diff --git a/CNAME b/CNAME
index 5d3be932f2f95..1a3ca76186416 100644
--- a/CNAME
+++ b/CNAME
@@ -1 +1 @@
-istio.io
+preliminary.istio.io
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
index 4696c8e6ee195..7950e85dc2ae9 100644
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -1,5 +1,7 @@
-# Contribution guidelines
+## Contribution guidelines
-So, you want to hack on the Istio web site? Yay! Please refer to Istio's overall
+So, you want to hack on the Istio web site? Cool! Please refer to Istio's overall
[contribution guidelines](https://github.com/istio/community/blob/master/CONTRIBUTING.md)
to find out how you can help.
+
+For specifics on hacking on our site, check this [info](https://istio.io/about/contribute/)
diff --git a/Gemfile b/Gemfile
index af8715d432024..7b231be9a2199 100644
--- a/Gemfile
+++ b/Gemfile
@@ -3,5 +3,6 @@ source "https://rubygems.org"
gem "github-pages", group: :jekyll_plugins
gem "jekyll-include-cache", "~> 0.1"
gem "nokogiri", ">= 1.8.1"
-gem "html-proofer", :git => "https://github.com/ldemailly/html-proofer.git"
+gem "html-proofer", ">= 3.8.0"
gem "rake"
+gem "mdl"
diff --git a/Gemfile.lock b/Gemfile.lock
index 344a041bbf928..662aeaac0897a 100644
--- a/Gemfile.lock
+++ b/Gemfile.lock
@@ -1,17 +1,3 @@
-GIT
- remote: https://github.com/ldemailly/html-proofer.git
- revision: a9fd7130ddf4bffc54ef938783d09a110e46574b
- specs:
- html-proofer (3.7.5)
- activesupport (>= 4.2, < 6.0)
- addressable (~> 2.3)
- colorize (~> 0.8)
- mercenary (~> 0.3.2)
- nokogiri (~> 1.7)
- parallel (~> 1.3)
- typhoeus (~> 0.7)
- yell (~> 2.0)
-
GEM
remote: https://rubygems.org/
specs:
@@ -28,38 +14,42 @@ GEM
coffee-script-source (1.11.1)
colorator (1.1.0)
colorize (0.8.1)
- commonmarker (0.17.7)
+ commonmarker (0.17.9)
ruby-enum (~> 0.5)
concurrent-ruby (1.0.5)
+ em-websocket (0.5.1)
+ eventmachine (>= 0.12.9)
+ http_parser.rb (~> 0.6.0)
ethon (0.11.0)
ffi (>= 1.3.0)
+ eventmachine (1.2.5)
execjs (2.7.0)
- faraday (0.13.1)
+ faraday (0.14.0)
multipart-post (>= 1.2, < 3)
- ffi (1.9.18)
+ ffi (1.9.23)
forwardable-extended (2.6.0)
gemoji (3.0.0)
- github-pages (172)
+ github-pages (180)
activesupport (= 4.2.9)
- github-pages-health-check (= 1.3.5)
- jekyll (= 3.6.2)
+ github-pages-health-check (= 1.4.0)
+ jekyll (= 3.7.3)
jekyll-avatar (= 0.5.0)
- jekyll-coffeescript (= 1.0.2)
- jekyll-commonmark-ghpages (= 0.1.3)
+ jekyll-coffeescript (= 1.1.1)
+ jekyll-commonmark-ghpages (= 0.1.5)
jekyll-default-layout (= 0.1.4)
- jekyll-feed (= 0.9.2)
- jekyll-gist (= 1.4.1)
- jekyll-github-metadata (= 2.9.3)
- jekyll-mentions (= 1.2.0)
+ jekyll-feed (= 0.9.3)
+ jekyll-gist (= 1.5.0)
+ jekyll-github-metadata (= 2.9.4)
+ jekyll-mentions (= 1.3.0)
jekyll-optional-front-matter (= 0.3.0)
jekyll-paginate (= 1.1.0)
jekyll-readme-index (= 0.2.0)
- jekyll-redirect-from (= 0.12.1)
- jekyll-relative-links (= 0.5.2)
+ jekyll-redirect-from (= 0.13.0)
+ jekyll-relative-links (= 0.5.3)
jekyll-remote-theme (= 0.2.3)
- jekyll-sass-converter (= 1.5.0)
- jekyll-seo-tag (= 2.3.0)
- jekyll-sitemap (= 1.1.1)
+ jekyll-sass-converter (= 1.5.2)
+ jekyll-seo-tag (= 2.4.0)
+ jekyll-sitemap (= 1.2.0)
jekyll-swiss (= 0.4.0)
jekyll-theme-architect (= 0.1.0)
jekyll-theme-cayman (= 0.1.0)
@@ -74,61 +64,74 @@ GEM
jekyll-theme-slate (= 0.1.0)
jekyll-theme-tactile (= 0.1.0)
jekyll-theme-time-machine (= 0.1.0)
- jekyll-titles-from-headings (= 0.5.0)
- jemoji (= 0.8.1)
- kramdown (= 1.14.0)
+ jekyll-titles-from-headings (= 0.5.1)
+ jemoji (= 0.9.0)
+ kramdown (= 1.16.2)
liquid (= 4.0.0)
- listen (= 3.0.6)
+ listen (= 3.1.5)
mercenary (~> 0.3)
- minima (= 2.1.1)
+ minima (= 2.4.0)
+ nokogiri (>= 1.8.1, < 2.0)
rouge (= 2.2.1)
terminal-table (~> 1.4)
- github-pages-health-check (1.3.5)
+ github-pages-health-check (1.4.0)
addressable (~> 2.3)
net-dns (~> 0.8)
octokit (~> 4.0)
public_suffix (~> 2.0)
- typhoeus (~> 0.7)
+ typhoeus (~> 1.3)
html-pipeline (2.7.1)
activesupport (>= 2)
nokogiri (>= 1.4)
- i18n (0.9.1)
+ html-proofer (3.8.0)
+ activesupport (>= 4.2, < 6.0)
+ addressable (~> 2.3)
+ colorize (~> 0.8)
+ mercenary (~> 0.3.2)
+ nokogiri (~> 1.8.1)
+ parallel (~> 1.3)
+ typhoeus (~> 1.3)
+ yell (~> 2.0)
+ http_parser.rb (0.6.0)
+ i18n (0.9.5)
concurrent-ruby (~> 1.0)
- jekyll (3.6.2)
+ jekyll (3.7.3)
addressable (~> 2.4)
colorator (~> 1.0)
+ em-websocket (~> 0.5)
+ i18n (~> 0.7)
jekyll-sass-converter (~> 1.0)
- jekyll-watch (~> 1.1)
+ jekyll-watch (~> 2.0)
kramdown (~> 1.14)
liquid (~> 4.0)
mercenary (~> 0.3.3)
pathutil (~> 0.9)
- rouge (>= 1.7, < 3)
+ rouge (>= 1.7, < 4)
safe_yaml (~> 1.0)
jekyll-avatar (0.5.0)
jekyll (~> 3.0)
- jekyll-coffeescript (1.0.2)
+ jekyll-coffeescript (1.1.1)
coffee-script (~> 2.2)
coffee-script-source (~> 1.11.1)
- jekyll-commonmark (1.1.0)
+ jekyll-commonmark (1.2.0)
commonmarker (~> 0.14)
jekyll (>= 3.0, < 4.0)
- jekyll-commonmark-ghpages (0.1.3)
+ jekyll-commonmark-ghpages (0.1.5)
commonmarker (~> 0.17.6)
jekyll-commonmark (~> 1)
rouge (~> 2)
jekyll-default-layout (0.1.4)
jekyll (~> 3.0)
- jekyll-feed (0.9.2)
+ jekyll-feed (0.9.3)
jekyll (~> 3.3)
- jekyll-gist (1.4.1)
+ jekyll-gist (1.5.0)
octokit (~> 4.2)
- jekyll-github-metadata (2.9.3)
+ jekyll-github-metadata (2.9.4)
jekyll (~> 3.1)
octokit (~> 4.0, != 4.4.0)
jekyll-include-cache (0.1.0)
jekyll (~> 3.3)
- jekyll-mentions (1.2.0)
+ jekyll-mentions (1.3.0)
activesupport (~> 4.0)
html-pipeline (~> 2.3)
jekyll (~> 3.0)
@@ -137,19 +140,19 @@ GEM
jekyll-paginate (1.1.0)
jekyll-readme-index (0.2.0)
jekyll (~> 3.0)
- jekyll-redirect-from (0.12.1)
+ jekyll-redirect-from (0.13.0)
jekyll (~> 3.3)
- jekyll-relative-links (0.5.2)
+ jekyll-relative-links (0.5.3)
jekyll (~> 3.3)
jekyll-remote-theme (0.2.3)
jekyll (~> 3.5)
rubyzip (>= 1.2.1, < 3.0)
typhoeus (>= 0.7, < 2.0)
- jekyll-sass-converter (1.5.0)
+ jekyll-sass-converter (1.5.2)
sass (~> 3.4)
- jekyll-seo-tag (2.3.0)
+ jekyll-seo-tag (2.4.0)
jekyll (~> 3.3)
- jekyll-sitemap (1.1.1)
+ jekyll-sitemap (1.2.0)
jekyll (~> 3.3)
jekyll-swiss (0.4.0)
jekyll-theme-architect (0.1.0)
@@ -192,45 +195,56 @@ GEM
jekyll-theme-time-machine (0.1.0)
jekyll (~> 3.5)
jekyll-seo-tag (~> 2.0)
- jekyll-titles-from-headings (0.5.0)
+ jekyll-titles-from-headings (0.5.1)
jekyll (~> 3.3)
- jekyll-watch (1.5.1)
+ jekyll-watch (2.0.0)
listen (~> 3.0)
- jemoji (0.8.1)
+ jemoji (0.9.0)
activesupport (~> 4.0, >= 4.2.9)
gemoji (~> 3.0)
html-pipeline (~> 2.2)
- jekyll (>= 3.0)
- kramdown (1.14.0)
+ jekyll (~> 3.0)
+ kramdown (1.16.2)
liquid (4.0.0)
- listen (3.0.6)
- rb-fsevent (>= 0.9.3)
- rb-inotify (>= 0.9.7)
+ listen (3.1.5)
+ rb-fsevent (~> 0.9, >= 0.9.4)
+ rb-inotify (~> 0.9, >= 0.9.7)
+ ruby_dep (~> 1.2)
+ mdl (0.4.0)
+ kramdown (~> 1.12, >= 1.12.0)
+ mixlib-cli (~> 1.7, >= 1.7.0)
+ mixlib-config (~> 2.2, >= 2.2.1)
mercenary (0.3.6)
mini_portile2 (2.3.0)
- minima (2.1.1)
- jekyll (~> 3.3)
- minitest (5.10.3)
+ minima (2.4.0)
+ jekyll (~> 3.5)
+ jekyll-feed (~> 0.9)
+ jekyll-seo-tag (~> 2.1)
+ minitest (5.11.3)
+ mixlib-cli (1.7.0)
+ mixlib-config (2.2.6)
+ tomlrb
multipart-post (2.0.0)
net-dns (0.8.0)
- nokogiri (1.8.1)
+ nokogiri (1.8.2)
mini_portile2 (~> 2.3.0)
- octokit (4.7.0)
+ octokit (4.8.0)
sawyer (~> 0.8.0, >= 0.5.3)
- parallel (1.12.0)
- pathutil (0.16.0)
+ parallel (1.12.1)
+ pathutil (0.16.1)
forwardable-extended (~> 2.6)
public_suffix (2.0.5)
- rake (12.3.0)
- rb-fsevent (0.10.2)
+ rake (12.3.1)
+ rb-fsevent (0.10.3)
rb-inotify (0.9.10)
ffi (>= 0.5.0, < 2)
rouge (2.2.1)
- ruby-enum (0.7.1)
+ ruby-enum (0.7.2)
i18n
+ ruby_dep (1.5.0)
rubyzip (1.2.1)
safe_yaml (1.0.4)
- sass (3.5.3)
+ sass (3.5.6)
sass-listen (~> 4.0.0)
sass-listen (4.0.0)
rb-fsevent (~> 0.9, >= 0.9.4)
@@ -241,9 +255,10 @@ GEM
terminal-table (1.8.0)
unicode-display_width (~> 1.1, >= 1.1.1)
thread_safe (0.3.6)
- typhoeus (0.8.0)
- ethon (>= 0.8.0)
- tzinfo (1.2.4)
+ tomlrb (1.2.6)
+ typhoeus (1.3.0)
+ ethon (>= 0.9.0)
+ tzinfo (1.2.5)
thread_safe (~> 0.1)
unicode-display_width (1.3.0)
yell (2.0.7)
@@ -253,10 +268,11 @@ PLATFORMS
DEPENDENCIES
github-pages
- html-proofer!
+ html-proofer (>= 3.8.0)
jekyll-include-cache (~> 0.1)
+ mdl
nokogiri (>= 1.8.1)
rake
BUNDLED WITH
- 1.16.0
+ 1.16.1
diff --git a/OWNERS b/OWNERS
new file mode 100644
index 0000000000000..b682f960cff78
--- /dev/null
+++ b/OWNERS
@@ -0,0 +1,4 @@
+
+approvers:
+ - geeknoid
+ - linsun
diff --git a/README.md b/README.md
index 06edc37c58c22..688321aebfa5e 100644
--- a/README.md
+++ b/README.md
@@ -1,22 +1,31 @@
-# istio.github.io
+## istio.github.io
-This repository contains the source code for the [istio.io](https://istio.io) web site.
+This repository contains the source code for the [istio.io](https://istio.io),
+[preliminary.istio.io](https://preliminary.istio.io) and [archive.istio.io](https://archive.istio.io) sites.
Please see the main Istio [README](https://github.com/istio/istio/blob/master/README.md)
file to learn about the overall Istio project and how to get in touch with us. To learn how you can
contribute to any of the Istio components, please
see the Istio [contribution guidelines](https://github.com/istio/community/blob/master/CONTRIBUTING.md).
-The website uses [Jekyll](https://jekyllrb.com/) templates and is hosted on GitHub Pages. Please make sure you are
-familiar with these before editing.
+* [Working with the site](#working-with-the-site)
+* [Linting](#linting)
+* [Versions and releases](#versions-and-releases)
+ * [How versioning works](#how-versioning-works)
+ * [Publishing content immediately](#publishing-content-immediately)
+ * [Creating a version](#creating-a-version)
-To run the site locally with Docker, use the following command from the toplevel directory for this git repo
+## Working with the site
+
+We use [Jekyll](https://jekyllrb.com/) to generate our sites.
+
+To run the site locally with Docker, use the following command from the top level directory for this git repo
(e.g. pwd must be `~/github/istio.github.io` if you were in `~/github` when you issued
`git clone https://github.com/istio/istio.github.io.git`)
```bash
# First time: (slow)
-docker run --name istio-jekyll --volume=$(pwd):/srv/jekyll -it -p 4000:4000 jekyll/jekyll:3.5.2 sh -c "bundle install && rake test && bundle exec jekyll serve --incremental --host 0.0.0.0"
+docker run --name istio-jekyll --volume=$(pwd):/srv/jekyll -w /srv/jekyll -it -p 4000:4000 jekyll/jekyll:3.7.3 sh -c "bundle install && rake test && bundle exec jekyll serve --incremental --host 0.0.0.0"
# Then open browser with url 127.0.0.1:4000 to see the change.
# Subsequent, each time you want to see a new change and you stopped the previous run by ctrl+c: (much faster)
docker start istio-jekyll -a -i
@@ -24,23 +33,24 @@ docker start istio-jekyll -a -i
docker rm istio-jekyll
```
-The `rake test` part is to make sure you are not introducing html errors or bad links, you should see
-```
+The `rake test` part is to make sure you are not introducing HTML errors or bad links, you should see
+
+```bash
HTML-Proofer finished successfully.
```
-in the output
-
-> In some cases the `--incremental` may not work properly and you might have to remove it.
-## Local/Native Jekyll install:
+in the output.
-Alternatively, if you just want to develop locally w/o Docker/Kubernetes/Minikube, you can try installing Jekyll locally. You may need to install other prerequisites manually (which is where using the docker image shines). Here's an example of doing so for Mac OS X:
+Alternatively, if you just want to develop locally w/o Docker/Kubernetes/Minikube, you can try installing Jekyll locally.
+You may need to install other prerequisites manually (which is where using the docker image shines). Here's an example of doing
+so for Mac OS X:
-```
+```bash
xcode-select --install
sudo xcodebuild -license
brew install ruby
gem update --system
+gem install mdspell
gem install bundler
gem install jekyll
cd istio.github.io
@@ -48,3 +58,117 @@ bundle install
bundle exec rake test
bundle exec jekyll serve
```
+
+## Linting
+
+You should run `scripts/linters.sh` prior to checking in your changes.
+This will run 3 tests:
+
+* HTML proofing, which ensures all your links are valid along with other checks.
+
+* Spell checking.
+
+* Style checking, which makes sure your markdown file complies with some common style rules.
+
+If you get a spelling error, you have three choices to address it:
+
+* It's a real typo, so fix your markdown.
+
+* It's a command/field/symbol name, so stick some `backticks` around it.
+
+* It's really valid, so go add the word to the .spelling file at the root of the repo.
+
+## Versions and releases
+
+Istio maintains three variations of its public site:
+
+* [istio.io](https://istio.io) is the main site, showing documentation for the current release of the product.
+This site is currently hosted on Firebase.
+
+* [archive.istio.io](https://archive.istio.io) contains snapshots of the documentation for previous releases of the product.
+This is useful for customers still using these older releases.
+This site is currently hosted on Firebase.
+
+* [preliminary.istio.io](https://preliminary.istio.io) contains the actively updated documentation for the next release of the product.
+This site is hosted by GitHub Pages.
+
+The user can trivially navigate between the different variations of the site using the gear menu in the top right
+of each page.
+
+### How versioning works
+
+* Documentation changes are primarily committed to the master branch of istio.github.io. Changes committed to this branch
+are automatically reflected on preliminary.istio.io.
+
+* The content of istio.io is taken from the latest release-XXX branch. The specific branch that
+is used is determined by the `BRANCH` variable in this [script](https://github.com/istio/admin-sites/blob/master/current.istio.io/build.sh)
+
+* The content of archive.istio.io is taken from the older release-XXX branches. The set of branches that
+are included on archive.istio.io is determined by the `TOBUILD` variable in this
+[script](https://github.com/istio/admin-sites/blob/master/archive.istio.io/build.sh)
+
+> The above means that if you want to do a change to the main istio.io site, you will need
+to make the change in the master branch of istio.github.io and then merge that change into the
+release branch.
+
+### Publishing content immediately
+
+Checking in updates to the master branch will automatically update preliminary.istio.io, and will only be reflected on
+istio.io the next time a release is created, which can be several weeks in the future. If you'd like some changes to be
+immediately reflected on istio.io, you need to check your changes both to the master branch and to the
+current release branch (named release-XXX such as release-0.7).
+
+### Creating a version
+
+Here are the steps necessary to create a new documentation version. Let's assume the current
+version of Istio is 0.6 and you wish to introduce 0.7 which has been under development.
+
+1. Create a new release branch off of master, named as release-*major*.*minor*, which in this case would be
+release-0.7. There is one such branch for every release.
+
+1. In the **master** branch, edit the file `_data/istio.yml` and update the `version` field to have the version
+of the next release of Istio. In this case, you would set the field to 0.8.
+
+1. In the **master** branch, edit the file `_data/releases.yml` and add a new entry at the top of the file
+for version 0.8. You'll need to make sure the URLs are updated for the first few entries. The top
+entry (0.8) should point to preliminary.istio.io. The second entry (0.7) should point to istio.io. The third
+and subsequent entries should point to archive.istio.io.
+
+1. Commit the previous two edits to GitHub.
+
+1. In the **release** branch you created, edit the file `_data/istio.yml`. Set the `preliminary` field to `false`.
+
+1. Commit the previous edit to GitHub.
+
+1. Go to the Google Search Console and create a new search engine that searches the archive.istio.io/V<major>.<minor>
+directory. This search engine will be used to perform version-specific searches on archive.istio.io.
+
+1. In the **previous release's** branch (in this case release-0.6), edit the file `_data/istio.yml`. Set the
+`archive` field to true, the `archive_date` field to the current date, and the `search_engine_id` field
+to the ID of the search engine you created in the prior step.
+
+1. Switch to the istio/admin-sites repo.
+
+1. Navigate to the archive.istio.io directory.
+
+1. Edit the `build.sh` script to add the newest archive version (in this case
+release-0.6) to the `TOBUILD` variable.
+
+1. Commit the previous edit to GitHub.
+
+1. Run the `build.sh` script.
+
+1. Once the script completes, run `firebase deploy`. This will update archive.istio.io to contain the
+right set of archives, based on the above steps.
+
+1. Navigate to the current.istio.io directory.
+
+1. Edit the `build.sh` script to set the `BRANCH` variable to the current release branch (in this case release-0.7)
+
+1. Run the `build.sh` script.
+
+1. Once the script completes, run 'firebase deploy`. This will update the content of istio.io to reflect what is the new release
+branch you created.
+
+Once all this is done, browse the three sites (preliminary.istio.io, istio.io, and archive.istio.io) to make sure
+everything looks good.
diff --git a/Rakefile b/Rakefile
index 3582bd8fc57a1..3cfb235b8ea97 100644
--- a/Rakefile
+++ b/Rakefile
@@ -1,7 +1,9 @@
require 'html-proofer'
task :test do
- sh "bundle exec jekyll build --incremental"
+ sh "rm -fr _rakesite"
+ sh "mkdir _rakesite"
+ sh "bundle exec jekyll build --config _config.yml,_rake_config_override.yml"
typhoeus_configuration = {
:timeout => 30,
# :verbose => true
@@ -17,5 +19,5 @@ task :test do
:url_ignore => [/localhost|github\.com\/istio\/istio\.github\.io\/edit\/master\//],
:typhoeus => typhoeus_configuration,
}
- HTMLProofer.check_directory("./_site", options).run
+ HTMLProofer.check_directory("./_rakesite", options).run
end
diff --git a/_about/contribute/creating-a-pull-request.md b/_about/contribute/creating-a-pull-request.md
index 8c05dc8c67660..59b0eebf86976 100644
--- a/_about/contribute/creating-a-pull-request.md
+++ b/_about/contribute/creating-a-pull-request.md
@@ -1,23 +1,21 @@
---
title: Creating a Pull Request
-overview: Shows you how to create a GitHub pull request in order to submit your docs for approval.
+description: Shows you how to create a GitHub pull request in order to submit your docs for approval.
-order: 20
+weight: 20
-layout: about
-type: markdown
redirect_from: /docs/welcome/contribute/creating-a-pull-request.html
---
To contribute to Istio documentation, create a pull request against the
-[istio/istio.github.io](https://github.com/istio/istio.github.io){: target="_blank"}
+[istio/istio.github.io](https://github.com/istio/istio.github.io)
repository. This page shows the steps necessary to create a pull request.
## Before you begin
-1. Create a [GitHub account](https://github.com){: target="_blank"}.
+1. Create a [GitHub account](https://github.com).
-1. Sign the [Contributor License Agreement](https://github.com/istio/community/blob/master/CONTRIBUTING.md#contributor-license-agreements)
+1. Sign the [Contributor License Agreement](https://github.com/istio/community/blob/master/CONTRIBUTING.md#contributor-license-agreements).
Documentation will be published under the [Apache 2.0](https://github.com/istio/istio.github.io/blob/master/LICENSE) license.
@@ -26,7 +24,7 @@ Documentation will be published under the [Apache 2.0](https://github.com/istio/
Before you can edit documentation, you need to create a fork of Istio's documentation GitHub repository:
1. Go to the
-[istio/istio.github.io](https://github.com/istio/istio.github.io){: target="_blank"}
+[istio/istio.github.io](https://github.com/istio/istio.github.io)
repository.
1. In the upper-right corner, click **Fork**. This creates a copy of Istio's
@@ -57,3 +55,6 @@ repository. This opens a page that shows the status of your pull request.
1. During the next few days, check your pull request for reviewer comments.
If needed, revise your pull request by committing changes to your
new branch in your fork.
+
+> Once your changes have been committed, they will show up immediately on [preliminary.istio.io](https://preliminary.istio.io), but
+will only show up on [istio.io](http://istio.io) the next time we produce a new release, which happens around once a month.
diff --git a/_about/contribute/editing.md b/_about/contribute/editing.md
index 78eaa56d8d10c..28d7b8fbab598 100644
--- a/_about/contribute/editing.md
+++ b/_about/contribute/editing.md
@@ -1,17 +1,18 @@
---
title: Editing Docs
-overview: Lets you start editing this site's documentation.
-
-order: 10
+description: Lets you start editing this site's documentation.
+
+weight: 10
-layout: about
-type: markdown
redirect_from: /docs/welcome/contribute/editing.html
---
Click the button below to visit the GitHub repository for this whole web site. You can then click the
-**Fork** button in the upper-right area of the screen to
+**Fork** button in the upper-right area of the screen to
create a copy of our site in your GitHub account called a _fork_. Make any changes you want in your fork, and when you
are ready to send those changes to us, go to the index page for your fork and click **New Pull Request** to let us know about it.
Browse this site's source code
+
+> Once your changes have been committed, they will show up immediately on [preliminary.istio.io](https://preliminary.istio.io), but
+will only show up on [istio.io](http://istio.io) the next time we produce a new release, which happens around once a month.
diff --git a/_about/contribute/index.md b/_about/contribute/index.md
index 7a81d0c780592..16c808dc5be06 100644
--- a/_about/contribute/index.md
+++ b/_about/contribute/index.md
@@ -1,13 +1,11 @@
---
title: Contributing to the Docs
-overview: Learn how to contribute to improve and expand the Istio documentation.
+description: Learn how to contribute to improve and expand the Istio documentation.
-order: 100
+weight: 100
-layout: about
-type: markdown
toc: false
redirect_from: /docs/welcome/contribute/index.html
---
-{% include section-index.html docs=site.docs %}
+{% include section-index.html docs=site.about %}
diff --git a/_about/contribute/reviewing-doc-issues.md b/_about/contribute/reviewing-doc-issues.md
index f1d17af5928b7..5c2ef7df21bf5 100644
--- a/_about/contribute/reviewing-doc-issues.md
+++ b/_about/contribute/reviewing-doc-issues.md
@@ -1,16 +1,14 @@
---
title: Doc Issues
-overview: Explains the process involved in accepting documentation updates.
-
-order: 60
+description: Explains the process involved in accepting documentation updates.
+
+weight: 60
-layout: about
-type: markdown
redirect_from: /docs/welcome/contribute/reviewing-doc-issues.html
---
This page explains how documentation issues are reviewed and prioritized for the
-[istio/istio.github.io](https://github.com/istio/istio.github.io){: target="_blank"} repository.
+[istio/istio.github.io](https://github.com/istio/istio.github.io) repository.
The purpose is to provide a way to organize issues and make it easier to contribute to
Istio documentation. The following should be used as the standard way of prioritizing,
labeling, and interacting with issues.
@@ -25,7 +23,7 @@ the issue with your reasoning for the change.
P1 |
- Major content errors affecting more than 1 page
- - Broken code sample on a heavily trafficked page
+ - Broken code sample on a heavily trafficked page
- Errors on a “getting started” page
- Well known or highly publicized customer pain points
- Automation issues
@@ -52,7 +50,7 @@ the issue with your reasoning for the change.
## Handling special issue types
-If a single problem has one or more issues open for it, the problem should be consolidated into a single issue. You should decide which issue to keep open
+If a single problem has one or more issues open for it, the problem should be consolidated into a single issue. You should decide which issue to keep open
(or open a new issue), port over all relevant information, link related issues, and close all the other issues that describe the same problem. Only having
a single issue to work on will help reduce confusion and avoid duplicating work on the same problem.
diff --git a/_about/contribute/staging-your-changes.md b/_about/contribute/staging-your-changes.md
index 7e56e0e5dee40..92b95be05d2f6 100644
--- a/_about/contribute/staging-your-changes.md
+++ b/_about/contribute/staging-your-changes.md
@@ -1,11 +1,9 @@
---
title: Staging Your Changes
-overview: Explains how to test your changes locally before submitting them.
+description: Explains how to test your changes locally before submitting them.
-order: 40
+weight: 40
-layout: about
-type: markdown
redirect_from: /docs/welcome/contribute/staging-your-changes.html
---
diff --git a/_about/contribute/style-guide.md b/_about/contribute/style-guide.md
index 83f27e3d4542b..b842769742991 100644
--- a/_about/contribute/style-guide.md
+++ b/_about/contribute/style-guide.md
@@ -1,11 +1,9 @@
---
title: Style Guide
-overview: Explains the dos and donts of writing Istio docs.
-
-order: 70
+description: Explains the dos and donts of writing Istio docs.
+
+weight: 70
-layout: about
-type: markdown
redirect_from: /docs/welcome/contribute/style-guide.html
---
@@ -29,18 +27,18 @@ objects use
[camelCase](https://en.wikipedia.org/wiki/Camel_case).
Don't split the API object name into separate words. For example, use
-PodTemplateList, not Pod Template List.
+`PodTemplateList`, not Pod Template List.
Refer to API objects without saying "object," unless omitting "object"
leads to an awkward construction.
|Do |Don't
|--------------------------------------------|------
-|The Pod has two Containers. |The pod has two containers.
-|The Deployment is responsible for ... |The Deployment object is responsible for ...
-|A PodList is a list of Pods. |A Pod List is a list of pods.
-|The two ContainerPorts ... |The two ContainerPort objects ...
-|The two ContainerStateTerminated objects ...|The two ContainerStateTerminateds ...
+|The `Pod` has two Containers. |The pod has two containers.
+|The `Deployment` is responsible for ... |The `Deployment` object is responsible for ...
+|A `PodList` is a list of Pods. |A Pod List is a list of pods.
+|The two `ContainerPorts` ... |The two `ContainerPort` objects ...
+|The two `ContainerStateTerminated` objects ...|The two `ContainerStateTerminated` ...
### Use angle brackets for placeholders
@@ -49,10 +47,10 @@ represents.
1. Display information about a pod:
- ```bash
- kubectl describe pod
+ ```command
+ $ kubectl describe pod
```
-
+
where `` is the name of one of your pods.
### Use **bold** for user interface elements
@@ -81,7 +79,7 @@ represents.
|Do | Don't
|----------------------------|------
-|The `kubectl run` command creates a Deployment.|The "kubectl run" command creates a Deployment.
+|The `kubectl run` command creates a `Deployment`.|The "kubectl run" command creates a `Deployment`.
|For declarative management, use `kubectl apply`.|For declarative management, use "kubectl apply".
### Use `code` style for object field names
@@ -97,19 +95,20 @@ For field values of type string or integer, use normal style without quotation m
|Do | Don't
|----------------------------------------------|------
-|Set the value of `imagePullPolicy` to Always. | Set the value of `imagePullPolicy` to "Always".|Set the value of `image` to nginx:1.8. | Set the value of `image` to `nginx:1.8`.
+|Set the value of `imagePullPolicy` to Always. | Set the value of `imagePullPolicy` to "Always".
+|Set the value of `image` to nginx:1.8. | Set the value of `image` to `nginx:1.8`.
|Set the value of the `replicas` field to 2. | Set the value of the `replicas` field to `2`.
### Only capitalize the first letter of headings
For any headings, only apply an uppercase letter to the first word of the heading,
-except is a word is a proper noun or an acronym.
+except if a word is a proper noun or an acronym.
|Do | Don't
|------------------------|-----
|Configuring rate limits | Configuring Rate Limits
|Using Envoy for ingress | Using envoy for ingress
-|Using HTTPS | Using https
+|Using HTTPS | Using https
## Code snippet formatting
@@ -123,12 +122,8 @@ except is a word is a proper noun or an acronym.
Verify that the pod is running on your chosen node:
-```bash
-kubectl get pods --output=wide
-```
-The output is similar to this:
-
-```bash
+```command
+$ kubectl get pods --output=wide
NAME READY STATUS RESTARTS AGE IP NODE
nginx 1/1 Running 0 13s 10.200.0.4 worker0
```
@@ -150,7 +145,7 @@ Synonyms:
- “Sidecar” -- mostly restricted to conceptual docs
- “Proxy -- only if context is obvious
-Related Terms
+Related Terms:
- Proxy agent - This is a minor infrastructural component and should only show up in low-level detail documentation.
It is not a proper noun.
@@ -171,7 +166,7 @@ forms of configuration.
No dash, it's *load balancing* not *load-balancing*.
-### Service mesh
+### Service mesh
Not a proper noun. Use in place of service fabric.
@@ -208,7 +203,7 @@ Use simple and direct language. Avoid using unnecessary phrases, such as saying
|Do | Don't
|----------------------------|------
-|To create a ReplicaSet, ... | In order to create a ReplicaSet, ...
+|To create a `ReplicaSet`, ... | In order to create a `ReplicaSet`, ...
|See the configuration file. | Please see the configuration file.
|View the Pods. | With this next command, we'll view the Pods.
@@ -216,9 +211,17 @@ Use simple and direct language. Avoid using unnecessary phrases, such as saying
|Do | Don't
|---------------------------------------|------
-|You can create a Deployment by ... | We'll create a Deployment by ...
+|You can create a `Deployment` by ... | We'll create a `Deployment` by ...
|In the preceding output, you can see...| In the preceding output, we can see ...
+### Create useful links
+
+There are good hyperlinks, and bad hyperlinks. The common practice of calling links *here* or *click here* are examples of
+bad hyperlinks. Check out this excellent article explaining what makes a good hyperlink and try to keep these guidelines in
+mind when creating or reviewing site content.
+
+[Why “click here” is a terrible link, and what to write instead](http://stephanieleary.com/2015/05/why-click-here-is-a-terrible-link-and-what-to-write-instead/).
+
## Patterns to avoid
### Avoid using "we"
@@ -229,7 +232,7 @@ whether they're part of the "we" you're describing.
|Do | Don't
|------------------------------------------|------
|Version 1.4 includes ... | In version 1.4, we have added ...
-|Kubernetes provides a new feature for ... | We provide a new feature ...
+|Istio provides a new feature for ... | We provide a new feature ...
|This page teaches you how to use pods. | In this page, we are going to learn about pods.
### Avoid jargon and idioms
diff --git a/_about/contribute/writing-a-new-topic.md b/_about/contribute/writing-a-new-topic.md
index e5bd8e540d0ce..4e4b7cc0f744f 100644
--- a/_about/contribute/writing-a-new-topic.md
+++ b/_about/contribute/writing-a-new-topic.md
@@ -1,11 +1,9 @@
---
title: Writing a New Topic
-overview: Explains the mechanics of creating new documentation pages.
-
-order: 30
+description: Explains the mechanics of creating new documentation pages.
+
+weight: 30
-layout: about
-type: markdown
redirect_from: /docs/welcome/contribute/writing-a-new-topic.html
---
{% include home.html %}
@@ -25,7 +23,7 @@ is the best fit for your content:
| Concept |
- A concept page explains some significant aspect of Istio. For example, a concept page might describe the
+ | A concept page explains some significant aspect of Istio. For example, a concept page might describe the
Mixer's configuration model and explain some of its subtleties.
Typically, concept pages don't include sequences of steps, but instead provide links to
tasks that do. |
@@ -55,10 +53,10 @@ is the best fit for your content:
| Setup |
A setup page is similar to a task page, except that it is focused on installation
- ectivities.
+ activities.
|
-
+
| Blog Post |
@@ -79,50 +77,47 @@ all in lower case.
## Updating the front matter
-Every documentation file needs to start with Jekyll
+Every documentation file needs to start with Jekyll
[front matter](https://jekyllrb.com/docs/frontmatter/).
The front matter is a block of YAML that is between the
triple-dashed lines at the top of each file. Here's the
chunk of front matter you should start with:
-```
+```yaml
---
title:
-overview: <overview>
-
-order: <order>
-
-layout: docs
-type: markdown
+description: <overview>
+weight: <order>
---
```
Copy the above at the start of your new markdown file and update
-the `<title>`, `<overview>` and `<order>` fields for your particular file. The available front
+the `<title>`, `<description>` and `<weight>` fields for your particular file. The available front
matter fields are:
|Field | Description
|---------------|------------
|`title` | The short title of the page
-|`overview` | A one-line description of what the topic is about
-|`order` | An integer used to determine the sort order of this page relative to other pages in the same directory.
+|`description` | A one-line description of what the topic is about
+|`weight` | An integer used to determine the sort order of this page relative to other pages in the same directory.
|`layout` | Indicates which of the Jekyll layouts this page uses
-|`index` | Indicates whether the page should appear in the doc's top nav tabs
-|`draft` | When true, prevents the page from shownig up in any navigation area
-|`publish_date` | For blog posts, indicates the date of publication of the post
+|`draft` | When true, prevents the page from showing up in any navigation area
+|`publishdate` | For blog posts, indicates the date of publication of the post
|`subtitle` | For blog posts, supplies an optional subtitle to be displayed below the main title
|`attribution` | For blog posts, supplies an optional author's name
+|`toc` | Set this to false to prevent the page from having a table of contents generated for it
+|`force_inline_toc` | Set this to true to force the generated table of contents from being inserted inline in the text instead of in a sidebar
## Choosing a directory
Depending on your page type, put your new file in a subdirectory of one of these:
-* _blog/
-* _docs/concepts/
-* _docs/guides/
-* _docs/reference/
-* _docs/setup/
-* _docs/tasks/
+- _blog/
+- _docs/concepts/
+- _docs/guides/
+- _docs/reference/
+- _docs/setup/
+- _docs/tasks/
You can put your file in an existing subdirectory, or you can create a new
subdirectory. For blog posts, put the file into a subdirectory for the current
@@ -135,24 +130,28 @@ Put image files in an `img` subdirectory of where you put your markdown file. Th
If you must use a PNG or JPEG file instead, and the file
was generated from an original SVG file, please include the
SVG file in the repository even if it isn't used in the web
-site itself. This is so we can update the imagery over time
+site itself. This is so we can update the imagery over time
if needed.
Within markdown, use the following sequence to add the image:
```html
{% raw %}
-{% include figure.html width='75%' ratio='69.52%'
- img='./img/myfile.svg'
- alt='Alternate text to display when the image is not available'
- title='A tooltip displayed when hovering over the image'
- caption='A caption displayed under the image'
+{% include image.html width="75%" ratio="69.52%"
+ link="./img/myfile.svg"
+ alt="Alternate text to display when the image is not available"
+ title="A tooltip displayed when hovering over the image"
+ caption="A caption displayed under the image"
%}
{% endraw %}
```
-You need to fill in all the values. The width represents the percentage of space used by the image
-relative to the surrounding text. The ratio is (image height / image width) * 100.
+The `width`, `ratio`, `link` and `caption` values are required. If the `title` value isn't
+supplied, it'll default to the same as `caption`. If the `alt` value is not supplied, it'll
+default to `title` or if that's not defined, to `caption`.
+
+`width` represents the percentage of space used by the image
+relative to the surrounding text. `ratio` (image height / image width) * 100.
## Linking to other pages
@@ -181,10 +180,10 @@ current hierarchy:
{% raw %}[see here]({{home}}/docs/adir/afile.html){% endraw %}
```
- In order to use \{\{home\}\} in a file,
+ In order to use \{\{home\}\} in a file,
you need to make sure that the file contains the following
line of boilerplate right after the block of front matter:
-
+
```markdown
...
---
@@ -197,7 +196,7 @@ current hierarchy:
You can embed blocks of preformatted content using the normal markdown technique:
-<pre class="language-markdown"><code>```
+<pre class="language-markdown"><code>```plain
func HelloWorld() {
fmt.Println("Hello World")
}
@@ -206,14 +205,14 @@ func HelloWorld() {
The above produces this kind of output:
-```
+```plain
func HelloWorld() {
fmt.Println("Hello World")
}
```
-In general, you should indicate the nature of the content in the preformatted block. You do this
-by appending a name after the initial set of tick marks
+You must indicate the nature of the content in the preformatted block by appending a name after the initial set of tick
+marks:
<pre class="language-markdown"><code>```go
func HelloWorld() {
@@ -230,8 +229,76 @@ func HelloWorld() {
}
```
-You can use `markdown`, `yaml`, `json`, `java`, `javascript`, `c`, `cpp`, `csharp`, `go`, `html`, `protobuf`,
-`perl`, `docker`, and `bash`.
+You can use `markdown`, `yaml`, `json`, `java`, `javascript`, `c`, `cpp`, `csharp`, `go`, `html`, `protobuf`,
+`perl`, `docker`, and `bash`, along with `command` and its variants described below.
+
+### Showing commands and command output
+
+If you want to show one or more bash command-lines with some output, you use the `command` indicator:
+
+<pre class="language-markdown"><code>```command
+$ echo "Hello"
+Hello
+```
+</code></pre>
+
+which produces:
+
+```command
+$ echo "Hello"
+Hello
+```
+
+You can have as many command-lines as you want, but only one chunk of output is recognized.
+
+<pre class="language-markdown"><code>```command
+$ echo "Hello" >file.txt
+$ cat file.txt
+Hello
+```
+</code></pre>
+
+which yields:
+
+```command
+$ echo "Hello" >file.txt
+$ cat file.txt
+Hello
+```
+
+You can also use line continuation in your command-lines:
+
+```command
+$ echo "Hello" \
+ >file.txt
+$ echo "There" >>file.txt
+$ cat file.txt
+Hello
+There
+```
+
+If the output is the command is JSON or YAML, you can use `command-output-as-json` and `command-output-as-yaml`
+instead of merely `command` in order to apply syntax coloring to the command's output.
+
+## Displaying file content
+
+You can pull in an external file and display its content as a preformatted block. This is handy to display a
+config file or a test file. To do so, you use a Jekyll include statement such as:
+
+```html
+{% raw %}{% include file-content.html url='https://raw.githubusercontent.com/istio/istio/master/Makefile' %}{% endraw %}
+```
+
+which produces the following result:
+
+{% include file-content.html url='https://raw.githubusercontent.com/istio/istio/master/Makefile' %}
+
+If the file is from a different origin site, CORS should be enabled on that site. Note that the
+GitHub raw content site (raw.githubusercontent.com) is CORS
+enabled so it may be used here.
+
+Note that unlike normal preformatted blocks, dynamically loaded preformatted blocks unfortunately
+do not get syntax colored.
## Adding redirects
@@ -241,44 +308,40 @@ redirects to the site very easily.
In the page that is the target of the redirect (where you'd like users to land), you simply add the
following to the front-matter:
-```
+```plain
redirect_from: <url>
```
For example
-```
+```plain
---
-title: Frequantly Asked Questions
-overview: Questions Asked Frequently
+title: Frequently Asked Questions
+description: Questions Asked Frequently
-order: 12
+weight: 12
-layout: docs
-type: markdown
redirect_from: /faq
---
-```
+```
With the above in a page saved as _help/faq.md, the user will be able to access the page by going
to istio.io/help/faq as normal, as well as istio.io/faq.
You can also add many redirects like so:
-
-```
+
+```plain
---
-title: Frequantly Asked Questions
-overview: Questions Asked Frequently
+title: Frequently Asked Questions
+description: Questions Asked Frequently
-order: 12
+weight: 12
-layout: docs
-type: markdown
redirect_from:
- /faq
- /faq2
- /faq3
---
-```
+```
diff --git a/_about/feature-stages.md b/_about/feature-stages.md
index 5e0d73f1534db..cb7b1934dea89 100644
--- a/_about/feature-stages.md
+++ b/_about/feature-stages.md
@@ -1,11 +1,9 @@
---
title: Feature Status
-overview: List of features and their release stages.
+description: List of features and their release stages.
-order: 10
+weight: 10
-layout: about
-type: markdown
redirect_from:
- "/docs/reference/release-roadmap.html"
- "/docs/reference/feature-stages.html"
@@ -13,28 +11,26 @@ redirect_from:
---
{% include home.html %}
-Starting with 0.3, Istio releases are delivered on a monthly cadence. You can download the current version by visiting our
-[release page](https://github.com/istio/istio/releases).
-
-Please note that the phases (alpha, beta, and stable) are applied to individual features
+This page lists the relative maturity and support
+level of every Istio feature. Please note that the phases (Alpha, Beta, and Stable) are applied to individual features
within the project, not to the project as a whole. Here is a high level description of what these labels means:
-## Feature Phase Definition
+## Feature phase definitions
-| | Alpha | Beta | Stable
+| | Alpha | Beta | Stable
|-------------------|-------------------|-------------------|-------------------
-| **Purpose** | Demo-able, works end-to-end but has limitations | Usable in production, not a toy anymore | Dependable, production hardened
+| **Purpose** | Demo-able, works end-to-end but has limitations | Usable in production, not a toy anymore | Dependable, production hardened
| **API** | No guarantees on backward compatibility | APIs are versioned | Dependable, production-worthy. APIs are versioned, with automated version conversion for backward compatibility
-| **Performance** | Not quantified or guaranteed | Not quantified or guaranteed | Perf (latency/scale) is quantified, documented, with guarantees against regression
+| **Performance** | Not quantified or guaranteed | Not quantified or guaranteed | Performance (latency/scale) is quantified, documented, with guarantees against regression
| **Deprecation Policy** | None | Weak - 3 months | Dependable, Firm. 1 year notice will be provided before changes
## Istio features
Below is our list of existing features and their current phases. This information will be updated after every monthly release.
-### Traffic Management
+### Traffic management
-| Feature | Phase
+| Feature | Phase
|-------------------|-------------------
| [Protocols: HTTP 1.1](https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overview/http_connection_management.html#http-protocols) | Beta
| [Protocols: HTTP 2.0](https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overview/http_connection_management.html#http-protocols) | Alpha
@@ -47,60 +43,63 @@ Below is our list of existing features and their current phases. This informatio
| [Routing Rules: Circuit Break]({{home}}/docs/tasks/traffic-management/request-routing.html) | Alpha
| [Routing Rules: Header Rewrite]({{home}}/docs/tasks/traffic-management/request-routing.html) | Alpha
| [Routing Rules: Traffic Splitting]({{home}}/docs/tasks/traffic-management/request-routing.html) | Alpha
-| [Memquota Implementation and Integration]({{home}}/docs/tasks/telemetry/metrics-logs.html) | Alpha
+| Improved Routing Rules: Composite Service | Alpha
+| [Quota / Redis Rate Limiting (Adapter and Server)]({{home}}/docs/tasks/policy-enforcement/rate-limiting.html) | Alpha
+| [Memquota Implementation and Integration]({{home}}/docs/tasks/telemetry/metrics-logs.html) | Stable
| [Ingress TLS]({{home}}/docs/tasks/traffic-management/ingress.html) | Alpha
+| Egress Policy and Telemetry | Alpha
### Observability
-
-| Feature | Phase
+| Feature | Phase
|-------------------|-------------------
-| [Prometheus Integration]({{home}}/docs/guides/telemetry.html) | Beta
-| [Local Logging (STDIO)]({{home}}/docs/guides/telemetry.html) | Beta
-| [Statsd Integration]({{home}}/docs/reference/config/adapters/statsd.html) | Stable
-| [Service Dashboard in Grafana]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html) | Beta
-| [Stackdriver Integration]({{home}}/docs/reference/config/adapters/stackdriver.html) | Alpha
-| [Service Graph]({{home}}/docs/tasks/telemetry/servicegraph.html) | Alpha
-| [Distributed Tracing to Zipkin / Jaeger]({{home}}/docs/tasks/telemetry/distributed-tracing.html) | Alpha
-| [Istio Component Dashboard in Grafana]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html) - **New to 0.5** | Alpha
-
+| [Prometheus Integration]({{home}}/docs/guides/telemetry.html) | Beta
+| [Local Logging (STDIO)]({{home}}/docs/guides/telemetry.html) | Stable
+| [Statsd Integration]({{home}}/docs/reference/config/adapters/statsd.html) | Stable
+| [Service Dashboard in Grafana]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html) | Beta
+| [Stackdriver Integration]({{home}}/docs/reference/config/adapters/stackdriver.html) | Alpha
+| [Service Graph]({{home}}/docs/tasks/telemetry/servicegraph.html) | Alpha
+| [Distributed Tracing to Zipkin / Jaeger]({{home}}/docs/tasks/telemetry/distributed-tracing.html) | Alpha
+| [Istio Component Dashboard in Grafana]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html) | Beta
+| Service Tracing | Alpha
### Security
-
-| Feature | Phase
+| Feature | Phase
|-------------------|-------------------
-| [Deny Checker]({{home}}/docs/reference/config/adapters/denier.html) | Beta
-| [List Checker]({{home}}/docs/reference/config/adapters/list.html) | Beta
-| [Kubernetes: Service Credential Distribution]({{home}}/docs/concepts/security/mutual-tls.html) | Beta
+| [Deny Checker]({{home}}/docs/reference/config/adapters/denier.html) | Stable
+| [List Checker]({{home}}/docs/reference/config/adapters/list.html) | Stable
+| [Kubernetes: Service Credential Distribution]({{home}}/docs/concepts/security/mutual-tls.html) | Stable
| [Pluggable Key/Cert Support for Istio CA]({{home}}/docs/tasks/security/plugin-ca-cert.html) | Stable
-| [Service-to-service mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) | Beta
+| [Service-to-service mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) | Stable
| [Incremental Enablement of service-to-service mutual TLS]({{home}}/docs/tasks/security/per-service-mtls.html) | Alpha
| [VM: Service Credential Distribution]({{home}}/docs/concepts/security/mutual-tls.html) | Alpha
| [OPA Checker](https://github.com/istio/istio/blob/41a8aa4f75f31bf0c1911d844a18da4cff8ac584/mixer/adapter/opa/README.md) | Alpha
-
-
+| RBAC Mixer Adapter | Alpha
+| API Keys | Alpha
### Core
-
-| Feature | Phase
+| Feature | Phase
|-------------------|-------------------
| [Kubernetes: Envoy Installation and Traffic Interception]({{home}}/docs/setup/kubernetes/) | Beta
| [Kubernetes: Istio Control Plane Installation]({{home}}/docs/setup/kubernetes/) | Beta
| [Pilot Integration into Kubernetes Service Discovery]({{home}}/docs/setup/kubernetes/) | Stable
-| [Attribute Expression Language]({{home}}/docs/reference/config/mixer/expression-language.html) | Beta
-| [Mixer Adapter Authoring Model]({{home}}/blog/2017/adapter-model.html) | Beta
+| [Attribute Expression Language]({{home}}/docs/reference/config/mixer/expression-language.html) | Stable
+| [Mixer Adapter Authoring Model]({{home}}/blog/2017/adapter-model.html) | Stable
| [VM: Envoy Installation, Traffic Interception and Service Registration]({{home}}/docs/guides/integrating-vms.html) | Alpha
| [VM: Istio Control Plane Installation and Upgrade (Galley, Mixer, Pilot, CA)](https://github.com/istio/istio/issues/2083) | Alpha
-| [Kubernetes: Istio Control Plane Upgrade]({{home}}/docs/setup/kubernetes/) | Alpha
-| [Pilot Integration into Consul]({{home}}/docs/setup/consul/quick-start.html) | Alpha
-| [Pilot Integration into Eureka]({{home}}/docs/setup/consul/quick-start.html) | Alpha
+| VM: Ansible Envoy Installation, Interception and Registration | Alpha
+| [Kubernetes: Istio Control Plane Upgrade]({{home}}/docs/setup/kubernetes/) | Beta
+| [Pilot Integration into Consul]({{home}}/docs/setup/consul/quick-start.html) | Alpha
+| [Pilot Integration into Eureka]({{home}}/docs/setup/consul/quick-start.html) | Alpha
| [Pilot Integration into Cloud Foundry Service Discovery]({{home}}/docs/setup/consul/quick-start.html) | Alpha
-| [Basic Config Resource Validation](https://github.com/istio/istio/issues/1894) | Alpha
-
-
-
+| [Basic Config Resource Validation](https://github.com/istio/istio/issues/1894) | Alpha
+| Mixer Telemetry Collection (Tracing, Logging, Monitoring) | Alpha
+| Custom Mixer Build Model | Alpha
+| Enable API attributes using an IDL | Alpha
+| [Helm]({{home}}/docs/setup/kubernetes/helm-install.html) | Alpha
+| [Multicluster Mesh]({{home}}/docs/setup/kubernetes/multicluster-install.html) | Alpha
> <img src="{{home}}/img/bulb.svg" alt="Bulb" title="Help" style="width: 32px; display:inline" />
-Please get in touch by joining our [community]({{home}}/community) if there are features you'd like to see in our future releases!
+Please get in touch by joining our [community]({{home}}/community.html) if there are features you'd like to see in our future releases!
diff --git a/_about/index.md b/_about/index.md
index bc5acba7ed98a..d0410be0c0db7 100644
--- a/_about/index.md
+++ b/_about/index.md
@@ -1,12 +1,20 @@
---
title: About Istio
-overview: All about Istio.
+description: All about Istio.
-order: 15
+weight: 15
-layout: about
-type: markdown
toc: false
---
+{% include home.html %}
-{% include section-index.html docs=site.about %}
+Get a bit more in-depth info about the Istio project.
+
+- [What is Istio?]({{home}}/about/intro.html). Get some context about what problems Istio is designed to solve.
+
+- [Release Notes]({{home}}/about/notes/). Learn about the latest features, improvements, and bug fixes.
+
+- [Feature Status]({{home}}/about/feature-stages.html). Get a detailed list of Istio's individual features and their relative
+maturity and support level.
+
+- [Contributing to the Docs]({{home}}/about/contribute/). Learn how you can help contribute to improve Istio's documentation.
diff --git a/_about/intro.md b/_about/intro.md
index 658c44e69fd7c..0c8197f6cc57a 100644
--- a/_about/intro.md
+++ b/_about/intro.md
@@ -1,13 +1,10 @@
---
title: What is Istio?
-overview: Context about what problems Istio is designed to solve.
+description: Context about what problems Istio is designed to solve.
-order: 0
+weight: 1
-layout: about
-type: markdown
toc: false
-redirect_from: /about.html
---
Istio is an open platform that provides a uniform way to connect, manage,
@@ -26,11 +23,11 @@ rate limits and quotas.
- Automatic metrics, logs, and traces for all traffic within a cluster,
including cluster ingress and egress.
-- Secure service-to-service authentication with strong identity assertions
-between services in a cluster.
+- Secure service-to-service communication in a cluster with strong
+identity-based authentication and authorization.
Istio can be deployed on [Kubernetes](https://kubernetes.io),
[Nomad](https://nomadproject.io) with [Consul](https://www.consul.io/). We
plan to add support for additional platforms such as
[Cloud Foundry](https://www.cloudfoundry.org/),
-and [Apache Mesos](http://mesos.apache.org/) in the near future.
