From cdc17b85a391d5df0e214f9f315a1f8ea6b7e3c3 Mon Sep 17 00:00:00 2001
From: liuzixing <liuzixing_j@126.com>
Date: Sat, 23 Nov 2024 11:08:00 +0800
Subject: [PATCH] Documents for DCU attestation procedure

---
 .../assets/dcu_attestation_arch.png           | Bin 0 -> 21729 bytes
 .../assets/dcu_attestation_chip.png           | Bin 0 -> 1195 bytes
 ...346\234\272\347\233\264\351\200\232DCU.md" |  63 ++++++++++++++++++
 3 files changed, 63 insertions(+)
 create mode 100644 sig/Hygon Arch/assets/dcu_attestation_arch.png
 create mode 100644 sig/Hygon Arch/assets/dcu_attestation_chip.png

diff --git a/sig/Hygon Arch/assets/dcu_attestation_arch.png b/sig/Hygon Arch/assets/dcu_attestation_arch.png
new file mode 100644
index 0000000000000000000000000000000000000000..b6d057982433adaa2745e5fe184416435d3db6ac
GIT binary patch
literal 21729
zcmeIabyU>f*DsC%sFZ?&w1R+?ATS`UNT=k`ASpvjNh_#;5+X=<!@wZm&>_+-F?2}h
z&_l<4521d(&-c0OuHSvubARiu`-f{B-f_;^XP>=a`?dETzi09ic-P3TVPIh3NlA(-
zVPIV1#lX18edQwXmjlI4HsIreosxtI2CSW89{6(E^oiUP42--WoP+0>!1t>*k{Wgx
z7&mg!|1NAF%DlzEP;rzJeWLP87g^EvkwqphEgY(OvnR*%shFbIy}Kl)JPGfJy9)?w
zX|79)=PbSZ7AeL`ulV%Z`>Rp9_ls!Wo7LUScvAgM^G@J1NO#Cbt0z!G)Wm33OXtlT
zX83KaTTJ45l4L!513uBw(Iq}wZ(SpzorMUjV?S)JuG)0?zFG;Hp|;)V1LlVDjH#Fm
z_;_6M3xfVS?FGF6e1zh_uz-(e5B@tZ%22|#hN_MwJSSHUE{RBv2M1*x{uH4**jhQB
z{3UkJXrR%xtCBx45g!~vvZ9Cac&$+a;qfAoaEfk!nP-epNj@X^wl*GyiTCFmeC>cx
zV#qx#@TJ!S2}aOMVA|AoWPa5M41MnV0}I~~l4gnG1~wp!2t4URJ{ypd=Kp*2|6Vb%
z5_#@#2j<_JG8ET!-xpHn&(GU>iu2_To5rf1v`82ph|n8q>?Ly0s8LP+=mww=8T6+L
z!Af*<LZbcJ=y$(o`G_Z=;4YDX+Fy{!gzLgD)mE|O-vWA;<#(!QEtlWz1Q&Sm*wBPp
zI6RX}`Sy(VVX-Ft{o0_ITjg(v5{;nV5SmjR<alz|V=DU>Ud$CbElL$4M%ErlTv*uE
zYiqQonAX2U0sTyfI@M3O>@#0#UglSq7(|-Xuo0rtIRBHWcH^uy2=8{{g}yDPsW#^d
zJsZ~01*CI*(89KBk=YZi<g7&9IEq3#)i?7ky7YqodDB|x0paPq(@1ELYMM6i+kiCE
zz}=XMZNvmHH4<P&|9w{`b|e;yOUkO?&aYewy0?e+hi09uxkH>HmuE;@_Cs3TuFwb0
z6qk^?edsH4ik&=iE-EP-z<qF#jk4I-8@7TA1V;;*{#imb;?EK$c&T#^x1L*DlfN0N
zaM>O#M_R#UDujf&-uL;fC?GEq5EKph$VKnV-S=AApH24QdstpMtNPF!btjBo9F?Ui
z%WJ&9WOdk~r9ff}H`xOwQwV}i(GXE@y}8(&hLS|u{24d117RU2wKYWKsU@v4Zh<c)
zH*qZG{DhAnT-d#$tlk@nz=VbQ&A*FS?{pcm3=K28(W$)Tqj9x2k278BQH8ty^)bXj
z+<It+U&a^J8X}m<r0_7g@JBUTXF(mWTOrieZqFSwO{^NLoVM3-D)Wx|0;S`mT?TT_
z6s#LM?-j~&&3*o6<M?=5k-VH&e%DBs)NI~57`o?*xUKuhG$fI4T}%Fu(KTejmx-?G
z@`*m4&WKP!N$h8aEL6^=hlxV#0}=nHkz6JPn1J{&bP=+KFRcpUDKwaRGV@+O2xC{r
zt{L%Tv*Raeq_X+a;j5ydB3F^=@wSSgSd|oy(a9On<1O*98?vO$XD8}mMbrby2~&xH
zOxFy8rOp8B5=q99EQN3NE0Mp(l_X}^xIiOp*BuhxRX~NS$0-;Bmp_#a$Gc@Y8jbK7
zm@*Hxu_+R)$*4|{O!~bosGw9WpxcVbHf2wZIoDx>W{DQ!H)^CMBe%#5754~oXBrD<
zln-6{1vBTpKi>?3B8y7*y@EMWDOSzDiZz*4A*3^fgRx{Kg9D56U1oV!!p%Cdx@tac
z14yOHh-bmvjJdu||D1e!H^V|QQ~WbC+_4aqoXk>lkDJzZoR<llg6HF)nN0jho(Zjy
z=?n&>v+t(Tl=>trt&lmQE0ayQ`o7Lkyj+~CcA@Y*>WlDSGS3&g^Pymf+Ht?A-a)oD
zhOdF^8?BTaNV1R1^QI%n`~~%kPklVjy4#a;LeEh4R%Xp17A=>V9P3?5?VIJVwKqi`
z%n#sKl?YcOIb9Y%ecH^|Ix}nNgDiEhwAmbHEw8iql2e^}!M(WFH8dYK>O8pV?}|BM
zoaVcM!fkIFbaZ5kS^sgk;eDiK-;XH0YC_Kc2}Z7+^S}l!E6Y|J8WaY32zs1~uid}=
z<JvyVbv5%Azr&DSLdK4LEg~*-jluy{JldIuN@>4^lqJ}Hv#=wWdUTO^i4aQ%8H2K4
z)5^}>St4xRy{3Q-&lR=GKqxXhmzG60wpNEGo|{Ir=HByg+%uLDDlcT7N_K}xTJ#`#
z*b$9B6`Tw7Vs|T^L!?>n9dye}XCwJI>$x8R!u`=YLp)&w&CPe|inT1i#V?hcdw_QJ
zC)3^#(%iG#cMR23l!!1R{Y>EKG^Q7IY5ov@CPP&f0@2QiWzAFGOTs?htU;{DADY|Q
zgK2FARgs0P^DC6kco2Acx`%Re+GF?bk10!eik<m@z<GrI6GCDB^??;T##t^}TB%C}
z;O;s^YgM(*h~)V2s}1{dxuj#80Q}jN!tMm<z)tLBndUx&t&@jv>>lM{e_~1>_~=|`
zCrGJT9p*XU$DJN7UvBL(_zb?vdARgAp8~`}y?ja4(4y<v!szmWw7W%}Jz<Rc9fcIK
z=9Q>SSg%}qok}a)6RQk|Q47Qq)`baLngmEy4b1LZ-FJt_KT@h_&Kya@CZzO^UwrI^
z<Ll{WSd$Ifa_%XVa%K_p>ryKNB?IDoqHmj+VR6dWdNMC9hhj!s@kf$c;7R{*Pk0LJ
zEihQ%@+_jDgex9d9*Wjj_4&0@$}%#XtM8+|P7aB5KTm;=sT!b%VyiBXn5=PxYD_*j
z<|<-;2n2WMJM=rqNT(JVd#y1=HVFKT*Ffb~m_+-A7Lm<nr^|dJYe&cq(y_z182~>j
zo12F7d1oNF<LEUsQenFoiW1b8tLlt*p;PjfOX@IM_n;UYTWH69@qWvAaxmEp84tIb
