|3ipv0X
z!7FzCm!QB!2ZbdpBpia?+*~eS$acre2==wE0NVBz<%_`!R#vG;A*&Xoq&<!|)LB`*
zt!iI;GEEoZ6GU|z4K@xQ0ZCoT1Y7g^iBP3pPZ0$uJtt@H!51XZxc4h^e{t<x{N}#S
zBhp35>hhS&1IWsId?;YD{6j@wRbHr!#A8)UqZ0Ou;R(QO#*@7YW3h(Xai?;3+G77y
zLTo|Xx;)G?iqb=+6PfJ_cG9+VDKd6K9OHIGRuni6w@Ww#lRjDyo1I-noNd+d_=QBD
zSC^oC-b<rLu{6m{>l|7a#*VNw?h!(v)13ga6MYpP*GgTRy_$ALxqc5(P?61Jxc)bJ
zh+C%x_Q%Vdp8056i*;841?Z_m{(UszDT~qcW^pZDUL^Xr>~|FgvI58);;Pv-Wz#$T
zctkpxL#o)2r2fv1OaOih4x|;qi5i|7`0iaB|Gp<;hKRF%PyM5YI{N#^j}ApddEfc#
zad745h@Ow5szQ(H5XR|EAt<4!e6pC;5+riPFAO>F73Hp^B*Kv1$}xfG=e!4&-oBtr
zoGwD<-!H~<MRFH)>8z~g)|;08G(-Jq|5QC?uC<mH`pdLNAK}8|1)Tx?HoIkG^VTVg
z%O|Vnb$rwA*`qr6z8OiaW~1}3JZ2-#&Q<~~5hqW)z3IHeUaQ$#p3#|<wAVM0`U(K{
zywD?4%dEyO&M7OxeG(3lG?#n(*r=0&3r)Cj?=)kGj5kb*cRz1eBskCRQ3};+lxrdO
zvNucU#eSbooYAbuh>+|?hk0p}N@3xq$-?({N>nw?g6FEU%Y!vA4u@&~qzeH;_g<LW
zFkNY+HJOAfYQQjcU(laz`u-xV+t4{!B8r$rG^x?{t_Ww5Z@{38Z8+S_qp|iS@x|=@
zoCy!eQmwe|wV7G#n$PLnn~AW{iC96qC80e2_@mQ)y5XbI<n3o)v47A#8pODCX-IC(
ztSPdYel3T{bS|+20j?_nPmPRMq@uiJKOaWdAv~DF)bEXUx&2m9lONS!M=Gw=VQ@}H
zP@90P$=UdVp|OGNTLoHg+}?5kT+Jbc_T!DldO4uTZM3fasjy-M;m`Y@NSVKzojJ8%
zc0qz5?Qfg#*%68=2~ngZFGIO4Aw~JpP+nDdB2WWw><!6xr_12_3y3aOpZ-F>fA)Je
z`}io<orCUq?l1@XpaAQx>TbM`KYp-(&5vJq43>dXWj0hG=C`w=2YL-qFH$SBj#)v|
z5%46}S^llJV9xK5MY((IB#GYRcbvTV9LYRwr8#4@!kq4St1@)O%B=d?>Sl|pT7~yM
zT2qT1&eJ&jPrhi8J3WmqpQ@gTYKsvlg%OHdXsM#zo%-%?+3#Txk&}^rUjJ;*M!msL
zkEgiZ^&q82sKMQ663f6`IfU}O9n`B@h*e`<WYE-)8kER`dK-~CB9cLT(K3A>Axd01
zM73mp#{Tx+FBR&ANoYbN?PyYdA#vte^W5o><+_|M{Qok?TtUtRrUbnPUFQ>_-Y6@;
zyWJvM3V3y2W4ad8k>O}vDryZ6;JeYx8qaXeIiYw2U{f|GEOgQ{abEO0QDdE8C<d$G
zRB(&MddOu}*B5Wr+m=emd)e}<L&Ca%AYhN|f^<G2Ts7(j>wS|!Bk8om03i>`ud0=7
zcTw2AL7cdM^?UKJJ$vn_!Pu8Vp5Iw$h>>Mn%3)2=xZYG07{FHQDe~8f$eyg}wq%8B
z`PXgoXQ&rAXJ_)xSI?pNhPY*f0;pK{VKNycF$CSa;#}mA&{($p)+WN%&slI&aORl1
zy;6M$CQ1x-?Q{ljv<5CcaT+jpgMHkidtUC7711l++|}Is^O}JCMAj@^H%{fgElF95
z%`Un@q40}$Ki>qsS7d>|=?&33jq5&3{oaRGJstVOofx4z9@p^FbRciWuXJiGwT_ef
zdWCI-#cFsh&82FgQq1uMafS+Cl~qkPVF5GBbCtNYmD-8*fB0Gs_BcZDCZ)$R?7gpU
z-KgIPA)Bj|kaE$Ga&Mvl)Zs$30obv|kOQXrw8n-kcC9GOU`j+G+09b|M`}D(>i~1U
zIxpADtwJc+D(j<MeTRWdk_&^Sv>P*Te<3G*rI7q}SQ!JkwH6oPH_XMH@I~6~!I^C$
zh0zA7ckdWgH4E=Mf-Yi(*Xl|u++sCzLkBZrHA)#YMaYK6VXh6edeSavjDTyGi|61c
z{ZLA6lMuxn3h2`9BjTIyRw#d8%?HSDaJ!&}W6zVw_wda7rsadgLd$yO3QLUB>)^+W
zu3ytAsLl1f4OFM;-%X0$Bggny{Rc-WiW<!GdY!hSc1Lgl$C!N~`APogD_+8UBnkK<
zG7@^iN7TJl`0$l_MFaxM`_t)B@id`f36z-hSn9HpHmw^0cUz`<DSCY1>@6L`D+rk!
zRPR)IPGdhTmKf=A*|z^ocs-6OVl~syG|$#G0--0sS*{<wT`fy<*4!s84#5H$6*8NN
zliCv6-X`l>o>MS<&#}Lpu(Z<*BZql`24|=_cd=3{rm>Q)FH5vh84y9zgb<{K)D9cz
zUl!r$-P$)ZXYZ@zfR!*n3iPkhkA`G1e)0hMlG8zjJoXa5VDeureK7gGfj`QZu)Z&>
z%nUC1^*>y1kzK$%sLv_tZoU}8PdS}g_w46{5Yl-+D^o*}iN@73Ka>;jo^g3jHPk~l
zBVgj3);)FYnqnU|P2BS$cQ+KCYN+d<l_#N_vBn^HO~tB~;mK#vCZL|TRp`diBmcKv
z0;rs(Rb|?YB8!rOgs=i&xibN6f-RWFwllDhyPwA?BC>|ZaWUrWeRS}PHMWxjm0P9!
z3l+$3<~$Z?0h1F0kLGivy_ljRX;;%Jg_W8H%e7<7)7b~`G?V+<s17)GeKFEPzICZV
zSGYL*=x~uyvg(&#BuN{~@>C;JA*?>}s;Y}tmenjBDA6}x`PV$l5&69OcyF`%O@6%f
z_>C?<j;QJkud-#j?=TSW^@;-}wY5*mr^6ji*EX~SFHR442rnMBnyq^RlLM`2l2<>M
zs?o{FMzgZ8_pPu}ar&N;c-`{?iWzwDUC-@%oJo!q7|8es6+|vEs<y~?2RycK+h_xQ
zFxji+a1SMEaKtB3)lNz?sf6|IoeM*3gj1rwf@vassGM0AVMPM2bbW2S?Fu;8*YBYu
z$sqi}T~jM@Zh`N8&A~25$@N;6@!?Q)$r+_FaHQ<_qApJ9w*A(%hqSaZTVU+2f1>}{
zilL^HU$701vMfD>f@63yYp!qP>7b~xETAcb@N3Fl1wxljh*p~6*#_I=`h@M}kdfos
z_+FI#p>cA7Sw&PTWJO#C1ZwQCViOb_Zom%P#MTgb*wQ!_mL?1Hz)R0@f9FHsW^cIB
z3zz4f%TyNs)W{R7%2<A`yO%h2m(SNqyw$($h-(^Lts(eVPwkb_*m~BojC>I4eM^2f
z4>Q0Smr=kf%%rPESG-Nj`bN@CsD4ZOI!G6$?IcJvtF-r^+mWR&TycBeJlTH=4nI^$
z?IBcuWZIi;UD%-PkfcZ4`b%aAy%iLFiMX<^fbRZl5ScPF={NTpUo)r_BLZ(QxkD4N
z2hQn9Y4nU8D4zD7;@xjN6_kcZ9W48eIh{tCS+)lN(DOv{Dkf`vZ2Vome)~HG8b<O9
zkyzL2n<&OiNpj8c@yU=<BSnRzQGOT(ITr1h`T2#j&JK(jZJhOG+R;sCo8ePCeZhbg
zlr0S+bUBA6OfPq|ZXKI302s4*=Y+clKo5eVJLq@PquoQ=@%Jq&f;6o(TMT$k*sbke
zgY~{*mt201ip@4LzWpUV<@cb2d}BlWJ~O_T*aB6CnLHZY*1R!=j&(wzi~hN$?=sEa
z^N*CB_|U-ujWC~38A^38$dp^S%2u!y89uz;HQ1oEX5i{3rhtkriwLuvsL~}(YlXC~
z)Ke%UYji`1V@uY8`5z*oDQe8*#%XB-<S`-1;GW>RDs#;AYV5CNFpYi=8b%F*AQ>qs
z`2gqH2e0Jo-TADA!uy{!o;0sNg!b;hQsGeJ%{q{#IE!KdO$zIP&;=)6GrkR$b7|}F
zqOJ0<-r0>BDO8`OT!JX96h_SE?Tn8j-QiJXD4aFsD1uZ?VisYZ%<?!t3j5u~Kw)8W
zV$kp$vpjKfl)rUvoz(k{<D&te@!)gY-bpaO9$h|6l9Imjmz+(VgP-F5(Sc(bg2FVD
zk*NET;$<C6eGPVqm3r~D#We#*bx~ibDzXSs%d3C05Y5NyE5NBx2p6X8c{=?^(x!Q_
zJxu)01GCrS>GUMwYd;<_LZ@H`3lU36_Cy(AOxZ&RwM{Nii@0}NeIkRxe+pMu0!p;X
zWFcrP&!zRn@d0P)2DE`cBro~l;X`<p)^GyV-9|;a<~hCYjg@0_4Vdw+rvpvaK_5uD
z+ij8tAEUG-ay-98FUv&XzSV!u-R|m5Bb{E4u#-ltiO95&h3pY0@};7KQft}!6<w(2
zJhZn$1;m+}QsMF%Xz*LEHy|<S&nr@C6r8XUtj&O)4&S-?q9oh}8_1W!N|w`K!aFRE
znF_nS6)L~5H)&?;`wv_poF)^1!d`-hmVv8Co{M{g5bnj51Om1+8nMj6Re2RCIaVbR
zI1*Vq=$!Vh0TE1&fO|9>N%v()^oidR%Q|05>)Sa5Tbgc8Pn1<?gHqx>o+HD82p;h-
zi5OCpsbYWJJr-lJQj;8`)ESdzjgGtKaO>nph@wG5!hW{ZWyuI2*C)^&OWW5!`Go+-
znn=dLwJ^1IZZ+zG7kz+=J!JMfVGj#xS9!>k7eHL)sJ~oiF<tLkl;4naQGJs#n!&`5
znwSZKz1w*~08t`_%6rCST}>G03><!6&V>FqJSZt3qoP8vp`gUgZw@B?`Mp89zCAz3
z0Twj}@-k6}HUavr&n#G-AvuSfaFXG>W+e_t=PPP?4aWU+Cr2|+0ezv60~x-7P82zQ
zKD1$N3|qh4AB8RFXR-5*hBH>!n+}MPBN;%!b7Z(L@@kxXNSGxURTQd%U4v`9Kjj#Z
zViOER`az!PovG0xBAfz_-4r0L4qGefsX22Q2Ag>eh~6h&m_;14DkYTu+o<c=eA*Xz
zniDl}w}5e4`MU(rRdtXgBeDsOA0T~kA#u2wQRmRKJx#N}eDs}Fbr4URi4H&Qf=h1|
z;0p$>*`KC9(QrvhgRAR%{2<Y7hwCid2hLp~O$|HYbTvof>JSn-x(M_@bJ+SQL#3U0
z^P!s>ll6v%z?g(G=ss%A4P^BO%t}3rQFBmH7we-8v&WlTY0&_K4sEhyKV7L#7^xbK
z*Kk=wPX91n7P$L>4ov-nc%edxE5^G>@r`ojG0wE~H)R-Q>H7MhSGCCG^N%Gsw(snV
z2~KV<4^4Z#h~iB-&gX-H5OyA=!Uhg-Lji+I)t>i+>M_|lhUR&Hhg2b-xrGkAU<whr
z&M2499Ttt)@@sUC)+(*F7JB2AaYIAQ(ykPkJ%YKdb?fAAGO!zZ>!g#Z5A9IO7vL<k
zT4(w-P|6}5+%+P~AbQy51FHf&)(c?fOa^I5aKEM7$mK7!OTdeLF4u>MC6lG^R|W%E
z=E1r4>Y=4m9#%ZLdDQ%ui!Yh#aQo@(_XO2@9!IdAy`)AK-xv27t#pF}`^UDoEv8}v
z=DtV@qU0J#l&Y>^Bb4@zX0;1E8N=o&nb2Ig;|a=6ocM20&&{ziaJkjZFDBglAS%NS
zL961LJ9z!^Q8H{Kf(k!ZJ<`34I~*de+3{zfIG?mjrwzgj9Zk)e=#}ygIS}Z2xRJ%Y
zyfj1?N|!|#X!s?D_74^d6ibAg$Ld;EOpJ6i_2GC}-Ha0fUuSB8xGv~%<_!Uv7_?VL
zCL=4qs5iGVBkJXaZM9@=Xg(>XRs$R<W@xE*Txh3IR4v2GGp*{K4_FXke0-8orAcKS
z*we|`ld3q#u+!yoxh5HoCDwO;gy?ZN=iDU=#l<BwFt!dzGz-LS>{2Q0DTz#e^RfQb
zk};Xdu>~hA(Vj4wX<M?q0?Tdnt{3rx6`F8sz+-r>M&6(^E=_?_)rSjWU;)p0!eHCY
z@~AsBy0BRv@~44gxoChcJ$OoRL}*oZmiHzYpp8)1`QaetW*e4r7|fLi`RA-l?Kmyz
zoKGcshQ%1EGTk<{-0b+niBF|`lkBxfGm;^4Dv|DB6vepB%(?-Ecx<l#uJ)PU7`z_3
zya$)$Wnx%axTY?Tb}wH+C!2aREeXS$ufFGghc=Z2zt$$cF-0Ai=w1JzX!w<Ot~AN3
zN-VUhLa2p(D^1)8*2+6y`w~w*&NOx1uSVgqIN({>lua#*CuWq*-0v5<QeVBti?x?M
z*51}#hZ))Jx)7~WfkyME&1L%&%6Y%>2Bk|6FpsO2#+(@^2`6TMmOZO=2}rAZ;{~J9
z3Tyr4fu`&)l%j+U1(;>=f;8r|jlmV0i653{%Tk~XVH(8zj;I8j>iLSPLZba6Il0BM
zihE5MY%^93(Okmy-$-%(=ipKN>pdTUTUXT)X!-81_T%Nl>q!Vv1McqoNX;vx%~^Kj
zBjWyD7t_^I&zm0aT~UwKqdU>+9Xs$L-|z2MxeKDez0kxRt6H}GaL5;)rKM+U-N(zU
zY<utXWLnNxDq-?25*}|)%Yf9Jk1z7RSIV8Y*QpuY=Q-#6L_Vi{>kog?D>qxSP37_u
z6OCl#WtrKyh~9HD^c@|eM#B{;sfKWfi4CkzdC5Qk`}=if*8QX6Xo@=6?Cg!Fo@xdK
z^Sf!N?vGI4tBk206;Lc#fRKrbW#(h+HGb!km5XL&V;LIQ!!arVflsqN67M4e_;GPl
zHnTR@Q@Yf%&p^DxNBr0f-~Avh@bR^?`Q=Fr=>#nz813UK_2YFlV+Uu@3X1VtvQSQX
zjsaVv!W5eH!5GE>^YX$_Mz=+d`=(c^N+x#4RWGtHwBA+kh570gw&9Tt1MqhiuW#7o
z8sny0>rfq8%?;?|X366ynTf-OSDyc_<zE<g-!4Abfp?gj^8r)Jsg7JHJx)ZRURsYl
zEe)I4EP-*ek9VfW`I7g>GDG&%8L+VOy6ZPGEbtz>UjHTsd;;3-H1oI`$n2_L3cS?_
ztk)kKs*^gcxWpE9oKPYzw<Gx7&1~*p2)xzd^F?t-zD3a{OY3}&6}a**hWBjy-tX^I
zQ@gw9h5a!u$6Oc|T%K}cr=>z4V5k$43?a(Nu5<to=v-G}fo|Qc7SHf}4Gs(Fh5*+W
ze=#9_484PTo+<>k5_6yDQlcbPpO%MxW7YMZzHdIoez5tx1<LYj+FL+=Bq3rB9Q#{f
z!x!viLssqiGWX99!1z6s32g5Ye-LxJ?UEL|UHHUrc<CA66l*`0*F1@zw%!o|VJHD3
z*9Z3<M8zuBR?nnQ``Edi?1D9^acSCy93rg%n|5k<IJIRz%<9n-gM}@vMZ5LIc_;dT
zS!amOUQTEG2NS>dV{p4^^DXnjGCd7ovUyT-2`}*QhQQG#0lTNG-jx7x5L+2U(o)iW
zDfvDr?+xwul-lDbJm}2`jdXs1?Y9m6RHgUQl4a%C)GSfBk|cG;dzFIx;|=`qo@hGV
zmK-43F8#E|#p0g<nET18-R>JkT?DcG_c>TiTU|-ihtj_{I&w1~UXrEK1zrk1`j|du
zW7idwPtqGo9+P8V?Ugfq{szbYO=WGPvwuHj?zzwPjoN&#$~EyeY%JStSL?prm%mZ|
zIPT|tYWwgJ+|HEPGu`bC1p;rKqM~wkNAjfu74S!I=OJp&eDljd;Aa$?>G?X23h4uD
zZ~2IWjvYP=E`?r?#eLJ{y|3kMr%M_4CRUVR?`uAOBuhPwF?E{?sp6n^Rp$9!MdpGw
zKjz(T`lRLA9q6O;f2D7`fhF(DP2XL!w44lZA`BO)4tK$Cu5%f;kre<`$RZi?dF#t7
z$M)EsnJ!ju&dxjiiUE%~C~+8hp@-km9QkA0>>ak_q1*kdxHFB{eb<1V&#fDt-<D@~
z$ofyp8!BD*i>K(#r;FD_;`dY;pz+S*V99%m-ecPZ=(enY!;?CGgpK51#M$5I^*pcb
zEKJ9CyZI&&&%O3$+#JYuP5<OEp~et;5dP+?;U5QloIW^Ij|K}?C-*#M3LH%PFM(CK
zZ%LjaL3@9ASjWHn9&di|3OvF0tR^|N1QZM-T{;QebP@0`uj>er&mx?6f)wFotJytH
z2foSWaIQD*_B<LoRe5sIws(OIFcf{~OF8>x0KWje=MiM(GR8C41ixG8o`8qwD_8(K
z1Hysp;OCS-**g1bw3xn!RK5|LkNpC6BV2am;122QaPAAguAbpys>GgDW0TwU<L-sk
zvxjTXwX<>z54&fKaA+o|V6)Kyx<btk3?DTi{~~FY^G4tEwkF_}t(a3~@X@>EzF$<5
zVQ>7|`jM4sB*!Es_wguqKlc4PQI>NvI$x>ka=hnJShm4ggmltyiR{AqnJedgc9Ubj
z6&ks7HEDOzy%q9eG8t?mX`_5UW_s7|iXXcx_*pv2Xek+$Kp9Ye9k2Js=KBHoXcq)&
za;ubM`rfJg@;=X#abV)JZ}b%-u4Q`0@V)3-N{LN&^U228_Pop#6Mb0zcSa<F^~reQ