+and [Apache Mesos](https://mesos.apache.org/) in the near future.
diff --git a/_about/notes/0.1.md b/_about/notes/0.1.md
index 8c21c7494438c..fda82fa1c6fbf 100644
--- a/_about/notes/0.1.md
+++ b/_about/notes/0.1.md
@@ -1,10 +1,8 @@
---
title: Istio 0.1
-order: 100
+weight: 100
-layout: about
-type: markdown
toc: false
redirect_from: /docs/welcome/notes/0.1.html
---
diff --git a/_about/notes/0.2.md b/_about/notes/0.2.md
index dd8f907a4d0f3..5271b83fe6e5b 100644
--- a/_about/notes/0.2.md
+++ b/_about/notes/0.2.md
@@ -1,43 +1,43 @@
---
title: Istio 0.2
-order: 99
+weight: 99
-layout: about
-type: markdown
redirect_from: /docs/welcome/notes/0.2.html
---
## General
- **Updated Config Model**. Istio now uses the Kubernetes [Custom Resource](https://kubernetes.io/docs/concepts/api-extension/custom-resources/)
-model to describe and store its configuration. When running in Kubernetes, configuration can now be optionally managed using the `kubectl`
+model to describe and store its configuration. When running in Kubernetes, configuration can now be optionally managed using the `kubectl`
command.
-- **Multiple Namespace Support**. Istio control plane components are now in the dedicated "istio-system" namespace. Istio can manage
+- **Multiple Namespace Support**. Istio control plane components are now in the dedicated "istio-system" namespace. Istio can manage
services in other non-system namespaces.
- **Mesh Expansion**. Initial support for adding non-Kubernetes services (in the form of VMs and/or physical machines) to a mesh. This is an early version of
this feature and has some limitations (such as requiring a flat network across containers and VMs).
-- **Multi-Environment Support**. Initial support for using Istio in conjunction with other service registries
-including Consul and Eureka.
+- **Multi-Environment Support**. Initial support for using Istio in conjunction with other service registries
+including Consul and Eureka.
-- **Automatic injection of sidecars**. Istio sidecar can automatically be injected into a Pod upon deployment using the [Initializers](https://kubernetes.io/docs/admin/extensible-admission-controllers/#what-are-initializers) alpha feature in Kubernetes.
+- **Automatic injection of sidecars**. Istio sidecar can automatically be injected into a Pod upon deployment using the
+[Initializers](https://kubernetes.io/docs/admin/extensible-admission-controllers/#what-are-initializers) alpha feature in Kubernetes.
-## Perf and quality
+## Performance and quality
-There have been many performance and reliability improvements throughout the system. We don’t consider Istio 0.2 ready for production yet, but we’ve made excellent progress in that direction. Here are a few items of note:
+There have been many performance and reliability improvements throughout the system. We don’t consider Istio 0.2 ready for production yet, but
+we’ve made excellent progress in that direction. Here are a few items of note:
-- **Caching Client**. The Mixer client library used by Envoy now provides caching for Check calls and batching for Report calls, considerably reducing
+- **Caching Client**. The Mixer client library used by Envoy now provides caching for Check calls and batching for Report calls, considerably reducing
end-to-end overhead.
- **Avoid Hot Restarts**. The need to hot-restart Envoy has been mostly eliminated through effective use of LDS/RDS/CDS/EDS.
- **Reduced Memory Use**. Significantly reduced the size of the sidecar helper agent, from 50Mb to 7Mb.
-- **Improved Mixer Latency**. Mixer now clearly delineates configuration-time vs. request-time computations, which avoids doing extra setup work at
-request-time for initial requests and thus delivers a smoother average latency. Better resource caching also contributes to better end-to-end perf.
+- **Improved Mixer Latency**. Mixer now clearly delineates configuration-time vs. request-time computations, which avoids doing extra setup work at
+request-time for initial requests and thus delivers a smoother average latency. Better resource caching also contributes to better end-to-end performance.
- **Reduced Latency for Egress Traffic**. We now forward traffic to external services directly from the sidecar.
@@ -55,15 +55,15 @@ Jaeger tracing.
- **Ingress Policies**. In addition to east-west traffic supported in 0.1. policies can now be applied to north-south traffic.
-- **Support for TCP Services**. In addition to the HTTP-level policy controls available in 0.1, 0.2 introduces policy controls for
+- **Support for TCP Services**. In addition to the HTTP-level policy controls available in 0.1, 0.2 introduces policy controls for
TCP services.
-- **New Mixer API**. The API that Envoy uses to interact with Mixer has been completely redesigned for increased robustness, flexibility, and to support
+- **New Mixer API**. The API that Envoy uses to interact with Mixer has been completely redesigned for increased robustness, flexibility, and to support
rich proxy-side caching and batching for increased performance.
-- **New Mixer Adapter Model**. A new adapter composition model makes it easier to extend Mixer by adding whole new classes of adapters via templates. This
+- **New Mixer Adapter Model**. A new adapter composition model makes it easier to extend Mixer by adding whole new classes of adapters via templates. This
new model will serve as the foundational building block for many features in the future. See the
-[Adapter Developer's Guide](https://github.com/istio/istio/blob/master/mixer/doc/adapters.md) to learn how
+[Adapter Developer's Guide](https://github.com/istio/istio/wiki/Mixer-Adapter-Dev-Guide) to learn how
to write adapters.
- **Improved Mixer Build Model**. It’s now easier to build a Mixer binary that includes custom adapters.
@@ -84,10 +84,15 @@ identity provisioning. This agent runs on each node (VM / physical machine) and
- **Bring Your Own CA Certificates**. Allows users to provide their own key and certificate for Istio CA.
- **Persistent CA Key/Certificate Storage**. Istio CA now stores signing key/certificates in
-persistent storage to facilitate CA restarts.
+persistent storage to facilitate CA restarts.
## Known issues
-- **User may get periodical 404 when accessing the application**: We have noticed that Envoy doesn't get routes properly occasionally thus a 404 is returned to the user. We are actively working on this [issue](https://github.com/istio/istio/issues/1038).
-- **Istio Ingress or Egress reports ready before Pilot is actually ready**: You can check the istio-ingress and istio-egress pods status in the `istio-system` namespace and wait a few seconds after all the Istio pods reach ready status. We are actively working on this [issue](https://github.com/istio/istio/pull/1055).
+- **User may get periodical 404 when accessing the application**: We have noticed that Envoy doesn't get routes properly occasionally
+thus a 404 is returned to the user. We are actively working on this [issue](https://github.com/istio/istio/issues/1038).
+
+- **Istio Ingress or Egress reports ready before Pilot is actually ready**: You can check the istio-ingress and istio-egress pods status
+in the `istio-system` namespace and wait a few seconds after all the Istio pods reach ready status. We are actively working on this
+[issue](https://github.com/istio/istio/pull/1055).
+
- **A service with Istio Auth enabled can't communicate with a service without Istio**: This limitation will be removed in the near future.
diff --git a/_about/notes/0.3.md b/_about/notes/0.3.md
index eb4162949b66d..524eb9c287c27 100644
--- a/_about/notes/0.3.md
+++ b/_about/notes/0.3.md
@@ -1,13 +1,13 @@
---
title: Istio 0.3
-order: 98
+weight: 98
-layout: about
-type: markdown
redirect_from: /docs/welcome/notes/0.3.html
---
+{% include home.html %}
+
## General
Starting with 0.3, Istio is switching to a monthly release cadence. We hope this will help accelerate our ability
@@ -40,6 +40,5 @@ significant drop in average latency for authorization checks.
- **Config Validation**. Mixer does more extensive validation of configuration state in order to catch problems earlier.
We expect to invest more in this area in coming releases.
-
If you're into the nitty-gritty details, you can see our more detailed low-level
release notes [here](https://github.com/istio/istio/wiki/v0.3.0).
diff --git a/_about/notes/0.4.md b/_about/notes/0.4.md
index dbf6f5bff80f9..668ca439c2327 100644
--- a/_about/notes/0.4.md
+++ b/_about/notes/0.4.md
@@ -1,17 +1,15 @@
---
title: Istio 0.4
-order: 97
+weight: 97
-layout: about
-type: markdown
toc: false
redirect_from: /docs/welcome/notes/0.4.html
---
{% include home.html %}
-This release has only got a few weeks' worth of changes, as we stabilize our monthly release process.
-In addition to the usual pile of bug fixes and perf improvements, this release includes:
+This release has only got a few weeks' worth of changes, as we stabilize our monthly release process.
+In addition to the usual pile of bug fixes and performance improvements, this release includes:
- **Cloud Foundry**. Added minimum Pilot support for the [Cloud Foundry](https://www.cloudfoundry.org) platform, making it
possible for Pilot to discover CF services and service instances.
diff --git a/_about/notes/0.5.md b/_about/notes/0.5.md
index c9872ebcd3481..7adb9f5be8216 100644
--- a/_about/notes/0.5.md
+++ b/_about/notes/0.5.md
@@ -1,14 +1,12 @@
---
title: Istio 0.5
-order: 96
+weight: 96
-layout: about
-type: markdown
---
{% include home.html %}
-In addition to the usual pile of bug fixes and perf improvements, this release includes the new or
+In addition to the usual pile of bug fixes and performance improvements, this release includes the new or
updated features detailed below.
## Networking
@@ -17,22 +15,24 @@ updated features detailed below.
the components you want (e.g, Pilot+Ingress only as the minimal Istio install). Refer to the `istioctl` CLI tool for generating a
information on customized Istio deployments.
-- **Automatic Proxy Injection**. We leverage Kubernetes 1.9's new [mutating webhook feature](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.9.md#api-machinery) to provide automatic
+- **Automatic Proxy Injection**. We leverage Kubernetes 1.9's new
+[mutating webhook feature](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.9.md#api-machinery) to provide automatic
pod-level proxy injection. Automatic injection requires Kubernetes 1.9 or beyond and
-therefore doesn't work on older versions. The alpha initializer mechanism is no longer supported. [Learn more]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection)
+therefore doesn't work on older versions. The alpha initializer mechanism is no longer supported.
+[Learn more]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection)
- **Revised Traffic Rules**. Based on user feedback, we have made significant changes to Istio's traffic management
(routing rules, destination rules, etc.). We would love your continuing feedback while we polish this in the coming weeks.
## Mixer adapters
-- **Open Policy Agent**. Mixer now has an authorization adapter implementing the [open policy agent](http://www.openpolicyagent.org) model,
+- **Open Policy Agent**. Mixer now has an authorization adapter implementing the [open policy agent](https://www.openpolicyagent.org) model,
providing a flexible fine-grained access control mechanism. [Learn more](https://docs.google.com/document/d/1U2XFmah7tYdmC5lWkk3D43VMAAQ0xkBatKmohf90ICA/edit#heading=h.fmlgl8m03gfy)
- **Istio RBAC**. Mixer now has a role-based access control adapter.
[Learn more]({{home}}/docs/concepts/security/rbac.html)
-- **Fluentd**. Mixer now has an adapter for log collection through [fluentd](https://www.fluentd.org).
+- **Fluentd**. Mixer now has an adapter for log collection through [fluentd](https://www.fluentd.org).
[Learn more]({{home}}/docs/tasks/telemetry/fluentd.html)
- **Stdio**. The stdio adapter now lets you log to files with support for log rotation & backup, along with a host
@@ -51,10 +51,10 @@ of controls.
## Other
- **Release-Mode Binaries**. We switched release and installation default to release for improved
-performance and security.
+performance and security.
- **Component Logging**. Istio components now offer a rich set of command-line options to control local logging, including
-common support for log rotation.
+common support for log rotation.
- **Consistent Version Reporting**. Istio components now offer a consistent command-line interface to report their version information.
diff --git a/_about/notes/0.6.md b/_about/notes/0.6.md
new file mode 100644
index 0000000000000..c527fc1d85b78
--- /dev/null
+++ b/_about/notes/0.6.md
@@ -0,0 +1,42 @@
+---
+title: Istio 0.6
+
+weight: 95
+
+---
+{% include home.html %}
+
+In addition to the usual pile of bug fixes and performance improvements, this release includes the new or
+updated features detailed below.
+
+## Networking
+
+- **Custom Envoy Config**. Pilot now supports ferrying custom Envoy config to the
+proxy. [Learn more](https://github.com/mandarjog/istioluawebhook)
+
+## Mixer adapters
+
+- **SolarWinds**. Mixer can now interface to AppOptics and Papertrail.
+[Learn more]({{home}}/docs/reference/config/adapters/solarwinds.html)
+
+- **Redisquota**. Mixer now supports a Redis-based adapter for rate limit tracking.
+[Learn more]({{home}}/docs/reference/config/adapters/redisquota.html)
+
+- **Datadog**. Mixer now provides an adapter to deliver metric data to a Datadog agent.
+[Learn more]({{home}}/docs/reference/config/adapters/datadog.html)
+
+## Other
+
+- **Separate Check & Report Clusters**. When configuring Envoy, it's now possible to use different clusters
+for Mixer instances that are used for Mixer's Check functionality from those used for Mixer's Report
+functionality. This may be useful in large deployments for better scaling of Mixer instances.
+
+- **Monitoring Dashboards**. There are now preliminary Mixer & Pilot monitoring dashboard in Grafana.
+
+- **Servicegraph Visualization**. Servicegraph has a new visualization. [Learn more]({{home}}/docs/tasks/telemetry/servicegraph.html).
+
+- **Liveness and Readiness Probes**. Istio components now provide canonical liveness and readiness
+probe support to help ensure mesh infrastructure health. [Learn more]({{home}}/docs/tasks/security/health-check.html)
+
+- **Egress Policy and Telemetry**. Istio can monitor traffic to external services defined by EgressRule or External Service. Istio can also apply
+Mixer policies on this traffic.
diff --git a/_about/notes/0.7.md b/_about/notes/0.7.md
new file mode 100644
index 0000000000000..b5c061b96c4d1
--- /dev/null
+++ b/_about/notes/0.7.md
@@ -0,0 +1,22 @@
+---
+title: Istio 0.7
+
+weight: 94
+
+---
+{% include home.html %}
+
+For this release, we focused on improving our build and test infrastructures and increasing the
+quality of our tests. As a result, there are no new features for this month.
+
+However, this release does include a large number of bug fixes and performance improvements.
+
+Please note that this release includes preliminary support for the new v1alpha3 traffic management
+functionality. This functionality is still in a great deal of flux and there may be some breaking
+changes in 0.8. So if you feel like exploring, please go right ahead, but expect that this may
+change in 0.8 and beyond.
+
+Known Issues:
+
+Our [helm chart](https://istio.io/docs/setup/kubernetes/helm.html)
+currently requires some workaround to apply the chart correctly, see [4701](https://github.com/istio/istio/issues/4701) for details.
diff --git a/_about/notes/0.8.md b/_about/notes/0.8.md
new file mode 100644
index 0000000000000..c1329a6bebd67
--- /dev/null
+++ b/_about/notes/0.8.md
@@ -0,0 +1,61 @@
+---
+title: Istio 0.8
+
+weight: 93
+---
+{% include home.html %}
+
+In addition to the usual pile of bug fixes and performance improvements, this release includes the new or
+updated features detailed below.
+
+## Networking
+
+- **Revamped Traffic Management Model**. We're finally ready to take the wraps off our
+new [traffic management configuration model]({{home}}/blog/2018/v1alpha3-routing.html).
+The new model adds many new features and addresses usability issues
+with the prior model. There is a conversion tool built into `istioctl` to help migrate your config from
+the old model. [Learn more about the new traffic management model]({{home}}/docs/tasks/traffic-management-v1alpha3/).
+
+- **Envoy V2**. Users can choose to inject Envoy V2 as the sidecar. In this mode, Pilot uses Envoy's new API to push configuration to the data plane. This new approach
+increases effective scalability and should eliminate spurious 404 errors. [TBD: docs on how to control this?]
+
+- **Gateway for Ingress/Egress**. We no longer support combining Kubernetes Ingress specs with Istio route rules, as it has led to several
+bugs and reliability issues. Istio now
+supports a platform independent ingress/egress Gateway that works across Kubernetes and Cloud Foundry and works seamlessly with the routing rules
+[TBD: doc link]
+
+- **Constrained Inbound Ports**. We now restrict the inbound ports in a pod to the ones declared by the apps running inside that pod.
+
+## Security
+
+- **Introducing Citadel**. We've finally given a name to our security component. What was
+formerly known as Istio-Auth or Istio-CA is now called Citadel.
+
+- **Multicluster Support**. We support per-cluster Citadel in multicluster deployments such that all Citadels share the same root cert
+and workloads can authenticate each other across the mesh.
+
+- **Authentication Policy**. We've introduced authentication policy that can be used to configure service-to-service
+authentication (mutual TLS) and end user authentication. This is the recommended way for enabling mutual TLS
+(over the existing config flag and service annotations). [Learn more]({{home}}/docs/tasks/security/authn-policy.html).
+
+## Telemetry
+
+- **Self-Reporting**. Mixer and Pilot now produce telemetry that flows through the normal
+Istio telemetry pipeline, just like services in the mesh.
+
+## Setup
+
+- **A la Carte Istio**. Istio has a rich set of features, however you don't need to install or consume them all together. By using
+Helm or `istioctl gen-deploy`, users can install only the features they want. For example, users can install Pilot only and enjoy traffic
+management functionality without dealing with Mixer or Citadel.
+Learn more about [customization through Helm](https://istio.io/docs/setup/kubernetes/helm-install.html#customization-with-helm)
+and about [`istioctl gen-deploy`](https://istio.io/docs/reference/commands/istioctl.html#istioctl%20gen-deploy).
+
+## Mixer adapters
+
+- **CloudWatch**. Mixer can now report metrics to AWS CloudWatch.
+[Learn more]({{home}}/docs/reference/config/adapters/cloudwatch.html)
+
+## Known issues with 0.8
+
+- A gateway with virtual services pointing to a headless service won't work ([Issue #5005](https://github.com/istio/istio/issues/5005)).
diff --git a/_about/notes/index.md b/_about/notes/index.md
index 3e6416ef60b84..9ee2f80c85a29 100644
--- a/_about/notes/index.md
+++ b/_about/notes/index.md
@@ -1,31 +1,32 @@
---
title: Release Notes
-overview: Istio releases information.
+description: Description of features and improvements for every Istio release.
-order: 5
+weight: 5
-layout: about
-type: markdown
redirect_from:
- "/docs/reference/release-notes.html"
- "/release-notes"
- "/docs/welcome/notes/index.html"
-toc: false
+ - "/docs/references/notes"
+toc: false
---
+{% include section-index.html docs=site.about %}
-{% include section-index.html docs=site.docs %}
+The latest Istio monthly release is {{site.data.istio.version}} ([release notes]({{site.data.istio.version}}.html)). You can
+[download {{site.data.istio.version}}](https://github.com/istio/istio/releases) with:
+```command
+$ curl -L https://git.io/getLatestIstio | sh -
+```
-- The [latest](https://github.com/istio/istio/releases) Istio monthly release is {{site.data.istio.version}}. It is downloaded when the following is used(*):
- ```
- curl -L https://git.io/getLatestIstio | sh -
- ```
+The most recent stable release is 0.2.12. You can [download 0.2.12](https://github.com/istio/istio/releases/tag/0.2.12) with:
-- The most recent 'stable' release is [0.2.12](https://github.com/istio/istio/releases/tag/0.2.12), the matching docs are [archive.istio.io/v0.2/docs/](https://archive.istio.io/v0.2/docs/)
- ```
- curl -L https://git.io/getIstio | sh -
- ```
+```command
+$ curl -L https://git.io/getIstio | sh -
+```
-We typically wait to 'bake' the latest release for several weeks and ensure it is more stable than the previous one before promoting it to stable.
+[Archived documentation for the 0.2.12 release](https://archive.istio.io/v0.2/docs/).
-> (*) Note: security conscious users should examine the output of the curl command before piping it to a shell.
+> As we don't control the `git.io` domain, please examine the output of the `curl` command before piping it to a shell if running in any
+sensitive or non-sandboxed environment.
diff --git a/_blog/2017/0.1-announcement.md b/_blog/2017/0.1-announcement.md
index ad49fd5cd1714..871a64e6afa23 100644
--- a/_blog/2017/0.1-announcement.md
+++ b/_blog/2017/0.1-announcement.md
@@ -1,14 +1,12 @@
---
-title: "Introducing Istio"
-overview: Istio 0.1 announcement
-publish_date: May 24, 2017
+title: Introducing Istio
+description: Istio 0.1 announcement
+publishdate: 2018-05-24
subtitle: A robust service mesh for microservices
attribution: The Istio Team
-order: 100
+weight: 100
-layout: blog
-type: markdown
redirect_from:
- "/blog/istio-service-mesh-for-microservices.html"
- "/blog/0.1-announcement.html"
@@ -24,7 +22,8 @@ Writing reliable, loosely coupled, production-grade applications based on micros
Inconsistent attempts at solving these challenges, cobbled together from libraries, scripts and Stack Overflow snippets leads to solutions that vary wildly across languages and runtimes, have poor observability characteristics and can often end up compromising security.
-One solution is to standardize implementations on a common RPC library like [gRPC](http://grpc.io), but this can be costly for organizations to adopt wholesale and leaves out brownfield applications which may be practically impossible to change. Operators need a flexible toolkit to make their microservices secure, compliant, trackable and highly available, and developers need the ability to experiment with different features in production, or deploy canary releases, without impacting the system as a whole.
+One solution is to standardize implementations on a common RPC library like [gRPC](https://grpc.io), but this can be costly for organizations to adopt wholesale
+and leaves out brownfield applications which may be practically impossible to change. Operators need a flexible toolkit to make their microservices secure, compliant, trackable and highly available, and developers need the ability to experiment with different features in production, or deploy canary releases, without impacting the system as a whole.
## Solution: Service Mesh
@@ -36,21 +35,17 @@ Google, IBM and Lyft joined forces to create Istio from a desire to provide a re
**Fleet-wide Visibility**: Failures happen, and operators need tools to stay on top of the health of clusters and their graphs of microservices. Istio produces detailed monitoring data about application and network behaviors that is rendered using [Prometheus](https://prometheus.io/) & [Grafana](https://github.com/grafana/grafana), and can be easily extended to send metrics and logs to any collection, aggregation and querying system. Istio enables analysis of performance hotspots and diagnosis of distributed failure modes with [Zipkin](https://github.com/openzipkin/zipkin) tracing.
-{% include figure.html width='100%' ratio='55.42%'
- img='./img/istio_grafana_dashboard-new.png'
- alt='Grafana Dashboard with Response Size'
- title='Grafana Dashboard with Response Size'
- caption='Grafana Dashboard with Response Size'
+{% include image.html width="100%" ratio="55.42%"
+ link="./img/istio_grafana_dashboard-new.png"
+ caption="Grafana Dashboard with Response Size"
%}
-{% include figure.html width='100%' ratio='29.91%'
- img='./img/istio_zipkin_dashboard.png'
- alt='Zipkin Dashboard'
- title='Zipkin Dashboard'
- caption='Zipkin Dashboard'
+{% include image.html width="100%" ratio="29.91%"
+ link="./img/istio_zipkin_dashboard.png"
+ caption="Zipkin Dashboard"
%}
-**Resiliency and efficiency**: When developing microservices, operators need to assume that the network will be unreliable. Operators can use retries, load balancing, flow-control (HTTP/2), and circuit-breaking to compensate for some of the common failure modes due to an unreliable network. Istio provides a uniform approach to configuring these features, making it easier to operate a highly resilient service mesh.
+**Resiliency and efficiency**: When developing microservices, operators need to assume that the network will be unreliable. Operators can use retries, load balancing, flow-control (HTTP/2), and circuit-breaking to compensate for some of the common failure modes due to an unreliable network. Istio provides a uniform approach to configuring these features, making it easier to operate a highly resilient service mesh.
**Developer productivity**: Istio provides a significant boost to developer productivity by letting them focus on building service features in their language of choice, while Istio handles resiliency and networking challenges in a uniform way. Developers are freed from having to bake solutions to distributed systems problems into their code. Istio further improves productivity by providing common functionality supporting A/B testing, canarying, and fault injection.
@@ -58,14 +53,14 @@ Google, IBM and Lyft joined forces to create Istio from a desire to provide a re
**Secure by default**: It is a common fallacy of distributed computing that the network is secure. Istio enables operators to authenticate and secure all communication between services using a mutual TLS connection, without burdening the developer or the operator with cumbersome certificate management tasks. Our security framework is aligned with the emerging [SPIFFE](https://spiffe.github.io/) specification, and is based on similar systems that have been tested extensively inside Google.
-**Incremental Adoption**: We designed Istio to be completely transparent to the services running in the mesh, allowing teams to incrementally adopt features of Istio over time. Adopters can start with enabling fleet-wide visibility and once they’re comfortable with Istio in their environment they can switch on other features as needed.
+**Incremental Adoption**: We designed Istio to be completely transparent to the services running in the mesh, allowing teams to incrementally adopt features of Istio over time. Adopters can start with enabling fleet-wide visibility and once they’re comfortable with Istio in their environment they can switch on other features as needed.
## Join us in this journey
-Istio is a completely open development project. Today we are releasing version 0.1, which works in a Kubernetes cluster, and we plan to have major new
-releases every 3 months, including support for additional environments. Our goal is to enable developers and operators to rollout and operate microservices
-with agility, complete visibility of the underlying network, and uniform control and security in all environments. We look forward to working with the Istio
-community and our partners towards these goals, following our [roadmap]({{home}}/docs/reference/release-roadmap.html).
+Istio is a completely open development project. Today we are releasing version 0.1, which works in a Kubernetes cluster, and we plan to have major new
+releases every 3 months, including support for additional environments. Our goal is to enable developers and operators to rollout and operate microservices
+with agility, complete visibility of the underlying network, and uniform control and security in all environments. We look forward to working with the Istio
+community and our partners towards these goals, following our [roadmap]({{home}}/docs/reference/release-roadmap.html).
Visit [here](https://github.com/istio/istio/releases) to get the latest released bits.
@@ -74,9 +69,9 @@ View the [presentation]({{home}}/talks/istio_talk_gluecon_2017.pdf) from GlueCon
## Community
We are excited to see early commitment to support the project from many companies in the community:
-[Red Hat](https://blog.openshift.com/red-hat-istio-launch/) with Red Hat Openshift and OpenShift Application Runtimes,
+[Red Hat](https://blog.openshift.com/red-hat-istio-launch/) with Red Hat OpenShift and OpenShift Application Runtimes,
Pivotal with [Pivotal Cloud Foundry](https://content.pivotal.io/blog/pivotal-and-istio-advancing-the-ecosystem-for-microservices-in-the-enterprise),
-Weaveworks with [Weave Cloud](https://www.weave.works/blog/istio-weave-cloud/) and Weave Net 2.0,
+WeaveWorks with [Weave Cloud](https://www.weave.works/blog/istio-weave-cloud/) and Weave Net 2.0,
[Tigera](https://www.projectcalico.org/welcoming-istio-to-the-kubernetes-networking-community) with the Project Calico Network Policy Engine
and [Datawire](https://www.datawire.io/istio-and-datawire-ecosystem/) with the Ambassador project. We hope to see many more companies join us in
this journey.
@@ -86,12 +81,12 @@ To get involved, connect with us via any of these channels:
* [istio.io]({{home}}) for documentation and examples.
* The [istio-users@googlegroups.com](https://groups.google.com/forum/#!forum/istio-users) mailing list for general discussions,
-or [istio-announce@googlegroups.com](https://groups.google.com/forum/#!forum/istio-announce) for key announcements regarding the project.
+or [istio-announce@googlegroups.com](https://groups.google.com/forum/#!forum/istio-announce) for key announcements regarding the project.
* [Stack Overflow](https://stackoverflow.com/questions/tagged/istio) for curated questions and answers
-* [GitHub](http://github.com/istio/issues/issues) for filing issues
+* [GitHub](https://github.com/istio/issues/issues) for filing issues
-* [@IstioMesh](https://twitter.com/IstioMesh) on Twitter
+* [@IstioMesh](https://twitter.com/IstioMesh) on Twitter
From everyone working on Istio, welcome aboard!
diff --git a/_blog/2017/0.1-auth.md b/_blog/2017/0.1-auth.md
index 0c3906f8994ba..0e2158381f946 100644
--- a/_blog/2017/0.1-auth.md
+++ b/_blog/2017/0.1-auth.md
@@ -1,14 +1,12 @@
---
-title: "Using Istio to Improve End-to-End Security"
-overview: Istio Auth 0.1 announcement
-publish_date: May 25, 2017
+title: Using Istio to Improve End-to-End Security
+description: Istio Auth 0.1 announcement
+publishdate: 2017-05-25
subtitle: Secure by default service to service communications
attribution: The Istio Team
-order: 99
+weight: 99
-layout: blog
-type: markdown
redirect_from:
- "/blog/0.1-auth.html"
- "/blog/istio-auth-for-microservices.html"
@@ -16,23 +14,23 @@ redirect_from:
{% include home.html %}
Conventional network security approaches fail to address security threats to distributed applications deployed in dynamic production environments. Today, we describe how Istio Auth enables enterprises to transform their security posture from just protecting the edge to consistently securing all inter-service communications deep within their applications. With Istio Auth, developers and operators can protect services with sensitive data against unauthorized insider access and they can achieve this without any changes to the application code!
-
-Istio Auth is the security component of the broader [Istio platform]({{home}}/). It incorporates the learnings of securing millions of microservice
+
+Istio Auth is the security component of the broader [Istio platform]({{home}}/). It incorporates the learnings of securing millions of microservice
endpoints in Google’s production environment.
## Background
Modern application architectures are increasingly based on shared services that are deployed and scaled dynamically on cloud platforms. Traditional network edge security (e.g. firewall) is too coarse-grained and allows access from unintended clients. An example of a security risk is stolen authentication tokens that can be replayed from another client. This is a major risk for companies with sensitive data that are concerned about insider threats. Other network security approaches like IP whitelists have to be statically defined, are hard to manage at scale, and are unsuitable for dynamic production environments.
-Thus, security administrators need a tool that enables them to consistently, and by default, secure all communication between services across diverse production environments.
+Thus, security administrators need a tool that enables them to consistently, and by default, secure all communication between services across diverse production environments.
## Solution: strong service identity and authentication
-Google has, over the years, developed architecture and technology to uniformly secure millions of microservice endpoints in its production environment against
-external
-attacks and insider threats. Key security principles include trusting the endpoints and not the network, strong mutual authentication based on service identity and service level authorization. Istio Auth is based on the same principles.
+Google has, over the years, developed architecture and technology to uniformly secure millions of microservice endpoints in its production environment against
+external
+attacks and insider threats. Key security principles include trusting the endpoints and not the network, strong mutual authentication based on service identity and service level authorization. Istio Auth is based on the same principles.
-The version 0.1 release of Istio Auth runs on Kubernetes and provides the following features:
+The version 0.1 release of Istio Auth runs on Kubernetes and provides the following features:
* Strong identity assertion between services
@@ -46,11 +44,9 @@ Istio Auth is based on industry standards like mutual TLS and X.509. Furthermore
The diagram below provides an overview of the Istio Auth service authentication architecture on Kubernetes.
-{% include figure.html width='100%' ratio='56.25%'
- img='./img/istio_auth_overview.svg'
- alt='Istio Auth Overview'
- title='Istio Auth Overview'
- caption='Istio Auth Overview'
+{% include image.html width="100%" ratio="56.25%"
+ link="./img/istio_auth_overview.svg"
+ caption="Istio Auth Overview"
%}
The above diagram illustrates three key security features:
@@ -67,7 +63,7 @@ Istio Auth uses [Kubernetes service accounts](https://kubernetes.io/docs/tasks/c
### Communication security
-Service-to-service communication is tunneled through high performance client side and server side [Envoy](https://envoyproxy.github.io/envoy/) proxies. The communication between the proxies is secured using mutual TLS. The benefit of using mutual TLS is that the service identity is not expressed as a bearer token that can be stolen or replayed from another source. Istio Auth also introduces the concept of Secure Naming to protect from a server spoofing attacks - the client side proxy verifies that the authenticated server's service account is allowed to run the named service.
+Service-to-service communication is tunneled through high performance client side and server side [Envoy](https://envoyproxy.github.io/envoy/) proxies. The communication between the proxies is secured using mutual TLS. The benefit of using mutual TLS is that the service identity is not expressed as a bearer token that can be stolen or replayed from another source. Istio Auth also introduces the concept of Secure Naming to protect from a server spoofing attacks - the client side proxy verifies that the authenticated server's service account is allowed to run the named service.
### Key management and distribution
@@ -77,17 +73,15 @@ Istio Auth provides a per-cluster CA (Certificate Authority) and automated key &
* Distributes keys and certificates to the appropriate pods using [Kubernetes Secrets](https://kubernetes.io/docs/concepts/configuration/secret/).
-* Rotates keys and certificates periodically.
+* Rotates keys and certificates periodically.
* Revokes a specific key and certificate pair when necessary (future).
-
+
The following diagram explains the end to end Istio Auth authentication workflow on Kubernetes:
-{% include figure.html width='100%' ratio='56.25%'
- img='./img/istio_auth_workflow.svg'
- alt='Istio Auth Workflow'
- title='Istio Auth Workflow'
- caption='Istio Auth Workflow'
+{% include image.html width="100%" ratio="56.25%"
+ link="./img/istio_auth_workflow.svg"
+ caption="Istio Auth Workflow"
%}
Istio Auth is part of the broader security story for containers. Red Hat, a partner on the development of Kubernetes, has identified [10 Layers](https://www.redhat.com/en/resources/container-security-openshift-cloud-devops-whitepaper) of container security. Istio and Istio Auth addresses two of these layers: "Network Isolation" and "API and Service Endpoint Management". As cluster federation evolves on Kubernetes and other platforms, our intent is for Istio to secure communications across services spanning multiple federated clusters.
@@ -95,14 +89,14 @@ Istio Auth is part of the broader security story for containers. Red Hat, a part
## Benefits of Istio Auth
**Defense in depth**: When used in conjunction with Kubernetes (or infrastructure) network policies, users achieve higher levels of confidence, knowing that pod-to-pod or service-to-service communication is secured both at network and application layers.
-
-**Secure by default**: When used with Istio’s proxy and centralized policy engine, Istio Auth can be configured during deployment with minimal or no application change. Administrators and operators can thus ensure that service communications are secured by default and that they can enforce these policies consistently across diverse protocols and runtimes.
-
-**Strong service authentication**: Istio Auth secures service communication using mutual TLS to ensure that the service identity is not expressed as a bearer token that can be stolen or replayed from another source. This ensures that services with sensitive data can only be accessed from strongly authenticated and authorized clients.
+
+**Secure by default**: When used with Istio’s proxy and centralized policy engine, Istio Auth can be configured during deployment with minimal or no application change. Administrators and operators can thus ensure that service communications are secured by default and that they can enforce these policies consistently across diverse protocols and runtimes.
+
+**Strong service authentication**: Istio Auth secures service communication using mutual TLS to ensure that the service identity is not expressed as a bearer token that can be stolen or replayed from another source. This ensures that services with sensitive data can only be accessed from strongly authenticated and authorized clients.
## Join us in this journey
Istio Auth is the first step towards providing a full stack of capabilities to protect services with sensitive data from external attacks and insider
-threats. While the initial version runs on Kubernetes, our goal is to enable Istio Auth to secure services across diverse production environments. We encourage the
-community to [join us](https://github.com/istio/istio/blob/master/security) in making robust service security easy and ubiquitous across different application
-stacks and runtime platforms.
+threats. While the initial version runs on Kubernetes, our goal is to enable Istio Auth to secure services across diverse production environments. We encourage the
+community to [join us](https://github.com/istio/istio/blob/master/security) in making robust service security easy and ubiquitous across different application
+stacks and runtime platforms.
diff --git a/_blog/2017/0.1-canary.md b/_blog/2017/0.1-canary.md
index bcf45c083a987..361f1d53f77e1 100644
--- a/_blog/2017/0.1-canary.md
+++ b/_blog/2017/0.1-canary.md
@@ -1,17 +1,17 @@
---
-title: "Canary Deployments using Istio"
-overview: Using Istio to create autoscaled canary deployments
-publish_date: June 14, 2017
+title: Canary Deployments using Istio
+description: Using Istio to create autoscaled canary deployments
+publishdate: 2017-06-14
subtitle:
attribution: Frank Budinsky
-order: 98
+weight: 98
-layout: blog
-type: markdown
redirect_from: "/blog/canary-deployments-using-istio.html"
---
+{% include home.html %}
+
One of the benefits of the [Istio]({{home}}) project is that it provides the control needed to deploy canary services. The idea behind canary deployment (or rollout) is to introduce a new version of a service by first testing it using a small percentage of user traffic, and then if all goes well, increase, possibly gradually in increments, the percentage while simultaneously phasing out the old version. If anything goes wrong along the way, we abort and rollback to the previous version. In its simplest form, the traffic sent to the canary version is a randomly selected percentage of requests, but in more sophisticated schemes it can be based on the region, user, or other properties of the request.
Depending on your level of expertise in this area, you may wonder why Istio's support for canary deployment is even needed, given that platforms like Kubernetes already provide a way to do [version rollout](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#updating-a-deployment) and [canary deployment](https://kubernetes.io/docs/concepts/cluster-administration/manage-deployment/#canary-deployments). Problem solved, right? Well, not exactly. Although doing a rollout this way works in simple cases, it’s very limited, especially in large scale cloud environments receiving lots of (and especially varying amounts of) traffic, where autoscaling is needed.
@@ -28,8 +28,8 @@ Whether we use one deployment or two, canary management using deployment feature
With Istio, traffic routing and replica deployment are two completely independent functions. The number of pods implementing services are free to scale up and down based on traffic load, completely orthogonal to the control of version traffic routing. This makes managing a canary version in the presence of autoscaling a much simpler problem. Autoscalers may, in fact, respond to load variations resulting from traffic routing changes, but they are nevertheless functioning independently and no differently than when loads change for other reasons.
-Istio’s [routing rules]({{home}}/docs/concepts/traffic-management/rules-configuration.html) also provide other important advantages; you can easily control
-fine grain traffic percentages (e.g., route 1% of traffic without requiring 100 pods) and you can control traffic using other criteria (e.g., route traffic for specific users to the canary version). To illustrate, let’s look at deploying the **helloworld** service and see how simple the problem becomes.
+Istio’s [routing rules]({{home}}/docs/concepts/traffic-management/rules-configuration.html) also provide other important advantages; you can easily control
+fine grain traffic percentages (e.g., route 1% of traffic without requiring 100 pods) and you can control traffic using other criteria (e.g., route traffic for specific users to the canary version). To illustrate, let’s look at deploying the **helloworld** service and see how simple the problem becomes.
We begin by defining the **helloworld** Service, just like any other Kubernetes service, something like this:
@@ -88,7 +88,7 @@ rule to control the traffic distribution. For example if we want to send 10% of
[istioctl]({{home}}/docs/reference/commands/istioctl.html) command to set a routing rule something like this:
```bash
-$ cat <<EOF | istioctl create -f -
+cat <<EOF | istioctl create -f -
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -112,11 +112,15 @@ After setting this rule, Istio will ensure that only one tenth of the requests w
Because we don’t need to maintain replica ratios anymore, we can safely add Kubernetes [horizontal pod autoscalers](https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/) to manage the replicas for both version Deployments:
-```bash
+```command
$ kubectl autoscale deployment helloworld-v1 --cpu-percent=50 --min=1 --max=10
deployment "helloworld-v1" autoscaled
+```
+```command
$ kubectl autoscale deployment helloworld-v2 --cpu-percent=50 --min=1 --max=10
deployment "helloworld-v2" autoscaled
+```
+```command
$ kubectl get hpa
NAME REFERENCE TARGET CURRENT MINPODS MAXPODS AGE
Helloworld-v1 Deployment/helloworld-v1 50% 47% 1 10 17s
@@ -125,7 +129,7 @@ Helloworld-v2 Deployment/helloworld-v2 50% 40% 1 10 15s
If we now generate some load on the **helloworld** service, we would notice that when scaling begins, the **v1** autoscaler will scale up its replicas significantly higher than the **v2** autoscaler will for its replicas because **v1** pods are handling 90% of the load.
-```bash
+```command
$ kubectl get pods | grep helloworld
helloworld-v1-3523621687-3q5wh 0/2 Pending 0 15m
helloworld-v1-3523621687-73642 2/2 Running 0 11m
@@ -141,7 +145,7 @@ helloworld-v2-4095161145-963wt 2/2 Running 0 50m
If we then change the routing rule to send 50% of the traffic to **v2**, we should, after a short delay, notice that the **v1** autoscaler will scale down the replicas of **v1** while the **v2** autoscaler will perform a corresponding scale up.
-```bash
+```command
$ kubectl get pods | grep helloworld
helloworld-v1-3523621687-73642 2/2 Running 0 35m
helloworld-v1-3523621687-7hs31 2/2 Running 0 43m
@@ -159,7 +163,7 @@ helloworld-v2-4095161145-v3v9n 0/2 Pending 0 13m
The end result is very similar to the simple Kubernetes Deployment rollout, only now the whole process is not being orchestrated and managed in one place. Instead, we’re seeing several components doing their jobs independently, albeit in a cause and effect manner.
What's different, however, is that if we now stop generating load, the replicas of both versions will eventually scale down to their minimum (1), regardless of what routing rule we set.
-```bash
+```command
$ kubectl get pods | grep helloworld
helloworld-v1-3523621687-dt7n7 2/2 Running 0 1h
helloworld-v2-4095161145-963wt 2/2 Running 0 1h
@@ -170,7 +174,7 @@ helloworld-v2-4095161145-963wt 2/2 Running 0 1h
As mentioned above, the Istio routing rules can be used to route traffic based on specific criteria, allowing more sophisticated canary deployment scenarios. Say, for example, instead of exposing the canary to an arbitrary percentage of users, we want to try it out on internal users, maybe even just a percentage of them. The following command could be used to send 50% of traffic from users at *some-company-name.com* to the canary version, leaving all other users unaffected:
```bash
-$ cat <<EOF | istioctl create -f -
+cat <<EOF | istioctl create -f -
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -209,7 +213,7 @@ As before, the autoscalers bound to the 2 version Deployments will automatically
## Summary
-In this article we’ve shown how Istio supports general scalable canary deployments, and how this differs from the basic deployment support in Kubernetes. Istio’s service mesh provides the control necessary to manage traffic distribution with complete independence from deployment scaling. This allows for a simpler, yet significantly more functional, way to do canary test and rollout.
+In this article we’ve shown how Istio supports general scalable canary deployments, and how this differs from the basic deployment support in Kubernetes. Istio’s service mesh provides the control necessary to manage traffic distribution with complete independence from deployment scaling. This allows for a simpler, yet significantly more functional, way to do canary test and rollout.
Intelligent routing in support of canary deployment is just one of the many features of Istio that will make the production deployment of large-scale microservices-based applications much simpler. Check out [istio.io]({{home}}) for more information and to try it out.
The sample code used in this article can be found [here](https://github.com/istio/istio/tree/master/samples/helloworld).
diff --git a/_blog/2017/0.1-using-network-policy.md b/_blog/2017/0.1-using-network-policy.md
index e29ddef1d7927..2689c21a8e867 100644
--- a/_blog/2017/0.1-using-network-policy.md
+++ b/_blog/2017/0.1-using-network-policy.md
@@ -1,14 +1,12 @@
---
-title: "Using Network Policy with Istio"
-overview: How Kubernetes Network Policy relates to Istio policy
-publish_date: August 10, 2017
+title: Using Network Policy with Istio
+description: How Kubernetes Network Policy relates to Istio policy
+publishdate: 2017-08-10
subtitle:
attribution: Spike Curtis
-order: 97
+weight: 97
-layout: blog
-type: markdown
redirect_from: "/blog/using-network-policy-in-concert-with-istio.html"
---
{% include home.html %}
@@ -19,8 +17,8 @@ Let’s start with the basics: why might you want to use both Istio and Kubernet
| | Istio Policy | Network Policy |
| --------------------- | ----------------- | ------------------ |
-| **Layer** | "Service" --- L7 | "Network" --- L3-4 |
-| **Implementation** | Userspace | Kernel |
+| **Layer** | "Service" --- L7 | "Network" --- L3-4 |
+| **Implementation** | User space | Kernel |
| **Enforcement Point** | Pod | Node |
## Layer
@@ -33,13 +31,16 @@ In contrast, operating at the network layer has the advantage of being universal
## Implementation
-The Istio’s proxy is based on [Envoy](https://envoyproxy.github.io/envoy/), which is implemented as a userspace daemon in the dataplane that interacts with the network layer using standard sockets. This gives it a large amount of flexibility in processing, and allows it to be distributed (and upgraded!) in a container.
+The Istio’s proxy is based on [Envoy](https://envoyproxy.github.io/envoy/), which is implemented as a user space daemon in the data plane that
+interacts with the network layer using standard sockets. This gives it a large amount of flexibility in processing, and allows it to be
+distributed (and upgraded!) in a container.
-Network Policy dataplane is typically implemented in kernel space (e.g. using iptables, eBPF filters, or even custom kernel modules). Being in kernel space allows them to be extremely fast, but not as flexible as the Envoy proxy.
+Network Policy data plane is typically implemented in kernel space (e.g. using iptables, eBPF filters, or even custom kernel modules). Being in kernel space
+allows them to be extremely fast, but not as flexible as the Envoy proxy.
## Enforcement Point
-Policy enforcement using the Envoy proxy is implemented inside the pod, as a sidecar container in the same network namespace. This allows a simple deployment model. Some containers are given permission to reconfigure the networking inside their pod (CAP_NET_ADMIN). If such a service instance is compromised, or misbehaves (as in a malicious tenant) the proxy can be bypassed.
+Policy enforcement using the Envoy proxy is implemented inside the pod, as a sidecar container in the same network namespace. This allows a simple deployment model. Some containers are given permission to reconfigure the networking inside their pod (CAP_NET_ADMIN). If such a service instance is compromised, or misbehaves (as in a malicious tenant) the proxy can be bypassed.
While this won’t let an attacker access other Istio-enabled pods, so long as they are correctly configured, it opens several attack vectors:
@@ -105,11 +106,9 @@ spec:
Here is the service graph for the Bookinfo application.
{% assign url = home | append: "/docs/guides/img/bookinfo/withistio.svg" %}
-{% include figure.html width='80%' ratio='59.08%'
- img=url
- alt='Bookinfo Service Graph'
- title='Bookinfo Service Graph'
- caption='Bookinfo Service Graph'
+{% include image.html width="80%" ratio="59.08%"
+ link=url
+ caption="Bookinfo Service Graph"
%}
This graph shows every connection that a correctly functioning application should be allowed to make. All other connections, say from the Istio Ingress directly to the Rating service, are not part of the application. Let’s lock out those extraneous connections so they cannot be used by an attacker. Imagine, for example, that the Ingress pod is compromised by an exploit that allows an attacker to run arbitrary code. If we only allow connections to the Product Page pods using Network Policy, the attacker has gained no more access to my application backends _even though they have compromised a member of the service mesh_.
diff --git a/_blog/2017/0.2-announcement.md b/_blog/2017/0.2-announcement.md
index 3de202fb54316..5e67dcde95842 100644
--- a/_blog/2017/0.2-announcement.md
+++ b/_blog/2017/0.2-announcement.md
@@ -1,55 +1,55 @@
---
-title: "Announcing Istio 0.2"
-overview: Istio 0.2 announcement
-publish_date: October 10, 2017
+title: Announcing Istio 0.2
+description: Istio 0.2 announcement
+publishdate: 2017-10-10
subtitle: Improved mesh and support for multiple environments
attribution: The Istio Team
-order: 96
+weight: 96
-layout: blog
-type: markdown
toc: false
redirect_from: "/blog/istio-0.2-announcement.html"
---
{% include home.html %}
-We launched Istio; an open platform to connect, manage, monitor, and secure microservices, on May 24, 2017. We have been humbled by the incredible interest, and rapid community growth of developers, operators, and partners. Our 0.1 release was focused on showing all the concepts of Istio in Kubernetes.
+We launched Istio; an open platform to connect, manage, monitor, and secure microservices, on May 24, 2017. We have been humbled by the incredible interest, and
+rapid community growth of developers, operators, and partners. Our 0.1 release was focused on showing all the concepts of Istio in Kubernetes.
Today we are happy to announce the 0.2 release which improves stability and performance, allows for cluster wide deployment and automated injection of sidecars in Kubernetes, adds policy and authentication for TCP services, and enables expansion of the mesh to include services deployed in virtual machines. In addition, Istio can now run outside Kubernetes, leveraging Consul/Nomad or Eureka. Beyond core features, Istio is now ready for extensions to be written by third party companies and developers.
## Highlights for the 0.2 release
-**Usability improvements:**
+### Usability improvements
-* _Multiple namespace support_: Istio now works cluster-wide, across multiple namespaces and this was one of the top requests from community from 0.1 release.
+* _Multiple namespace support_: Istio now works cluster-wide, across multiple namespaces and this was one of the top requests from community from 0.1 release.
-* _Policy and security for TCP services_: In addition to HTTP, we have added transparent mutual TLS authentication and policy enforcement for TCP services as well. This will allow you to secure more of your kubernetes deployment, and get Istio features like telemetry, policy and security.
+* _Policy and security for TCP services_: In addition to HTTP, we have added transparent mutual TLS authentication and policy enforcement for TCP services as well. This will allow you to secure more of your
+Kubernetes deployment, and get Istio features like telemetry, policy and security.
* _Automated sidecar injection_: By leveraging the alpha [initializer](https://kubernetes.io/docs/admin/extensible-admission-controllers/#what-are-initializers) feature provided by Kubernetes 1.7, envoy sidecars can now be automatically injected into application deployments when your cluster has the initializer enabled. This enables you to deploy microservices using `kubectl`, the exact same command that you normally use for deploying the microservices without Istio.
-* _Extending Istio_: An improved Mixer design that lets vendors write Mixer adapters to implement support for their own systems, such as application
+* _Extending Istio_: An improved Mixer design that lets vendors write Mixer adapters to implement support for their own systems, such as application
management or policy enforcement. The
-[Mixer Adapter Developer's Guide](https://github.com/istio/istio/blob/master/mixer/doc/adapters.md) can help
-you easily integrate your solution with Istio.
+[Mixer Adapter Developer's Guide](https://github.com/istio/istio/wiki/Mixer-Adapter-Dev-Guide) can help
+you easily integrate your solution with Istio.
* _Bring your own CA certificates_: Allows users to provide their own key and certificate for Istio CA and persistent CA key/certificate Storage. Enables storing signing key/certificates in persistent storage to facilitate CA restarts.
-* _Improved routing & metrics_: Support for WebSocket, MongoDB and Redis protocols. You can apply resilience features like circuit breakers on traffic to third party services. In addition to Mixer’s metrics, hundreds of metrics from Envoy are now visible inside Prometheus for all traffic entering, leaving and within Istio mesh.
+* _Improved routing & metrics_: Support for WebSocket, MongoDB and Redis protocols. You can apply resilience features like circuit breakers on traffic to third party services. In addition to Mixer’s metrics, hundreds of metrics from Envoy are now visible inside Prometheus for all traffic entering, leaving and within Istio mesh.
-**Cross environment support:**
+### Cross environment support
-* _Mesh expansion_: Istio mesh can now span services running outside of Kubernetes - like those running in virtual machines while enjoying benefits such as automatic mutual TLS authentication, traffic management, telemetry, and policy enforcement across the mesh.
+* _Mesh expansion_: Istio mesh can now span services running outside of Kubernetes - like those running in virtual machines while enjoying benefits such as automatic mutual TLS authentication, traffic management, telemetry, and policy enforcement across the mesh.
* _Running outside Kubernetes_: We know many customers use other service registry and orchestration solutions like [Consul/Nomad]({{home}}/docs/setup/consul/quick-start.html) and [Eureka]({{home}}/docs/setup/eureka/quick-start.html). Istio Pilot can now run standalone outside Kubernetes, consuming information from these systems, and manage the Envoy fleet in VMs or containers.
-## Get involved in shaping the future of Istio
+## Get involved in shaping the future of Istio
-We have a growing [roadmap]({{home}}/docs/reference/release-roadmap.html) ahead of us, full of great features to implement. Our focus next release is going to be on stability, reliability, integration with third party tools and multi-cluster use cases.
+We have a growing [roadmap]({{home}}/docs/reference/release-roadmap.html) ahead of us, full of great features to implement. Our focus next release is going to be on stability, reliability, integration with third party tools and multicluster use cases.
To learn how to get involved and contribute to Istio's future, check out our [community](https://github.com/istio/community) GitHub repository which
will introduce you to our working groups, our mailing lists, our various community meetings, our general procedures and our guidelines.
-We want to thank our fantastic community for field testing new versions, filing bug reports, contributing code, helping out other community members, and shaping Istio by participating in countless productive discussions. This has enabled the project to accrue 3000 stars on GitHub since launch and hundreds of active community members on Istio mailing lists.
+We want to thank our fantastic community for field testing new versions, filing bug reports, contributing code, helping out other community members, and shaping Istio by participating in countless productive discussions. This has enabled the project to accrue 3000 stars on GitHub since launch and hundreds of active community members on Istio mailing lists.
Thank you
diff --git a/_blog/2017/adapter-model.md b/_blog/2017/adapter-model.md
index c008b22252b58..db202cc25a016 100644
--- a/_blog/2017/adapter-model.md
+++ b/_blog/2017/adapter-model.md
@@ -1,14 +1,12 @@
---
-title: "Mixer Adapter Model"
-overview: Provides an overview of the Mixer plug-in architecture
-publish_date: November 3, 2017
+title: Mixer Adapter Model
+description: Provides an overview of the Mixer plug-in architecture
+publishdate: 2017-11-03
subtitle: Extending Istio to integrate with a world of infrastructure backends
attribution: Martin Taillefer
-order: 95
+weight: 95
-layout: blog
-type: markdown
redirect_from: "/blog/mixer-adapter-model.html"
---
{% include home.html %}
@@ -24,20 +22,18 @@ Mixer serves as an abstraction layer between Istio and an open-ended set of infr
In addition to insulating application-level code from the details of infrastructure backends, Mixer provides an intermediation model that allows operators to inject and control policies between application code and backends. Operators can control which data is reported to which backend, which backend to consult for authorization, and much more.
Given that individual infrastructure backends each have different interfaces and operational models, Mixer needs custom
-code to deal with each and we call these custom bundles of code [*adapters*](https://github.com/istio/istio/blob/master/mixer/doc/adapters.md).
+code to deal with each and we call these custom bundles of code [*adapters*](https://github.com/istio/istio/wiki/Mixer-Adapter-Dev-Guide).
-Adapters are Go packages that are directly linked into the Mixer binary. It’s fairly simple to create custom Mixer binaries linked with specialized sets of adapters, in case the default set of adapters is not sufficient for specific use cases.
+Adapters are Go packages that are directly linked into the Mixer binary. It’s fairly simple to create custom Mixer binaries linked with specialized sets of adapters, in case the default set of adapters is not sufficient for specific use cases.
## Philosophy
-Mixer is essentially an attribute processing and routing machine. The proxy sends it [attributes]({{home}}/docs/concepts/policy-and-control/attributes.html) as part of doing precondition checks and telemetry reports, which it turns into a series of calls into adapters. The operator supplies configuration which describes how to map incoming attributes to inputs for the adapters.
+Mixer is essentially an attribute processing and routing machine. The proxy sends it [attributes]({{home}}/docs/concepts/policy-and-control/attributes.html) as part of doing precondition checks and telemetry reports, which it turns into a series of calls into adapters. The operator supplies configuration which describes how to map incoming attributes to inputs for the adapters.