zN$_z9rZ3eDjT`WKUQYC{`yUX+#X#g6{5BqfAR{2pVM)gCv9o%!P!=aLZy9+Pd);(v
zW*%10yEs1)W>IzLZZ><t+ezKs_!S84N94W3TjvPj>?k#wR!I~NuCeY$#4Cjy`9v@0
z$8QGHeG6u=Y<|MJC8}sYC>0h2jip2*(U#gx5rM_zRI=x@)JtqZ_}j~wKT170%2*I1
zu>&gQ9d5rM3qfM@wC=pr&NRn37%DuO8{~Y!sR5;f`t2GD;f_rUHox`*4w*1XG9}@c
z9jM-G`dWOXnsp_wxExEO;iKRD>|YeJ`Gd&7=O9NYZ5oA_Rj?xm=ceGWytPla%B|Xc
zY_CSW&qo5W4p+Ku;j0}g&I|3A0-zd((aR7HV|y)&zv05e-DEoISI1sYy`6`|^av0n
z2y+^vfZB|^?kKuA*oC?wFF{P(7T*OqTX+g;$t1fV5R%YNfk^l0nN{FgXQ-M_sjNX5
z0JtVXSB_+g16<GtUi3F>VsM{8AvS}8S9j+%0^!WoA3oZGKs7U8%_SyfjTD2SnN_z@
zwJkbwIf?e+kRxUC32ZPF=LEmxO$GHf;KGQXHmRK`^E`~+uJC@k--rys#t`r3ZD%|1
zj*TK|jyA*voQOY;uo{|s*YA$G)xoRr=|=LXkFQ6j;Q`M=Xm-1vJ7gx#`(da)e3m=X
z4s#eU<c%<;dulhf>o=zWiMYEFr$Gf8G@T48yT_b=2J+C#siYiD8DChIUSpdZ<c3PC
z5=K$KhqkYMp5J;L>{!~Hze+|enBJ9cYOzw?^b6wf25M~Ja(4ofiV6M*Ai^_fw)Xo<
zmleahqnnFIe?~W>qe4enfYJWy%{T>ir$1=opFpfPywCfE#;mA{aQaFtnKtYD&p9X7
z=tV)@Z(Jc+hN)<1mgqA8&2+$LR;+jY@{s#KyL0y{+f-uU#+R{A3frL%oty)AX*&MZ
zVegsxXfytW5_S*-RZ3V&!ejeK1WP&1!QgwZ0^a{EBpT{?{cBAzpY<-D9s`<p>iQn2
zMQcx&1Mwrgw0NRp>2fA)6tZzGl@=k!;XQ91%eK=Jehy88AwPa2H)6)xiyJ<kM<0<#
z=DR!*adC}Bo7-HQ$T2RGyd_=F`<vwg=O>gnGYzpsml3`>a&h<R32awSxh~U^>v4!&
zIao5c1?_HkCBh{ON4Gl&4)sJ3vyc|t95iT>eE<1yeRq0#ZB6mW`9{w%lv>C$&#5L7
z4eE_Df`Q->0PxbS2~kb&o|-qLZ!X$H-ILee)s1zi|IkK{9&8?#Eg7Xg@F_I5k_0Oe
z!15&~0X^5y5Wf>ID^i>LTbKY-TGfx;w0(ptH_j544*DVHFWF==GV5QbNE6=xk;1ez
zNC|`vAVfW%wM}^?!fRkFI6K-sU-+YP9|vxEa67w?>KtIYk(i)k2AE>Lo-UQ%-qPa7
zx}$!MO^i9iV94H@f`^e%>erj=gqPW*c}v6tdhh|HDRwO{=CU`0ewH970MffSUJM>n
zO~6KM()D_gs))Z`xpuOKU74*7nJFDTAz_cM+}ug!;_Z!%$w^aJBKZPIP?I^a?A=J^
zbs2WgfF6RgcOD#+=^a(aAN>$zX&VWfuZ~H#3p9x|cdSh|_lN2Pm&kB)!`axHy9Idn
zyE3%;+AGV;_01Vsl;r3>{=k-MVyhko<zoSUnnlUiSX`Sm;&a?a`-Gck>0(I?b_4JN
zXBqA-Rzt{I#K5dX<U!`5gCOn8>%e5jAs^2S!^fKjk&zP+_t`gCV@LB61UZ8C5}l**
zar=(`x*)Xk<1lZ+$IZf&Hkm8)Nrc}d&ZO72JU@NGA}pLC+Bw@YI1@N_{hP&Pec&=C
zyD*E6;s`RKMO6@gJ~3{wUpA^8hw7sW5v=f)4ZIXkg*?f-VUcDq;%2oKOlwP*tvBlx
zn0?0epOKWe76n(7JB26et$y16hmnYMST|W&johD_yHU?wY*o*nebxK(xy2GDrD-rE
zs{=8r7yW*~+O^WX|07q|;SBpL{rA-K8HqADsVN()McW%k*Xj@p7XhCF93~U`GR;>#
zgG08o70Ixlc|%ZhM+!ixi==;fnLD!BrbL}U)>d%-e3Y?hPD9UStX^@Al&C4xwX{%5
zlutZ)qOicGuF=rU>d#Ed-8Ffg%{;l;yoR>e0oDXuwwQt@KSO~SP^I+zND5z)G_X-_
zpnR&cjWWRkE7KZ{tYEm0S+BH#5L`;WW$v>v-rMO&LRVoqv_mqg|19^D1y!Lm*o_tV
z+)$hKjaZhHZh^jZOwov?Jz<g1Od{_^RqErPG@1p1rJZb)syJ;G1UYLvIA$jNyp?pG
zczZu?9?VG`kMu)&mqFM0ofm#?^gQ)?!>9K{{$30cnc>J0vnnZ^A6FgvlEW|{8w>Ce
zC#q0~xThp5-Iz45s7pZO*ia`bcVd<}!<Kwa-Oad=YqenMhuPfiG>A}|YmBg&j#ZP^
zZ1{aoc3J5JX6GCrIxzI0twiV$!KdPUA}ZoX`~djgD-gjk2dTavyNB^gSUP2nkV%nl
znogaGv$qj)t`8;Ja?>L&{f`AJG~;DP*=$nLkhU>~j-N%-B-eD)81n`$l<un}NT&uN
ztC_1Lk-t};j426zQ*?c77ORVM`4*ctK|3mT>fWNA-Q;`^BipdBu)sWs!X9qrHBgVA
zvWRu+2~SqpjfnCM5frun+|caEQNq!P1$A5)rOd_&8Bq{sk(;fdAVbRb6rrS^5(S%u
zxYz)O4zKj1mM>WvA1h=;vB+Cs(wnjcjB|DSZI*jxPMBFR83ov!;F%qcEwfuNwCUnd
z^^d=gNuLe;$I06_!Yo*{+`)?EUX%$^z)1$%gA_Wy$)hNa^@%6gAa@`=ZPDqImV_V^
z`of$3sSdGb7StJYI=N6dKTp}l{(SM^cWXoTVoe=@Q~|7W3ofkCVCKO9%zFMITvXZc
z8Eddu7Go#EsF12&r>*MqJ3eM@swq8*8Ws(%4AWT?a$4EZMvV?e%!Qset9yaL(AZ&Y
zzA1<x^H$-|x0cReG5%ELA`}r`nGOSo6A%`*>d=~FoShjP_$^M)CYM4J6{MIBffEKl
zZJHz2M-}A{_cya5y0UG-i$s(wUpXtT8%s*32;?rzpnjH6Br6r^;=S~#;l@5<Hsd(@
zraJq^QC2>#wBVCtP>xY8B5AXg7<V%E$|+L<I4cfsXikKA=u$Yz8mGh46%4_5f*;xh
zF$jU3n5w&$R$KBD;UZpT5!3Jrhm`9pd%pUyGd3REZE(o+B*b)<45Y+=!njNXd9KqQ
zjwLVL02dT7N$3Xu0+F2r(b}0th<82p@_Rk^I<DZM1E$6Xh6uuRaGgNgLTt4iTL(;b
zPg`!N>t}cm{OW`6j$NyKu$h$!m3b$Sxka~*T$;btN4aL1uPQJVT2+7r1K>&6K_?%x
z=lXPbb*Oa6(T5Y&y(P2t5%u-L4e}E5_a`8Z3}%v>JLCG9?@?>}>P+R`gtF`Vli#1k
zNOeTn*VmLjgr%AEQ#dBFH7C)4hkUOr_=T56Y1X(pu*Y~djdfR_+OACz?Eq*FeX*wO
z`_H!+T%FzA+-?Z9$n9S;Gz;edxPeA(7=4Rb=a|;78I`rlqQ|k<2XP<m;ymPi3of%v
zj-TFIeqP}I0v`#M={D%uzuw8_;D0=GUDsBwjbb@jh4Z6+BwaL0MPb}30vGqouJra^
zuZN+T(iEu|<Mh3!0V>!hw2S(>#G)bnKaqWAW?K*HTReV4#pk<Yk)!cmhtb>;H`pR!