zr3-j0aytp4h@SEX@<m07ZGgbNy7wN(`^z1&Yxs9|uom`q+!Hf%5uXW#x_yPUS9sxj
zmkvd&=<(hL(0ejj8fmU-0qcS;b1{BR;3nfQR(X!fn9jU}2LUlj<?XvSuSd|w@g~RN
zqjaj#F!Hr{&xbT(qbqpC`#CSb_1h2;u;{uHLUeJOo|uKlzc_6)wI46OIoD{!1deIE
z)j>n<lhrR*pM@2SLG9Wp!+}Ja+ZMCet=JFpbnWLWi0G|I`8Ni6-*-FPTV~SKyr6@h
zS~qYDAMokPL`+DrJN-QYbr$J!Gb@vsL|$&nfUEVJTr*3@PJ>~d)}FTao3-=xh521Q
z25^15G_f}iAs&0$QEdbxl)&}tOY%gm2lF<%-`z{+>vKNc$MyFe<c}?NPPhB{Xd<z_
zFA%+ZlY0a>u@O6iyO1hqBJemt5aNHJJjkfIFQ>^aERU~Lle^$mraQ6je_U!{JFQhc
zu(d1=lKu-n<GrpOHYFrkisOOC3bd=KK+kJt&t_WhhDZ_}>+2Em8@3_wRZ*}dwRq+4
zab-5yoN#|yT|!l86SGn8>kx~<29LF~N}YzXGLZZB)6iq5Dj$IFr7eWOir<y*HHPb`
zg(C$Vz7s>hxmnG{C#d2D=4Hn9hK0+Up4VJF*4oUtlH4bR4m}HJW`#XZlo{UcUc;i_
z=AQ?*Fn%a2T^wH6gRN%g>-_zzy&NHhk!i*1F)!Dt{CsviOM{Nb1E^xdQylstH%=#K
z$Un}OBPqa5nfB$bm*A7JY{2)TlBzzwmd2ag)SR7*9B(7|)sN?fO>2#roXo_cy1BA^
zPK>V_oo=O>1CO|#JX<NUu;79S6u;Ktu5Sgct?oMK>JZ*<GSP+1>;J3zsLut>vrx~k
zV(#lp<`UywP6u&*iCdn<upYf#RtM88##l1$6asNi`BI4EnO1HC>xBhV-`BO(L&iR)
zx1~+XRnD4$)dl>vhjZ~2Fi~3e7~e>Wu;DN!0Ot%_rJ0<f@SPLBO5w-!GBciadyy-R
zPV9Lu?#Qtr7aLwjGpg84;8fKK9KyY(RGBzzuY+Boad0)51liOxy%k~S8sFQtHgmW=
zR4iGDb|O3oT&5HgzG#`-o(mQpfiI)daEy2c>3c8%3l+Mkx2^gO@CySWr(Bx4IOoL;
z<LFH4aUDB%rwls-Kirc=xMJ}N_}~NIvU$gxoy~{+I^hMF>GyhiHG9wK`M4d{;;#O9
zQ||!~y73J}TVGGpioln;&#MT1%7Aa`Q)NZ*>g9>s6lB29e8{i4*RQFyB{5LVEvnLQ
zRnb5YGJjedK(va~Scl|&J?wb;h0gjT$Mag*`|#wQC7hguZG2%NcE$u3z((`&OQiKJ
zCiDtw0*$3yRIq3CAHQsU@Tbz~F~IksQ(L$Z9A}-&;&ljP;(Mauzbg~4I!ddi<ktR7
z7jQL(pdghD-O^N7zxL(Q%kOb`l5kJ7^CVku94!3t&|pN|yszW*hsd_n8q6{9zAk$`
zPU^kTOl9HQjxOJKy~9C2^bCP372V4>zZcdXzrihh(I?R6%eyHO^6!@mFZ9j#Y=P#|
zO;pHO(!~U>!O|@s3Y?|}2s$Y8{t~EpLtb~pDrbrhJ-Q=$xY&)1*}3F6JcX()%qVht
za$13RCcodrPyQDjJ9U2l5MSV9V3Wi3?@jGRnN}5yyoMAVh$>0AKSr5MwU{nuo}64v
z;i8sZXa1_?yfslZ&?+-!myesh@9JyEN}~%^4uon?sp#C5(MvjwJco((!^Q(8H+P49
zIeqe=8@MJ3^1ASdLiW9LtM~LDnKdknj?Q$eces%|?|zVdon?BrA9p=717vmXSb-$~
z1aT?U{;oBHT0kIP3<1y7@VmSbyyUMKWbdstkIm5TzzQE24x6@QzjtBcZS0T!hn7ls
zU}Ema07ZZ<bxQT4SALu9O&w)^D@==s&lqb&jVE_P5?dgw&xUG5ada6ifq?qKdZ|!x
z+B&ZJ^@_G?=5bASEM`}Te~veaE-DSlPTRVVGQF-2M?Ja4<op_th@T7^hv1KpSx2oe
ziWns;Qtl-I7lX_btz?<hvC=E)?I_MTy4@3r-|O&4lf}~I&bXfG#=SNRaNp4P?xELz
zNzY=n_1x>S%A;9$POi@U53)~qA|(y+`(^BPZ1=+^BlQ7x!&{2i<AGh<HDkWwFP9Ay
z7Lpt<H}c9O>Anc<Ao=&Rl1!ezT<cx{qt1t~n^T7B^Iz%IZ#Fh>5+`xzdA-k_h|Nq*
z%S}L5>_RA*>X@EVms@8vZZ`hWbZa<T@pUF6SJP8T9W6yk^sV%x<4q8@16dZIQZFnQ
z%x$mP=#w{=4Qqj9wC<zuTX|q}=J|Tc^$1~Y+h&~c*+f_`)AjYgyPw2$o=VMm#!$u7
zzj8fO*L_#og@({DTIs&|j57Ey+ac0Dt6h@`yjPrh-s(gGvw3e1J2Yon>LtlK;;yb{
zAbtP1px3EOAoA8Sn4H0x28MR-#tJ;EGvJmq!Roz4e?S;jpEYlG-njywVrncdOAktv
zs%jsaKv*A<(u?60d9c9)bxzXwbRC$1<B_$vmqHQs4n+n_XQIy?e7X$$J&F^EZS>h>
zn@-Y$8{R>5EO$j=<y*WkQhwOH_EzyPwsi>2UY&Eb(q`wFOx|Z;b^X-xPiZc%M-r<z
zaz6bOp#lxyaz}a+^|pooogJ>|oI)L!8SWX)q`$rDb)5J`zH+VhEW=koQi;e?k*DY8
z=5#tR3BQukxSV{*VJU@u5wS36^~}JN%X<%p>D0H2V%K|kttSKX>(bKCZJUed_LOvA
zJ<qGi$d4ild{c%k!Z)41v2F+$EIdoab0}u4+FLiA^EKVP7U7Y3vTt9$ZaT6|25z7P
zF*lE&O)({VBOl*Ho9K$&i&eoQkVNP+Te3(1|15uj{9Ef9yuYn2z24lLASJdy0~IT%
zNU!vQKyFw11H?__q3mRpe&O*nPK_HGUs(|Pz&?5QSnbwHNM|6(Z8g(+bxZ{2-1V-L
zl-(E5e(&w$u(q2HZh>OX9+XtWjE^mU!r;mtR2;|`?ExuhC(xEHnflk-7vli7mZI%n
zM7Dnm=avMPZ&kAK<o%xJBB!qGnsT4Y<59L2SK{OH%qNNQ-naV7Bo1kD&o@jDZKTV}
z^@}0~8ILI0|EP)(CaAlLLyFoDp{Gzhu|*UtlruWL7v84;$bJUT*E;!x>$J4g)h{VH
z!0PtypxnU_Eg+!Jsvcvt67pP_<c06c=XxAmoao@zq%1vj%_r4?y>hWVN4{_=%*D^O
zwy#~d|KG^CJ3MP%IEAg)bwBj01Eh+0L3((utZ<mH=zrg|;VQMcdfHCm<$c;HjMf_s
zUQ~xkeucjfc}ok&I8lHNh+H1t@oZ-<NBpzLMdzp}S7EE;B4>16XEYDi(iYO+#_7v#
zj~F#REno~zozLGuMk>O7ws_Ps-a;e<B`Xlnbtn<7t_)4x1z=K}F)lF%Dk`}25+?W&
zEmHDcEh4ko$bdDPi6<wJMwEH?dZ8!M=40;z^YW&kw&fMShP}$`pP@zil>2PVHpX_Z
zXKlxvvZGP14>X9uaKXXLzs;mp(DYgtl5COX*Dbj|^%O>(pl%MfQw{BAAn?0^rt?iE
zzCg)DY=CT19c--dUx1d?fu9F87wfc1o1eCSBejZTN`R`9;JnIBpCnXo+ywv?HA~sF
zoSA)hgqQvZzBljZ3~h^@MC(NgsZKTxW{q*iAEgN!YwV1Ti_L}gtyaDo-=lK7i=#4F
z-3}l>I{amhTX%Fo@HtYTa`s#tXh^_YaXOV{krJUwYw7w%%_k%t4%wEW*0yL6bv+Cl
zgqq9g5s_$?scz)KnArjZ)*3Z6xz!u35hC&c_c^`I0jfP}GjZcxBB%vf_^NWz?zOIR
z`Eee)nUQcrP+o`+z=T<Y3U{|%s>xvH!ro0rX63sqLjOQ2KEPS-0ep?h(+h}D&)X#6
z>Uy>d3Whimx_%wAzL;q{UOTe#{02u4DcZ6Wl6Fd08r<zZ?`Uy=2Ss|kuY7ndjOPhM
zyK$HxY!KS4`)zJ$Aoy&wwGmPvf3X<j!tReI7A!1lY;kGc<CW`w=edc~>gUszuGCK7
zVS`xIsNy+4Cg68$q%iu5qqU*&(4PXuh{8A=FYJYVW!W|WS6_&de~kEo1YlOI`Vv6D
zhpt{*&bfODQ_+ETzPTcnkK)?Fk?=HC4QHgB(@!<d+hrC3==rtn<VDN-=9wHw#al9*
zR99~(L0!+OXJ4WC6>D&+_|LSe3eoz^RLTMkKV2ZIcel(EuQh6tIPnKK=bb!Z=NLbK
zvD)e*aPQ)}TkAOzz9^_-m=8R(hPDze+j;(S3xy8pldf!OWjE@fWHp*a5fA5PYhkoI
zrl8*+hDgCj0U%S&m5wpn^zX02)lOhve`98DEzTd-4ts;v?Ku9+IXXEnjX8smi4!us
zmA=86l{>pa7;}KS-DV|5@k&2n1U+{?W;_111>=yh+46WkZ~j<_Ift8<sD{n2>^s<e
z;5~LVs9yXuG2ZqYnP;e&59ozffkT%Dfwo(_s4pu<Cws1IRWP}^``iQaBQC;P6X4KS
zWGD;nXf9lDE+V|Zyg*dr4I3@kB;>K{%FQ|NF8&o-uIrMYwo$`Y;`_q0d4F&j96FUy
zkVO5M(R4H<?TK+~G9^?biw_oT87@a$`-Rt}thKm4Y>HsygcPEkF89^78ie&aOqKh6
zfL#n@S2d=plvootJveQj%XHKuNwvOAO3XzyfDi$lS_gmAy*t0?V$?t>DsSE_5VD~)
zy3~?wzprs?aaf}AvLo9&;b80rI~BxWBdI)2&|&7Ra`cC@$RF?y;mr;h8r#BV)H0(W
zCSO!HA@wyWjQ-v0Ez^}HTH6V*^J8g=_&xk3gwQI;i#?SYE}etiHscQ~CqrKNwvFA}
zs;SPDDw`JABW?JQGh_xpxOKhx>(eyxtw@D>dL?C|tl42VJfM4mrmzb27RU%#?M+gp
zlcxVQBgyQ}8-smsLcr;~pHLUAUkmF1!N*63=Q|OMqbI@yD#~1>&@V3ym?4$4#Laf#
zZ7G?+*2~_$Z5;-;C4*9mBFcZ+^N|{;udD&NTLN}ij#*%Im1APvyDznZ0X+$IFB(I}
z3yI`HpEL1u%j~+DvJU#2H0XL|)=2puX30C`RcO?O8rug8@UUonXCl|>=XV}LCWTWv
z+zK_UXr!eE-RFfZ!K>lUUAY=^YaHx_rUUK{$DZ4bIbBBUJ?X*){|GClE@QcMeN@o%
z4L435&^nJF%EMxc(Mo#pRu2B;-Y*?$w(K^<%J14tA$)RT_iEdYY7wkHKIrkD+RvmZ
z2wj6@WNkadn5Y$4zP;zc$&pa!T053<mr^bCCGE+nNS5JK8Rp&{T9ldlMBRr*@^*Yw
z1a@WceE_tX0=+J;ME9qewn^iIvG(Cr2qP_!FmbvZr`xB0y_>hOBw0G;S&;yILB^?%
z9)gG~EHenZ?+CE?&_W!Ypa-Ek2%aTa8%d$NMF#I@S>&rxO5@rrK8}ep^iZbEgtf}w
zt!`as4DJX}dh$yr=br{Z!EUyl9dvM>g@O}Dp+&BO*xNvK%zGlt*?HzwQb8t+>h*c!
zy27Icwrz8WIc0Th7zk<2>0}YOQtm7@=7a#8BwDC^LxdMONQce3sRjduI@6dLEk05-
zSE1Q*wcfFjB(smYr~)&-<cUNr;hA<6h-6HKQ3d5eG90#>ppHpdi`icj+GYl|oJuTF
zGH_%@IYuSLD|IX;rAvnM^p9D(5x=R`e9l8IaqO0Bg)HRZF(P4ginLz6`dWPY)!9X-
zKi^+?9n}YPx4<4*(s{nLf~wd0uVo;UnV0Tdi^$7{pNdeU+JBrv#Agy=>Sfk5R%I1#
zn+h<Wx<4u4Cc2~5$jG-8KS{9ez$7?3xD?fdS~h`Al%|71{mu50r)US_m%wi@LxuS%
z8J;Nclp-A^P{pRSo%Z?}C9Ymm0L|ffC7=Gys+G_vIT}50n~=bgG4~6a!fnEbj36=A
z<_L5_p9odys*-i@T>sB1h>{fzC=lP3i++ET+@2`Bo~Kjhz41(*Nxwvkh5zi7)2S;0
z^z&c&$s{VAM+!CL&0+b8{wp7>4u#;tC#;&BVIq$tf8crXui2ap0K+3|s!8Xo<8GuX
z-}|H2-=LIk348c_De;+E#ROi3>mhJkeHKUMnj~-aoqVKYyh1WNv-Em(+d>5)pg*$b
z7$fPV2)E;i+#);AY+;OIvqF_LlkOWF#;Fpf^H1_0ZVOr!aSEZ3RXYCtlu!eXhK1lY
znq&A;XSs|BC24)+xc}N}RE!{LD9p2TX-f8In{SDk7Bw|;>q~+1VA#%J!us#UUt$b$
z-{-wnXCaK}#pRMcu9IPr5Y=zcSn^lX<5F{LmZp(ygDzpyJy({W|Cq#Ri(J#Xi_zN@
zkrKZb*VvBT@jk4B99CY{G7_nf6ssqGyk@m*-cVAS9^CW8T|}cEo}<j`WTbeJfps1W
zn0&2-{1n%{n+Q#@z8{?*twxq&*M=Ad<<#m}s~+qrreQTrRX1uTns*5okV|6AnCAQ|
zo>Yz4cCUqwT#N$kD-pX`X^wq2p|rd&V91lIa<Mo;iLW@lb`8c3M_Ftlva*{WAcg}P
zPZ<m(XpQe7@U|>n^#N&FRfz|r5Ql!FBA!QUF=1gXDSz4u)SJl)VPM_2kRuRaz5pN*
zTXueQ_SpSiIBEXQmc4+fBXL}2$wvq)W-K|-E-o1R18Vp9XdrHw(L$o|i+DnaoT?ZE
znSr>1wW8F9cYu4>kBZ1S?_aipq<bu;w51Qu?EJsBpz^|Gg;iV)x$N<BR{44#op%L>
z$7BDX=38m$6^Bt<I6ft`Op>{chHd?59a6GVfbR$;l<(&59|@WQDl`>#SowTaS!whj
zv-3FY9@6O}0Kb>z0=&3bdok<>+!YURh8p5#XC*r1H@J!Gg~s9Npy5)2r8`7}p-k^S
zn6~n^rML`1_tH%T3EnBt7l_8DCd%Aa?%2_1Pm3W^gKr6tzo72kDnEJL#J-;|(kEm@
zZuz7`h?d7SQe@${oboH#Shy`eb!|r$od2HHPnDX*ZxH4%yyU+qA&HpV;^I)sPji=x
z#dg15fGe3&S7dRYG$N3(k*s$wLrJoGc|J(n0MQW?ly|NNy@TA=@0f{jaN+s(PJBaO
zoldFYiqP(et~nCGo!c}upk8RK>h)Get&{3!Hjn-9Y|a?@anyJE3O3n!>KXd0fbuHz
zTW6rwm!<&v27iY|A@vTMh1v|U!)_fI%qg^3m5N3xNVyn|^2nA~-C<5Vj6;=|utKbT
zpl9dO`gg2qD|V#3-=0MbR}(6{@@EWAhkGj20~lWj9FMe4TZILeserfCV4jEAlY_12
z4F_WE#GT6J85}um3&{b$_=dM=w;WOji#``KvHuVh#0^V=fhKHb#*N?R@fDm}E2nww
z2X|#IlbfU#<a69qd`8wW@9rEEn^NKv9zs&uzbPNtDus_kmi_o9QH<O19&B#a<GfwK
zCf~pvWy~35m@%ztS*6*I3*#|w4>T8Za8D{92itTDOf2-4_ynvZnr;Hn2RWrPy9C!b
z)8G2`nxR#DEA$6<etfNHMaWsHIpzP3zVrQc#|oJ?|Cm_U{K9;9ttbDg<2L>JM~NIk
z`<B;m?9_#N4-t{qX;&#5IrZE^&<$(8wO!agf{Amq!)=P?_Ftre6clOlB@8cnJ`q7Z
zG3o%R5cFPS*yCU46Sn+N-%vk0n3q;SdXO_yV?qOAoihFJ?vNUdt-<eV**>yR4T=Aw
z4TpzmOmE^RZ7bza7x@LU=1dH+vuK6^qv~BDhClK(sh9}U_D0edVcHMxu<nvNZ9T*2
zSq-oAS{I$Rk$C8<qury*5+uz(XP66#D#HyWZV9ROcmiJ+;FUQOA$QYh>DFw0q{*0y
zrUtWNu;<b*E!)5?qi=S>Cu~O6yz9t!<@j)0N472Gizr%(Tq6u5RViQ>?RZ$+<JU5I
z1x%Sgm8TZbu&xU~sTsm4OM@08ic_?MjjXlGOn>P+p6b<=QyAg%FFa;k6%<s_M0}lQ
zi=`kVhj-6fio>Q4$w7*>P|UqAE@&%T!kLGLk7Y{<cl4hrTZABo8+GxT0R<`gQ;(ua
z(jmy3l)9UC4odb#<r<VKueex2uPwUiNA0lW<#UbyiOJP-FWRBLw>2408FHgqcT?=T
z|5v$A@78E{q&J;#gr10B8b`$}@(bkp5&t|q`_WsZQInQFEZf+c?Eq%1!3nKF6DAl+
z!(VyU%$XVw$bhx9268Yc9zg^!?g;&$jbK5tS#CiA*H`_1G6nG|4&NmKVvB^?l?B!d
zfQaR12LtSdr6yiiP@H-vx{%LT796tH%CT}rgOiNK`A_B&1(~aIlhBg2qiA7SUw*P=
z{FzcpMkwmLUpV7+wu<k~;VRzo^e+{S(zX(_$S<KYIC&1D%6U}iuh|;J&aD(!(rg;D
z0-K8;MhY%S-980t!D3Ms=PNlC2zNW8u0~F4D$RpBaFgLlx3$4e1(V>d1w|RYhYM??