{% assign url = home | append: "/docs/concepts/policy-and-control/img/mixer-config/machine.svg" %}
-{% include figure.html width='60%' ratio='42.60%'
- img=url
- alt='Attribute Machine'
- title='Attribute Machine'
- caption='Attribute Machine'
+{% include image.html width="60%" ratio="42.60%"
+ link=url
+ caption="Attribute Machine"
%}
Configuration is a complex task. In fact, evidence shows that the overwhelming majority of service outages are caused by configuration errors. To help combat this, Mixer’s configuration model enforces a number of constraints designed to avoid errors. For example, the configuration model uses strong typing to ensure that only meaningful attributes or attribute expressions are used in any given context.
@@ -46,7 +42,7 @@ Configuration is a complex task. In fact, evidence shows that the overwhelming m
Each adapter that Mixer uses requires some configuration to operate. Typically, adapters need things like the URL to their backend, credentials, caching options, and so forth. Each adapter defines the exact configuration data it needs via a [protobuf](https://developers.google.com/protocol-buffers/) message.
-You configure each adapter by creating [*handlers*]({{home}}/docs/concepts/policy-and-control/mixer-config.html#handlers) for them. A handler is a
+You configure each adapter by creating [*handlers*]({{home}}/docs/concepts/policy-and-control/mixer-config.html#handlers) for them. A handler is a
configuration resource which represents a fully configured adapter ready for use. There can be any number of handlers for a single adapter, making it possible to reuse an adapter in different scenarios.
## Templates: adapter input schema
@@ -54,9 +50,9 @@ configuration resource which represents a fully configured adapter ready for use
Mixer is typically invoked twice for every incoming request to a mesh service, once for precondition checks and once for telemetry reporting. For every such call, Mixer invokes one or more adapters. Different adapters need different pieces of data as input in order to do their work. A logging adapter needs a log entry, a metric adapter needs a metric, an authorization adapter needs credentials, etc.
Mixer [*templates*]({{home}}/docs/reference/config/template/) are used to describe the exact data that an adapter consumes at request time.
-Each template is specified as a [protobuf](https://developers.google.com/protocol-buffers/) message. A single template describes a bundle of data that is delivered to one or more adapters at runtime. Any given adapter can be designed to support any number of templates, the specific templates the adapter supports is determined by the adapter developer.
+Each template is specified as a [protobuf](https://developers.google.com/protocol-buffers/) message. A single template describes a bundle of data that is delivered to one or more adapters at runtime. Any given adapter can be designed to support any number of templates, the specific templates the adapter supports is determined by the adapter developer.
-[metric]({{home}}/docs/reference/config/template/metric.html) and [logentry]({{home}}/docs/reference/config/template/logentry.html) are two of the most essential templates used within Istio. They represent respectively the payload to report a single metric and a single log entry to appropriate backends.
+[metric]({{home}}/docs/reference/config/template/metric.html) and [logentry]({{home}}/docs/reference/config/template/logentry.html) are two of the most essential templates used within Istio. They represent respectively the payload to report a single metric and a single log entry to appropriate backends.
## Instances: attribute mapping
@@ -67,15 +63,18 @@ by the proxy into individual bundles of data that can be routed to different ada
Creating instances generally requires using [attribute expressions]({{home}}/docs/concepts/policy-and-control/mixer-config.html#attribute-expressions). The point of these expressions is to use any attribute or literal value in order to produce a result that can be assigned to an instance’s field.
-Every instance field has a type, as defined in the template, every [attribute has a type](https://github.com/istio/api/blob/master/mixer/v1/config/descriptor/value_type.proto), and every attribute expression has a type. You can only assign type-compatible expressions to any given instance fields. For example, you can’t assign an integer expression to a string field. This kind of strong typing is designed to minimize the risk of creating bogus configurations.
+Every instance field has a type, as defined in the template, every attribute has a
+[type](https://github.com/istio/api/blob/master/policy/v1beta1/value_type.proto), and every attribute expression has a type.
+You can only assign type-compatible expressions to any given instance fields. For example, you can’t assign an integer expression
+to a string field. This kind of strong typing is designed to minimize the risk of creating bogus configurations.
## Rules: delivering data to adapters
The last piece to the puzzle is telling Mixer which instances to send to which handler and when. This is done by
-creating [*rules*]({{home}}/docs/concepts/policy-and-control/mixer-config.html#rules). Each rule identifies a specific handler and the set of
+creating [*rules*]({{home}}/docs/concepts/policy-and-control/mixer-config.html#rules). Each rule identifies a specific handler and the set of
instances to send to that handler. Whenever Mixer processes an incoming call, it invokes the indicated handler and gives it the specific set of instances for processing.
-Rules contain matching predicates. A predicate is an attribute expression which returns a true/false value. A rule only takes effect if its predicate expression returns true. Otherwise, it’s like the rule didn’t exist and the indicated handler isn’t invoked.
+Rules contain matching predicates. A predicate is an attribute expression which returns a true/false value. A rule only takes effect if its predicate expression returns true. Otherwise, it’s like the rule didn’t exist and the indicated handler isn’t invoked.
## Future
diff --git a/_blog/2017/index.md b/_blog/2017/index.md
index f51ac13fa698b..bbf92652a356a 100644
--- a/_blog/2017/index.md
+++ b/_blog/2017/index.md
@@ -1,11 +1,9 @@
---
title: 2017 Posts
-overview: Blog posts for 2017
+description: Blog posts for 2017
-order: 20
+weight: 20
-layout: blog
-type: markdown
toc: false
---
diff --git a/_blog/2017/mixer-spof-myth.md b/_blog/2017/mixer-spof-myth.md
index 5c2c7cfa5c559..361769186c6fe 100644
--- a/_blog/2017/mixer-spof-myth.md
+++ b/_blog/2017/mixer-spof-myth.md
@@ -1,15 +1,13 @@
---
-title: "Mixer and the SPOF Myth"
-overview: Improving availability and reducing latency
-publish_date: December 7, 2017
+title: Mixer and the SPOF Myth
+description: Improving availability and reducing latency
+publishdate: 2017-12-07
subtitle: Improving availability and reducing latency
attribution: Martin Taillefer
-order: 94
-
-layout: blog
-type: markdown
+weight: 94
+redirect_from: /blog/posts/2017/mixer-spof-myth.html
---
{% include home.html %}
@@ -17,7 +15,7 @@ As [Mixer]({{home}}/docs/concepts/policy-and-control/mixer.html) is in the reque
overall system availability and latency. A common refrain we hear when people first glance at Istio architecture diagrams is
"Isn't this just introducing a single point of failure?"
-In this post, we’ll dig deeper and cover the design principles that underpin Mixer and the surprising fact Mixer actually
+In this post, we’ll dig deeper and cover the design principles that underpin Mixer and the surprising fact Mixer actually
increases overall mesh availability and reduces average request latency.
Istio's use of Mixer has two main benefits in terms of overall system availability and latency:
@@ -36,23 +34,20 @@ In 2014, we started an initiative to create a replacement architecture that woul
The older system was built around a centralized fleet of fairly heavy proxies into which all incoming traffic would flow, before being forwarded to the services where the real work was done. The newer architecture jettisons the shared proxy design and instead consists of a very lean and efficient distributed sidecar proxy sitting next to service instances, along with a shared fleet of sharded control plane intermediaries:
-{% include figure.html width='75%' ratio='74.79%'
- img='./img/mixer-spof-myth-1.svg'
- alt='Google System Topology'
- title='Google System Topology'
+{% include image.html width="75%" ratio="74.79%"
+ link="./img/mixer-spof-myth-1.svg"
+ title="Google System Topology"
caption="Google's API & Service Management System"
%}
-Look familiar? Of course: it’s just like Istio! Istio was conceived as a second generation of this distributed proxy architecture. We took the core lessons from this internal system, generalized many of the concepts by working with our partners, and created Istio.
+Look familiar? Of course: it’s just like Istio! Istio was conceived as a second generation of this distributed proxy architecture. We took the core lessons from this internal system, generalized many of the concepts by working with our partners, and created Istio.
## Architecture recap
As shown in the diagram below, Mixer sits between the mesh and the infrastructure backends that support it:
-{% include figure.html width='75%' ratio='65.89%'
- img='./img/mixer-spof-myth-2.svg'
- alt='Istio Topology'
- title='Istio Topology'
+{% include image.html width="75%" ratio="65.89%"
+ link="./img/mixer-spof-myth-2.svg"
caption="Istio Topology"
%}
@@ -95,7 +90,7 @@ We have opportunities ahead to continue improving the system in many ways.
### Config canaries
-Mixer is highly scaled so it is generally resistant to individual instance failures. However, Mixer is still susceptible to cascading failures in the case when a poison configuration is deployed which causes all Mixer instances to crash basically at the same time (yeah, that would be a bad day). To prevent this from happening, config changes can be canaried to a small set of Mixer instances, and then more broadly rolled out.
+Mixer is highly scaled so it is generally resistant to individual instance failures. However, Mixer is still susceptible to cascading failures in the case when a poison configuration is deployed which causes all Mixer instances to crash basically at the same time (yeah, that would be a bad day). To prevent this from happening, config changes can be canaried to a small set of Mixer instances, and then more broadly rolled out.
Mixer doesn’t yet do canarying of config changes, but we expect this to come online as part of Istio’s ongoing work on reliable config distribution.
@@ -112,17 +107,17 @@ At the moment, each Mixer instance operates independently of all other instances
In very large meshes, the load on Mixer can be great. There can be a large number of Mixer instances, each straining to keep caches primed to
satisfy incoming traffic. We expect to eventually introduce intelligent sharding such that Mixer instances become slightly specialized in
handling particular data streams in order to increase the likelihood of cache hits. In other words, sharding helps improve cache
-efficiency by routing related traffic to the same Mixer instance over time, rather than randomly dispatching to
+efficiency by routing related traffic to the same Mixer instance over time, rather than randomly dispatching to
any available Mixer instance.
## Conclusion
Practical experience at Google showed that the model of a slim sidecar proxy and a large shared caching control plane intermediary hits a sweet
-spot, delivering excellent perceived availability and latency. We’ve taken the lessons learned there and applied them to create more sophisticated and
+spot, delivering excellent perceived availability and latency. We’ve taken the lessons learned there and applied them to create more sophisticated and
effective caching, prefetching, and buffering strategies in Istio. We’ve also optimized the communication protocols to reduce overhead when a cache miss does occur.
-Mixer is still young. As of Istio 0.3, we haven’t really done significant performance work within Mixer itself. This means when a request misses the sidecar
-cache, we spend more time in Mixer to respond to requests than we should. We’re doing a lot of work to improve this in coming months to reduce the overhead
+Mixer is still young. As of Istio 0.3, we haven’t really done significant performance work within Mixer itself. This means when a request misses the sidecar
+cache, we spend more time in Mixer to respond to requests than we should. We’re doing a lot of work to improve this in coming months to reduce the overhead
that Mixer imparts in the synchronous precondition check case.
We hope this post makes you appreciate the inherent benefits that Mixer brings to Istio.
diff --git a/_blog/2018/aws-nlb.md b/_blog/2018/aws-nlb.md
new file mode 100644
index 0000000000000..7c92a2201fd5d
--- /dev/null
+++ b/_blog/2018/aws-nlb.md
@@ -0,0 +1,121 @@
+---
+title: Configuring Istio Ingress with AWS NLB
+description: Describes how to configure Istio ingress with a network load balancer on AWS
+publishdate: 2018-04-20
+subtitle: Ingress AWS Network Load Balancer
+attribution: Julien SENON
+
+weight: 89
+
+redirect_from: "/blog/aws-nlb.html"
+---
+{% include home.html %}
+
+This blog entry will provide instructions to use and configure ingress Istio with [AWS Network Load Balancer](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/introduction.html).
+
+Network load balancer (NLB) could be used instead of classical load balancer. You can find [comparison](https://aws.amazon.com/elasticloadbalancing/details/#compare) between different AWS `loadbalancer` for more explanation.
+
+## Prerequisites
+
+The following instructions require a Kubernetes **1.9.0 or newer** cluster.
+
+<img src="{{home}}/img/exclamation-mark.svg" alt="Warning" title="Warning" style="width: 32px; display:inline" /> Usage of AWS `nlb` on kubernetes is an alpha feature and not recommended for production clusters.
+
+## IAM Policy
+
+You need to apply policy on the master role in order to be able to provision network load balancer.
+
+1. In AWS `iam` console click on policies and click on create a new one:
+{% include image.html width="80%" ratio="60%"
+ link="./img/createpolicystart.png"
+ caption="Create a new policy"
+ %}
+1. Select `json`:
+{% include image.html width="80%" ratio="60%"
+ link="./img/createpolicyjson.png"
+ caption="Select json"
+ %}
+1. Copy/paste text bellow:
+```json
+{
+ "Version": "2012-10-17",
+ "Statement": [
+ {
+ "Sid": "kopsK8sNLBMasterPermsRestrictive",
+ "Effect": "Allow",
+ "Action": [
+ "ec2:DescribeVpcs",
+ "elasticloadbalancing:AddTags",
+ "elasticloadbalancing:CreateListener",
+ "elasticloadbalancing:CreateTargetGroup",
+ "elasticloadbalancing:DeleteListener",
+ "elasticloadbalancing:DeleteTargetGroup",
+ "elasticloadbalancing:DescribeListeners",
+ "elasticloadbalancing:DescribeLoadBalancerPolicies",
+ "elasticloadbalancing:DescribeTargetGroups",
+ "elasticloadbalancing:DescribeTargetHealth",
+ "elasticloadbalancing:ModifyListener",
+ "elasticloadbalancing:ModifyTargetGroup",
+ "elasticloadbalancing:RegisterTargets",
+ "elasticloadbalancing:SetLoadBalancerPoliciesOfListener"
+ ],
+ "Resource": [
+ "*"
+ ]
+ },
+ {
+ "Effect": "Allow",
+ "Action": [
+ "ec2:DescribeVpcs",
+ "ec2:DescribeRegions"
+ ],
+ "Resource": "*"
+ }
+ ]
+}
+```
+1. Click review policy, fill all fields and click create policy:
+{% include image.html width="80%" ratio="60%"
+ link="./img/create_policy.png"
+ caption="Validate policy"
+ %}
+1. Click on roles, select you master role nodes, and click attach policy:
+{% include image.html width="100%" ratio="35%"
+ link="./img/roles_summary.png"
+ caption="Attach policy"
+ %}
+1. Your policy is now attach to your master node.
+
+## Rewrite Istio Ingress Service
+
+You need to rewrite ingress service with the following:
+
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+ name: istio-ingress
+ namespace: istio-system
+ labels:
+ istio: ingress
+ annotations:
+ service.beta.kubernetes.io/aws-load-balancer-type: "nlb"
+spec:
+ externalTrafficPolicy: Local
+ ports:
+ - port: 80
+ protocol: TCP
+ targetPort: 80
+ name: http
+ - port: 443
+ protocol: TCP
+ targetPort: 443
+ name: https
+ selector:
+ istio: ingress
+ type: LoadBalancer
+ ```
+
+## What's next
+
+Kubernetes [service networking](https://kubernetes.io/docs/concepts/services-networking/service/) should be consulted if further information is needed.
diff --git a/_blog/2018/egress-https.md b/_blog/2018/egress-https.md
index 6382a4242b189..732ae0a902902 100644
--- a/_blog/2018/egress-https.md
+++ b/_blog/2018/egress-https.md
@@ -1,14 +1,12 @@
---
-title: "Consuming External Web Services"
-overview: Describes a simple scenario based on Istio Bookinfo sample
-publish_date: January 31, 2018
+title: Consuming External Web Services
+description: Describes a simple scenario based on Istio Bookinfo sample
+publishdate: 2018-01-31
subtitle: Egress Rules for HTTPS traffic
attribution: Vadim Eisenberg
-order: 93
+weight: 93
-layout: blog
-type: markdown
redirect_from: "/blog/egress-https.html"
---
{% include home.html %}
@@ -20,9 +18,10 @@ In this blog post, I modify the [Istio Bookinfo Sample Application]({{home}}/doc
## Bookinfo sample application with external details web service
### Initial setting
+
To demonstrate the scenario of consuming an external web service, I start with a Kubernetes cluster with [Istio installed]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps). Then I deploy [Istio Bookinfo Sample Application]({{home}}/docs/guides/bookinfo.html). This application uses the _details_ microservice to fetch book details, such as the number of pages and the publisher. The original _details_ microservice provides the book details without consulting any external service.
-The example commands in this blog post work with Istio version 0.2+, with or without [Mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) enabled.
+The example commands in this blog post work with Istio 0.2+, with or without [Mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) enabled.
The Bookinfo configuration files required for the scenario of this post appear starting from [Istio release version 0.5](https://github.com/istio/istio/releases/tag/0.5.0).
The Bookinfo configuration files reside in the `samples/bookinfo/kube` directory of the Istio release archive.
@@ -30,27 +29,24 @@ The Bookinfo configuration files reside in the `samples/bookinfo/kube` directory
Here is a copy of the end-to-end architecture of the application from the original [Bookinfo Guide]({{home}}/docs/guides/bookinfo.html).
{% assign url = home | append: "/docs/guides/img/bookinfo/withistio.svg" %}
-{% include figure.html width='80%' ratio='59.08%'
- img=url
- alt='The Original Bookinfo Application'
- title='The Original Bookinfo Application'
- caption='The Original Bookinfo Application'
+{% include image.html width="80%" ratio="59.08%"
+ link=url
+ caption="The Original Bookinfo Application"
%}
### Bookinfo with details version 2
+
Let's add a new version of the _details_ microservice, _v2_, that fetches the book details from [Google Books APIs](https://developers.google.com/books/docs/v1/getting_started).
-```bash
-kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-details-v2.yaml)
+```command
+$ kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-details-v2.yaml)
```
The updated architecture of the application now looks as follows:
-{% include figure.html width='80%' ratio='65.16%'
- img='./img/bookinfo-details-v2.svg'
- alt='The Bookinfo Application with details V2'
- title='The Bookinfo Application with details V2'
- caption='The Bookinfo Application with details V2'
+{% include image.html width="80%" ratio="65.16%"
+ link="./img/bookinfo-details-v2.svg"
+ caption="The Bookinfo Application with details V2"
%}
Note that the Google Books web service is outside the Istio service mesh, the boundary of which is marked by a dashed line.
@@ -77,11 +73,9 @@ Let's access the web page of the application, after [determining the ingress IP
Oops... Instead of the book details we have the _Error fetching product details_ message displayed:
-{% include figure.html width='80%' ratio='36.01%'
- img='./img/errorFetchingBookDetails.png'
- alt='The Error Fetching Product Details Message'
- title='The Error Fetching Product Details Message'
- caption='The Error Fetching Product Details Message'
+{% include image.html width="80%" ratio="36.01%"
+ link="./img/errorFetchingBookDetails.png"
+ caption="The Error Fetching Product Details Message"
%}
The good news is that our application did not crash. With a good microservice design, we do not have **failure propagation**. In our case, the failing _details_ microservice does not cause the _productpage_ microservice to fail. Most of the functionality of the application is still provided, despite the failure in the _details_ microservice. We have **graceful service degradation**: as you can see, the reviews and the ratings are displayed correctly, and the application is still useful.
@@ -89,7 +83,9 @@ The good news is that our application did not crash. With a good microservice de
So what might have gone wrong? Ah... The answer is that I forgot to enable traffic from inside the mesh to an external service, in this case to the Google Books web service. By default, the Istio sidecar proxies ([Envoy proxies](https://www.envoyproxy.io)) **block all the traffic to destinations outside the cluster**. To enable such traffic, we must define an [egress rule]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#EgressRule).
### Egress rule for Google Books web service
+
No worries, let's define an **egress rule** and fix our application:
+
```bash
cat <<EOF | istioctl create -f -
apiVersion: config.istio.io/v1alpha2
@@ -108,40 +104,35 @@ EOF
Now accessing the web page of the application displays the book details without error:
-{% include figure.html width='80%' ratio='34.82%'
- img='./img/externalBookDetails.png'
- alt='Book Details Displayed Correctly'
- title='Book Details Displayed Correctly'
- caption='Book Details Displayed Correctly'
+{% include image.html width="80%" ratio="34.82%"
+ link="./img/externalBookDetails.png"
+ caption="Book Details Displayed Correctly"
%}
-Note that our egress rule allows traffic to any domain matching _*.googleapis.com_, on port 443, using the HTTPS protocol. Let's assume for the sake of the example that the applications in our Istio service mesh must access multiple subdomains of _gooogleapis.com_, for example _www.googleapis.com_ and also _fcm.googleapis.com_. Our rule allows traffic to both _www.googleapis.com_ and _fcm.googleapis.com_, since they both match _*.googleapis.com_. This **wildcard** feature allows us to enable traffic to multiple domains using a single egress rule.
+Note that our egress rule allows traffic to any domain matching _*.googleapis.com_, on port 443, using the HTTPS protocol. Let's assume for the sake of the example that the applications in our Istio service mesh must access multiple subdomains of _googleapis.com_, for example _www.googleapis.com_ and also _fcm.googleapis.com_. Our rule allows traffic to both _www.googleapis.com_ and _fcm.googleapis.com_, since they both match _*.googleapis.com_. This **wildcard** feature allows us to enable traffic to multiple domains using a single egress rule.
We can query our egress rules:
-```bash
-istioctl get egressrules
-```
-
-and see our new egress rule in the output:
-```bash
-NAME KIND NAMESPACE
-googleapis EgressRule.v1alpha2.config.istio.io default
+```command
+$ istioctl get egressrules
+NAME KIND NAMESPACE
+googleapis EgressRule.v1alpha2.config.istio.io default
```
We can delete our egress rule:
-```bash
-istioctl delete egressrule googleapis -n default
-```
-and see in the output of _istioctl delete_ that the egress rule is deleted:
-```
+```command
+$ istioctl delete egressrule googleapis -n default
Deleted config: egressrule googleapis
```
+and see in the output that the egress rule is deleted.
+
Accessing the web page after deleting the egress rule produces the same error that we experienced before, namely _Error fetching product details_. As we can see, the egress rules are defined **dynamically**, as many other Istio configuration artifacts. The Istio operators can decide dynamically which domains they allow the microservices to access. They can enable and disable traffic to the external domains on the fly, without redeploying the microservices.
## Issues with Istio egress traffic control
+
### TLS origination by Istio
+
There is a caveat to this story. In HTTPS, all the HTTP details (hostname, path, headers etc.) are encrypted, so Istio cannot know the destination domain of the encrypted requests. Well, Istio could know the destination domain by the [SNI](https://tools.ietf.org/html/rfc3546#section-3.1) (_Server Name Indication_) field. This feature, however, is not yet implemented in Istio. Therefore, currently Istio cannot perform filtering of HTTPS requests based on the destination domains.
To allow Istio to perform filtering of egress requests based on domains, the microservices must issue HTTP requests. Istio then opens an HTTPS connection to the destination (performs TLS origination). The code of the microservices must be written differently or configured differently, according to whether the microservice runs inside or outside an Istio service mesh. This contradicts the Istio design goal of [maximizing transparency]({{home}}/docs/concepts/what-is-istio/goals.html). Sometimes we need to compromise...
@@ -149,14 +140,13 @@ To allow Istio to perform filtering of egress requests based on domains, the mic
The diagram below shows how the HTTPS traffic to external services is performed. On the top, a microservice outside an Istio service mesh
sends regular HTTPS requests, encrypted end-to-end. On the bottom, the same microservice inside an Istio service mesh must send unencrypted HTTP requests inside a pod, which are intercepted by the sidecar Envoy proxy. The sidecar proxy performs TLS origination, so the traffic between the pod and the external service is encrypted.
-{% include figure.html width='80%' ratio='65.16%'
- img='./img/https_from_the_app.svg'
- alt='HTTPS traffic to external services, from outside vs. from inside an Istio service mesh'
- title='HTTPS traffic to external services, from outside vs. from inside an Istio service mesh'
- caption='HTTPS traffic to external services, from outside vs. from inside an Istio service mesh'
+{% include image.html width="80%" ratio="65.16%"
+ link="./img/https_from_the_app.svg"
+ caption="HTTPS traffic to external services, from outside vs. from inside an Istio service mesh"
%}
Here is how we code this behavior in the [the Bookinfo details microservice code](https://github.com/istio/istio/blob/master/samples/bookinfo/src/details/details.rb), using the Ruby [net/http module](https://docs.ruby-lang.org/en/2.0.0/Net/HTTP.html):
+
```ruby
uri = URI.parse('https://www.googleapis.com/books/v1/volumes?q=isbn:' + isbn)
http = Net::HTTP.new(uri.host, uri.port)
@@ -170,7 +160,10 @@ Note that the port is derived by the `URI.parse` from the URI's schema (https://
When the `WITH_ISTIO` environment variable is defined, the request is performed without SSL (plain HTTP).
-We set the `WITH_ISTIO` environment variable to _"true"_ in the [Kubernetes deployment spec of _details v2_](https://github.com/istio/istio/blob/master/samples/bookinfo/kube/bookinfo-details-v2.yaml), the `container` section:
+We set the `WITH_ISTIO` environment variable to _"true"_ in the
+[Kubernetes deployment spec of details v2](https://github.com/istio/istio/blob/master/samples/bookinfo/kube/bookinfo-details-v2.yaml),
+the `container` section:
+
```yaml
env:
- name: WITH_ISTIO
@@ -178,22 +171,27 @@ env:
```
#### Relation to Istio mutual TLS
+
Note that the TLS origination in this case is unrelated to [the mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) applied by Istio. The TLS origination for the external services will work, whether the Istio mutual TLS is enabled or not. The **mutual** TLS secures service-to-service communication **inside** the service mesh and provides each service with a strong identity. In the case of the **external services**, we have **one-way** TLS, the same mechanism used to secure communication between a web browser and a web server. TLS is applied to the communication with external services to verify the identity of the external server and to encrypt the traffic.
### Malicious microservices threat
+
Another issue is that the egress rules are currently **not a security feature**; they only **enable** traffic to external services. For HTTP-based protocols, the rules are based on domains. Istio does not check that the destination IP of the request matches the _Host_ header. This means that a malicious microservice inside a service mesh could trick Istio to allow traffic to a malicious IP. The attack is to set one of the domains allowed by some existing Egress Rule as the _Host_ header of the malicious request.
Securing egress traffic is currently not supported in Istio and should be performed elsewhere, for example by a firewall or by an additional proxy outside Istio. Right now, we're working to enable the application of Mixer security policies on the egress traffic and to prevent the attack described above.
### No tracing, telemetry and no mixer checks
+
Note that currently no tracing and telemetry information can be collected for the egress traffic. Mixer policies cannot be applied. We are working to fix this in future Istio releases.
## Future work
+
In my next blog posts I will demonstrate Istio egress rules for TCP traffic and will show examples of combining routing rules and egress rules.
In Istio, we are working on making Istio egress traffic more secure, and in particular on enabling tracing, telemetry, and Mixer checks for the egress traffic.
## Conclusion
+
In this blog post I demonstrated how the microservices in an Istio service mesh can consume external web services via HTTPS. By default, Istio blocks all the traffic to the hosts outside the cluster. To enable such traffic, egress rules must be created for the service mesh. It is possible to access the external sites by HTTPS, however the microservices must issue HTTP requests while Istio will perform TLS origination. Currently, no tracing, telemetry and Mixer checks are enabled for the egress traffic. Egress rules are currently not a security feature, so additional mechanisms are required for securing egress traffic. We're working to enable logging/telemetry and security policies for the egress traffic in future releases.
To read more about Istio egress traffic control, see [Control Egress Traffic Task]({{home}}/docs/tasks/traffic-management/egress.html).
diff --git a/_blog/2018/egress-tcp.md b/_blog/2018/egress-tcp.md
index 9d18a7fa474d9..4719315857642 100644
--- a/_blog/2018/egress-tcp.md
+++ b/_blog/2018/egress-tcp.md
@@ -1,14 +1,12 @@
---
-title: "Consuming External TCP Services"
-overview: Describes a simple scenario based on Istio Bookinfo sample
-publish_date: February 6, 2018
+title: Consuming External TCP Services
+description: Describes a simple scenario based on Istio Bookinfo sample
+publishdate: 2018-02-06
subtitle: Egress rules for TCP traffic
attribution: Vadim Eisenberg
-order: 92
+weight: 92
-layout: blog
-type: markdown
redirect_from: "/blog/egress-tcp.html"
---
{% include home.html %}
@@ -16,48 +14,48 @@ redirect_from: "/blog/egress-tcp.html"
In my previous blog post, [Consuming External Web Services]({{home}}/blog/2018/egress-https.html), I described how external services can be consumed by in-mesh Istio applications via HTTPS. In this post, I demonstrate consuming external services over TCP. I use the [Istio Bookinfo sample application]({{home}}/docs/guides/bookinfo.html), the version in which the book ratings data is persisted in a MySQL database. I deploy this database outside the cluster and configure the _ratings_ microservice to use it. I define an [egress rule]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#EgressRule) to allow the in-mesh applications to access the external database.
## Bookinfo sample application with external ratings database
+
First, I set up a MySQL database instance to hold book ratings data, outside my Kubernetes cluster. Then I modify the [Bookinfo sample application]({{home}}/docs/guides/bookinfo.html) to use my database.
### Setting up the database for ratings data
+
For this task I set up an instance of [MySQL](https://www.mysql.com). You can use any MySQL instance; I use [Compose for MySQL](https://www.ibm.com/cloud/compose/mysql). I use `mysqlsh` ([MySQL Shell](https://dev.mysql.com/doc/refman/5.7/en/mysqlsh.html)) as a MySQL client to feed the ratings data.
1. To initialize the database, I run the following command entering the password when prompted. The command is performed with the credentials of the `admin` user, created by default by [Compose for MySQL](https://www.ibm.com/cloud/compose/mysql).
- ```bash
- curl -s https://raw.githubusercontent.com/istio/istio/master/samples/bookinfo/src/mysql/mysqldb-init.sql |
+ ```command
+ $ curl -s https://raw.githubusercontent.com/istio/istio/master/samples/bookinfo/src/mysql/mysqldb-init.sql | \
mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port>
```
_**OR**_
When using the `mysql` client and a local MySQL database, I would run:
- ```bash
- curl -s https://raw.githubusercontent.com/istio/istio/master/samples/bookinfo/src/mysql/mysqldb-init.sql |
+ ```command
+ $ curl -s https://raw.githubusercontent.com/istio/istio/master/samples/bookinfo/src/mysql/mysqldb-init.sql | \
mysql -u root -p
```
-2. I then create a user with the name _bookinfo_ and grant it _SELECT_ privilege on the `test.ratings` table:
- ```bash
- mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port> \
+1. I then create a user with the name _bookinfo_ and grant it _SELECT_ privilege on the `test.ratings` table:
+ ```command
+ $ mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port> \
-e "CREATE USER 'bookinfo' IDENTIFIED BY '<password you choose>'; GRANT SELECT ON test.ratings to 'bookinfo';"
```
_**OR**_
For `mysql` and the local database, the command would be:
- ```bash
- mysql -u root -p -e \
+ ```command
+ $ mysql -u root -p -e \
"CREATE USER 'bookinfo' IDENTIFIED BY '<password you choose>'; GRANT SELECT ON test.ratings to 'bookinfo';"
```
Here I apply the [principle of least privilege](https://en.wikipedia.org/wiki/Principle_of_least_privilege). This means that I do not use my _admin_ user in the Bookinfo application. Instead, I create a special user for the Bookinfo application , _bookinfo_, with minimal privileges. In this case, the _bookinfo_ user only has the `SELECT` privilege on a single table.
After running the command to create the user, I will clean my bash history by checking the number of the last command and running `history -d <the number of the command that created the user>`. I don't want the password of the new user to be stored in the bash history. If I'm using `mysql`, I'll remove the last command from `~/.mysql_history` file as well. Read more about password protection of the newly created user in [MySQL documentation](https://dev.mysql.com/doc/refman/5.5/en/create-user.html).
-3. I inspect the created ratings to see that everything worked as expected:
- ```bash
- mysqlsh --sql --ssl-mode=REQUIRED -u bookinfo -p --host <the database host> --port <the database port> \
+1. I inspect the created ratings to see that everything worked as expected:
+ ```command
+ $ mysqlsh --sql --ssl-mode=REQUIRED -u bookinfo -p --host <the database host> --port <the database port> \
-e "select * from test.ratings;"
- ```
- ```bash
Enter password:
+----------+--------+
| ReviewID | Rating |
@@ -70,10 +68,8 @@ For this task I set up an instance of [MySQL](https://www.mysql.com). You can us
_**OR**_
For `mysql` and the local database:
- ```bash
- mysql -u bookinfo -p -e "select * from test.ratings;"
- ```
- ```bash
+ ```command
+ $ mysql -u bookinfo -p -e "select * from test.ratings;"
Enter password:
+----------+--------+
| ReviewID | Rating |
@@ -83,12 +79,10 @@ For this task I set up an instance of [MySQL](https://www.mysql.com). You can us
+----------+--------+
```
-4. I set the ratings temporarily to 1 to provide a visual clue when our database is used by the Bookinfo _ratings_ service:
- ```bash
- mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port> \
+1. I set the ratings temporarily to 1 to provide a visual clue when our database is used by the Bookinfo _ratings_ service:
+ ```command
+ $ mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port> \
-e "update test.ratings set rating=1; select * from test.ratings;"
- ```
- ```bash
Enter password:
+----------+--------+
| ReviewID | Rating |
@@ -101,10 +95,8 @@ For this task I set up an instance of [MySQL](https://www.mysql.com). You can us
_**OR**_
For `mysql` and the local database:
- ```bash
- mysql -u root -p -e "update test.ratings set rating=1; select * from test.ratings;"
- ```
- ```bash
+ ```command
+ $ mysql -u root -p -e "update test.ratings set rating=1; select * from test.ratings;"
Enter password:
+----------+--------+
| ReviewID | Rating |
@@ -118,21 +110,21 @@ For this task I set up an instance of [MySQL](https://www.mysql.com). You can us
Now I am ready to deploy a version of the Bookinfo application that will use my database.
### Initial setting of Bookinfo application
+
To demonstrate the scenario of using an external database, I start with a Kubernetes cluster with [Istio installed]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps). Then I deploy the [Istio Bookinfo sample application]({{home}}/docs/guides/bookinfo.html). This application uses the _ratings_ microservice to fetch book ratings, a number between 1 and 5. The ratings are displayed as stars for each review. There are several versions of the _ratings_ microservice. Some use [MongoDB](https://www.mongodb.com), others use [MySQL](https://www.mysql.com) as their database.
-The example commands in this blog post work with Istio version 0.3+, with or without [Mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) enabled.
+The example commands in this blog post work with Istio 0.3+, with or without [Mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html) enabled.
As a reminder, here is the end-to-end architecture of the application from the [Bookinfo Guide]({{home}}/docs/guides/bookinfo.html).
{% assign url = home | append: "/docs/guides/img/bookinfo/withistio.svg" %}
-{% include figure.html width='80%' ratio='59.08%'
- img=url
- alt='The original Bookinfo application'
- title='The original Bookinfo application'
- caption='The original Bookinfo application'
+{% include image.html width="80%" ratio="59.08%"
+ link=url
+ caption="The original Bookinfo application"
%}
### Use the database for ratings data in Bookinfo application
+
1. I modify the deployment spec of a version of the _ratings_ microservice that uses a MySQL database, to use my database instance. The spec is in `samples/bookinfo/kube/bookinfo-ratings-v2-mysql.yaml` of an Istio release archive. I edit the following lines:
```yaml
@@ -147,46 +139,40 @@ As a reminder, here is the end-to-end architecture of the application from the [
```
I replace the values in the snippet above, specifying the database host, port, user, and password. Note that the correct way to work with passwords in container's environment variables in Kubernetes is [to use secrets](https://kubernetes.io/docs/concepts/configuration/secret/#using-secrets-as-environment-variables). For this example task only, I write the password directly in the deployment spec. **Do not do it** in a real environment! I also assume everyone realizes that `"password"` should not be used as a password...
-2. I apply the modified spec to deploy the version of the _ratings_ microservice, _v2-mysql_, that will use my database.
+1. I apply the modified spec to deploy the version of the _ratings_ microservice, _v2-mysql_, that will use my database.
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-ratings-v2-mysql.yaml)
- ```
- ```bash
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-ratings-v2-mysql.yaml)
deployment "ratings-v2-mysql" created
```
-3. I route all the traffic destined to the _reviews_ service to its _v3_ version. I do this to ensure that the _reviews_ service always calls the _ratings_ service. In addition, I route all the traffic destined to the _ratings_ service to _ratings v2-mysql_ that uses my database. I add routing for both services above by adding two [route rules]({{home}}/docs/reference/config/istio.routing.v1alpha1.html). These rules are specified in `samples/bookinfo/kube/route-rule-ratings-mysql.yaml` of an Istio release archive.
+1. I route all the traffic destined to the _reviews_ service to its _v3_ version. I do this to ensure that the _reviews_ service always calls the _ratings_
+service. In addition, I route all the traffic destined to the _ratings_ service to _ratings v2-mysql_ that uses my database. I add routing for both services above by adding two [route rules]({{home}}/docs/reference/config/istio.routing.v1alpha1.html). These rules are specified in `samples/bookinfo/kube/route-rule-ratings-mysql.yaml` of an Istio release archive.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-ratings-mysql.yaml
- ```
- ```bash
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-ratings-mysql.yaml
Created config route-rule/default/ratings-test-v2-mysql at revision 1918799
Created config route-rule/default/reviews-test-ratings-v2 at revision 1918800
```
The updated architecture appears below. Note that the blue arrows inside the mesh mark the traffic configured according to the route rules we added. According to the route rules, the traffic is sent to _reviews v3_ and _ratings v2-mysql_.
-{% include figure.html width='80%' ratio='59.31%'
- img='./img/bookinfo-ratings-v2-mysql-external.svg'
- alt='The Bookinfo application with ratings v2-mysql and an external MySQL database'
- title='The Bookinfo application with ratings v2-mysql and an external MySQL database'
- caption='The Bookinfo application with ratings v2-mysql and an external MySQL database'
+{% include image.html width="80%" ratio="59.31%"
+ link="./img/bookinfo-ratings-v2-mysql-external.svg"
+ caption="The Bookinfo application with ratings v2-mysql and an external MySQL database"
%}
Note that the MySQL database is outside the Istio service mesh, or more precisely outside the Kubernetes cluster. The boundary of the service mesh is marked by a dashed line.
### Access the webpage
+
Let's access the webpage of the application, after [determining the ingress IP and port]({{home}}/docs/guides/bookinfo.html#determining-the-ingress-ip-and-port).
We have a problem... Instead of the rating stars, the message _"Ratings service is currently unavailable"_ is currently displayed below each review:
-{% include figure.html width='80%' ratio='36.19%'
- img='./img/errorFetchingBookRating.png'
- alt='The Ratings service error messages'
- title='The Ratings service error messages'
- caption='The Ratings service error messages'
+{% include image.html width="80%" ratio="36.19%"
+ link="./img/errorFetchingBookRating.png"
+ caption="The Ratings service error messages"
%}
As in [Consuming External Web Services]({{home}}/blog/2018/egress-https.html), we experience **graceful service degradation**, which is good. The application did not crash due to the error in the _ratings_ microservice. The webpage of the application correctly displayed the book information, the details, and the reviews, just without the rating stars.
@@ -194,6 +180,7 @@ As in [Consuming External Web Services]({{home}}/blog/2018/egress-https.html), w
We have the same problem as in [Consuming External Web Services]({{home}}/blog/2018/egress-https.html), namely all the traffic outside the Kubernetes cluster, both TCP and HTTP, is blocked by default by the sidecar proxies. To enable such traffic for TCP, an egress rule for TCP must be defined.
### Egress rule for an external MySQL instance
+
TCP egress rules come to our rescue. I copy the following YAML spec to a text file (let's call it `egress-rule-mysql.yaml`) and edit it to specify the IP of my database instance and its port.
```yaml
@@ -211,21 +198,18 @@ spec:
```
Then I run `istioctl` to add the egress rule to the service mesh:
-```bash
-istioctl create -f egress-rule-mysql.yaml
-```
-```bash
+
+```command
+$ istioctl create -f egress-rule-mysql.yaml
Created config egress-rule/default/mysql at revision 1954425
```
Note that for a TCP egress rule, we specify `tcp` as the protocol of a port of the rule. Also note that we use an IP of the external service instead of its domain name. I will talk more about TCP egress rules [below](#egress-rules-for-tcp-traffic). For now, let's verify that the egress rule we added fixed the problem. Let's access the webpage and see if the stars are back.
It worked! Accessing the web page of the application displays the ratings without error:
-{% include figure.html width='80%' ratio='36.69%'
- img='./img/externalMySQLRatings.png'
- alt='Book Ratings Displayed Correctly'
- title='Book Ratings Displayed Correctly'
- caption='Book Ratings Displayed Correctly'
+{% include image.html width="80%" ratio="36.69%"
+ link="./img/externalMySQLRatings.png"
+ caption="Book Ratings Displayed Correctly"
%}
Note that we see a one-star rating for both displayed reviews, as expected. I changed the ratings to be one star to provide us with a visual clue that our external database is indeed being used.
@@ -233,13 +217,17 @@ Note that we see a one-star rating for both displayed reviews, as expected. I ch
As with egress rules for HTTP/HTTPS, we can delete and create egress rules for TCP using `istioctl`, dynamically.
## Motivation for egress TCP traffic control
+
Some in-mesh Istio applications must access external services, for example legacy systems. In many cases, the access is not performed over HTTP or HTTPS protocols. Other TCP protocols are used, such as database-specific protocols like [MongoDB Wire Protocol](https://docs.mongodb.com/manual/reference/mongodb-wire-protocol/) and [MySQL Client/Server Protocol](https://dev.mysql.com/doc/internals/en/client-server-protocol.html) to communicate with external databases.
Note that in case of access to external HTTPS services, as described in the [Control Egress TCP Traffic]({{home}}/docs/tasks/traffic-management/egress.html) task, an application must issue HTTP requests to the external service. The Envoy sidecar proxy attached to the pod or the VM, will intercept the requests and open an HTTPS connection to the external service. The traffic will be unencrypted inside the pod or the VM, but it will leave the pod or the VM encrypted.
However, sometimes this approach cannot work due to the following reasons:
+
* The code of the application is configured to use an HTTPS URL and cannot be changed
+
* The code of the application uses some library to access the external service and that library uses HTTPS only
+
* There are compliance requirements that do not allow unencrypted traffic, even if the traffic is unencrypted only inside the pod or the VM
In this case, HTTPS can be treated by Istio as _opaque TCP_ and can be handled in the same way as other TCP non-HTTP protocols.
@@ -247,6 +235,7 @@ In this case, HTTPS can be treated by Istio as _opaque TCP_ and can be handled i
Next let's see how we define egress rules for TCP traffic.
## Egress rules for TCP traffic
+
The egress rules for enabling TCP traffic to a specific port must specify `TCP` as the protocol of the port. Additionally, for the [MongoDB Wire Protocol](https://docs.mongodb.com/manual/reference/mongodb-wire-protocol/), the protocol can be specified as `MONGO`, instead of `TCP`.
For the `destination.service` field of the rule, an IP or a block of IPs in [CIDR](https://tools.ietf.org/html/rfc2317) notation must be used.
@@ -258,6 +247,7 @@ Note that all the IPs of an external service are not always known. To enable TCP
Also note that the IPs of an external service are not always static, for example in the case of [CDNs](https://en.wikipedia.org/wiki/Content_delivery_network). Sometimes the IPs are static most of the time, but can be changed from time to time, for example due to infrastructure changes. In these cases, if the range of the possible IPs is known, you should specify the range by CIDR blocks (even by multiple egress rules if needed). As an example, see the approach we used in the case of `wikipedia.org`, described in [Control Egress TCP Traffic Task]({{home}}/docs/tasks/traffic-management/egress-tcp.html). If the range of the possible IPs is not known, egress rules for TCP cannot be used and [the external services must be called directly]({{home}}/docs/tasks/traffic-management/egress.html#calling-external-services-directly), circumventing the sidecar proxies.
## Relation to mesh expansion
+
Note that the scenario described in this post is different from the mesh expansion scenario, described in the
[Integrating Virtual Machines]({{home}}/docs/guides/integrating-vms.html) guide. In that scenario, a MySQL instance runs on an external
(outside the cluster) machine (a bare metal or a VM), integrated with the Istio service mesh. The MySQL service becomes a first-class citizen of the mesh with all the beneficial features of Istio applicable. Among other things, the service becomes addressable by a local cluster domain name, for example by `mysqldb.vm.svc.cluster.local`, and the communication to it can be secured by
@@ -266,53 +256,53 @@ service must be registered with Istio. To enable such integration, Istio compone
installed on the machine and the Istio control plane (_Pilot_, _Mixer_, _CA_) must be accessible from it. See the
[Istio Mesh Expansion]({{home}}/docs/setup/kubernetes/mesh-expansion.html) instructions for more details.
-In our case, the MySQL instance can run on any machine or can be provisioned as a service by a cloud provider. There is no requirement to integrate the machine with Istio. The Istio contol plane does not have to be accessible from the machine. In the case of MySQL as a service, the machine which MySQL runs on may be not accessible and installing on it the required components may be impossible. In our case, the MySQL instance is addressable by its global domain name, which could be beneficial if the consuming applications expect to use that domain name. This is especially relevant when that expected domain name cannot be changed in the deployment configuration of the consuming applications.
+In our case, the MySQL instance can run on any machine or can be provisioned as a service by a cloud provider. There is no requirement to integrate the machine
+with Istio. The Istio control plane does not have to be accessible from the machine. In the case of MySQL as a service, the machine which MySQL runs on may be not accessible and installing on it the required components may be impossible. In our case, the MySQL instance is addressable by its global domain name, which could be beneficial if the consuming applications expect to use that domain name. This is especially relevant when that expected domain name cannot be changed in the deployment configuration of the consuming applications.
## Cleanup
+
1. Drop the _test_ database and the _bookinfo_ user:
- ```bash
- mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port> \
+ ```command
+ $ mysqlsh --sql --ssl-mode=REQUIRED -u admin -p --host <the database host> --port <the database port> \
-e "drop database test; drop user bookinfo;"
```
_**OR**_
For `mysql` and the local database:
- ```bash
- mysql -u root -p -e "drop database test; drop user bookinfo;"
+ ```command
+ $ mysql -u root -p -e "drop database test; drop user bookinfo;"
```
-2. Remove the route rules:
- ```bash
- istioctl delete -f samples/bookinfo/kube/route-rule-ratings-mysql.yaml
- ```
- ```bash
+1. Remove the route rules:
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-ratings-mysql.yaml
Deleted config: route-rule/default/ratings-test-v2-mysql
Deleted config: route-rule/default/reviews-test-ratings-v2
```
-3. Undeploy _ratings v2-mysql_:
- ```bash
- kubectl delete -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-ratings-v2-mysql.yaml)
- ```
- ```bash
+1. Undeploy _ratings v2-mysql_:
+ ```command
+ $ kubectl delete -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-ratings-v2-mysql.yaml)
deployment "ratings-v2-mysql" deleted
```
-4. Delete the egress rule:
- ```bash
- istioctl delete egressrule mysql -n default
- ```
- ```bash
+1. Delete the egress rule:
+ ```command
+ $ istioctl delete egressrule mysql -n default
Deleted config: egressrule mysql
```
## Future work
+
In my next blog posts, I will show examples of combining route rules and egress rules, and also examples of accessing external services via Kubernetes _ExternalName_ services.
## Conclusion
+
In this blog post, I demonstrated how the microservices in an Istio service mesh can consume external services via TCP. By default, Istio blocks all the traffic, TCP and HTTP, to the hosts outside the cluster. To enable such traffic for TCP, TCP egress rules must be created for the service mesh.