z?M!nNy=ick@_HYZ6!U=DDSyE@+fzsIu;RKcyvqw(2T+A*V&jVCxr+d<m=*o^T<Pnv
zTI1aSVf}%Ze;l04UEQrtz6@)8`I77jvd_+j-RJZl&J@q_?6J8u>V%MKN?LuQv@Y}b
z1T#hG`i8rG>$&C5J+wnUVdP>n9{*9Igpitlnvsz6TOJq(4Z?{V$M)Hd)`bsptM*%t
zr;qc6ogx9Ge;KSLaC)|Zw~)AfTY}Zkxvu?ST*IB0a$5>bmu&e}ughAjiA$$-X96;G
z*!Nl2Fd7{pK&d_GsHxSjJ74u8`9tO;xs`e`8rp*4%Weq2QN{k%uLK@k1OftFdZQCM
z#`~5<ihUz$!&azp=%zs7e(D1gCnEtZoARilspvAFin5!<0yeG|D}uYKPKV^oiZ}ys
z^J%uJS{=q<pUcYUc=gRA@FJ*i9wFLT{+l$g=lsfRHB3VIG1R_t>XAxnd(Z+@(NQg8
zlZ48Ay36%;PLbJN&N8yHpj%BL^D}-umQH<srYc1%@np110@AF==aa-cEK1X?DIwzl
zsyH`Y7qy^7PN||)2Ml^1k)J&e$Bq?_hmMcpN#cYL3XaWOj(W$AbC1?Kj(7RiT>)v{
z2`lhA;P=tngPE*TABI%zc^*w4n+}3r8Jaet?ZWQPcdtg7>*e>SFM~f;BRGP`5PZ!O
znf_C6dFO32+sAkFDN>CARHWxY!jeU_a<``AHoo_+vWWA7)w_5i@}Ux$)RFJ#8R-U(
z9Zp&+ty`BL40x`_A9w#CQtva?2!S5f9q&}RZwMc+FgJEnA1aS^iH;a89t9om>y<j<
zjrNniw2BTM0N~(jXdPh58<!z(E@eJpbozP72v(jny(|7=Gq7_AS)<H(9Z_&!aH@An
z_?Ea%j>Lr_RXiQYcM=8bY?j&)t7S_an>ko$;}+(h{Wz#Fp?;xn_8v{KbP4lMNi*)!
zC7jba1wxwA?+wVb$ha7q5(py8D=E>i$0>l^frPHzzF?$c&?ns=+BOb>m_2Ok9*6KI
z8sUg)Bgd&dHVTCIP2Z%Fo`mtoOP`oir@~*O^FtiKVeQy`0Wa+q7fm0i=6NB{B(;BG
z`fhy^Ul87wqKh!Tup#@s-pJ205L$Bb2em_J$pLZ)-aHlWwqF%jTsw%SSBeKGej7P~
z$>izC4<yrEar*EsqJ#Tb-Av(w>6yeR`Uylk=hyoi<>KY7R}(40=J7x5K<=(P!(O&v
z@*#Ej<KU{r7_IC7LYV&R`JAWDd1k9U_y#s3a_dm|1N>Xx(hIDLa=%z+b9<^GUH7NB
zD|1j)cCAGS;W6aS@=X<~;=ArJ?$SJt8pmy;_=<v=^kr#3fqM}gf2RySZFb<7C`o%<
zJ<k~gJC?CXH+l)C$jJ|XA^gt*NF8Er)^p}Y=}B}2&#YtsRee_d{*d|m_|`=YQ#P@A
zfdgcPwWr9-zwBm<7j$~cJ8WsTBfhFX8lc&PM%?x`3FYx^?3w};*g8dCvZJ};HOpSA
zRVH4Yn?62T$GQ%zYy0wiL8@SqzRFZIP?dU>B0;3VY#NXYsKL>8bIfnTQdB$V+b_sN
z>U^UrH;)5*yN&t0WX-`J^(r~BEiAO-Hwrk>?grCxt2f4#N_HuZsb|8|Sli}xb_woO
z=336U@?cG)&bqdIf#bqWI=%L(%%>g71Xr;Z+^+Hm+Y}Z}c8|2Z^R#J(U@JE_`D6#*
zIHemu3u{ty&gV9w8RMHu`SH}#byv$J6kHE14(2F&UT%7831J$TXv@e^s295E)`a87
z!=dhu!UC0z$3wiFXk+YqAnnDNEM*I_#&Un4LaVL=9)h+!j@yi0PPzw)$eF!svSR8q
zQ4DRWeMW?>!+JYad4+C8qG_WO2^C}`DZf0RBpGn?G`;Y*p9>a|-b#V`fk}0jo`oHD
z-jENki@+3Gka}4}oPYH2tB{uYtn7NN+R};CeJzaHjk!!qqf#oAl6j)@VXt^&0kYVP
z6^FjEsAZcLn%HjY#OKhA1024Ymtx@o&{!wI#ykJ>(Z4}Kw{1VPWth4YKVC8Aq)%ga
z(&!P{vuu|T{<1Brw@#hUeX{&5VEK`CXwuhAaWSxza!M*%W;f&ATUQZ8Wsh3RH%Yue
zC>%SZ<lUoz(nf^Q8>IgDK*=w<#xM~`%Kd-43%lBKW9$MRTOPhP1ih{@BLt($kwb!u
zb~<QV5RAl4^PiCgFAiWYbO>ArEzGoauW|d4aS~}=tM4jp=bD3XCplHXdY6Zn+E>yi
zAr)1hHnmp?jb!eEly072HG?MVoS?`}un{^gzs5N5Ea#@nAPX!lh-0xmaoO5qNx+=I
zWNpTmXVEmCs?DlT!eK5dmX+iLyVYYUizmxMNjeY$gKO;D>YWL3vC)?P?9Q~Ng6TIi
zl(BolV|Pl4O9q?HxmcQUD_%ZG%fZl|-}{kem8ohV2Kuw-Xlka5x_x1HblX$kS~c)b
zVvsS#2phYYzC_apcC`>@f`rO!QY>UEXn67NDsS|ITHMg=77aOtEUDZI`{&Q>9f&1d
z3B{N|!})=pn{-NXV22GLi{ktvr6&jMJsf$V?alE5it{f-d>zifg+K#hdabum_sgf@
zBIXRZ>S!yy!Fp;;f3Nf;gm@R4O^U^tevzy8q9Y7if?02<rvu&)lxJh{z~_0Co~<y3
z`~E^f9>6)6U@ME;y@!fnO}25r(0?9CUSx#o@qSO@4{chvg=aFRh<`W>i1m+FJ3RA7
zJXw#iy8B|$JQA?n08NK!35Dnxh&T82)ktTX$2$}z^cr!ciNuTa{iGcEzzAsZ+l4_H
z>DC>c_6p|9T-wK$=!-Fiq-qw6qpChCr;Z`A^W>aBksPJ0hkt7sKv|?tqnGC7u>~)V
zI@nKq--`}?Q$BsxsYmDv2{#{SyMrRi28{>SxLn_GJLJX=2|$I6<PIYOfMB?gD}p0x
zLp#S6+<<5e(n-G7wV~Y$D`$LAkLbaTu7Oboa0ZKs!3uBO=pkZr0>R&JFX%ry{#<1`
z?G=7U>sn@T(plh1%$Z@b{@2*Gh?|a{Ccau>w>XOKpzO98>Q;$#(BU^X2QVU)Cr2;n