z(he75yU%4UsFj!{3aTh3?FeRKgogi*tFs7bs}Ht#3&pLt6)0NVDGntRcc-{h+$Bh9
zaWC%D-~^Z8(%^2z-GjU9%lCHgt+L4`b0`0M@0oLcQ!4&5kh96wU!hNX6dcVbpu0PA
zb{<OUMBQM&nx2`(0l1WtB$$b&!);k~eEHc#M)Q$jdHj#JF_N06y{wIbo`vi9Wi(8A
zaE@ClY`!!Og;MdPg2<zN+c@%LpN0o11(Qg1dr!8$dSr+mYL*liHI?CoXM>J{=o^t~
zpH54Uu1u<xnKJ~Hd~=wfn~+FYu`;EjH}gJRa>g^$>OsN?;ZoG%W?<NDqUzZ>XO%ZD
zu83;#4w9{~_B#v@{E?Wq4Uzx@d#hEGD|ES+JL`h9RzkIR@4~0$I~Es|%u9ZB)!_eA
zOqMt*XTmn=T|Y>PIo+0e%R4vxGH2|#cTQyX+;@EWqtoh}4x#3sIyO*+i5>&t4t(hL
zyQ*2RE=4E>IKG(dP=3_-#m;kY;~dRnTJtZio--?RrBW%(hKvWEAYnm6GSlqZ?7`D(
z*5<K1{<%@Jw5Z!jGZ=)Mtam?$G5o};%xs$)gI-E_GB5ZyGxshM*_il)U_J3qa~UJ2
zJr{n5Whi)t9Q7J8&?E|-5Jr+&PPl;jO(a96@zy=qL|}RwLtyO!q7PSi)7EocNHEjU
z9ZJvE8)$-7AbabxAh&-mwl6A4@iqePeddbaZ8^Q94^NGyyrNoCD8B!BqoSfzT?~C`
z37M~U>2F)Z`K3*%rVt8hU6+e#u$STF`L`_e6d3$dAW0FVDm&k?I3-X1mFpKP#!Ldh
zTO+)~c*IRhf0-E?uzG-|gLW*+HLdTb%|lPvZ<vWkxvZ8~Ho8p+y7)3Hg8h<k*i;R^
zv}8#0O9gMwOp8d0hE~B<1D5{d08x>!n3L+8GuqRv=P-T~?k)l=lJwGce(Y*s6T?+K
zMo|fglWSCHcihxax&ZovQskd-ua8JsZtewLLBf&cd!@%y1mB|5k6QY>vwSe1#bu1X
zIF?x)7)bgY4E&G6G|N985!p!B+{XPHO#9)(pJBE#bco|~1JVzgdjzy-p$A{Qp5O@Y
z>n{QS`uY4?2H8=zpuRn!EBB$ll2*rdb1uxZuNmx(apKl_B=aa)Ej(SKiWaYOb$ycy
zEy%;RkuD|qBz}7V0#t^A8XM~z9B|Fy%mjZBTWW+=s$f8r(RWAvvukR^ZnAD+s@5PS
z^4&%OLl%zqJAyY=qZ;3LeVVr5nXsx0GZDz3QpkA(_YBasF;zaLGH=~~Km=`=%xmy4
z15UKaBp^KNThE%%<~&-Aug+WA<j@ssT<s`6I21ld>?V~N*Jdn2J|*N!{XExX32SE~
zor8A!3c5U*NXA}|q`q`e_c!BZQy5}2L}ck-&~oME#I{%y*k!)z=28g`Pj7qUkAKva
zyLeoxwfXKiVQI&Se6l=0hA7N-Og~(Y!(el0n>|yhc&FLLE?&cT>2P?KE;XH}tSXYJ
zLr&QY8Tew2>W44VmzI&=*|F62!IVos3Q2d*f8xQI!FV0Vo!)OItOHCvr?s_Rn*Txg
zLa3kY${x{v$%h<~B}kZ)BPJvdNS14Aw#cP{H5S!u71aYU_I;s1EByuL!Vz^P3`b|b
ztZz&O?xo;8uh_^+f*7`@rnu9=K(?*rR520eHupb)bb%hEBvOUi*q$jBOQ-e=B%OB)
zul_6j0s)R`;{hA^SR|v#&9A>c?c#(Z+PYRA*l^Ih6G)nW_~}umpCsyBU-M(QIk<(6
z=v4Gjo1|sQHt%0crXE`JS=l2VWvk>u_0&%lXT7Bwwp|lSJEaaurxiXrGpN@7!F$S<
z!ff9Lx`NNcsgDeI0f!HM9>9NfQ3(q_u8G@ep2{6-c&?oSMp39f**Kf$=f0Gl!cP}U
zp!+P}N4F|90$SCv;F^|xIlCQXPIxi}neewxSU6PP4pA%r&su?n(Y^zZNPT<uD!Yu9
zXdXm}8-lv0eS&-e*8SU)wAJjN*kl{278NPw@d9}r(t`W4J>3+f?@C`Ut+PbkHd|uP
z8*}e+*?1b)TwvW8FRamjx3covMGJX9iMo8Zv_rpXyLuwdbX{KDPK#G#B>P-BM9fkf
z_mdY5spk(mMQ;*{SG~)el_b-z5yN)Yxr`;Ue|r2RKfQP`EAS{=_$)mFj-SiYgM#Qs
zqhu~~_EK9Ru)fDu+fX-*R!YFFR4&TAM0n_#z0u0JPTQ70R!hsS^HO%}?$faP@E^>S
zP|V^kUCMo<TfnxHk_;2QoaC3R+d61=1r7Xv{u7^y@;wrS2qv=P5Q^eOuy?HZMv?}i
zr-uOc9t8B}5mDpO09nQ^pP<}ZJaKf;>5}FN4gML!vrLhTy;gm0X&Cp*cED5WI!_xi
zcH0Yg?$dPcXK&3*4OtBPHQ;!lIDfF84xvhbjVFv5T~acLjdZJ6{Fw_bx@Wk%OJ&y<
zjZbNm`7LcaYSRGU>r;ND`I`blz*$@EQ_W4VguH2Pi$ewN1`?xj7lHPE*Qw4VO$Qt5
zGY(ATNo~yH-8!7+)#+kr@P(5^PuHT_roW>emA4fv{x0?v$Krax%Q-94-S5S6e7{By
zsrfxAl~L|(XjP~6^*1Jg;I^H^&LTkvEpn)X@M&RHz{%y-;anbM6mO_GVp+Iyg90pw
zFDwjVqh9;_j^CUmBJc-(+`~IQQW{k@YdDI>b7e}}%bF8bvO6dW^pRqqyhcOrzH_(B
z%dyk*-}X*Vgc%qit63X5q;8x%u1-f%Bb*(%<!)_JJ&F<ugK`A@1J~{#xwd0}b~kGJ
zR~1U9JI*j%m1G?ND%M>FJg}A-NqD6cff@h#x4z%GguJIRs1NmE(RdeyVfqJ4d~PPz
zn%$oQe#IKxmipdlmDs+`k5rQ_h@7<5{h2wT1ND|cAi#SsLLxk_mf4*$gOsqm>v9em
z>1&#C*t(|jCe-|pgUK0=v+rvyy-}*uFUYm){j8fllKFsZE8$EmJwA#@1RC1HSsN|7
z&Lj({!7`a!-n+?)+Ip_widL~6u`qSi^0+2WR#(u`PpCqy--()F+~a?1B;u{m%LJeJ
zRAwW!aHJo0W3O&;+EycD=ZpyOtb%DiaB5wDAa5X%Bjz*2DmUmB^%9?|uQ43y7rXI&
zTA+HKD?91(bbc*+ni_w70~^b=xfrkl?oE0bz91p2N<ztmgg@dez2*MwlqDWlN$R(W
z|C-40<7Nv>+;K+2DYZI}<!+2z9a16TEfT@lSjlmIHkP#75Dgyp+U@xHJut1h?3%fx
zQCG$P?dp_*OH`H2>Dxh!ucS(<9NromJ>SMtjn5UWm_ib`Mc~s@!>Vv-i0{n3TGI62
zM*o#L!+$%xnfg`ShehgYeV_buoN|m^a(=HaQA3AJ$tHh#xxim3E`m*J!8pP}hQd+q
zsjQC5-=Ggz$yISNe}CZ<=B(sSwk$}dv06u`@Ki_fUw7^}#Kin)$IHFj&OPH1zg`i!
zzwb0PGrLO2^*t4IU*~)2hZ6wAA9>b>)7`q+$d}-@n;M(pF_sQxQTJrP!r;TL>TH$%
zzn)3Mq0^U>@yoe@^EEO(`@TGQB##6w&|(n7gZ1sZAbH&{IM?(dp1$PdI^VK%+6K>P
zN?1(WdUaK1^o17Tihro;Ha)*hBSNdUTIp*j4#s<~E@<MA#-mkQ0=m>WomLco*9$&R
zl3i;4n+40vjTv>@&Rs+&2Vl=@aue)CX0JIiR89J$Th|@k2(a<s$|IzM=mdE_DMjTR
zW(fz=lmncsyMo}7I4fBjI!$czVa){U$19N^&tKDtae$m1g&_j9iUVJ(Y?7O{W*_I<
z_KC20o4)ky2mlWlJ1>{SQU1cs9Hbu%6f%fN$i>H@LB44=u6*?&-s6uQ$t;-`gxB(3
zIxj!w5SxOp58-|$Jmzn98EJ2xdX1m>#V!M06Zpl?-!?dQCjLsc`)+smMGc(Ht)YP*
z9h+r&w~c#q0?cVW0Y;-x{pfG&cSScm?gFpI5f$Wt=q;lVhll{vw5ZBmaq^`bs}5-X
zqSdGC0$V!-iKywrsxTV`X8W~yIj_M`lo^AJ?qya$FaLNK?tUr_P?arD;8%Np(Y)_O
z!Z&KdUg0RYAzdXw@qIy;z8V|O(QzxH@=zWAr!q@tOR7^}SnK_;ib24xTz=E*uSSD&
zK6xWBMfYAoKkT+^+3v(POugoBQzrFHu%h3v=K*}y#N2$k04%Ixv7C#=qmY6!g$qQF
zAIk0ur|IeBK7WGWs!IZOBqi)~q!!4Ov$54`k;#3KI1tP+PaoI4&T<2G`ZIZ3hTY&s
zx>&v@kt0Yo@E;r8*IWtjEjME$FYE9(IOGMKF2qqxPCk3oFE?(vb~nx(>rVsU#2zNs
z+QD<4?(VQaG5+Fj0Po~5!fZ5(kcHFyja581^8=O<Df)Vp26SfXPJPY!w%Wgum15XA
zu2~eLs!n^Xh4y6fx(gVa5~Dk`gXBtQTZ>4mwI<Q2ZC})$Tkk(4GPSjI4t1D+kzjh5
zsGUoHr$R1m?QACCS3A@~2pugpgRy>O7bE|JS3Ws=d2M`8s31Kd6|8^ieKu5u2#>QX
z!5`k$N8x(I*vtFEB*tTUlFT@%R^iIj@2<uP!O4!jf)7G$tqsI`jBgRN34+j4gs}?6
z>})hql(m8Ts)Sk!3H-?4XQsXUdR(>*;9jj^?aUU;#+90=Y<Tc&J$}W&Z$~FUhw;h<
z*X>j2S+k^B2;ni)Ixb&0x^!UuY18#;O3b}pQ+2IQ_$)DD+pn)lpjA4Y3*P%@$M^p>
z>mf*}v;&78i7;l^+tL;KZbNd7oTmH%{6^vhNZo)*l~grwBoAv`c9;{R!_tWFo%_y?
zy(p!@_da!(6xi)}^{scPoJO>E5Q_vWa_@J-9vW2Z;v^mz5-vH>dkp(YEYr7ivq5^4
z{@awZm=z9-$sD1NC;s@^I%=UpBO_?5nrY<)BS{?P6(H0;5}#IXMeV<Hk9m#%IT@4W
zcXcO|Ywcv>V;h>)YU)aDY(+9u-iN`<a`T0>c=6&Q;Z0SC5wsQ1G1t<dRmv4w_0sZM
zT!Yve(e&EU-@McCSos8a>oGCOK!E;6jxjkSQE<M&-v;AhP(y~4N?4_x8RfobkJSN5
z!3#qeiG9TEbZY@+oFqso)$>+32>LycAKGHB2^C_<zF4-?_#l{(P{1@qVD%Q3&9z<^
z-ED1c%cspAHT|l&_%FEXaboWCO<raEBbDEwR%e6NjB~oVJy?4YlCnTmj=w_DyUa!w
zw7Gib9Rgw>uFPhlpsyHbal^=9gkG8dLi_~w0|pS%QKuJ^>9de9p<H%;ygM9dU#_-6
zIrSgs|LknRj{?s~SKWsObOG@H_Lli+sd$AIt9oTLKd=;mC;oNDgNPu-?b@+aD^wlt
zD<17<nA)>bVmGJGQjMuPb{OWQs44ldr-QHm=t^6!r_XW6=9HN&0(yBAsC&*wy-<_r
z<OBtg6aTTljsa+j>cp{byu{8{KV>+ZMs<_;&P*NynzSl(r+vqa<D_^WZM+~Dg$UkM
zN+(X<kx1SC!Wu&A_+U2J%U-h@hz8jX4?BzT@(3EOnH2cor|0xcw8GHLF{w=b^027i
z@#w!clmWuRB3l@R^7{|pPIhiy(Cb?lN15oI?hnw~dpJ%ca(~9s;uCq$g+Henu*hJa
z7JeR_V~!wI)4pO)w%PZ|&7Uo1V+%dYA;+YQ-dJwhQmE1-p*){A<Ki#|dwY-wzk1w>
z{ID)UD3-3&#Pe$CQDozE?%$<ey&6~|3vh`tnL|{WnEe6C4!8ia`wb4zSzHJ5Kz1Uh
z)Cd+M7Y}%^;O!R=b(E9=5lQJsk#$~;%?IQSxuLLxqx}oz2a2zfe>nh5qQWHOV-7*n
zvt!~<Csdt^6qh@_-L0#Ak~$h}PO*i3dZ1Pw)+|kS%z83X3_b)ZpS^?8aQ?u#+tArm
zq2e<+YFr=R;2kbLHbbtkHiCHOa96YG%jpyDEe&~F$xkx*$ZgQH;F0lME>QC@U9a0!
zTmOB=0`TpHtt%w<FoLh`u|4KAu>)>hfi%Iss(qy}3mzmjEm9v1h~v<0Q?Hhn@r8FB
z4fVX7KWBDW$&hp6onW>vb~gH3XBy-~QCrqAYn>UkQc`a}fkwS6_*Zvpe{5lQJPZG*
zeoL#r2={eHINi+#{OHXx;K=AVWRjQHm)K*LYtI_7H>K|G3C^>)Dks@I=WlOB(s6NU
zdswU!fT_L>>h}fd23ES4Dk=b7J^Ym&O<%mbOC#)?iYDHU{bCGLVHrQlv8Y9`(W_$~
zA&N#*JH3>tSZcenvBjiKB$O_yiVOMp=JVQk=%q-<p`-RyW0ApmZ-LxUtdy7Ew8+^!
z=W+5Rnq<XO)q8ovpoulXOs@dwqw?iRUg5>|S9Sm<kPA!V>tHku-i0d;j<txF33@TG
z(Bkd1DGa!$7gD7^#Xj;IF3J8lT4}p&Uz?6IXOn7a^|{YEeQwm@y$#{M*MpBjjP`8n
z2okIPc;-1bBDoE(6_w{|$uUp8`}ynF<tt<U6L`aZ?+nkXYE_i2s5arMWn;WAFXeM-
z<vJ<viz|MozGUj7X>wYF&T*9a=Kv2~`&`UoY}!Bol=fSH!o%bO6G^LAOVaTsd5x9_
z=H2zhN!TgiF$OKxcMsHP+|hF(5-f7HelXOALAV9*3pg>yF}`-!O%SY%JTpwctbz}(
z{3E!R+;jn^F@9RUcbdt?w>oD8O%oL!=AX#YVP(=EuAhzXO)2fvE>pDCWik9t;rRs?
zor>0rD0&M%R0!oTp^uP5hj}h7cb=jm&<c!g4p^K!fRF=kTT`skl?D*EG(S37O)fE|
zW+z)6(tgghMP3J(BqIOP-!yf^$ZHli=9QH%I$NZMH@qeHzfjyDpYcN9zz|}tIxPgh
z5@ApZ4~*r$cH@AFknOjak9pwMiSN4JSSCj~y=E|ZCLAwU`dTh+omt4H)uvYh0VCPw
zO7p-|B45+(0<{P+;rTXnmD4H&`KiqYKYnyOwzVsV*T68(mHEHv(*OOQ*UmfOXU7g#
z;2c>(<_}ST8HGQEsg7`&v#AcBSfS<zs9ruuW>$FZQt8V5mJeoDnHYp(RMv>arM>Ui
z`gB<JiOsbpi_#^F3Io_HyO(O)6!_aaBG3CQvLpfMeIB<plmAbb>6h0ZQfbU|cGmSv
z%EqFD&+abd*+0_{Hv6;{O|}-3m%Y}uq8@t>3v?N49QygD+f^^DF<3c2BmL6?^vj8}
z%!IsaStNk@wYwSDoi6i-GB0nFaKQm$JNwU|Exo~z6tELP0`JaJ=cNpA7@w+XQnJ}m
zNVw%LRs4d*e&q*D>opdS$QumJ{l*GcCG1*VT@$M}wMa>E-pbsWm}sfBv^?I$;=Ic8
zu)|swT46{7{ra+O$0237iL<Ca3*D*470!MI^51j$S~WTs-oK$$6z;!lrFi`9OUD;3
z6nzejF6XYQdUAbt**=H?)=aPL>d9kfVA1|lOuGT?*CRhYpEo}(Qe|a(xV7yFP(jtr
zDb-^bhJ?>NNdY<CjCH6B%)#RdY`l$ArtqA@U<m%~#s)J7WyafgTWprJX~U>3M!UxR
zEVB%L-HkuQjW7Au{PV+HN6X=IJJtQUv1NA=Mbx9z%z7E!(ZmvZ3U4~?-hB=v1ISQh
zu(ueoYXv>4TRNHV)%md_ZohZU8;FSF#UsiWt5cZ9kTk_|WM1!q#ql+X3qA(bOQ!7x
z(NL-HSP@=Lro$Vj!u8BPdD^EOzm2QOuaOB=dL^%ty}+5?8;6Eet2kPP-D(VNQ<s&b
zVa-##UGzDsrSfp2(zmL@!A;jhW1Jl<WNL2~iXpk)<>BE~q|4$x3fQ1X7yaJ`eTPPr
z{hkkarkM=G(R3a&Q{(&*d+PqOh6SCdQv(kp;dTqJJu3OF-M;$5NheP3HfLv&PB4^!