## What's next
To read more about Istio egress traffic control:
+
* for TCP, see [Control Egress TCP Traffic Task]({{home}}/docs/tasks/traffic-management/egress-tcp.html)
+
* for HTTP/HTTPS, see [Control Egress Traffic Task]({{home}}/docs/tasks/traffic-management/egress.html)
diff --git a/_blog/2018/img/attach_policies.png b/_blog/2018/img/attach_policies.png
new file mode 100644
index 0000000000000..7307239aa3498
Binary files /dev/null and b/_blog/2018/img/attach_policies.png differ
diff --git a/_blog/2018/img/create_policy.png b/_blog/2018/img/create_policy.png
new file mode 100644
index 0000000000000..792c7d18631e9
Binary files /dev/null and b/_blog/2018/img/create_policy.png differ
diff --git a/_blog/2018/img/createpolicyjson.png b/_blog/2018/img/createpolicyjson.png
new file mode 100644
index 0000000000000..26766f1d751d4
Binary files /dev/null and b/_blog/2018/img/createpolicyjson.png differ
diff --git a/_blog/2018/img/createpolicystart.png b/_blog/2018/img/createpolicystart.png
new file mode 100644
index 0000000000000..430ed3b23e31c
Binary files /dev/null and b/_blog/2018/img/createpolicystart.png differ
diff --git a/_blog/2018/img/gateways.svg b/_blog/2018/img/gateways.svg
new file mode 100644
index 0000000000000..9f57b6a49579a
--- /dev/null
+++ b/_blog/2018/img/gateways.svg
@@ -0,0 +1,202 @@
+<svg version="1.1" viewBox="0.0 0.0 925.0866141732283 325.6719160104987" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10"
+ xmlns="http://www.w3.org/2000/svg">
+ <clipPath id="p.0">
+ <path d="m0 0l925.0866 0l0 325.6719l-925.0866 0l0 -325.6719z" clip-rule="nonzero"/>
+ </clipPath>
+ <g clip-path="url(#p.0)">
+ <path fill="#000000" fill-opacity="0.0" d="m0 0l925.0866 0l0 325.6719l-925.0866 0z" fill-rule="evenodd"/>
+ <path fill="#f3f3f3"
+ d="m201.5643 108.55719l0 0c0 -21.065514 17.07698 -38.142494 38.1425 -38.142494l430.36072 0c10.115967 0 19.817688 4.0185776 26.970764 11.171684c7.153137 7.153099 11.171692 16.854797 11.171692 26.97081l0 152.5654c0 21.065521 -17.076965 38.142517 -38.142456 38.142517l-430.36072 0c-21.065521 0 -38.1425 -17.076996 -38.1425 -38.142517z"
+ fill-rule="evenodd"/>
+ <path stroke="#000000" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="8.0,6.0"
+ d="m201.5643 108.55719l0 0c0 -21.065514 17.07698 -38.142494 38.1425 -38.142494l430.36072 0c10.115967 0 19.817688 4.0185776 26.970764 11.171684c7.153137 7.153099 11.171692 16.854797 11.171692 26.97081l0 152.5654c0 21.065521 -17.076965 38.142517 -38.142456 38.142517l-430.36072 0c-21.065521 0 -38.1425 -17.076996 -38.1425 -38.142517z"
+ fill-rule="evenodd"/>
+ <path fill="#ffffff"
+ d="m506.1501 97.70604l95.02399 0c5.677246 0 11.121948 2.2552643 15.1362915 6.269661c4.0144043 4.0143967 6.2697144 9.459091 6.2697144 15.136307l0 128.6618c0 12.860794 -10.425781 23.286545 -23.28656 23.286545l-95.02402 0c-11.822205 0 -21.405975 -9.583771 -21.405975 -21.40596l0 -128.6618l0 0c0 -12.860809 10.425751 -23.286552 23.28656 -23.286552z"
+ fill-rule="evenodd"/>
+ <path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt"
+ d="m506.1501 97.70604l95.02399 0c5.677246 0 11.121948 2.2552643 15.1362915 6.269661c4.0144043 4.0143967 6.2697144 9.459091 6.2697144 15.136307l0 128.6618c0 12.860794 -10.425781 23.286545 -23.28656 23.286545l-95.02402 0c-11.822205 0 -21.405975 -9.583771 -21.405975 -21.40596l0 -128.6618l0 0c0 -12.860809 10.425751 -23.286552 23.28656 -23.286552z"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m508.2933 252.03996l-1.09375 0l-1.921875 -6.375q-0.125 -0.421875 -0.296875 -1.0625q-0.171875 -0.640625 -0.171875 -0.78125q-0.15625 0.859375 -0.46875 1.890625l-1.859375 6.328125l-1.09375 0l-2.53125 -9.515625l1.171875 0l1.5 5.875q0.3125 1.234375 0.46875 2.234375q0.171875 -1.1875 0.515625 -2.328125l1.703125 -5.78125l1.171875 0l1.796875 5.84375q0.3125 1.0 0.515625 2.265625q0.125 -0.921875 0.46875 -2.25l1.5 -5.859375l1.171875 0l-2.546875 9.515625zm10.026398 -3.578125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40621948 -0.84375 -0.40621948 -1.96875q0 -1.734375 0.8749695 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm10.581543 -3.6875q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm3.2530518 3.609375q0.28125 -0.390625 0.84375 -1.03125l2.3125 -2.4375l1.28125 0l-2.890625 3.03125l3.09375 4.09375l-1.3125 0l-2.515625 -3.375l-0.8125 0.703125l0 2.671875l-1.078125 0l0 -10.125l1.078125 0l0 5.375q0 0.34375 -0.0625 1.09375l0.0625 0zm6.9959717 3.65625l-1.078125 0l0 -10.125l1.078125 0l0 10.125zm8.449219 -3.578125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm11.706482 3.578125l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm10.318726 -0.1875l-0.0625 0q-0.75 1.078125 -2.234375 1.078125q-1.40625 0 -2.1875 -0.953125q-0.765625 -0.953125 -0.765625 -2.71875q0 -1.765625 0.78125 -2.734375q0.78125 -0.984375 2.171875 -0.984375q1.453125 0 2.21875 1.0625l0.09375 0l-0.046875 -0.515625l-0.03125 -0.5l0 -2.90625l1.078125 0l0 10.125l-0.875 0l-0.140625 -0.953125zm-2.15625 0.171875q1.109375 0 1.59375 -0.59375q0.5 -0.609375 0.5 -1.9375l0 -0.234375q0 -1.515625 -0.5 -2.15625q-0.5 -0.65625 -1.609375 -0.65625q-0.953125 0 -1.453125 0.75q-0.5 0.734375 -0.5 2.078125q0 1.359375 0.5 2.0625q0.5 0.6875 1.46875 0.6875zm9.098328 -8.734375l2.6875 0q1.890625 0 2.734375 0.578125q0.84375 0.5625 0.84375 1.78125q0 0.84375 -0.46875 1.390625q-0.46875 0.546875 -1.375 0.71875l0 0.0625q2.171875 0.375 2.171875 2.28125q0 1.265625 -0.875 1.984375q-0.859375 0.71875 -2.40625 0.71875l-3.3125 0l0 -9.515625zm1.109375 4.078125l1.8125 0q1.171875 0 1.6875 -0.359375q0.515625 -0.375 0.515625 -1.25q0 -0.796875 -0.578125 -1.15625q-0.5625 -0.359375 -1.8125 -0.359375l-1.625 0l0 3.125zm0 0.9375l0 3.5625l1.984375 0q1.140625 0 1.71875 -0.4375q0.59375 -0.453125 0.59375 -1.40625q0 -0.890625 -0.59375 -1.296875q-0.59375 -0.421875 -1.8125 -0.421875l-1.890625 0z"
+ fill-rule="nonzero"/>
+ <path fill="#ffffff"
+ d="m331.10806 97.70604l96.66708 0c5.241455 0 10.268219 2.0821533 13.974487 5.7884216c3.7062683 3.7062607 5.7884216 8.733032 5.7884216 13.97448l0 130.30487c0 12.860794 -10.425751 23.286545 -23.28656 23.286545l-96.66708 0c-10.914734 0 -19.762878 -8.848145 -19.762878 -19.762894l0 -130.30487l0 0c0 -12.860809 10.42572 -23.286552 23.28653 -23.286552z"
+ fill-rule="evenodd"/>
+ <path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt"
+ d="m331.10806 97.70604l96.66708 0c5.241455 0 10.268219 2.0821533 13.974487 5.7884216c3.7062683 3.7062607 5.7884216 8.733032 5.7884216 13.97448l0 130.30487c0 12.860794 -10.425751 23.286545 -23.28656 23.286545l-96.66708 0c-10.914734 0 -19.762878 -8.848145 -19.762878 -19.762894l0 -130.30487l0 0c0 -12.860809 10.42572 -23.286552 23.28653 -23.286552z"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m333.25128 252.03996l-1.09375 0l-1.921875 -6.375q-0.125 -0.421875 -0.296875 -1.0625q-0.171875 -0.640625 -0.171875 -0.78125q-0.15625 0.859375 -0.46875 1.890625l-1.859375 6.328125l-1.09375 0l-2.53125 -9.515625l1.171875 0l1.5 5.875q0.3125 1.234375 0.46875 2.234375q0.171875 -1.1875 0.515625 -2.328125l1.703125 -5.78125l1.171875 0l1.796875 5.84375q0.3125 1.0 0.515625 2.265625q0.125 -0.921875 0.46875 -2.25l1.5 -5.859375l1.171875 0l-2.546875 9.515625zm10.026428 -3.578125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm10.581512 -3.6875q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm3.2530823 3.609375q0.28125 -0.390625 0.84375 -1.03125l2.3125 -2.4375l1.28125 0l-2.890625 3.03125l3.09375 4.09375l-1.3125 0l-2.515625 -3.375l-0.8125 0.703125l0 2.671875l-1.078125 0l0 -10.125l1.078125 0l0 5.375q0 0.34375 -0.0625 1.09375l0.0625 0zm6.9959717 3.65625l-1.078125 0l0 -10.125l1.078125 0l0 10.125zm8.449188 -3.578125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm11.706512 3.578125l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm10.318726 -0.1875l-0.0625 0q-0.75 1.078125 -2.234375 1.078125q-1.40625 0 -2.1875 -0.953125q-0.765625 -0.953125 -0.765625 -2.71875q0 -1.765625 0.78125 -2.734375q0.78125 -0.984375 2.171875 -0.984375q1.453125 0 2.21875 1.0625l0.09375 0l-0.046875 -0.515625l-0.03125 -0.5l0 -2.90625l1.078125 0l0 10.125l-0.875 0l-0.140625 -0.953125zm-2.15625 0.171875q1.109375 0 1.59375 -0.59375q0.5 -0.609375 0.5 -1.9375l0 -0.234375q0 -1.515625 -0.5 -2.15625q-0.5 -0.65625 -1.609375 -0.65625q-0.953125 0 -1.453125 0.75q-0.5 0.734375 -0.5 2.078125q0 1.359375 0.5 2.0625q0.5 0.6875 1.46875 0.6875zm15.067078 0.78125l-1.171875 -3.03125l-3.8125 0l-1.171875 3.03125l-1.125 0l3.765625 -9.546875l0.921875 0l3.75 9.546875l-1.15625 0zm-1.515625 -4.015625l-1.109375 -2.953125q-0.21875 -0.5625 -0.453125 -1.375q-0.140625 0.625 -0.40625 1.375l-1.109375 2.953125l3.078125 0z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m164.81102 150.74803l-37.85826 -3.3385773" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m161.39719 150.44698l-34.444427 -3.0375214"
+ fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m161.39719 150.44698l-1.2190247 1.0214539l3.1766052 -0.8488159l-2.9790344 -1.3916626z" fill-rule="evenodd"/>
+ <path fill="#ffffff"
+ d="m29.094044 138.12088l0 0c-0.8682213 -4.470688 1.9823189 -8.896408 7.3420334 -11.399162c5.3597107 -2.502739 12.28862 -2.6435852 17.846527 -0.36276245l0 0c1.9687843 -2.5994492 5.5722275 -4.394188 9.720364 -4.8413467c4.14814 -0.4471588 8.353752 0.5057907 11.344719 2.5705872l0 0c1.6771545 -2.3568268 4.9702606 -3.9403152 8.71077 -4.188553c3.7405014 -0.24824524 7.3990326 0.8738861 9.677345 2.9682083l0 0c3.030014 -2.49823 7.8508453 -3.550087 12.376488 -2.7004318c4.5256424 0.84965515 7.9432526 3.448227 8.774017 6.6712875l0 0c3.7122803 0.7095108 6.804535 2.513176 8.477814 4.9449844c1.6732864 2.4318085 1.7634583 5.2532196 0.2472229 7.7352448l0 0c3.65551 3.3336487 4.51062 7.7756805 2.246231 11.6684265c-2.2643967 3.892746 -7.308098 6.651352 -13.248901 7.2463684c-0.041870117 3.653473 -2.9014587 7.0058594 -7.476555 8.764999c-4.575096 1.75914 -10.151283 1.6503448 -14.579254 -0.2844696c-1.8860779 4.3756714 -7.194763 7.5952606 -13.632507 8.267761c-6.4377365 0.67251587 -12.850449 -1.3226166 -16.46759 -5.123398c-4.4338646 1.8734131 -9.754131 2.413086 -14.760658 1.4972687c-5.006527 -0.915802 -9.277588 -3.209961 -11.849716 -6.3649445l0 0c-4.5308533 0.37150574 -8.91156 -1.2733307 -10.967995 -4.118164c-2.0564327 -2.8448486 -1.3508282 -6.2841034 1.7666264 -8.610886l0 0c-4.0416374 -1.6667938 -6.103924 -4.9742737 -5.111458 -8.197708c0.99246407 -3.2234344 4.814785 -5.6323853 9.473772 -5.970688z"
+ fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0"
+ d="m24.642168 152.46158l0 0c1.9072609 0.7865753 4.1105957 1.1433716 6.314167 1.0225067m2.8862095 11.706818c0.9476166 -0.077697754 1.876461 -0.24223328 2.7625809 -0.48936462m23.846466 5.356842c-0.66649246 -0.70033264 -1.224514 -1.4487 -1.6645584 -2.2323456m31.765808 -0.9121399l0 0c0.34386444 -0.79774475 0.566658 -1.6188049 0.6646652 -2.4494781m21.390312 -6.0307465c0.044578552 -3.8896942 -3.1083984 -7.4511414 -8.104652 -9.154587m19.107216 -9.759796c-0.8091278 1.3245087 -2.0443497 2.499466 -3.608818 3.4327545m-5.1154633 -16.113335l0 0c0.13786316 0.53487396 0.20166779 1.0777817 0.19052887 1.6212082m-21.340668 -5.5919037l0 0c-0.7558441 0.6231842 -1.3785553 1.3195877 -1.8487473 2.0675201m-16.539543 -0.8474426l0 0c-0.40279388 0.5660324 -0.70357513 1.1649933 -0.89541626 1.783081m-20.169975 0.4877243l0 0c1.1760521 0.48262024 2.2640572 1.0634995 3.24012 1.7298965m-28.428356 10.032089l0 0c0.11966324 0.6161804 0.3087368 1.224762 0.5654526 1.8200531"
+ fill-rule="evenodd"/>
+ <path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt"
+ d="m29.094044 138.12088l0 0c-0.8682213 -4.470688 1.9823189 -8.896408 7.3420334 -11.399162c5.3597107 -2.502739 12.28862 -2.6435852 17.846527 -0.36276245l0 0c1.9687843 -2.5994492 5.5722275 -4.394188 9.720364 -4.8413467c4.14814 -0.4471588 8.353752 0.5057907 11.344719 2.5705872l0 0c1.6771545 -2.3568268 4.9702606 -3.9403152 8.71077 -4.188553c3.7405014 -0.24824524 7.3990326 0.8738861 9.677345 2.9682083l0 0c3.030014 -2.49823 7.8508453 -3.550087 12.376488 -2.7004318c4.5256424 0.84965515 7.9432526 3.448227 8.774017 6.6712875l0 0c3.7122803 0.7095108 6.804535 2.513176 8.477814 4.9449844c1.6732864 2.4318085 1.7634583 5.2532196 0.2472229 7.7352448l0 0c3.65551 3.3336487 4.51062 7.7756805 2.246231 11.6684265c-2.2643967 3.892746 -7.308098 6.651352 -13.248901 7.2463684c-0.041870117 3.653473 -2.9014587 7.0058594 -7.476555 8.764999c-4.575096 1.75914 -10.151283 1.6503448 -14.579254 -0.2844696c-1.8860779 4.3756714 -7.194763 7.5952606 -13.632507 8.267761c-6.4377365 0.67251587 -12.850449 -1.3226166 -16.46759 -5.123398c-4.4338646 1.8734131 -9.754131 2.413086 -14.760658 1.4972687c-5.006527 -0.915802 -9.277588 -3.209961 -11.849716 -6.3649445l0 0c-4.5308533 0.37150574 -8.91156 -1.2733307 -10.967995 -4.118164c-2.0564327 -2.8448486 -1.3508282 -6.2841034 1.7666264 -8.610886l0 0c-4.0416374 -1.6667938 -6.103924 -4.9742737 -5.111458 -8.197708c0.99246407 -3.2234344 4.814785 -5.6323853 9.473772 -5.970688z"
+ fill-rule="evenodd"/>
+ <path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt"
+ d="m24.642168 152.46158l0 0c1.9072609 0.7865753 4.1105957 1.1433716 6.314167 1.0225067m2.8862095 11.706818c0.9476166 -0.077697754 1.876461 -0.24223328 2.7625809 -0.48936462m23.846466 5.356842c-0.66649246 -0.70033264 -1.224514 -1.4487 -1.6645584 -2.2323456m31.765808 -0.9121399l0 0c0.34386444 -0.79774475 0.566658 -1.6188049 0.6646652 -2.4494781m21.390312 -6.0307465c0.044578552 -3.8896942 -3.1083984 -7.4511414 -8.104652 -9.154587m19.107216 -9.759796c-0.8091278 1.3245087 -2.0443497 2.499466 -3.608818 3.4327545m-5.1154633 -16.113335l0 0c0.13786316 0.53487396 0.20166779 1.0777817 0.19052887 1.6212082m-21.340668 -5.5919037l0 0c-0.7558441 0.6231842 -1.3785553 1.3195877 -1.8487473 2.0675201m-16.539543 -0.8474426l0 0c-0.40279388 0.5660324 -0.70357513 1.1649933 -0.89541626 1.783081m-20.169975 0.4877243l0 0c1.1760521 0.48262024 2.2640572 1.0634995 3.24012 1.7298965m-28.428356 10.032089l0 0c0.11966324 0.6161804 0.3087368 1.224762 0.5654526 1.8200531"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m49.823322 137.55418q0 1.3125 -0.890625 2.015625q-0.890625 0.6875 -2.53125 0.6875l-1.015625 0l0 3.375l-1.0 0l0 -8.5625l2.234375 0q3.203125 0 3.203125 2.484375zm-4.4375 1.859375l0.90625 0q1.3125 0 1.90625 -0.421875q0.59375 -0.4375 0.59375 -1.390625q0 -0.84375 -0.5625 -1.25q-0.546875 -0.421875 -1.734375 -0.421875l-1.109375 0l0 3.484375zm7.0058594 -2.203125l0 4.171875q0 0.78125 0.34375 1.171875q0.359375 0.375 1.125 0.375q1.015625 0 1.46875 -0.546875q0.46875 -0.546875 0.46875 -1.796875l0 -3.375l0.96875 0l0 6.421875l-0.796875 0l-0.140625 -0.859375l-0.046875 0q-0.296875 0.46875 -0.828125 0.734375q-0.53125 0.25 -1.21875 0.25q-1.171875 0 -1.75 -0.5625q-0.578125 -0.5625 -0.578125 -1.78125l0 -4.203125l0.984375 0zm9.427734 -0.109375q1.265625 0 1.96875 0.875q0.7031288 0.859375 0.7031288 2.4375q0 1.578125 -0.7031288 2.46875q-0.703125 0.875 -1.96875 0.875q-0.625 0 -1.140625 -0.234375q-0.515625 -0.234375 -0.875 -0.71875l-0.0625 0l-0.203125 0.828125l-0.703125 0l0 -9.125l0.96875 0l0 2.21875q0 0.75 -0.046875 1.34375l0.046875 0q0.6875 -0.96875 2.015625 -0.96875zm-0.140625 0.8125q-0.984375 0 -1.4375 0.578125q-0.4375 0.5625 -0.4375 1.921875q0 1.359375 0.453125 1.9375q0.453125 0.578125 1.453125 0.578125q0.890625 0 1.328125 -0.640625q0.4375 -0.65625 0.4375 -1.890625q0 -1.25 -0.4375 -1.859375q-0.4375 -0.625 -1.359375 -0.625zm5.4785194 5.71875l-0.96875 0l0 -9.125l0.96875 0l0 9.125zm3.0351562 0l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.6757812 8.28125q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m48.635822 157.63231l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm5.6933594 0.125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm6.357422 5.03125q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm7.408207 0.6875l-1.1875 -3.765625q-0.109375 -0.34375 -0.40625 -1.578125l-0.046875 0q-0.234375 1.03125 -0.421875 1.59375l-1.203125 3.75l-1.1250038 0l-1.75 -6.421875l1.015625 0q0.625 2.421875 0.9375 3.6875q0.328125 1.265625 0.3750038 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6875l1.046875 0l1.15625 3.6875q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.734375l1.0 0l-1.765625 6.421875l-1.15625 0zm9.630859 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm9.529297 -3.328125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm2.9296875 3.265625q0.25 -0.359375 0.765625 -0.9375l2.0625 -2.203125l1.15625 0l-2.59375 2.734375l2.78125 3.6875l-1.171875 0l-2.28125 -3.03125l-0.71875 0.625l0 2.40625l-0.96875 0l0 -9.125l0.96875 0l0 4.84375q0 0.3125 -0.046875 1.0l0.046875 0z"
+ fill-rule="nonzero"/>
+ <path fill="#9fc5e8"
+ d="m164.81102 134.51723l0 0c0 -4.482147 3.6334991 -8.115654 8.115646 -8.115654l91.453735 0c2.1524048 0 4.216675 0.8550415 5.7386475 2.3770218c1.5219727 1.5219727 2.3770142 3.5862274 2.3770142 5.738632l0 32.46161c0 4.482147 -3.6335144 8.115646 -8.115662 8.115646l-91.453735 0c-4.482147 0 -8.115646 -3.6334991 -8.115646 -8.115646z"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m182.7974 142.18991q0 1.3125 -0.890625 2.015625q-0.890625 0.6875 -2.53125 0.6875l-1.015625 0l0 3.375l-1.0 0l0 -8.5625l2.234375 0q3.203125 0 3.203125 2.484375zm-4.4375 1.859375l0.90625 0q1.3125 0 1.90625 -0.421875q0.59375 -0.4375 0.59375 -1.390625q0 -0.84375 -0.5625 -1.25q-0.546875 -0.421875 -1.734375 -0.421875l-1.109375 0l0 3.484375zm7.0058594 -2.203125l0 4.171875q0 0.78125 0.34375 1.171875q0.359375 0.375 1.125 0.375q1.015625 0 1.46875 -0.546875q0.46875 -0.546875 0.46875 -1.796875l0 -3.375l0.96875 0l0 6.421875l-0.796875 0l-0.140625 -0.859375l-0.046875 0q-0.296875 0.46875 -0.828125 0.734375q-0.53125 0.25 -1.21875 0.25q-1.171875 0 -1.75 -0.5625q-0.578125 -0.5625 -0.578125 -1.78125l0 -4.203125l0.984375 0zm9.427734 -0.109375q1.265625 0 1.96875 0.875q0.703125 0.859375 0.703125 2.4375q0 1.578125 -0.703125 2.46875q-0.703125 0.875 -1.96875 0.875q-0.625 0 -1.140625 -0.234375q-0.515625 -0.234375 -0.875 -0.71875l-0.0625 0l-0.203125 0.828125l-0.703125 0l0 -9.125l0.96875 0l0 2.21875q0 0.75 -0.046875 1.34375l0.046875 0q0.6875 -0.96875 2.015625 -0.96875zm-0.140625 0.8125q-0.984375 0 -1.4375 0.578125q-0.4375 0.5625 -0.4375 1.921875q0 1.359375 0.453125 1.9375q0.453125 0.578125 1.453125 0.578125q0.890625 0 1.328125 -0.640625q0.4375 -0.65625 0.4375 -1.890625q0 -1.25 -0.4375 -1.859375q-0.4375 -0.625 -1.359375 -0.625zm5.4785156 5.71875l-0.96875 0l0 -9.125l0.96875 0l0 9.125zm3.0351562 0l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.6757812 8.28125q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm6.408203 -0.125l0 -8.5625l1.0 0l0 8.5625l-1.0 0zm7.595703 0l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm8.224609 -6.421875l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm8.855469 -2.1875q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.6796875 6.671875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm8.419922 3.96875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm5.7246094 0q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m182.46927 155.84616l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm9.871094 4.359375l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm7.001953 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm9.529297 5.71875l-1.1875 -3.765625q-0.109375 -0.34375 -0.40625 -1.578125l-0.046875 0q-0.234375 1.03125 -0.421875 1.59375l-1.203125 3.75l-1.125 0l-1.75 -6.421875l1.015625 0q0.625 2.421875 0.9375 3.6875q0.328125 1.265625 0.375 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6875l1.046875 0l1.15625 3.6875q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.734375l1.0 0l-1.765625 6.421875l-1.15625 0zm8.037109 0l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm3.9082031 -5.734375l1.046875 0l1.40625 3.65625q0.453125 1.265625 0.5625 1.8125l0.046875 0q0.078125 -0.296875 0.3125 -1.015625q0.25 -0.734375 1.609375 -4.453125l1.03125 0l-2.75 7.3125q-0.421875 1.078125 -0.96875 1.53125q-0.546875 0.46875 -1.34375 0.46875q-0.4375 0 -0.875 -0.109375l0 -0.78125q0.328125 0.078125 0.71875 0.078125q1.0 0 1.4375 -1.125l0.359375 -0.921875l-2.59375 -6.453125z"
+ fill-rule="nonzero"/>
+ <path fill="#9fc5e8" d="m326.12335 124.044586l102.96063 0l0 46.29921l-102.96063 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m366.0947 135.99419l-3.21875 -8.437492l-0.0625 0q0.09375 0.9999924 0.09375 2.3906174l0 6.046875l-1.015625 0l0 -9.515617l1.65625 0l3.015625 7.8437424l0.0625 0l3.03125 -7.8437424l1.65625 0l0 9.515617l-1.109375 0l0 -6.125q0 -1.0625 0.09375 -2.2968674l-0.046875 0l-3.265625 8.421867l-0.890625 0zm10.673676 0.125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.368195 4.40625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm6.639435 1.953125l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.609375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -10.124992l1.078125 0l0 3.0624924q0 0.546875 -0.046875 0.921875l0.0625 0q0.328125 -0.515625 0.90625 -0.8125q0.59375 -0.296875 1.34375 -0.296875q1.3125 0 1.96875 0.625q0.65625 0.625 0.65625 1.96875l0 4.65625l-1.078125 0z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m358.8917 144.86919l0 0.671875l-1.328125 0.15625q0.1875 0.234375 0.328125 0.609375q0.140625 0.359375 0.140625 0.8125q0 1.0625 -0.71875 1.6875q-0.703125 0.609375 -1.953125 0.609375q-0.328125 0 -0.609375 -0.046875q-0.6875 0.359375 -0.6875 0.921875q0 0.296875 0.234375 0.4375q0.25 0.140625 0.84375 0.140625l1.25 0q1.171875 0 1.78125 0.484375q0.625 0.484375 0.625 1.421875q0 1.171875 -0.953125 1.796875q-0.953125 0.625 -2.765625 0.625q-1.40625 0 -2.171875 -0.53125q-0.75 -0.515625 -0.75 -1.46875q0 -0.640625 0.421875 -1.125q0.421875 -0.46875 1.171875 -0.640625q-0.28125 -0.125 -0.46875 -0.375q-0.171875 -0.265625 -0.171875 -0.609375q0 -0.390625 0.203125 -0.6875q0.203125 -0.296875 0.65625 -0.5625q-0.546875 -0.234375 -0.90625 -0.78125q-0.34375 -0.546875 -0.34375 -1.25q0 -1.171875 0.703125 -1.796875q0.703125 -0.640625 1.984375 -0.640625q0.5625 0 1.015625 0.140625l2.46875 0zm-5.6875 8.328125q0 0.578125 0.484375 0.875q0.484375 0.296875 1.40625 0.296875q1.359375 0 2.0 -0.40625q0.65625 -0.40625 0.65625 -1.109375q0 -0.578125 -0.359375 -0.796875q-0.34375 -0.21875 -1.34375 -0.21875l-1.296875 0q-0.734375 0 -1.140625 0.34375q-0.40625 0.359375 -0.40625 1.015625zm0.578125 -6.046875q0 0.75 0.421875 1.140625q0.4375 0.375 1.1875 0.375q1.578125 0 1.578125 -1.546875q0 -1.59375 -1.59375 -1.59375q-0.765625 0 -1.1875 0.40625q-0.40625 0.40625 -0.40625 1.21875zm10.958069 4.84375l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm7.7718506 0q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm10.586945 6.359375l-1.3125 -4.1875q-0.125 -0.375 -0.453125 -1.734375l-0.0625 0q-0.25 1.125 -0.453125 1.75l-1.34375 4.171875l-1.25 0l-1.9375 -7.125l1.125 0q0.6875 2.6875 1.046875 4.09375q0.359375 1.390625 0.421875 1.890625l0.046875 0q0.078125 -0.375 0.234375 -0.953125q0.15625 -0.59375 0.28125 -0.953125l1.296875 -4.078125l1.171875 0l1.28125 4.078125q0.359375 1.125 0.5 1.890625l0.046875 0q0.03125 -0.234375 0.140625 -0.71875q0.109375 -0.5 1.359375 -5.25l1.109375 0l-1.96875 7.125l-1.28125 0zm8.929535 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm4.3343506 -6.359375l1.15625 0l1.5625 4.0625q0.515625 1.390625 0.640625 2.015625l0.046875 0q0.078125 -0.34375 0.34375 -1.140625q0.28125 -0.8125 1.78125 -4.9375l1.15625 0l-3.0625 8.109375q-0.453125 1.203125 -1.0625 1.703125q-0.609375 0.515625 -1.5 0.515625q-0.5 0 -0.96875 -0.109375l0 -0.875q0.359375 0.078125 0.796875 0.078125q1.109375 0 1.59375 -1.25l0.390625 -1.015625l-2.875 -7.15625z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m351.9049 164.33794q0 -1.71875 0.5 -3.21875q0.515625 -1.5 1.46875 -2.640625l1.046875 0q-0.9375 1.25 -1.40625 2.765625q-0.46875 1.5 -0.46875 3.09375q0 1.546875 0.46875 3.046875q0.484375 1.484375 1.390625 2.71875l-1.03125 0q-0.96875 -1.109375 -1.46875 -2.578125q-0.5 -1.484375 -0.5 -3.1875zm9.162537 1.703125q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm2.8269348 1.953125l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm8.324219 8.109375l-0.0625 0q-0.75 1.078125 -2.234375 1.078125q-1.40625 0 -2.1875 -0.953125q-0.765625 -0.953125 -0.765625 -2.71875q0 -1.765625 0.78125 -2.734375q0.78125 -0.984375 2.171875 -0.984375q1.453125 0 2.21875 1.0625l0.09375 0l-0.046875 -0.515625l-0.03125 -0.5l0 -2.90625l1.078125 0l0 10.125l-0.875 0l-0.140625 -0.953125zm-2.15625 0.171875q1.109375 0 1.59375 -0.59375q0.5 -0.609375 0.5 -1.9375l0 -0.234375q0 -1.515625 -0.5 -2.15625q-0.5 -0.65625 -1.609375 -0.65625q-0.953125 0 -1.453125 0.75q-0.5 0.734375 -0.5 2.078125q0 1.359375 0.5 2.0625q0.5 0.6875 1.46875 0.6875zm8.479889 0.90625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm7.618164 6.484375q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm7.8764343 -0.125l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm8.724976 -6.5q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm4.4405823 3.609375q0 1.71875 -0.5 3.203125q-0.5 1.46875 -1.453125 2.5625l-1.046875 0q0.90625 -1.21875 1.390625 -2.71875q0.484375 -1.5 0.484375 -3.046875q0 -1.59375 -0.484375 -3.09375q-0.46875 -1.515625 -1.40625 -2.765625l1.0625 0q0.953125 1.140625 1.453125 2.65625q0.5 1.5 0.5 3.203125z"
+ fill-rule="nonzero"/>
+ <path fill="#b6d7a8" d="m326.1223 201.7111l102.96063 0l0 29.259842l-102.96063 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m352.4503 219.15416q0 1.515625 -1.09375 2.359375q-1.09375 0.84375 -2.96875 0.84375q-2.03125 0 -3.125 -0.53125l0 -1.28125q0.703125 0.296875 1.53125 0.46875q0.828125 0.171875 1.640625 0.171875q1.328125 0 2.0 -0.5q0.671875 -0.5 0.671875 -1.40625q0 -0.59375 -0.234375 -0.96875q-0.234375 -0.375 -0.796875 -0.6875q-0.5625 -0.328125 -1.703125 -0.734375q-1.59375 -0.578125 -2.28125 -1.359375q-0.671875 -0.78125 -0.671875 -2.03125q0 -1.328125 0.984375 -2.109375q1.0 -0.78125 2.625 -0.78125q1.703125 0 3.140625 0.625l-0.421875 1.15625q-1.40625 -0.59375 -2.75 -0.59375q-1.046875 0 -1.640625 0.453125q-0.59375 0.453125 -0.59375 1.265625q0 0.59375 0.21875 0.96875q0.21875 0.375 0.734375 0.703125q0.515625 0.3125 1.59375 0.6875q1.796875 0.640625 2.46875 1.375q0.671875 0.734375 0.671875 1.90625zm5.765625 3.203125q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm9.6171875 -1.078125q0.578125 0 1.03125 0.09375l-0.1875 1.203125q-0.53125 -0.125 -0.9375 -0.125q-1.03125 0 -1.78125 0.84375q-0.734375 0.84375 -0.734375 2.109375l0 4.59375l-1.296875 0l0 -8.5625l1.078125 0l0.140625 1.578125l0.0625 0q0.484375 -0.828125 1.15625 -1.28125q0.671875 -0.453125 1.46875 -0.453125zm4.5 8.71875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm7.4375 0l-1.296875 0l0 -8.5625l1.296875 0l0 8.5625zm-1.40625 -10.890625q0 -0.4375 0.21875 -0.640625q0.21875 -0.21875 0.546875 -0.21875q0.3125 0 0.53125 0.21875q0.234375 0.203125 0.234375 0.640625q0 0.4375 -0.234375 0.65625q-0.21875 0.21875 -0.53125 0.21875q-0.328125 0 -0.546875 -0.21875q-0.21875 -0.21875 -0.21875 -0.65625zm7.578125 11.046875q-1.859375 0 -2.875 -1.140625q-1.015625 -1.15625 -1.015625 -3.25q0 -2.140625 1.03125 -3.3125q1.03125 -1.171875 2.953125 -1.171875q0.609375 0 1.21875 0.140625q0.625 0.125 0.984375 0.296875l-0.40625 1.109375q-0.421875 -0.171875 -0.9375 -0.28125q-0.5 -0.125 -0.890625 -0.125q-2.609375 0 -2.609375 3.328125q0 1.578125 0.625 2.421875q0.640625 0.84375 1.890625 0.84375q1.078125 0 2.203125 -0.453125l0 1.140625q-0.859375 0.453125 -2.171875 0.453125zm7.8203125 0q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm17.664062 7.640625l-1.5 0l-3.078125 -5.03125l-3.125 5.03125l-1.40625 0l3.796875 -5.96875l-3.53125 -5.453125l1.46875 0l2.828125 4.515625l2.859375 -4.515625l1.421875 0l-3.546875 5.40625l3.8125 6.015625z"
+ fill-rule="nonzero"/>
+ <path fill="#9fc5e8" d="m499.65878 124.04456l102.96066 0l0 46.299217l-102.96066 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m539.6301 135.99417l-3.21875 -8.4375l-0.0625 0q0.09375 1.0 0.09375 2.390625l0 6.046875l-1.015625 0l0 -9.515625l1.65625 0l3.015625 7.84375l0.0625 0l3.03125 -7.84375l1.65625 0l0 9.515625l-1.109375 0l0 -6.125q0 -1.0625 0.09375 -2.296875l-0.046875 0l-3.265625 8.421875l-0.890625 0zm10.673706 0.125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.368164 4.40625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm6.6394653 1.953125l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.609375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -10.125l1.078125 0l0 3.0625q0 0.546875 -0.046875 0.921875l0.0625 0q0.328125 -0.515625 0.90625 -0.8125q0.59375 -0.296875 1.34375 -0.296875q1.3125 0 1.96875 0.625q0.65625 0.625 0.65625 1.96875l0 4.65625l-1.078125 0z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m532.4271 144.86917l0 0.671875l-1.328125 0.15625q0.1875 0.234375 0.328125 0.609375q0.140625 0.359375 0.140625 0.8125q0 1.0625 -0.71875 1.6875q-0.703125 0.609375 -1.953125 0.609375q-0.328125 0 -0.609375 -0.046875q-0.6875 0.359375 -0.6875 0.921875q0 0.296875 0.234375 0.4375q0.25 0.140625 0.84375 0.140625l1.25 0q1.171875 0 1.78125 0.484375q0.625 0.484375 0.625 1.421875q0 1.171875 -0.953125 1.796875q-0.953125 0.625 -2.765625 0.625q-1.40625 0 -2.171875 -0.53125q-0.75 -0.515625 -0.75 -1.46875q0 -0.640625 0.421875 -1.125q0.421875 -0.46875 1.171875 -0.640625q-0.28125 -0.125 -0.46875 -0.375q-0.171875 -0.265625 -0.171875 -0.609375q0 -0.390625 0.203125 -0.6875q0.203125 -0.296875 0.65625 -0.5625q-0.546875 -0.234375 -0.90625 -0.78125q-0.34375 -0.546875 -0.34375 -1.25q0 -1.171875 0.703125 -1.796875q0.703125 -0.640625 1.984375 -0.640625q0.5625 0 1.015625 0.140625l2.46875 0zm-5.6875 8.328125q0 0.578125 0.484375 0.875q0.484375 0.296875 1.40625 0.296875q1.359375 0 2.0 -0.40625q0.65625 -0.40625 0.65625 -1.109375q0 -0.578125 -0.359375 -0.796875q-0.34375 -0.21875 -1.34375 -0.21875l-1.296875 0q-0.734375 0 -1.140625 0.34375q-0.40625 0.359375 -0.40625 1.015625zm0.578125 -6.046875q0 0.75 0.421875 1.140625q0.4375 0.375 1.1875 0.375q1.578125 0 1.578125 -1.546875q0 -1.59375 -1.59375 -1.59375q-0.765625 0 -1.1875 0.40625q-0.40625 0.40625 -0.40625 1.21875zm10.958069 4.84375l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm7.7718506 0q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm10.586975 6.359375l-1.3125 -4.1875q-0.125 -0.375 -0.453125 -1.734375l-0.0625 0q-0.25 1.125 -0.453125 1.75l-1.34375 4.171875l-1.25 0l-1.9375 -7.125l1.125 0q0.6875 2.6875 1.046875 4.09375q0.359375 1.390625 0.421875 1.890625l0.046875 0q0.078125 -0.375 0.234375 -0.953125q0.15625 -0.59375 0.28125 -0.953125l1.296875 -4.078125l1.171875 0l1.28125 4.078125q0.359375 1.125 0.5 1.890625l0.046875 0q0.03125 -0.234375 0.140625 -0.71875q0.109375 -0.5 1.359375 -5.25l1.109375 0l-1.96875 7.125l-1.28125 0zm8.929504 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm4.3343506 -6.359375l1.15625 0l1.5625 4.0625q0.515625 1.390625 0.640625 2.015625l0.046875 0q0.078125 -0.34375 0.34375 -1.140625q0.28125 -0.8125 1.78125 -4.9375l1.15625 0l-3.0625 8.109375q-0.453125 1.203125 -1.0625 1.703125q-0.609375 0.515625 -1.5 0.515625q-0.5 0 -0.96875 -0.109375l0 -0.875q0.359375 0.078125 0.796875 0.078125q1.109375 0 1.59375 -1.25l0.390625 -1.015625l-2.875 -7.15625z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m525.44037 164.33792q0 -1.71875 0.5 -3.21875q0.515625 -1.5 1.46875 -2.640625l1.046875 0q-0.9375 1.25 -1.40625 2.765625q-0.46875 1.5 -0.46875 3.09375q0 1.546875 0.46875 3.046875q0.484375 1.484375 1.390625 2.71875l-1.03125 0q-0.96875 -1.109375 -1.46875 -2.578125q-0.5 -1.484375 -0.5 -3.1875zm9.162537 1.703125q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm2.8269043 1.953125l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm8.324219 8.109375l-0.0625 0q-0.75 1.078125 -2.234375 1.078125q-1.40625 0 -2.1875 -0.953125q-0.765625 -0.953125 -0.765625 -2.71875q0 -1.765625 0.78125 -2.734375q0.78125 -0.984375 2.171875 -0.984375q1.453125 0 2.21875 1.0625l0.09375 0l-0.046875 -0.515625l-0.03125 -0.5l0 -2.90625l1.078125 0l0 10.125l-0.875 0l-0.140625 -0.953125zm-2.15625 0.171875q1.109375 0 1.59375 -0.59375q0.5 -0.609375 0.5 -1.9375l0 -0.234375q0 -1.515625 -0.5 -2.15625q-0.5 -0.65625 -1.609375 -0.65625q-0.953125 0 -1.453125 0.75q-0.5 0.734375 -0.5 2.078125q0 1.359375 0.5 2.0625q0.5 0.6875 1.46875 0.6875zm8.479919 0.90625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm7.618164 6.484375q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm7.876404 -0.125l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm8.724976 -6.5q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm4.440613 3.609375q0 1.71875 -0.5 3.203125q-0.5 1.46875 -1.453125 2.5625l-1.046875 0q0.90625 -1.21875 1.390625 -2.71875q0.484375 -1.5 0.484375 -3.046875q0 -1.59375 -0.484375 -3.09375q-0.46875 -1.515625 -1.40625 -2.765625l1.0625 0q0.953125 1.140625 1.453125 2.65625q0.5 1.5 0.5 3.203125z"
+ fill-rule="nonzero"/>
+ <path fill="#b6d7a8" d="m499.65955 201.71092l102.96063 0l0 29.259842l-102.96063 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m526.12427 219.15396q0 1.515625 -1.09375 2.359375q-1.09375 0.84375 -2.96875 0.84375q-2.03125 0 -3.125 -0.53125l0 -1.28125q0.703125 0.296875 1.53125 0.46875q0.828125 0.171875 1.640625 0.171875q1.328125 0 2.0 -0.5q0.671875 -0.5 0.671875 -1.40625q0 -0.59375 -0.234375 -0.96875q-0.234375 -0.375 -0.796875 -0.6875q-0.5625 -0.328125 -1.703125 -0.734375q-1.59375 -0.578125 -2.28125 -1.359375q-0.671875 -0.78125 -0.671875 -2.03125q0 -1.328125 0.984375 -2.109375q1.0 -0.78125 2.625 -0.78125q1.703125 0 3.140625 0.625l-0.421875 1.15625q-1.40625 -0.59375 -2.75 -0.59375q-1.046875 0 -1.640625 0.453125q-0.59375 0.453125 -0.59375 1.265625q0 0.59375 0.21875 0.96875q0.21875 0.375 0.734375 0.703125q0.515625 0.3125 1.59375 0.6875q1.796875 0.640625 2.46875 1.375q0.671875 0.734375 0.671875 1.90625zm5.765625 3.203125q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm9.6171875 -1.078125q0.578125 0 1.03125 0.09375l-0.1875 1.203125q-0.53125 -0.125 -0.9375 -0.125q-1.03125 0 -1.78125 0.84375q-0.734375 0.84375 -0.734375 2.109375l0 4.59375l-1.296875 0l0 -8.5625l1.078125 0l0.140625 1.578125l0.0625 0q0.484375 -0.828125 1.15625 -1.28125q0.671875 -0.453125 1.46875 -0.453125zm4.5 8.71875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm7.4375 0l-1.296875 0l0 -8.5625l1.296875 0l0 8.5625zm-1.40625 -10.890625q0 -0.4375 0.21875 -0.640625q0.21875 -0.21875 0.546875 -0.21875q0.3125 0 0.53125 0.21875q0.234375 0.203125 0.234375 0.640625q0 0.4375 -0.234375 0.65625q-0.21875 0.21875 -0.53125 0.21875q-0.328125 0 -0.546875 -0.21875q-0.21875 -0.21875 -0.21875 -0.65625zm7.578125 11.046875q-1.859375 0 -2.875 -1.140625q-1.015625 -1.15625 -1.015625 -3.25q0 -2.140625 1.03125 -3.3125q1.03125 -1.171875 2.953125 -1.171875q0.609375 0 1.21875 0.140625q0.625 0.125 0.984375 0.296875l-0.40625 1.109375q-0.421875 -0.171875 -0.9375 -0.28125q-0.5 -0.125 -0.890625 -0.125q-2.609375 0 -2.609375 3.328125q0 1.578125 0.625 2.421875q0.640625 0.84375 1.890625 0.84375q1.078125 0 2.203125 -0.453125l0 1.140625q-0.859375 0.453125 -2.171875 0.453125zm7.8203125 0q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm12.9765625 1.921875l3.046875 -5.703125l1.4375 0l-3.8125 6.984375l0 4.4375l-1.34375 0l0 -4.375l-3.8125 -7.046875l1.453125 0l3.03125 5.703125z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m326.12335 147.1942l-53.637787 3.5590515" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m322.7038 147.4211l-50.21823 3.3321533" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m322.7038 147.4211l-1.0476685 1.1965637l3.008545 -1.3266754l-3.1574402 -0.91755676z" fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0" d="m499.65878 147.19417l-70.58267 0" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m496.23172 147.19417l-63.728516 0" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m496.23172 147.19417l-1.1246033 1.124588l3.0897827 -1.124588l-3.0897827 -1.1245728z" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m432.5032 147.19417l1.1245728 -1.1245728l-3.0897522 1.1245728l3.0897522 1.124588z" fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0" d="m377.60263 201.7111l0 -31.370071" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m377.6026 198.28401l0 -24.5159" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m377.6026 198.28401l-1.1245728 -1.124588l1.1245728 3.0897827l1.1246033 -3.0897827z" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m377.6026 173.76811l1.1246033 1.124588l-1.1246033 -3.0897827l-1.1245728 3.0897827z" fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0" d="m551.1399 201.71092l0 -31.370087" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m551.13983 198.28383l0 -24.5159" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m551.13983 198.28383l-1.1245728 -1.124588l1.1245728 3.0897675l1.1245728 -3.0897675z" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m551.13983 173.76793l1.1245728 1.1245728l-1.1245728 -3.0897675l-1.1245728 3.0897675z" fill-rule="evenodd"/>
+ <path fill="#9fc5e8"
+ d="m676.35956 133.04213l0 0c0 -3.9080963 3.1681519 -7.076248 7.076294 -7.076248l59.579773 0c1.876709 0 3.6765747 0.7455292 5.003662 2.072586c1.3270264 1.3270569 2.0725708 3.1269226 2.0725708 5.003662l0 28.304184c0 3.9081116 -3.1681519 7.0762634 -7.076233 7.0762634l-59.579773 0c-3.908142 0 -7.076294 -3.1681519 -7.076294 -7.0762634z"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m701.0148 144.71422l-4.78125 0l0 -8.5625l4.78125 0l0 0.875l-3.78125 0l0 2.765625l3.546875 0l0 0.875l-3.546875 0l0 3.15625l3.78125 0l0 0.890625zm7.001953 -6.421875l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm8.855469 -2.1875q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.6796875 6.671875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm8.419922 3.96875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm5.7246094 0q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m696.3712 152.29234l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm9.871094 4.359375l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm7.001953 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm9.529297 5.71875l-1.1875 -3.765625q-0.109375 -0.34375 -0.40625 -1.578125l-0.046875 0q-0.234375 1.03125 -0.421875 1.59375l-1.203125 3.75l-1.125 0l-1.75 -6.421875l1.015625 0q0.625 2.421875 0.9375 3.6875q0.328125 1.265625 0.375 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6875l1.046875 0l1.15625 3.6875q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.734375l1.0 0l-1.765625 6.421875l-1.15625 0zm8.037109 0l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm3.9082031 -5.734375l1.046875 0l1.40625 3.65625q0.453125 1.265625 0.5625 1.8125l0.046875 0q0.078125 -0.296875 0.3125 -1.015625q0.25 -0.734375 1.609375 -4.453125l1.03125 0l-2.75 7.3125q-0.421875 1.078125 -0.96875 1.53125q-0.546875 0.46875 -1.34375 0.46875q-0.4375 0 -0.875 -0.109375l0 -0.78125q0.328125 0.078125 0.71875 0.078125q1.0 0 1.4375 -1.125l0.359375 -0.921875l-2.59375 -6.453125z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m676.35956 147.19423l-73.73224 0" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m672.9325 147.19423l-70.305176 0" fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m672.9325 147.19423l-1.1245728 1.1245728l3.0897827 -1.1245728l-3.0897827 -1.124588z" fill-rule="evenodd"/>
+ <path fill="#b6d7a8" d="m837.6667 124.480316l79.49609 0l0 46.29921l-79.49609 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m858.5328 144.42992l-5.296875 0l0 -9.515625l5.296875 0l0 0.984375l-4.1875 0l0 3.0625l3.9375 0l0 0.984375l-3.9375 0l0 3.5l4.1875 0l0 0.984375zm3.6624756 -3.65625l-2.46875 -3.46875l1.21875 0l1.890625 2.71875l1.875 -2.71875l1.21875 0l-2.484375 3.46875l2.609375 3.65625l-1.21875 0l-2.0 -2.890625l-2.015625 2.890625l-1.234375 0l2.609375 -3.65625zm7.57666 2.890625q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024475 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm7.0655518 7.265625l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.59375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.328125 -0.53125 0.921875 -0.8125q0.609375 -0.296875 1.34375 -0.296875q1.296875 0 1.9375 0.625q0.65625 0.625 0.65625 1.984375l0 4.65625l-1.078125 0zm7.68042 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm6.5374756 0.765625l-1.078125 0l0 -10.125l1.078125 0l0 10.125z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m862.03467 157.89867q0 1.25 -0.90625 1.953125q-0.90625 0.703125 -2.46875 0.703125q-1.703125 0 -2.609375 -0.4375l0 -1.0625q0.59375 0.25 1.28125 0.390625q0.6875 0.140625 1.359375 0.140625q1.109375 0 1.671875 -0.40625q0.5625 -0.421875 0.5625 -1.171875q0 -0.5 -0.203125 -0.8125q-0.203125 -0.3125 -0.671875 -0.578125q-0.453125 -0.28125 -1.40625 -0.609375q-1.328125 -0.484375 -1.90625 -1.125q-0.5625 -0.65625 -0.5625 -1.703125q0 -1.09375 0.828125 -1.75q0.828125 -0.65625 2.1875 -0.65625q1.421875 0 2.609375 0.53125l-0.34375 0.953125q-1.1875 -0.484375 -2.296875 -0.484375q-0.875 0 -1.375 0.375q-0.484375 0.375 -0.484375 1.046875q0 0.5 0.171875 0.8125q0.1875 0.3125 0.609375 0.578125q0.4375 0.265625 1.328125 0.578125q1.5 0.53125 2.0625 1.15625q0.5625 0.609375 0.5625 1.578125zm4.7992554 2.65625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024414 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm3.7374268 7.265625l-2.703125 -7.125l1.15625 0l1.53125 4.21875q0.53125 1.484375 0.625 1.9375l0.046875 0q0.0625 -0.359375 0.4375 -1.4375q0.390625 -1.078125 1.71875 -4.71875l1.15625 0l-2.703125 7.125l-1.265625 0zm6.192749 0l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm6.3241577 9.1875q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.501465 0q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m837.6667 147.62993l-87.590515 -0.4409485" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m834.23956 147.61267l-84.16345 -0.4236908"
+ fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m834.2396 147.61267l-1.130249 1.1189117l3.095398 -1.109024l-3.0840454 -1.1401215z" fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0" d="m551.1391 124.04456l0 -65.9527l326.2677 0l0 66.39365" fill-rule="evenodd"/>
+ <path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m551.1391 124.04457l0 -65.95271l326.2677 0l0 62.966564"
+ fill-rule="evenodd"/>
+ <path fill="#4a86e8" stroke="#4a86e8" stroke-width="1.0" stroke-linecap="butt"