z7i945QbdSwv=o;eIjDdSbPB1%5upDJQZItFgx{4t=U`WvVIEo3+7Cz#7mZ^Fh|)h3
zA-=`)kBPJ`L3+OrN5;1K>s9vSEV{IOmfDkdh%YHB>t6z^YXQMf-z{0j`wi*H<$0T7
zX43W8`9sG3Dl<a`<7cL~?D5UJHHmd6pAvV$>+N3dQgu86=*M?Gl8UEc<Hrxez-YFo
zBA-eQvoO?uDdVg)X|jinN?n?1z*k!pVs*TjVH^x$8bk<*{~>Nd^Z{;d@|5;NC*%K>
z*a?aE+-?!x>DG(zO)VMX5R9<<@`qmh7w%{RQXPsoPv8Uboelh)f&~b-)?W~2G&d`j
zb@ewWJ`Z>SUi`o8_IWgPhGF2)usvB#3MKl@x0(RqE<l$5T|!`AjZg!S_umBwotR*)
zhyN^J5GB#JL`O7#7eDCyznA?f+W23R84&*nA2kJ8sl6$Vs!-)!|8P0C^RHyhU(tqW
zu(!T+>TU>I6>geJ)R`AK&78b#B|lFiorTTl?dyj6eR4kKw}DZLHO;EeGcAAJUyG1F
z3DnTp5*nk?^Hd`Z>`#dY(cO*r=K%QcIQB{;&v|ao7y1Q2cc&?azo&ePtxnQ)^dd8-
z)ieN);2{fk9U2)GSn~FJcY=`7`HmYL*5`n7%>|a`);PI*<ml?=j$`U7C@?%apkcL4
z6*r9Q;}cyr0_90>{$!Xc2&N215v1W7pB2Xd{KH>MljZTYqdl5x=^fhlaP_pa8yk%9
z9o(qc8K{g*DsOAEfk6WV!JvO9l-3ytedQa}hw!<<tru3>%Mkhsnft;g;po3eHBtvz
zww=z;Kb(q%@DD?oltLZi7q<p*3r89Q9C_DSMjY7fvdAHyI&7+VGZ>dg9eGDDnSNy9
z`v;=_Yvm6|aNFgogbz)sDh4R{c=kBGp>TynipAyUlS^4T?Y7+-`pHfU_e*0(c=sKL
zhw)fu$^P8}w0|I4eO0Ky1>Qyr-yd0HS@XssUW5_Bv^WolAN>1A4%jClvF@=)FUuJq
zGoGF=)6@7i1;$^(ZaBmKkv{xudu#1EAMqR>*$;E2n+Cq>z=icX!`jD<W2cL228WM+
zZapr#gMPukQH<JhSnnDqoop~+$;RXTZx+v1>f;tuprCDTem=UVh93XfV-^6n<lNiI
zma6=;58VC3eiDB*Xc=j=R3cv%<*`#!Pc1`aZ5}Vf+J=;=LlD0{NqPM}VQ6U-OSzb5
z_+$2<hhJxYvEQIKHQ`&?H+35K-_d0=>;O$b0!SRGl6rnVXp7zPgR)-w59es!<nj8y
z)7cwf=2ODrUo_<ZSLY5@lPij^_I<nZ_>wF1<<zaKy2*dlRQxs<3D@QR%EIOH|C=&1
zuH72p<2uJ<_yM`Bp3_-&`R|gq`@4wTs>9fLcUBnvu}4NC{48nrcdgq=s?3K>^Slb>
zPjTJs&56b5K+#qa_SdoD;ZZ>W%F(io@|B|PqOGIo=(7EQ=<(GAh7sY4-HkE|p1tLv
zS^YPCLF6i&yU(7QpBFRmB19zvPc7PK9L0OGLn^gf{jG-X%n6;jA>7;sFZ=xef(Jm!
zUf>jj=AQDY6*7Cbvu7cO1S}AoXl&amsW;bziYIKVa%|x$4}t3;z-f-aG(@6_oOF1q
zfrMWJ>F-r^W%+$_JLQP(-7?_RCoTycoE%uXirmPVoRME)0wo)Jdz-c(F%EZ~st&w`
z58wHzN0qU5d-H-L&xAyq8TC?pQ1<X{)c#7-9*t-H%9fz3<Y@fzGRgg2(o>r*$tb$0
z&J+FAK0N$wUfu-;EgS3%YFoH|^TK(pVTwxkm-WK307&yPPqEvQ9(*jv^U8|NREdcL
zS@1oL4Oi>jMr++Mda2pP=iB!@Gm5akzv`?KygU3hasJjxO)N+7GvBs$xiV(E`|kTv
zHJf|G2K<k`&k)O7NU4%80m0Vg%);iVD$XK;=*nTChTip~!QDw^9OZ4cu0y+mj%tOC
zrGRdV_~jqzI4@m!l-kn_hlC5;;u{1Rd@}C`bepGI&rt;K*Q`kihC3}p&>vkIJ@QG=
zn+zLz$02jN6<6OyEGeb=liA;ROOWTOx%<voxFQ`J`4V6e(U|0(O82d9+>4Q;cAmcY
zgjs$d&fMPCn+jR-{+teu#{KUFnj&Fa^b?@fbokJ!@-Xy*h~bCvW>@JfpXDCJC9?FM
z;8{y5^8)^gb<E$3p7nQi$Q?+$Qh$)s0Y@2WnWdQjHJn3oju;3bMmfFN9&3(pfCt}5
zn;92(;d7c7S*Ci}6?<2H4#H=kSdpI*Bw}T`q{dU|QXguFYF&|zG&h8f8pmPXPdFet
z+s6B~X`uEU(FzyOqN^Sf{i&cCQ_m$z_6~|ucoqCiuCHnTsDu=v<ci@VQB~iC0F5D*
z;<M9Tt*ekjPX`wvv5nNNM;WS%T19J>Dh^+df8AwvQFJ6SDx9&uP_cgKs*@9MR>f7t
zvto^M{QB&Wdyul$n_NlvT)3~^KnJ)a80?uccX1bCd9k++s*7Y#ft-X0NQd^w>h0Ed
zxNfHzN46YHAaywg3Q7w5mY&3r3^NIj|8Z3#bgQssEgq`#%3gcD>~Q~Jd3;`j<ylAf
zHJBc18T@=X>#PPSRK(&a-#<V)YR+-U)uk{%&#g^#<*9kNcD)br=~e<73+i&XnQE@2
z*B0@Nn&F#NDk;?lrr5VMa8Ky+Bg{~U<&5*#$3uaYEf;@CE5gOV<<V$Wr?7he0Q1W#
zXQAb2!}eCsD_DG0h~oE!{W%5PkpAtlcVwr<xspt^Gf!`Od@Fy>scN%br0Ct>VYHpg
zvt5EG^c@HLOqo=>zjSfMLDOc~S+q0?ueu*XXsr4g)vgx^CvK0<h_=I)U%8uq=*d8^
zz=##hx({qey@d>ADSr~<XGLN!gou}!Gm|5<L5ELpb9wW=Ie!po7JhgNlWIlmJ=I1*
zo{CLlx`k@8=8xi)sU<h=Z#TTy>C-A8@1YRu93$BU(n9FUT0-c&=31a;$Q)C*V6PkH
