Received-SPF: pass (google.com: domain of oss-security-return-30013-linux.lists.archive=gmail.com@lists.openwall.com designates 193.110.157.125 as permitted sender) client-ip=193.110.157.125;
Mailing-List: contact oss-security-help@lists.openwall.com; run by ezmlm
Precedence: bulk
Reply-To: oss-security@lists.openwall.com
MIME-Version: 1.0
References: <607d5716-128f-44c5-ab52-6dde4ca6e8a4@christopher-kunz.de>
 <b701b525-0c42-4b3a-a1a3-0ea68e864fbe@christopher-kunz.de>
 <20240411140654.GA24980@openwall.com> <052779d0-a3c3-4691-9491-08520952ca8e@christopher-kunz.de>
 <CADW8OBuC4JhqZ1Aa-GSGsRRbEzR-yL=xzRmxT+UkG_h6KsX9-A@mail.gmail.com>
In-Reply-To: <CADW8OBuC4JhqZ1Aa-GSGsRRbEzR-yL=xzRmxT+UkG_h6KsX9-A@mail.gmail.com>
From: Kyle Zeng <zengyhkyle@gmail.com>
Date: Thu, 11 Apr 2024 12:52:58 -0700
Message-ID: <CADW8OBuTW4Mxpg_aqzZs=BeHw9V8syJr3xe=nWWY9C1B-zoA-w@mail.gmail.com>
To: oss-security@lists.openwall.com
Content-Type: multipart/mixed; boundary="000000000000a4ce8e0615d78206"
Subject: Re: [oss-security] New Linux LPE via GSMIOC_SETCONF_DLCI?

--000000000000a4ce8e0615d78206
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Notice that my previous analysis on YuriiCrimson's exploits is their
ExploitGSM_6_5 version.
I cannot make the ExploitGSM_5_15_to_6_1 version work in the latest
kernel in my test environment. However, this does not rule out the
possibility that it still works.

And the splash of the ExploitGSM_6_5 exploit is attached to the email.

Thanks,
Kyle Zeng

On Thu, Apr 11, 2024 at 12:25=E2=80=AFPM Kyle Zeng <zengyhkyle@gmail.com> w=
rote:
>
> Hi there,
>
> I just did some preliminary analysis on this.
> There are in fact three exploits involved in this.
> CVE-2023-6546: https://github.com/Nassim-Asrir/ZDI-24-020/
> jmpe4x's GSM exploit:
> https://github.com/jmpe4x/GSM_Linux_Kernel_LPE_Nday_Exploit
> YuriiCrimson's GSM exploit: https://github.com/YuriiCrimson/ExploitGSM
>
> I tested all of them. All of them targeted the same subsystem (GSM),
> used the same KASLR leak method ("/sys/kernel/notes"). But there are
> two vulnerabilities involved here.
> In short. jmpe4x's and YuriiCrimson's exploits are the same, but the
> vulnerability is not CVE-2023-6546.
> !!!!!!!!!!!!
> It is a 0day that is not patched in the main tree yet.
> Not a patch gap.
> !!!!!!!!!!!!
>
> My analysis is performed on the latest commit of Linus's tree:
> ```
> commit e8c39d0f57f358950356a8e44ee5159f57f86ec5 (HEAD -> master,
> origin/master, origin/HEAD)
> Merge: 03a55b63919 325f3fb551f
> Author: Linus Torvalds <torvalds@linux-foundation.org>
> Date:   Wed Apr 10 19:48:05 2024 -0700
> ```
>
> And jmpe4x's and YuriiCrimson's are exactly the same. The difference
> is mostly spaces. The diff is attached to this email.
>
> Thanks,
> Kyle Zeng
>
>
> On Thu, Apr 11, 2024 at 8:07=E2=80=AFAM Dr. Christopher Kunz
> <info@christopher-kunz.de> wrote:
> >
> > Hi,
> >
> > > There are two exploits in Yurii's repo above, according to Yurii for =
two
> > > different bugs.  The above is one of them.  Perhaps also try the othe=
r?