+ d="m877.4068 121.058426l-1.1245728 -1.1245804l1.1245728 3.0897675l1.1246338 -3.0897675z" fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0" d="m708.22046 30.517061l185.57483 0l0 42.456696l-185.57483 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m724.5017 52.31706l-1.171875 -3.03125l-3.8125 0l-1.171875 3.03125l-1.125 0l3.765625 -9.546875l0.921875 0l3.75 9.546875l-1.15625 0zm-1.515625 -4.015625l-1.109375 -2.953125q-0.21875 -0.5625 -0.453125 -1.375q-0.140625 0.625 -0.40625 1.375l-1.109375 2.953125l3.078125 0zm6.668579 4.140625q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.345215 0q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.501404 0q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.368164 4.40625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm6.3582153 0q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm8.226624 2.078125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm6.4776 2.703125l-2.46875 -3.46875l1.21875 0l1.890625 2.71875l1.875 -2.71875l1.21875 0l-2.484375 3.46875l2.609375 3.65625l-1.21875 0l-2.0 -2.890625l-2.015625 2.890625l-1.234375 0l2.609375 -3.65625zm7.57666 2.890625q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024475 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm7.0655518 7.265625l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.59375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.328125 -0.53125 0.921875 -0.8125q0.609375 -0.296875 1.34375 -0.296875q1.296875 0 1.9375 0.625q0.65625 0.625 0.65625 1.984375l0 4.65625l-1.078125 0zm7.68042 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm6.5374756 0.765625l-1.078125 0l0 -10.125l1.078125 0l0 10.125zm10.364502 -1.953125q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm4.7644653 2.078125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024414 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm3.7374878 7.265625l-2.703125 -7.125l1.15625 0l1.53125 4.21875q0.53125 1.484375 0.625 1.9375l0.046875 0q0.0625 -0.359375 0.4375 -1.4375q0.390625 -1.078125 1.71875 -4.71875l1.15625 0l-2.703125 7.125l-1.265625 0zm6.192688 0l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm6.3242188 9.1875q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.501404 0q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m723.22046 67.36394l-0.0625 0q-0.75 1.078125 -2.234375 1.078125q-1.40625 0 -2.1875 -0.953125q-0.765625 -0.953125 -0.765625 -2.71875q0 -1.7656288 0.78125 -2.7343788q0.78125 -0.984375 2.171875 -0.984375q1.453125 0 2.21875 1.0625l0.09375 0l-0.046875 -0.515625l-0.03125 -0.5l0 -2.90625l1.078125 0l0 10.125004l-0.875 0l-0.140625 -0.953125zm-2.15625 0.171875q1.109375 0 1.59375 -0.59375q0.5 -0.609375 0.5 -1.9375l0 -0.234375q0 -1.5156288 -0.5 -2.1562538q-0.5 -0.65625 -1.609375 -0.65625q-0.953125 0 -1.453125 0.75q-0.5 0.734375 -0.5 2.0781288q0 1.359375 0.5 2.0625q0.5 0.6875 1.46875 0.6875zm6.5424194 0.78125l-1.078125 0l0 -7.125004l1.078125 0l0 7.125004zm-1.171875 -9.062504q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm6.7304077 1.796875q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.7500038l0 3.828125l-1.078125 0l0 -7.125004l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm5.190613 7.390629q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.7343788 0.84375 -2.7500038q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.3281288l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484379q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.5468788l3.734375 0q0 -1.0156288 -0.453125 -1.5625038q-0.453125 -0.546875 -1.3125 -0.546875zm7.618164 6.484379q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.7968788 0.859375 -2.7656288q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.7812538q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm5.79834 -0.890625q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.250004l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203129q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm3.4708252 0.765625l-1.078125 0l0 -10.125004l1.078125 0l0 10.125004zm1.1679077 -7.125004l1.15625 0l1.5625 4.062504q0.515625 1.390625 0.640625 2.015625l0.046875 0q0.078125 -0.34375 0.34375 -1.140625q0.28125 -0.8125 1.78125 -4.937504l1.15625 0l-3.0625 8.109379q-0.453125 1.203125 -1.0625 1.703125q-0.609375 0.515625 -1.5 0.515625q-0.5 0 -0.96875 -0.109375l0 -0.875q0.359375 0.078125 0.796875 0.078125q1.109375 0 1.59375 -1.25l0.390625 -1.015625l-2.875 -7.156254zm14.522095 0.828125l-1.8125 0l0 6.296879l-1.078125 0l0 -6.296879l-1.28125 0l0 -0.484375l1.28125 -0.390625l0 -0.390625q0 -2.640625 2.296875 -2.640625q0.5625 0 1.328125 0.234375l-0.28125 0.859375q-0.625 -0.203125 -1.078125 -0.203125q-0.609375 0 -0.90625 0.40625q-0.28125 0.40625 -0.28125 1.3125l0 0.46875l1.8125 0l0 0.828125zm4.5633545 -0.96875q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.7500038l0 3.828125l-1.078125 0l0 -7.125004l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm8.331177 3.6875038q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.7343788 0.875 -2.7031288q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875038zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.3593788 -0.5625 -2.0625038q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625038zm16.409607 3.578125l0 -4.640629q0 -0.859375 -0.359375 -1.28125q-0.359375 -0.421875 -1.140625 -0.421875q-1.0 0 -1.484375 0.578125q-0.484375 0.578125 -0.484375 1.7812538l0 3.984375l-1.078125 0l0 -4.640629q0 -0.859375 -0.375 -1.28125q-0.359375 -0.421875 -1.125 -0.421875q-1.015625 0 -1.5 0.609375q-0.46875 0.609375 -0.46875 2.0000038l0 3.734375l-1.078125 0l0 -7.125004l0.890625 0l0.171875 0.96875l0.046875 0q0.3125 -0.515625 0.859375 -0.8125q0.5625 -0.296875 1.25 -0.296875q1.671875 0 2.1875 1.21875l0.046875 0q0.328125 -0.5625 0.921875 -0.890625q0.609375 -0.328125 1.390625 -0.328125q1.203125 0 1.796875 0.625q0.609375 0.625 0.609375 1.984375l0 4.656254l-1.078125 0zm11.375366 -1.953125q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.6250038q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.5312538q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm2.8269043 1.953125l-1.078125 0l0 -7.125004l1.078125 0l0 7.125004zm-1.171875 -9.062504q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm8.324219 8.109379l-0.0625 0q-0.75 1.078125 -2.234375 1.078125q-1.40625 0 -2.1875 -0.953125q-0.765625 -0.953125 -0.765625 -2.71875q0 -1.7656288 0.78125 -2.7343788q0.78125 -0.984375 2.171875 -0.984375q1.453125 0 2.21875 1.0625l0.09375 0l-0.046875 -0.515625l-0.03125 -0.5l0 -2.90625l1.078125 0l0 10.125004l-0.875 0l-0.140625 -0.953125zm-2.15625 0.171875q1.109375 0 1.59375 -0.59375q0.5 -0.609375 0.5 -1.9375l0 -0.234375q0 -1.5156288 -0.5 -2.1562538q-0.5 -0.65625 -1.609375 -0.65625q-0.953125 0 -1.453125 0.75q-0.5 0.734375 -0.5 2.0781288q0 1.359375 0.5 2.0625q0.5 0.6875 1.46875 0.6875zm8.479919 0.90625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.7343788 0.84375 -2.7500038q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.3281288l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484379q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.5468788l3.734375 0q0 -1.0156288 -0.453125 -1.5625038q-0.453125 -0.546875 -1.3125 -0.546875zm7.618164 6.484379q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.7968788 0.859375 -2.7656288q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.7812538q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm7.876404 -0.125l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375038q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875004l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm8.724976 -6.500004q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.7500038l0 3.828125l-1.078125 0l0 -7.125004l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m708.22046 158.39502l158.64569 0l0 64.62991l-158.64569 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m724.5017 180.195l-1.171875 -3.03125l-3.8125 0l-1.171875 3.03125l-1.125 0l3.765625 -9.546875l0.921875 0l3.75 9.546875l-1.15625 0zm-1.515625 -4.015625l-1.109375 -2.953125q-0.21875 -0.5625 -0.453125 -1.375q-0.140625 0.625 -0.40625 1.375l-1.109375 2.953125l3.078125 0zm6.668579 4.140625q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.345215 0q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.501404 0q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.368164 4.40625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm6.3582153 0q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm8.226624 2.078125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm6.4776 2.703125l-2.46875 -3.46875l1.21875 0l1.890625 2.71875l1.875 -2.71875l1.21875 0l-2.484375 3.46875l2.609375 3.65625l-1.21875 0l-2.0 -2.890625l-2.015625 2.890625l-1.234375 0l2.609375 -3.65625zm7.57666 2.890625q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024475 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm7.0655518 7.265625l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.59375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.328125 -0.53125 0.921875 -0.8125q0.609375 -0.296875 1.34375 -0.296875q1.296875 0 1.9375 0.625q0.65625 0.625 0.65625 1.984375l0 4.65625l-1.078125 0zm7.68042 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm6.5374756 0.765625l-1.078125 0l0 -10.125l1.078125 0l0 10.125z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m722.97046 194.24188q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm4.7644653 2.078125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024414 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm3.7374878 7.265625l-2.703125 -7.125l1.15625 0l1.53125 4.21875q0.53125 1.484375 0.625 1.9375l0.046875 0q0.0625 -0.359375 0.4375 -1.4375q0.390625 -1.078125 1.71875 -4.71875l1.15625 0l-2.703125 7.125l-1.265625 0zm6.192688 0l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm6.3242188 9.1875q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.501404 0q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.783508 6.359375l-2.703125 -7.125l1.15625 0l1.53125 4.21875q0.53125 1.484375 0.625 1.9375l0.046875 0q0.0625 -0.359375 0.4375 -1.4375q0.390625 -1.078125 1.71875 -4.71875l1.15625 0l-2.703125 7.125l-1.265625 0zm6.192688 0l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm7.8554688 9.0625l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm11.937134 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm10.6026 -0.765625l0 0.671875l-1.328125 0.15625q0.1875 0.234375 0.328125 0.609375q0.140625 0.359375 0.140625 0.8125q0 1.0625 -0.71875 1.6875q-0.703125 0.609375 -1.953125 0.609375q-0.328125 0 -0.609375 -0.046875q-0.6875 0.359375 -0.6875 0.921875q0 0.296875 0.234375 0.4375q0.25 0.140625 0.84375 0.140625l1.25 0q1.171875 0 1.78125 0.484375q0.625 0.484375 0.625 1.421875q0 1.171875 -0.953125 1.796875q-0.953125 0.625 -2.765625 0.625q-1.40625 0 -2.171875 -0.53125q-0.75 -0.515625 -0.75 -1.46875q0 -0.640625 0.421875 -1.125q0.421875 -0.46875 1.171875 -0.640625q-0.28125 -0.125 -0.46875 -0.375q-0.171875 -0.265625 -0.171875 -0.609375q0 -0.390625 0.203125 -0.6875q0.203125 -0.296875 0.65625 -0.5625q-0.546875 -0.234375 -0.90625 -0.78125q-0.34375 -0.546875 -0.34375 -1.25q0 -1.171875 0.703125 -1.796875q0.703125 -0.640625 1.984375 -0.640625q0.5625 0 1.015625 0.140625l2.46875 0zm-5.6875 8.328125q0 0.578125 0.484375 0.875q0.484375 0.296875 1.40625 0.296875q1.359375 0 2.0 -0.40625q0.65625 -0.40625 0.65625 -1.109375q0 -0.578125 -0.359375 -0.796875q-0.34375 -0.21875 -1.34375 -0.21875l-1.296875 0q-0.734375 0 -1.140625 0.34375q-0.40625 0.359375 -0.40625 1.015625zm0.578125 -6.046875q0 0.75 0.421875 1.140625q0.4375 0.375 1.1875 0.375q1.578125 0 1.578125 -1.546875q0 -1.59375 -1.59375 -1.59375q-0.765625 0 -1.1875 0.40625q-0.40625 0.40625 -0.40625 1.21875zm9.833069 -2.421875q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm5.1905518 7.390625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.368225 4.40625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm6.3581543 0q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m724.20483 205.07l0 0.671875l-1.328125 0.15625q0.1875 0.234375 0.328125 0.609375q0.140625 0.359375 0.140625 0.8125q0 1.0625 -0.71875 1.6875q-0.703125 0.609375 -1.953125 0.609375q-0.328125 0 -0.609375 -0.046875q-0.6875 0.359375 -0.6875 0.921875q0 0.296875 0.234375 0.4375q0.25 0.140625 0.84375 0.140625l1.25 0q1.171875 0 1.78125 0.484375q0.625 0.484375 0.625 1.421875q0 1.171875 -0.953125 1.796875q-0.953125 0.625 -2.765625 0.625q-1.40625 0 -2.171875 -0.53125q-0.75 -0.515625 -0.75 -1.46875q0 -0.640625 0.421875 -1.125q0.421875 -0.46875 1.171875 -0.640625q-0.28125 -0.125 -0.46875 -0.375q-0.171875 -0.265625 -0.171875 -0.609375q0 -0.390625 0.203125 -0.6875q0.203125 -0.296875 0.65625 -0.5625q-0.546875 -0.234375 -0.90625 -0.78125q-0.34375 -0.546875 -0.34375 -1.25q0 -1.171875 0.703125 -1.796875q0.703125 -0.640625 1.984375 -0.640625q0.5625 0 1.015625 0.140625l2.46875 0zm-5.6875 8.328125q0 0.578125 0.484375 0.875q0.484375 0.296875 1.40625 0.296875q1.359375 0 2.0 -0.40625q0.65625 -0.40625 0.65625 -1.109375q0 -0.578125 -0.359375 -0.796875q-0.34375 -0.21875 -1.34375 -0.21875l-1.296875 0q-0.734375 0 -1.140625 0.34375q-0.40625 0.359375 -0.40625 1.015625zm0.578125 -6.046875q0 0.75 0.421875 1.140625q0.4375 0.375 1.1875 0.375q1.578125 0 1.578125 -1.546875q0 -1.59375 -1.59375 -1.59375q-0.765625 0 -1.1875 0.40625q-0.40625 0.40625 -0.40625 1.21875zm10.958069 4.84375l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm7.7718506 0q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm10.586975 6.359375l-1.3125 -4.1875q-0.125 -0.375 -0.453125 -1.734375l-0.0625 0q-0.25 1.125 -0.453125 1.75l-1.34375 4.171875l-1.25 0l-1.9375 -7.125l1.125 0q0.6875 2.6875 1.046875 4.09375q0.359375 1.390625 0.421875 1.890625l0.046875 0q0.078125 -0.375 0.234375 -0.953125q0.15625 -0.59375 0.28125 -0.953125l1.296875 -4.078125l1.171875 0l1.28125 4.078125q0.359375 1.125 0.5 1.890625l0.046875 0q0.03125 -0.234375 0.140625 -0.71875q0.109375 -0.5 1.359375 -5.25l1.109375 0l-1.96875 7.125l-1.28125 0zm8.929504 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm4.3343506 -6.359375l1.15625 0l1.5625 4.0625q0.515625 1.390625 0.640625 2.015625l0.046875 0q0.078125 -0.34375 0.34375 -1.140625q0.28125 -0.8125 1.78125 -4.9375l1.15625 0l-3.0625 8.109375q-0.453125 1.203125 -1.0625 1.703125q-0.609375 0.515625 -1.5 0.515625q-0.5 0 -0.96875 -0.109375l0 -0.875q0.359375 0.078125 0.796875 0.078125q1.109375 0 1.59375 -1.25l0.390625 -1.015625l-2.875 -7.15625z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m557.7008 272.9344l150.51965 0l0 34.33072l-150.51965 0z" fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m571.91956 294.73438l-2.28125 -7.46875l-0.0625 0q0.125 2.28125 0.125 3.046875l0 4.421875l-1.796875 0l0 -9.515625l2.734375 0l2.265625 7.28125l0.03125 0l2.390625 -7.28125l2.75 0l0 9.515625l-1.890625 0l0 -4.5q0 -0.328125 0.015625 -0.734375q0.015625 -0.421875 0.09375 -2.21875l-0.0625 0l-2.453125 7.453125l-1.859375 0zm11.394836 -6.0q-0.625 0 -0.984375 0.40625q-0.359375 0.390625 -0.40625 1.125l2.78125 0q-0.015625 -0.734375 -0.390625 -1.125q-0.359375 -0.40625 -1.0 -0.40625zm0.28125 6.125q-1.75 0 -2.75 -0.96875q-0.984375 -0.96875 -0.984375 -2.734375q0 -1.84375 0.90625 -2.828125q0.921875 -1.0 2.546875 -1.0q1.53125 0 2.390625 0.875q0.859375 0.875 0.859375 2.421875l0 0.96875l-4.6875 0q0.03125 0.84375 0.5 1.328125q0.46875 0.46875 1.3125 0.46875q0.65625 0 1.234375 -0.140625q0.59375 -0.140625 1.234375 -0.4375l0 1.53125q-0.515625 0.265625 -1.109375 0.390625q-0.59375 0.125 -1.453125 0.125zm9.671387 -2.28125q0 1.109375 -0.78125 1.703125q-0.78125 0.578125 -2.328125 0.578125q-0.796875 0 -1.359375 -0.109375q-0.5625 -0.09375 -1.046875 -0.3125l0 -1.640625q0.5625 0.265625 1.25 0.4375q0.6875 0.171875 1.21875 0.171875q1.078125 0 1.078125 -0.625q0 -0.234375 -0.140625 -0.375q-0.140625 -0.140625 -0.5 -0.328125q-0.34375 -0.1875 -0.9375 -0.4375q-0.828125 -0.34375 -1.234375 -0.640625q-0.390625 -0.3125 -0.578125 -0.6875q-0.171875 -0.390625 -0.171875 -0.953125q0 -0.984375 0.75 -1.5q0.765625 -0.53125 2.140625 -0.53125q1.3125 0 2.5625 0.5625l-0.609375 1.4375q-0.546875 -0.234375 -1.03125 -0.375q-0.46875 -0.15625 -0.953125 -0.15625q-0.875 0 -0.875 0.46875q0 0.265625 0.28125 0.46875q0.28125 0.1875 1.234375 0.578125q0.859375 0.34375 1.25 0.640625q0.390625 0.296875 0.578125 0.6875q0.203125 0.390625 0.203125 0.9375zm8.25 2.15625l-1.984375 0l0 -4.25q0 -1.578125 -1.171875 -1.578125q-0.828125 0 -1.203125 0.578125q-0.359375 0.5625 -0.359375 1.828125l0 3.421875l-1.984375 0l0 -10.125l1.984375 0l0 2.0625q0 0.234375 -0.046875 1.125l-0.046875 0.59375l0.109375 0q0.65625 -1.0625 2.09375 -1.0625q1.296875 0 1.953125 0.6875q0.65625 0.6875 0.65625 1.96875l0 4.75zm9.565552 -7.40625q1.28125 0 2.0 1.0q0.734375 1.0 0.734375 2.75q0 1.8125 -0.75 2.796875q-0.75 0.984375 -2.046875 0.984375q-1.28125 0 -2.0 -0.921875l-0.140625 0l-0.328125 0.796875l-1.515625 0l0 -10.125l1.984375 0l0 2.359375q0 0.4375 -0.078125 1.4375l0.078125 0q0.6875 -1.078125 2.0625 -1.078125zm-0.640625 1.578125q-0.734375 0 -1.078125 0.453125q-0.328125 0.453125 -0.34375 1.5l0 0.21875q0 1.15625 0.34375 1.671875q0.34375 0.5 1.109375 0.5q0.609375 0 0.96875 -0.5625q0.359375 -0.5625 0.359375 -1.625q0 -1.078125 -0.375 -1.609375q-0.359375 -0.546875 -0.984375 -0.546875zm6.606079 2.171875q0 1.078125 0.34375 1.640625q0.359375 0.546875 1.15625 0.546875q0.796875 0 1.140625 -0.546875q0.359375 -0.546875 0.359375 -1.640625q0 -1.078125 -0.359375 -1.609375q-0.34375 -0.546875 -1.140625 -0.546875q-0.796875 0 -1.15625 0.546875q-0.34375 0.53125 -0.34375 1.609375zm5.03125 0q0 1.78125 -0.9375 2.78125q-0.9375 1.0 -2.609375 1.0q-1.046875 0 -1.859375 -0.453125q-0.796875 -0.453125 -1.234375 -1.3125q-0.421875 -0.859375 -0.421875 -2.015625q0 -1.78125 0.921875 -2.765625q0.9375 -0.984375 2.625 -0.984375q1.046875 0 1.84375 0.453125q0.8125 0.453125 1.234375 1.3125q0.4375 0.84375 0.4375 1.984375zm6.798828 3.65625l-0.28125 -0.9375l-0.09375 0q-0.328125 0.515625 -0.921875 0.796875q-0.578125 0.265625 -1.328125 0.265625q-1.28125 0 -1.9375 -0.6875q-0.640625 -0.6875 -0.640625 -1.96875l0 -4.75l1.984375 0l0 4.25q0 0.796875 0.28125 1.1875q0.28125 0.390625 0.890625 0.390625q0.828125 0 1.203125 -0.546875q0.375 -0.5625 0.375 -1.859375l0 -3.421875l1.984375 0l0 7.28125l-1.515625 0zm10.306519 0l-1.984375 0l0 -4.25q0 -0.78125 -0.28125 -1.171875q-0.265625 -0.40625 -0.890625 -0.40625q-0.828125 0 -1.203125 0.5625q-0.359375 0.546875 -0.359375 1.84375l0 3.421875l-1.984375 0l0 -7.28125l1.515625 0l0.265625 0.9375l0.109375 0q0.328125 -0.53125 0.90625 -0.796875q0.59375 -0.265625 1.328125 -0.265625q1.265625 0 1.921875 0.6875q0.65625 0.671875 0.65625 1.96875l0 4.75zm4.3533325 0.125q-1.28125 0 -2.015625 -0.984375q-0.734375 -1.0 -0.734375 -2.765625q0 -1.796875 0.75 -2.78125q0.75 -1.0 2.046875 -1.0q1.375 0 2.109375 1.0625l0.0625 0q-0.15625 -0.8125 -0.15625 -1.453125l0 -2.328125l2.0 0l0 10.125l-1.53125 0l-0.375 -0.9375l-0.09375 0q-0.671875 1.0625 -2.0625 1.0625zm0.703125 -1.578125q0.75 0 1.109375 -0.4375q0.359375 -0.453125 0.390625 -1.5l0 -0.21875q0 -1.171875 -0.359375 -1.671875q-0.359375 -0.515625 -1.171875 -0.515625q-0.671875 0 -1.046875 0.5625q-0.359375 0.5625 -0.359375 1.640625q0 1.0625 0.359375 1.609375q0.375 0.53125 1.078125 0.53125zm10.043579 1.453125l-0.375 -0.984375l-0.0625 0q-0.5 0.625 -1.03125 0.875q-0.53125 0.234375 -1.375 0.234375q-1.046875 0 -1.65625 -0.59375q-0.59375 -0.59375 -0.59375 -1.703125q0 -1.15625 0.8125 -1.703125q0.8125 -0.5625 2.4375 -0.609375l1.265625 -0.046875l0 -0.3125q0 -1.109375 -1.140625 -1.109375q-0.859375 0 -2.046875 0.53125l-0.65625 -1.34375q1.265625 -0.65625 2.78125 -0.65625q1.46875 0 2.25 0.640625q0.78125 0.625 0.78125 1.9375l0 4.84375l-1.390625 0zm-0.578125 -3.375l-0.765625 0.03125q-0.875 0.03125 -1.296875 0.3125q-0.421875 0.28125 -0.421875 0.875q0 0.828125 0.96875 0.828125q0.6875 0 1.09375 -0.390625q0.421875 -0.390625 0.421875 -1.046875l0 -0.609375zm8.081482 -4.03125q0.390625 0 0.65625 0.046875l-0.140625 1.859375q-0.25 -0.0625 -0.59375 -0.0625q-0.9375 0 -1.46875 0.5q-0.53125 0.484375 -0.53125 1.359375l0 3.703125l-1.984375 0l0 -7.28125l1.5 0l0.296875 1.234375l0.09375 0q0.34375 -0.625 0.90625 -0.984375q0.578125 -0.375 1.265625 -0.375zm0.9429321 0.125l2.171875 0l1.375 4.09375q0.171875 0.53125 0.234375 1.265625l0.046875 0q0.0625 -0.671875 0.28125 -1.265625l1.34375 -4.09375l2.125 0l-3.078125 8.21875q-0.421875 1.125 -1.203125 1.6875q-0.78125 0.578125 -1.828125 0.578125q-0.515625 0 -1.015625 -0.109375l0 -1.578125q0.359375 0.078125 0.78125 0.078125q0.53125 0 0.921875 -0.328125q0.390625 -0.3125 0.609375 -0.953125l0.125 -0.359375l-2.890625 -7.234375z"
+ fill-rule="nonzero"/>
+ <path fill="#9fc5e8"
+ d="m158.44882 224.45947l0 0c0 -4.482147 3.6334991 -8.115646 8.115646 -8.115646l97.81593 0c2.1524048 0 4.216675 0.8550415 5.7386475 2.3770294c1.5219727 1.5219727 2.3770142 3.5862274 2.3770142 5.738617l0 32.46164c0 4.482147 -3.6335144 8.115631 -8.115662 8.115631l-97.81593 0c-4.482147 0 -8.115646 -3.633484 -8.115646 -8.115631z"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m176.43518 232.13216q0 1.3125 -0.890625 2.015625q-0.890625 0.6875 -2.53125 0.6875l-1.015625 0l0 3.375l-1.0 0l0 -8.5625l2.234375 0q3.203125 0 3.203125 2.484375zm-4.4375 1.859375l0.90625 0q1.3125 0 1.90625 -0.421875q0.59375 -0.4375 0.59375 -1.390625q0 -0.84375 -0.5625 -1.25q-0.546875 -0.421875 -1.734375 -0.421875l-1.109375 0l0 3.484375zm9.021484 -2.328125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm2.9296875 6.546875l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm4.5195312 8.15625l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm8.558594 0l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm7.001953 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm7.5371094 5.71875l0 -8.5625l1.0 0l0 8.5625l-1.0 0zm7.595703 0l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm8.224609 -6.421875l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm8.855469 -2.1875q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.6796875 6.671875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm8.419922 3.96875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm5.7246094 0q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m176.10706 245.7884l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm9.871094 4.359375l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm7.001953 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm9.529297 5.71875l-1.1875 -3.765625q-0.109375 -0.34375 -0.40625 -1.578125l-0.046875 0q-0.234375 1.03125 -0.421875 1.59375l-1.203125 3.75l-1.125 0l-1.75 -6.421875l1.015625 0q0.625 2.421875 0.9375 3.6875q0.328125 1.265625 0.375 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6875l1.046875 0l1.15625 3.6875q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.734375l1.0 0l-1.765625 6.421875l-1.15625 0zm8.037109 0l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm3.9082031 -5.734375l1.046875 0l1.40625 3.65625q0.453125 1.265625 0.5625 1.8125l0.046875 0q0.078125 -0.296875 0.3125 -1.015625q0.25 -0.734375 1.609375 -4.453125l1.03125 0l-2.75 7.3125q-0.421875 1.078125 -0.96875 1.53125q-0.546875 0.46875 -1.34375 0.46875q-0.4375 0 -0.875 -0.109375l0 -0.78125q0.328125 0.078125 0.71875 0.078125q1.0 0 1.4375 -1.125l0.359375 -0.921875l-2.59375 -6.453125z"
+ fill-rule="nonzero"/>
+ <path fill="#ffffff"
+ d="m21.88325 241.46208l0 0c-0.83019066 -4.470688 1.8954868 -8.896408 7.0204277 -11.399155c5.124937 -2.5027466 11.750338 -2.6435852 17.06479 -0.36276245l0 0c1.8825417 -2.5994568 5.328144 -4.3941956 9.294579 -4.8413544c3.9664345 -0.4471588 7.9878273 0.50579834 10.847786 2.5706024l0 0c1.6036835 -2.356842 4.752548 -3.9403229 8.329208 -4.188568c3.5766602 -0.24824524 7.0749283 0.87390137 9.2534485 2.968216l0 0c2.8972855 -2.49823 7.5069427 -3.5500946 11.834351 -2.7004395c4.327408 0.8496704 7.595314 3.448227 8.389687 6.671295l0 0c3.549675 0.7095032 6.5064697 2.5131683 8.106461 4.944977c1.5999908 2.4318237 1.6862106 5.2532196 0.23638916 7.73526l0 0c3.4953918 3.3336334 4.3130493 7.7756653 2.1478424 11.668411c-2.165207 3.8927612 -6.9879837 6.651367 -12.668556 7.2463684c-0.040039062 3.653473 -2.7743683 7.0058594 -7.1490555 8.765015c-4.374695 1.7591248 -9.706627 1.6503296 -13.940636 -0.28448486c-1.8034592 4.3756714 -6.879608 7.595276 -13.035355 8.267761c-6.1557503 0.67251587 -12.2875595 -1.3226013 -15.746262 -5.1233826c-4.239647 1.8734131 -9.32687 2.413086 -14.114094 1.4972534c-4.787224 -0.915802 -8.871197 -3.209961 -11.330658 -6.3649597l0 0c-4.332386 0.371521 -8.521204 -1.2733154 -10.487559 -4.1181335c-1.9663553 -2.8448486 -1.2916574 -6.2841187 1.6892424 -8.610901l0 0c-3.8645992 -1.6667938 -5.8365517 -4.9742584 -4.88756 -8.197693c0.9489918 -3.2234344 4.603882 -5.6324005 9.05879 -5.970688z"
+ fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0"
+ d="m17.62638 255.8028l0 0c1.8237171 0.78656006 3.9305363 1.1433716 6.037586 1.0224915m2.759781 11.706818c0.90610886 -0.077697754 1.7942677 -0.24221802 2.641571 -0.48934937m22.801914 5.356842c-0.6372986 -0.7003479 -1.1708755 -1.4487 -1.5916443 -2.2323608m30.37436 -0.9121399l0 0c0.32880402 -0.7977295 0.541832 -1.6188049 0.6355438 -2.449463m20.453354 -6.0307617c0.042625427 -3.889679 -2.9722443 -7.4511414 -7.7496414 -9.154587m18.270256 -9.759796c-0.77368927 1.3245239 -1.9548035 2.4994812 -3.450737 3.4327545m-4.891388 -16.113327l0 0c0.13182068 0.53486633 0.19283295 1.077774 0.18217468 1.6212006m-20.405876 -5.5919037l0 0c-0.7227249 0.6231842 -1.318161 1.3195953 -1.7677612 2.0675201m-15.815056 -0.8474426l0 0c-0.38515472 0.56604004 -0.67276 1.1649933 -0.85619354 1.7830963m-19.286465 0.48771667l0 0c1.1245346 0.48262024 2.1648827 1.0635071 3.0981903 1.7298889m-27.1831 10.032089l0 0c0.114421844 0.6161804 0.2952137 1.224762 0.54068375 1.8200531"
+ fill-rule="evenodd"/>
+ <path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt"
+ d="m21.88325 241.46208l0 0c-0.83019066 -4.470688 1.8954868 -8.896408 7.0204277 -11.399155c5.124937 -2.5027466 11.750338 -2.6435852 17.06479 -0.36276245l0 0c1.8825417 -2.5994568 5.328144 -4.3941956 9.294579 -4.8413544c3.9664345 -0.4471588 7.9878273 0.50579834 10.847786 2.5706024l0 0c1.6036835 -2.356842 4.752548 -3.9403229 8.329208 -4.188568c3.5766602 -0.24824524 7.0749283 0.87390137 9.2534485 2.968216l0 0c2.8972855 -2.49823 7.5069427 -3.5500946 11.834351 -2.7004395c4.327408 0.8496704 7.595314 3.448227 8.389687 6.671295l0 0c3.549675 0.7095032 6.5064697 2.5131683 8.106461 4.944977c1.5999908 2.4318237 1.6862106 5.2532196 0.23638916 7.73526l0 0c3.4953918 3.3336334 4.3130493 7.7756653 2.1478424 11.668411c-2.165207 3.8927612 -6.9879837 6.651367 -12.668556 7.2463684c-0.040039062 3.653473 -2.7743683 7.0058594 -7.1490555 8.765015c-4.374695 1.7591248 -9.706627 1.6503296 -13.940636 -0.28448486c-1.8034592 4.3756714 -6.879608 7.595276 -13.035355 8.267761c-6.1557503 0.67251587 -12.2875595 -1.3226013 -15.746262 -5.1233826c-4.239647 1.8734131 -9.32687 2.413086 -14.114094 1.4972534c-4.787224 -0.915802 -8.871197 -3.209961 -11.330658 -6.3649597l0 0c-4.332386 0.371521 -8.521204 -1.2733154 -10.487559 -4.1181335c-1.9663553 -2.8448486 -1.2916574 -6.2841187 1.6892424 -8.610901l0 0c-3.8645992 -1.6667938 -5.8365517 -4.9742584 -4.88756 -8.197693c0.9489918 -3.2234344 4.603882 -5.6324005 9.05879 -5.970688z"
+ fill-rule="evenodd"/>
+ <path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt"
+ d="m17.62638 255.8028l0 0c1.8237171 0.78656006 3.9305363 1.1433716 6.037586 1.0224915m2.759781 11.706818c0.90610886 -0.077697754 1.7942677 -0.24221802 2.641571 -0.48934937m22.801914 5.356842c-0.6372986 -0.7003479 -1.1708755 -1.4487 -1.5916443 -2.2323608m30.37436 -0.9121399l0 0c0.32880402 -0.7977295 0.541832 -1.6188049 0.6355438 -2.449463m20.453354 -6.0307617c0.042625427 -3.889679 -2.9722443 -7.4511414 -7.7496414 -9.154587m18.270256 -9.759796c-0.77368927 1.3245239 -1.9548035 2.4994812 -3.450737 3.4327545m-4.891388 -16.113327l0 0c0.13182068 0.53486633 0.19283295 1.077774 0.18217468 1.6212006m-20.405876 -5.5919037l0 0c-0.7227249 0.6231842 -1.318161 1.3195953 -1.7677612 2.0675201m-15.815056 -0.8474426l0 0c-0.38515472 0.56604004 -0.67276 1.1649933 -0.85619354 1.7830963m-19.286465 0.48771667l0 0c1.1245346 0.48262024 2.1648827 1.0635071 3.0981903 1.7298889m-27.1831 10.032089l0 0c0.114421844 0.6161804 0.2952137 1.224762 0.54068375 1.8200531"
+ fill-rule="evenodd"/>
+ <path fill="#000000"
+ d="m42.38826 240.8954q0 1.3125 -0.890625 2.015625q-0.890625 0.6875 -2.53125 0.6875l-1.015625 0l0 3.375l-1.0 0l0 -8.5625l2.234375 0q3.203125 0 3.203125 2.484375zm-4.4375 1.859375l0.90625 0q1.3125 0 1.90625 -0.421875q0.59375 -0.4375 0.59375 -1.390625q0 -0.84375 -0.5625 -1.25q-0.546875 -0.421875 -1.734375 -0.421875l-1.109375 0l0 3.484375zm9.021484 -2.328125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm2.9296875 6.546875l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm4.5195312 8.15625l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm8.558594 0l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm7.001953 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375z"
+ fill-rule="nonzero"/>
+ <path fill="#000000"
+ d="m41.20076 260.9735l0 -4.15625q0 -0.78125 -0.359375 -1.1718597q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.54685974 -0.46875 1.7968597l0 3.375l-0.96875 0l0 -6.4218597l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.7968597l0 4.1875l-0.984375 0zm5.6933594 0.125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.4687347q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.79685974 0.703125 2.0937347l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.8437347q-0.78125 0 -1.25 0.5q-0.453125 0.49998474 -0.53125 1.3906097l3.359375 0q0 -0.921875 -0.40625 -1.4062347q-0.40625 -0.484375 -1.171875 -0.484375zm6.357422 5.0312347q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.8281097l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.7812347q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm7.408203 0.6875l-1.1875 -3.765625q-0.109375 -0.34375 -0.40625 -1.5781097l-0.046875 0q-0.234375 1.0312347 -0.421875 1.5937347l-1.203125 3.75l-1.125 0l-1.75 -6.4218597l1.015625 0q0.625 2.4218597 0.9375 3.6874847q0.328125 1.265625 0.375 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6874847l1.046875 0l1.15625 3.6874847q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.7343597l1.0 0l-1.765625 6.4218597l-1.15625 0zm9.630859 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4374847q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.89060974 0.796875 2.4218597zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.8593597q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.62498474 -0.484375 1.8593597zm9.529297 -3.3281097q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.62498474 -0.546875 1.5624847l0 3.453125l-0.96875 0l0 -6.4218597l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm2.9296875 3.2656097q0.25 -0.359375 0.765625 -0.9375l2.0625 -2.2031097l1.15625 0l-2.59375 2.7343597l2.78125 3.6875l-1.171875 0l-2.28125 -3.03125l-0.71875 0.625l0 2.40625l-0.96875 0l0 -9.124985l0.96875 0l0 4.8437347q0 0.3125 -0.046875 1.0l0.046875 0z"
+ fill-rule="nonzero"/>
+ <path fill="#000000" fill-opacity="0.0" d="m115.4676 250.73775l42.992134 -10.047241" fill-rule="evenodd"/>
+ <path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m115.4676 250.73773l39.65496 -9.267334" fill-rule="evenodd"/>
+ <path fill="#4a86e8" stroke="#4a86e8" stroke-width="1.0" stroke-linecap="butt"
+ d="m155.12256 241.47038l-0.8391571 1.3509979l2.752777 -1.7982025l-3.264618 -0.3919525z" fill-rule="evenodd"/>
+ <path fill="#000000" fill-opacity="0.0" d="m326.12335 147.1942l-53.637787 93.51181" fill-rule="evenodd"/>
+ <path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m324.4182 150.16696l-51.932648 90.53903"
+ fill-rule="evenodd"/>
+ <path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt"
+ d="m324.4182 150.16696l0.4159546 1.5350494l0.5618286 -3.2397156l-2.512848 2.1206207z" fill-rule="evenodd"/>
+ </g>
+</svg>
\ No newline at end of file
diff --git a/_blog/2018/img/policies.png b/_blog/2018/img/policies.png
new file mode 100644
index 0000000000000..bda30f41980b2
Binary files /dev/null and b/_blog/2018/img/policies.png differ
diff --git a/_blog/2018/img/roles_summary.png b/_blog/2018/img/roles_summary.png
new file mode 100644
index 0000000000000..943b1ebcfbbff
Binary files /dev/null and b/_blog/2018/img/roles_summary.png differ
diff --git a/_blog/2018/img/virtualservices-destrules.svg b/_blog/2018/img/virtualservices-destrules.svg
new file mode 100644
index 0000000000000..aa213df7f07f6
--- /dev/null
+++ b/_blog/2018/img/virtualservices-destrules.svg
@@ -0,0 +1 @@
+<svg version="1.1" viewBox="0.0 0.0 906.6010498687664 373.2020997375328" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg"><clipPath id="p.0"><path d="m0 0l906.6011 0l0 373.2021l-906.6011 0l0 -373.2021z" clip-rule="nonzero"/></clipPath><g clip-path="url(#p.0)"><path fill="#000000" fill-opacity="0.0" d="m0 0l906.6011 0l0 373.2021l-906.6011 0z" fill-rule="evenodd"/><path fill="#b6d7a8" d="m241.47139 279.66122l102.96065 0l0 29.259857l-102.96065 0z" fill-rule="evenodd"/><path fill="#000000" d="m267.79938 297.10428q0 1.515625 -1.09375 2.359375q-1.09375 0.84375 -2.96875 0.84375q-2.03125 0 -3.125 -0.53125l0 -1.28125q0.703125 0.296875 1.53125 0.46875q0.828125 0.171875 1.640625 0.171875q1.328125 0 2.0 -0.5q0.671875 -0.5 0.671875 -1.40625q0 -0.59375 -0.234375 -0.96875q-0.234375 -0.375 -0.796875 -0.6875q-0.5625 -0.328125 -1.703125 -0.734375q-1.59375 -0.578125 -2.28125 -1.359375q-0.671875 -0.78125 -0.671875 -2.03125q0 -1.328125 0.984375 -2.109375q1.0 -0.78125 2.625 -0.78125q1.703125 0 3.140625 0.625l-0.421875 1.15625q-1.40625 -0.59375 -2.75 -0.59375q-1.046875 0 -1.640625 0.453125q-0.59375 0.453125 -0.59375 1.265625q0 0.59375 0.21875 0.96875q0.21875 0.375 0.734375 0.703125q0.515625 0.3125 1.59375 0.6875q1.796875 0.640625 2.46875 1.375q0.671875 0.734375 0.671875 1.90625zm5.765625 3.203125q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm9.6171875 -1.078125q0.578125 0 1.03125 0.09375l-0.1875 1.203125q-0.53125 -0.125 -0.9375 -0.125q-1.03125 0 -1.78125 0.84375q-0.734375 0.84375 -0.734375 2.109375l0 4.59375l-1.296875 0l0 -8.5625l1.078125 0l0.140625 1.578125l0.0625 0q0.484375 -0.828125 1.15625 -1.28125q0.671875 -0.453125 1.46875 -0.453125zm4.5 8.71875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm7.4375 0l-1.296875 0l0 -8.5625l1.296875 0l0 8.5625zm-1.40625 -10.890625q0 -0.4375 0.21875 -0.640625q0.21875 -0.21875 0.546875 -0.21875q0.3125 0 0.53125 0.21875q0.234375 0.203125 0.234375 0.640625q0 0.4375 -0.234375 0.65625q-0.21875 0.21875 -0.53125 0.21875q-0.328125 0 -0.546875 -0.21875q-0.21875 -0.21875 -0.21875 -0.65625zm7.578125 11.046875q-1.859375 0 -2.875 -1.140625q-1.015625 -1.15625 -1.015625 -3.25q0 -2.140625 1.03125 -3.3125q1.03125 -1.171875 2.953125 -1.171875q0.609375 0 1.21875 0.140625q0.625 0.125 0.984375 0.296875l-0.40625 1.109375q-0.421875 -0.171875 -0.9375 -0.28125q-0.5 -0.125 -0.890625 -0.125q-2.609375 0 -2.609375 3.328125q0 1.578125 0.625 2.421875q0.640625 0.84375 1.890625 0.84375q1.078125 0 2.203125 -0.453125l0 1.140625q-0.859375 0.453125 -2.171875 0.453125zm7.8203125 0q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm17.664062 7.640625l-1.5 0l-3.078125 -5.03125l-3.125 5.03125l-1.40625 0l3.796875 -5.96875l-3.53125 -5.453125l1.46875 0l2.828125 4.515625l2.859375 -4.515625l1.421875 0l-3.546875 5.40625l3.8125 6.015625z" fill-rule="nonzero"/><path fill="#ea9999" d="m294.88452 276.08923l0 -45.984253c0 -14.611618 11.845062 -26.45668 26.456696 -26.45668l18.897614 0l0 -7.559067l15.118134 15.118118l-15.118134 15.118103l0 -7.5590515l-18.897614 0l0 0c-6.262146 0 -11.338593 5.076462 -11.338593 11.338577l0 45.984253z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m306.41995 245.16011l234.4252 0l0 38.929123l-234.4252 0z" fill-rule="evenodd"/><path fill="#000000" d="m321.4512 266.9601l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.609375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -10.125l1.078125 0l0 3.0625q0 0.546875 -0.046875 0.921875l0.0625 0q0.328125 -0.515625 0.90625 -0.8125q0.59375 -0.296875 1.34375 -0.296875q1.3125 0 1.96875 0.625q0.65625 0.625 0.65625 1.96875l0 4.65625l-1.078125 0zm5.6022644 -0.765625q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm4.7052 0q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.720825 0.890625q-0.703125 0 -1.28125 -0.25q-0.578125 -0.265625 -0.96875 -0.796875l-0.078125 0q0.078125 0.625 0.078125 1.1875l0 2.9375l-1.078125 0l0 -10.328125l0.890625 0l0.140625 0.96875l0.046875 0q0.421875 -0.578125 0.96875 -0.84375q0.5625 -0.265625 1.28125 -0.265625q1.421875 0 2.1875 0.96875q0.765625 0.96875 0.765625 2.71875q0 1.765625 -0.78125 2.734375q-0.78125 0.96875 -2.171875 0.96875zm-0.15625 -6.46875q-1.09375 0 -1.59375 0.609375q-0.484375 0.59375 -0.5 1.921875l0 0.234375q0 1.515625 0.5 2.15625q0.515625 0.640625 1.609375 0.640625q0.9375 0 1.453125 -0.734375q0.53125 -0.75 0.53125 -2.0625q0 -1.34375 -0.53125 -2.046875q-0.515625 -0.71875 -1.46875 -0.71875zm9.604889 4.390625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm1.5925903 1.265625q0 -0.4375 0.203125 -0.65625q0.203125 -0.234375 0.5625 -0.234375q0.390625 0 0.59375 0.234375q0.21875 0.21875 0.21875 0.65625q0 0.421875 -0.21875 0.65625q-0.21875 0.21875 -0.59375 0.21875q-0.328125 0 -0.546875 -0.203125q-0.21875 -0.203125 -0.21875 -0.671875zm0 -5.75q0 -0.875 0.765625 -0.875q0.8125 0 0.8125 0.875q0 0.421875 -0.21875 0.65625q-0.21875 0.21875 -0.59375 0.21875q-0.328125 0 -0.546875 -0.203125q-0.21875 -0.203125 -0.21875 -0.671875zm7.3124084 -3.078125l-3.546875 9.515625l-1.078125 0l3.546875 -9.515625l1.078125 0zm4.893921 0l-3.546875 9.515625l-1.078125 0l3.546875 -9.515625l1.078125 0zm10.378296 9.515625l0 -4.640625q0 -0.859375 -0.359375 -1.28125q-0.359375 -0.421875 -1.140625 -0.421875q-1.0 0 -1.484375 0.578125q-0.484375 0.578125 -0.484375 1.78125l0 3.984375l-1.078125 0l0 -4.640625q0 -0.859375 -0.375 -1.28125q-0.359375 -0.421875 -1.125 -0.421875q-1.015625 0 -1.5 0.609375q-0.46875 0.609375 -0.46875 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.3125 -0.515625 0.859375 -0.8125q0.5625 -0.296875 1.25 -0.296875q1.671875 0 2.1875 1.21875l0.046875 0q0.328125 -0.5625 0.921875 -0.890625q0.609375 -0.328125 1.390625 -0.328125q1.203125 0 1.796875 0.625q0.609375 0.625 0.609375 1.984375l0 4.65625l-1.078125 0zm9.460022 -3.578125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm12.206482 3.578125l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.59375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.328125 -0.53125 0.921875 -0.8125q0.609375 -0.296875 1.34375 -0.296875q1.296875 0 1.9375 0.625q0.65625 0.625 0.65625 1.984375l0 4.65625l-1.078125 0zm9.446045 -3.578125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm8.393982 3.578125l-1.078125 0l0 -10.125l1.078125 0l0 10.125zm3.3710938 0l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm5.777313 8.296875q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm7.283325 0.765625l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.609375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -10.125l1.078125 0l0 3.0625q0 0.546875 -0.046875 0.921875l0.0625 0q0.328125 -0.515625 0.90625 -0.8125q0.59375 -0.296875 1.34375 -0.296875q1.3125 0 1.96875 0.625q0.65625 0.625 0.65625 1.96875l0 4.65625l-1.078125 0zm3.133545 -0.6875q0 -0.4375 0.203125 -0.65625q0.203125 -0.234375 0.5625 -0.234375q0.390625 0 0.59375 0.234375q0.21875 0.21875 0.21875 0.65625q0 0.421875 -0.21875 0.65625q-0.21875 0.21875 -0.59375 0.21875q-0.328125 0 -0.546875 -0.203125q-0.21875 -0.203125 -0.21875 -0.671875zm6.9217834 -5.609375l-1.8125 0l0 6.296875l-1.078125 0l0 -6.296875l-1.28125 0l0 -0.484375l1.28125 -0.390625l0 -0.390625q0 -2.640625 2.296875 -2.640625q0.5625 0 1.328125 0.234375l-0.28125 0.859375q-0.625 -0.203125 -1.078125 -0.203125q-0.609375 0 -0.90625 0.40625q-0.28125 0.40625 -0.28125 1.3125l0 0.46875l1.8125 0l0 0.828125zm7.4539795 2.71875q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm13.472107 0q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm7.1596375 2.890625q0 -0.4375 0.203125 -0.65625q0.203125 -0.234375 0.5625 -0.234375q0.390625 0 0.59375 0.234375q0.21875 0.21875 0.21875 0.65625q0 0.421875 -0.21875 0.65625q-0.21875 0.21875 -0.59375 0.21875q-0.328125 0 -0.546875 -0.203125q-0.21875 -0.203125 -0.21875 -0.671875zm6.5624084 0.8125q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm9.642059 -3.703125q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm16.409637 3.578125l0 -4.640625q0 -0.859375 -0.359375 -1.28125q-0.359375 -0.421875 -1.140625 -0.421875q-1.0 0 -1.484375 0.578125q-0.484375 0.578125 -0.484375 1.78125l0 3.984375l-1.078125 0l0 -4.640625q0 -0.859375 -0.375 -1.28125q-0.359375 -0.421875 -1.125 -0.421875q-1.015625 0 -1.5 0.609375q-0.46875 0.609375 -0.46875 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.3125 -0.515625 0.859375 -0.8125q0.5625 -0.296875 1.25 -0.296875q1.671875 0 2.1875 1.21875l0.046875 0q0.328125 -0.5625 0.921875 -0.890625q0.609375 -0.328125 1.390625 -0.328125q1.203125 0 1.796875 0.625q0.609375 0.625 0.609375 1.984375l0 4.65625l-1.078125 0z" fill-rule="nonzero"/><path fill="#9fc5e8" d="m360.94226 170.04462l165.57483 0l0 56.587708l-11.317871 11.31781l-154.25696 0z" fill-rule="evenodd"/><path fill="#7f9db9" d="m515.1992 237.95013l2.2636108 -9.054245l9.05426 -2.263565z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m515.1992 237.95013l2.2636108 -9.054245l9.05426 -2.263565l-11.317871 11.31781l-154.25696 0l0 -67.90552l165.57483 0l0 56.587708" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m355.35696 144.92914l131.1496 0l0 38.929123l-131.1496 0z" fill-rule="evenodd"/><path fill="#000000" d="m371.09134 157.2135l1.203125 0l-3.4375 9.515625l-1.09375 0l-3.40625 -9.515625l1.171875 0l2.1875 6.15625q0.375 1.0625 0.59375 2.0625q0.234375 -1.046875 0.609375 -2.09375l2.171875 -6.125zm3.4174805 9.515625l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm6.730438 1.796875q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm4.4874573 6.5q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm3.4083252 -6.359375l0 4.625q0 0.859375 0.390625 1.296875q0.40625 0.421875 1.25 0.421875q1.125 0 1.640625 -0.609375q0.515625 -0.609375 0.515625 -2.0l0 -3.734375l1.078125 0l0 7.125l-0.890625 0l-0.15625 -0.953125l-0.0625 0q-0.328125 0.53125 -0.921875 0.8125q-0.578125 0.265625 -1.34375 0.265625q-1.296875 0 -1.953125 -0.609375q-0.640625 -0.625 -0.640625 -1.984375l0 -4.65625l1.09375 0zm11.55542 7.125l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm6.5374756 0.765625l-1.078125 0l0 -10.125l1.078125 0l0 10.125zm7.824188 -2.53125q0 1.25 -0.90625 1.953125q-0.90625 0.703125 -2.46875 0.703125q-1.703125 0 -2.609375 -0.4375l0 -1.0625q0.59375 0.25 1.28125 0.390625q0.6875 0.140625 1.359375 0.140625q1.109375 0 1.671875 -0.40625q0.5625 -0.421875 0.5625 -1.171875q0 -0.5 -0.203125 -0.8125q-0.203125 -0.3125 -0.671875 -0.578125q-0.453125 -0.28125 -1.40625 -0.609375q-1.328125 -0.484375 -1.90625 -1.125q-0.5625 -0.65625 -0.5625 -1.703125q0 -1.09375 0.828125 -1.75q0.828125 -0.65625 2.1875 -0.65625q1.421875 0 2.609375 0.53125l-0.34375 0.953125q-1.1875 -0.484375 -2.296875 -0.484375q-0.875 0 -1.375 0.375q-0.484375 0.375 -0.484375 1.046875q0 0.5 0.171875 0.8125q0.1875 0.3125 0.609375 0.578125q0.4375 0.265625 1.328125 0.578125q1.5 0.53125 2.0625 1.15625q0.5625 0.609375 0.5625 1.578125zm4.799225 2.65625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm8.024445 -0.90625q0.46875 0 0.84375 0.078125l-0.140625 1.0q-0.453125 -0.09375 -0.78125 -0.09375q-0.875 0 -1.5 0.703125q-0.609375 0.703125 -0.609375 1.75l0 3.828125l-1.078125 0l0 -7.125l0.890625 0l0.125 1.3125l0.0625 0q0.390625 -0.703125 0.953125 -1.078125q0.5625 -0.375 1.234375 -0.375zm3.7374573 7.265625l-2.703125 -7.125l1.15625 0l1.53125 4.21875q0.53125 1.484375 0.625 1.9375l0.046875 0q0.0625 -0.359375 0.4375 -1.4375q0.390625 -1.078125 1.71875 -4.71875l1.15625 0l-2.703125 7.125l-1.265625 0zm6.192688 0l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm6.3242188 9.1875q-1.546875 0 -2.40625 -0.953125q-0.84375 -0.953125 -0.84375 -2.6875q0 -1.796875 0.859375 -2.765625q0.859375 -0.984375 2.453125 -0.984375q0.515625 0 1.03125 0.109375q0.515625 0.109375 0.8125 0.265625l-0.328125 0.921875q-0.359375 -0.15625 -0.796875 -0.25q-0.421875 -0.09375 -0.734375 -0.09375q-2.171875 0 -2.171875 2.78125q0 1.3125 0.515625 2.015625q0.53125 0.703125 1.578125 0.703125q0.890625 0 1.828125 -0.390625l0 0.96875q-0.71875 0.359375 -1.796875 0.359375zm6.5014343 0q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m365.59055 173.76115l170.23624 0l0 60.472443l-170.23624 0z" fill-rule="evenodd"/><path fill="#000000" d="m382.27805 194.28116l-1.0 0l0 -4.03125l-4.515625 0l0 4.03125l-1.0 0l0 -8.5625l1.0 0l0 3.640625l4.515625 0l0 -3.640625l1.0 0l0 8.5625zm7.7441406 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm10.732422 1.46875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm3.6621094 1.0625q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm2.0175781 0.0625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm0 -5.171875q0 -0.796875 0.6875 -0.796875q0.71875 0 0.71875 0.796875q0 0.375 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm10.388672 5.796875l-2.90625 -7.59375l-0.046875 0q0.078125 0.90625 0.078125 2.140625l0 5.453125l-0.921875 0l0 -8.5625l1.5 0l2.71875 7.0625l0.046875 0l2.734375 -7.0625l1.484375 0l0 8.5625l-0.984375 0l0 -5.515625q0 -0.953125 0.078125 -2.0625l-0.046875 0l-2.9375 7.578125l-0.796875 0zm12.443359 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm10.982422 3.21875l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm8.521484 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm7.560547 3.21875l-0.96875 0l0 -9.125l0.96875 0l0 9.125zm3.0351562 0l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.1914062 7.46875q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm6.548828 0.6875l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.5625q-0.46875 0.546875 -0.46875 1.796875l0 3.359375l-0.96875 0l0 -9.125l0.96875 0l0 2.765625q0 0.5 -0.046875 0.828125l0.0625 0q0.28125 -0.46875 0.8125 -0.734375q0.53125 -0.265625 1.21875 -0.265625q1.171875 0 1.765625 0.5625q0.59375 0.5625 0.59375 1.78125l0 4.1875l-0.984375 0zm2.8339844 -0.625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm6.2246094 -5.046875l-1.625 0l0 5.671875l-0.984375 0l0 -5.671875l-1.140625 0l0 -0.4375l1.140625 -0.34375l0 -0.359375q0 -2.375 2.078125 -2.375q0.5 0 1.1875 0.203125l-0.25 0.78125q-0.5625 -0.171875 -0.953125 -0.171875q-0.5625 0 -0.828125 0.375q-0.25 0.359375 -0.25 1.15625l0 0.421875l1.625 0l0 0.75zm6.7226562 2.453125q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm12.138672 0q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm6.451172 2.59375q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm5.8964844 0.75q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm8.697266 -3.34375q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm14.779297 3.21875l0 -4.171875q0 -0.78125 -0.328125 -1.15625q-0.328125 -0.390625 -1.015625 -0.390625q-0.90625 0 -1.34375 0.53125q-0.4375 0.515625 -0.4375 1.59375l0 3.59375l-0.96875 0l0 -4.171875q0 -0.78125 -0.328125 -1.15625q-0.328125 -0.390625 -1.03125 -0.390625q-0.90625 0 -1.34375 0.546875q-0.421875 0.546875 -0.421875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.265625 -0.46875 0.765625 -0.734375q0.515625 -0.265625 1.125 -0.265625q1.515625 0 1.96875 1.09375l0.046875 0q0.296875 -0.5 0.828125 -0.796875q0.546875 -0.296875 1.25 -0.296875q1.09375 0 1.625 0.5625q0.546875 0.5625 0.546875 1.796875l0 4.1875l-0.96875 0z" fill-rule="nonzero"/><path fill="#000000" d="m378.5593 201.73428q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.6796875 6.671875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm9.529297 5.71875l-1.1875 -3.765625q-0.109375 -0.34375 -0.40625 -1.578125l-0.046875 0q-0.234375 1.03125 -0.421875 1.59375l-1.203125 3.75l-1.125 0l-1.75 -6.421875l1.015625 0q0.625 2.421875 0.9375 3.6875q0.328125 1.265625 0.375 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6875l1.046875 0l1.15625 3.6875q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.734375l1.0 0l-1.765625 6.421875l-1.15625 0zm7.0214844 -6.546875q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm2.9296875 6.546875l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.1914062 7.46875q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8125q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm8.654297 7.5625l-5.4375 0l0 -0.765625l5.4375 0l0 0.765625zm1.9257812 -8.265625l0 4.171875q0 0.78125 0.34375 1.171875q0.359375 0.375 1.125 0.375q1.015625 0 1.46875 -0.546875q0.46875 -0.546875 0.46875 -1.796875l0 -3.375l0.96875 0l0 6.421875l-0.796875 0l-0.140625 -0.859375l-0.046875 0q-0.296875 0.46875 -0.828125 0.734375q-0.53125 0.25 -1.21875 0.25q-1.171875 0 -1.75 -0.5625q-0.578125 -0.5625 -0.578125 -1.78125l0 -4.203125l0.984375 0zm9.380859 -0.125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm2.9296875 6.546875l-0.96875 0l0 -9.125l0.96875 0l0 9.125zm1.9257812 -0.625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm3.1933594 0q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm3.1933594 0q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375z" fill-rule="nonzero"/><path fill="#000000" d="m380.8718 215.85928l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm11.464844 1.140625q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm8.669922 2.53125q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm7.705078 -2.53125q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm6.451172 2.59375q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm0 -5.171875q0 -0.796875 0.6875 -0.796875q0.71875 0 0.71875 0.796875q0 0.375 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm10.591797 4.046875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm4.3027344 1.875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm7.216797 -0.828125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm3.3671875 6.546875l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm5.5742188 0l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.6757812 8.28125q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm5.8691406 0q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm6.607422 1.4375l2.28125 -4.28125l1.078125 0l-2.859375 5.234375l0 3.328125l-1.0 0l0 -3.28125l-2.859375 -5.28125l1.09375 0l2.265625 4.28125zm5.408203 2.890625l0.09375 0.125q-0.15625 0.59375 -0.453125 1.359375q-0.28125 0.78125 -0.578125 1.453125l-0.734375 0q0.15625 -0.609375 0.34375 -1.515625q0.1875 -0.890625 0.265625 -1.421875l1.0625 0zm9.183594 -0.359375q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm2.5058594 -4.671875l0 4.171875q0 0.78125 0.34375 1.171875q0.359375 0.375 1.125 0.375q1.015625 0 1.46875 -0.546875q0.46875 -0.546875 0.46875 -1.796875l0 -3.375l0.96875 0l0 6.421875l-0.796875 0l-0.140625 -0.859375l-0.046875 0q-0.296875 0.46875 -0.828125 0.734375q-0.53125 0.25 -1.21875 0.25q-1.171875 0 -1.75 -0.5625q-0.578125 -0.5625 -0.578125 -1.78125l0 -4.203125l0.984375 0zm9.427734 -0.109375q1.265625 0 1.96875 0.875q0.703125 0.859375 0.703125 2.4375q0 1.578125 -0.703125 2.46875q-0.703125 0.875 -1.96875 0.875q-0.625 0 -1.140625 -0.234375q-0.515625 -0.234375 -0.875 -0.71875l-0.0625 0l-0.203125 0.828125l-0.703125 0l0 -9.125l0.96875 0l0 2.21875q0 0.75 -0.046875 1.34375l0.046875 0q0.6875 -0.96875 2.015625 -0.96875zm-0.140625 0.8125q-0.984375 0 -1.4375 0.578125q-0.4375 0.5625 -0.4375 1.921875q0 1.359375 0.453125 1.9375q0.453125 0.578125 1.453125 0.578125q0.890625 0 1.328125 -0.640625q0.4375 -0.65625 0.4375 -1.890625q0 -1.25 -0.4375 -1.859375q-0.4375 -0.625 -1.359375 -0.625zm8.650391 3.96875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm4.3027344 1.875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm6.357422 5.03125q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm6.6816406 0.6875l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm7.7617188 0l-0.953125 0l0 -6.109375q0 -0.765625 0.046875 -1.4375q-0.109375 0.125 -0.265625 0.265625q-0.15625 0.125 -1.390625 1.140625l-0.515625 -0.671875l2.265625 -1.75l0.8125 0l0 