z?bNC<>mRtQ!G>}C&;tGm_U1n<-oNMGTksm<GB7g`yMCcBpxpV_-@10oCUV~MNbX}8
zv)*$qX|cIquPQ5<3J$RnF<kF(Le2xAb@S%Hj5*vk{U})*N)`kfb5!*`@6U{*@RN#}
zhZKC*w}HRe1g5P)qh&s<AiToP&|UsKv@~=;=v3$(Gt7FoUPDXu1BCGmDHc$wS;WG2
zK1<|bcyzR<my~SJ&b|yPP(C-4;F11x+4cj2k4hNTP)bFH#sc{aEur{`Z}<%r+}f81
zbbp-WfqQC3RXr$$KV96)7m|N0f7d<~=#lJX<=A>j{bO_OiNR~_ej<i)h>(d${;3=1
z6?N_0P`n|0laQDOSf;F1ExmuBSc1YLSMj5jQ!G8+vc&{FD}3Xy6V8r1)E9Ffo%@Fw
zOSy=F(3|(AqGu1G(Ln)Ukd8oEZe|@aREENkHbzt#)3GkWi({?%QANgs?c{^knMFvQ
zxn(()=$I6y?QWD&XXw3|G8|rtwnHl3n%p$h4I#v!BRXl0jJ1wgkC$1M${?!T_lgPr
z+yo|j+Lb2Byb>U0HFwhpQ;?GMWkSnswP5@lAXdddzE0LRdqyi=NsjnI@c3@((2_ef
zE~CsT@)M(xXgHK)=|WzrBCjeSF5qeWCBW}aI3THVEQee)3kW>>_33Uf_r-zI=V~SD
zM#<=le>b?GZ*s<nrODj2(=knKJSHp!oSMl{4)J?#eB$XiIea;X{4R!mn15vsRAnA5
z;x>%cW>e#<$L{fYZ!RdVVRqMMJ}Jy{4phzm=`E5n8Bv4@G|JKlmBCVmvtKqPGq%ix
zX~q;PmduUzRTR6X>xX&XmFzsb6slBIq$QA8_O557uuh+LNV^Hg^{f3%eV-rr>)a+S
zqx74xm2rmN-pN4F4qe%+V_oz~jsF3jg{w61;ToNRKa4F4$%hFX$%hP+L@KdtlBhC|
zHiajKHgANfc2C8wKfz;$uZS?cIYd9|&rU5NRSy{fJ+b<yAnJ=m;bYC@8?*02>W>|%
zaWnc_ru9V8no%M~Z*aSp)}FEKm;G2eAN5~zc&t?nUrDNhQjLLRZR)JM^s(`Je2EH1
zWo%cVpmo3MSSB<ho*^E{%8VJ9WVh%+q-bNnx$jQ%P<wIAx0ZE0FlGJC*+G1qs{iw}
z6tg|ukXDIivRNg&YauxvJp^FeZTH!J8G6Yfw(#@UsEUdgRc7PLkC;wF{j{CiViej)
zx0HCay^}YZhm>m6S2B&jAtoAGe8eqyXiP%+w<Tk!CUimMY@69X3^LmnnLxJWYP=Hj
zC%-Q9Hee?V_z$0IyDs+yL+pA`+_I>xM0F|Dc{sM!8|K>)4?oQKoG_;Cq%OqUeOiQt
z8R>`#1#!ElldSWOYHp_F^oR$1R~ok1e{2^2i0XWu&b>JAe32YVP7jR%az)4d=5)Ow
zkZakEyw<O`YH@rE*puCLE;%n4Q)6a~!oL)(BHkGxX>&CxDqJ|4C6h-Q?@5CC{^rYh
zN9_jT({Ny&W8kLYgN|X8GiriK>lZ{2w=Vj%0EK@6X6F`dXHUeHHXn3`^MALa*i~sg
z*bd{PnBh8cs#8mnkm`Ic4|GoT3FdtD^!hfHWRk$oj^kXam1<XBEhAwZ$QV}=M;eqc
zr<nue+lZ>hAV$mf|B9s>gsZY^KuP}G_ovb6=l>Sxv9%-T|Kxam#{OT9cb7C+G%w|3
z43ig4*llpMD^F3Gg@;gu8G^c0mal0G6NQIfDFY6}?w($sS^lfBsr!*%V&w)v8yoW+
zKKR^?ZKVV`^~$5`)S%jyLgl__s@auTX+6j@A^L;#w(_Jmkrey9k&Jv-cr^H+w~I98
zxU-dtf^MG35TvYhi7Y9`yo6tieko_B213QLOUrjXK=$Sa-RTDmz#9|6ObAVgQs2&M
z-B}&rt@L=#)<nF2Ow$n(aNWmFZ<>hdS`iW##I5J4nN^`9gn25>IJvA=!pUtZH()!Q
zb4cC|kbK-DCQ3Gc-~0hV8YwJ40nN^b?e>Im$_UkN0z<V|f$$v746{3*)OeLgsyV|%
z=~!YAM+hea_62o4dpOD%^?S)(fwtVQ#|B7^trX{F@XXzjfTkpxY&7i1yX#+-GWR~_
zO~RXzLw)F)thCJ7*#(A5Eev7}-01z3o{`gbV(z%=j?uX4DgK{!Fskp=8awkcgL{G`
z#aMm#c^o{3Hx?|k7%ACvwrD!8ATvaes5kux*)ZsPf#<iEdEj6WYw_WQ%VKg*3iwTP
z*>mX`{*>}5vvIla0Frqzk03E~xhuT5cgT(LZOKif1Pyn=2yVFK$)dQWi<;DVM~A2u
z9r{J23W&&=eXI{_>rQ`XjO(+=yxaomS$tWv_J<Iq{rPSQ1A4ylep1mZSidl|aj<5o
zs~YXhc{D7JBO8BSiYzyZM@D?fn<a>(H6J&fcWWYh$Sv!ie-~8tc-Kq*5$)6=N4NsQ
zUy#G)avtw7rX`yLLcDckt8w9MQ~5ELdx-;w<mRsMcjvzJ7T+DOy?E*Pnnqc{8GCoc
z;twoXB4$mlRjQ1PPK)0PT4@J;_0vRj4848Ec~O*Eq!Mo}-(+y*_EGpCa;3)=YSr3y
zwR9x;Hj>MS+#iP-iS&Ikfiuy;BCShmW2_C7+rEW=|16J}m?$NP%SMv@){sHlfa=4k
z?iCP$U{x41Rm^S?_jwite$J|BcQEmkUUag7cSB}!&gxrA|I0`3tI^YL-|^DKFhStc
zM|eWV;%=HtIZI&R?vC+4r7-6A8&HD2j0~}1b~|Rd!6+DX{olt>@_&FH@?#1^wvI>>
z=3`bLp(O=VSlT0tWMm#Ew^|>G+lrW#9e%@UTiCJi>BeEleXi@t5hpxwxOG)(4u>WN
zZfxX7M`u~WGxVjUXv{O{@AK}L78m!Aze(tLakRH1mg{nTU5k`J)~+-)*&*}sc}#yb
z8lt@%T|PAs%<N{-!9-}gQUqGmsvMR|N`HU^a)C(+sr<Ih(CY~)Bw0lDwLK<QY*e||
z4~P}1&7}lgr(CX*5{R(Cq|&y+ZOt+Xz>YuyQwE+kSLcjXY)Sn=cA=?N@J0$&=!x=9
z57YQS0k>Agx*viqmz)un3Ydh$qpsQ{a1}u(6S)j5aH^YShtPwX`#jQ5bS)gUGwS5v
z9@>9|qQ>M~!~*^8cm|z{e{E`HkqRwVWeT?DNA6|wuO%?xvs7~GT3MnGZ$>sA?hOw`
z*?S7UIO;%8RA!t<kPj*Qp{FHrVU|SpR6H}HA<u?m&%!ldCP3h;_K?vZvVxjYXO5<F
z%FdH+smt_dcJjzpnjhU9vkZ>CxXw_5N0OtYMcq?A6pA<xd`GRu1C)+NxOQl?9G!U9
zpgyx`8`h}!N{-PHpDJ+#;GhTIiiJOzjUk4kaEaky2Z2#OVYjK*rgUH{7&lJLneRI&
z?6Z=VC`}YZ`S98TND%TcX$Z^pp0xTJwjaf-(FnQj^ZH>#AyPdyB~s4i$0{TTe2Q8k
z)}MIBVi@7B^6hBTKH&711e9SkYWk_WkJ~TIj^&G@drzBiXNs}^FHzrI<LOh@(AXR0
zlcvY`q7O@`0#1VBpz;HZH4Iag4bi=0RdhMd@wt;QtC4E83G(1P0T{^vyYm`0D2V~I
zZ0tycBN*kTy^e13mob8i1Q2rr4~-G@roI2UIRp2&YFDVrhdefV)Pgzcc_AGQ3MFCM
zJ8uQi;Kq8`ts+<auXuuU%3O=^MN38)KhFmK;i=q3sK|y`DFl+0F>5gKOt@6du4SP;
z+1*LphG=cs$sn{5({z=5iG;`;nD{PNP*o;_@%T9OCBgE~($o^7;W2<F#ivyhY4l&4
ztp}{?L2#7Kw0%WYo?=X`YSrty)$a?%%5kVV6akxOoMEFjjTy4PN+zQtx5rF4U*Dy6
z-E~*s>Nw5Kjc#2e@^2=ZHNaR&X}gMhxWdY_%7t(48++>g=-ShGRBMscMXcA4<2>Oq
zL%w^doJ?l{r5dyJ!|%t8q>GWE=S(VQk^=_+MZ$Y=^7AaPwXX}7TSW^k{7;tN@uu~&
z=X{?L_=^9qnC#m~=<V6anIWkDZIAUbhL*&soKLe%3%zvbq@vJZgmCN971T#fqG+@;
z6b`qUZiTe-L~FV6w5nxQm>F`}o34I=x+_pgVY)+#rvqb0vVL2e)yfwETnTY|74Wk!
zXJ!l~tF<xA6x+d@y~2;p$o5qkQPByD+}VaqEJ9J3S0pXMn9xM(X^j!vcnn*>$>(jp
zVd7MDW?=SnLxO5G)4%lILY{DA-8fhWB7!%UZt<1Z^wSJza3~Ks5A<kswvU{yMnzMj
zf%t5g^TKYD%_&A7tpq3ek2iCT_YhcoOQW?tWTz$W>?e*jAg<XvU%jmByklu=@w%Nc
z9_KqdGe5Oig<dM;X1Hkb^cEqEu;-!APD~nExYz1sLNdAGMDMwu#Jx1S)+Hoi8vUwH
z@rFwp=tz<kgcho<#5ZUVye#!hPFup_B*K-@R!;(Nt6RE6b`T?}7*2`o#hZ_#4&NY{
zxN3l3sD~v&GWxbn)^-syEP)&o(}BBmikj4Vd`Iij3`y2E$%4kAfrCnt2VC=vy9$`}
zsA?e8mE$)Iekq%rWba^C!6u?4nVF$Z+-f=m*F`5doy#jamuci$+*>sk9-wTNhE2&R
z)tNZ1DWjh!j*`ZWrXKwDkivq?k<vPk4nV8gZkkd&OMiobqW2<}1KL%+eqR|Oo>p-6
zzfiribhP`E12tCLcYb%#?QdwVJcusLAC_YpP}K(5LfrZ}h_AA93D+w<3(Hn&JuT&D
zpgqA`%NEIr_?%)!mR5Sss3gz~=W#jFaOL-k9lu;k<SBQ=I(<!SZ8LK3e|Ppcy`IZd
zz35f`>R-DudU!y|^ue}Eig0D*){wuvs1zfJ;L+Z9(uhU(Rv$r<vLb_%hNbepfCF#k
z`ARp-QXr!AC#yN?j3Z)q*DHbO%y=Un=-5%v9Ry=vhdvXPAyHu=Z_{z!t+BXyg2N9+
zV8#YYu6<Em{I9Ezm?8uk8#zi6Bi80}O8%(GnNiJKPwzxp`?)^vz+EiHjoP!6*YIjb
zth0pP<PDxyWqc253Lk;?xI-E~_Y8*=esV(o+I6|jfrgh!MStX1!DWJJ_Acs^22@Zg
z+N@$iBe=t{JJL}hAPiJS@U_e;JeMPJd$Z2?RG6uG6iQauh!LBOlt^cKA74dGhvRr9
zhT1Nr29vnh<XD|dXK+ulMR@<NvnKaqIX`__=TCw5{vp@Zb<#Y#qH?kT|Gt3ei2%Qm
zrJ0cKrx=o80$S=>(Q-nfN*$w8?fXZSfRun+jMoT%nOOcS`Q0rxr`Lm`Ttv(<Ez-=h
z@*`}F%x3BQld<4w@3xjA(R{TD;+Q<!Njlmxz1b_GCNCM?_)&g}yN989SRr!YYp`J1
z>zO{OWIIs<<a~tEa&gq87lsqj?;AFlzu-?fm<1wW6KN_8g1)F;@J(MgT=&afd{xIK
zNe?bIc8P9bwt?o2eVn@6M2@$!UZvq=zVaYZ&kq(|J2Dp*%vT(<0HWi47xj6tqQ;!{
zb*8Ljr(hLut3b_*mDm3D^*aZ_zKz1SNw%w7^c5*;B_&4>^oXwzSj7#&=f~Bm<0;PA
zSWihaHf527xqxziO+I|j>H-#N!ro1Sq~M#+-#OI0()pexE9b~@ZnMBYNrV<b`75<Q
z3Jdj=NON7_GdBTYa8~Y>-;sI1U%1DO)P70c36!c{DhtWr;^FDun-_S*`LNxaY7FP&
z&l&UhITpbE)OCly8mm2@XNj_y2%<<yFRK|q+6Rp{B3@o3k+T}5Yp|GC%=|wbcoGAO
zq2ri#zW67r%BVkS30x)xOVKy3BfU*u(Z<sww^p%2RG+#>&|9f1#1|!>LmwN2b5>Xs
zBjTE>RXL@d$qwG>qY2hJMC|;cIL5qrSZEsbgHi2zq-Ih}e(Ngs67I{QrI(;6DK+6;
zMNptTziKdKbl(uu=wnEZ#0Uv?chuV){o29fwP3Ke3D9xfpliw#2336jwxCf^tiR8^
zqkw<~IGNs=X-ilr>_VzRuJCT`x))l)npISHK~g`w<ny1$dVH#FL-U{O{icck^+Pha
zIG+u=`*P>=#o=F=<3Tr0@sM3IN+zO>?Vbw$Ln~fGWsuGd#d^T=z0=#X!`H$E^H!hL
z^Bkw|gFu4bNJ~FyCSMSvo7?B$1_XBqQ}HL>S5|VBtkJ53X5mk#B6dC)%k5g<IY>0E
z^P_h1{?bVZID<znQ7E(s%Q@V}iyGQYO$A&XaH@WmaMuHxWg<m7i$@ek1K0z7=piZP
zdZ0AaTSxfA(4h-ik%W|$QY9oz6;GN$Wc-AM=X0WI;`$c9I`px3w@x}^ba@4M9It{7
zFb*3%O?nc;eKUSn(4A;jnDKg4w3ss<?;y!H{F9e>8R?xNOpGt5!VW{1Tx1H;f(gx}
zMA%U@lCIe`$Fb&)l4ERE<~_Bw+GB^Zk;6&8C7gQL&qR23HFyY*UjeMa#J@jD)J2<d
zcTWrjD+Mu4V<g{+Sk}l9$Du5b>fNKBe0VolmJoJ7G-K@eRp80Tjit>H1LxR>91bg)
z%1D%}hAL}=qg9FsTCJ?T=nERI-M=Zv`q)opk;5~|mL>Pi(ZtaO0?gi3a3rql?M?6v
zTzpc(5Jo^f-vLq>o4iJ#k5g6tl-pO`nUD)p-(4N;RgI4kiT}*etgHWAc|ts|wweB{
zp{OHD&-6=xc~wm@xV6EHbDAUg0t?+%ZR=nQ`>kkbJk!oXdtz1&-eURN+_-d7JSDfz
zCo{dyuNewr@n9Ne>PD^PhQNtcqo}se9&1j!$(Q&bdUFS=YWKxYV}`ohG^}ENbD1K#
zZp!Yh0#?j#fE9;Gj)T>**)g|_^B-Sw3UX2naZbT33A=0j#1tj>!DIoSUqwWhW(mGE
z)@H*Aa}hk2(hS^Sga|at+z&(^@=yU}6ujAr6RT?e9@J?a*Xt;|DJcUy(cI#y(T+E+
zF1e2v9O91vw>~$Dw$q@s$(F>O%2C%{(%cJ7ceJ`wJ!iwK`mlAG9=={XJfvsWZGJFx
zotM_FYw;!6w~?5!@E)UQ)?j0u(Au`K)pgw>nHVR9OE+4J`?LmCCNw$N#&OMnj*lUC
z&*F0&-H1>53I8%1z0rK8+St&a6m{lhNJR|fd844glUOaYnpc1>#@tV6V`0T|Y?MU)
zbFLVDw{1oMMXz5ewO&*_XE?eM#fnt#qO;0<n-V=L4<URRg$X@@=sDhyQiJPnqor$h
zcdD5i*XAuo9OP?~K_?A4XU+3;Q$H}O1u7cG!xYEF!vf<e(3maNZ_?FvN=8%`Q=aL_
zfW=<#+xDJdHz-l7?-S_YBb&f1&VO4Yrq*n#ub+A>VoMr|lzX~BftQy7Vwd+;SUVZs
zbFCe*P|!7-NIo>Y+qe5J3318?p<wWN-~Tve+Dh}X*|&1X3&bEFMGbGh_Z+%TgXn|?
zz15W*J2}T_h3*~vhC#0wQE&g7w=P5DYEwuiG7=S`;pXFVs-sPAZU8eyBYPS}-)n5y
zjG9Ug>J@4~8!ysic+K^+Z^xCB>H_eDY9oG@a&l9Pv=?^`)YG=piCT74(ehJDXkENv
zA|9zU+B=oAUSYhRfiwLi3)P{je@@Ix^?`cBy+tpJJ-l-oY&kyJ<!yJmx_RMKD;xWc
z8XqgDoCG;O6RMPcv?rHesIL86;}#oV6RpI8@6#g5fC(DgQaTsQg6EIh!(vzVOsDrx
z4t7?I&)L{Stp_d|NzS8H7{^#<4M=L$n8_9+<t-P-&C#0Slu%=AE(`6!AyexgbDn6E
zN0&q%?^S!zKZvO9GzXamD%ISHq&Yb9m7AFfI1lBkZ=8&Vv>}j8Z#qe`TMNvAjdorr
z3@zk2dwsEXGF{yQ<{ch=sz(NrcG5*jY5%d;|0~eGX0CNdt4zt58;y_@r9)_^fOt}K
z`%;0T6`9j72@<V%&Dw-^PuO>DTgK2H(*2d1*f~i13cRh)(zhD0=x4D>h0w)b4c&e%
z*$Qr6hNI*Ipk2Gk$lAOAYQ~UJBByhf3fT^-;FHoA$}S|oE&c#1itH6O5%Zi1iL+!C
zMT|s36)&bz(T1OKbO5JM(TYCPMoqeQJzZ?@Yk#&mz&*a0ljPe#zBonaq$BvcWl6X3
zcMyG?(w*c(1aVffAIxvVE>Y1%E*Y_#Y1VqVh7BtJexK7c?6vLZWbjP8DeeYe+P`ja
zmG(W`-En;IBoiDWhz?^RjZk`TeZG&`Hy*knl|my?pvCJB!IRS3XGA|PH245>w{b<c
z?&tZ6XWMHbVnWOqw8+ZN*$iu}_(+`ef?1j)k@bPH_A^)u6gN_BV;G-Jo-kp?i(d_L
z>~<w`dvi$0Su(jCqVBsk65@E_V?Q>vyAMl=eSKQ>rQFIvp>%qV;OmJ%1qfb7j|P7k
zSU3pUs5{<&zl+>#Jm>%+feWuc5yXNZ&uF*yOj9Y_d=vDif@0&oov&X*VAvxc8-89R
zJ7F2EAW>Fjd}~h-h|E~mT<~4o8pXVIbikmA!HIeUuuX{ksqs}r`kj^no2$-2YeR7S
zV6^p33MrGXdW~s@>=0e$&(tPK<Adq^I=;I&DNr39!M|p)hPbdCK})}uz<7l3NYNEC
zKN}PDrrUM8%!mOvK@T*ZpNIIN6WYNyW6W?O0gJCZW+mz@t<+y;X5{?)ci#A@3y@7T
zjI58#$jN6NNT<58SQ=;&TKwHhXScb&7t%OyQHyT=o3F=mHT32bx7GeBrD2CMMaNo~
zA6CfOkDi?D*{aBDgk2Kf+<t$jHsO|~R*vI<TsE6%sWp2Aad~YB1~3OZN||b5{bbHa
z_2ARR&MLo{f-?8fkzAJyeBjFU$eZ?$B16b}Pmene#V4KBZ1#6c@ZGo!%c#!47d|9U
zURD8L6M`)5@p2aQH<k+$7AJ00FTza&5dFaMy?7^dT0#6;(PYd5KEfEfHP`x#`~y6n
zEz?T%dYal^f$UjIC9q0HZG2T3J|^>e3cpZ|sM|<L4gewKt86)%5<go3kvvjig~fLk
zJt6dz27-iXjcVf1nuyY4^#Ni?6uBuI;-4JG?YA2GJsA&nU9T{0n=H{lgEO{@*JG`L
zEKZH{q%!Q{NC=ug1;7k|rov&RHbp*Ex$E}Jz;A_kj4(>#{618YG;@R`z23WYDu*l*
zNkM-yIQ*dnZ9PzJwE2KjW|ZxR2KiWTzL47u?|6Fyulj7qBh@RTp=i72hwz#LJg^Oz
za9X&WNYzD0Y=ZAScOF2_*cwl|Kjh)W;MY@|r~@D~L=8zYv{05otB1qn!4Q5O-m0oo
zJ$a^AY%-(SJw}4E>@qqnlsWMj(;4$X^WD%ytsHUA7&90NIxJ<q?Mj2&R_z?b-o_<h
z2RE~Z-gZ%BcJ=I?5%<;^eGg4)V}BZeTe;iew_1vjHc-p#ze#}mPVMRmD>*zdB#{+8
zxOY;1uf@kfM9^d7Hx+LwZzlP%0G#{WMlQw-l|%lrIW?jG#_~^Hm#WjRlUPrA2S5hn
zEORMZ%?<I1*zRu1_^0_f9#16OME8Li>=iq!;WqgfvgF07{jTWO4Etmj)k@TzNKQlT
zv9Z4+ipl%6IO4;9Tch(rUfAbrm@K7IjosyPhoi0`ox}(u-rhSCn4gqcl5J&w<7rSU
z{n3PbWdNlX`^*eiDVQM$1Q@EU-nP^YrY(sN#i5}G9*}v^w+&*Wg?8Sar%wTUxfe>t
zukSQ?x&~y^w_wGjnf3Dkv>A~~1MUny;#t-r8fr;P+eM910QHQZqb6ff=-5s0q#E(=
znTSI(?nXJh^6#gaGSGLxriQs2s}xLy?k|-BAg<6})DI%@=Oa*NKyAr^I1O?!wz=dC
ze~$?U+GDIXlU|dDM&vcf+NZr4y4<FhT#cSP1`wRXOrWE-;51}iR~tzcGv%W~kJg<C
zZlKH0XEWYWSpE66yPZdfi$ZZ}ezEFv<9s+;$X7ZAuGJa`w_j{5|5}7iW>pxc7t<eF
zLYPn`+~6z3q+&}SvqRPsI-M6dVSGQmhBUR(nY*VI`{wI8;V)dNWg`}VX7qFn(ibC1
zEq*&TI+H0AQ9-eT^m)VG4PoJZW`oxgFc%3nCAj)DEnl@-cZ+)T%(j#{saS*-KN1&5
zU8+|@5vvfum@uO)yKgi6o#mU5{DjfR>ESpG2NE}q>jju`+uJ!H_1gWl@t{}0A-_4R
zdn1#iKho!NCE(7Vt$}^?S>3M$pT7MAo6A#T#hX;qC?@mt6(#+mytwyih_rSp-kHD0
zgrGHFwo_BqG42U|qba#8KV@>AYlvfMnaB{X*9=DNXA$ulp!LS9iPAH)8O<sr^R#4c
zvJbt%2Gx~e&BXma<dD}wUs>W+JV;EjzDXjj2t^7dQ`L}i2ci(L>9~(o&Vt}3WQxKE
zN;K3&>0Y$_e~=T~kqAF08ZkvJ?48&Oqz3HK*}NPF;K79eKIgQ2#n=r24!#}_D=N@W
zA&35p;Yf0%h81(HD`C-4*LFR3%4th6bF948fF`GW$Jxhebz)FlYjZ-zmLigYEL+dW
zN4YL<!HtPQ(vx}J?T2#A7*mU(y4NcLn?*S=4{8b+ZaS8sBdDI#laa!0)2n5U)-iQw
zmFxjYbE?xra@3jYi81O^gHICRjZv5c;0ggyv&M-%hH$J**u8|_b|&WDO`hU#kxXZ?