> > The two exploit versions are for different kernels. The 6.5 exploit
> > doesn't compile on the Debian 12 6.1 kernel, and no Debian version
> > currently distributes a 6.5 kernel, AFAICT. I used
> > ExploitGSM_5_15_to_6_1/ExploitGSM and it worked.
> > > I don't know, and apparently it'd need to be two CVEs for two bugs th=
at
> > > Yurii exploits.
> > Possibly. I'm definitely out of my depth trying to analyze which bugs
> > are being exploited.
> > > CVE-2023-52564: Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
> > > https://lists.openwall.net/linux-cve-announce/2024/03/02/54
> > >
> > > Maybe CVE-2023-52564 is one of the bugs Yurii exploits, or maybe not.
> > > I didn't look into this closely enough to tell.
> >
> > Apparently not. Debian 12 "Bookworm" currently runs this kernel:
> >
> > Linux debianexploitgsm 6.1.0-18-amd64 #1 SMP PREEMPT_DYNAMIC Debian
> > 6.1.76-1 (2024-02-01) x86_64 GNU/Linux
> >
> > According to the changelog, this kernel has the fix for CVE-2023-52564
> > included:
> >      - Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux"
> > (from
> > https://metadata.ftp-master.debian.org/changelogs//main/l/linux-signed-=
amd64/linux-signed-amd64_6.1.76+1_changelog)
> >
> > Still, the exploit works, so it must exploit a different issue.
> >
> > Just my two cents,
> >
> > --cku
> >

--000000000000a4ce8e0615d78206
Content-Type: text/plain; charset="US-ASCII"; name="splash.txt"
Content-Disposition: attachment; filename="splash.txt"
Content-Transfer-Encoding: base64
Content-ID: <f_luvnoy960>
X-Attachment-Id: f_luvnoy960

WyAgIDE5LjQ5NDIwOF0gPT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09
PT09PT09PT09PT09PT09PT09PT09PT09ClsgICAxOS40OTQ4NzZdIEJVRzogS0FTQU46IHNsYWIt
dXNlLWFmdGVyLWZyZWUgaW4gZ3NtX2RsY2lfY29uZmlnKzB4ZjhlLzB4MTAzMApbICAgMTkuNDk1
NTA5XSBSZWFkIG9mIHNpemUgNCBhdCBhZGRyIGZmZmY4ODgwMGJlMzgwMGMgYnkgdGFzayBFeHBs