8.5625z" fill-rule="nonzero"/><path fill="#9fc5e8" d="m600.2402 170.04462l165.57477 0l0 56.587708l-11.31781 11.31781l-154.25696 0z" fill-rule="evenodd"/><path fill="#7f9db9" d="m754.49713 237.95013l2.2635498 -9.054245l9.05426 -2.263565z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m754.49713 237.95013l2.2635498 -9.054245l9.05426 -2.263565l-11.31781 11.31781l-154.25696 0l0 -67.90552l165.57477 0l0 56.587708" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m599.0761 144.92914l131.1496 0l0 24.314957l-131.1496 0z" fill-rule="evenodd"/><path fill="#000000" d="m616.98236 161.88538q0 2.34375 -1.28125 3.59375q-1.28125 1.25 -3.6875 1.25l-2.625 0l0 -9.515625l2.90625 0q2.21875 0 3.453125 1.234375q1.234375 1.234375 1.234375 3.4375zm-1.171875 0.03125q0 -1.859375 -0.9375 -2.796875q-0.9375 -0.953125 -2.78125 -0.953125l-1.59375 0l0 7.609375l1.34375 0q1.96875 0 2.96875 -0.96875q1.0 -0.984375 1.0 -2.890625zm6.1381226 4.9375q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm9.368225 4.40625q0 1.0 -0.75 1.546875q-0.734375 0.53125 -2.078125 0.53125q-1.421875 0 -2.21875 -0.4375l0 -1.015625q0.515625 0.265625 1.109375 0.421875q0.59375 0.140625 1.140625 0.140625q0.84375 0 1.296875 -0.265625q0.453125 -0.265625 0.453125 -0.828125q0 -0.40625 -0.359375 -0.703125q-0.359375 -0.296875 -1.40625 -0.703125q-1.0 -0.375 -1.421875 -0.640625q-0.421875 -0.28125 -0.625 -0.625q-0.203125 -0.359375 -0.203125 -0.84375q0 -0.875 0.703125 -1.375q0.71875 -0.515625 1.953125 -0.515625q1.15625 0 2.25 0.46875l-0.375 0.875q-1.078125 -0.4375 -1.953125 -0.4375q-0.765625 0 -1.15625 0.25q-0.390625 0.234375 -0.390625 0.65625q0 0.28125 0.140625 0.484375q0.15625 0.203125 0.46875 0.390625q0.328125 0.171875 1.25 0.53125q1.28125 0.453125 1.71875 0.921875q0.453125 0.46875 0.453125 1.171875zm4.0612793 1.1875q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm3.4708252 0.765625l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm8.355469 9.0625l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.59375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.328125 -0.53125 0.921875 -0.8125q0.609375 -0.296875 1.34375 -0.296875q1.296875 0 1.9375 0.625q0.65625 0.625 0.65625 1.984375l0 4.65625l-1.078125 0zm7.68042 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm7.7718506 0q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm3.4708252 0.765625l-1.078125 0l0 -7.125l1.078125 0l0 7.125zm-1.171875 -9.0625q0 -0.375 0.1875 -0.546875q0.1875 -0.171875 0.453125 -0.171875q0.265625 0 0.453125 0.171875q0.1875 0.171875 0.1875 0.546875q0 0.359375 -0.1875 0.546875q-0.1875 0.171875 -0.453125 0.171875q-0.265625 0 -0.453125 -0.171875q-0.1875 -0.1875 -0.1875 -0.546875zm9.621094 5.484375q0 1.75 -0.875 2.734375q-0.875 0.96875 -2.421875 0.96875q-0.953125 0 -1.703125 -0.4375q-0.734375 -0.453125 -1.140625 -1.296875q-0.40625 -0.84375 -0.40625 -1.96875q0 -1.734375 0.875 -2.703125q0.875 -0.984375 2.421875 -0.984375q1.484375 0 2.359375 1.0q0.890625 1.0 0.890625 2.6875zm-5.421875 0q0 1.375 0.546875 2.09375q0.546875 0.703125 1.59375 0.703125q1.0625 0 1.609375 -0.703125q0.5625 -0.71875 0.5625 -2.09375q0 -1.359375 -0.5625 -2.0625q-0.546875 -0.703125 -1.609375 -0.703125q-1.0625 0 -1.609375 0.703125q-0.53125 0.6875 -0.53125 2.0625zm12.206482 3.578125l0 -4.609375q0 -0.875 -0.40625 -1.296875q-0.390625 -0.4375 -1.234375 -0.4375q-1.125 0 -1.65625 0.609375q-0.515625 0.59375 -0.515625 2.0l0 3.734375l-1.078125 0l0 -7.125l0.890625 0l0.171875 0.96875l0.046875 0q0.328125 -0.53125 0.921875 -0.8125q0.609375 -0.296875 1.34375 -0.296875q1.296875 0 1.9375 0.625q0.65625 0.625 0.65625 1.984375l0 4.65625l-1.078125 0zm4.571045 -3.953125l0 3.953125l-1.109375 0l0 -9.515625l2.609375 0q1.75 0 2.578125 0.671875q0.84375 0.671875 0.84375 2.015625q0 1.890625 -1.921875 2.546875l2.59375 4.28125l-1.3125 0l-2.296875 -3.953125l-1.984375 0zm0 -0.953125l1.515625 0q1.171875 0 1.71875 -0.46875q0.546875 -0.46875 0.546875 -1.390625q0 -0.953125 -0.5625 -1.359375q-0.5625 -0.421875 -1.78125 -0.421875l-1.4375 0l0 3.640625zm7.9733276 -2.21875l0 4.625q0 0.859375 0.390625 1.296875q0.40625 0.421875 1.25 0.421875q1.125 0 1.640625 -0.609375q0.515625 -0.609375 0.515625 -2.0l0 -3.734375l1.078125 0l0 7.125l-0.890625 0l-0.15625 -0.953125l-0.0625 0q-0.328125 0.53125 -0.921875 0.8125q-0.578125 0.265625 -1.34375 0.265625q-1.296875 0 -1.953125 -0.609375q-0.640625 -0.625 -0.640625 -1.984375l0 -4.65625l1.09375 0zm8.24292 7.125l-1.078125 0l0 -10.125l1.078125 0l0 10.125zm5.3085327 0.125q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m604.6562 164.87665l142.33069 0l0 60.472427l-142.33069 0z" fill-rule="evenodd"/><path fill="#000000" d="m621.3437 185.39664l-1.0 0l0 -4.03125l-4.515625 0l0 4.03125l-1.0 0l0 -8.5625l1.0 0l0 3.640625l4.515625 0l0 -3.640625l1.0 0l0 8.5625zm7.7441406 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm10.732422 1.46875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm3.6621094 1.0625q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm2.0175781 0.0625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm0 -5.171875q0 -0.796875 0.6875 -0.796875q0.71875 0 0.71875 0.796875q0 0.375 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm10.591797 4.046875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm4.3027344 1.875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm7.216797 -0.828125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm3.3671875 6.546875l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm5.5742188 0l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.6757812 8.28125q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm5.8691406 0q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm6.607422 1.4375l2.28125 -4.28125l1.078125 0l-2.859375 5.234375l0 3.328125l-1.0 0l0 -3.28125l-2.859375 -5.28125l1.09375 0l2.265625 4.28125z" fill-rule="nonzero"/><path fill="#000000" d="m619.6718 197.11539q0 1.125 -0.828125 1.765625q-0.8125 0.640625 -2.21875 0.640625q-1.53125 0 -2.34375 -0.40625l0 -0.953125q0.53125 0.21875 1.140625 0.359375q0.625 0.125 1.234375 0.125q1.0 0 1.5 -0.375q0.5 -0.390625 0.5 -1.0625q0 -0.4375 -0.1875 -0.71875q-0.171875 -0.296875 -0.59375 -0.53125q-0.40625 -0.25 -1.265625 -0.546875q-1.1875 -0.421875 -1.703125 -1.0q-0.515625 -0.59375 -0.515625 -1.546875q0 -0.984375 0.734375 -1.5625q0.75 -0.59375 1.984375 -0.59375q1.265625 0 2.34375 0.46875l-0.3125 0.859375q-1.0625 -0.4375 -2.0625 -0.4375q-0.796875 0 -1.25 0.34375q-0.4375 0.328125 -0.4375 0.9375q0 0.4375 0.15625 0.734375q0.171875 0.28125 0.5625 0.515625q0.390625 0.234375 1.203125 0.53125q1.34375 0.46875 1.84375 1.03125q0.515625 0.546875 0.515625 1.421875zm2.5234375 -4.140625l0 4.171875q0 0.78125 0.34375 1.171875q0.359375 0.375 1.125 0.375q1.015625 0 1.46875 -0.546875q0.46875 -0.546875 0.46875 -1.796875l0 -3.375l0.96875 0l0 6.421875l-0.796875 0l-0.140625 -0.859375l-0.046875 0q-0.296875 0.46875 -0.828125 0.734375q-0.53125 0.25 -1.21875 0.25q-1.171875 0 -1.75 -0.5625q-0.578125 -0.5625 -0.578125 -1.78125l0 -4.203125l0.984375 0zm9.427734 -0.109375q1.265625 0 1.96875 0.875q0.703125 0.859375 0.703125 2.4375q0 1.578125 -0.703125 2.46875q-0.703125 0.875 -1.96875 0.875q-0.625 0 -1.140625 -0.234375q-0.515625 -0.234375 -0.875 -0.71875l-0.0625 0l-0.203125 0.828125l-0.703125 0l0 -9.125l0.96875 0l0 2.21875q0 0.75 -0.046875 1.34375l0.046875 0q0.6875 -0.96875 2.015625 -0.96875zm-0.140625 0.8125q-0.984375 0 -1.4375 0.578125q-0.4375 0.5625 -0.4375 1.921875q0 1.359375 0.453125 1.9375q0.453125 0.578125 1.453125 0.578125q0.890625 0 1.328125 -0.640625q0.4375 -0.65625 0.4375 -1.890625q0 -1.25 -0.4375 -1.859375q-0.4375 -0.625 -1.359375 -0.625zm8.650391 3.96875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm4.3027344 1.875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm6.357422 5.03125q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm6.298828 -1.0625q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm1.4433594 1.125q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm0 -5.171875q0 -0.796875 0.6875 -0.796875q0.71875 0 0.71875 0.796875q0 0.375 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm7.857422 5.796875l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm7.7617188 0l-0.953125 0l0 -6.109375q0 -0.765625 0.046875 -1.4375q-0.109375 0.125 -0.265625 0.265625q-0.15625 0.125 -1.390625 1.140625l-0.515625 -0.671875l2.265625 -1.75l0.8125 0l0 8.5625zm4.720703 -1.390625l0.09375 0.125q-0.15625 0.59375 -0.453125 1.359375q-0.28125 0.78125 -0.578125 1.453125l-0.734375 0q0.15625 -0.609375 0.34375 -1.515625q0.1875 -0.890625 0.265625 -1.421875l1.0625 0zm6.4492188 1.390625l-2.4375 -6.421875l1.046875 0l1.375 3.8125q0.46875 1.328125 0.5625 1.734375l0.046875 0q0.0625 -0.3125 0.40625 -1.28125q0.34375 -0.984375 1.53125 -4.265625l1.046875 0l-2.4375 6.421875l-1.140625 0zm9.792969 0l-5.625 0l0 -0.84375l2.25 -2.265625q1.03125 -1.046875 1.359375 -1.484375q0.328125 -0.453125 0.484375 -0.875q0.171875 -0.421875 0.171875 -0.90625q0 -0.6875 -0.421875 -1.078125q-0.40625 -0.40625 -1.15625 -0.40625q-0.53125 0 -1.015625 0.1875q-0.46875 0.171875 -1.046875 0.625l-0.515625 -0.65625q1.171875 -0.984375 2.578125 -0.984375q1.203125 0 1.890625 0.625q0.6875 0.609375 0.6875 1.65625q0 0.8125 -0.46875 1.609375q-0.453125 0.796875 -1.703125 2.015625l-1.875 1.828125l0 0.046875l4.40625 0l0 0.90625zm2.6894531 -1.390625l0.09375 0.125q-0.15625 0.59375 -0.453125 1.359375q-0.28125 0.78125 -0.578125 1.453125l-0.734375 0q0.15625 -0.609375 0.34375 -1.515625q0.1875 -0.890625 0.265625 -1.421875l1.0625 0zm4.9023438 0.765625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm3.0 0q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm3.0 0q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375z" fill-rule="nonzero"/><path fill="#000000" d="m617.4687 213.39664l-1.0 0l0 -7.6875l-2.703125 0l0 -0.875l6.421875 0l0 0.875l-2.71875 0l0 7.6875zm3.9980469 0l0 -8.5625l1.0 0l0 7.65625l3.78125 0l0 0.90625l-4.78125 0zm11.072266 -2.28125q0 1.125 -0.828125 1.765625q-0.8125 0.640625 -2.21875 0.640625q-1.53125 0 -2.34375 -0.40625l0 -0.953125q0.53125 0.21875 1.140625 0.359375q0.625 0.125 1.234375 0.125q1.0 0 1.5 -0.375q0.5 -0.390625 0.5 -1.0625q0 -0.4375 -0.1875 -0.71875q-0.171875 -0.296875 -0.59375 -0.53125q-0.40625 -0.25 -1.265625 -0.546875q-1.1875 -0.421875 -1.703125 -1.0q-0.515625 -0.59375 -0.515625 -1.546875q0 -0.984375 0.734375 -1.5625q0.75 -0.59375 1.984375 -0.59375q1.265625 0 2.34375 0.46875l-0.3125 0.859375q-1.0625 -0.4375 -2.0625 -0.4375q-0.796875 0 -1.25 0.34375q-0.4375 0.328125 -0.4375 0.9375q0 0.4375 0.15625 0.734375q0.171875 0.28125 0.5625 0.515625q0.390625 0.234375 1.203125 0.53125q1.34375 0.46875 1.84375 1.03125q0.515625 0.546875 0.515625 1.421875zm8.859375 0.53125q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm4.3027344 1.875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm6.357422 5.03125q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.236328 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm3.1269531 0.6875l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm7.5039062 8.15625l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm8.224609 -6.421875l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm10.058594 2.609375q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625z" fill-rule="nonzero"/><path fill="#000000" d="m618.49994 219.59976q-1.40625 0 -2.234375 0.9375q-0.8125 0.9375 -0.8125 2.578125q0 1.671875 0.78125 2.59375q0.796875 0.921875 2.25 0.921875q0.90625 0 2.046875 -0.328125l0 0.875q-0.890625 0.34375 -2.1875 0.34375q-1.890625 0 -2.921875 -1.15625q-1.03125 -1.15625 -1.03125 -3.265625q0 -1.328125 0.484375 -2.3125q0.5 -1.0 1.4375 -1.53125q0.9375 -0.546875 2.203125 -0.546875q1.34375 0 2.359375 0.484375l-0.421875 0.859375q-0.984375 -0.453125 -1.953125 -0.453125zm4.7265625 7.796875l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm6.0507812 1.609375q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.5234375 6.671875q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm4.0722656 -6.546875l0 4.171875q0 0.78125 0.34375 1.171875q0.359375 0.375 1.125 0.375q1.015625 0 1.46875 -0.546875q0.46875 -0.546875 0.46875 -1.796875l0 -3.375l0.96875 0l0 6.421875l-0.796875 0l-0.140625 -0.859375l-0.046875 0q-0.296875 0.46875 -0.828125 0.734375q-0.53125 0.25 -1.21875 0.25q-1.171875 0 -1.75 -0.5625q-0.578125 -0.5625 -0.578125 -1.78125l0 -4.203125l0.984375 0zm7.4121094 6.421875l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.1914062 7.46875q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm8.259766 -5.84375q1.265625 0 1.96875 0.875q0.703125 0.859375 0.703125 2.4375q0 1.578125 -0.703125 2.46875q-0.703125 0.875 -1.96875 0.875q-0.625 0 -1.140625 -0.234375q-0.515625 -0.234375 -0.875 -0.71875l-0.0625 0l-0.203125 0.828125l-0.703125 0l0 -9.125l0.96875 0l0 2.21875q0 0.75 -0.046875 1.34375l0.046875 0q0.6875 -0.96875 2.015625 -0.96875zm-0.140625 0.8125q-0.984375 0 -1.4375 0.578125q-0.4375 0.5625 -0.4375 1.921875q0 1.359375 0.453125 1.9375q0.453125 0.578125 1.453125 0.578125q0.890625 0 1.328125 -0.640625q0.4375 -0.65625 0.4375 -1.890625q0 -1.25 -0.4375 -1.859375q-0.4375 -0.625 -1.359375 -0.625zm7.4472656 -0.828125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.6796875 6.671875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm8.232422 5.71875l-0.203125 -0.921875l-0.046875 0q-0.46875 0.609375 -0.953125 0.828125q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.5 -0.546875 -1.40625q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.390625l-0.71875 0zm-2.203125 -0.6875q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm5.892578 -2.59375q0.25 -0.359375 0.765625 -0.9375l2.0625 -2.203125l1.15625 0l-2.59375 2.734375l2.78125 3.6875l-1.171875 0l-2.28125 -3.03125l-0.71875 0.625l0 2.40625l-0.96875 0l0 -9.125l0.96875 0l0 4.84375q0 0.3125 -0.046875 1.0l0.046875 0zm8.048828 3.40625q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm7.216797 -0.828125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm6.1015625 4.796875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm1.4433594 1.125q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm3.1933594 0q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375z" fill-rule="nonzero"/><path fill="#ea9999" d="m532.56036 203.4042l45.84253 0l0 -7.314972l14.629944 14.629929l-14.629944 14.629913l0 -7.3149567l-45.84253 0z" fill-rule="evenodd"/><path fill="#b6d7a8" d="m775.3387 279.6614l115.55908 0l0 29.259857l-115.55908 0z" fill-rule="evenodd"/><path fill="#000000" d="m796.58307 297.10446q0 1.515625 -1.09375 2.359375q-1.09375 0.84375 -2.96875 0.84375q-2.03125 0 -3.125 -0.53125l0 -1.28125q0.703125 0.296875 1.53125 0.46875q0.828125 0.171875 1.640625 0.171875q1.328125 0 2.0 -0.5q0.671875 -0.5 0.671875 -1.40625q0 -0.59375 -0.234375 -0.96875q-0.234375 -0.375 -0.796875 -0.6875q-0.5625 -0.328125 -1.703125 -0.734375q-1.59375 -0.578125 -2.28125 -1.359375q-0.671875 -0.78125 -0.671875 -2.03125q0 -1.328125 0.984375 -2.109375q1.0 -0.78125 2.625 -0.78125q1.703125 0 3.140625 0.625l-0.421875 1.15625q-1.40625 -0.59375 -2.75 -0.59375q-1.046875 0 -1.640625 0.453125q-0.59375 0.453125 -0.59375 1.265625q0 0.59375 0.21875 0.96875q0.21875 0.375 0.734375 0.703125q0.515625 0.3125 1.59375 0.6875q1.796875 0.640625 2.46875 1.375q0.671875 0.734375 0.671875 1.90625zm5.765625 3.203125q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm9.6171875 -1.078125q0.578125 0 1.03125 0.09375l-0.1875 1.203125q-0.53125 -0.125 -0.9375 -0.125q-1.03125 0 -1.78125 0.84375q-0.734375 0.84375 -0.734375 2.109375l0 4.59375l-1.296875 0l0 -8.5625l1.078125 0l0.140625 1.578125l0.0625 0q0.484375 -0.828125 1.15625 -1.28125q0.671875 -0.453125 1.46875 -0.453125zm4.5 8.71875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm7.4375 0l-1.296875 0l0 -8.5625l1.296875 0l0 8.5625zm-1.40625 -10.890625q0 -0.4375 0.21875 -0.640625q0.21875 -0.21875 0.546875 -0.21875q0.3125 0 0.53125 0.21875q0.234375 0.203125 0.234375 0.640625q0 0.4375 -0.234375 0.65625q-0.21875 0.21875 -0.53125 0.21875q-0.328125 0 -0.546875 -0.21875q-0.21875 -0.21875 -0.21875 -0.65625zm7.578125 11.046875q-1.859375 0 -2.875 -1.140625q-1.015625 -1.15625 -1.015625 -3.25q0 -2.140625 1.03125 -3.3125q1.03125 -1.171875 2.953125 -1.171875q0.609375 0 1.21875 0.140625q0.625 0.125 0.984375 0.296875l-0.40625 1.109375q-0.421875 -0.171875 -0.9375 -0.28125q-0.5 -0.125 -0.890625 -0.125q-2.609375 0 -2.609375 3.328125q0 1.578125 0.625 2.421875q0.640625 0.84375 1.890625 0.84375q1.078125 0 2.203125 -0.453125l0 1.140625q-0.859375 0.453125 -2.171875 0.453125zm7.8203125 0q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm12.9765625 1.921875l3.046875 -5.703125l1.4375 0l-3.8125 6.984375l0 4.4375l-1.34375 0l0 -4.375l-3.8125 -7.046875l1.453125 0l3.03125 5.703125zm10.1953125 -5.703125l-4.265625 11.421875l-1.296875 0l4.265625 -11.421875l1.296875 0zm3.40625 11.421875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm10.359375 0l-1.265625 0l0 -8.140625q0 -1.015625 0.0625 -1.921875q-0.171875 0.15625 -0.375 0.34375q-0.203125 0.171875 -1.859375 1.515625l-0.6875 -0.890625l3.03125 -2.328125l1.09375 0l0 11.421875z" fill-rule="nonzero"/><path fill="#b6d7a8" d="m775.3387 322.6273l115.55908 0l0 29.259857l-115.55908 0z" fill-rule="evenodd"/><path fill="#000000" d="m796.58307 340.07034q0 1.515625 -1.09375 2.359375q-1.09375 0.84375 -2.96875 0.84375q-2.03125 0 -3.125 -0.53125l0 -1.28125q0.703125 0.296875 1.53125 0.46875q0.828125 0.171875 1.640625 0.171875q1.328125 0 2.0 -0.5q0.671875 -0.5 0.671875 -1.40625q0 -0.59375 -0.234375 -0.96875q-0.234375 -0.375 -0.796875 -0.6875q-0.5625 -0.328125 -1.703125 -0.734375q-1.59375 -0.578125 -2.28125 -1.359375q-0.671875 -0.78125 -0.671875 -2.03125q0 -1.328125 0.984375 -2.109375q1.0 -0.78125 2.625 -0.78125q1.703125 0 3.140625 0.625l-0.421875 1.15625q-1.40625 -0.59375 -2.75 -0.59375q-1.046875 0 -1.640625 0.453125q-0.59375 0.453125 -0.59375 1.265625q0 0.59375 0.21875 0.96875q0.21875 0.375 0.734375 0.703125q0.515625 0.3125 1.59375 0.6875q1.796875 0.640625 2.46875 1.375q0.671875 0.734375 0.671875 1.90625zm5.765625 3.203125q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm9.6171875 -1.078125q0.578125 0 1.03125 0.09375l-0.1875 1.203125q-0.53125 -0.125 -0.9375 -0.125q-1.03125 0 -1.78125 0.84375q-0.734375 0.84375 -0.734375 2.109375l0 4.59375l-1.296875 0l0 -8.5625l1.078125 0l0.140625 1.578125l0.0625 0q0.484375 -0.828125 1.15625 -1.28125q0.671875 -0.453125 1.46875 -0.453125zm4.5 8.71875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm7.4375 0l-1.296875 0l0 -8.5625l1.296875 0l0 8.5625zm-1.40625 -10.890625q0 -0.4375 0.21875 -0.640625q0.21875 -0.21875 0.546875 -0.21875q0.3125 0 0.53125 0.21875q0.234375 0.203125 0.234375 0.640625q0 0.4375 -0.234375 0.65625q-0.21875 0.21875 -0.53125 0.21875q-0.328125 0 -0.546875 -0.21875q-0.21875 -0.21875 -0.21875 -0.65625zm7.578125 11.046875q-1.859375 0 -2.875 -1.140625q-1.015625 -1.15625 -1.015625 -3.25q0 -2.140625 1.03125 -3.3125q1.03125 -1.171875 2.953125 -1.171875q0.609375 0 1.21875 0.140625q0.625 0.125 0.984375 0.296875l-0.40625 1.109375q-0.421875 -0.171875 -0.9375 -0.28125q-0.5 -0.125 -0.890625 -0.125q-2.609375 0 -2.609375 3.328125q0 1.578125 0.625 2.421875q0.640625 0.84375 1.890625 0.84375q1.078125 0 2.203125 -0.453125l0 1.140625q-0.859375 0.453125 -2.171875 0.453125zm7.8203125 0q-1.90625 0 -3.0 -1.15625q-1.09375 -1.15625 -1.09375 -3.21875q0 -2.0625 1.015625 -3.28125q1.015625 -1.21875 2.734375 -1.21875q1.609375 0 2.546875 1.0625q0.9375 1.046875 0.9375 2.78125l0 0.828125l-5.890625 0q0.03125 1.5 0.75 2.28125q0.734375 0.78125 2.046875 0.78125q1.375 0 2.734375 -0.578125l0 1.15625q-0.6875 0.296875 -1.3125 0.421875q-0.609375 0.140625 -1.46875 0.140625zm-0.359375 -7.796875q-1.03125 0 -1.640625 0.671875q-0.609375 0.671875 -0.71875 1.859375l4.46875 0q0 -1.21875 -0.546875 -1.875q-0.546875 -0.65625 -1.5625 -0.65625zm12.9765625 1.921875l3.046875 -5.703125l1.4375 0l-3.8125 6.984375l0 4.4375l-1.34375 0l0 -4.375l-3.8125 -7.046875l1.453125 0l3.03125 5.703125zm10.1953125 -5.703125l-4.265625 11.421875l-1.296875 0l4.265625 -11.421875l1.296875 0zm3.40625 11.421875l-3.25 -8.5625l1.390625 0l1.84375 5.078125q0.625 1.78125 0.734375 2.3125l0.0625 0q0.09375 -0.421875 0.546875 -1.71875q0.453125 -1.296875 2.046875 -5.671875l1.390625 0l-3.25 8.5625l-1.515625 0zm13.0625 0l-7.515625 0l0 -1.125l3.015625 -3.015625q1.375 -1.390625 1.8125 -1.984375q0.4375 -0.59375 0.65625 -1.15625q0.21875 -0.5625 0.21875 -1.21875q0 -0.90625 -0.5625 -1.4375q-0.546875 -0.546875 -1.53125 -0.546875q-0.71875 0 -1.359375 0.234375q-0.625 0.234375 -1.40625 0.859375l-0.6875 -0.890625q1.578125 -1.3125 3.4375 -1.3125q1.609375 0 2.515625 0.828125q0.921875 0.828125 0.921875 2.21875q0 1.078125 -0.609375 2.140625q-0.609375 1.0625 -2.28125 2.6875l-2.5 2.453125l0 0.0625l5.875 0l0 1.203125z" fill-rule="nonzero"/><path fill="#ea9999" d="m773.021 205.39108l29.224365 0l0 0c15.107422 0 27.35437 12.2469635 27.35437 27.354355l0 29.092728l8.082703 0l-16.165344 15.426941l-16.165405 -15.426941l8.082703 0l0 -29.092728l0 0c0 -6.1795197 -5.0095215 -11.189011 -11.189026 -11.189011l-29.224365 0z" fill-rule="evenodd"/><path fill="#9fc5e8" d="m174.67192 107.39905l0 0c0 -2.6933517 2.1833801 -4.8767395 4.8767395 -4.8767395l59.852814 0c1.293396 0 2.5338135 0.5138016 3.4483795 1.4283676c0.91456604 0.91456604 1.42836 2.1549835 1.42836 3.448372l0 19.506363c0 2.693344 -2.1833954 4.8767395 -4.8767395 4.8767395l-59.852814 0c-2.6933594 0 -4.8767395 -2.1833954 -4.8767395 -4.8767395z" fill-rule="evenodd"/><path fill="#000000" d="m186.27214 114.67223l0 -8.5625l1.0 0l0 8.5625l-1.0 0zm7.595703 0l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm8.224609 -6.421875l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.4375q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34375q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.5q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4375q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm8.855469 -2.1875q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.6796875 6.671875q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm8.419922 3.96875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm5.7246094 0q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625z" fill-rule="nonzero"/><path fill="#000000" d="m191.38152 122.25036l0 0.609375l-1.1875 0.140625q0.171875 0.203125 0.296875 0.546875q0.125 0.328125 0.125 0.734375q0 0.953125 -0.640625 1.515625q-0.640625 0.5625 -1.765625 0.5625q-0.296875 0 -0.546875 -0.046875q-0.609375 0.328125 -0.609375 0.828125q0 0.265625 0.203125 0.390625q0.21875 0.125 0.75 0.125l1.140625 0q1.046875 0 1.59375 0.43749237q0.5625 0.4375 0.5625 1.28125q0 1.0625 -0.859375 1.625q-0.84375 0.5625 -2.484375 0.5625q-1.265625 0 -1.953125 -0.46875q-0.671875 -0.46875 -0.671875 -1.328125q0 -0.59375 0.375 -1.03125q0.375 -0.421875 1.046875 -0.5625q-0.25 -0.109375 -0.421875 -0.34374237q-0.15625 -0.234375 -0.15625 -0.546875q0 -0.359375 0.1875 -0.625q0.1875 -0.265625 0.59375 -0.5q-0.5 -0.203125 -0.8125 -0.6875q-0.3125 -0.5 -0.3125 -1.140625q0 -1.046875 0.625 -1.625q0.640625 -0.578125 1.796875 -0.578125q0.5 0 0.90625 0.125l2.21875 0zm-5.109375 7.4999924q0 0.515625 0.4375 0.78125q0.4375 0.28125 1.25 0.28125q1.234375 0 1.8125 -0.375q0.59375 -0.359375 0.59375 -0.984375q0 -0.515625 -0.328125 -0.71875q-0.3125 -0.203125 -1.203125 -0.203125l-1.171875 0q-0.65625 0 -1.03125 0.3125q-0.359375 0.3125 -0.359375 0.90625zm0.515625 -5.4374924q0 0.671875 0.375 1.015625q0.390625 0.34375 1.078125 0.34375q1.421875 0 1.421875 -1.390625q0 -1.4375 -1.4375 -1.4375q-0.6875 0 -1.0625 0.375q-0.375 0.359375 -0.375 1.09375zm9.871094 4.3593674l-0.203125 -0.9218674l-0.046875 0q-0.46875 0.6093674 -0.953125 0.8281174q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.49999237 -0.546875 -1.4062424q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.3906174l-0.71875 0zm-2.203125 -0.6874924q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm7.001953 0q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.7343674q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.9687424l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm4.876953 0.8124924q-1.421875 0 -2.25 -0.8749924q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.8749924q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.8437424q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm9.529297 5.7187424l-1.1875 -3.7656174q-0.109375 -0.34375 -0.40625 -1.578125l-0.046875 0q-0.234375 1.03125 -0.421875 1.59375l-1.203125 3.7499924l-1.125 0l-1.75 -6.4218674l1.015625 0q0.625 2.421875 0.9375 3.6875q0.328125 1.265625 0.375 1.703125l0.046875 0q0.0625 -0.328125 0.203125 -0.859375q0.15625 -0.53125 0.265625 -0.84375l1.171875 -3.6875l1.046875 0l1.15625 3.6875q0.328125 1.0 0.4375 1.6875l0.046875 0q0.03125 -0.203125 0.125 -0.640625q0.109375 -0.453125 1.234375 -4.734375l1.0 0l-1.765625 6.4218674l-1.15625 0zm8.037109 0l-0.203125 -0.9218674l-0.046875 0q-0.46875 0.6093674 -0.953125 0.8281174q-0.46875 0.21875 -1.1875 0.21875q-0.953125 0 -1.5 -0.5q-0.546875 -0.49999237 -0.546875 -1.4062424q0 -1.9375 3.109375 -2.03125l1.09375 -0.03125l0 -0.40625q0 -0.75 -0.328125 -1.109375q-0.3125 -0.359375 -1.03125 -0.359375q-0.8125 0 -1.8125 0.484375l-0.3125 -0.75q0.484375 -0.25 1.046875 -0.390625q0.5625 -0.15625 1.140625 -0.15625q1.140625 0 1.6875 0.515625q0.5625 0.5 0.5625 1.625l0 4.3906174l-0.71875 0zm-2.203125 -0.6874924q0.90625 0 1.421875 -0.5q0.53125 -0.5 0.53125 -1.390625l0 -0.578125l-0.984375 0.03125q-1.15625 0.046875 -1.671875 0.375q-0.5 0.3125 -0.5 0.984375q0 0.53125 0.3125 0.8125q0.3125 0.265625 0.890625 0.265625zm3.9082031 -5.734375l1.046875 0l1.40625 3.65625q0.453125 1.265625 0.5625 1.8125l0.046875 0q0.078125 -0.296875 0.3125 -1.015625q0.25 -0.734375 1.609375 -4.453125l1.03125 0l-2.75 7.3124924q-0.421875 1.078125 -0.96875 1.53125q-0.546875 0.46875 -1.34375 0.46875q-0.4375 0 -0.875 -0.109375l0 -0.78125q0.328125 0.078125 0.71875 0.078125q1.0 0 1.4375 -1.125l0.359375 -0.921875l-2.59375 -6.4531174z" fill-rule="nonzero"/><path fill="#ea9999" d="m418.2257 54.412075l23.769684 0l0 0c13.127655 0 23.769714 10.642048 23.769714 23.76968l0 55.938972l6.791321 0l-13.582672 13.582687l-13.582672 -13.582687l6.791321 0l0 -55.938972l0 0c0 -5.626129 -4.5608826 -10.187004 -10.187012 -10.187004l-23.769684 0z" fill-rule="evenodd"/><path fill="#9fc5e8" d="m247.05774 25.115486l165.5748 0l0 56.5877l-11.31781 11.31781l-154.25699 0z" fill-rule="evenodd"/><path fill="#7f9db9" d="m401.31473 93.020996l2.2635803 -9.054245l9.05423 -2.263565z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m401.31473 93.020996l2.2635803 -9.054245l9.05423 -2.263565l-11.31781 11.31781l-154.25699 0l0 -67.90551l165.5748 0l0 56.5877" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m241.47244 0l131.1496 0l0 38.929134l-131.1496 0z" fill-rule="evenodd"/><path fill="#000000" d="m255.97244 16.815624l3.234375 0l0 4.625q-0.765625 0.25 -1.546875 0.359375q-0.78125 0.125 -1.8125 0.125q-2.15625 0 -3.359375 -1.28125q-1.203125 -1.28125 -1.203125 -3.59375q0 -1.484375 0.59375 -2.59375q0.59375 -1.125 1.71875 -1.71875q1.125 -0.59375 2.625 -0.59375q1.515625 0 2.828125 0.5625l-0.421875 0.984375q-1.296875 -0.546875 -2.484375 -0.546875q-1.734375 0 -2.71875 1.03125q-0.96875 1.03125 -0.96875 2.875q0 1.921875 0.9375 2.921875q0.9375 0.984375 2.765625 0.984375q0.984375 0 1.9375 -0.21875l0 -2.9375l-2.125 0l0 -0.984375zm9.734497 4.984375l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm7.7718506 0q0.28125 0 0.546875 -0.03125q0.265625 -0.046875 0.421875 -0.09375l0 0.828125q-0.171875 0.078125 -0.515625 0.125q-0.34375 0.0625 -0.609375 0.0625q-2.078125 0 -2.078125 -2.171875l0 -4.25l-1.015625 0l0 -0.515625l1.015625 -0.453125l0.453125 -1.515625l0.625 0l0 1.65625l2.078125 0l0 0.828125l-2.078125 0l0 4.203125q0 0.640625 0.3125 0.984375q0.3125 0.34375 0.84375 0.34375zm5.408325 0.890625q-1.578125 0 -2.5 -0.953125q-0.90625 -0.96875 -0.90625 -2.671875q0 -1.734375 0.84375 -2.75q0.859375 -1.015625 2.28125 -1.015625q1.34375 0 2.125 0.890625q0.78125 0.875 0.78125 2.328125l0 0.671875l-4.90625 0q0.03125 1.265625 0.625 1.921875q0.609375 0.640625 1.703125 0.640625q1.140625 0 2.265625 -0.484375l0 0.96875q-0.5625 0.25 -1.078125 0.34375q-0.515625 0.109375 -1.234375 0.109375zm-0.296875 -6.484375q-0.859375 0 -1.375 0.5625q-0.5 0.5625 -0.59375 1.546875l3.734375 0q0 -1.015625 -0.453125 -1.5625q-0.453125 -0.546875 -1.3125 -0.546875zm10.586914 6.359375l-1.3125 -4.1875q-0.125 -0.375 -0.453125 -1.734375l-0.0625 0q-0.25 1.125 -0.453125 1.75l-1.34375 4.171875l-1.25 0l-1.9375 -7.125l1.125 0q0.6875 2.6875 1.046875 4.09375q0.359375 1.390625 0.421875 1.890625l0.046875 0q0.078125 -0.375 0.234375 -0.953125q0.15625 -0.59375 0.28125 -0.953125l1.296875 -4.078125l1.171875 0l1.28125 4.078125q0.359375 1.125 0.5 1.890625l0.046875 0q0.03125 -0.234375 0.140625 -0.71875q0.109375 -0.5 1.359375 -5.25l1.109375 0l-1.96875 7.125l-1.28125 0zm8.929565 0l-0.21875 -1.015625l-0.046875 0q-0.53125 0.671875 -1.0625 0.90625q-0.53125 0.234375 -1.328125 0.234375q-1.0625 0 -1.671875 -0.546875q-0.59375 -0.546875 -0.59375 -1.546875q0 -2.15625 3.453125 -2.265625l1.21875 -0.046875l0 -0.4375q0 -0.84375 -0.359375 -1.234375q-0.359375 -0.40625 -1.15625 -0.40625q-0.890625 0 -2.015625 0.546875l-0.34375 -0.828125q0.53125 -0.28125 1.15625 -0.4375q0.640625 -0.171875 1.265625 -0.171875q1.28125 0 1.890625 0.5625q0.609375 0.5625 0.609375 1.8125l0 4.875l-0.796875 0zm-2.4375 -0.765625q1.0 0 1.578125 -0.546875q0.578125 -0.5625 0.578125 -1.546875l0 -0.640625l-1.078125 0.03125q-1.28125 0.046875 -1.859375 0.40625q-0.5625 0.359375 -0.5625 1.109375q0 0.578125 0.34375 0.890625q0.359375 0.296875 1.0 0.296875zm4.3343506 -6.359375l1.15625 0l1.5625 4.0625q0.515625 1.390625 0.640625 2.015625l0.046875 0q0.078125 -0.34375 0.34375 -1.140625q0.28125 -0.8125 1.78125 -4.9375l1.15625 0l-3.0625 8.109375q-0.453125 1.203125 -1.0625 1.703125q-0.609375 0.515625 -1.5 0.515625q-0.5 0 -0.96875 -0.109375l0 -0.875q0.359375 0.078125 0.796875 0.078125q1.109375 0 1.59375 -1.25l0.390625 -1.015625l-2.875 -7.15625z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m251.70604 28.832022l170.23622 0l0 60.472435l-170.23622 0z" fill-rule="evenodd"/><path fill="#000000" d="m268.39352 49.35202l-1.0 0l0 -4.03125l-4.515625 0l0 4.03125l-1.0 0l0 -8.5625l1.0 0l0 3.640625l4.515625 0l0 -3.640625l1.0 0l0 8.5625zm7.7441406 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm10.732422 1.46875q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625zm3.6621094 1.0625q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm2.0175781 0.0625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm0 -5.171875q0 -0.796875 0.6875 -0.796875q0.71875 0 0.71875 0.796875q0 0.375 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm10.388672 5.796875l-2.90625 -7.59375l-0.046875 0q0.078125 0.90625 0.078125 2.140625l0 5.453125l-0.921875 0l0 -8.5625l1.5 0l2.71875 7.0625l0.046875 0l2.734375 -7.0625l1.484375 0l0 8.5625l-0.984375 0l0 -5.515625q0 -0.953125 0.078125 -2.0625l-0.046875 0l-2.9375 7.578125l-0.796875 0zm12.443359 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm10.982422 3.21875l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.546875q-0.46875 0.546875 -0.46875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.296875 -0.46875 0.828125 -0.734375q0.546875 -0.265625 1.203125 -0.265625q1.171875 0 1.75 0.5625q0.59375 0.5625 0.59375 1.796875l0 4.1875l-0.984375 0zm8.521484 -3.21875q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm7.560547 3.21875l-0.96875 0l0 -9.125l0.96875 0l0 9.125zm3.0351562 0l-0.96875 0l0 -6.421875l0.96875 0l0 6.421875zm-1.046875 -8.15625q0 -0.34375 0.15625 -0.5q0.171875 -0.15625 0.421875 -0.15625q0.234375 0 0.390625 0.171875q0.171875 0.15625 0.171875 0.484375q0 0.328125 -0.171875 0.484375q-0.15625 0.15625 -0.390625 0.15625q-0.25 0 -0.421875 -0.15625q-0.15625 -0.15625 -0.15625 -0.484375zm5.1914062 7.46875q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm6.548828 0.6875l0 -4.15625q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -1.109375 -0.390625q-1.015625 0 -1.484375 0.5625q-0.46875 0.546875 -0.46875 1.796875l0 3.359375l-0.96875 0l0 -9.125l0.96875 0l0 2.765625q0 0.5 -0.046875 0.828125l0.0625 0q0.28125 -0.46875 0.8125 -0.734375q0.53125 -0.265625 1.21875 -0.265625q1.171875 0 1.765625 0.5625q0.59375 0.5625 0.59375 1.78125l0 4.1875l-0.984375 0zm2.8339844 -0.625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm6.2246094 -5.046875l-1.625 0l0 5.671875l-0.984375 0l0 -5.671875l-1.140625 0l0 -0.4375l1.140625 -0.34375l0 -0.359375q0 -2.375 2.078125 -2.375q0.5 0 1.1875 0.203125l-0.25 0.78125q-0.5625 -0.171875 -0.953125 -0.171875q-0.5625 0 -0.828125 0.375q-0.25 0.359375 -0.25 1.15625l0 0.421875l1.625 0l0 0.75zm6.7226562 2.453125q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm12.138672 0q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm6.451172 2.59375q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm5.8964844 0.75q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm8.697266 -3.34375q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm14.779297 3.21875l0 -4.171875q0 -0.78125 -0.328125 -1.15625q-0.328125 -0.390625 -1.015625 -0.390625q-0.90625 0 -1.34375 0.53125q-0.4375 0.515625 -0.4375 1.59375l0 3.59375l-0.96875 0l0 -4.171875q0 -0.78125 -0.328125 -1.15625q-0.328125 -0.390625 -1.03125 -0.390625q-0.90625 0 -1.34375 0.546875q-0.421875 0.546875 -0.421875 1.796875l0 3.375l-0.96875 0l0 -6.421875l0.796875 0l0.15625 0.875l0.046875 0q0.265625 -0.46875 0.765625 -0.734375q0.515625 -0.265625 1.125 -0.265625q1.515625 0 1.96875 1.09375l0.046875 0q0.296875 -0.5 0.828125 -0.796875q0.546875 -0.296875 1.25 -0.296875q1.09375 0 1.625 0.5625q0.546875 0.5625 0.546875 1.796875l0 4.1875l-0.96875 0z" fill-rule="nonzero"/><path fill="#000000" d="m267.3154 57.273895q0 1.3125 -0.890625 2.015625q-0.890625 0.6875 -2.53125 0.6875l-1.015625 0l0 3.375l-1.0 0l0 -8.5625l2.234375 0q3.203125 0 3.203125 2.484375zm-4.4375 1.859375l0.90625 0q1.3125 0 1.90625 -0.421875q0.59375 -0.4375 0.59375 -1.390625q0 -0.84375 -0.5625 -1.25q-0.546875 -0.421875 -1.734375 -0.421875l-1.109375 0l0 3.484375zm11.630859 1.0q0 1.578125 -0.796875 2.46875q-0.78125 0.875 -2.1875 0.875q-0.859375 0 -1.53125 -0.40625q-0.65625 -0.40625 -1.03125 -1.15625q-0.359375 -0.765625 -0.359375 -1.78125q0 -1.5625 0.78125 -2.4375q0.796875 -0.890625 2.1875 -0.890625q1.34375 0 2.140625 0.90625q0.796875 0.890625 0.796875 2.421875zm-4.890625 0q0 1.234375 0.484375 1.875q0.5 0.640625 1.453125 0.640625q0.953125 0 1.4375 -0.640625q0.5 -0.640625 0.5 -1.875q0 -1.21875 -0.5 -1.859375q-0.484375 -0.640625 -1.453125 -0.640625q-0.953125 0 -1.4375 0.640625q-0.484375 0.625 -0.484375 1.859375zm9.529297 -3.328125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.0390625 5.859375q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm2.0175781 0.0625q0 -0.390625 0.171875 -0.59375q0.1875 -0.203125 0.515625 -0.203125q0.34375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.59375q0 0.390625 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm0 -5.171875q0 -0.796875 0.6875 -0.796875q0.71875 0 0.71875 0.796875q0 0.375 -0.1875 0.59375q-0.1875 0.203125 -0.53125 0.203125q-0.296875 0 -0.5 -0.1875q-0.1875 -0.1875 -0.1875 -0.609375zm12.044922 3.828125l-1.28125 0l0 1.96875l-0.921875 0l0 -1.96875l-4.171875 0l0 -0.84375l4.0625 -5.796875l1.03125 0l0 5.75l1.28125 0l0 0.890625zm-2.203125 -0.890625l0 -2.84375q0 -0.84375 0.0625 -1.890625l-0.046875 0q-0.28125 0.5625 -0.53125 0.9375l-2.6875 3.796875l3.203125 0zm9.064453 0.890625l-1.28125 0l0 1.96875l-0.921875 0l0 -1.96875l-4.171875 0l0 -0.84375l4.0625 -5.796875l1.03125 0l0 5.75l1.28125 0l0 0.890625zm-2.203125 -0.890625l0 -2.84375q0 -0.84375 0.0625 -1.890625l-0.046875 0q-0.28125 0.5625 -0.53125 0.9375l-2.6875 3.796875l3.203125 0zm8.330078 -3.6875q0 0.8125 -0.46875 1.34375q-0.453125 0.515625 -1.296875 0.6875l0 0.046875q1.03125 0.125 1.53125 0.65625q0.5 0.53125 0.5 1.390625q0 1.21875 -0.859375 1.890625q-0.84375 0.65625 -2.40625 0.65625q-0.671875 0 -1.25 -0.109375q-0.5625 -0.109375 -1.09375 -0.359375l0 -0.921875q0.5625 0.265625 1.1875 0.421875q0.640625 0.140625 1.203125 0.140625q2.21875 0 2.21875 -1.75q0 -1.5625 -2.453125 -1.5625l-0.84375 0l0 -0.828125l0.859375 0q1.0 0 1.578125 -0.4375q0.59375 -0.453125 0.59375 -1.234375q0 -0.625 -0.4375 -0.984375q-0.421875 -0.359375 -1.171875 -0.359375q-0.5625 0 -1.0625 0.15625q-0.484375 0.15625 -1.125 0.5625l-0.5 -0.65625q0.53125 -0.421875 1.21875 -0.65625q0.6875 -0.234375 1.453125 -0.234375q1.25 0 1.9375 0.578125q0.6875 0.5625 0.6875 1.5625z" fill-rule="nonzero"/><path fill="#000000" d="m264.51852 77.35202l-1.0 0l0 -7.6875l-2.703125 0l0 -0.875l6.421875 0l0 0.875l-2.71875 0l0 7.6875zm3.9980469 0l0 -8.5625l1.0 0l0 7.65625l3.78125 0l0 0.90625l-4.78125 0zm11.072266 -2.28125q0 1.125 -0.828125 1.765625q-0.8125 0.640625 -2.21875 0.640625q-1.53125 0 -2.34375 -0.40625l0 -0.953125q0.53125 0.21875 1.140625 0.359375q0.625 0.125 1.234375 0.125q1.0 0 1.5 -0.375q0.5 -0.390625 0.5 -1.0625q0 -0.4375 -0.1875 -0.71875q-0.171875 -0.296875 -0.59375 -0.53125q-0.40625 -0.25 -1.265625 -0.546875q-1.1875 -0.421875 -1.703125 -1.0q-0.515625 -0.59375 -0.515625 -1.546875q0 -0.984375 0.734375 -1.5625q0.75 -0.59375 1.984375 -0.59375q1.265625 0 2.34375 0.46875l-0.3125 0.859375q-1.0625 -0.4375 -2.0625 -0.4375q-0.796875 0 -1.25 0.34375q-0.4375 0.328125 -0.4375 0.9375q0 0.4375 0.15625 0.734375q0.171875 0.28125 0.5625 0.515625q0.390625 0.234375 1.203125 0.53125q1.34375 0.46875 1.84375 1.03125q0.515625 0.546875 0.515625 1.421875zm7.28125 2.40625q-1.390625 0 -2.15625 -0.859375q-0.765625 -0.859375 -0.765625 -2.4375q0 -1.609375 0.78125 -2.484375q0.78125 -0.890625 2.203125 -0.890625q0.46875 0 0.921875 0.109375q0.46875 0.09375 0.734375 0.234375l-0.296875 0.828125q-0.328125 -0.140625 -0.703125 -0.21875q-0.375 -0.078125 -0.671875 -0.078125q-1.953125 0 -1.953125 2.484375q0 1.1875 0.46875 1.828125q0.484375 0.625 1.421875 0.625q0.796875 0 1.640625 -0.34375l0 0.859375q-0.640625 0.34375 -1.625 0.34375zm5.8691406 0q-1.421875 0 -2.25 -0.875q-0.828125 -0.875 -0.828125 -2.40625q0 -1.5625 0.765625 -2.46875q0.765625 -0.921875 2.0625 -0.921875q1.203125 0 1.90625 0.796875q0.703125 0.796875 0.703125 2.09375l0 0.625l-4.421875 0q0.03125 1.125 0.5625 1.71875q0.546875 0.578125 1.53125 0.578125q1.03125 0 2.046875 -0.4375l0 0.875q-0.515625 0.21875 -0.984375 0.3125q-0.453125 0.109375 -1.09375 0.109375zm-0.265625 -5.84375q-0.78125 0 -1.25 0.5q-0.453125 0.5 -0.53125 1.390625l3.359375 0q0 -0.921875 -0.40625 -1.40625q-0.40625 -0.484375 -1.171875 -0.484375zm7.216797 -0.828125q0.421875 0 0.765625 0.078125l-0.140625 0.90625q-0.390625 -0.09375 -0.703125 -0.09375q-0.78125 0 -1.34375 0.640625q-0.546875 0.625 -0.546875 1.5625l0 3.453125l-0.96875 0l0 -6.421875l0.796875 0l0.125 1.1875l0.046875 0q0.34375 -0.625 0.84375 -0.96875q0.515625 -0.34375 1.125 -0.34375zm4.0390625 5.859375q0.25 0 0.484375 -0.03125q0.25 -0.046875 0.390625 -0.078125l0 0.734375q-0.15625 0.078125 -0.46875 0.125q-0.296875 0.0625 -0.546875 0.0625q-1.859375 0 -1.859375 -1.96875l0 -3.828125l-0.921875 0l0 -0.46875l0.921875 -0.40625l0.40625 -1.359375l0.5625 0l0 1.484375l1.859375 0l0 0.75l-1.859375 0l0 3.78125q0 0.578125 0.265625 0.890625q0.28125 0.3125 0.765625 0.3125zm6.298828 -1.0625q0 0.890625 -0.671875 1.390625q-0.65625 0.484375 -1.875 0.484375q-1.265625 0 -1.984375 -0.40625l0 -0.90625q0.46875 0.234375 0.984375 0.375q0.53125 0.125 1.03125 0.125q0.765625 0 1.171875 -0.234375q0.40625 -0.25 0.40625 -0.75q0 -0.375 -0.328125 -0.640625q-0.3125 -0.265625 -1.265625 -0.625q-0.890625 -0.34375 -1.28125 -0.59375q-0.375 -0.25 -0.5625 -0.5625q-0.171875 -0.3125 -0.171875 -0.75q0 -0.78125 0.640625 -1.234375q0.640625 -0.46875 1.75 -0.46875q1.03125 0 2.03125 0.421875l-0.359375 0.796875q-0.953125 -0.390625 -1.75 -0.390625q-0.6875 0 -1.046875 0.21875q-0.34375 0.203125 -0.34375 0.59375q0 0.25 0.125 0.4375q0.140625 0.171875 0.421875 0.34375q0.296875 0.15625 1.140625 0.46875q1.140625 0.421875 1.53125 0.84375q0.40625 0.421875 0.40625 1.0625z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m133.94946 125.4653l40.72441 -8.314957" fill-rule="evenodd"/><path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m133.94946 125.4653l34.845703 -7.114662" fill-rule="evenodd"/><path fill="#4a86e8" stroke="#4a86e8" stroke-width="1.0" stroke-linecap="butt" d="m169.1256 119.96899l4.1159363 -2.5261917l-4.7767944 -0.7105026z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m28.915693 118.950714l0 0c-0.9317589 -3.1399155 2.127388 -6.2482452 7.8793316 -8.006004c5.7519417 -1.7577515 13.187912 -1.8566742 19.152554 -0.254776l0 0c2.1128616 -1.8256836 5.980007 -3.0861816 10.431709 -3.400238c4.4516983 -0.31404877 8.965088 0.35523224 12.174942 1.8054123l0 0c1.799881 -1.6552811 5.3339844 -2.7674103 9.348228 -2.9417648c4.0142365 -0.17434692 7.9404984 0.6137619 10.385544 2.084671l0 0c3.2517548 -1.7545853 8.425377 -2.4933395 13.282211 -1.8965988c4.8568344 0.5967407 8.524551 2.4217987 9.416107 4.685463l0 0c3.9839478 0.4983139 7.302498 1.7650833 9.098228 3.4730225c1.7957458 1.7079391 1.8925171 3.689499 0.26531982 5.4327087l0 0c3.9230194 2.3413239 4.8407135 5.461113 2.410614 8.1951065c-2.4301147 2.7340088 -7.8429184 4.671463 -14.218475 5.0893555c-0.044937134 2.5659637 -3.1137924 4.920456 -8.023697 6.15596c-4.9099045 1.2354889 -10.894165 1.1590729 -15.646179 -0.19979858c-2.0241013 3.0731812 -7.721283 5.3343964 -14.630142 5.806717c-6.908867 0.47232056 -13.790863 -0.92892456 -17.67271 -3.598343c-4.758339 1.3157654 -10.467949 1.6947937 -15.840858 1.05159c-5.3729095 -0.64320374 -9.956532 -2.2544556 -12.716888 -4.4703064l0 0c-4.8624268 0.2609253 -9.563719 -0.89430237 -11.770645 -2.8923187c-2.2069244 -1.9980316 -1.4496822 -4.4135284 1.8959122 -6.047699l0 0c-4.33741 -1.1706467 -6.550617 -3.4935913 -5.4855213 -5.757515c1.065094 -2.2639236 5.167137 -3.9558105 10.167072 -4.193405z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m24.138025 129.02264l0 0c2.0468369 0.5524292 4.411413 0.8030243 6.776245 0.71813965m3.0974216 8.222076c1.016964 -0.05456543 2.0137863 -0.1701355 2.9647522 -0.34370422m25.591576 3.7622833c-0.7152672 -0.4918518 -1.3141251 -1.017456 -1.7863731 -1.5678406m34.09046 -0.640625l0 0c0.36902618 -0.5602875 0.6081238 -1.1369476 0.7133026 -1.7203522m22.95568 -4.2355804c0.047843933 -2.7318573 -3.3358765 -5.233177 -8.697762 -6.4295654m20.5055 -6.854622c-0.86834717 0.9302521 -2.1939545 1.7554626 -3.8729095 2.4109344m-5.4898224 -11.31691l0 0c0.14795685 0.37565613 0.21643066 0.756958 0.2044754 1.1386185m-22.902405 -3.9273682l0 0c-0.8111496 0.4376831 -1.4794312 0.92678833 -1.9840393 1.4520874m-17.749924 -0.59519196l0 0c-0.43227386 0.39754486 -0.7550659 0.8182144 -0.9609451 1.2523193m-21.64603 0.34254456l0 0c1.2621155 0.33895874 2.429741 0.746933 3.477234 1.2149582m-30.508772 7.045868l0 0c0.12841988 0.43276215 0.33133125 0.8601837 0.6068325 1.2782745" fill-rule="evenodd"/><path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m28.915693 118.950714l0 0c-0.9317589 -3.1399155 2.127388 -6.2482452 7.8793316 -8.006004c5.7519417 -1.7577515 13.187912 -1.8566742 19.152554 -0.254776l0 0c2.1128616 -1.8256836 5.980007 -3.0861816 10.431709 -3.400238c4.4516983 -0.31404877 8.965088 0.35523224 12.174942 1.8054123l0 0c1.799881 -1.6552811 5.3339844 -2.7674103 9.348228 -2.9417648c4.0142365 -0.17434692 7.9404984 0.6137619 10.385544 2.084671l0 0c3.2517548 -1.7545853 8.425377 -2.4933395 13.282211 -1.8965988c4.8568344 0.5967407 8.524551 2.4217987 9.416107 4.685463l0 0c3.9839478 0.4983139 7.302498 1.7650833 9.098228 3.4730225c1.7957458 1.7079391 1.8925171 3.689499 0.26531982 5.4327087l0 0c3.9230194 2.3413239 4.8407135 5.461113 2.410614 8.1951065c-2.4301147 2.7340088 -7.8429184 4.671463 -14.218475 5.0893555c-0.044937134 2.5659637 -3.1137924 4.920456 -8.023697 6.15596c-4.9099045 1.2354889 -10.894165 1.1590729 -15.646179 -0.19979858c-2.0241013 3.0731812 -7.721283 5.3343964 -14.630142 5.806717c-6.908867 0.47232056 -13.790863 -0.92892456 -17.67271 -3.598343c-4.758339 1.3157654 -10.467949 1.6947937 -15.840858 1.05159c-5.3729095 -0.64320374 -9.956532 -2.2544556 -12.716888 -4.4703064l0 0c-4.8624268 0.2609253 -9.563719 -0.89430237 -11.770645 -2.8923187c-2.2069244 -1.9980316 -1.4496822 -4.4135284 1.8959122 -6.047699l0 0c-4.33741 -1.1706467 -6.550617 -3.4935913 -5.4855213 -5.757515c1.065094 -2.2639236 5.167137 -3.9558105 10.167072 -4.193405z" fill-rule="evenodd"/><path stroke="#4a86e8" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m24.138025 129.02264l0 0c2.0468369 0.5524292 4.411413 0.8030243 6.776245 0.71813965m3.0974216 8.222076c1.016964 -0.05456543 2.0137863 -0.1701355 2.9647522 -0.34370422m25.591576 3.7622833c-0.7152672 -0.4918518 -1.3141251 -1.017456 -1.7863731 -1.5678406m34.09046 -0.640625l0 0c0.36902618 -0.5602875 0.6081238 -1.1369476 0.7133026 -1.7203522m22.95568 -4.2355804c0.047843933 -2.7318573 -3.3358765 -5.233177 -8.697762 -6.4295654m20.5055 -6.854622c-0.86834717 0.9302521 -2.1939545 1.7554626 -3.8729095 2.4109344m-5.4898224 -11.31691l0 0c0.14795685 0.37565613 0.21643066 0.756958 0.2044754 1.1386185m-22.902405 -3.9273682l0 0c-0.8111496 0.4376831 -1.4794312 0.92678833 -1.9840393 1.4520874m-17.749924 -0.59519196l0 0c-0.43227386 0.39754486 -0.7550659 0.8182144 -0.9609451 1.2523193m-21.64603 0.34254456l0 0c1.2621155 0.33895874 2.429741 0.746933 3.477234 1.2149582m-30.508772 7.045868l0 0c0.12841988 0.43276215 0.33133125 0.8601837 0.6068325 1.2782745" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m209.47507 102.52231l42.23622 -43.464565" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="1.0,3.0" d="m209.47507 102.52231l42.23622 -43.464565" fill-rule="evenodd"/></g></svg>
\ No newline at end of file
diff --git a/_blog/2018/index.md b/_blog/2018/index.md
index e5fc78630b381..89268583c41e0 100644
--- a/_blog/2018/index.md
+++ b/_blog/2018/index.md
@@ -1,11 +1,9 @@
---
title: 2018 Posts
-overview: Blog posts for 2018
+description: Blog posts for 2018
-order: 10
+weight: 10
-layout: blog
-type: markdown
toc: false
---
diff --git a/_blog/2018/soft-multitenancy.md b/_blog/2018/soft-multitenancy.md
new file mode 100644
index 0000000000000..b049a0df98a55
--- /dev/null
+++ b/_blog/2018/soft-multitenancy.md
@@ -0,0 +1,352 @@
+---
+title: Istio Soft Multi-tenancy Support
+description: Using Kubernetes namespace and RBAC to create an Istio soft multi-tenancy environment
+publishdate: 2018-04-19
+subtitle: Using multiple Istio control planes and RBAC to create multi-tenancy
+attribution: John Joyce and Rich Curran
+
+weight: 90
+
+redirect_from: "/blog/soft-multitenancy.html"
+---
+{% include home.html %}
+Multi-tenancy is commonly used in many environments across many different applications,
+but the implementation details and functionality provided on a per tenant basis does not
+follow one model in all environments. The [Kubernetes multi-tenancy working group](
+https://github.com/kubernetes/community/blob/master/wg-multitenancy/README.md)
+is working to define the multi-tenant use cases and functionality that should be available
+within Kubernetes. However, from their work so far it is clear that only "soft multi-tenancy"
+is possible due to the inability to fully protect against malicious containers or workloads
+gaining access to other tenant's pods or kernel resources.