z1AL)wu!dl8nd^g}bG-aNdXDhA@cvR$cX^V%^nV3NUqnPHBIz~X)ngsS-GvffHJerZ
zyd>0yrz~!<ReY(j)LMvn71N##X+!6Jrvf*s5!E7%N;1y6%2ueEKnsz#k>LrJmT<4#
ziavZHQ0m4^TtxrFLbl8qC^S|vU*qhk!$!IYlL5E<!4HMF_i2~D$J`q%Q03lGNN45A
zpxV{W&v%^0n%Ras4&NYAN{b&<#%!luU{A)qF3N0!dZd0qF;E^Pd#DuPito#I*TK|{
zIX+;)XI`7d#goX*w?R_%*L{J@aE#F!uqz1@idO|s%L8Ztf&JuXeQ?DDAoli8f~tZn
z`Z+U*KagIcS|B){%X!s=`0&9A0lwH^3rm`tc@sDDEq!&e-aBmSbxw;ll8Z_wnsBsP
z%0u2Y6WzWtPVR45UTJdG>I_OB9FRa2Y!bt?ekbYVjgqf@IBik6&-~&Np!a&iv!``g
zG=!dxj4qz;(aiMaUc}0~F<<GMd^F#Ky%RZwPE0%~@#*WvCB4Gb71{n#+8b52;!bin
z2}o3V9cjV$C6cS7l(jB3-KHen5ZK<YY<3TUiL|v@D1hr<lT&eY-bh9k+JDHqY^<0T
zG@i-)yerIH%&s|fL3-R9EZhL8YrvV-j~?t+vzIjn-<!O{?|Fitg%)ESH$>Y0Qe-a3
z_(P`mogMAa*g|dEs|62??CBLuQEX%pm6<kHqDfe)LvR05eBAp}Q+F-b47W}0ays+u
z12ts2Ot0WE>m%1>o3pw@xm&;R(wUd(fqv%j%hS5)`05s=+()<M_2Hz~s&?_;wX930
zLN(*3jpNOdU&q`mEwwEztzxP|b+nw~zTgdaxenunJO26A*G{I3k+M{g^W9uzV!mGA
zlib&1t1q+<W2Bly?+bZc&NSJ31klF*Oc`(ln8QQMW8QI_Q+GQaaOCf}JQ6uD<R>V#
zyqJ4SQ+LrvaU*z}^}O`R?-vj$i$(%g-AfR0{Ma+l+Sj9TZE7<Eig|ZxB7n<c;}u)1
z-3xfb|Hh#zqyAr)NJUG}2k+u9D8$HL(uK|o%`xRxjHWie4bgI*ft7Bjy~n=SpRv3-
z7~=XzTx1>HEu$>fVE(-J8Wxc7I+OdfMIiOhzj9DKVlIC}m1SPU#$I=B^S~e?k#fRk
zfYwePH)bIuQex+OGM6c?Tlkk^q?O8QPV4TkvncW74~0B?1yLGU%)h|cN2>-GyHFa)
zmzl!sPynin<!Z^-+!lk&$x^YmVTl4v%W~m0F8O_00kZpr$e_Q1=I@c+vn~!^&~oOp
zimYRZyQjW7@OsT3<z1}COI6Yf&V3mHyYFt+nnQvwxNjAsp-6u3^$zB_r+X*TMAGG<
zMMRhwB2yHgBBBh-e~F?!-12p}Ax_^GV={YtcokZ`@Evgrum2v=u(AUJRO=iOK07&=
zo;$h1^rub3OC74Gk{t$nn=KQ&l7B|_3&vnjKKeE9PSMtGKS!c)UKH&&a%b$4@tcOA
zA(|bUp2vDn$be#&t{hK0;$h-{yMkj9WApTDbjd4P!sR-cWfOT9{9>b75uFswQ<vJ9
zOt-!E3&W#0guE^$PsjM3bo-4TO2zwsKb^hOIW&+-wbwJ^QhPR?F^!ljrchKq0L$%Z
zH>lY<-_d<NrvrT*O@l8D@i$l4|CwRM?u9@;hf=8`%ozRgSJzd?PG^TE^2!@)m)sRE
zzFmEhW(nZ4NtCi(b0(LvJlEJ;Yj&MBuUZ_=ydzI*-rhk=0k*=K%FAG(2?t@LfTC`E
zeLlk!T1)IvMs?$>bfj@%8RBL!lx!Ni&KN4CW}5Ot#$(TeHBoLHomC$GQ=sm1QtBu6
zFTF`2i{ZWvU)Wqs%Owp%n|Qe1TDzdw+4A~c4`J|IBkDMLJC2a@JZBhDaLVfmne-PC
zk+;yd_fo1jI@S2QZQ(x#nk#|A95T@x%84r#b?T$G`2zk9>;IY`Up7cuo)HuNTo^JU
zT4Ru(_SkrI$dKefzJ5grB{tb*Vx-dBKLAOdiYMI~Mg%<e|44i7&b?QeZ}#u!bOShl
zmpwVDf74@jhaQdI@8^`Fj;IGgt$aO07Pz>M_@Xs4!bW8O4W=tUMDX5n%OXPl$|sx&
zhi3d)!E%DWIn7oLV0hNUuybvV(ZXgfC{@G&_=Zr-G1KN-OOr9{8|Bqwkx9~6``%f(
zw5|A`XIpb;_ZVBv9MHa=J7aXU=|Q20*ltzSz{Ov}*^;1qFq+t9oPd*~{FJOB>5Xtw
zGM=d_^r&scxAew87L)Wn0lN{;jiZ|Y?sVk5uIyB$&tO25P0V`;N#&SNrDAt7c}{bP
zt|PJG2A*(%Tu2BJtm^MKWK4j`M?QW2WG?b0gQ0a5^KaPr^2GCX72S|@DM0w?Gw0%<
zPlQ573%b2tmHnD~Cy<5K|ARd+47x(|H*rbdplR__NuEGC_N3R#&vB{F&H?MNRo_3S
z&3NM!e(B;*GB0%ESCUTZiUM7nZ^&-<@^YM8iK%;b-_AMCj*Jj{pO=(TJ?Mt%(b9Ma
zrvpuVpRgqJ9qhAI^~QL<^D1w@bmns;ON7mHw1Mq%mQ~Ll++rQmZM9O-OnMCD`b(qy
zSH&F&Y;bi4+spg0X67GBFpB|(TJ8$)ij$e2Bp%t}W6+RZrX>rCI<<M#@A{~iVNUod
zrq#&^m043V%jrsQdNcyFTMG>>@iUFegC!~?sZ(S=3u*KuE3RN>br{qI=tSUs<o)%;
z+2;RFmjso#7y(v=#)C0Y#jJ@*80N;Fyr=1sO}-e+`G?W`BoYIOznEng1?g}p+TI}5
zSo(Kpk*AYORvSs0A!~w^-x(RES;mt+pNgZM+G<6s<F^cRJt1IsK37V1YDc&OIr?X%
zo2J@zn=%Er!JzRn!GN1PRf;pyk2HR-w{Yv-Eu#3)FT|?N_t?24&R~KDN6nn&%A;l7
zo)8Ya$K~I)Xr-L(A3umfWJCUhsNX+;uEF}1ZW$5Wb?Y^%(p;eUsoiS|%e>>gTQaKY
z=iFhAUlN_yp`17>_RQY!zqn(%@&?5N$A3pEbf202o~}8?^z@?j-kp{%T^sfRL^<Io
z*wND2U0DIBE?IG4NPF;BlaG{;haUN@ub7KEj*u5dxws~NA&q2(2{{%7OKVwn2P5!F
zyC`t{4CxhH{gCJHEqh%*OpRbm2o)9+Td?-Q#Xiww5azmEMbRbsJCf&e9SWO@`3rFR
zsrCn4AIUrU?F+9UanO5_63uX-k)iLsfyHw=>}w_8I?EQG7l&?3`FdUCiwV7LWx{@|
zXuTt=$wnb5U;ys|%WS+tR`kt(2TvsBuJS0rLQKM2+v`tP*XrE+PAD8Ivk%Onrj<+-
ze$}D&rya0+mDjmfoXVU#kB;l%*R1sW-p3!~5hrv`KaRc5yP}+2&w6zhsvX^U|KeRT
z=`jYu`7MM^0y_%=YVfmXFjgsc@P7coKt8`tpj`qY^m@j%nVRG0JhMGP3qxwfJtUR5
zl@L`H27zE9DS-NTPh*tMn3!lWwJ@O6*k3WXPrU<Pjlw%HPwj*dYId$~@y5Xx-L@n*
zd*i5)G@&M=ig5Z$%||B(#6mH{H(j7sxH015AS!x^2qAa`hXe;&Q+pp1;GSvo#8!=N
zqonp0n{r4>oHIlUW)_ThkM)?EgVHro_<$vqxy(2r@jDGlQ9!HJh{mK{W)M(M<sE^V
z@)7H{TayJ{#6--K7b>n^Hzqp{aSrbTy+L5HANzW%SZod?;6qIfXi6|Mvtfy+laag<
zYDD9Lc@R98ufoBd1*XkzX9e>n06uNvg(tTaoVr{y*N=7A1V@k_BCX_6_}=fGxHRz8
zA@Jm;HWTf}qju+4+0auk>UW9f>dY0-m79yyb;-np@zmCm?VAJ<&(aiqci(qZyft=h
zgJTy;di^R!k{{Uh68n530TIWK{J__E{ZIS=KlOk7Gn_hgn$Hd$=FGVZoIQV$lc&$J
z*z0qBdWO1=u5J-w`<BfVtrpVS!RF0d*}P>ZJ9h15$Id-$*}4-|#Zbf?A~k`Ks*_w?
zI3c(q`mAm)!i|N%iHkLzme49eL>W|p#a<m#meW@rl@=f5;_g<K@0{j|$qdc8b41zj
z_?*cuK)_VvJ$?`3WXmzu20bdR4e(N6-q^XW<c$~FOf>3N!qTeWj7pkSRN%}N<NXs0
z1dH*)`2BqG3Q9D_$>V=V4Q}siq>Pix8_!O#bBm^2-lhpfQsR~+`O4Xz=iS2tt}g^y
zg&XcdBspiYnCloK20<uFp>UEWwe<K<l%>%tzc(SH`ySeeAyPn{FyDu{zJXQodX`w<
zT^0;?gTdks9%!=EfF{<y<ROh_U1GT|v8MaxtZ{uduw}y+3(_p*l_?YLz`orDA0MlS
zy4^-AE{Ns+(!(T$?Mhd&cY866)8ARgJ(im`MztvuTMY32p#?77s1R{+6EIV8@yY_P
z>|f8*I~y72d)&7PtZO-TZh}*nM^5{F(71ygC6x^jYtbzN`*%k{omN@${Idsn?%+Xg
z$)>-BrfHAx$*GDX=PTR_=?6jpX?!ekixu0-N;-e>H-)D6MOf$?^F06`%YJoKikq1A
ze$UB^_eZSq7=5G(@5cXb7q>6*?(fSQ>maNKsKw!d9qS5Sf39GnTsmPkGQk81XmBXT
z*{dNYz*&)Y5DcGpCj=vefVu)hV+Sh0yFg*a*PokU=N3t>z;tm%ap`8nATYaNymM%f
zV&-l*>)oFtF0<+}Ah~Wug+})ZmM)Q20fj2w9%YvM@;HqXYT<;^2~Oi=I~rI0qU%(a
zd5&R}LFgNto=VTSlW3F0xHf3gaIblKTfx?ig7*?#&Q@ZUy4l?WpNne>RNmOMUfH%@
zhV|TcvYH`46dP%dHRc-}In(Ftv_pyxEuFyWA}!aVFOz(Hvf}DY9KpS8+7y!aPT9Ln
zaccMn(291bBM=-~IBFl*x3kNJNgcUP?>x|u&cH$yxHtucC?@jxa}10u@osx;x&Myu
z?$jt;{80(ZTrH1d))dtFw7$LF+y<nPgQe-Dcz=wwL9ZN`S9VS~-gv%XvJ(XphW%$n
zhLV|aR}eUR)$`8rDwTWOd)FtC#*iB-5X|VR<Ll2)vU78+GmiO8quJ~pOEro!3(DI^
z`dpt+d$6HYW9G|26cTFmKZbv#xv1MFcJq6PuEYD`!DN-kMXnT{^VdAH3w5)tUGeF+
zXpNhrRS3^M)uN>ZA%MCnc^U5Qp8nh-!az};+!1iY7RH~ikQsf!QUar;<{)r&HgNW0
zP0JbW0KqD1bqIkr6@Bmc^vojOSoyeD{KV+i-MT^9vR(-x+_x(?h8Y#picrC(b)ILQ
zbg90*Iehv2`MPCb(WQL;YRzn~LPRjD?rU7>jX!tY*<CC!9ti<DooEY;rOn&$ifBqJ
zlkD*QGPVZYfDmeSObTy2@0e)E8+|2jkRY79>Ur;^Cj?L1gI9kK6I2qA0YdN;P6>5Q
z*BNgf?6PB1OovcoxO0ym9OG+(V`fo!|5%S3^PtX9@xY_5InF#*oTI8ewIA)C);M&H
ziFVW&e-Nwr@0B~<6AwnU&W2T_{l4eS)f8Y_@nh2heYik&5QJSD9Z&Ai7%~raj9uR6
zZq=Kyu`4{WDYao#Lqc4*FE>DIjE#`;b%YR<6Xye!)oAeX(6onGi$IN<AzE`|PPsUB
z?^311d;=Ap+Fl~&3HKF4Z`3snFP_2zFYN8a=2cB7$eOanmET1L7V5zHD>Wt-bDSQ~
z6%+Tkqke+bvDg)ijgt=5WNM?r*zn%2>ezxiJRmvRu`uYjug?s_dt>`#$?Gq+nP>@E
z)ZvmK!)J}Y==@a8`zIIib)Y3}szQfxn&m%p>Cd>UB7Fw2&b+E<7s9ItC)l|qO3pfq
zaZ%IMrZBb66CAUP@c!XBuFM5mYB-7dM;gju)HE~h#9d}p8&w^KkBnZYotCg+GVQvS
zef{HG_zgW@_j#?xcC7)2qf|J5MVajlRy1reT~CMqGA!O>W*m5`VEsgi_r*x;a=CFY
z_q(Av9ufj<-|U!ZMI|yz;w8;A{rO{2nofyL1DUHg23)ybBTg}O^qdFjP=r3QLv{yo
z0juHog_^~BX`Z<oQe`$^Y~ScuKk2wtFz<`r?^Y*z%=b|cV^G8H?HzV+DY?aHj!dg}
z`uZ<T4Y)ZUD>;IAB$Ri4!CfKC{_oKn^?2|jRsmIE)B2_d_tHHbh@q)ouci^Mdk}Z-
zSQvCzN~l3%#_hHZ$~T@bnQX<!hQjzUyMm?D7r1bv;{Bro>QLg;2vS3c2_VZ6;s+*o
z$x?vZk_W(tK+7qw9qh7uOZ;4g;TRk)ZPPtSU~W-(_vj**=7pBV)tV(kABN&GnQ_L5
z;a|lV5Gx#_6=;@@(RipBJGTPFiLj|(4U+W!AAvnz$zVS?O?d-Tf*GQL`Mz=TQk53X
zJ{_V5OTDBUNfBvA5fiBb!unEp`DsPVnwkPPv~0;$ZhFTJuwa-vG{g#*wiEVjFVgRl
zR)7jlR!WPD-(ysb7lIEQxeyp&C<S6MUqCEiO%;GtNKjm9T%Q-tUQK0Z)M<ei?x_40
z(zprG?I^pq#Ih-j*iDU?Q?RnuWPEp1jb(-?p4i-G%cS!Bz9{$;>^5J`(1sdjNhjYz
z{2Vg|K5*tz3@sovr5EZknb;crcnOW@jl+Ck{RC{Agm?~?DjgK4J=~m6S@^^2`u-RL
zgKklV(LAbwe(l-1q2z1NcImWZjcCKL$-Jdly3|~`2_GEp;Z28*ZD}sb6;81dJtvad
zp2l9)LU1*8UDGLqHxG8%y|qXwIE|cZqa7V<&XJPYMR@y2kLxqW#BBl<V{)x$?t-Xd
zSYUWG1g=f{*g6*jN#&0KICgIBu%R=crcRA`EOtK|_FP`;;h7Pw2Z11cE?rS>E<_iv
zG&v~JG*4RLKDB6?c5W_tZfBQJdxFM^*CgPnQg^IIcJuS&Knx8PrbgwBEgJ%xChtX7
zD)xg{Q3S`CDPwA8Kyindc9RYk%lkZMF7#O#7{j6@8SU)8-0PFfv;YL2*g8SGh_5#!
zYHH{mGQKTlhr1Ax#I?uFXra9HOq+E{SyNVQ0u`@A*K`<5neAt<1g2*lg}Ru;D1u3~
z;yk;Sh#SflL28@?YVBjz=E=<^?N+oyk``?7diBgKz<lLVu_*nTW9Ses9#7DMz87{(
z3SWD^#Y88pFt0T+>$r+PccEgwE(z*~H&RHo<aer9wa_#>aG1q%9ShJYm9OpZuxo46
zxaGF^pEPY4OJ;gC?;NU_ngb~wZ5dK#wXxLGuN33@EX*%j%CTsOVWP<r_U<S#Zv=CQ
zl&MkBI82QZF+=cJC~&1R-xrQwsN-JTJhwW^SC|QhM$_}$lO_AMIjY(aN-VgPVH}3N
z7M6Jff<=QIBrf3hY%61brF+0qLf>EjM=uO8EmM-zZO_AQs}P8l12-3q(-#Nnkw8FM
zIjer;SkhmcCzb7+N__33w-Se0&5Gx(=`;rz1yS6n=DDW}p4b?@i&4~S`FsRRJ9L7?