b2l0R1NNLzIxNQpbICAgMTkuNDk2MTAyXSAKWyAgIDE5LjQ5NjI1M10gQ1BVOiAzIFBJRDogMjE1
IENvbW06IEV4cGxvaXRHU00gTm90IHRhaW50ZWQgNi45LjAtcmMzKyAjNzYKWyAgIDE5LjQ5Njc4
NV0gSGFyZHdhcmUgbmFtZTogUUVNVSBTdGFuZGFyZCBQQyAoaTQ0MEZYICsgUElJWCwgMTk5Niks
IEJJT1MgMS4xNS4wLTEgMDQvMDEvMjAxNApbICAgMTkuNDk3MjI4XSBDYWxsIFRyYWNlOgpbICAg
MTkuNDk3MzY3XSAgPFRBU0s+ClsgICAxOS40OTc0ODNdICBkdW1wX3N0YWNrX2x2bCsweDFhYi8w
eDI2MApbICAgMTkuNDk3NzAyXSAgcHJpbnRfcmVwb3J0KzB4Y2UvMHg2MTAKWyAgIDE5LjQ5Nzg5
OF0gID8gZ3NtX2RsY2lfY29uZmlnKzB4ZjhlLzB4MTAzMApbICAgMTkuNDk4MTI0XSAgPyBrYXNh
bl9jb21wbGV0ZV9tb2RlX3JlcG9ydF9pbmZvKzB4N2MvMHgyMDAKWyAgIDE5LjQ5ODQwN10gID8g
Z3NtX2RsY2lfY29uZmlnKzB4ZjhlLzB4MTAzMApbICAgMTkuNDk4NjM2XSAga2FzYW5fcmVwb3J0
KzB4YjkvMHhmMApbICAgMTkuNDk4ODI2XSAgPyBnc21fZGxjaV9jb25maWcrMHhmOGUvMHgxMDMw
ClsgICAxOS40OTkwNTBdICBfX2FzYW5fcmVwb3J0X2xvYWQ0X25vYWJvcnQrMHgxNC8weDIwClsg
ICAxOS40OTkzMTJdICBnc21fZGxjaV9jb25maWcrMHhmOGUvMHgxMDMwClsgICAxOS40OTk1MzNd
ICA/IF9fcGZ4X2dzbV9kbGNpX2NvbmZpZysweDEwLzB4MTAKWyAgIDE5LjQ5OTc3MV0gID8gX19w
ZnhfYXV0b3JlbW92ZV93YWtlX2Z1bmN0aW9uKzB4MTAvMHgxMApbICAgMTkuNTAwMDUwXSAgPyBf
X3Nhbml0aXplcl9jb3ZfdHJhY2VfY29uc3RfY21wOCsweDE4LzB4MjAKWyAgIDE5LjUwMDMzNF0g
IGdzbWxkX2lvY3RsKzB4MTAyZi8weDE3NDAKWyAgIDE5LjUwMDUzN10gID8gX19wZnhfZ3NtbGRf
aW9jdGwrMHgxMC8weDEwClsgICAxOS41MDA3NTZdICA/IF9fc2FuaXRpemVyX2Nvdl90cmFjZV9j
b25zdF9jbXA4KzB4MTgvMHgyMApbICAgMTkuNTAxMDM0XSAgPyBsZHNlbV9kb3duX3JlYWQrMHhj
MS8weDZmMApbICAgMTkuNTAxMjUxXSAgPyBfX3Nhbml0aXplcl9jb3ZfdHJhY2Vfc3dpdGNoKzB4
NTQvMHhhMApbICAgMTkuNTAxNTEzXSAgPyBfX3Nhbml0aXplcl9jb3ZfdHJhY2VfY29uc3RfY21w
MisweDE4LzB4MjAKWyAgIDE5LjUwMTc5OF0gID8gX19zYW5pdGl6ZXJfY292X3RyYWNlX3N3aXRj
aCsweDU0LzB4YTAKWyAgIDE5LjUwMjA2MV0gIHR0eV9pb2N0bCsweDdhMi8weDE2MjAKWyAgIDE5
LjUwMjI0OV0gID8gX19wZnhfZ3NtbGRfaW9jdGwrMHgxMC8weDEwClsgICAxOS41MDI0NjhdICA/
IF9fcGZ4X3R0eV9pb2N0bCsweDEwLzB4MTAKWyAgIDE5LjUwMjY3Nl0gID8gX19zYW5pdGl6ZXJf