+
+## Soft multi-tenancy
+
+For this blog, "soft multi-tenancy" is defined as having a single Kubernetes control plane
+with multiple Istio control planes and multiple meshes, one control plane and one mesh
+per tenant. The cluster administrator gets control and visibility across all the Istio
+control planes, while the tenant administrator only gets control of a specific Istio
+instance. Separation between the tenants is provided by Kubernetes namespaces and RBAC.
+
+One use case for this deployment model is a shared corporate infrastructure where malicious
+actions are not expected, but a clean separation of the tenants is still required.
+
+Potential future Istio multi-tenant deployment models are described at the bottom of this
+blog.
+
+>Note: This blog is a high-level description of how to deploy Istio in a
+limited multi-tenancy environment. The [docs]({{home}}/docs/) section will be updated
+when official multi-tenancy support is provided.
+
+## Deployment
+
+### Multiple Istio control planes
+
+Deploying multiple Istio control planes starts by replacing all `namespace` references
+in a manifest file with the desired namespace. Using istio.yaml as an example, if two tenant
+level Istio control planes are required; the first can use the istio.yaml default name of
+*istio-system* and a second control plane can be created by generating a new yaml file with
+a different namespace. As an example, the following command creates a yaml file with
+the Istio namespace of *istio-system1*.
+
+```command
+$ cat istio.yaml | sed s/istio-system/istio-system1/g > istio-system1.yaml
+```
+
+The istio yaml file contains the details of the Istio control plane deployment, including the
+pods that make up the control plane (mixer, pilot, ingress, CA). Deploying the two Istio
+control plane yaml files:
+
+```command
+$ kubectl apply -f install/kubernetes/istio.yaml
+$ kubectl apply -f install/kubernetes/istio-system1.yaml
+```
+Results in two Istio control planes running in two namespaces.
+
+```command
+$ kubectl get pods --all-namespaces
+NAMESPACE NAME READY STATUS RESTARTS AGE
+istio-system istio-ca-ffbb75c6f-98w6x 1/1 Running 0 15d
+istio-system istio-ingress-68d65fc5c6-dnvfl 1/1 Running 0 15d
+istio-system istio-mixer-5b9f8dffb5-8875r 3/3 Running 0 15d
+istio-system istio-pilot-678fc976c8-b8tv6 2/2 Running 0 15d
+istio-system1 istio-ca-5f496fdbcd-lqhlk 1/1 Running 0 15d
+istio-system1 istio-ingress-68d65fc5c6-2vldg 1/1 Running 0 15d
+istio-system1 istio-mixer-7d4f7b9968-66z44 3/3 Running 0 15d
+istio-system1 istio-pilot-5bb6b7669c-779vb 2/2 Running 0 15d
+```
+The Istio [sidecar]({{home}}/docs/setup/kubernetes/sidecar-injection.html) and
+[addons]({{home}}/docs/tasks/telemetry/), if required, manifests must also
+be deployed to match the configured `namespace` in use by the tenant's Istio control plane.
+
+The execution of these two yaml files is the responsibility of the cluster
+administrator, not the tenant level administrator. Additional RBAC restrictions will also
+need to be configured and applied by the cluster administrator, limiting the tenant
+administrator to only the assigned namespace.
+
+### Split common and namespace specific resources
+
+The manifest files in the Istio repositories create both common resources that would
+be used by all Istio control planes as well as resources that are replicated per control
+plane. Although it is a simple matter to deploy multiple control planes by replacing the
+*istio-system* namespace references as described above, a better approach is to split the
+manifests into a common part that is deployed once for all tenants and a tenant
+specific part. For the [Custom Resource Definitions](https://kubernetes.io/docs/concepts/api-extension/custom-resources/#customresourcedefinitions), the roles and the role
+bindings should be separated out from the provided Istio manifests. Additionally, the
+roles and role bindings in the provided Istio manifests are probably unsuitable for a
+multi-tenant environment and should be modified or augmented as described in the next
+section.
+
+### Kubernetes RBAC for Istio control plane resources
+
+To restrict a tenant administrator to a single Istio namespace, the cluster
+administrator would create a manifest containing, at a minimum, a `Role` and `RoleBinding`
+similar to the one below. In this example, a tenant administrator named *sales-admin*
+is limited to the namespace *istio-system1*. A completed manifest would contain many
+more `apiGroups` under the `Role` providing resource access to the tenant administrator.
+
+```yaml
+kind: Role
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+ namespace: istio-system1
+ name: ns-access-for-sales-admin-istio-system1
+rules:
+- apiGroups: [""] # "" indicates the core API group
+ resources: ["*"]
+ verbs: ["*"]
+---
+kind: RoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+ name: access-all-istio-system1
+ namespace: istio-system1
+subjects:
+- kind: User
+ name: sales-admin
+ apiGroup: rbac.authorization.k8s.io
+roleRef:
+ kind: Role
+ name: ns-access-for-sales-admin-istio-system1
+ apiGroup: rbac.authorization.k8s.io
+```
+
+### Watching specific namespaces for service discovery
+
+In addition to creating RBAC rules limiting the tenant administrator's access to a specific
+Istio control plane, the Istio manifest must be updated to specify the application namespace
+that Pilot should watch for creation of its xDS cache. This is done by starting the Pilot
+component with the additional command line arguments `--appNamespace, ns-1`. Where *ns-1*
+is the namespace that the tenant’s application will be deployed in. An example snippet from
+the istio-system1.yaml file is included below.
+
+```yaml
+apiVersion: extensions/v1beta1
+kind: Deployment
+metadata:
+ name: istio-pilot
+ namespace: istio-system1
+ annotations:
+ sidecar.istio.io/inject: "false"
+spec:
+ replicas: 1
+ template:
+ metadata:
+ labels:
+ istio: pilot
+ spec:
+ serviceAccountName: istio-pilot-service-account
+ containers:
+ - name: discovery
+ image: docker.io/<user ID>/pilot:<tag>
+ imagePullPolicy: IfNotPresent
+ args: ["discovery", "-v", "2", "--admission-service", "istio-pilot", "--appNamespace", "ns-1"]
+ ports:
+ - containerPort: 8080
+ - containerPort: 443
+```
+
+### Deploying the tenant application in a namespace
+
+Now that the cluster administrator has created the tenant's namespace (ex. *istio-system1*) and
+Pilot's service discovery has been configured to watch for a specific application
+namespace (ex. *ns-1*), create the application manifests to deploy in that tenant's specific
+namespace. For example:
+
+```yaml
+apiVersion: v1
+kind: Namespace
+metadata:
+ name: ns-1
+```
+And add the namespace reference to each resource type included in the application's manifest
+file. For example:
+```yaml
+apiVersion: v1
+kind: Service
+metadata:
+ name: details
+ labels:
+ app: details
+ namespace: ns-1
+```
+Although not shown, the application namespaces will also have RBAC settings limiting access
+to certain resources. These RBAC settings could be set by the cluster administrator and/or
+the tenant administrator.
+
+### Using `istioctl` in a multi-tenant environment
+
+When defining [route rules]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#RouteRule)
+or [destination policies]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#DestinationPolicy),
+it is necessary to ensure that the `istioctl` command is scoped to
+the namespace the Istio control plane is running in to ensure the resource is created
+in the proper namespace. Additionally, the rule itself must be scoped to the tenant's namespace
+so that it will be applied properly to that tenant's mesh. The *-i* option is used to create
+(or get or describe) the rule in the namespace that the Istio control plane is deployed in.
+The *-n* option will scope the rule to the tenant's mesh and should be set to the namespace that
+the tenant's app is deployed in. Note that the *-n* option can be skipped on the command line if
+the .yaml file for the resource scopes it properly instead.
+
+For example, the following command would be required to add a route rule to the *istio-system1*
+namespace:
+```command
+$ istioctl –i istio-system1 create -n ns-1 -f route_rule_v2.yaml
+```
+And can be displayed using the command:
+```command
+$ istioctl -i istio-system1 -n ns-1 get routerule
+NAME KIND NAMESPACE
+details-Default RouteRule.v1alpha2.config.istio.io ns-1
+productpage-default RouteRule.v1alpha2.config.istio.io ns-1
+ratings-default RouteRule.v1alpha2.config.istio.io ns-1
+reviews-default RouteRule.v1alpha2.config.istio.io ns-1
+```
+
+See the [Multiple Istio control planes]({{home}}/blog/2018/soft-multitenancy.html#multiple-istio-control-planes) section of this document for more details on `namespace` requirements in a
+multi-tenant environment.
+
+### Test results
+
+Following the instructions above, a cluster administrator can create an environment limiting,
+via RBAC and namespaces, what a tenant administrator can deploy.
+
+After deployment, accessing the Istio control plane pods assigned to a specific tenant
+administrator is permitted:
+
+```command
+$ kubectl get pods -n istio-system
+NAME READY STATUS RESTARTS AGE
+grafana-78d649479f-8pqk9 1/1 Running 0 1d
+istio-ca-ffbb75c6f-98w6x 1/1 Running 0 1d
+istio-ingress-68d65fc5c6-dnvfl 1/1 Running 0 1d
+istio-mixer-5b9f8dffb5-8875r 3/3 Running 0 1d
+istio-pilot-678fc976c8-b8tv6 2/2 Running 0 1d
+istio-sidecar-injector-7587bd559d-5tgk6 1/1 Running 0 1d
+prometheus-cf8456855-hdcq7 1/1 Running 0 1d
+servicegraph-75ff8f7c95-wcjs7 1/1 Running 0 1d
+```
+However, accessing all the cluster's pods is not permitted:
+
+```command
+$ kubectl get pods --all-namespaces
+Error from server (Forbidden): pods is forbidden: User "dev-admin" cannot list pods at the cluster scope
+```
+
+And neither is accessing another tenant's namespace:
+
+```command
+$ kubectl get pods -n istio-system1
+Error from server (Forbidden): pods is forbidden: User "dev-admin" cannot list pods in the namespace "istio-system1"
+```
+
+The tenant administrator can deploy applications in the application namespace configured for
+that tenant. As an example, updating the [Bookinfo]({{home}}/docs/guides/bookinfo.html)
+manifests and then deploying under the tenant's application namespace of *ns-0*, listing the
+pods in use by this tenant's namespace is permitted:
+
+```command
+$ kubectl get pods -n ns-0
+NAME READY STATUS RESTARTS AGE
+details-v1-64b86cd49-b7rkr 2/2 Running 0 1d
+productpage-v1-84f77f8747-rf2mt 2/2 Running 0 1d
+ratings-v1-5f46655b57-5b4c5 2/2 Running 0 1d
+reviews-v1-ff6bdb95b-pm5lb 2/2 Running 0 1d
+reviews-v2-5799558d68-b989t 2/2 Running 0 1d
+reviews-v3-58ff7d665b-lw5j9 2/2 Running 0 1d
+```
+
+But accessing another tenant's application namespace is not:
+
+```command
+$ kubectl get pods -n ns-1
+Error from server (Forbidden): pods is forbidden: User "dev-admin" cannot list pods in the namespace "ns-1"
+```
+
+If the [addon tools]({{home}}/docs/tasks/telemetry/), example
+[prometheus]({{home}}/docs/tasks/telemetry//querying-metrics.html), are deployed
+(also limited by an Istio `namespace`) the statistical results returned would represent only
+that traffic seen from that tenant's application namespace.
+
+## Conclusion
+
+The evaluation performed indicates Istio has sufficient capabilities and security to meet a
+small number of multi-tenant use cases. It also shows that Istio and Kubernetes __cannot__
+provide sufficient capabilities and security for other use cases, especially those use
+cases that require complete security and isolation between untrusted tenants. The improvements
+required to reach a more secure model of security and isolation require work in container
+technology, ex. Kubernetes, rather than improvements in Istio capabilities.
+
+## Issues
+
+* The CA (Certificate Authority) and mixer Istio pod logs from one tenant's Istio control
+plane (ex. *istio-system* `namespace`) contained 'info' messages from a second tenant's
+Istio control plane (ex *istio-system1* `namespace`).
+
+## Challenges with other multi-tenancy models
+
+Other multi-tenancy deployment models were considered:
+1. A single mesh with multiple applications, one for each tenant on the mesh. The cluster
+administrator gets control and visibility mesh wide and across all applications, while the
+tenant administrator only gets control of a specific application.
+1. A single Istio control plane with multiple meshes, one mesh per tenant. The cluster
+administrator gets control and visibility across the entire Istio control plane and all
+meshes, while the tenant administrator only gets control of a specific mesh.
+1. A single cloud environment (cluster controlled), but multiple Kubernetes control planes
+(tenant controlled).
+
+These options either can't be properly supported without code changes or don't fully
+address the use cases.
+
+Current Istio capabilities are poorly suited to support the first model as it lacks
+sufficient RBAC capabilities to support cluster versus tenant operations. Additionally,
+having multiple tenants under one mesh is too insecure with the current mesh model and the
+way Istio drives configuration to the envoy proxies.
+
+Regarding the second option, the current Istio paradigm assumes a single mesh per Istio control
+plane. The needed changes to support this model are substantial. They would require
+finer grained scoping of resources and security domains based on namespaces, as well as,
+additional Istio RBAC changes. This model will likely be addressed by future work, but not
+currently possible.
+
+The third model doesn’t satisfy most use cases, as most cluster administrators prefer
+a common Kubernetes control plane which they provide as a
+[PaaS](https://en.wikipedia.org/wiki/Platform_as_a_service) to their tenants.
+
+## Future work
+
+Allowing a single Istio control plane to control multiple meshes would be an obvious next
+feature. An additional improvement is to provide a single mesh that can host different
+tenants with some level of isolation and security between the tenants. This could be done
+by partitioning within a single control plane using the same logical notion of namespace as
+Kubernetes. A [document](https://docs.google.com/document/d/14Hb07gSrfVt5KX9qNi7FzzGwB_6WBpAnDpPG6QEEd9Q)
+has been started within the Istio community to define additional use cases and the
+Istio functionality required to support those use cases.
+
+## References
+
+* Video on Kubernetes multi-tenancy support, [Multi-Tenancy Support & Security Modeling with RBAC and Namespaces](https://www.youtube.com/watch?v=ahwCkJGItkU), and the [supporting slide deck](https://schd.ws/hosted_files/kccncna17/21/Multi-tenancy%20Support%20%26%20Security%20Modeling%20with%20RBAC%20and%20Namespaces.pdf).
+* Kubecon talk on security that discusses Kubernetes support for "Cooperative soft multi-tenancy", [Building for Trust: How to Secure Your Kubernetes](https://www.youtube.com/watch?v=YRR-kZub0cA).
+* Kubernetes documentation on [RBAC](https://kubernetes.io/docs/admin/authorization/rbac/) and [namespaces](https://kubernetes.io/docs/tasks/administer-cluster/namespaces-walkthrough/).
+* Kubecon slide deck on [Multi-tenancy Deep Dive](https://schd.ws/hosted_files/kccncna17/a9/kubecon-multitenancy.pdf).
+* Google document on [Multi-tenancy models for Kubernetes](https://docs.google.com/document/d/15w1_fesSUZHv-vwjiYa9vN_uyc--PySRoLKTuDhimjc/edit#heading=h.3dawx97e3hz6). (Requires permission)
+* Cloud Foundry WIP document, [Multi-cloud and Multi-tenancy](https://docs.google.com/document/d/14Hb07gSrfVt5KX9qNi7FzzGwB_6WBpAnDpPG6QEEd9Q)
+* [Istio Auto Multi-Tenancy 101](https://docs.google.com/document/d/12F183NIRAwj2hprx-a-51ByLeNqbJxK16X06vwH5OWE/edit#heading=h.x0f9qplja3q)
diff --git a/_blog/2018/traffic-mirroring.md b/_blog/2018/traffic-mirroring.md
index c60bbc7bd0300..ffd2fdbee82e0 100644
--- a/_blog/2018/traffic-mirroring.md
+++ b/_blog/2018/traffic-mirroring.md
@@ -1,23 +1,20 @@
---
-title: "Traffic mirroring with Istio for testing in production"
-overview: An introduction to safer, lower-risk deployments and release to production
-publish_date: February 8, 2018
+title: Traffic Mirroring with Istio for Testing in Production
+description: An introduction to safer, lower-risk deployments and release to production
+publishdate: 2018-02-08
subtitle: Routing rules for HTTP traffic
attribution: Christian Posta
-order: 91
+weight: 91
-layout: blog
-type: markdown
redirect_from: "/blog/traffic-mirroring.html"
---
{% include home.html %}
-Trying to enumerate all the possible combinations of test cases for testing services in non-production/test environments can be daunting. In some cases, you'll find that all of the effort that goes into cataloging these use cases doesn't match up to real production use cases. Ideally, we could use live production use cases and traffic to help illuminate all of the feature areas of the service under test that we might miss in more contrived testing environments.
+Trying to enumerate all the possible combinations of test cases for testing services in non-production/test environments can be daunting. In some cases, you'll find that all of the effort that goes into cataloging these use cases doesn't match up to real production use cases. Ideally, we could use live production use cases and traffic to help illuminate all of the feature areas of the service under test that we might miss in more contrived testing environments.
Istio can help here. With the release of [Istio 0.5.0]({{home}}/about/notes/0.5.html), Istio can mirror traffic to help test your services. You can write route rules similar to the following to enable traffic mirroring:
-
```yaml
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
@@ -31,14 +28,14 @@ spec:
- labels:
version: v1
weight: 100
- - labels:
+ - labels:
version: v2
weight: 0
mirror:
name: httpbin
labels:
version: v2
-```
+```
A few things to note here:
@@ -46,4 +43,5 @@ A few things to note here:
* Responses to any mirrored traffic is ignored; traffic is mirrored as "fire-and-forget"
* You'll need to have the 0-weighted route to hint to Istio to create the proper Envoy cluster under the covers; [this should be ironed out in future releases](https://github.com/istio/istio/issues/3270).
-Learn more about mirroring by visiting the [Mirroring Task]({{home}}/docs/tasks/traffic-management/mirroring.html) and see a more [comprehensive treatment of this scenario on my blog](http://blog.christianposta.com/microservices/traffic-shadowing-with-istio-reduce-the-risk-of-code-release/).
\ No newline at end of file
+Learn more about mirroring by visiting the [Mirroring Task]({{home}}/docs/tasks/traffic-management/mirroring.html) and see a more
+[comprehensive treatment of this scenario on my blog](https://blog.christianposta.com/microservices/traffic-shadowing-with-istio-reduce-the-risk-of-code-release/).
diff --git a/_blog/2018/v1alpha3-routing.md b/_blog/2018/v1alpha3-routing.md
new file mode 100644
index 0000000000000..b050d7ff0c2c6
--- /dev/null
+++ b/_blog/2018/v1alpha3-routing.md
@@ -0,0 +1,435 @@
+---
+title: Introducing the Istio v1alpha3 routing API
+description: Introduction, motivation and design principles for the Istio v1alpha3 routing API.
+publishdate: 2018-04-25
+subtitle:
+attribution: Frank Budinsky (IBM) and Shriram Rajagopalan (VMware)
+
+weight: 88
+
+redirect_from: "/blog/v1alpha3-routing.html"
+---
+
+{% include home.html %}
+
+Up until now, Istio has provided a simple API for traffic management using four configuration resources:
+`RouteRule`, `DestinationPolicy`, `EgressRule`, and (Kubernetes) `Ingress`.
+With this API, users have been able to easily manage the flow of traffic in an Istio service mesh.
+The API has allowed users to route requests to specific versions of services, inject delays and failures for resilience
+testing, add timeouts and circuit breakers, and more, all without changing the application code itself.
+
+While this functionality has proven to be a very compelling part of Istio, user feedback has also shown that this API does
+have some shortcomings, specifically when using it to manage very large applications containing thousands of services, and
+when working with protocols other than HTTP. Furthermore, the use of Kubernetes `Ingress` resources to configure external
+traffic has proven to be woefully insufficient for our needs.
+
+To address these, and other concerns, a new traffic management API, a.k.a. `v1alpha3`, is being introduced, which will
+completely replace the previous API going forward. Although the `v1alpha3` model is fundamentally the same, it is not
+backward compatible and will require manual conversion from the old API. A
+[conversion tool]({{home}}/docs/reference/commands/istioctl.html#istioctl%20experimental%20convert-networking-config)
+is included in the next few releases of Istio to help with the transition.
+
+To justify this disruption, the `v1alpha3` API has gone through a long and painstaking community
+review process that has hopefully resulted in a greatly improved API that will stand the test of time. In this article,
+we will introduce the new configuration model and attempt to explain some of the motivation and design principles that
+influenced it.
+
+## Design principles
+
+A few key design principles played a role in the routing model redesign:
+
+* Explicitly model infrastructure as well as intent. For example, in addition to configuring an ingress gateway, the
+ component (controller) implementing it can also be specified.
+* The authoring model should be "producer oriented" and "host centric" as opposed to compositional. For example, all
+ rules associated with a particular host are configured together, instead of individually.
+* Clear separation of routing from post-routing behaviors.
+
+## Configuration resources in v1alpha3
+
+A typical mesh will have one or more load balancers (we call them gateways)
+that terminate TLS from external networks and allow traffic into the mesh.
+Traffic then flows through internal services via sidecar gateways.
+It is also common for applications to consume external
+services (e.g., Google Maps API). These may be called directly or, in certain deployments, all traffic
+exiting the mesh may be forced through dedicated egress gateways. The following diagram depicts
+this mental model.
+
+{% include image.html width="80%" ratio="35.20%"
+ link="./img/gateways.svg"
+ alt="Role of gateways in the mesh"
+ caption="Gateways in an Istio service mesh"
+ %}
+
+With the above setup in mind, `v1alpha3` introduces the following new
+configuration resources to control traffic routing into, within, and out of the mesh.
+
+1. `Gateway`
+1. `VirtualService`
+1. `DestinationRule`
+1. `ServiceEntry`
+
+`VirtualService`, `DestinationRule`, and `ServiceEntry` replace `RouteRule`,
+`DestinationPolicy`, and `EgressRule` respectively. The `Gateway` is a
+platform independent abstraction to model the traffic flowing into
+dedicated middleboxes.
+
+The figure below depicts the flow of control across configuration
+resources.
+
+{% include image.html width="80%" ratio="41.16%"
+ link="./img/virtualservices-destrules.svg"
+ caption="Relationship between different v1alpha3 elements"
+ %}
+
+### Gateway
+
+A [Gateway]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#Gateway)
+configures a load balancer for HTTP/TCP traffic, regardless of
+where it will be running. Any number of gateways can exist within the mesh
+and multiple different gateway implementations can co-exist. In fact, a
+gateway configuration can be bound to a particular workload by specifying
+the set of workload (pod) labels as part of the configuration, allowing
+users to reuse off the shelf network appliances by writing a simple gateway
+controller.
+
+For ingress traffic management, you might ask: _Why not reuse Kubernetes Ingress APIs_?
+The Ingress APIs proved to be incapable of expressing Istio's routing needs.
+By trying to draw a common denominator across different HTTP proxies, the
+Ingress is only able to support the most basic HTTP routing and ends up
+pushing every other feature of modern proxies into non-portable
+annotations.
+
+Istio `Gateway` overcomes the `Ingress` shortcomings by separating the
+L4-L6 spec from L7. It only configures the L4-L6 functions (e.g., ports to
+expose, TLS configuration) that are uniformly implemented by all good L7
+proxies. Users can then use standard Istio rules to control HTTP
+requests as well as TCP traffic entering a `Gateway` by binding a
+`VirtualService` to it.
+
+For example, the following simple `Gateway` configures a load balancer
+to allow external https traffic for host `bookinfo.com` into the mesh:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: Gateway
+metadata:
+ name: bookinfo-gateway
+spec:
+ servers:
+ - port:
+ number: 443
+ name: https
+ protocol: HTTPS
+ hosts:
+ - bookinfo.com
+ tls:
+ mode: SIMPLE
+ serverCertificate: /tmp/tls.crt
+ privateKey: /tmp/tls.key
+```
+
+To configure the corresponding routes, a `VirtualService` (described in the [following section](#virtualservice))
+must be defined for the same host and bound to the `Gateway` using
+the `gateways` field in the configuration:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: bookinfo
+spec:
+ hosts:
+ - bookinfo.com
+ gateways:
+ - bookinfo-gateway # <---- bind to gateway
+ http:
+ - match:
+ - uri:
+ prefix: /reviews
+ route:
+ ...
+```
+
+The `Gateway` can be used to model an edge-proxy or a purely internal proxy
+as shown in the first figure. Irrespective of the location, all gateways
+can be configured and controlled in the same way.
+
+### VirtualService
+
+Replacing route rules with something called “virtual services” might seem peculiar at first, but in reality it’s
+fundamentally a much better name for what is being configured, especially after redesigning the API to address the
+scalability issues with the previous model.
+
+In effect, what has changed is that instead of configuring routing using a set of individual configuration resources
+(rules) for a particular destination service, each containing a precedence field to control the order of evaluation, we
+now configure the (virtual) destination itself, with all of its rules in an ordered list within a corresponding
+[VirtualService]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#VirtualService) resource.
+For example, where previously we had two `RouteRule` resources for the
+[Bookinfo]({{home}}/docs/guides/bookinfo.html) application’s `reviews` service, like this:
+
+```yaml
+apiVersion: config.istio.io/v1alpha2
+kind: RouteRule
+metadata:
+ name: reviews-default
+spec:
+ destination:
+ name: reviews
+ precedence: 1
+ route:
+ - labels:
+ version: v1
+---
+apiVersion: config.istio.io/v1alpha2
+kind: RouteRule
+metadata:
+ name: reviews-test-v2
+spec:
+ destination:
+ name: reviews
+ precedence: 2
+ match:
+ request:
+ headers:
+ cookie:
+ regex: "^(.*?;)?(user=jason)(;.*)?$"
+ route:
+ - labels:
+ version: v2
+```
+
+In `v1alph3`, we provide the same configuration in a single `VirtualService` resource:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: reviews
+spec:
+ hosts:
+ - reviews
+ http:
+ - match:
+ - headers:
+ cookie:
+ regex: "^(.*?;)?(user=jason)(;.*)?$"
+ route:
+ - destination:
+ host: reviews
+ subset: v2
+ - route:
+ - destination:
+ host: reviews
+ subset: v1
+```
+
+As you can see, both of the rules for the `reviews` service are consolidated in one place, which at first may or may not
+seem preferable. However, if you look closer at this new model, you’ll see there are fundamental differences that make
+`v1alpha3` vastly more functional.
+
+First of all, notice that the destination service for the `VirtualService` is specified using a `hosts` field (repeated field, in fact) and is then again specified in a `destination` field of each of the route specifications. This is a
+very important difference from the previous model.
+
+A `VirtualService` describes the mapping between one or more user-addressable destinations to the actual destination workloads inside the mesh. In our example, they are the same, however, the user-addressed hosts can be any DNS
+names with optional wildcard prefix or CIDR prefix that will be used to address the service. This can be particularly
+useful in facilitating turning monoliths into a composite service built out of distinct microservices without requiring the
+consumers of the service to adapt to the transition.
+
+For example, the following rule allows users to address both the `reviews` and `ratings` services of the Bookinfo application
+as if they are parts of a bigger (virtual) service at `http://bookinfo.com/`:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: bookinfo
+spec:
+ hosts:
+ - bookinfo.com
+ http:
+ - match:
+ - uri:
+ prefix: /reviews
+ route:
+ - destination:
+ host: reviews
+ - match:
+ - uri:
+ prefix: /ratings
+ route:
+ - destination:
+ host: ratings
+ ...
+```
+
+The hosts of a `VirtualService` do not actually have to be part of the service registry, they are simply virtual
+destinations. This allows users to model traffic for virtual hosts that do not have routable entries inside the mesh.
+These hosts can be exposed outside the mesh by binding the `VirtualService` to a `Gateway` configuration for the same host
+(as described in the [previous section](#gateway)).
+
+In addition to this fundamental restructuring, `VirtualService` includes several other important changes:
+
+1. Multiple match conditions can be expressed inside the `VirtualService` configuration, reducing the need for redundant
+ rules.
+1. Each service version has a name (called a service subset). The set of pods/VMs belonging to a subset is defined in a
+ `DestinationRule`, described in the following section.
+1. `VirtualService` hosts can be specified using wildcard DNS prefixes to create a single rule for all matching services.
+ For example, in Kubernetes, to apply the same rewrite rule for all services in the `foo` namespace, the `VirtualService`
+ would use `*.foo.svc.cluster.local` as the host.
+
+### DestinationRule
+
+A [DestinationRule]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#DestinationRule)
+configures the set of policies to be applied while forwarding traffic to a service. They are
+intended to be authored by service owners, describing the circuit breakers, load balancer settings, TLS settings, etc..
+`DestinationRule` is more or less the same as its predecessor, `DestinationPolicy`, with the following exceptions:
+
+1. The `host` of a `DestinationRule` can include wildcard prefixes, allowing a single rule to be specified for many actual
+ services.
+1. A `DestinationRule` defines addressable `subsets` (i.e., named versions) of the corresponding destination host. These
+ subsets are used in `VirtualService` route specifications when sending traffic to specific versions of the service.
+ Naming versions this way allows us to cleanly refer to them across different virtual services, simplify the stats that
+ Istio proxies emit, and to encode subsets in SNI headers.
+
+A `DestinationRule` that configures policies and subsets for the reviews service might look something like this:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: reviews
+spec:
+ host: reviews
+ trafficPolicy:
+ loadBalancer:
+ simple: RANDOM
+ subsets:
+ - name: v1
+ labels:
+ version: v1
+ - name: v2
+ labels:
+ version: v2
+ trafficPolicy:
+ loadBalancer:
+ simple: ROUND_ROBIN
+ - name: v3
+ labels:
+ version: v3
+```
+
+Notice that, unlike `DestinationPolicy`, multiple policies (e.g., default and v2-specific) are specified in a single
+`DestinationRule` configuration.
+
+### ServiceEntry
+
+[ServiceEntry]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#ServiceEntry)
+is used to add additional entries into the service registry that Istio maintains internally.
+It is most commonly used to allow one to model traffic to external dependencies of the mesh
+such as APIs consumed from the web or traffic to services in legacy infrastructure.
+
+Everything you could previously configure using an `EgressRule` can just as easily be done with a `ServiceEntry`.
+For example, access to a simple external service from inside the mesh can be enabled using a configuration
+something like this:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: ServiceEntry
+metadata:
+ name: foo-ext
+spec:
+ hosts:
+ - foo.com
+ ports:
+ - number: 80
+ name: http
+ protocol: HTTP
+```
+
+That said, `ServiceEntry` has significantly more functionality than its predecessor.
+First of all, a `ServiceEntry` is not limited to external service configuration,
+it can be of two types: mesh-internal or mesh-external.
+Mesh-internal entries are like all other internal services but are used to explicitly add services
+to the mesh. They can be used to add services as part of expanding the service mesh to include unmanaged infrastructure
+(e.g., VMs added to a Kubernetes-based service mesh).
+Mesh-external entries represent services external to the mesh.
+For them, mTLS authentication is disabled and policy enforcement is performed on the client-side,
+instead of on the usual server-side for internal service requests.
+
+Because a `ServiceEntry` configuration simply adds a destination to the internal service registry, it can be
+used in conjunction with a `VirtualService` and/or `DestinationRule`, just like any other service in the registry.
+The following `DestinationRule`, for example, can be used to initiate mTLS connections for an external service:
+
+```yaml
+apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: foo-ext
+spec:
+ name: foo.com
+ trafficPolicy:
+ tls:
+ mode: MUTUAL
+ clientCertificate: /etc/certs/myclientcert.pem
+ privateKey: /etc/certs/client_private_key.pem
+ caCertificates: /etc/certs/rootcacerts.pem
+```
+
+In addition to its expanded generality, `ServiceEntry` provides several other improvements over `EgressRule`
+including the following:
+
+1. A single `ServiceEntry` can configure multiple service endpoints, which previously would have required multiple
+ `EgressRules`.
+1. The resolution mode for the endpoints is now configurable (`NONE`, `STATIC`, or `DNS`).
+1. Additionally, we are working on addressing another pain point: the need to access secure external services over plain
+ text ports (e.g., `http://google.com:443`). This should be fixed in the coming weeks, allowing you to directly access
+ `https://google.com` from your application. Stay tuned for an Istio patch release (0.8.x) that addresses this limitation.
+
+## Creating and deleting v1alpha3 route rules
+
+Because all route rules for a given destination are now stored together as an ordered
+list in a single `VirtualService` resource, adding a second and subsequent rules for a particular destination
+is no longer done by creating a new (`RouteRule`) resource, but instead by updating the one-and-only `VirtualService`
+resource for the destination.
+
+old routing rules:
+```command
+$ istioctl create -f my-second-rule-for-destination-abc.yaml
+```
+`v1alpha3` routing rules:
+```command
+$ istioctl replace -f my-updated-rules-for-destination-abc.yaml
+```
+
+Deleting route rules other than the last one for a particular destination is also done using `istioctl replace`.
+
+When adding or removing routes that refer to service versions, the `subsets` will need to be updated in
+the service's corresponding `DestinationRule`.
+As you might have guessed, this is also done using `istioctl replace`.
+
+## Summary
+
+The Istio `v1alpha3` routing API has significantly more functionality than
+its predecessor, but unfortunately is not backwards compatible, requiring a
+one time manual conversion. The previous configuration resources,
+`RouteRule`, `DesintationPolicy`, and `EgressRule`, will not be supported
+from Istio 0.9 onwards. Kubernetes users can continue to use `Ingress` to
+configure their edge load balancers for basic routing. However, advanced
+routing features (e.g., traffic split across two versions) will require use
+of `Gateway`, a significantly more functional and highly
+recommended `Ingress` replacement.
+
+## Acknowledgments
+
+Credit for the routing model redesign and implementation work goes to the
+following people (in alphabetical order):
+
+* Frank Budinsky (IBM)
+* Zack Butcher (Google)
+* Greg Hanson (IBM)
+* Costin Manolache (Google)
+* Martin Ostrowski (Google)
+* Shriram Rajagopalan (VMware)
+* Louis Ryan (Google)
+* Isaiah Snell-Feikema (IBM)
+* Kuat Yessenov (Google)
diff --git a/_blog/index.html b/_blog/index.html
index 4bd0c37935237..ff36940b5e0c5 100644
--- a/_blog/index.html
+++ b/_blog/index.html
@@ -1,6 +1,6 @@
---
title: Istio Blog
-overview: The Istio blog
+description: The Istio blog
layout: compress
---
{% include latest_blog_post.html %}
diff --git a/_config.yml b/_config.yml
index 837eba754191f..4757003cb9c1f 100644
--- a/_config.yml
+++ b/_config.yml
@@ -5,6 +5,8 @@ kramdown:
auto_ids: true
input: GFM
hard_wrap: false
+ syntax_highlighter_opts:
+ disable : true
baseurl:
@@ -40,6 +42,32 @@ plugins:
- jekyll-redirect-from
- jekyll-sitemap
+defaults:
+ -
+ scope:
+ path: ""
+ type: "about"
+ values:
+ layout: "about"
+ -
+ scope:
+ path: ""
+ type: "docs"
+ values:
+ layout: "docs"
+ -
+ scope:
+ path: ""
+ type: "help"
+ values:
+ layout: "help"
+ -
+ scope:
+ path: ""
+ type: "blog"
+ values:
+ layout: "blog"
+
exclude:
- README.md
- LICENSE
@@ -63,6 +91,11 @@ exclude:
- repos/*.html
- repos/*.md
- vendor/
+ - js/misc.js
+ - js/styleSwitcher.js
+ - firebase.json
+ - _rakesite
+ - mdl_style.rb
repository:
istio/istio.github.io
diff --git a/_data/istio.yml b/_data/istio.yml
index 16433d647fbc6..8e022b57f023e 100644
--- a/_data/istio.yml
+++ b/_data/istio.yml
@@ -1,4 +1,5 @@
-version: 0.6 (preliminary)
+version: 0.8
+preliminary: true
archive: false
archive_date: DD-MMM-YYYY
search_engine_id: "013699703217164175118:veyyqmfmpj4"
diff --git a/_data/releases.yml b/_data/releases.yml
index 2dd152b30fae5..8a9eb2db15caf 100644
--- a/_data/releases.yml
+++ b/_data/releases.yml
@@ -1,7 +1,11 @@
-- name: 0.6 (preliminary)
+- name: 0.8
+ url: https://preliminary.istio.io
+- name: 0.7
+ url: https://istio.io
+- name: 0.6
url: https://archive.istio.io/v0.6
- name: 0.5
- url: https://istio.io
+ url: https://archive.istio.io/v0.5
- name: 0.4
url: https://archive.istio.io/v0.4
- name: 0.3
diff --git a/_docs/concepts/index.md b/_docs/concepts/index.md
index 1fc77af69f9ee..5134317c9a9ef 100644
--- a/_docs/concepts/index.md
+++ b/_docs/concepts/index.md
@@ -1,11 +1,9 @@
---
title: Concepts
-overview: Concepts help you learn about the different parts of the Istio system and the abstractions it uses.
+description: Concepts help you learn about the different parts of the Istio system and the abstractions it uses.
-order: 10
+weight: 10
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/concepts/policy-and-control/attributes.md b/_docs/concepts/policy-and-control/attributes.md
index 4b83c94cc4de5..c66c9e71a4129 100644
--- a/_docs/concepts/policy-and-control/attributes.md
+++ b/_docs/concepts/policy-and-control/attributes.md
@@ -1,11 +1,9 @@
---
title: Attributes
-overview: Explains the important notion of attributes, which is a central mechanism for how policies and control are applied to services within the mesh.
-
-order: 10
+description: Explains the important notion of attributes, which is a central mechanism for how policies and control are applied to services within the mesh.
+
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -19,11 +17,13 @@ environment this traffic occurs in. An Istio attribute carries a specific piece
of information such as the error code of an API request, the latency of an API request, or the
original IP address of a TCP connection. For example:
- request.path: xyz/abc
- request.size: 234
- request.time: 12:34:56.789 04/17/2017
- source.ip: 192.168.0.1
- destination.service: example
+```plain
+request.path: xyz/abc
+request.size: 234
+request.time: 12:34:56.789 04/17/2017
+source.ip: 192.168.0.1
+destination.service: example
+```
## Attribute vocabulary
@@ -44,4 +44,4 @@ separator. For example, `request.size` and `source.ip`.
## Attribute types
Istio attributes are strongly typed. The supported attribute types are defined by
-[ValueType](https://github.com/istio/api/blob/master/mixer/v1/config/descriptor/value_type.proto).
+[ValueType](https://github.com/istio/api/blob/master/policy/v1beta1/value_type.proto).
diff --git a/_docs/concepts/policy-and-control/index.md b/_docs/concepts/policy-and-control/index.md
index c85f12f4afda3..11ee676ce62c1 100644
--- a/_docs/concepts/policy-and-control/index.md
+++ b/_docs/concepts/policy-and-control/index.md
@@ -1,11 +1,9 @@
---
title: Policies and Control
-overview: Introduces the policy control mechanisms.
+description: Introduces the policy control mechanisms.
-order: 40
+weight: 40
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/concepts/policy-and-control/mixer-config.md b/_docs/concepts/policy-and-control/mixer-config.md
index c851102948de0..b4fb99cf65de8 100644
--- a/_docs/concepts/policy-and-control/mixer-config.md
+++ b/_docs/concepts/policy-and-control/mixer-config.md
@@ -1,11 +1,9 @@
---
title: Mixer Configuration
-overview: An overview of the key concepts used to configure Mixer.
-
-order: 30
+description: An overview of the key concepts used to configure Mixer.
+
+weight: 30
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -45,11 +43,9 @@ The set of attributes determines which backend Mixer calls for a given request a
each is given. In order to hide the details of individual backends, Mixer uses modules
known as [*adapters*](./mixer.html#adapters).
-{% include figure.html width='60%' ratio='42.60%'
- img='./img/mixer-config/machine.svg'
- alt='Attribute Machine'
- title='Attribute Machine'
- caption='Attribute Machine'
+{% include image.html width="60%" ratio="42.60%"
+ link="./img/mixer-config/machine.svg"
+ caption="Attribute Machine"
%}
Mixer's configuration has the following central responsibilities:
@@ -81,18 +77,18 @@ metadata:
namespace: istio-system
spec:
# kind specific configuration.
-```
+```
- **apiVersion** - A constant for an Istio release.
- **kind** - A Mixer assigned unique "kind" for every adapter and template.
- **name** - The configuration resource name.
-- **namespace** - The namespace in which the configuration resource is applicable.
+- **namespace** - The namespace in which the configuration resource is applicable.
- **spec** - The `kind`-specific configuration.
### Handlers
[Adapters](./mixer.html#adapters) encapsulate the logic necessary to interface Mixer with specific external infrastructure
backends such as [Prometheus](https://prometheus.io), [New Relic](https://newrelic.com), or [Stackdriver](https://cloud.google.com/logging).
-Individual adapters generally need operational parameters in order to do their work. For example, a logging adapter may require
+Individual adapters generally need operational parameters in order to do their work. For example, a logging adapter may require
the IP address and port of the log sink.
Here is an example showing how to configure an adapter of kind = `listchecker`. The listchecker adapter checks an input value against a list.
@@ -109,7 +105,7 @@ spec:
blacklist: false
```
-`{metadata.name}.{kind}.{metadata.namespace}` is the fully qualified name of a handler. The fully qualified name of the above handler is
+`{metadata.name}.{kind}.{metadata.namespace}` is the fully qualified name of a handler. The fully qualified name of the above handler is
`staticversion.listchecker.istio-system` and it must be unique.
The schema of the data in the `spec` stanza depends on the specific adapter being configured.
@@ -189,8 +185,8 @@ spec:
instances:
- requestduration.metric.istio-system
```
-A rule contains a `match` predicate expression and a list of actions to perform if the predicate is true.
-An action specifies the list of instances to be delivered to a handler.
+A rule contains a `match` predicate expression and a list of actions to perform if the predicate is true.
+An action specifies the list of instances to be delivered to a handler.
A rule must use the fully qualified names of handlers and instances.
If the rule, handlers, and instances are all in the same namespace, the namespace suffix can be elided from the fully qualified name as seen in `handler.prometheus`.
@@ -221,7 +217,7 @@ destination_version: destination.labels["version"] | "unknown"
With the above, the `destination_version` label is assigned the value of `destination.labels["version"]`. However if that attribute
is not present, the literal `"unknown"` is used.
-The attributes that can be used in attribute expressions must be defined in an
+The attributes that can be used in attribute expressions must be defined in an
[*attribute manifest*](#manifests) for the deployment. Within the manifest, each attribute has
a type which represents the kind of data that the attribute carries. In the
same way, attribute expressions are also typed, and their type is derived from
@@ -244,9 +240,9 @@ Mixer goes through the following steps to arrive at the set of `actions`.
1. Extract the value of the identity attribute from the request.
-2. Extract the service namespace from the identity attribute.
+1. Extract the service namespace from the identity attribute.
-3. Evaluate the `match` predicate for all rules in the `configDefaultNamespace` and the service namespace.
+1. Evaluate the `match` predicate for all rules in the `configDefaultNamespace` and the service namespace.
The actions resulting from these steps are performed by Mixer.
@@ -291,4 +287,4 @@ configuration](https://github.com/istio/istio/blob/master/mixer/testdata/config)
## What's next
-* Read the [blog post]({{home}}/blog/mixer-adapter-model.html) describing Mixer's adapter model.
+-Read the [blog post]({{home}}/blog/mixer-adapter-model.html) describing Mixer's adapter model.
diff --git a/_docs/concepts/policy-and-control/mixer.md b/_docs/concepts/policy-and-control/mixer.md
index 977a09364b19d..ca4abf3f36410 100644
--- a/_docs/concepts/policy-and-control/mixer.md
+++ b/_docs/concepts/policy-and-control/mixer.md
@@ -1,13 +1,13 @@
---
title: Mixer
-overview: Architectural deep-dive into the design of Mixer, which provides the policy and control mechanisms within the service mesh.
-
-order: 20
+description: Architectural deep-dive into the design of Mixer, which provides the policy and control mechanisms within the service mesh.
+
+weight: 20
-layout: docs
-type: markdown
---
+{% include home.html %}
+
The page explains Mixer's role and general architecture.
## Background
@@ -29,11 +29,10 @@ Mixer is designed to change the boundaries between layers in order to reduce
systemic complexity, eliminating policy logic from service code and giving
control to operators instead.
-{% include figure.html width='60%' ratio='59%'
- img='./img/mixer/traffic.svg'
- alt='Showing the flow of traffic through Mixer.'
- title='Mixer Traffic Flow'
- caption='Mixer Traffic Flow'
+{% include image.html width="60%" ratio="59%"
+ link="./img/mixer/traffic.svg"
+ alt="Showing the flow of traffic through Mixer."
+ caption="Mixer Traffic Flow"
%}
Mixer provides three core features:
@@ -72,11 +71,10 @@ single consistent API, independent of the backends in use. The exact set of
adapters used at runtime is determined through configuration and can easily be
extended to target new or custom infrastructure backends.
-{% include figure.html width='35%' ratio='138%'
- img='./img/mixer/adapters.svg'
- alt='Showing Mixer with adapters.'
- title='Mixer and its Adapters'
- caption='Mixer and its Adapters'
+{% include image.html width="35%" ratio="138%"
+ link="./img/mixer/adapters.svg"
+ alt="Showing Mixer with adapters."
+ caption="Mixer and its Adapters"
%}
## Configuration state
@@ -88,12 +86,12 @@ operator is responsible for:
- Configuring a set of *handlers* for Mixer-generated data. Handlers are
configured adapters (adapters being binary plugins as described
- [below](#adapters)). Providing a `statsd` adapter with the IP address for a
+ [here](#adapters)). Providing a `statsd` adapter with the IP address for a
statsd backend is an example of handler configuration.
- Configuring a set of *instances* for Mixer to generate based on attributes and
literal values. They represent a chunk of data that adapter code will operate
- on. For example, an operator may configure Mixer to generate `request_count`
+ on. For example, an operator may configure Mixer to generate `requestcount`
metric values from attributes such as `destination.service` and
`response.code`.
@@ -136,13 +134,12 @@ phases:
parameters. The Adapter Dispatching phase invokes the adapters associated with
each aspect and passes them those parameters.
-{% include figure.html width='50%' ratio='144%'
- img='./img/mixer/phases.svg'
- alt='Phases of Mixer request processing.'
- title='Request Phases'
- caption='Request Phases'
+{% include image.html width="50%" ratio="144%"
+ link="./img/mixer/phases.svg"
+ alt="Phases of Mixer request processing."
+ caption="Request Phases"
%}
## What's next
-* Read the [blog post]({{home}}/blog/2017/adapter-model.html) describing Mixer's adapter model.
+- Read the [blog post]({{home}}/blog/2017/adapter-model.html) describing Mixer's adapter model.
diff --git a/_docs/concepts/security/authn-policy.md b/_docs/concepts/security/authn-policy.md
new file mode 100644
index 0000000000000..02aac8736b80b
--- /dev/null
+++ b/_docs/concepts/security/authn-policy.md
@@ -0,0 +1,87 @@
+---
+title: Istio Authentication Policy
+description: Describes Istio authentication policy
+
+weight: 10
+
+---
+{% include home.html %}
+
+Istio authentication policy enables operators to specify authentication requirements for a service (or services). Istio authentication policy is composed of two parts:
+
+* Peer: verifies the party, the direct client, that makes the connection. The common authentication mechanism for this is [mutual TLS]({{home}}/docs/concepts/security/mutual-tls.html). Istio is responsible for managing both client and server sides to enforce the policy.
+
+* Origin: verifies the party, the original client, that makes the request (e.g end-users, devices etc). JWT is the only supported mechanism for origin authentication at the moment. Istio configures the server side to perform authentication, but doesn't enforce that the client side sends the required token.
+
+Identities from both authentication parts, if applicable, are output to the next layer (e.g authorization, Mixer). To simplify the authorization rules, the policy can also specify which identity (peer or origin) should be used as 'the principal'. By default, it is set to the peer's identity.
+
+## Architecture
+
+Authentication policies are saved in Istio config store (in 0.7, the storage implementation uses Kubernetes CRD), and distributed by control plane. Depending on the size of the mesh, config propagation may take a few seconds to a few minutes. During the transition, you can expect traffic lost or inconsistent authentication results.
+
+{% include image.html width="80%" ratio="100%"
+ link="./img/authn.svg"
+ caption="Istio authentication policy architecture"
+ %}
+
+Policy is scoped to namespaces, with (optional) target selector rules to narrow down the set of services (within the same namespace as the policy) on which the policy should be applied. This aligns with the ACL model based on Kubernetes RBAC. More specifically, only the admin of the namespace can set policies for services in that namespace.
+
+Authentication is implemented by the Istio sidecars. For example, with an Envoy sidecar, it is a combination of SSL setting and HTTP filters. If authentication fails, requests will be rejected (either with SSL handshake error code, or http 401, depending on the type of authentication mechanism). If authentication succeeds, the following authenticated attributes will be generated:
+
+* **source.principal**: peer principal. If peer authentication is not used, the attribute is not set.
+* **request.auth.principal**: depends on the policy principal binding, this could be peer principal (if USE_PEER) or origin principal (if USE_ORIGIN).
+* **request.auth.audiences**: reflect the audience (`aud`) claim within the origin JWT (JWT that is used for origin authentication)
+* **request.auth.presenter**: similarly, reflect the authorized presenter (`azp`) claim of the origin JWT.
+* **request.auth.claims**: all raw string claims from origin-JWT.
+
+Origin principal (principal from origin authentication) is not explicitly output. In general, it can always be reconstructed by joining (`iss`) and subject (`sub`) claims with a "/" separator (for example, if `iss` and `sub` claims are "*googleapis.com*" and "*123456*" respectively, then origin principal is "*googleapis.com/123456*"). On the other hand, if principal binding is USE_ORIGIN, **request.auth.principal** carries the same value as origin principal.
+
+## Anatomy of the policy
+
+### Target selectors
+
+Defines rule to find service(s) on which policy should be applied. If no rule is provided, the policy is matched to all services in the namespace, so-called namespace-level policy (as opposed to service-level policies which have non-empty selector rules). Istio uses the service-level policy if available, otherwise it falls back to namespace-level policy. If neither is defined, it uses the default policy based on service mesh config and/or service annotation, which can only set mutual TLS setting (these are mechanisms before Istio 0.7 to config mutual TLS for Istio service mesh). See [testing Istio mutual TLS]({{home}}/docs/tasks/security/mutual-tls.html) and [per-service mutual TLS enablement]({{home}}/docs/tasks/security/per-service-mtls.html) for more details.
+
+Operators are responsible for avoiding conflicts, e.g create more than one service-level policy that matches to the same service(s) (or more than one namespace-level policy on the same namespace).
+
+Example: rule to select product-page service (on any port), and reviews:9000.