z?@K)MJ<rJtHMPWE>k?w;x~5~`+9y^}h$?E}gJZH=@$~kBp<3avqA4Enh3lS0ABI{a
z4}vi;=<#$7YR}dUjyGQ@nQX-iDXg#xmbkqJlxOxiHgrR5gp*u%u@$nec+Z#x)J2z|
zSwO|`bxm90>(5TIeM>av5)8~Oi8_dnUpleV)Vqf&uJ@o+aCqw6Zsp631TaO_SQr@R
zr+^fL6&klIK;Y?JUA9ds_}HBdB=tuhj{uEXNcX9O;Lviwg=-a;Z&Yd4YU<0030cd%
zhZt&xnZp$oU)kSg>-vJaU*Tv)!5Q<YuAI=O6bJ>i4{V+&*txlVPsbr6EksUT?lZF(
zXky&Ae@jBFy16}auLYdG0@L$NkNN1eS)S1)j?pXvp4{eeQYDT1kUnAg>%`+@(i%#T
zf=~~5YKP;%?xr$F)8=RS`AT3YSsO>|IC-hhY%kzS4^|<nabpv1^`fp_1aUqJ9R|VG
zuz!!x?T!S<Whu|3H*j3OQO6QhQ-TN&Ld|)N8}xVvLV#`S9AAI7#kx)`8)Jq3<niKZ
zG}DdE6Y%xtO4fCi+DBun+8FbdR{qUm%WzIH?`fC98wb1W*qpw*5Zzv0{4jhUM_Vwv
z0Ph~_adSTH;FBBBJwhqZ%<4l@rnIGMiPKm6%=IB&hsl7YIB};mUf$oLEc*mW^{nBZ
zB}i5+A`ZiW^iTtb;tdX;t?1PPO+yR99qd8Vrvc1_P7A(zuw?yukFOU~+&g;K?6&N~
zCUXG`_>|MKXG=l5w0rDarYOpE4^Cd`<Gg&KMC_;@xM7qCvxC6#3l+nB99t<{KTb5U
zZS0cK-my{Hw7$f9L$o5Qy{#}}Q(T%oYv1FEt;WmGv~k2OPf#CS#4BX>$1%8J^6&K-
z<Md^VxdzEKZA5qbN~)V{5%aNoS{01FJ4^QMm>4dvnoNqO1o_nEikZbg%M6tguk`~^
z3s_?Yy-EH_O_D*P5#BuMc=P#ItTPW1J2M$Xb=;Ktk^X4bzDsVQg3aq4uRqsjV#3k$
zhD%8*Vbr%~$tsH=RwOA-q4J)x5MDdbW!DyI_V_Vgq9i%jSbiobvpsn4*dkYF0_tL4
z++ZHFf``)^DzjFIJ8_FKQdQ;`YEE42<1NNJ8zU3l&c@aaju-ZIAq0E?5lsutv@1-P
z?@H6|YNgrHnh9ne5hIwQ3RAOi@?u5m&`uMESPo$+r$8jek2g&OUOm`lqV1?ce4i#M
zCZq+p5o^rFK*eJg+Z^xQc4rUB(%oxI|4M(HxYTEEp+#B5Ib@|feY8?wn5%6{;R0u`
z1*T@AL0EooJW?XZFhdOxT7|N6OA!;ce3Bnc$!fzAevJ<MGQ^$&gAmxUPI>jf1f@$g
z{Ic{}OFH?(<<H2E2Le@X96Hx$v2r*GScqkAp~)*+Q&(m~42AiocHGhl)L4eLb$!7L
zPnQ%D7gUy{USmsFVR|8O=1Mg@mjO!)oBKZ(Ys#PtLSa!CU4qiD1DhrtUw^*E`c6DM
zqA~YWRFbQ^imO#^N(PKZbxNdBmQuE^Q@-|Wo5?oxf{zjuHnJ8^?#w9b8YdBx*n#bh
zXV>xM)_9?6)7VeqN_VtWX0C6%f2hZ`Iiuy`9TcbP=rQoJ(o~W8GGNV)G8yF3m7Kh=
z$ffJ?8YS(wmU;sT2X=HgxYJR4BPb9;@-PKL2t(ndwKQ=yh9W91r(WLD#FUK_7b>Ra
zE!kmr$D2kz_h-qD^(|g~zD?H&A;fNEiX?S0g%Ee2K^RWR+c!GaPo%8)JAK;FvzPYS
zVqBl|T(~m86^c=(o$X5LWS@7$dyG<qDi}x4N15HxdBtog_P!K9kMqmuk?-1CFwqHw
zP{f5wk`xvMEX3B%2*E*b0Nd6HUwgj8M5~C#Uy|%^(_=v5zeeN!ma^L8yDBFyS6seP
zQx;1`AMtUXH1|Lf!5#~iJU^ix=2V0bm}qtQ%7Ga6B}6arP`pf_3h?Qv0dqa05J~wJ
zHEP;)Be*ZtltBk#`2|W9d~~zF&|zIC8q?JCArU7>wGs=kSk<X<!HAY_v+GVJ1zXn@
zeB*^SolanYQ21t%0N$z?^O1N}S5$O>uRqsi=jJFHGt6dhZtP~IEHJyMymM&4)%o~E
zE{&39|2y+#BTdMn_z-ohO$9T@hbMc?EJSmk+LQos+JwMM`wDh$EvT!sZw-P<fr`V2
zrDV^w%IK1$5TRee`=>lrC5VK3$~=jC*ubt0${R1X>68O})rvdx5OC%wB!<3B0=32Z
z^{2Kuloa>9(>RA4ErU?ugK*-!XR%kHWgo+(_N(_W=G3&ORJeG(;=)wjINsyuHVtlu
z^V#x8zF|Vxy}{F$W`7+Q3r0XqPzpjY=IX%iO(oxWuEoSKW#A6W7}1m@98yde5aHUK
z=g5UVrM40C_~E<UX`HK{U~#Eb0!|#Y#oii)!B?Is*uE}Z1Wk#wMNytW&C&D5#j8f)
zK0ot6h%>VG47yV)FKk*TeB*_<GjC$%vCG-ga}@&_aPo@htxuI33kGVRi;oZ8M2%5@
zwoAJV^l>N-?+xe5xGF=bDo>{<c>USN%^q;gdk(#Fjhw46yC}SKq{sC+C|pyXuy%G#
znMc8he;mO%#fKU#+RP1%503Zg4`SQJAkjq^FC(FFfj1A7Y-}5Ka@$*oD@sir0>^=v
zNl@Sl<HmHK&(2khSkSwCkLJ9=jt$B;UhJ~2Q#0^F&@Mq0Pd^$bD+vgjCWY-AlhM3`
zi$4Vg)BWv1g)28a7p@1&wh_D%Ok*whz1;q(Nr|H%I5>JPP^X-@CXPMqAGPAh;&rii
zTL-66F;6_C2mm#XT9ko#_G~Qq>T|+GM+nJ_xbiY#cw$G!tMn@4<CC8Lz{LhR;vQNb
z@<)zF;iF)rR>m#N2M+9Y?Ab<?NU$Zbp^&^A=cfWk&IYt?+^-bxibH!S@A?q&RmH~j
z!Z)68Gudv+BEqefyg`(cmkT~RwZPT60Uv%^b92E*z4ZV~v98#NKE6d@`-Xzw@qCwd
zdqD6tDvsb|wsEkE$+qz3{tmk~3$^)}Ny|tr>xi7|^dh`>WWdy%A<l64^!qWnxHAus
zm>enQ@U^AJKt@{~muEbmoUHIkQ#(3-Vgg;j(QU!22fMU1;C)R|Xl&oR23_uVB2b}}
zv~<AHOBH9XhC9||FN-OrHJE4Xx{|NI+-3WEL+TzOc!ESJS20Db;;HRPaB3JgzQbGN
zV{)SjgWx!Jp{5S81dmYAl)~PN(x)~x+e8J)sX6296`$T`q>0ZR);7(@ZQf9_bs|vt
z<PJ8Yj&-+KHP6#Kgs(qevaVgm9EN75x`S`ru%yc#f4sq=GXth(jJ7KYR^gLC%~)g!
zSxlBR5lj_dFY?rO;n}?op#Y7?D#@FsqFkG;`Q(_xONB`N&~C?7YtWbb;wx`#oGkg~
z!4B)%apg#;W8xXN_}c+Eb*bW`qdiPZT18-b0B;{zWM*N2Drx5ucRQNuJ1xbNHm`Sl
z-*atR?LY_~m8bycobk&3HoLaQdi9vfrkHq!r9}o&&eizf=sZ{FV@aE0crl7lWOJVR
z9B~;KCj-T$opv47#9YaVsYQ;T@26`u?FKQ_gkYW>n}iqkO@M$89u-Lvv1{AKIZBCQ
zRw3F&&GFIcd8TLYt-(i3nsqb{j5oF6>(94i&2SYkYlAvG6%%d8&W%ew$?uevz0_y}
z5XXh7im6$Ta~>DEQEyEfUG=-0(T!-(12rZUg|#p@;KYRi{k~6;z2)b>+uz9uI0t*T
zm6%#e1dQ_+e!vS)P4N1G7VR=A%SjZr)upWB&oO#sH5CPCE-!H6N}#Q=m$^y|7kK=d
z4*fLWnIbq-6rrvwwrqfx_O&TPOw{zr1!N({$9sdo$43M6et>f|E|j-~Odcew*Pu&s
zCk4P2)OE~e|NiF+)=#9Upn+;i&@c!RlEfk$zc}E-Qv-st=ngkUwPt$0#di+}W)=rA
z_Tx3Ww1x}ZCQH=Vy1vEtJwHLWZB&)fDkLSq#o9>~K;lKL#3Trl8pN1eRNgz*=gO>5
zsInv>ulU?OEwc>6yk<!;bN~^&I8<t!6nu8hb7sm9lP{yBa6qI06AtWj?BCtNr=-o;
zopF51Ap?d<OvG{;==B}%9Um}1h+;E@FbrX@#4!6^()mN_w&1k`9bSH>MN9kmq%6B@
zOJH(B!8aZeTXAg^d#yWAp<j89U#y2=IxkgpvxdeKcz1?PAgKYyaRxjkj_F?D$mO)t
z3nO*qE4gy5(Yp`q+*-1+?OBw9$^sh-;cExGy!2EV+ci@pWxJFQq)h_cGK3hajCve_
z%hNT7PBr6JnjYlA*0?FRrKD;}3-3B8>q^Hf`zPtPqSn2cpr*rnZx9?GoSNt6{D4vg
zLX)@fa9EWF-7t#aPz{J0gI>-0b&jt;*Jg5JX>!tGfp@@5j0-7_Q<wUDbh?i>ZmIb+
zgtqg{%vF5%aK-FmK%8N|agbP=B6T>9&FdXsJJ@2=2IIB;ZFX;NvfV~@J|@YH=MhR~
zd&av*dt9Fmv~QbB*YZW3dHCEq?Ik@!iH5;pgaC(*^|(HpuE7wmJ%*Ec;46Dec5W)M
zT4FOItsl?9JS3LNrJ!`ewS~ZY$9s4m6IR81%22<10tMnc&+c)2<HatUyV3LU#MW;7
zEY;yBul&X`bpM~Z0yn2?oEzQ4e(#==(Pkq;R9HKAsb+dH#OW$Hno6AI-(YEXJkd6G
zZf>FT6?-?8y!jQ!o*kO5qkA(6L8Iibh+}4Pz(+?b7A%GaMlu#gj$!Q)EToO24v(ld
zMKti@e%Lx$#MT@lXzF|1B(5GgTXFG{rzkto*lUy2`fyCT`*;52pZg0B<(=<?n0@I{
zE2sl(oP=+_*k(gFU2G{YrLol^CHy;4PF<>a_oN3=Zj(kI#vDb3g<i>(nE~523f;Dg
zD=Juu6-i^Xq0=dNY6onZbWz8mk?I>hw<)VpW_y8mKC75oFw`wgJ!|t)&a4IuOM2iS
zQczjJ&DlP?wsa_qn6f0pe&L2HY+3KPHVeI;A6|TGbwa%}hN@#`LFx4?c5P`T*KfGR
z2!8RqB=ci1*-^G_Em=PaPi!ip0-wmO_wh18@TLM`u^)K%ga>n&)DPvni$K4MM*NA*
zaW`!#S#qTSy$m-ZMp=|>S|_})uf=3r)BZ$QlDod!^A@kmg@Nat!*HYTDOPM$v-U6y
zry6qud`Mm5Ab8=$eI*BX7SS`S$=DB#xpL}K&8KGvsB6bPpVY*wL`QO49xSVJhYld3
z^h02M7rya)n++YuP{#kZYgWXe$(X-)qDJw!WotcS+}l(ri<;Smg13*<%q$F&;ca@>
zHZgn|Ca;xJ#D8luNi?%$lg)0-E-3FF8gP9vu24lR#f>tV?-fI=g-J}wG7ALlbA4X<
z^u&NcXq3{LQq0)xX|f}{y1$@kM>pSi8uK(gdZR6#lh-OfJXs-f@5dWM$}*JOUe^+y
z*-_v$F5Z{YSmg_BUEt)!n%TuVc}5=2c^3pNJZCRgT$_=!18=;B%V47-E{-khVgDYb
z&?+_o(?*o&-n<Bk(XZgcBY`XP1Du1xk4H#xsartQB5*E-XRE5_>7517?JDEuQXQIV
zrfURHu1yC%IlTzP1Wc2`QWF+iSyudhS+xe;2hWBseC>rc8zwY0j|@Xs1~fS!ab0};
z!hm;9^ua-ir0m~YFDxTUNNR|sKcx%I%)@sN513wv^`)U{_eWFe0U9jcFd@X7erd}?
zu=uXCi%|jY#(dOvj|&bTRpm07@0qx(GAZz4hy+{^T%nwvsyK13c~0CFkUUL+z_#_m
zSDtPqwX^2F8G|h25d_0r%*O6&!SRa&K0Xy2ncR~xO?eB$a9V0E(wwi<9b)JmTxl$`
z^TLVCo|XerX7|IQkl51n*u|Q<slr+5kcV<`Zb{A31ff8*(a^9vX0tCxuXcQJyyD_b
zPw5o#0V^Jai0SHJ*!2!Tj6qegV{?m_o-R@GK+{w!dT9%cxxVN9Q#}Tum2zFu`wSb>
zEZLX`&0{y{@lul54>qk3y&3D;j&D9c!KR6L0SW;POEL36(nvSq#KnqF&Qz!fr3sb9
zw1wLpKSE5jQ*(&KB)U>-Zq7U2K0M%NuZp3v5J#mJZ)DW45R+X*Vp&QfZK&dy?FsK4
zS>VcSKs5@-csy7+E`=JI$A~1!Oc`F+Ez|;12uIJ<oV^-7MDaok=^Brd_A@&Qo_Vs3
zAC_sll)N)8fgmARz^emqlnRG0RD5`<#)pwbOyj^9PNcWql}*`cbi2oRsSS7M@pC|i
z3Vq8_n{e!$XQ7V9Rzgx(8$Q3;@r^dxx%D^0q+Ge}xyx+nd=Q*7E?pgPb@~qNP~)>l
zjyjgv#>7CO5yKkUstiYEBO`;x48<|^YWVPY#kr|IS_X=ssFVyCmz<518zqJ~!F$hS
zx8Rj$I!v_EdQW1VK-vz{_r}L38_f|*Jr-iW09BXz3fx;afP3Mw8+0%n@xaA|L8w{R
z7QXRZhmDi*@=^;?Zct+b3O`&p8z(PUe0;i3FvTT98dEz~n5-lwazuL^@T!z$i1p%!
zdfZ$vkSKu=Z{F0yR?`G%aYB?ddCv8coa?+qIag`C2@dd0OXp1Hd&Y>G;t~WQ*0KT=
z0V-#Fdb-cl93U}n8#UdRcBn7yDcQZ%QP(j`8uO^!Su%Ak5zB}I-U*_PLITGwR(y1-
zqDu3GiQ#XVML)mTzrF3K;6@%@N{U<QwB4AlxpcixOH<al#0DjynZQ$Ky-_gq?Khi0
zQYwxq65<agNmWik+=zL%STZXyv)sgS>_VU3Af!UP<tT=qqr+nwJ(6VD(?d)B-kKw}
z=)Fwy-a=)(e{_NK*A{WEKrHIu2Ry|J-S5^K&Du>w2;Okw`0Bncn<tt8O!7on%-Jx5
z!)FJazYZOBNJu{7<~=NF2aJ3J51Pk*=Hnu#CRm9N#>Q^J8_%}bw0@}>#ptoetV%`2
zaq?ot`==^uW2mQlHz%rbp{Tf6&JhHsHB++%?;q_`C2b@d)?cRV&&H+$h%me0c>8dV
ztMf){G^W4Ie`PZF$LLj+T5O6^pe*){50BN%S45*e8t(<1#tMy1>x|k0Vg=sDr&({4
z?;>fp?wrHnIeMYb2S+M;RTOp+3CKe-HfDj(&Q#0}TGT?)r7$#TOlG8M1{DwsSV}54
z8EF}%hH1b{jhFbGph7L4kji1z3}-@-c8?xMRd_C5RW4n7Fxk^hi)S%u3MXi~qpNu4
zdj;=(*5~4NL0xMY23=|=GcH)nkE-K&_{vi)p4jS=Rz#C=rKxwkaq_a~)cHPz3QoX#
zO&h_;qc}H@-JlynC_4C1(JkR?2fA!szjV@W&k;9^4N*>As(9~I6jo?SagUB|OIe1B
z7&sMzwCEJZ{@op%q&jnL8q=qj4f~l#(U|v+_PH^q6oua6(8^>UJ_Za>N+^VD^8-FR
zZqy-lY_qsK@BkL*wv5-FEtsT3Ed{8=+>kM#**7<hmn?OjYZnD)ul9N8NX^WmCg=Im
zGUk30lkB!PIPg@#fj!EWi2^aB3KeyL;0v%K?)W9C{Ds(8q7f-^rf4cnEQotQjm@=b
zg@V!-XowNnUhwoq=!b%qz>bN)3(vGzxBmW)XLwwreh3LMxi7@<;?;$~cMmNvH6zJs
zafd{_HIE>a3_{?^9m@VE3Ia>vEC51{XvMW@$7iQ2f-7Uw8S}Wpr%mA_9P!V5d;YQC
z)l~>gwBVc1O|oT!;D@3aLrZ$g^G{wJ@ZPB!Cq`jV$=#=(m>J?2c2sgI)b#-83ch-<
z&E9RP+mZrSC&3PgLLbqX&nyZb9PV>v!QyHRPen-TUYX3J!Ke{&NqNjetvtWC%L`8{
zVl_cDU6sua7S3G>ymfQ|=VDhv|GBv7+Qck{g9Sp<7hVDd%Al&5T-V~&{T+5~T-qQs
zuNihKyYEt>_&$~Q%=KVqR=Ik!X0{IW`xX7lsC`ss6Y+8Jfu!7s*jy@hGE0L?%}zYA
zdtRr6ZY%wC3bt$%Hg_EB+k(0jLpND+SKiN&SmS6P#6<`Nm#%r<Jyo$-SF|mLCZjnY
zhb!pw2;ghjunB(03!S7XlGFmlhI`GMixuyDQZYR!ajp;E;T!}TfVCd!dgrkl^g0-w
zmhkn1ZMJU`YQQyKcG255=*EeQ6(64NW0VvGOq5{$uJxSFEVfn+ac5rpnxYV1+c(MH
z9Twlqia0Syljk1Gg+yR((Rlw@pR2QhQWP)IRpvtRxvct3=3$~JmGp6;jSEKQ0%o2!