Y292X3RyYWNlX2NtcDQrMHgxNi8weDIwClsgICAxOS41MDI5MzBdICA/IGZwcmVnc19hc3NlcnRf
c3RhdGVfY29uc2lzdGVudCsweDhiLzB4ZjAKWyAgIDE5LjUwMzIwMF0gID8gc3lzY2FsbF9leGl0
X3RvX3VzZXJfbW9kZSsweDkzLzB4MWYwClsgICAxOS41MDM0NTZdICA/IGRvX3N5c2NhbGxfNjQr
MHg4Ny8weDEyMApbICAgMTkuNTAzNjYwXSAgPyBfX2ZnZXRfbGlnaHQrMHgxOTgvMHg1NjAKWyAg
IDE5LjUwMzg2Nl0gID8gc2VjdXJpdHlfZmlsZV9pb2N0bCsweDk5LzB4YzAKWyAgIDE5LjUwNDA5
NV0gID8gX19wZnhfdHR5X2lvY3RsKzB4MTAvMHgxMApbICAgMTkuNTA0MzA2XSAgX194NjRfc3lz
X2lvY3RsKzB4MWI0LzB4MjMwClsgICAxOS41MDQ1MTBdICB4NjRfc3lzX2NhbGwrMHgxMjA2LzB4
MjBiMApbICAgMTkuNTA0NzEwXSAgZG9fc3lzY2FsbF82NCsweDdiLzB4MTIwClsgICAxOS41MDQ4
OThdICA/IF9fa2FzYW5fY2hlY2tfd3JpdGUrMHgxNC8weDIwClsgICAxOS41MDUxMThdICA/IF9y
YXdfc3Bpbl9sb2NrX2lycSsweGIwLzB4MTYwClsgICAxOS41MDUzNTVdICA/IF9fa2FzYW5fY2hl
Y2tfd3JpdGUrMHgxNC8weDIwClsgICAxOS41MDU1ODddICA/IHJlY2FsY19zaWdwZW5kaW5nKzB4
MWFjLzB4MjUwClsgICAxOS41MDU4MjVdICA/IF9fc2V0X3Rhc2tfYmxvY2tlZCsweGFmLzB4MjIw
ClsgICAxOS41MDYwNDldICA/IF9yYXdfc3Bpbl91bmxvY2tfaXJxKzB4M2EvMHhhMApbICAgMTku
NTA2ODE5XSAgPyBzaWdwcm9jbWFzaysweDEwZS8weDM5MApbICAgMTkuNTA3MjY1XSAgPyBfX3Bm
eF9zaWdwcm9jbWFzaysweDEwLzB4MTAKWyAgIDE5LjUwNzU2Nl0gID8gX19zYW5pdGl6ZXJfY292
X3RyYWNlX2NvbnN0X2NtcDgrMHgxOC8weDIwClsgICAxOS41MDc5NDBdICA/IF9fc2FuaXRpemVy
X2Nvdl90cmFjZV9jb25zdF9jbXA4KzB4MTgvMHgyMApbICAgMTkuNTA4Mjk2XSAgPyBfX3g2NF9z
eXNfcnRfc2lncHJvY21hc2srMHgyMjQvMHgyZjAKWyAgIDE5LjUwODYxOF0gID8gX19wZnhfX194
NjRfc3lzX3J0X3NpZ3Byb2NtYXNrKzB4MTAvMHgxMApbICAgMTkuNTA4OTcxXSAgPyBfX3Nhbml0
aXplcl9jb3ZfdHJhY2VfY21wNCsweDE2LzB4MjAKWyAgIDE5LjUwOTMwOV0gID8gZnByZWdzX2Fz
c2VydF9zdGF0ZV9jb25zaXN0ZW50KzB4OGIvMHhmMApbICAgMTkuNTA5NjcxXSAgPyBzeXNjYWxs
X2V4aXRfdG9fdXNlcl9tb2RlKzB4OTMvMHgxZjAKWyAgIDE5LjUwOTk5OF0gID8gZG9fc3lzY2Fs
bF82NCsweDg3LzB4MTIwClsgICAxOS41MTAyNzRdICA/IGNsZWFyX2JoYl9sb29wKzB4MTUvMHg3
MApbICAgMTkuNTEwNTQyXSAgPyBjbGVhcl9iaGJfbG9vcCsweDE1LzB4NzAKWyAgIDE5LjUxMDgw