zN5V`GaJN&ujMLq;yR=|VRWrE^Rl#G6?juo?-l7@Zo;nMHhI;7cxD^spC@O0O0g`f>
z&Kbd1mOf5@djj5qwSAvbmu!V_Z}vs>J(4>RrpDf<0jfvP;9ue;NQZM}FUerxwi`lq
z>l4T!t4xt@pC>&so!3_=o8Qp75DQi5TTJNvgrhrkG(vd^B1CzWlet^Y-s%mn*4UDD
zMG&kkF?sv#;DD$WyvXl+rT~x68Y<uerf!BpJ3B*I)JSpu<($_p$N3tPo7BEar@H?r
z{kk41P#!hkm0`R8)nK?m%Pw7b>Ihd(bA#Cwm*R9sVwB~;zV@*Pr1QtByduYWday-{
zPP}5xPXH4-i0x8;ji1l_sL&k0PbR4h(dL}2c@0@7bbtqrP6(`UB{b|_JYHxg%%M5m
zgLgQ2DQD)(7}|utyR>xc0B-Ha6iFVCaQpc70H;0|bmJ3qsix<FPmnxMA6WUR)k5~g
zkk}C=K`N73m8zuWX-?Oz<5JSWF~rYimFuUtJO7=!%Bd(Dk`Om{ME4EtQhX|z>kz}Q
zK5tKw!c0aQ^{CzVKfroLkz#&wG6W-dF<J@KFUwSGOmeN`Y9h;`=wjTu@=wL0{_T3p
zH6Y)K4*&9_M6Pb2ejvNu0!%)3Q!I_o%-g~%_;?e{xdWh?K8u|oPs~lEhIZRBI}$;^
zas5fq6&I}q7%vYb=5x_@#qKr60<pcjmzb5Go*s7@VuR;r;a!VrNI{;-2M02zg;YLu
zp+_QBvt>hK&-^ELupLmPQE^Q}lLHX}I+ZUXS9tcereXA2rV1Qiv8lINvJ_>Vz<tuu
z)nX34o*SR!MLXl7ClRgn-03$OD~boR(42$zUE;F<F;5*t%C?3_KmOW%?3*l^;$oD>
z62!4Eu<RAK2WdxiCqlDZsg~hQ;TZFDj#3}up4FmJl1|8W->lALE`Eg@e}T@dIz^3L
z&xf=4Ay0&bt$6SQx=Jb$lK)hCBr*4BC3|yg(IMTn?~p(uj;v0x@9VRN!VX-LU8PYK
zcYHlN@m#eOiWITKoC$&mag8He(vdY!oA2d(adc`ChtZo!;N_%8nLgwivrNG5Z%q+5
zy#x*!8Z9;)ICbL(ZB?$Ha_$hGcvsroN_XmP$^rHL#COu4!dZ6MjN@Kh;?ESal9cME
zR5ahBVk&3zTQ^}34@3E4hh=a2Vs6D~40LF~9GMnuxU7G|3NCh1brk8Cs>_@7rqlN4
zIO@qKc-%skTnXs%%Zeg5V^$MEZx-H5T9}D-^#ag+VF+YP%q$G=Xg0Q94HCR0(&kaY
zXehSQR^;3MS$X!lf8BCrxs5_9VfS27PsQ8l7uvI<pHFn@6ZxqZ$xDIW=psQYtM~A!
z{{L=+`G0>nAz=QmmPg>23tuBtT#`3<JH_2e<Pr?41TX^rZYoG0VhjwEBz*9GPP*rm
ze{>HOpySsx<ff7#!rw43*ohp9$+EB7f?RQcmaqEnh&w#!uCK>@#bi@J0~H2_B=(6y
z0T<_gK>%gL!@#&h321J}97Ip3s$4)ws9BiJYtIu^Gt0JRg@N%p=mIb{sU0YoD=+^p
zBfmS)A@_X{{ayxbxqwtUXZ3Y|;ALODp--&dYa?4)CS|JJGhJP3Eq2hoXV444aGPa=
zv*Axx_6}azZDbygb_4~*Bjtcst9k(s?P*)~_f+0jCbtKHinqLSE?|8BPz}634_a4=
z5{nmE-I)(r=c-G9#!>_W^Ut6HCQDSJ8D!zEnAV%%k9-S#_zh@pGe;kkw=izL2aXf3
zK;DgHKzRtpS0x)zquejZWU@grtlsJw28KEtAP9OJxNQfS6KKopBF1+JdN3WZ%uk?B
z#84j)hZ@i>SMvO~U~1OTy>w_{MSn-si<$QzZmV6wc#T5OT?9=21^y8H6oG-E4`fR}
zMK>bqjm&Ei{TF}+!;=}+!nh~27<2-jfPk@qt(Z#dK*$dcUIo|m0M8)N&v<~9M^XK3
zM)B0b?h9q+t7x$;qQ!<=616&AFxNMG`B*yc1_nmLOJFr^SHa3|c~snY3}~GIab)8H
z;^3Ts;7u5@1qB7M{V**t^VDYnmLYT-z0yu#Y8a3I*VVuq-7%P=>;pXn8udEIcKDB9
zXVU_7=*|4V#@QYZg9{k?LJKya-Hz{7ui<yl)~@tZN9JKIAV{F*8Ew3B(7lI!7$;h0
zjtQt-G1iIhX)yze_#JdIl|fCQdk+JK)~sqo?=_%3(FPA#8y>7s4d~;0ZT=dNtqmNG
zZeP^C1S}AMShs);`9=1>IRsqx06E6rtajb6Sd;zT<zT0e?qe$NvP;hAANfgc2i<*m
zdO33wFX(gztVG38I52K9v{Fz2nIRhx;3>J#2kQ}#4EY6lP(1hom^g+FKw^JKXxqR$
z(L(qIc-1#hpcgY4z1r_U!SF?}T{S`+E#udhz%7?yGhWbulT!(luUyq`!vvG#p<6Za
zfugtnjR6mqsXd8g?>;%7QN%Ljgt1Jxcfuc(pv8(Fzt$d1#Cs*}ld)X|_%hlyoXo<~
zy&7@xY!`qDYw6j*G0tQUtgV+sn-$}9Qvor+QJ7$y@26V{EZ`rH8fctQhDcp+zhq}u
zPj`MH%N2y-m}4}5NoUi{&-Q~oH%}n)@Sq6Nq$|qsN#}`t<sX++)(+5x$X%`HcEiK=
zYOmh^f?POL8;-nes9AVvNlBk{inWiLy=Q@7;RZET)VzVBfd$QT8YN1FL2K*M1zOJG
z7doz<>%`=>*{?qoN4blGJSTyY^S2!ty;+^reWpe4ABgXi-l!<RxdC?V-*=KDfDykw
z-)EV!s3}#_evL_`O4fkVC{efjG52-*g`+?Sgx7Nc4auMn&dh#L9qMz5-2aYf4>FZW
zQsdz{dK8u|AM`f!Msa&6uQpO=#it_tR&hxuPoYEyqUY-vbTE1F7QdhFtjT3X!D7y+
zSG&tS^!eZQo3+o?Bk4AH$eO=-x&etbLeA6Wk!-z*)D?(4+^Fe(QqtoL>+O7^2!+X`
z0-=;tJ(^jDog#87T7!WV4`Gh(=R0N~1tyZq+nO{}o_w(I+8z4h`Ji`&yhKyj4VH9!