z4o>j&_LRdx5e3R5=As1g96oIvIy*p0MIZZe{(fmDh^T@#`tPVVSwV_fw_L^ZPq#U+
zy&!2n)98>t2tt#H8`ADIh3f_e{eDfa4~qk#*AMh6V^A4Y9S9}_6MQfVF`N@rjnYB8
zRnTq;?UvFlg^9L|bU-663PcE2(MSg0zX3@XOiKFlK{;{0$7km~!3*LPkvf%NF}54@
zIvA5};rm|fuyI00u9uWtif2$M?;WW*Gu@-5Nw8T0o+9PE)ZCMB|9$dEYpTo?QBO^v
zur{IY)9NbUJW#TAlS>)AX~mb4S%P>lLB(<6QpLxoE8;rVW8B%82P`VZ*+_0@lXXa7
z;GyM|uRhaa&-RoSBbG#F8dazea~P#yc0qXe*aFvPWBa@2TDCAg9j!8JhmbmgfyZlf
z-+EO(IWb_eJ;AmOiljxahO~J@cz$omT+cW;wMfSm6uzJq2yTE2WtybdiluMv{if8k
zc_gGtEe96ofk6!)ofvRqHt?0F+jPrj7aCtF>Cf+V`fY?{m!fp>y;=gTPQm)l(lcSH
z-E*4i;@DH!p~zi$3~cH6Rm$&e(6Og<S_)~(*iK4sqRjQ+lQRpPyBbx_io#O=bxDS5
ztz0K}CLmF>UMr9m)P^gJSNE4}oJdcS#(5H(+L$Pxp6he=CUgr&2!S9HljI07!~GHS
z$PBsxPHJj{HXXdLC|dCKXFF`&kTS_h@jr<!4UZwAK-D;YdB7(pdjxan(4}N|+?fv(
zgHkIyQHQstP!3uJy!K3+J=<dpK03ad%*A+fApxOaw&!{OSk3hrPg$fJGQI!!T-KSj
zM)YJY-2*NN6@iaV^!dgMC6k>bV=Q12#YI#DFFsSU&<os{tMP^5gU6BF&ue(cb-Ouk
z)+L6I@||X!yI3(Z56?aA*uAM>B>nb54dRxh#ATmAW3-q5-Q9l9J-*^LLXxYFz1~Sl
zz%i%DIDfsz;gg=(MWrZ~jM;G6^RU!W9yuu_RR(Mzm@~WvUfEmn#O5OQde_nN#Q+*O
zajxdvrGRrn2*#4$eRCDwsqyT?;gKyN1gKST!BN#Ut}xzww#&|B%wt!m(OquLv{Z#N
z7i&H`QRB6Yb>esZnS%K`mc)rmaUsErPzb#KOq;#i9l;uvC0!~d5leMz%3Lq-?q@Yu
z<_uR9Y1uI@7jtG@h}FdoL%6<J^XW;bLWS69-E%bR>ss*2GaV+&l72970rl;43ykBn
z9SxC*AnlTw*}(gs86TXgSg4n><cC{@u`yOF6Kn5_n6GVs#vbnTec{8S74IAlOxJ>z
zjq>KWA}F5V0WAr&@YF6i_(Thm5@WO-0U_FxOE=-rxr!RanFGf%UfM^$GJb?U0Yklu
z?L%9h*I(%H#O7k?Z;FO`DZA3lp~M8ZcTUwnSV7M9P9GUX^<%PVG}>l?jwo*&=<?)t
zrKXNa4x{BPjhw3(GxN&Zhx$w{#_W2;sMmZOz|1%zKrM#TsFrwUYMw*qh>>0MNhnEx
zcu#EEV7$1$O=*@yP%O<~<9cnUaz84H!h_YEIs?D?VUNo<dLz$!aB=n3%u?gHsFGJ3
zoVsHC<|m7sywXRsKz)Iu#Kb@5(LP)xRTxyJY+En9wx^TAuTj$>YLY}TvDpRq<XDd$
z3TmkI;|~4t7mYoN5iAK5SO_=`ymqj~?v0M<*B(u3S-Octgp(I5K0aL&G*F})?4EWH
zF`R+7Kv6h?_mtxK>Vc9cwrlKfP88x8ezZjSSD|2L0p2^h$n=7w1&1ek4ziqUW;GH8
zE(kGp?pn&p^PV%;0%!rFWm_rX^vP|37x%WI_SE7j+^FXF_@T&fV^LGnZV#BA4=nUX
z<x1_Azs43JCT%6}q?vO5(tw#oLkfr3fI>aNAdIPmwGICkDj(R`sd?qulCq46icL%;
z23Q?~Q1a1<9<%*eYaXS*eGFNwg6rj>8T9DjN(ngzK7f?Q>jyjR-O?Ing9O6J{j+pN
zPF}3|@brKIMms1TNhLO)UpX(yDJ*?Gmg3>T3{|1_o|Y3{eRh&3w<&>;z7WMEq<Byi
z<xp`<FTndp=D0d<h}0BV+{A}6xiB-C)rVTVwoMcl+JsQ?@yP`)&-fHZO78d2$gwE<
z_Y~~e(IR+<w~C>UF=lBc;f(RY3|#0SuFawu8z%!hHpis0=Bz;T*R3+G#;x=AEpyLf
zo6tu`Wf-?@dz!4fTU^4H{vZ3F6QI<<&K)Hsf`;gd4^$w7)M0X5SUNwNGS|HXT1AVm
z>}#=U!tf?h4A|mXh*fIJCnpD7nC_!x)DaMB%(~Iru?iANAA&(ov1bF*n0)5FP&)YP
ze#f4zMQmsy$>>__U=yXLV;ueTm5Pr~4={6-!~~7#C|rJ88R{PcH1c|>R8TFN=|Y58
z4|LhPHF^RRiMte8%7C{Jjr!~&QJa0yQ92pcTWT8Xqbx(nWbTF0GAyHyI!9FtAD`$k
z+ant2kT&RIm_b3{rKbyatP51NHYq}>KH5f8!N&tNg47gd5FEnNJaDVHs|_1K4G-Vq
zqA2Qd+mfwJ{T<ArTlVv&|6y_4=Onuw$L8ZW?N&|pTbCzEcTnRF)M>zrB^R^dq(~m0
z$L~&lU>F4TU_~r;l&D?s{9fgWEk$aPof>=z(Vj`*#6{1U%Qa<DMq44t%`X0q8vl=y
zhwv@M6i+X)s~I66h4I>ff~U51M%KS+(n-PzP1(rltH!&>`}oxV`R)!vmU<cBhGHAF
z1iS@04qiVHv)TP{rJ8QsMlV?mQOC@J@XnDQQ*+Q}HGD;x%=b#XdYuZhbMW5DihdA8
zYYahy0}+BK6K&y@XG=Deu{V)vlu;G)s7Nfw853fnw#LQ31{MYd^9!lL&F#-MNz$x7
zX;Gw3ilT@G)T)@9Ls}q7Gn2vRcf}9-Kp;AUV+*K2g-O)QP_wjal%?eB;L>=KoKU0k
z7C?wXH&?IMvAlTnBN(4V$!39Cn4^{fl@nwD2X=PYx4Q*aW4e^hCBZ-(SEq$fPW3?p
zt`TTog*==cx)@FZ<~x`uukLf~-PR(u6O4uVX0aiQ0vZBJ&6#VS4~}?{;vSPy;;LCB
z?z%&W3QJ~6SvbDBug#O&6>m$~n!{U7n(X?5>BX9N4)?h}r?}GHYbU`>X4T?c!L{oZ
zhfYWR2BFE`O}n>XY?^?V4s<E-gb>xioG2FRrTVWm&*+Xe#C}h~R@i|WqIJ|`_ksvq
zo%LLuO|KURQl@=@p`k#7Lqba48J4y_q$5dg@TRGYnj`KQ8}DQ6RC!~zW^oYW6GM}&
z9l(})K}JI-I9H@(;&_^TFyvlJi&i-zvHo9tEQhWt*s-bLrF{j(FqE2(H=Yt^`+@h4
zRCoz-v)GhZuR<O|rh_2C6U;Cvd1bHi%q~X=9&N4?<QA{BsB-aY&AZ1dOrd2Gi`MSa
zpjwKPo2BLq0=}+j6^=Ka>GH&OA<ziW#ALj<dQEb!QZT(>ymz?fdQT`EsCm3Jy1kjq
z+9gibH7!w2Uh1>4+hyM_k~1x&-I@bap4=+T@9A*p^dc19nEN6^u=|l*SxrRKZ4#S2
z;bGH6VEyFnJ-nNaT1l|Q3G-Fpog)hj>XPjn13Nc&*tXFz*#f7Is7zwR&l!=)df+r0
z5=~x%<}-yr2(ZwH%hv;!Z`Mprd!F9uc;!HvcSD&%hsj?mF_tdCt}O-UuJ-Ugb-*MV
zH6M~l*BU3v{T2inKvl504KF`i&~gSrLA5Dx1cAyc?;l%WdJvc>0#yKX^(rjhw?Q9C
zAsOO{8MQAxU2)*aPJD(g=@pCIdXZneQS;968nXh&055TOeAk<TCf*SOPL)tsl%?|3
z{Vkr@rua~!65~KY!cx6yFhmP(&U@ZFKH$cJr_`ue7YG!gAdJn<B=coOQWZ&X9`o?Y
z=>eTin_Zh?_pwH<lC*Pwc8@aGcbvG?qg^<}T<lCpQ@XU=UB5PH1W|%`0xj@?y*nJ8
zR?}5+^tq&5AkWSDz=;ci-eLiTaB)hwG*#0s25g)(wrnohG^woXMs4+&LiI3@1KhCP
zsWIP!nVvB{4^uZPZq8Noy+&Pkg|kzE$q8f6R-@fgLI9N|VXjz<9@x1luyI3|8`C{p
zTH}OZW0N){W{7$Q1`~zn)dLf3=s>hlOINlK7fc_Y>T_+%)9#e9DoTV9{Ho2Px^IK-
z4EoMfnjqfc3y%$im!5JQ+})yaXA3EwuCW=sOM!~3GXvf~9{UzM2}lxkm6dkJk~Az+
zPuXBq6w?R_>ZwAYT_~?T)8@%-u{(~_SZ8iS*{CJuxS2(G@7RE;IiqwVt25lv^D~(>
zj#-VNI9JfGDn2>6NcY7S8#_wC#pF?miJyY!<!3s~EiQ0v7D`cIz%b`T908v~XKSlv
zrkQ~XVh(&@T^Dw3D@N8R$zy@UHm4$da<<ROi=KMmD4mOv(lJ)Zz~J&UT$%P1F3@S$
ztm_&ZCWH+Wj&&VJrzNz?Smw0CsJJzLKbn{aqq}}@FsK6kf#+sln4kAd&lw9nrPm7#
zLcr8eEpUaTFsD)n_~^teCofI#+QGo~^>O3U^caaUAVT4k{X5~^ndG6c=-n(u)}Xj`
z%xMUgk~|GW6mJ3b!n6BJc5F@w+)_a(8r>xj<@m*l)0YRh(haLZ7)d%^jog287V~&5
zD8&dNP<eQEcfl+BI+#?kr!Gb6`|FXR;<0dTuIBB}7FifL3I}(y^0%as8&c~>r#j3~
zH-%D!H}-dUVq0_*#>6@ud3}r*id0PZ9PfTsb7OHpQKa7JBO_S5`;bg#lwpw$-i%hE
z4EjBGY-#hg=exAkCs|lYu~k5n>BYdeKkCslhlD=PweUWsh-oS#Y19|j3ej{16eW1$
z)n`lg?`VxYBc$DG+?8IKs-l}+CMj%yDygLD_V+a~Pe2JFwq-6vD4fx18Ld)iwV>02
zvZbsml|mJ#g43vT(G(MeV0aI;H$w2tS4yuI27^F<0Q~_}RUr6^+G0|pIB==&#nODY
zG=nuu245>%*A4jQS0?F}w}%-b-i+^jy1?a|4lS#c6X4cf9)$s7=^NFU+zI$9aA2?U
z($igv0I0{z5vXvKAQfkC2p=8pGcZXuWNlc3`;VckP+CD<_wnl4wP}JEo{H@OV<x|*
z{=_j(qam)4Z!T24duYI1Rnl_J+V6``m=NRf&M7_^!D4w$&44b#8wV!YwN(ighQ@rj
zzHQ=w>Y1K*y!~0t&AOs=MXX1^O#yE8e|?$E-5|rsO*K$^!xb$qT{n)Lsd(j?riVId
za~K!N8@tM@2im-KWC61_zG?8HLhvE(=GWj&A|lk4v14<|Q`;bI6VgnPoX}znYURke
zn##8*3lOoGOCauZ3GsrUlyUdwQqh>kM$r9%U_HClvnX|H#Ilr66nD!@LR`?~F8GwZ
z7?$$gfKuDZs~JnvqS3u|RFU}EswL`rOwBvaO;tR*%PnK3VnXxtd%Ikp?K3c=G$TkE
zGvU`1F@&T^i@gp33xOS*3trgUqQGMsL$M+jlM2O{?kOLg>d_Cej4!e_F7*2j^8^G!
zjjF>*!Tu+q<%ne=lwg|5CX6B_aLf(@?;ft0?FpUb7l|ulv13|OS1B0YdnSsKuRXtx
zU0cDMkI8H{x-<7tzEF(mdF7oWf$4##Fc;(R)U1^+Et9!-1RtVzD<)Jar7JjgVZgDg
z&9rVQ|2Yb3V8-sP#!FANSxUpQRKB%Z^L+1&5Z&%&;dt?>l0qF#q8!blCRM^*x=}GT
zUsJY<*xR~sPOlIS3{qoK<0McBxS+To6sD9Sv>cSq<8(l&P>A9rYGp)O-sn+ufRp%B
zDimsz&S)2owkv5-QdmJPeY{kNhLmtzq&e^N-;4+Z>qk}0QaN+cGpJIBIpbFCdV{SS
zl&79hv~D4k*qSru5Ht|*ph}>?Oj+MGzH*>LOC=`3(dY@pMCr;KA0LI@oFGN@xDVl;
zc>sAELa?ZAzNrh_Hl)&t;jRFN7nmr$V7z~{=K8$RYSj?JJxmPIh#TNN6k6cx0h6Wi
z=D`j-HpL1{*F3XX`O<V!E4V%f?;h!MW1&KoxT>bU|I?7ktWsjeZb}&Sv2;lVRBEJj
ze0;3W<(pA$MjE&KFyTr#xVyzuI~<|vQEHS3HItNGz4pv{s6G33Ikv9%!!TQuR})LS
zjXJ=kskm<szCtCn*c6S6o#l`+?vjHdLD7)<NN7b+!wUo)Cap9h#m@{9e@x?<50aKn
zlE!3?U?tv!+B`KiK|*YqY7Pqmc#uBGavPJlSQ87F3hIsd1>w?6ocBaV!zM9*2m%Lp
zx7g5$=R()u_Y9z-_yC?jM;CeRzyzB*$y*|^+%MV&C8+T6i2;{x)U-;5`2}l<`!?u;
zA%)<*uw?_3s)Up^8!yPFltTyvj+}u@H~W-@Vs%07!V3H1Q3=DPIFM*SlKZHtJd+*A
ztIu}Xu{jxYi}|0X&1Vx6d2n2x4ZL@Fj;UUt?F6Nu)_F9Ps1?Ic%VfrmWPF{t82=6)
zFLiWBhJp`HE->Az5j<i_m5d50hWNtMux)dj{valyuI9v`CG57p;|^@&WSeJqN26u7
z)H_i|W}NB8SngFwfs>S9BZ>u&$_f*G)3s4NrXH_VRJpVm(u)g$8X=0&h$U%JOIx7y
zcl;T7TxwJ*Tq=aq<hD1f)9YMJ=%U$7Eq4|KCoSqw)1plsJeRIV7c`I(fSZk1tn-;D
zg@aGG84A!0)5307n_C^+I;vQ5EFPQ|hz)rDnGV}G3Kk46vC;uZEnzE;o)4V58gT7C
zHG=wb&G~E}zz%)MT`|#)A^DUen*P^ZqHytg&6x`oW#QsNKzvNNSmAwRdD~Kghaf}A
zy}I&DwBe2CCfK#9>0~acge^5;FvTo(5}KMZ-Z{L;jlR+vW^8(#wFnZT!qS@i`ZAd>
zCYEYNubCx5nYcS?p(Z%znO+b+Jh8~2Chq2e;ba|*iBfoNe}~CVLG7zptzr&_{;*Yu
z#ej2=*gPWyq2&TEKc%!=(M8>?OQL$5q=kwyHB->5qe5Ir=S)+wU}N5vCncqsqy*r`
z5XL3L(tIck8=`+M?j3)YOl)J~Z_R!m&W#e1(Or2&5c_5n6nN<)g)%kcneADMG&J4-
zNhhNK0(-Y8`*%79bsD``a=$k{EgpaF`z?MVOZD|aEKPKdYG53EqRlfqTf{H2u}rb=
zfe4(tVH`a>Lm@6M!0>A?36KY|Lr*%ts$r-oG<4qF;+hIvn-cogODD?59_1?x!Az4Y
zDa81;T6*0&s^Hn!t@+w>UAAqAx<_$!9she6U6<Hc<=RZ(-6I3$`kv0+>d9s@YY-8O
z^~GQK10o)@Lhy84$&DL<L#GB&JR=0~;0-(#-V5tGp4Xl!X*<wh6jG<%BX{|k-`kI*
zA6>y{=}Hr?fP{dA7Ijid+rQhfV`~eeVzeAAMh4?<y$*q^Q;W&w-phQkcIFl*!s4Lj
z+H^F4%_b}wLqA-Gh<Xk_-C^5?n#!OKnl@UgA;2m)W*PpS7Cfe4ih5&Uuxnf3g}n~J
z#l>0jei(vE;O2tx>G29*w^P72-bbJBZ@&6@07`Mu4Hc*{D;Z7izx`%tcLjAVEI6<#
z-7rZ8cI3h^45tObLR4Q0iurgU)nUNq3E_<wI&A6!!O+xLpmCeU(wn$CzcO9$!QnnL
zb)YQT1YdL4BJr8b8lb;$g?HZm*Btun17>HYIeO&dTVtYYG}b-Dpw}PpZ~dG93x4eP
z|K#vt70)mK{NLrh_uppMjvf4=f9Kz)J-K7}`+z6*4ioxjY})__cXwl0VZ?LTB-b|c
z*7Tz1#tewlVS?OR$GA=DPk>NxVJh(Su93!9Ba5Tt6J??>UU+Jf?;KhLS~0X>KF0jR
z>X=SrqNb)k9#Q(creISm@Y=zW(lu2aDa0c2J0Da9A0A(1b|AFM5+71$IfJF5^tHo%
z8+4I$%?tDfqlp!_qwLvboWHD0FM_rlz79wcVj{`tdm{J{%Q`|Z#7dkv>S~eA8;m!f
zpJYQvhpkZwI!tJ9nhYQ%S8saWJ=|x}qB~v<>Y_$NdB2C9$vk${`ux*>{MY!6-~LT5
zT{=s<)f$mk9v_0hwp~y2KmUn8HhfGa@ZbIAKgYlNtzTneVuH^;d!IvxKIPB<h5sj=
zb-UtoRH&<{OJ0~~|DFljg)EhK-JY}?)m6ASRa1M1xG-Yo*EXLECmJ|WZZ5>`lA9)E
zL{p#<VM*Zwj2#;td$&7IU#f70!^}tN+*OcE(dZ%=B(+cozM?D(zPi7|x>g{Vq?`mx
z-dnJsd~&kl%5+VuRp5OO=VCR8QVbIpAO8{FJr5v;?xU=$IA&*SLI^9Kf^~)R{8I&m
ztEhd2N-Nz<pWi`<NG!1+x`%wVz?RLPuRlM@hK@^LVu}k6jd}W0N-o^2dFx1zUI;P4
zq)=*lNNC^xA!jm=nJ~D?fAwGfB>%sk`A5voOffmpr6?S#f~t<qkEqh`_4v{M>5n1B
zy5aHv#;^V(e)Bhfl@04AacZ>MEiPZZz+e4;|J0IeJ}Blqbr5!LRCaCAm;~1BLZvCi
zi-s$j@4$^|m(=8%0N(h~_%sK#aecZ;j7w#SjK=k4=$hWYt3}H}omM$wt4H6xX}Y3L
z;$lPK#k~dFHbujYC_%$8bwPon7kZqyT2U4y;w?5J@`hSWFl^4pTH?M9x~1HHhhuud
zGuQLCInSf(3kz5fc5hdn-P5KH0k1XACnteKNktQn5hWKbM3-5=9<Xhj@Wu-pSl4OR
z07-Z^wF6xGH08>Tn)i?NS@f~Y#36*xM<|!-O*5G_ic;|x|Kk6KLnn?fG0|eYuV-QR
zo_+kl5B=Ei5kI)e&;5_zqC2?>F^}L00@`Zv&in81;k*9=01JW^9#Ed#+NOlzCSmmb
zlm8hpm|h$(yBPBVf{v>>2a?-47+jy}597tlM;PLazG)J+Z!BWdwp5P)_)EJCF~ysv
z(5o@<fdjj{?AuimEGEGzKJK?Ie%BXn)Eqijp|0sYs41VzMI}=6L*bvb#QpEk#eo@4
zJ&Tob{_5}->F=hdHKvJ*hZpx09C)HlsD)ai5w_roX$vmqh6Yd2l0|PkwN3fjbL&}G
zXlh*-1!|(4Y^t5L_?29`4(}Z9(euzsM;8Sd%j9MABV)^C)*iq73xAJK4}DBomZ=nK
ze9cZ>SG@GxOB9{0!^eK@U;HfRFPvrAbcRM~O6X3k<L7_=AEV+C6+&fnTFU12qoD{H
z`MXJTk2yNmW?<j}s+cf6rgKG1YcrfHxH$(414}vi?sG>R{~e9pmQ4j#N9oU4J@L3_
z)0q6M5>ONRgPJ|tCV26wGK%&zu@#H@{UU)IGw|W@dAuowHI*OfK9Xo7Bvn1EHSWLL
znop$+VxY?TtMJ5j&!!2$JH$l;YUyM~(c-|X&vYSF9KYJ9rN!{p^4{Z81B6fqp4nCM
z>OQ4(U_`k|M26Xl5QQ#8?S1DvT;JEX-fIZ?Mvx++Mg1aT7&St)AWGEeC3<HVHHa3`
zdl0>j8qs^mFuLg7h&DzYjG1Q=zvp+|FP`i93+{P!t~uxIv-T=`eb(N4?S;b+eoK=4
z(AS#ZdARWxmjLGb0m|tJ>g0_0r3+@p$}@dcC{OnZ^k3(I^QQDYuf#h;sFO02IN6Q?