NF0gID8gY2xlYXJfYmhiX2xvb3ArMHgxNS8weDcwClsgICAxOS41MTEwNjBdICA/IGNsZWFyX2Jo
Yl9sb29wKzB4MTUvMHg3MApbICAgMTkuNTExMzMzXSAgPyBjbGVhcl9iaGJfbG9vcCsweDE1LzB4
NzAKWyAgIDE5LjUxMTU4N10gIGVudHJ5X1NZU0NBTExfNjRfYWZ0ZXJfaHdmcmFtZSsweDc2LzB4
N2UKWyAgIDE5LjUxMTkxMF0gUklQOiAwMDMzOjB4NDU3MjlmClsgICAxOS41MTIxMjldIENvZGU6
IDAwIDQ4IDg5IDQ0IDI0IDE4IDMxIGMwIDQ4IDhkIDQ0IDI0IDYwIGM3IDA0IDI0IDEwIDAwIDAw
IDAwIDQ4IDg5IDQ0IDI0IDA4IDQ4IDhkIDQ0IDI0IDIwIDQ4IDg5IDQ0IDI0IDEwIGI4IDEwIDAw
IDAwIDAwIDBmIDA1IDw0MT4gODkgYzAgM2QgMDAgZjAgZmYgZmYgNzcgMWYgNDggOGIgNDQgMjQg
MTggNjQgNDggMmIgMDQgMjUgMjggMDAKWyAgIDE5LjUxMzE5Ml0gUlNQOiAwMDJiOjAwMDA3ZjE3
MTU2MDAxNTAgRUZMQUdTOiAwMDAwMDI0NiBPUklHX1JBWDogMDAwMDAwMDAwMDAwMDAxMApbICAg
MTkuNTEzNjExXSBSQVg6IGZmZmZmZmZmZmZmZmZmZGEgUkJYOiAwMDAwN2YxNzE1NjAwNjQwIFJD
WDogMDAwMDAwMDAwMDQ1NzI5ZgpbICAgMTkuNTE0MDA4XSBSRFg6IDAwMDA3ZmZlYzJkOTUyM2Mg
UlNJOiAwMDAwMDAwMDQwMzg0NzA4IFJESTogMDAwMDAwMDAwMDAwMDAwNgpbICAgMTkuNTE0NDAx
XSBSQlA6IDAwMDA3ZjE3MTU2MDAxZDAgUjA4OiAwMDAwMDAwMDAwMDAwMDAwIFIwOTogMDAwMDdm
ZmVjMmQ5NGU1ZgpbICAgMTkuNTE0Nzc2XSBSMTA6IDAwMDAwMDAwMDAwMDAwMDggUjExOiAwMDAw
MDAwMDAwMDAwMjQ2IFIxMjogMDAwMDdmMTcxNTYwMDY0MApbICAgMTkuNTE1MTcwXSBSMTM6IDAw
MDAwMDAwMDAwMDAwMTYgUjE0OiAwMDAwMDAwMDAwNDFlMGMwIFIxNTogMDAwMDdmMTcxNGUwMDAw
MApbICAgMTkuNTE1NTY2XSAgPC9UQVNLPgpbICAgMTkuNTE1Njk4XSAKWyAgIDE5LjUxNTc5Nl0g
QWxsb2NhdGVkIGJ5IHRhc2sgMjE0OgpbICAgMTkuNTE1OTkwXSAga2FzYW5fc2F2ZV9zdGFjaysw
eDI4LzB4NTAKWyAgIDE5LjUxNjIwN10gIGthc2FuX3NhdmVfdHJhY2srMHgxNC8weDQwClsgICAx
OS41MTY0MjddICBrYXNhbl9zYXZlX2FsbG9jX2luZm8rMHgzOC8weDUwClsgICAxOS41MTY2NzJd
ICBfX2thc2FuX2ttYWxsb2MrMHhiMS8weGMwClsgICAxOS41MTY4OTBdICBrbWFsbG9jX3RyYWNl
KzB4MTgwLzB4M2IwClsgICAxOS41MTcxMDBdICBnc21fZGxjaV9hbGxvYysweDUwLzB4ODEwClsg
ICAxOS41MTczMjFdICBnc21sZF9pb2N0bCsweDE0MDQvMHgxNzQwClsgICAxOS41MTc1NDBdICB0
dHlfaW9jdGwrMHg3YTIvMHgxNjIwClsgICAxOS41MTgwNjhdICBfX3g2NF9zeXNfaW9jdGwrMHgx
YjQvMHgyMzAKWyAgIDE5LjUxODM0OV0gIHg2NF9zeXNfY2FsbCsweDEyMDYvMHgyMGIwClsgICAx