ztJz6Luz71X?<cEfp`Z5`jC_~7Y~bc-g#^wSE0IiTl-%}}0$Xs%?ycrmqS4s_4&8b2
zhlN1+8Yts;ENZ%R$uda?iCSH?pL<Z~H&kk({WEAFOn>5V=G$s)APaj02l!m;?zbU^
zFX%o6ipQ=;5BQOf_#!}rjs}m-8xaCeHeYTD{oJltFNhvO%B$69zb_KY|5W1B1{@8{
zGxO0R`W)8F)b|?d_sSCA(P$CDf77BL5%V%rdjcX)Z8=;V)q02AvudDF!4f>Vs!u{F
z)NAzOkxd{G&b?wyj8lsOm%TX+G2m{4_wMP)QAlPgl#%3*K<`64%M>;)f^h=D=E%0%
zA?&>^nAIj_Zd&ZiISs5pMV$D#uD{ey(I1)#&Gx%jl9$(us13*-C>JVYBfQcOA9GLa
zA<QHI>17Ll(bQS6T@n>1_m)jt!IcCSMs%(p>Z6F!_*M|hXyAVPG;6JcQRfHAAMK7H
zc(juFGcRa`6F8ZZB|T&YVr_CbtuX=rfmlDYdO+Q4X%v-=GPaqZAe20MHu-2UW7%SF
zNO(JTzCJ8UrZeh(=7xtws)W(v%*=8%1x?xvM*-%>wrku=HczmHo3j>(&K^FgYaKZ1
znH7L+*X_yi<I}h+w5=Qqe+|_E%<73fja2VJR0=MY-(?P_LWwO&C-L16nh$(~@`vI{
zgf4e+J{)r#xxkK8Z)S{rMY;%KYZ@w!;$!$0Ia{%xY-FQtSyO@u82b||uSp-~0D2kl
zm+am^bJ+gcjbD&OAa(KktQ8OLdHvb%%do=A|BsIXhHQVqN6(KU`}K<ZG4__)bR#oi
zxwswL`=E`Q-#n}^>fo?r?10B}w?&_3?T-aEp$RJllFOyUvJ4*Qn)@9gTiaEOxQCkq
zRDb?9$F;awk?h|bY5rJ!LLf2v<LBVBKhGUJ0TI3LeSdCXFT;p&v!sr4Ja<q$$1E`c
zlIM5s{DN(fc%qOiM{7Lv$6KBUZ3;nKTb^5Ehcpo(f8RADaTBRfX_GRT`JXzJ-R+~0
z+~bMdAAYq2e`fn%@2x~jp@%yR!lfFZ<L0U@Ymb$E;jhAO_olw!=`JRo&n|cwvQCWx
z@Tf$Wo(7;{XWkMmknh0B1{}zVL`hzweIYGcl-d|**9RyK;5{##xYmDn^MnByy7|(a
z0Y+EYi_;jOD<n5_H4XRo{(jV9JrrIQo34d`OU05&M_`+H4S!s2ru|28&QhIu^1w64
z2RL4(dEx*Q`?4+`ir<c}Ewzi4tZmLQ)%wvNIm)DJaYc0^rN?aktR~#6Xb!bIKF=Bx
z@gFV~6wX-|4G3)-Z!feJj*apJqK@phziuyoX3Vu-8S`)&wg_6-8ZY)#YbmcN^W@tp
z05&${+=Keb!nPjt(gZzIH})H;Q~xMjS0CBzVIF>WcvL5aZM{+dLyKS81O*j$fZ{F<
zd~A>0xJXjYZ9gC*BG<O9q9NVX++xJlbHioTes%e%cVslKWITE3OXc{v${N|i`%D$_
z7HN|1>^Uw$yw|kb@RSc{P?ii>c7?E5b);RPWJwei)}n7u!F{tb#eBrztdY#h^r+V1
zib)xfbvNf*fIy^}wRCc|W3!6dS-kcSv5Mk@7ZDsFTSM$2|CgkC&YpwIajlysQ`vn8
z6;T8E`|{RCdDS<=iJa<4DZ$E2&dD=oGfSjk<*l@POY?G8=0n|PM(yHZyZ02<hJ_}b
z|FMlUK2Sg3%TY8pz(il1!-sNxuycUKY38NE9{Y3yZ<wRYqbwc<wS9k92<{Sc=boc+
z1EPnU8<sX~o;wS4*O0oB_hSzZ6I&}^vWP=QHnPp`>KtQ*)`?fuzxB5Q@4cTq!)w7c
z2&@Lg@O702geGlXQ41viVo0k$-)>ll2#cC^Kemu)iE>ZqUC54a3X+x$Qs`jPdBeH!
zs_FvLa<sziKTH`CBcRJ_19G}K*klWW#~25JyJ3z)OJ!UQA!4vzp?ehIg1B_xk3|R*
zM@Rb)S%Y{^RTogv0^mOJB4+m*ThJ+{Y@C1)cCt9X{lPToXA4rKb}f&JthNJHT=pJz
zg=I)hy*U-@yh}t2KwYgMV7*a#oI!kE$V$pEb9uc_W8Me!0YB3Iq40j%u&@}Jpl0b-
zKZKC^M|{YgHvf#>`IsE%E(F;HgsX7f>gGJAtNUDBBoe`?XbKHC`j_)Eoy|&i8|;dD
zm(8j0RcB>yj;n&fzRXoA{P@K(${s+o(U*aP1R(nph}<`rl=@F~v4uHK$EYKvi(YX3
zLrnoZ{l%*D#XlqfplYU(q|Sfr6@aZ({#TBBZ5?b2D4zPvh`0+yTEB}21`H*NwxHPn
zYK6~DHE@r(8ro}PJOH{1F2lsprn(pd4a9+bEr8`Oo~!~5lV1af7r^y5{@u-hqv@5=
zymHz;N6<7UCa8UG^Cg|&@V`o?`27Ajp{+k%aPkx9rgW`Z2l-bSQp?XjAqL<+Ot28L
zw>AHS3)BOM;e@EGPtAYF8WXf-Q9!Z`a8N+(dK!$ZJqOAPRXCr&K-!<rYUe9#Yh%S@
z7u$0WhbWKBNh=N8j*#Ts)(K@pcW;1k(msuzzv2y4$_5VnZpL|Z^WXdJVI9KbAcT4(
z+shMWeOPwx=r_(|C_hFR{mbjJcUxu#bN{&R!6+{%5U!tL+~WVOuYTnfRnqunZ6k-s
ztvLm2Yp3-id#5U1+!5EqUyus4TmUo#=nwa&!>uDV#=*n3k(!Xt+{Z8=2MQEH6ts;e
zCflzkvs4Fpu7LiYR$b}f(6U<C%Fm=poRB8y`d$8yVOcY<U*kMHMIA21GIE~%JOsyE
zWlqyZGqBOdgT%1R>Vhr5K?<IAuAE4u(TEjavMs;1B`L78=m6R{$q2kbH!mlJXp@up
ztQ(I==sT^V_&KTGW)B1;R|d>HKZJKz85L|7@B_K<%fP0i1MJ9*IspH84A;UON=UN_
zP~@t!ikhgs8AYd(k?{Oro~=UNd;umhAEF?OdgMXlU}-~?7|^!&8`U|KL=_z?M)qDs
zkvf3j8{hPL4n%#@D0%YkEc8zfMP)qXu18$EaE=(6>_Bu1Cg9|<&iHQFj6c%8$AYXV
zL%d3tph2jE=*uSYN9e7K=T<~z4q{?GSqwF6fxNicEL&9;?x`TCEfzFRxe3Yma-(L^
ze*qO6e7%Hh|FO((Ov+>rpPz&@7llg3l4%ww&4q1jJs?=asxRe#il9=ZGg@cPOZT!u
zI44lXhx}t9UrM5GcgZ$DV>P{mW_y@4%P1mWC~&}q>t~7V>k&Wlc(g4Ue+!!lyx9LG
z9~LN(8DmG4p$4to;5jUww#P!WZj-)ZNagN!2jdLOvt9#h{VnGu6ry}2P<*84xlvnC
zlCr6;p4{>6tMSxjF_ZPWwtY)uZv8+57(T?nNjMwb<mzG9|IXCEImret_8T*N){$#b
z^gbH((x;j<ZQCZEt2vG?`{Bbg`!Z`@=iLI3jWf_;je^m3j2><&2tG@%BIN3SniY0E
zhS(*b(F99*<~QX~SE_lJcOIe`Nba7L!7Vv<<x7p9mF}VWh%H?Ae4zj#pltJh;H$w0
zsQXDRL;}SLiQ#;1J!@}*X{lMy5za5jJ;DF#|EH7=?svyljAk_)B1dYv#|5JXW>8;;
zhDU~+t*w$GgUC4#OH8ls=Txp(ZIg|N5ug0p7Mj8VI#9=#pC1#qvgIQ*HGPnIkw9<j