zTFl6@6uRjnys7<ow_ft8g8gNiVk@5Rm|b<j=;wH841X#N+#e?;AU{=PELZ-X>4-PG
zI*8WAbBLZwM~c`~C%<u;{27Bab9lM<J2z50o3fw%3kezdxBI*%1(MgKocJ7fckVV;
zI2`XtD~;9H-X75MWrxzP6eI>*hVt{gF~Xg7Qc5t~fJDXr_TR)LuHkXefk?;j>#o^y
zbKWBxn4iBcSp0XtNdA^hWbv}{$`qkW`L^2zh&|!6=HyHIJ14J_LYU9|Oco3u-g-5Y
zFVv({R0N?Jw;v4=(TkytpP?$Tb6^2QDN8Xi_-^_4=t*Isu@m4IHj5tyq>@NwcJND7
zS|&^$b@QLc<6Y6T3Zu`>TyaMe1pN5!xoZGyjss!_FahmY(!dZ0J@uny^b9zdccyC8
zUgNMDdn$k=#r${`S$}6TU}v;wB}MAOk=@cLH?-6){s&%OsDAe3VgIoa<;Rc3UO9EC
zgc^=&$+o;~)wQF$1$R9a2snt_27EtIMHHL`d%f~Kl^Ik}GT%&6u+vkO1tfQ^GT?T9
z1?xUoVSTBZ&lK%>?r`1Gj;$3XN8K+WGgooJLE@D}?En*L&EDzgqWians0$2;xoJ>C
z((e|-T(&K9!(~%DgVbl&FWPo}t-UGpx<l@l5sj^8NNhEb$x^DDl%e)Eg4)BjYtDsU
z3&dO;Ja)HH2phRP_28Vzv(O4;H1I!#EK@!pYDW$)ho`)vtgW-5vEVtmq(q}Skn5mh
zQmi9EjTM{{t%M!RT`$IzV_B(UXr(bhKn1l*;^+n;DMP_Alfh_v)XFngh|;qC5J%VZ
z5qgjNjy3jK(GNvzs#vZXn^M44L9|1|21>ETPeTmGufY{BGz9_n{n0RwU+wrAb3}F_
zXb4?~1)S-bNFih4EfD(?R(qK#YL>`KPqs*{te51_M|m=p;Yp&!{4@8Y_M@EA@5%|O
z=DR#78Zvl(s)67_ZIwUGnUgY`;T&LrX}Fk)M=Cl#;;?&E>;pQX=;b_Cg6ZM*Rw>1f
zk`u>;%=vbwEk~!f6p{~z30?l<oME14BDJ!aYTB~tjc7Y(9ny^+&TK^bgR!~aH@zj#
z+q-wGTVK5KkGm%c9d=+AEG^-Z@Q1)UtNBC%R#p1?xaG4R=7lSR_4~zgIHqV`_ezdt
zJc2t|GwC{YyKP<um1e5V>8Of<?k(^m-;%z==FnU<I#7f@F?^tg(Op@a%3!eh!tY?D
zNiml;sc;<-wYnmNs$zfXp7Jf{DfwFqWwCLcXC94P+ZT78h2P`R#kxKM5Ps(17WXv7
z9Y^%@yko(9rig2d`6p#YN->fkW_X7Xf3q&p)yC<WPUn+rFCn$L-gE&;iH+JuTMxES
zu2B0<cUT($o&6EM4e3d%zG!#G;H^yu9Gn7?4B#Z$YNb_`IJRp#<?Ipu5g%#kX&bLG
zhH~@#x0~H~(vo_}v2-@GXQ5xDKb%jSX-zIZD&;Fz=F#5TB0--ee2f<7Q^6}Hw(JO*
z&?7`-(@X}+aL1YPKem)!bGNLm&#U|OetXc-N+%>b{N(q!(=Rngd+EbfZVinutc;K7
zI5>w&MQ6HwKr^&5+*R)sbT}F7$->5u2TMCUB~3tOiMncPjJ&6a1VfEY+rfEF@Y}m>
zK8n;llpv2G_e=9wUVuu0=1l8=4@e>%ni{*suPdUW?X~A)k7|*1&cGGPWFZVhMSwxG
zGl*Zu1Xnq8u#2C}5`KHyODGJxVxL9T#$H3`X)~LlIQgQk@_wv?I8(ZTOIk`vjBY2$
zVC&NhSv9U`CQ8bHC5esMZ|!F5mPRIOFp?rTz=UAO<7>ddX!G@t7c53!4k2QJ_eC>X
z9t$9Nxgxx*dI1h*?MEO#sQ$eZE@S4p=gq5n&?5Z_fK2ET-MX;##}8u3$M>WK=q>@+
zq=M1H<m#8US^?5nu~<JNw@faAHG_(kiS^(_Z8p15%BLJ*NE1~XVN+pfjGk#=qOMJk
z;15C1QvlmLM56z%)7~ztP}(jE6Tjb9BPQQFXY1ga+>z9MRPIBnR!}34G@T%&?1u-s
zzh?xfnOMvc6buv?r$SU#k5q?~GY5lr33fWuqYHzizgl)F#S?YC>XeHnhx_hJysIT<
z0@&KqSie5_#R76$_y(9M_JGj8*2GF!jk~Vp5y?{ZN%qL)j#DTQM8K#~+cl%r_kQ4&
zXp4m1c6w;Q<AO^rs;jXD!G8eYRV<YRLtp6fc{IIhY=qZk%ATGFR~k0;-OK2`a4#0p
zKHCrYaG#e~I`A~vSyNAxJ@Cjl#8igMb<2e)Yl<<vn2XVqm_{k8N_OhtN{Pd%YAtTw
z{DSEt<*07n8+|mrETItj2#fH;B}_?M9)va{h}dLy#(MX=ev8@8IDtS=pY*vBtUJ6^
zU*fjK?<q&>p8og<^U>t`&peElGVelo=d;r89!}>GSHYNt`p1$O`9kS48+(@}`Ijm#
z_F;ZTx%^$HU5pJ}{1YCOLzco0?DEJw>w&oJCO{x^O@i-^fHd}qqB;g}4W*<5yfGF5
z`m;Lc+-H+@(ZUloC!|1{-ENq2P_Mg^rDw4y1QkstwGBGF{miElYnJ$aN7LLty!k3P
z-j#!TgyGZk!vzy7n0il0k?_`waOohXtTq#O6o_^#qtO#j<EbYFEKYzH%_5}5+42|y
zii-dE#<qNGC<Zw_K&Wndipmq#(D!pa*0Z0`qkrZX*y#;4Sa|{T8m8wJBKP4Fjkpl5
zsuoFi?K_mNai7UCWNY&}y=C3MR7|^ooZ1z`l}(R`w79%vd<YTuij8lPoHKhWr%4x4
zdi6QOU54ZPn0zOnnKcozloIq_X+Mhc;j6N+uFw3-H6yzZplySnh=eBp6<s{R?N2M+
zXU$nQB*1?iy}v@uVYOtMD=H0GD$tErNjQ1`v~icsT?E-l?N^Wn?{ncSDI5{wQglgD
zHy}I2jQK7BpTlCC6SQtc86>O8^-Na47v)8BbIQoyY7X76n&S96mG-q_K;RvkH}M|}
zIkNXlt&S*X`t_}0mPm?uZ-DQ>jQyAuZ0VYeSlrnpRvqNtTSZeEql>ON(BFUMFoOR9
z>27CPuRWsmsB9k1n^Rr5=rSR{E(>deAX9pvT2-O)qMCaBDaxxC0gu%QUe74VSkTx1
ztK#y6gbI+v#84e@H1g7RXM7+v;u9mYfeG!i?>-dVf_Cm(Z~Kye`+8Lg%zhgalE4pV
zI=R9*bU)lV25rF)!-IV%pA*>)Q3<Exc4XXP0<efV8u&r&r7uv9DsQGMm)#=t<OQwZ
zXZu;w?peFyRRUM!=`E|#BNIIm@esQ2FH~K1HSO4i20qlToDw=tHxTOcIlh09XO6lL
za_e@t3Y1YYezb}yEc5fTB?*uKxE97LQX5ZwZr4*+{pY|hd5(?7Tq#R4#E;A0?5WOo
z9~L~*Dgmy<iz9mDuZvNI&yVSNE<F`rCoxtYF!TRza#|uFa#}DN`C_9h8B3P_mU2v5
zi&B8iw$3;E-Glo(DR--h2t{eKtDga_>Q%Z3N)`M7L>31rO7^4cbCT9N{S9v-rQW}K
z<Rkkv#`P|_?O43k?Y!_jB9<>B8DBu0IJqf=)fx?1(zbWc<ajlO+9Jatqp>XFg#Bpr
zUJtA7)~Z=Z)XG2i12)40i2WOjN9}nudbG51DT?`f65K@@@!_l{>xh$Ame5st77tN6
zS0aLjV3nAkwmPnlHA8Q$AC#pjtNPHzi>djDq(gr_B2a`RCG71|)XBVNTu|H5urVhP
zDJjFq-?Q3!_h3ut&Cc7|7GvMD!G~Kwj;XO1ed_fqLlyA4y6DK;&t3z@6tSDan+ZxS
z@~JN(!~?n2B)UtuFg5Cey_QX!^y@!2#0D+fq5qOsmpvj`oJmWdx@3kCFRC*Om6YwQ
zQvZ7_6S@CJ>$~yXwr}uU&)MnFpUm&OE$<(S+7IXR*Ju(;KVK>qr^_PY(=Y3|a^qA1
zraY})IIBDHNi^l24Z{uma$3m_eDZe<ej7gWTRW)gt(dZZfII4t)}bVwG%W8^ucHF7
zKn`7)XE;3B#!$8XpO2rSZWEE;&k5#6u(JpP5w7x(%)`P)wprXfgrzP!FZoLqm9R?!
zK80-8WI$h~AII4nJwo;{GZk)8(^+8GmXlhIjJ7KiINuUw0|ziW`QU0rv6-sNFMX;$
zQ{}AN5p?j{q*wkR5!T|sZaCv=bFhHg!DSG1$*HD_$rdW?W`z1b-<#d)q+ldPm1sYN
z2tjAdy9et6-hQ7H<xiyc<4iPAyu<N;=TTVU(!$8?$o{l%3w<;Jkft=@%>lz5_x;)v
z)-qcj5qF)y1gZJe*(a3u&GKDImw!M%3X1ZAJSrk=8Qj5qq%}N)BvOfk70;<!9?LJ@
zeya2MadQBYKfo!FhJL$VlGZgT-M`DpAkt1Jq^FZ*#IvN*dY8oK_X?3ZA%5)93TiTM
zLS+89)%$%y4k<1h_g!<6?@O`mbXDtQ`gz~!DKk{$cY@o6RStY0*Zlc~y?^l-5_j3>
zxI~r-d1C9IKU8islp>^E?DlcQ5*a^<&E%X;$P6JWTS1{FgPJe!D^q$RlBAzXAR!M}
zPH=1+iVXPfAMM_wr1R=yZRd>Wso5&!@;mz-9y}It$3WWx=mJX!&6`D4xiVcYvMsvb
z$8#bK?{joo?Z&++ZG(!ghVn%E3mrt?GD7lFd(E3%51a$5Ekko~61|;r>8q|`%I;gS
zGNsq9ZWY|z%;F7d`v{+lEvHKwW;v+1%JJ3FpR}bd-PW{7Rg)KVZbf-yF3$7q56M?N
zcDBD0tgRQj4!?Ri#!1K0R8qt-Xf!CuksI|#*qX%)-vV(XtjN2G{@6P%7e~#K?P8PB
zxUz;+&|j@q^Q^g<zB**q5Bl2(%~ps&4L`Ic=K)u}<NStv_BEN@Tt+RWAW(jM>DL42
zF-PasgP(Ug_-@E%9g*NSZU3=t+2(k~P{IXQ&;GXV0JpAMYa1w;{pNcm&t|vfB!rZa
z>3#4FBxSZ+^f~p+ZjzErh3<nWoF}-s9oaQVOyU_laW{cNaFR$!(YQb)HTeA~&g6M|
zOWiKU4WKF^+ElQSCuexwV+Fa3$OibxJ$W5h^>qEF-w83|?lx3C2Fikhtb$}YUj89^
zId)^X(uHde`uph>VuoU9)%o1&Z0bMab<xW$Bt$EeJ9oLA57XDm!YqZ$$>gcBQlM(f
zop)BsD2gBZpY6%NR?n7*s&$)4J_q__jyL$6PF1fCMJYWygQ}2)NXX-YnlDz}4x~v>
zckiue!TBRZ6v>GgXtMWQeTTH|qgQz8WP8Uv_U{Fpt8&~Zj3C`AZi2L^d}4B|rp$c4
zu~<`RBuBDulX4&>pipI)l)WQ9@@R6Ym^`KU+msxuy@H{BAx^M^2gCd%I;theF@=a<
ze#aY|orAA(^0PWy2TD0NJNb})PmZSks10?2qbN^I{&S5cZ7m6<mX<g@lR!efM%0-z
zdZ@O#1B4MQR?q%Y<&YC_R;VO)0L>PP3HdBbwl_;n>RlXXN8*Y#>E#oLHw&|(_9h=T
zFcFm}=&W&W9Muav{7e518NoOYYVU9WbQ<)<NoGGhlr)#v6Fu#GO|k|wjmK0vU!UV5
z)7LXOp|JL&J1=q!*z&4K_Leq$FVdOJ)y6V{f<)vM(^!%~9-!bHZ^k=uL0pqe4rA`p
zSJ^nj7im<G<!RnDT}O(v-wDYp`DZ_W*t`7-zeS9E`PnmN1B&W^)6B^?eVY!<7t_G2
z%-=D+!0Ie)B(1bhM80MYc=e5#)9m#(TDbp;tEu7n*#vr~M5I-M=Fxo~A`v-3uYFr&
ze_f&nqpGZ$Ad)B_!Zz8hq;$EkCoyzu@?Mw+t-~HThjrh($Y+7@hb7xxCjG2TPJ6Yg
z#nR3fDvocGoxIVfgTw_Man9G{)o#~Yd@bV6`B!o>*OX+zy566`7Y-fJgT<DMxpORA
zm9cam_$n1Ez<0)6x|>nmdU6}^bb9){osm7x^r9rnsB(ZlR*X|<9gv*$fKH*bwcuYE
zW--p@ywOgglZw8Nqild&4i~L0!n-}ba1kR#^P)Qby;YMgpb)q<f4ttd0R!2+wqLp$
z5zwrEp0@Z-PX9o!z#(XJn(*hMXl*wF;m$8C5<;Bi4uvjkm|mBIN76-<5D2vyvSW95
zbWg{H9%_soBP(N|Ux69}o*-N|dbxE7uKRoyD0j>}o*TOiEu45_#<ADV$GsEP72Mz#
zt*S4wi$3(BJKubiA#+{1%dj9<B1A>`IIY(65diDa6?Z!JO9`So(|VU2pE1t#1mp(#
z)R;z7SMxF6|Mau>b~@y-=HZ+;7_rXQPYB0hJCN75Jm-_|@%~)2*}5$~u<Nzz!vY{$
zo{oTF@iRL%fqkQ(0~G00{Hj<|S<qH_5>pk5JkndToYxi@r>*hxZsavnV?Eoph<6Y)
z4GZRCqLSOQJ5c!DcrR1@u74x$z(mcgXi^Jqb+(xSd?7+lqwn;nJ)JN1#BcL@p>zX_
z|4#i}c!Bc`(7WsB=w9~qg7f9IUr3F_^R8w4#{LqWay}L5%WXQn>SfE_lwq<QFoG5<
zi@{CL3Kzpn<@z**`2P8L(QJSjMPLa5kizJ%k?0J$eAyX8zDpkCq)1s!o$y-0IV-cC
zFbm^i%Y5oGwnt`Lf>B6kNWH!g?OK|NptO|9YlHAKv$w(C`ecywS6ewh_|H|XskP3l
zj=@(Q7@K=izFF$Uv1zdiB<2#MZm&OBsr4|2k-k`LFZfMHI}GIu|14yd2OQA2p2a5R
zqP4+P#4(-VE9`|N`l181EZFQ6@LV&m%%L4Q#e6Z_aV5@8Y1}6{FA3>3Fpd>l?EK1E
zR4I|tP5dB*+g43bQ6YkoR~~W#mt$}D_sA)q7=0Z?(_k2eH!??5T1T-U^%>{q>vYMZ
z(FM7fa`c(u^48oGW&IG-j)(1F2Nx9Fw2-6j0z`Pia-ZT0h?1TiY%+r{o$Kt@UkH+Q
z9S>l8fWyG+!avI(ta&@`hoy_?&<>>DEcRrnp2C-i5VTSOkrhZZHSf)C)-38XgN8FF
z)(fBTQH9ac2)H=$Yd-I~AfPWHFTs=5_A=fw`GG?U2J3uKla+l0`c)k3Rm^O<T^ySq
z`zO&3`6iuQs(z>pN&_?5@e_>cxSkLqrMyGMgW2sk5=RX$WB9Mm_BLRc-?^5EoCf`}
z#<_1`y{2AW+gBqgY2!3LRU>zES&vnR{puh85X=SZqy{+Z6#@AFc#3{9dX{)Q%^0(g
zsi8*dICu_|m<E~RSlaPpfv|A87EdcSDqa(r^R;7$PL>lygXhIEr47GtTsBM1in648
zpTj}Q*_R*6uIbP_?;5wpJ5##uGb)fn@R{Kx3jm!On>q{F*=OqAuv)SpC6`DZHIlB%
z!BwPcjI@0Z5P@x8Xw2Ps0A9L|-#>!~Vvq?Z;V_7iX<cWfTU*nY59tv7uEJeW8-ep?
z3GG`7TtDwps#Hop>5!7S@o^OLT)hm3lW#|B#kywhwd_d*ICd7D63>e>y-(Nq?pR>#
zmlgfnt*M_RWy!T!!{GM>0?{0QdCZ1(-%la>Nn)@CnGekEezX)bn*;epX_Wh+)D8yH
zK&p>T<H1{AR%)J*<%MnpZqdg4_1R@|K`Js_w!VE|IU`>;-s>{6C#hPj;Lg&lCqSUL
zno!w5)OuP{DF@Gij@~%I_sjvrX7lj6_wldnoR+u!(@D&HyJo5L(<(hM)dZL5j%uDe
zsGtE&QY{|}qGRHs0J;a0PqV_T+@*w<S!Tc32&cb^C>oXh^vyr<t4h(!iXm+>Yv{ta
zZqut>aCo3&>qS5Z0!ia%<byZ6Ne~%|ON|qAI{kJ(l9FU<;r*uU4T??v@gw)=wK@@I
zY#CdALQ09Q1D{Q_BDZMQ<}%q=$wYWv9qO;W-~mgYfqZUaayZ<Zm?d$>q!h<m^d`lq
z)guLb8IOJb8Qa8zN%aN%MMcy1KEl~CC(GvcJHm2brVftI{1Gn4L#YLJYMgcV{t_-a
zVAyf`R2s9fs8d@MNnBLKkEF$5ObN*$>w1`Fi!0MD<R^<iFjh@S|64cqPy>U%IH;WB
z28qq*LhUyNW+Slsx$sk=z1q}45WQ~%4hu{(0?#WuV4FXggMNK*Pa5g<3p_K#-f6(B
z-+9Y<tbYTu|KZ>}I+JvM-8j!@$Xz)EVNmipm+UzFF_1C{aQdq;4j;6iNN+&X*STKb
z?Q_DF<ssNV;8?!wbI#L=xA~L~wYUKW)+pS{`4f-ti?_i7L1jm?dGQin+m%Y<HLBLP
zKm83482F%B>oeeWQ_W}I5jMm%GR2aEKx}d@*b=uEq)T|ihOT+%>$|w~wviH$<J47(
zfvAb%62BSt;T4>0W&Yy$sYe9tphNyj-Q75t!&}gE$}FIFh(*LQm}C9F&Af@9qHMhy
zasJ}gRGSaszwV9dq4hLMhuZ%K#FUn^wO1vyh;6UvH2YfYJc#2-G%&sauu@gF4<4R#
z@YvsBU`V8ORK>mY=mz<WxqY57!ICU>v*tb_Ql+XM`m%Gp;4UDQPj4+8pL?V31FEPl
z_Dg!dXm{^GHalkL{+vaB-`~lI|4E!^mpFI;v6`G}(sL!bKTfQWo}0aOj%^2qB(bo~
zqJ+~2)c$r<jgISrHt+~Gk^M`?c;<e{gWt}0UC^}boUJE;2==W^;0Y=FaimDPQZyRc
z1b084!y$X?Z-J*=;A8Ans?Sv$;)`NLH+R~AUH}c?m;gK7aiQdUoe9Kzi%1^?xZMbs
z=JxtlgZ4cjhFn`)FKt`B#(CKtaB-q1Xa_u4wGxgG|I;s3Ty#(9MuiK@EQQmB?*Cy2
z?y^7VzxQt1%INBz8juQ8wSIFW@H#G0Y#(mP&gEL`pe$wZ#uWHEE@9vdZMep<H)aG&
znJl^6ikm%Dzv=OKZU<BVy#}idye3)l$F{T{@8|k2$m8-kd2iHXa2e|l4tJR050>>d
zC&X^#V&uEcE?sGP6Mf(R$JCfL+I}V!L~y@#B*J&i0)pdmFW52t>uflk|MkaV3|4UK
z*kjI?FA!<p1Br#=qm)W)Jt+dOvYWmIZvI+lGsoG+f1X>q9L`-&lxJVl$vl7u;rCBY
zDq^~pugW6<BY$Kb@mJ;<vZWWZx!5NjPp0unyc~Ex*1EKwPFK6G9X7GU@I=xFZo<!D
zm%UN%XMt;E`F1;Rt)DDq8^M5=5n##&OaZGA=W*JNIg<DKp({JCW(>r~6o(1Tn$+Im
z6LUX9&-$Z}uqbc#0bI7oz#qth8wU>eO|J~pa{*xs4`ld*=xn{8pi;3rsmN=Vc&8wo
zS#sWJZ9>ft0n8C>bl<CEC0(e<Y3&&p3FtVX1YRGKrVduzy73A*&e%(s>(PmjLI+ns
zoAPIdxorLp<i6>E4Fop}A9kbMFC07n*lY2Wal|{*!@d3$7P%F4b0T`K8dDbm=vKA%
zypj79=yJ^2Wn;TIlI%$F3@!G3k){LZbwl(Kt5p2BX@VO=d-||n;CdW3nqlh&Kerwu
z#_>i(8iX(fCLyha%cE{Sx!J#2(0aP)yl#{r{0ouo<jvY~#0!jH+C7s_G_d$jLmg)h
z9WpHwa+NQJrS-fqig!NR4z@UBnM7t_fUmEuh08;48dIo%`Lnman&m;P8|P=X+cx>`
zHi1uNsh=hqB;Pdkn0bVC^#`N}BDHfKX%_j9)$CUG`I78oKqpS#<<U3IY$V1n=W!uy
zyqC;Mw53spEhk&WY@Js)q7(n~z{X%f{m@lrK2;ZyVEj9r4z6|m>3I0fM_74+cW0{e
zX=@<O?!+@y#vn5UP7q=@f}o|m2fQ2$^_LVODj^9aJ<Iv;_;X1&Kq=5pzIJdNt5wGo
zW+o`njKScB=?blzH{;B@&-PpHOrD=he;%4vWo<YIKpYT+|Cn;t-MvvR6_bEdH4u0e
zzcul`_1>~~5UU2@7;i}+(IERj-52OMy9PACe_#30z6yZ^j>5~UTS=Ub{wMX1s~V!%
zQLMmTb7vtbH^kdL$a}S4jRDNSGk@%MD61K6PUOaV-r{xzU6a!sfD`Bd%dZ@m7~TcG
zOJToQ1P*QV-vh#8#BUsSv|TC|1;iY`Uq%!85Pxh5tc(=YPlJ13$FXmL&(^_ftJK1Y
z29IwD6lH0W!W9mw!`gW5{Zhu&!C2gz9FF;&ZV-5mzzAVdffuH?_%uAzkxGAJq-JFo
zoOeDAv;Tm_Ag-;Juqy#YRi;H;uPhamM+8Bv+vom!%jbOH6<SOS=+psAl4A4i|0;XN
z+E8=+#hLRpPedHsR-(pIpIrETz&W~nZ>cTSIq;a&_hM=}$`0;IE1Ky0^)GeP96Z6A
z0&BbYWi)zT<bcS7_qcS8jRO%?VVt?%rdRD!Thns%J@Cl6s7(}6#QphaRQ)SE+<mIQ
zO#A;0umAhdA3pvspZ=dL=(bA4AwJwXL<Ss7yFKr%ZeEW^f`|JlE2=A0$(e=xA52BQ
A8vp<R

literal 0
HcmV?d00001