OS41MTg2MDldICBkb19zeXNjYWxsXzY0KzB4N2IvMHgxMjAKWyAgIDE5LjUxODg1OV0gIGVudHJ5
X1NZU0NBTExfNjRfYWZ0ZXJfaHdmcmFtZSsweDc2LzB4N2UKWyAgIDE5LjUxOTE5NF0gClsgICAx
OS41MTkzMDJdIEZyZWVkIGJ5IHRhc2sgMjExOgpbICAgMTkuNTE5NTE2XSAga2FzYW5fc2F2ZV9z
dGFjaysweDI4LzB4NTAKWyAgIDE5LjUxOTc4OV0gIGthc2FuX3NhdmVfdHJhY2srMHgxNC8weDQw
ClsgICAxOS41MjAwNDZdICBrYXNhbl9zYXZlX2ZyZWVfaW5mbysweDNiLzB4NjAKWyAgIDE5LjUy
MDI3Nl0gIHBvaXNvbl9zbGFiX29iamVjdCsweDEwZS8weDE5MApbICAgMTkuNTIwNTEzXSAgX19r
YXNhbl9zbGFiX2ZyZWUrMHgzNC8weDYwClsgICAxOS41MjA3MzRdICBrZnJlZSsweGZhLzB4MmUw
ClsgICAxOS41MjA5MDldICBnc21fZGxjaV9mcmVlKzB4MTFkLzB4MTcwClsgICAxOS41MjExMzBd
ICB0dHlfcG9ydF9wdXQrMHgxNzIvMHgxZTAKWyAgIDE5LjUyMTM0MF0gIGdzbV9jbGVhbnVwX211
eCsweDMzYS8weDg2MApbICAgMTkuNTIxNTYyXSAgZ3NtbGRfaW9jdGwrMHg1NTgvMHgxNzQwClsg
ICAxOS41MjE4MDJdICB0dHlfaW9jdGwrMHg3YTIvMHgxNjIwClsgICAxOS41MjIwMDddICBfX3g2
NF9zeXNfaW9jdGwrMHgxYjQvMHgyMzAKWyAgIDE5LjUyMjI0MF0gIHg2NF9zeXNfY2FsbCsweDEy
MDYvMHgyMGIwClsgICAxOS41MjI0NThdICBkb19zeXNjYWxsXzY0KzB4N2IvMHgxMjAKWyAgIDE5
LjUyMjY2MF0gIGVudHJ5X1NZU0NBTExfNjRfYWZ0ZXJfaHdmcmFtZSsweDc2LzB4N2UKWyAgIDE5
LjUyMjk0Ml0gClsgICAxOS41MjMwMzFdIFRoZSBidWdneSBhZGRyZXNzIGJlbG9uZ3MgdG8gdGhl
IG9iamVjdCBhdCBmZmZmODg4MDBiZTM4MDAwClsgICAxOS41MjMwMzFdICB3aGljaCBiZWxvbmdz
IHRvIHRoZSBjYWNoZSBrbWFsbG9jLTFrIG9mIHNpemUgMTAyNApbICAgMTkuNTIzNzAyXSBUaGUg
YnVnZ3kgYWRkcmVzcyBpcyBsb2NhdGVkIDEyIGJ5dGVzIGluc2lkZSBvZgpbICAgMTkuNTIzNzAy
XSAgZnJlZWQgMTAyNC1ieXRlIHJlZ2lvbiBbZmZmZjg4ODAwYmUzODAwMCwgZmZmZjg4ODAwYmUz
ODQwMCkKWyAgIDE5LjUyNDM4NV0gClsgICAxOS41MjQ0NzNdIFRoZSBidWdneSBhZGRyZXNzIGJl
bG9uZ3MgdG8gdGhlIHBoeXNpY2FsIHBhZ2U6ClsgICAxOS41MjQ3ODBdIHBhZ2U6IHJlZmNvdW50
OjEgbWFwY291bnQ6MCBtYXBwaW5nOjAwMDAwMDAwMDAwMDAwMDAgaW5kZXg6MHgwIHBmbjoweGJl
MzgKWyAgIDE5LjUyNTIyMV0gaGVhZDogb3JkZXI6MyBlbnRpcmVfbWFwY291bnQ6MCBucl9wYWdl
c19tYXBwZWQ6MCBwaW5jb3VudDowClsgICAxOS41MjU2MTRdIGZsYWdzOiAweGZmZmZmZTAwMDA4