z@2SSjLnw1yT*rj@@4EJv&5s?<z#~1%1iAAO?ZYgW|GH7u78FwBUC4C&fcbfz8M5fe
zN?ALn@Z1DH96=c5LY6G;=30p{|9Yx*91;*SB0Qhm8%3EATag5?I*{KpD=0=Ao9Hj3
zk}|z4f4%GtG<fs(i$6m12sXXXi6K8;?VMmvZA;`iSz&+$E^vbDB1Y&IB)FCx%gi6d
znCrBa@xf#YTI0$ZU;e%?A6l`ct;d?r6aBb7YGC3<ah&nzi@*KuJur|Jmt^{xFJ5R=
zN-5^b&uwDj^u^KCyed_Cssp!$Zb^*p&t^x$dKJbLjoTE>?^XwPR_EfOz69PRJa<=V
zB~jb&6a}5#`K^{UZ-qoo=DrFqr*b^9;BnfHo}FY)Qqw>8dy)<y5%m98Pki~GRsSu4
zHJ;<;Cxu?0LL1BKDy_3bdWTQ>PvE%->@#bL!A=0^8=BU{(5E^(Bp1F5oH>F^ubt1%
zDHg`YiG}p$(?%A>9R(klzP_&Xa>@=OoClEh)BtG@@U-6>PNa=-|HJ`fB%ELejMpck
z#K34i33vW$E<W<<2;$+1rxNze6ONmaA>jv+0DT%)*}NB-w#VE)TjmLSgbj=k2-+77
zTYavR1;S`Fi|eoNUYigwU3a9Pw*gow@@T~k)Exo@r^%BXZ)?4AW$f)CxezU&dA)A^
zA}s>am+kS@Ih}$4AiBwlHBoOh?}gnUp!YL!&);6GzGqjp9@NOSx&A&oC1`7HMoQo=
z=X$Szv%c_Cb7P|>d8_(-7ceMp0c!Yd0ixPEGWZa2=<?aIpdp+D&JJg(=&4L!I8bZF
zjco!1x8V&{4YFlk;|%D+pQcNCwB@l#)h3|k{Y_6aE1A88{AZAw64sSaap7=!Vt69F
zi&;NysA++8zZVo^LgM_vQ87?~jm-qQX|I8Kcs$BUS`gv~3Cj9)Ox9EWw2B4DRFHm0
zWHC50FVggKw<;Xra@0{Y8ZWPBi*_zTG{OE~8xOY9L$DzOuE?K}8gbjc<M0Kcswf3|
zX#6H+>=(TBxp$@Uhzb{Vh3k|mi=6{34por@Bl*nzqlTVy>-TZYO@1!UvfTpYq-z6T
z=zMTv&g<dbWNKua@96$s7|H$zdbi&9CQT39XyvmJt2!>M<@`V5qfJ$3Z(dn2ktsJ<
z7t~J6T;q3W(URXONQiH-wC4AAY5s-&NkDc6K=SsiKf2_XDu%kCV(tVlMrsr39cJ>A
z?ls2b{P;$If}6PIOj*%^J0af|I}fEgVItlvPlu98)fTP1Jj#C&gqR)Nf^%)e4c`X@
z!TcJKbg%C-l0m-;CoTUWd%U#m3oe?n9R`S){O|oyxWF89zWj=}|J9L3ZPM3QW!c%m
zR8Zu~p;c~2Qpwd&-86~HM@qK@bS#WDRz=axSM$Lsw$TJL1`H3TCa8H&MCS#=)~F?K
z3&O=@Q6oFnE(xm9QxfIEyIg{r+*Cm35bMR%Hc$x*3PG5ayG4Hv>Lld%H_Z57JWMW4
zr9u)TSqB6{_+(VVHg?5Wq3%@2j6g;MhJk)J-9??B-Tv0M%@_LoM)%)`lXMoSfYJr5
zq3n)czs%b*;R^;c_6sR}q8^Z=D(@&D@zfs~`{YPLxID6I-^~%<Rpz;T975)y(-oHs
z>yJH=LlTbM*8n7Z?H2?=q~+TgZKAZz@NNsILV~@r!{wv$EpG+}yulX+Qh9cT*9>R&
zvvXU<1r2O+HZ#*k?FEy!3pC=&h@*ny5ESl?8#^!5YO|lMEIF!1JLGK-Q6~+c7UmIO
z6%6U45sH(Z43#v%I(`9-Rtuewq+D^6w~e}btY7c&1bNbNJ`o-)V{`dh-+qg*%`{Fr
zQ^TBl!G#oJnie%i$w7~s^Cc3dFl3SD6xWa=GpD;%V%%#&4Du<>3FQ3Pr#fO7mMABa
zo9%4n>IZLs+H<pLb&KjSWT2Z21{~e*6u{!Tef^$l$j{LoRqu@|Ze0_kH(L2XwM3al
zogoQjain6<+j>blLqkfHq#F;Me&eh-o!jcnEB(hW-d!%MP9&Rek}hcF13`y19PHAg
zUV!s;BsWs>$!2Ej+gSEYIUmmo!-Jop9_cLs3Ttu+?EO63J-|S4`lD|I{I<K=Yg8h>
zbW<zKhC${11+kSUg70)xZ*bBDRO)7exYOTlCB?|%-EOY=#DRg)cmn$Wn}6x@|HQ9r
eHtQXujtS%*OI{A{9ta1-h9M;;FA5XU_xc})BDxy@

literal 0
HcmV?d00001

diff --git a/sig/Hygon Arch/assets/dcu_attestation_chip.png b/sig/Hygon Arch/assets/dcu_attestation_chip.png
new file mode 100644
index 0000000000000000000000000000000000000000..efe5d1debe0d0c6bd9676e8dc3d72959c49a4e0e
GIT binary patch
literal 1195
zcmV;c1XTNpP)<h;3K|Lk000e1NJLTq005}~001ut0ssI27hZk600001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj532;bRa{vGluK)lMuL1Y{ON0Ob1VBkdK~#8N?VRhC
zqc9AGw~(!eV$w@mNhj$fJ<RIL4<tVX#>vdivA$nevSitp0A@Jz=dZIWuKl{W_Uq!>
zuZwHHE+5c-yFH$d+ZJ2z<a3#q<h=H`$LsaHpIG?qP70mrILw*M+x_`^J#Mk(7<@qc
zpT)I5jcdOymG;|>F08MBy1)kQZ*<FTI2nXS?)t7AV{_)wyLLY_z+*tlOM|%fCn>aN
zk+LvY@+>f1yOV!j#bqEVRC_`!NfKhisi1n;^fSjwWM&?SU5<&;-qeJbbzju}wH2P0
z_QH1Y!raJQ*36k*`%_5mTT8oBo*3N|rK7zv*+cbcL{%mjT>Dc<?Yn9+|EKoN%&z?@
z{CB@DWA}UM9MxXhE(+AhT$aI^UHelg?W0Kj=X|;FUG1Z?_l;o-r_G7SpYs!S=4A8d
z{Ba8Hv3%zKzTcLJ9XIy~eP!ZwdW}+ME^NNPAE46yBV7KWJ0HZgUl-SYUA{+q1DqCJ
z{J#B3eq4L!$8hb}#kF6TUHkrxS3ad-FTHQ3cYBCd&vWsmOKcInSg`NW;VgIm8|~Un
zxAo@WvUd{&lXr03shZgx{nc6>#WMJ-cjH?JN%ME#dn{))pDAPY)(;4+wf07Aj83zl
zndx(;_Ezqg80)Q_6JGY^^$TvfDrROl$&g}0iyMp?Yp>NoEECU-gRRww_AuAu1ladb
z9hCM~tUgHq_1?!Xt7)85B3SpH@!sxYP@uXW#7@-AP2trX#1h<tE>nkpEgR6@EGalK
zYz~xF9>&(?t31*z^ENUo!;H5^y6xDv)~v8&X(Y61=(2(a=d};X_V4xdttM6==O~Vk
zWA$*l@R%qx)7-dG_5{*0<E@b+AH||IQ*&>v?AQSRnX5KeoYx*kQAlwQLyH^vfJcvq
zcC6?a(S8D7<|755g^5-IJ-O6;AhXSQOVDZeors;NnasvIAB-D-nf-kRwO3=vZa5Ck
zJg6wjj?Mniq}lSC<^E{PwUBeodGbNIj#s@3c1X`r>|D*dhTKgaH)91br=Sj_*L-O#