NDAoc2xhYnxoZWFkfG5vZGU9MHx6b25lPTF8bGFzdGNwdXBpZD0weDNmZmZmZikKWyAgIDE5LjUy
NjAzOF0gcGFnZV90eXBlOiAweGZmZmZmZmZmKCkKWyAgIDE5LjUyNjI0NF0gcmF3OiAwMDBmZmZm
ZmUwMDAwODQwIGZmZmY4ODgwMDEwNDJkYzAgZGVhZDAwMDAwMDAwMDEyMiAwMDAwMDAwMDAwMDAw
MDAwClsgICAxOS41MjY2NjFdIHJhdzogMDAwMDAwMDAwMDAwMDAwMCAwMDAwMDAwMDAwMTAwMDEw
IDAwMDAwMDAxZmZmZmZmZmYgMDAwMDAwMDAwMDAwMDAwMApbICAgMTkuNTI3MDg3XSBoZWFkOiAw
MDBmZmZmZmUwMDAwODQwIGZmZmY4ODgwMDEwNDJkYzAgZGVhZDAwMDAwMDAwMDEyMiAwMDAwMDAw
MDAwMDAwMDAwClsgICAxOS41Mjc1MTJdIGhlYWQ6IDAwMDAwMDAwMDAwMDAwMDAgMDAwMDAwMDAw
MDEwMDAxMCAwMDAwMDAwMWZmZmZmZmZmIDAwMDAwMDAwMDAwMDAwMDAKWyAgIDE5LjUyNzkxMF0g
aGVhZDogMDAwZmZmZmZlMDAwMDAwMyBmZmZmZWEwMDAwMmY4ZTAxIGZmZmZlYTAwMDAyZjhlNDgg
MDAwMDAwMDBmZmZmZmZmZgpbICAgMTkuNTI4MzQxXSBoZWFkOiAwMDAwMDAwODAwMDAwMDAwIDAw
MDAwMDAwMDAwMDAwMDAgMDAwMDAwMDBmZmZmZmZmZiAwMDAwMDAwMDAwMDAwMDAwClsgICAxOS41
Mjg5MzldIHBhZ2UgZHVtcGVkIGJlY2F1c2U6IGthc2FuOiBiYWQgYWNjZXNzIGRldGVjdGVkClsg
ICAxOS41Mjk0MDldIApbICAgMTkuNTI5NTA5XSBNZW1vcnkgc3RhdGUgYXJvdW5kIHRoZSBidWdn
eSBhZGRyZXNzOgpbICAgMTkuNTI5ODQwXSAgZmZmZjg4ODAwYmUzN2YwMDogMDAgMDAgMDAgMDAg
MDAgMDAgMDAgMDAgMDAgMDAgMDAgMDAgMDAgMDAgMDAgMDAKWyAgIDE5LjUzMDMxMF0gIGZmZmY4
ODgwMGJlMzdmODA6IDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAwIDAw
IDAwClsgICAxOS41MzA3NzRdID5mZmZmODg4MDBiZTM4MDAwOiBmYSBmYiBmYiBmYiBmYiBmYiBm
YiBmYiBmYiBmYiBmYiBmYiBmYiBmYiBmYiBmYgpbICAgMTkuNTMxMjE0XSAgICAgICAgICAgICAg
ICAgICAgICAgXgpbICAgMTkuNTMxNDM2XSAgZmZmZjg4ODAwYmUzODA4MDogZmIgZmIgZmIgZmIg
ZmIgZmIgZmIgZmIgZmIgZmIgZmIgZmIgZmIgZmIgZmIgZmIKWyAgIDE5LjUzMTg5MF0gIGZmZmY4
ODgwMGJlMzgxMDA6IGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZiIGZi
IGZiClsgICAxOS41MzIzMjRdID09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09
PT09PT09PT09PT09PT09PT09PT09PT09PT09PQpbICAgMTkuNTMyNzk2XSBEaXNhYmxpbmcgbG9j
ayBkZWJ1Z2dpbmcgZHVlIHRvIGtlcm5lbCB0YWludAo=
--000000000000a4ce8e0615d78206--