zD~^ZBEZlZ1NP-izWO#f{{mY)Zymsbycz24Q9&?=ey)~z7cC4UdmW(~?^=m>%o@|Jh
z`wug=MrI4iy0L0tpbRtK2yA3*tVTZ;$1^owj@?0!PE#?UJ+f7!rf#|d9+*F;k2W*5
zLM2l(XH;zI)`@4l0G4*0X6$s$S7Ue3uVohuXdmpxGl(phy>*9XEJ1te?8D^b=sa6-
z?=1aDMpqda8t*zLyj&#>9GfLp?0n6}TA8r~f6)dHdVy#!8Pc9Bp}_)qY9N#w8-Pnz
zwr(ugosD;=DzuK3Zaa9y%ktHzv(n1^u9`<<8+Df_N2IB}vjndFy14f1;@Yo^Yrih8
z{kmMz9(#;>U*h~Su4#Y&)PK@)zL8&Z&F{Z&axU`c%UP4JuYaEmoAx<ll>q<%002ov
JPDHLkV1i9PUr+!5

literal 0
HcmV?d00001

diff --git "a/sig/Hygon Arch/content/2-CSV\346\265\213\350\257\225\346\226\207\346\241\243/3-\350\231\232\346\213\237\346\234\272/4-\346\265\213\350\257\225CSV\350\231\232\346\213\237\346\234\272\347\233\264\351\200\232DCU.md" "b/sig/Hygon Arch/content/2-CSV\346\265\213\350\257\225\346\226\207\346\241\243/3-\350\231\232\346\213\237\346\234\272/4-\346\265\213\350\257\225CSV\350\231\232\346\213\237\346\234\272\347\233\264\351\200\232DCU.md"
index 88cbffb19..03447182a 100644
--- "a/sig/Hygon Arch/content/2-CSV\346\265\213\350\257\225\346\226\207\346\241\243/3-\350\231\232\346\213\237\346\234\272/4-\346\265\213\350\257\225CSV\350\231\232\346\213\237\346\234\272\347\233\264\351\200\232DCU.md"	
+++ "b/sig/Hygon Arch/content/2-CSV\346\265\213\350\257\225\346\226\207\346\241\243/3-\350\231\232\346\213\237\346\234\272/4-\346\265\213\350\257\225CSV\350\231\232\346\213\237\346\234\272\347\233\264\351\200\232DCU.md"	
@@ -53,3 +53,66 @@ $ sudo qemu-system-x86_64 -name csv-vm --enable-kvm -cpu host -m 10240 -hda /opt
 # make clean;make
 # ./vectoradd_hip.exe
 ```
+## 测试 DCU Attestation 功能 (DCU远程身份认证功能)
+### 背景
+从深算二号(K100-AI)开始,海光DCU开始支持Attestation(身份认证)功能。<br>
+(DCU驱动版本 rock-kernel-refactory-rock-5.7.1-6.2.26-V1.5.aio.run   
+https://cancon.hpccube.com:65024/6/main/latest%E9%A9%B1%E5%8A%A8)，<br>
+DCU Attestation的目的是向DCU加速器的使用者证明，正在使用中的DCU设备具有真实身份，<br>
+其芯片ID、固件版本、硬件环境等相关数据皆为真实可信，用户可将机密数据下发到DCU中计算，无需担心数据被恶意的加速器窃取。
+### 机制
+
+ ![](../../../assets/dcu_attestation_arch.png)
+
+ 每一颗DCU芯片拥有唯一的芯片ID(ChipID)，在芯片生产时烧入，以后无法更改。<br>
+芯片内置一SM2密钥对(DCEK, DCU Chip Endorsement Key)，私钥作为DCU芯片的身份象征，只保存在DCU芯片，永不外泄。<br>
+公钥被HDSK(海光DCU签名密钥)/HRK(海光根密钥)签名后，存放于海光证书系统中，可公开下载。<br>
+
+步骤一：当CSV虚拟机启动完毕后，用户加载DCU驱动识别DCU卡。用户运行Attestation App通过DCU驱动向DCU卡请求远程认证报告。<br>
+DCU卡生成远程认证报告，内容包含DCU芯片ID，固件版本等信息，并使用DCEK私钥签名，返回给用户。<br>
+步骤二：用户从远程认证报告中取出DCU芯片ID，向海光证书系统请求该芯片的DCEK/HDSK/HRK公钥证书。<br>
+步骤三：用户依次验证HRK->HDSK->DCEK证书链的签名，并使用DCEK证书中的公钥验证远程认证报告的签名。<br>
+全部验证过程正确可认为该DCU芯片为真实的海光芯片，报告中的数据真实可信。<br>
+验证过程中任一步失败，则验证过程失败。
+
+海光提供了Attestation App demo，演示了CSV虚拟机用户向DCU请求认证报告、获取认证报告、下载证书链、<br>
+验证远程报告、验证证书链的全过程。该demo程序仅做展示，用户可根据需要修改或重新编写。<br>
+
+### 测试过程
+假设CSV中直通DCU的环境已经搭建完毕，CSV虚拟机能够访问DCU。<br>
+(请依据[4-测试CSV虚拟机直通DCU](https://openanolis.cn/sig/Hygon-Arch/doc/865622222638552866?lang=zh) 搭建环境 )
+
+拷贝主机中的测试程序(/opt/hygon/csv/attestation/)到CSV虚拟机中<br>
+目录中的dcu_attestation_demo文件为演示DCU远程证明的示例程序。
+
+1)如果您的CSV虚拟机能够直接连接海光证书服务器(https://cert.hygon.cn/)<br>请直接运行
+```
+$./dcu_attestation_demo
+```
+示例程序将自动完成DCU认证过程。
+
+2)如果您的CSV虚拟机无法连接海光证书服务器，则需要手动下载证书后，放置于dcu_attestation_demo程序的所在的目录下，步骤如下:<br>
+2.1)运行demo程序，获取DCU ChipID
+```
+$./dcu_attestation_demo
+```
+该程序会打印出DCU ChipID，并打印证书下载失败的日志后退出。
+<br>![](../../../assets/dcu_attestation_chip.png)<br>
+该DCU的ChipID为”T6N6980002080601”
+
+2.2)在相同目录下，手动下载该芯片的HSK_CEK证书
+```
+$ curl -s -f -o hsk_cek.cert https://cert.hygon.cn/hsk_cek?snumber=T6N6980002080601
+```
+完成后，在运行程序的目录下，生成hsk_cek.cert文件,文件包含HSK证书和CEK证书<br>
+
+2.3)在相同目录下，手动下载HRK证书
+```
+curl -s -f -o ./hrk.cert https://cert.hygon.cn/hrk
+```
+完成后，在运行程序的目录下，生成hrk.cert<br>
+
+2.4)再次运行attestation demo程序，完成DCU身份验证过程
+```
+$./dcu_attestation_demo
+```
\ No newline at end of file
-- 
Gitee