+
+```yalm
+ targets:
+ - name: product-page
+ - name: reviews
+ ports:
+ - number: 9000
+```
+
+### Peer authentication
+
+Defines authentication methods (and associated parameters) that are supported for peer authentication. It can list more than one method; only one of them needs to be satisfied for the authentication to pass. However, starting with the 0.7 release, only mutual TLS is supported. Omit this if peer authentication is not needed.
+
+Example of peer authentication using mutual TLS:
+
+```yaml
+ peers:
+ - mtls:
+```
+
+> Starting with Istio 0.7, the `mtls` settings doesn't require any parameters (hence `-mtls: {}`, `- mtls:` or `- mtls: null` declaration is sufficient). In future, it may carry arguments to provide different mTLS implementations.
+
+### Origin authentication
+
+Defines authentication methods (and associated parameters) that are supported for origin authentication. Only JWT is supported for this, however, the policy can list multiple JWTs by different issuers. Similar to peer authentication, only one of the listed methods needs to be satisfied for the authentication to pass.
+
+```yaml
+origins:
+- jwt:
+ issuer: "https://accounts.google.com"
+ jwksUri: "https://www.googleapis.com/oauth2/v3/certs"
+```
+
+### Principal binding
+
+Defines what is the principal from the authentication. By default, this will be the peer's principal (and if peer authentication is not applied, it will be left unset). Policy writers can choose to overwrite it with USE_ORIGIN. In future, we will also support *conditional-binding* (e.g USE_PEER when peer is X, otherwise USE_ORIGIN)
+
+## What's next
+
+Try out the [Basic Istio authentication policy]({{home}}/docs/tasks/security/authn-policy.html) tutorial.
diff --git a/_docs/concepts/security/img/authn.svg b/_docs/concepts/security/img/authn.svg
new file mode 100644
index 0000000000000..2fd42df326fab
--- /dev/null
+++ b/_docs/concepts/security/img/authn.svg
@@ -0,0 +1 @@
+<svg version="1.1" viewBox="0.0 0.0 960.0 720.0" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg"><clipPath id="p.0"><path d="m0 0l960.0 0l0 720.0l-960.0 0l0 -720.0z" clip-rule="nonzero"/></clipPath><g clip-path="url(#p.0)"><path fill="#000000" fill-opacity="0.0" d="m0 0l960.0 0l0 720.0l-960.0 0z" fill-rule="evenodd"/><defs><linearGradient id="p.1" gradientUnits="userSpaceOnUse" gradientTransform="matrix(16.804604311072346 0.0 0.0 16.804604311072346 0.0 0.0)" spreadMethod="pad" x1="4.394652342520692" y1="23.507588327091568" x2="4.394591636767912" y2="40.31219263805427"><stop offset="0.0" stop-color="#d4e5f5"/><stop offset="1.0" stop-color="#70a4d5"/></linearGradient></defs><path fill="url(#p.1)" d="m73.850395 442.1033l0 0c0 -25.99414 21.07241 -47.06656 47.06656 -47.06656l197.01648 0l0 0c12.482819 0 24.454376 4.9588013 33.281097 13.785492c8.826691 8.826691 13.785461 20.798248 13.785461 33.281067l0 188.26059c0 25.99414 -21.072418 47.06653 -47.06656 47.06653l-197.01648 0c-25.994148 0 -47.06656 -21.072388 -47.06656 -47.06653z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m73.850395 442.1033l0 0c0 -25.99414 21.07241 -47.06656 47.06656 -47.06656l197.01648 0l0 0c12.482819 0 24.454376 4.9588013 33.281097 13.785492c8.826691 8.826691 13.785461 20.798248 13.785461 33.281067l0 188.26059c0 25.99414 -21.072418 47.06653 -47.06656 47.06653l-197.01648 0c-25.994148 0 -47.06656 -21.072388 -47.06656 -47.06653z" fill-rule="evenodd"/><defs><linearGradient id="p.2" gradientUnits="userSpaceOnUse" gradientTransform="matrix(16.80460514997092 0.0 0.0 16.80460514997092 0.0 0.0)" spreadMethod="pad" x1="2.9745939398347865" y1="2.3483749317381077" x2="2.974533234085038" y2="19.15298008159938"><stop offset="0.0" stop-color="#dbd4eb"/><stop offset="1.0" stop-color="#9180bb"/></linearGradient></defs><path fill="url(#p.2)" d="m49.986877 86.53113l0 0c0 -25.994144 21.072418 -47.066563 47.06656 -47.066563l197.01648 0l0 0c12.482849 0 24.454407 4.958786 33.281097 13.785477c8.826691 8.826691 13.785461 20.798252 13.785461 33.281086l0 188.26059c0 25.99414 -21.072418 47.06656 -47.06656 47.06656l-197.01648 0c-25.99414 0 -47.06656 -21.072418 -47.06656 -47.06656z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m49.986877 86.53113l0 0c0 -25.994144 21.072418 -47.066563 47.06656 -47.066563l197.01648 0l0 0c12.482849 0 24.454407 4.958786 33.281097 13.785477c8.826691 8.826691 13.785461 20.798252 13.785461 33.281086l0 188.26059c0 25.99414 -21.072418 47.06656 -47.06656 47.06656l-197.01648 0c-25.99414 0 -47.06656 -21.072418 -47.06656 -47.06656z" fill-rule="evenodd"/><defs><linearGradient id="p.3" gradientUnits="userSpaceOnUse" gradientTransform="matrix(16.804916836024695 0.0 0.0 16.804916836024695 0.0 0.0)" spreadMethod="pad" x1="38.72366866470024" y1="2.821013724985565" x2="38.72360765502806" y2="19.625930560899512"><stop offset="0.0" stop-color="#dbd4eb"/><stop offset="1.0" stop-color="#9180bb"/></linearGradient></defs><path fill="url(#p.3)" d="m650.74805 74.88836l0 0c0 -15.177261 12.303589 -27.480865 27.480835 -27.480865l109.920166 0l0 0c7.288391 0 14.278259 2.895298 19.431885 8.048962c5.1536865 5.15366 8.049011 12.143528 8.049011 19.431904l0 227.4429c0 15.177246 -12.30365 27.480865 -27.480896 27.480865l-109.920166 0c-15.177246 0 -27.480835 -12.303619 -27.480835 -27.480865z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m650.74805 74.88836l0 0c0 -15.177261 12.303589 -27.480865 27.480835 -27.480865l109.920166 0l0 0c7.288391 0 14.278259 2.895298 19.431885 8.048962c5.1536865 5.15366 8.049011 12.143528 8.049011 19.431904l0 227.4429c0 15.177246 -12.30365 27.480865 -27.480896 27.480865l-109.920166 0c-15.177246 0 -27.480835 -12.303619 -27.480835 -27.480865z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m667.7297 59.732193l137.70074 0l0 33.894455l-137.70074 0z" fill-rule="evenodd"/><path fill="#000000" d="m680.5254 82.53942l0 -11.453125l7.734375 0l0 1.34375l-6.21875 0l0 3.546875l5.375 0l0 1.359375l-5.375 0l0 5.203125l-1.515625 0zm8.9921875 -4.15625q0 -2.296875 1.28125 -3.40625q1.078125 -0.921875 2.609375 -0.921875q1.71875 0 2.796875 1.125q1.09375 1.109375 1.09375 3.09375q0 1.59375 -0.484375 2.515625q-0.484375 0.921875 -1.40625 1.4375q-0.90625 0.5 -2.0 0.5q-1.734375 0 -2.8125 -1.109375q-1.078125 -1.125 -1.078125 -3.234375zm1.453125 0q0 1.59375 0.6875 2.390625q0.703125 0.796875 1.75 0.796875q1.046875 0 1.734375 -0.796875q0.703125 -0.796875 0.703125 -2.4375q0 -1.53125 -0.703125 -2.328125q-0.6875 -0.796875 -1.734375 -0.796875q-1.046875 0 -1.75 0.796875q-0.6875 0.78125 -0.6875 2.375zm7.4453125 0q0 -2.296875 1.28125 -3.40625q1.078125 -0.921875 2.609375 -0.921875q1.71875 0 2.796875 1.125q1.09375 1.109375 1.09375 3.09375q0 1.59375 -0.484375 2.515625q-0.484375 0.921875 -1.40625 1.4375q-0.90625 0.5 -2.0 0.5q-1.734375 0 -2.8125 -1.109375q-1.078125 -1.125 -1.078125 -3.234375zm1.453125 0q0 1.59375 0.6875 2.390625q0.703125 0.796875 1.75 0.796875q1.046875 0 1.734375 -0.796875q0.703125 -0.796875 0.703125 -2.4375q0 -1.53125 -0.703125 -2.328125q-0.6875 -0.796875 -1.734375 -0.796875q-1.046875 0 -1.75 0.796875q-0.6875 0.78125 -0.6875 2.375zm12.421875 4.15625l0 -8.296875l1.265625 0l0 1.171875q0.90625 -1.359375 2.640625 -1.359375q0.75 0 1.375 0.265625q0.625 0.265625 0.9375 0.703125q0.3125 0.4375 0.4375 1.046875q0.078125 0.390625 0.078125 1.359375l0 5.109375l-1.40625 0l0 -5.046875q0 -0.859375 -0.171875 -1.28125q-0.15625 -0.4375 -0.578125 -0.6875q-0.40625 -0.25 -0.96875 -0.25q-0.90625 0 -1.5625 0.578125q-0.640625 0.5625 -0.640625 2.15625l0 4.53125l-1.40625 0zm14.3046875 -1.03125q-0.78125 0.671875 -1.5 0.953125q-0.71875 0.265625 -1.546875 0.265625q-1.375 0 -2.109375 -0.671875q-0.734375 -0.671875 -0.734375 -1.703125q0 -0.609375 0.28125 -1.109375q0.28125 -0.515625 0.71875 -0.8125q0.453125 -0.3125 1.015625 -0.46875q0.421875 -0.109375 1.25 -0.203125q1.703125 -0.203125 2.515625 -0.484375q0 -0.296875 0 -0.375q0 -0.859375 -0.390625 -1.203125q-0.546875 -0.484375 -1.609375 -0.484375q-0.984375 0 -1.46875 0.359375q-0.46875 0.34375 -0.6875 1.21875l-1.375 -0.1875q0.1875 -0.875 0.609375 -1.421875q0.4375 -0.546875 1.25 -0.828125q0.8125 -0.296875 1.875 -0.296875q1.0625 0 1.71875 0.25q0.671875 0.25 0.984375 0.625q0.3125 0.375 0.4375 0.953125q0.078125 0.359375 0.078125 1.296875l0 1.875q0 1.96875 0.078125 2.484375q0.09375 0.515625 0.359375 1.0l-1.46875 0q-0.21875 -0.4375 -0.28125 -1.03125zm-0.109375 -3.140625q-0.765625 0.3125 -2.296875 0.53125q-0.875 0.125 -1.234375 0.28125q-0.359375 0.15625 -0.5625 0.46875q-0.1875 0.296875 -0.1875 0.65625q0 0.5625 0.421875 0.9375q0.4375 0.375 1.25 0.375q0.8125 0 1.4375 -0.34375q0.640625 -0.359375 0.9375 -0.984375q0.234375 -0.46875 0.234375 -1.40625l0 -0.515625zm3.6015625 4.171875l0 -8.296875l1.25 0l0 1.15625q0.390625 -0.609375 1.03125 -0.96875q0.65625 -0.375 1.484375 -0.375q0.921875 0 1.515625 0.390625q0.59375 0.375 0.828125 1.0625q0.984375 -1.453125 2.5625 -1.453125q1.234375 0 1.890625 0.6875q0.671875 0.671875 0.671875 2.09375l0 5.703125l-1.390625 0l0 -5.234375q0 -0.84375 -0.140625 -1.203125q-0.140625 -0.375 -0.5 -0.59375q-0.359375 -0.234375 -0.84375 -0.234375q-0.875 0 -1.453125 0.578125q-0.578125 0.578125 -0.578125 1.859375l0 4.828125l-1.40625 0l0 -5.390625q0 -0.9375 -0.34375 -1.40625q-0.34375 -0.46875 -1.125 -0.46875q-0.59375 0 -1.09375 0.3125q-0.5 0.3125 -0.734375 0.921875q-0.21875 0.59375 -0.21875 1.71875l0 4.3125l-1.40625 0zm19.0 -2.671875l1.453125 0.171875q-0.34375 1.28125 -1.28125 1.984375q-0.921875 0.703125 -2.359375 0.703125q-1.828125 0 -2.890625 -1.125q-1.0625 -1.125 -1.0625 -3.140625q0 -2.09375 1.078125 -3.25q1.078125 -1.15625 2.796875 -1.15625q1.65625 0 2.703125 1.140625q1.0625 1.125 1.0625 3.171875q0 0.125 0 0.375l-6.1875 0q0.078125 1.375 0.765625 2.109375q0.703125 0.71875 1.734375 0.71875q0.78125 0 1.328125 -0.40625q0.546875 -0.40625 0.859375 -1.296875zm-4.609375 -2.28125l4.625 0q-0.09375 -1.046875 -0.53125 -1.5625q-0.671875 -0.8125 -1.734375 -0.8125q-0.96875 0 -1.640625 0.65625q-0.65625 0.640625 -0.71875 1.71875zm7.2734375 2.46875l1.390625 -0.21875q0.109375 0.84375 0.640625 1.296875q0.546875 0.4375 1.5 0.4375q0.96875 0 1.4375 -0.390625q0.46875 -0.40625 0.46875 -0.9375q0 -0.46875 -0.40625 -0.75q-0.296875 -0.1875 -1.4375 -0.46875q-1.546875 -0.390625 -2.15625 -0.671875q-0.59375 -0.296875 -0.90625 -0.796875q-0.296875 -0.5 -0.296875 -1.109375q0 -0.5625 0.25 -1.03125q0.25 -0.46875 0.6875 -0.78125q0.328125 -0.25 0.890625 -0.40625q0.578125 -0.171875 1.21875 -0.171875q0.984375 0 1.71875 0.28125q0.734375 0.28125 1.078125 0.765625q0.359375 0.46875 0.5 1.28125l-1.375 0.1875q-0.09375 -0.640625 -0.546875 -1.0q-0.453125 -0.359375 -1.265625 -0.359375q-0.96875 0 -1.390625 0.328125q-0.40625 0.3125 -0.40625 0.734375q0 0.28125 0.171875 0.5q0.171875 0.21875 0.53125 0.375q0.21875 0.078125 1.25 0.359375q1.484375 0.390625 2.078125 0.65625q0.59375 0.25 0.921875 0.734375q0.34375 0.484375 0.34375 1.203125q0 0.703125 -0.421875 1.328125q-0.40625 0.609375 -1.1875 0.953125q-0.765625 0.34375 -1.734375 0.34375q-1.625 0 -2.46875 -0.671875q-0.84375 -0.671875 -1.078125 -2.0zm8.5625 5.671875l0 -11.484375l1.28125 0l0 1.078125q0.453125 -0.640625 1.015625 -0.953125q0.578125 -0.3125 1.390625 -0.3125q1.0625 0 1.875 0.546875q0.8125 0.546875 1.21875 1.546875q0.421875 0.984375 0.421875 2.171875q0 1.28125 -0.46875 2.296875q-0.453125 1.015625 -1.328125 1.5625q-0.859375 0.546875 -1.828125 0.546875q-0.703125 0 -1.265625 -0.296875q-0.546875 -0.296875 -0.90625 -0.75l0 4.046875l-1.40625 0zm1.265625 -7.296875q0 1.609375 0.640625 2.375q0.65625 0.765625 1.578125 0.765625q0.9375 0 1.609375 -0.796875q0.671875 -0.796875 0.671875 -2.453125q0 -1.59375 -0.65625 -2.375q-0.65625 -0.796875 -1.5625 -0.796875q-0.890625 0 -1.59375 0.84375q-0.6875 0.84375 -0.6875 2.4375zm13.0390625 3.078125q-0.78125 0.671875 -1.5 0.953125q-0.71875 0.265625 -1.546875 0.265625q-1.375 0 -2.109375 -0.671875q-0.734375 -0.671875 -0.734375 -1.703125q0 -0.609375 0.28125 -1.109375q0.28125 -0.515625 0.71875 -0.8125q0.453125 -0.3125 1.015625 -0.46875q0.421875 -0.109375 1.25 -0.203125q1.703125 -0.203125 2.515625 -0.484375q0 -0.296875 0 -0.375q0 -0.859375 -0.390625 -1.203125q-0.546875 -0.484375 -1.609375 -0.484375q-0.984375 0 -1.46875 0.359375q-0.46875 0.34375 -0.6875 1.21875l-1.375 -0.1875q0.1875 -0.875 0.609375 -1.421875q0.4375 -0.546875 1.25 -0.828125q0.8125 -0.296875 1.875 -0.296875q1.0625 0 1.71875 0.25q0.671875 0.25 0.984375 0.625q0.3125 0.375 0.4375 0.953125q0.078125 0.359375 0.078125 1.296875l0 1.875q0 1.96875 0.078125 2.484375q0.09375 0.515625 0.359375 1.0l-1.46875 0q-0.21875 -0.4375 -0.28125 -1.03125zm-0.109375 -3.140625q-0.765625 0.3125 -2.296875 0.53125q-0.875 0.125 -1.234375 0.28125q-0.359375 0.15625 -0.5625 0.46875q-0.1875 0.296875 -0.1875 0.65625q0 0.5625 0.421875 0.9375q0.4375 0.375 1.25 0.375q0.8125 0 1.4375 -0.34375q0.640625 -0.359375 0.9375 -0.984375q0.234375 -0.46875 0.234375 -1.40625l0 -0.515625zm9.0078125 1.125l1.390625 0.1875q-0.234375 1.421875 -1.171875 2.234375q-0.921875 0.8125 -2.28125 0.8125q-1.703125 0 -2.75 -1.109375q-1.03125 -1.125 -1.03125 -3.203125q0 -1.34375 0.4375 -2.34375q0.453125 -1.015625 1.359375 -1.515625q0.921875 -0.5 1.984375 -0.5q1.359375 0 2.21875 0.6875q0.859375 0.671875 1.09375 1.9375l-1.359375 0.203125q-0.203125 -0.828125 -0.703125 -1.25q-0.484375 -0.421875 -1.1875 -0.421875q-1.0625 0 -1.734375 0.765625q-0.65625 0.75 -0.65625 2.40625q0 1.671875 0.640625 2.4375q0.640625 0.75 1.671875 0.75q0.828125 0 1.375 -0.5q0.5625 -0.515625 0.703125 -1.578125zm8.265625 0.375l1.453125 0.171875q-0.34375 1.28125 -1.28125 1.984375q-0.921875 0.703125 -2.359375 0.703125q-1.828125 0 -2.890625 -1.125q-1.0625 -1.125 -1.0625 -3.140625q0 -2.09375 1.078125 -3.25q1.078125 -1.15625 2.796875 -1.15625q1.65625 0 2.703125 1.140625q1.0625 1.125 1.0625 3.171875q0 0.125 0 0.375l-6.1875 0q0.078125 1.375 0.765625 2.109375q0.703125 0.71875 1.734375 0.71875q0.78125 0 1.328125 -0.40625q0.546875 -0.40625 0.859375 -1.296875zm-4.609375 -2.28125l4.625 0q-0.09375 -1.046875 -0.53125 -1.5625q-0.671875 -0.8125 -1.734375 -0.8125q-0.96875 0 -1.640625 0.65625q-0.65625 0.640625 -0.71875 1.71875z" fill-rule="nonzero"/><defs><linearGradient id="p.4" gradientUnits="userSpaceOnUse" gradientTransform="matrix(8.734076953530863 0.0 0.0 8.734076953530863 0.0 0.0)" spreadMethod="pad" x1="45.0169038415967" y1="36.850789587294706" x2="45.01687097338495" y2="45.58486654076372"><stop offset="0.0" stop-color="#fdecdb"/><stop offset="1.0" stop-color="#f0a963"/></linearGradient></defs><path fill="url(#p.4)" d="m393.1811 321.85828l173.63782 0l0 76.28345l-173.63782 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m393.1811 321.85828l173.63782 0l0 76.28345l-173.63782 0z" fill-rule="evenodd"/><path fill="#000000" d="m463.29138 366.91998l0 -13.359375l5.046875 0q1.328125 0 2.03125 0.125q0.96875 0.171875 1.640625 0.640625q0.671875 0.453125 1.078125 1.28125q0.40625 0.828125 0.40625 1.828125q0 1.703125 -1.09375 2.890625q-1.078125 1.171875 -3.921875 1.171875l-3.421875 0l0 5.421875l-1.765625 0zm1.765625 -7.0l3.453125 0q1.71875 0 2.4375 -0.640625q0.71875 -0.640625 0.71875 -1.796875q0 -0.84375 -0.421875 -1.4375q-0.421875 -0.59375 -1.125 -0.78125q-0.4375 -0.125 -1.640625 -0.125l-3.421875 0l0 4.78125zm10.474823 -4.46875l0 -1.890625l1.640625 0l0 1.890625l-1.640625 0zm0 11.46875l0 -9.671875l1.640625 0l0 9.671875l-1.640625 0zm4.0979614 0l0 -13.359375l1.640625 0l0 13.359375l-1.640625 0zm3.582306 -4.84375q0 -2.6875 1.484375 -3.96875q1.25 -1.078125 3.046875 -1.078125q2.0 0 3.265625 1.3125q1.265625 1.296875 1.265625 3.609375q0 1.859375 -0.5625 2.9375q-0.5625 1.0625 -1.640625 1.65625q-1.0625 0.59375 -2.328125 0.59375q-2.03125 0 -3.28125 -1.296875q-1.25 -1.3125 -1.25 -3.765625zm1.6875 0q0 1.859375 0.796875 2.796875q0.8125 0.921875 2.046875 0.921875q1.21875 0 2.03125 -0.921875q0.8125 -0.9375 0.8125 -2.84375q0 -1.796875 -0.8125 -2.71875q-0.8125 -0.921875 -2.03125 -0.921875q-1.234375 0 -2.046875 0.921875q-0.796875 0.90625 -0.796875 2.765625zm12.875732 3.375l0.234375 1.453125q-0.6875 0.140625 -1.234375 0.140625q-0.890625 0 -1.390625 -0.28125q-0.484375 -0.28125 -0.6875 -0.734375q-0.203125 -0.46875 -0.203125 -1.9375l0 -5.578125l-1.203125 0l0 -1.265625l1.203125 0l0 -2.390625l1.625 -0.984375l0 3.375l1.65625 0l0 1.265625l-1.65625 0l0 5.671875q0 0.6875 0.078125 0.890625q0.09375 0.203125 0.28125 0.328125q0.203125 0.109375 0.578125 0.109375q0.265625 0 0.71875 -0.0625z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m850.3774 516.66797l68.16278 0l0 61.92914l-68.16278 0z" fill-rule="evenodd"/><g transform="matrix(0.4156265091863517 0.0 0.0 0.41563175853018375 850.3774073490814 516.6679719160105)"><clipPath id="p.5"><path d="m0 2.2737368E-13l164.0 0l0 149.0l-164.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#p.5)" fill="#000" width="164.0" height="149.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><path fill="#000000" fill-opacity="0.0" d="m820.5769 140.8832l68.16272 0l0 61.92914l-68.16272 0z" fill-rule="evenodd"/><g transform="matrix(0.4156265091863517 0.0 0.0 0.41563175853018375 820.5768824146982 140.88319501312336)"><clipPath id="p.6"><path d="m0 -5.684342E-14l164.0 0l0 149.0l-164.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#p.6)" fill="#000" width="164.0" height="149.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><defs><linearGradient id="p.7" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.505922012842515 0.0 0.0 9.505922012842515 0.0 0.0)" spreadMethod="pad" x1="73.89011816407357" y1="19.651202772828295" x2="73.89008365043155" y2="29.157124785608154"><stop offset="0.0" stop-color="#dbd4eb"/><stop offset="1.0" stop-color="#9180bb"/></linearGradient></defs><path fill="url(#p.7)" d="m708.0413 277.16534c3.1191406 0 5.647644 -2.528534 5.647644 -5.6476135l-5.647644 0c1.5595703 0 2.8238525 -1.2642822 2.8238525 -2.823822c0 -1.5595703 -1.2642822 -2.823822 -2.8238525 -2.823822l5.647644 0l0 -73.4193l0 0c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644l72.87402 0c3.1190796 0 5.647644 2.528534 5.647644 5.647644c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629l-5.647644 0l0 73.41931c0 3.1190796 -2.5285034 5.6476135 -5.647644 5.6476135zm16.942932 -84.714554l0 0c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629c-1.5595703 0 -2.8237915 -1.264267 -2.8237915 -2.8238068c0 -1.559555 1.2642212 -2.823822 2.8237915 -2.823822z" fill-rule="evenodd"/><defs><linearGradient id="p.8" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.505922012842515 0.0 0.0 9.505922012842515 0.0 0.0)" spreadMethod="pad" x1="73.89011816407357" y1="19.651202772828295" x2="73.89008365043155" y2="29.157124785608154"><stop offset="0.0" stop-color="#dbd4eb"/><stop offset="1.0" stop-color="#9180bb"/></linearGradient></defs><path fill="url(#p.8)" d="m724.98425 192.45079l0 0c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629c-1.5595703 0 -2.8237915 -1.264267 -2.8237915 -2.8238068c0 -1.559555 1.2642212 -2.823822 2.8237915 -2.823822zm-11.295288 79.06694c0 3.1190796 -2.5285034 5.6476135 -5.647644 5.6476135c-3.1190796 0 -5.647644 -2.528534 -5.647644 -5.6476135c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644l0 0c1.5595703 0 2.8238525 1.2642517 2.8238525 2.823822c0 1.5595398 -1.2642822 2.823822 -2.8238525 2.823822z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m713.68896 265.8701l0 -73.4193l0 0c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644l72.87402 0c3.1190796 0 5.647644 2.528534 5.647644 5.647644c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629l-5.647644 0l0 73.41931c0 3.1190796 -2.5285034 5.6476135 -5.647644 5.6476135l-72.87402 0c-3.1190796 0 -5.647644 -2.528534 -5.647644 -5.6476135c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644zm5.647644 -79.06694l0 0c3.1190796 0 5.647644 2.528534 5.647644 5.647644c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629c-1.5595703 0 -2.8237915 -1.264267 -2.8237915 -2.8238068c0 -1.559555 1.2642212 -2.823822 2.8237915 -2.823822l5.647644 0m61.578735 5.647629l-67.22638 0m-11.295288 67.77167l0 0c1.5595703 0 2.8238525 1.2642517 2.8238525 2.823822c0 1.5595398 -1.2642822 2.823822 -2.8238525 2.823822l5.647644 0m-5.647644 5.6476135c3.1191406 0 5.647644 -2.528534 5.647644 -5.6476135l0 -5.647644" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.2" d="m724.98425 192.45079l0 0c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629c-1.5595703 0 -2.8237915 -1.264267 -2.8237915 -2.8238068c0 -1.559555 1.2642212 -2.823822 2.8237915 -2.823822zm-11.295288 79.06694c0 3.1190796 -2.5285034 5.6476135 -5.647644 5.6476135c-3.1190796 0 -5.647644 -2.528534 -5.647644 -5.6476135c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644l0 0c1.5595703 0 2.8238525 1.2642517 2.8238525 2.823822c0 1.5595398 -1.2642822 2.823822 -2.8238525 2.823822z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m713.68896 265.8701l0 -73.4193l0 0c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644l72.87402 0c3.1190796 0 5.647644 2.528534 5.647644 5.647644c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629l-5.647644 0l0 73.41931c0 3.1190796 -2.5285034 5.6476135 -5.647644 5.6476135l-72.87402 0c-3.1190796 0 -5.647644 -2.528534 -5.647644 -5.6476135c0 -3.11911 2.5285645 -5.647644 5.647644 -5.647644zm5.647644 -79.06694l0 0c3.1190796 0 5.647644 2.528534 5.647644 5.647644c0 3.1190948 -2.5285645 5.647629 -5.647644 5.647629c-1.5595703 0 -2.8237915 -1.264267 -2.8237915 -2.8238068c0 -1.559555 1.2642212 -2.823822 2.8237915 -2.823822l5.647644 0m61.578735 5.647629l-67.22638 0m-11.295288 67.77167l0 0c1.5595703 0 2.8238525 1.2642517 2.8238525 2.823822c0 1.5595398 -1.2642822 2.823822 -2.8238525 2.823822l5.647644 0m-5.647644 5.6476135c3.1191406 0 5.647644 -2.528534 5.647644 -5.6476135l0 -5.647644" fill-rule="evenodd"/><path fill="#000000" d="m725.4546 232.04807l0 -6.734375l-2.515625 0l0 -0.890625l6.046875 0l0 0.890625l-2.53125 0l0 6.734375l-1.0 0zm8.056152 -0.6875q-0.53125 0.453125 -1.015625 0.640625q-0.46875 0.171875 -1.015625 0.171875q-0.921875 0 -1.40625 -0.4375q-0.484375 -0.453125 -0.484375 -1.140625q0 -0.40625 0.171875 -0.734375q0.1875 -0.34375 0.484375 -0.546875q0.3125 -0.203125 0.6875 -0.3125q0.265625 -0.0625 0.828125 -0.140625q1.125 -0.125 1.671875 -0.3125q0 -0.203125 0 -0.25q0 -0.578125 -0.265625 -0.8125q-0.359375 -0.3125 -1.0625 -0.3125q-0.65625 0 -0.984375 0.234375q-0.3125 0.234375 -0.453125 0.8125l-0.921875 -0.125q0.125 -0.578125 0.40625 -0.9375q0.296875 -0.375 0.828125 -0.5625q0.546875 -0.203125 1.25 -0.203125q0.71875 0 1.15625 0.171875q0.4375 0.171875 0.640625 0.421875q0.21875 0.25 0.296875 0.640625q0.046875 0.234375 0.046875 0.859375l0 1.25q0 1.296875 0.0625 1.65625q0.0625 0.34375 0.234375 0.65625l-0.96875 0q-0.15625 -0.296875 -0.1875 -0.6875zm-0.078125 -2.078125q-0.515625 0.203125 -1.53125 0.34375q-0.578125 0.078125 -0.828125 0.1875q-0.234375 0.109375 -0.359375 0.3125q-0.125 0.1875 -0.125 0.4375q0 0.375 0.28125 0.625q0.28125 0.25 0.828125 0.25q0.53125 0 0.953125 -0.234375q0.421875 -0.234375 0.625 -0.65625q0.15625 -0.3125 0.15625 -0.9375l0 -0.328125zm2.3796387 2.765625l0 -5.53125l0.84375 0l0 0.84375q0.328125 -0.59375 0.59375 -0.78125q0.28125 -0.1875 0.609375 -0.1875q0.46875 0 0.953125 0.3125l-0.3125 0.859375q-0.34375 -0.203125 -0.6875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.234375 0.1875 -0.34375 0.515625q-0.15625 0.5 -0.15625 1.09375l0 2.890625l-0.9375 0zm3.392334 0.453125l0.90625 0.140625q0.0625 0.421875 0.328125 0.609375q0.34375 0.265625 0.9375 0.265625q0.65625 0 1.0 -0.265625q0.359375 -0.25 0.484375 -0.71875q0.078125 -0.296875 0.078125 -1.203125q-0.625 0.71875 -1.53125 0.71875q-1.140625 0 -1.765625 -0.8125q-0.625 -0.828125 -0.625 -1.984375q0 -0.78125 0.28125 -1.453125q0.296875 -0.671875 0.828125 -1.03125q0.546875 -0.375 1.28125 -0.375q0.984375 0 1.609375 0.796875l0 -0.671875l0.875 0l0 4.78125q0 1.296875 -0.265625 1.828125q-0.265625 0.546875 -0.84375 0.859375q-0.5625 0.3125 -1.390625 0.3125q-0.984375 0 -1.59375 -0.453125q-0.609375 -0.4375 -0.59375 -1.34375zm0.78125 -3.3125q0 1.078125 0.421875 1.578125q0.4375 0.5 1.078125 0.5q0.65625 0 1.09375 -0.484375q0.4375 -0.5 0.4375 -1.5625q0 -1.015625 -0.453125 -1.53125q-0.453125 -0.515625 -1.09375 -0.515625q-0.609375 0 -1.046875 0.515625q-0.4375 0.5 -0.4375 1.5zm9.098389 1.078125l0.96875 0.125q-0.234375 0.84375 -0.859375 1.3125q-0.609375 0.46875 -1.578125 0.46875q-1.203125 0 -1.921875 -0.75q-0.703125 -0.75 -0.703125 -2.09375q0 -1.390625 0.71875 -2.15625q0.71875 -0.78125 1.859375 -0.78125q1.109375 0 1.8125 0.765625q0.703125 0.75 0.703125 2.125q0 0.078125 0 0.234375l-4.125 0q0.046875 0.921875 0.515625 1.40625q0.46875 0.484375 1.15625 0.484375q0.515625 0 0.875 -0.265625q0.359375 -0.28125 0.578125 -0.875zm-3.078125 -1.515625l3.09375 0q-0.0625 -0.6875 -0.359375 -1.046875q-0.453125 -0.53125 -1.15625 -0.53125q-0.640625 0 -1.09375 0.4375q-0.4375 0.421875 -0.484375 1.140625zm7.2702637 2.453125l0.125 0.828125q-0.390625 0.09375 -0.703125 0.09375q-0.5 0 -0.78125 -0.15625q-0.28125 -0.171875 -0.40625 -0.4375q-0.109375 -0.265625 -0.109375 -1.109375l0 -3.171875l-0.6875 0l0 -0.734375l0.6875 0l0 -1.359375l0.9375 -0.5625l0 1.921875l0.9375 0l0 0.734375l-0.9375 0l0 3.234375q0 0.390625 0.046875 0.515625q0.046875 0.109375 0.15625 0.1875q0.109375 0.0625 0.328125 0.0625q0.15625 0 0.40625 -0.046875zm0.5387573 -0.8125l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm5.96875 -2.796875l0 -1.078125l1.0625 0l0 1.078125l-1.0625 0zm0 4.453125l0 -1.0625l1.0625 0l0 1.0625l-1.0625 0z" fill-rule="nonzero"/><path fill="#000000" d="m723.0171 243.39182l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm7.234375 1.65625l-2.09375 -5.53125l0.984375 0l1.1875 3.3125q0.1875 0.53125 0.359375 1.109375q0.109375 -0.4375 0.34375 -1.046875l1.21875 -3.375l0.96875 0l-2.09375 5.53125l-0.875 0zm7.40625 -2.03125l0.921875 0.125q-0.15625 0.953125 -0.78125 1.5q-0.625 0.53125 -1.53125 0.53125q-1.125 0 -1.8125 -0.734375q-0.6875 -0.75 -0.6875 -2.125q0 -0.90625 0.296875 -1.578125q0.296875 -0.671875 0.890625 -1.0q0.609375 -0.34375 1.328125 -0.34375q0.890625 0 1.46875 0.46875q0.578125 0.453125 0.734375 1.28125l-0.90625 0.140625q-0.140625 -0.546875 -0.46875 -0.828125q-0.328125 -0.28125 -0.796875 -0.28125q-0.703125 0 -1.15625 0.515625q-0.4375 0.5 -0.4375 1.59375q0 1.109375 0.421875 1.625q0.4375 0.5 1.125 0.5q0.546875 0 0.90625 -0.34375q0.375 -0.34375 0.484375 -1.046875zm1.0 2.03125l2.921875 -7.625l1.09375 0l3.125 7.625l-1.15625 0l-0.890625 -2.3125l-3.1875 0l-0.828125 2.3125l-1.078125 0zm2.203125 -3.125l2.578125 0l-0.796875 -2.125q-0.359375 -0.953125 -0.53125 -1.578125q-0.15625 0.734375 -0.421875 1.453125l-0.828125 2.25z" fill-rule="nonzero"/><defs><linearGradient id="p.9" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.204532861444338 0.0 0.0 9.204532861444338 0.0 0.0)" spreadMethod="pad" x1="8.705911448342373" y1="57.37109692916714" x2="8.705878032334763" y2="66.57562979055082"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#p.9)" d="m80.13385 570.43604l21.180779 -42.36151l58.90429 0l21.180786 42.36151l-21.180786 42.361572l-58.90429 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m80.13385 570.43604l21.180779 -42.36151l58.90429 0l21.180786 42.36151l-21.180786 42.361572l-58.90429 0z" fill-rule="evenodd"/><defs><linearGradient id="p.10" gradientUnits="userSpaceOnUse" gradientTransform="matrix(3.920244289428837 0.0 0.0 3.920244289428837 0.0 0.0)" spreadMethod="pad" x1="22.461603939054534" y1="143.55019838685396" x2="22.46159086254206" y2="147.470442676261"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#p.10)" d="m88.05498 562.75195l34.274155 0l0 15.368164l-34.274155 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m88.05498 562.75195l34.274155 0l0 15.368164l-34.274155 0z" fill-rule="evenodd"/><defs><linearGradient id="p.11" gradientUnits="userSpaceOnUse" gradientTransform="matrix(3.920244289428837 0.0 0.0 3.920244289428837 0.0 0.0)" spreadMethod="pad" x1="35.754883147039756" y1="143.550187925644" x2="35.754870070527275" y2="147.47043221505103"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#p.11)" d="m140.16788 562.75195l34.274155 0l0 15.368164l-34.274155 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m140.16788 562.75195l34.274155 0l0 15.368164l-34.274155 0z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m122.32913 570.43604l17.83049 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m128.32915 570.43604l5.830475 0" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m128.32915 568.7843l-4.538109 1.6517334l4.538109 1.6517334z" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m134.15962 572.08777l4.538101 -1.6517334l-4.538101 -1.6517334z" fill-rule="evenodd"/><defs><linearGradient id="p.12" gradientUnits="userSpaceOnUse" gradientTransform="matrix(11.951569689607274 0.0 0.0 11.951569689607274 0.0 0.0)" spreadMethod="pad" x1="15.17777301671057" y1="43.88088507677677" x2="15.177730124333511" y2="55.83245476630708"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#p.12)" d="m181.39821 595.8658l35.70987 -71.41968l99.31004 0l35.70984 71.41968l-35.70984 71.41968l-99.31004 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m181.39821 595.8658l35.70987 -71.41968l99.31004 0l35.70984 71.41968l-35.70984 71.41968l-99.31004 0z" fill-rule="evenodd"/><path fill="#000000" d="m217.37273 598.4889l1.65625 -0.140625q0.125 1.0 0.546875 1.640625q0.4375 0.640625 1.34375 1.046875q0.921875 0.390625 2.0625 0.390625q1.0 0 1.78125 -0.296875q0.78125 -0.296875 1.15625 -0.8125q0.375 -0.53125 0.375 -1.15625q0 -0.625 -0.375 -1.09375q-0.359375 -0.46875 -1.1875 -0.796875q-0.546875 -0.203125 -2.390625 -0.640625q-1.828125 -0.453125 -2.5625 -0.84375q-0.96875 -0.5 -1.4375 -1.234375q-0.46875 -0.75 -0.46875 -1.671875q0 -1.0 0.578125 -1.875q0.578125 -0.890625 1.671875 -1.34375q1.109375 -0.453125 2.453125 -0.453125q1.484375 0 2.609375 0.484375q1.140625 0.46875 1.75 1.40625q0.609375 0.921875 0.65625 2.09375l-1.6875 0.125q-0.140625 -1.265625 -0.9375 -1.90625q-0.78125 -0.65625 -2.3125 -0.65625q-1.609375 0 -2.34375 0.59375q-0.734375 0.59375 -0.734375 1.421875q0 0.71875 0.53125 1.171875q0.5 0.46875 2.65625 0.96875q2.15625 0.484375 2.953125 0.84375q1.171875 0.53125 1.71875 1.359375q0.5625 0.828125 0.5625 1.90625q0 1.0625 -0.609375 2.015625q-0.609375 0.9375 -1.75 1.46875q-1.140625 0.515625 -2.578125 0.515625q-1.8125 0 -3.046875 -0.53125q-1.21875 -0.53125 -1.921875 -1.59375q-0.6875 -1.0625 -0.71875 -2.40625zm19.459198 1.1875l1.6875 0.203125q-0.40625 1.484375 -1.484375 2.3125q-1.078125 0.8125 -2.765625 0.8125q-2.125 0 -3.375 -1.296875q-1.234375 -1.3125 -1.234375 -3.671875q0 -2.453125 1.25 -3.796875q1.265625 -1.34375 3.265625 -1.34375q1.9375 0 3.15625 1.328125q1.234375 1.3125 1.234375 3.703125q0 0.15625 0 0.4375l-7.21875 0q0.09375 1.59375 0.90625 2.453125q0.8125 0.84375 2.015625 0.84375q0.90625 0 1.546875 -0.46875q0.640625 -0.484375 1.015625 -1.515625zm-5.390625 -2.65625l5.40625 0q-0.109375 -1.21875 -0.625 -1.828125q-0.78125 -0.953125 -2.03125 -0.953125q-1.125 0 -1.90625 0.765625q-0.765625 0.75 -0.84375 2.015625z" fill-rule="nonzero"/><defs><linearGradient id="p.13" gradientUnits="userSpaceOnUse" gradientTransform="matrix(5.090217091588521 0.0 0.0 5.090217091588521 0.0 0.0)" spreadMethod="pad" x1="38.260228833212885" y1="114.51584571021758" x2="38.260212719755266" y2="119.6060628017806"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#p.13)" d="m194.75288 582.91077l57.784714 0l0 25.910034l-57.784714 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m194.75288 582.91077l57.784714 0l0 25.910034l-57.784714 0z" fill-rule="evenodd"/><path fill="#000000" d="m213.16867 598.5458l0 -5.734375l4.140625 0l0 0.6875l-3.390625 0l0 1.75l3.171875 0l0 0.671875l-3.171875 0l0 1.953125l3.515625 0l0 0.671875l-4.265625 0zm5.2265625 0l0 -4.15625l0.625 0l0 0.59375q0.46875 -0.6875 1.328125 -0.6875q0.375 0 0.6875 0.140625q0.3125 0.140625 0.46875 0.359375q0.15625 0.21875 0.21875 0.515625q0.046875 0.1875 0.046875 0.6875l0 2.546875l-0.703125 0l0 -2.53125q0 -0.421875 -0.09375 -0.625q-0.078125 -0.21875 -0.296875 -0.34375q-0.203125 -0.140625 -0.484375 -0.140625q-0.4375 0 -0.765625 0.296875q-0.328125 0.28125 -0.328125 1.078125l0 2.265625l-0.703125 0zm5.6054688 0l-1.578125 -4.15625l0.734375 0l0.890625 2.484375q0.140625 0.40625 0.265625 0.84375q0.09375 -0.328125 0.265625 -0.796875l0.921875 -2.53125l0.71875 0l-1.5625 4.15625l-0.65625 0zm2.578125 -2.078125q0 -1.15625 0.64064026 -1.703125q0.53125 -0.46875 1.3125 -0.46875q0.84375 0 1.390625 0.5625q0.546875 0.5625 0.546875 1.546875q0 0.8125 -0.25 1.265625q-0.234375 0.453125 -0.703125 0.71875q-0.453125 0.25 -0.984375 0.25q-0.875 0 -1.421875 -0.5625q-0.53126526 -0.5625 -0.53126526 -1.609375zm0.71876526 0q0 0.796875 0.34375 1.203125q0.359375 0.390625 0.890625 0.390625q0.515625 0 0.859375 -0.390625q0.359375 -0.40625 0.359375 -1.21875q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -0.859375 -0.390625q-0.53125 0 -0.890625 0.390625q-0.34375 0.390625 -0.34375 1.1875zm3.9648438 3.671875l-0.078125 -0.65625q0.234375 0.0625 0.40625 0.0625q0.234375 0 0.375 -0.078125q0.140625 -0.078125 0.21875 -0.21875q0.078125 -0.109375 0.21875 -0.515625q0.015625 -0.0625 0.0625 -0.171875l-1.578125 -4.171875l0.765625 0l0.859375 2.40625q0.171875 0.453125 0.296875 0.96875q0.125 -0.484375 0.296875 -0.953125l0.890625 -2.421875l0.703125 0l-1.578125 4.234375q-0.265625 0.671875 -0.40625 0.9375q-0.1875 0.34375 -0.4375 0.5q-0.234375 0.171875 -0.5625 0.171875q-0.203125 0 -0.453125 -0.09375z" fill-rule="nonzero"/><defs><linearGradient id="p.14" gradientUnits="userSpaceOnUse" gradientTransform="matrix(5.090213063222523 0.0 0.0 5.090213063222523 0.0 0.0)" spreadMethod="pad" x1="55.520847438647024" y1="114.51594439414919" x2="55.52083132517666" y2="119.60615745734621"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#p.14)" d="m282.61295 582.91077l57.78473 0l0 25.910034l-57.78473 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m282.61295 582.91077l57.78473 0l0 25.910034l-57.78473 0z" fill-rule="evenodd"/><path fill="#000000" d="m298.5268 591.702l0.71875 -0.0625q0.046875 0.4375 0.234375 0.71875q0.1875 0.265625 0.578125 0.4375q0.390625 0.171875 0.875 0.171875q0.4375 0 0.765625 -0.125q0.328125 -0.140625 0.484375 -0.359375q0.171875 -0.234375 0.171875 -0.5q0 -0.265625 -0.15625 -0.46875q-0.15625 -0.203125 -0.515625 -0.328125q-0.234375 -0.09375 -1.03125 -0.28125q-0.78125 -0.1875 -1.09375 -0.359375q-0.40625 -0.21875 -0.609375 -0.53125q-0.203125 -0.328125 -0.203125 -0.71875q0 -0.4375 0.25 -0.8125q0.25 -0.375 0.71875 -0.5625q0.46875 -0.203125 1.046875 -0.203125q0.640625 0 1.125 0.203125q0.484375 0.203125 0.75 0.609375q0.265625 0.390625 0.28125 0.90625l-0.734375 0.046875q-0.046875 -0.546875 -0.390625 -0.8125q-0.34375 -0.28125 -1.0 -0.28125q-0.6875 0 -1.0 0.25q-0.3125 0.25 -0.3125 0.609375q0 0.3125 0.21875 0.5q0.21875 0.203125 1.140625 0.421875q0.921875 0.203125 1.265625 0.359375q0.5 0.234375 0.734375 0.59375q0.25 0.34375 0.25 0.796875q0 0.46875 -0.265625 0.875q-0.265625 0.390625 -0.75 0.625q-0.484375 0.21875 -1.109375 0.21875q-0.765625 0 -1.296875 -0.21875q-0.53125 -0.234375 -0.828125 -0.6875q-0.296875 -0.453125 -0.3125 -1.03125zm8.3515625 0.5l0.71875 0.09375q-0.171875 0.640625 -0.640625 1.0q-0.453125 0.34375 -1.1875 0.34375q-0.90625 0 -1.4375 -0.5625q-0.53125 -0.5625 -0.53125 -1.578125q0 -1.046875 0.53125 -1.625q0.546875 -0.578125 1.40625 -0.578125q0.828125 0 1.359375 0.578125q0.53125 0.5625 0.53125 1.59375q0 0.0625 -0.015625 0.1875l-3.09375 0q0.046875 0.671875 0.390625 1.046875q0.34375 0.359375 0.875 0.359375q0.375 0 0.640625 -0.203125q0.28125 -0.203125 0.453125 -0.65625zm-2.3125 -1.125l2.3125 0q-0.046875 -0.53125 -0.265625 -0.796875q-0.328125 -0.40625 -0.875 -0.40625q-0.484375 0 -0.8125 0.328125q-0.328125 0.328125 -0.359375 0.875zm3.9023438 2.46875l0 -4.15625l0.640625 0l0 0.640625q0.234375 -0.453125 0.4375 -0.59375q0.21875 -0.140625 0.453125 -0.140625q0.359375 0 0.734375 0.234375l-0.25 0.65625q-0.25 -0.15625 -0.515625 -0.15625q-0.234375 0 -0.421875 0.140625q-0.171875 0.140625 -0.25 0.375q-0.125 0.375 -0.125 0.828125l0 2.171875l-0.703125 0zm3.8359375 0l-1.578125 -4.15625l0.734375 0l0.890625 2.484375q0.140625 0.40625 0.265625 0.84375q0.09375 -0.328125 0.265625 -0.796875l0.921875 -2.53125l0.71875 0l-1.5625 4.15625l-0.65625 0zm2.84375 -4.921875l0 -0.8125l0.703125 0l0 0.8125l-0.703125 0zm0 4.921875l0 -4.15625l0.703125 0l0 4.15625l-0.703125 0zm4.4804688 -1.515625l0.6875 0.078125q-0.109375 0.71875 -0.578125 1.125q-0.46875 0.40625 -1.140625 0.40625q-0.859375 0 -1.375 -0.546875q-0.515625 -0.5625 -0.515625 -1.609375q0 -0.671875 0.21875 -1.171875q0.234375 -0.5 0.6875 -0.75q0.453125 -0.265625 0.984375 -0.265625q0.671875 0 1.09375 0.34375q0.4375 0.34375 0.5625 0.96875l-0.6875 0.109375q-0.09375 -0.421875 -0.34375 -0.625q-0.25 -0.21875 -0.59375 -0.21875q-0.53125 0 -0.875 0.390625q-0.328125 0.375 -0.328125 1.203125q0 0.828125 0.3125 1.21875q0.328125 0.375 0.84375 0.375q0.421875 0 0.6875 -0.25q0.28125 -0.265625 0.359375 -0.78125zm4.140625 0.171875l0.71875 0.09375q-0.171875 0.640625 -0.640625 1.0q-0.453125 0.34375 -1.1875 0.34375q-0.90625 0 -1.4375 -0.5625q-0.53125 -0.5625 -0.53125 -1.578125q0 -1.046875 0.53125 -1.625q0.546875 -0.578125 1.40625 -0.578125q0.828125 0 1.359375 0.578125q0.53125 0.5625 0.53125 1.59375q0 0.0625 -0.015625 0.1875l-3.09375 0q0.046875 0.671875 0.390625 1.046875q0.34375 0.359375 0.875 0.359375q0.375 0 0.640625 -0.203125q0.28125 -0.203125 0.453125 -0.65625zm-2.3125 -1.125l2.3125 0q-0.046875 -0.53125 -0.265625 -0.796875q-0.328125 -0.40625 -0.875 -0.40625q-0.484375 0 -0.8125 0.328125q-0.328125 0.328125 -0.359375 0.875z" fill-rule="nonzero"/><path fill="#000000" d="m297.55414 603.5458l-0.640625 0l0 -5.734375l0.703125 0l0 2.046875q0.4375 -0.5625 1.125 -0.5625q0.390625 0 0.734375 0.15625q0.34375 0.15625 0.5625 0.4375q0.21875 0.28125 0.34375 0.671875q0.125 0.390625 0.125 0.84375q0 1.0625 -0.53125 1.65625q-0.53125 0.578125 -1.265625 0.578125q-0.734375 0 -1.15625 -0.609375l0 0.515625zm0 -2.109375q0 0.75 0.203125 1.078125q0.328125 0.546875 0.890625 0.546875q0.46875 0 0.796875 -0.390625q0.34375 -0.40625 0.34375 -1.203125q0 -0.8125 -0.328125 -1.203125q-0.3125 -0.390625 -0.78125 -0.390625q-0.453125 0 -0.796875 0.40625q-0.328125 0.40625 -0.328125 1.15625zm6.5117188 1.59375q-0.390625 0.328125 -0.75 0.46875q-0.359375 0.140625 -0.78125 0.140625q-0.671875 0 -1.046875 -0.328125q-0.359375 -0.34375 -0.359375 -0.859375q0 -0.3125 0.125 -0.5625q0.140625 -0.25 0.359375 -0.390625q0.234375 -0.15625 0.515625 -0.234375q0.203125 -0.0625 0.625 -0.109375q0.859375 -0.109375 1.25 -0.25q0.015625 -0.140625 0.015625 -0.171875q0 -0.4375 -0.203125 -0.609375q-0.265625 -0.234375 -0.796875 -0.234375q-0.5 0 -0.734375 0.171875q-0.234375 0.171875 -0.359375 0.609375l-0.6875 -0.09375q0.09375 -0.4375 0.3125 -0.703125q0.21875 -0.28125 0.625 -0.421875q0.40625 -0.15625 0.9375 -0.15625q0.53125 0 0.859375 0.125q0.34375 0.125 0.5 0.328125q0.15625 0.1875 0.21875 0.46875q0.03125 0.1875 0.03125 0.65625l0 0.9375q0 0.96875 0.046875 1.234375q0.046875 0.265625 0.171875 0.5l-0.734375 0q-0.109375 -0.21875 -0.140625 -0.515625zm-0.0625 -1.5625q-0.375 0.15625 -1.140625 0.265625q-0.4375 0.0625 -0.625 0.140625q-0.171875 0.078125 -0.265625 0.234375q-0.09375 0.140625 -0.09375 0.328125q0 0.28125 0.203125 0.46875q0.21875 0.1875 0.625 0.1875q0.40625 0 0.71875 -0.171875q0.328125 -0.1875 0.46875 -0.5q0.109375 -0.234375 0.109375 -0.703125l0 -0.25zm4.5117188 0.5625l0.6875 0.078125q-0.109375 0.71875 -0.578125 1.125q-0.46875 0.40625 -1.140625 0.40625q-0.859375 0 -1.375 -0.546875q-0.515625 -0.5625 -0.515625 -1.609375q0 -0.671875 0.21875 -1.171875q0.234375 -0.5 0.6875 -0.75q0.453125 -0.265625 0.984375 -0.265625q0.671875 0 1.09375 0.34375q0.4375 0.34375 0.5625 0.96875l-0.6875 0.109375q-0.09375 -0.421875 -0.34375 -0.625q-0.25 -0.21875 -0.59375 -0.21875q-0.53125 0 -0.875 0.390625q-0.328125 0.375 -0.328125 1.203125q0 0.828125 0.3125 1.21875q0.328125 0.375 0.84375 0.375q0.421875 0 0.6875 -0.25q0.28125 -0.265625 0.359375 -0.78125zm1.296875 1.515625l0 -5.734375l0.703125 0l0 3.265625l1.671875 -1.6875l0.90625 0l-1.59375 1.546875l1.75 2.609375l-0.859375 0l-1.375 -2.125l-0.5 0.484375l0 1.640625l-0.703125 0zm6.84375 -1.34375l0.71875 0.09375q-0.171875 0.640625 -0.640625 1.0q-0.453125 0.34375 -1.1875 0.34375q-0.90625 0 -1.4375 -0.5625q-0.53125 -0.5625 -0.53125 -1.578125q0 -1.046875 0.53125 -1.625q0.546875 -0.578125 1.40625 -0.578125q0.828125 0 1.359375 0.578125q0.53125 0.5625 0.53125 1.59375q0 0.0625 -0.015625 0.1875l-3.09375 0q0.046875 0.671875 0.390625 1.046875q0.34375 0.359375 0.875 0.359375q0.375 0 0.640625 -0.203125q0.28125 -0.203125 0.453125 -0.65625zm-2.3125 -1.125l2.3125 0q-0.046875 -0.53125 -0.265625 -0.796875q-0.328125 -0.40625 -0.875 -0.40625q-0.484375 0 -0.8125 0.328125q-0.328125 0.328125 -0.359375 0.875zm3.9179688 2.46875l0 -4.15625l0.625 0l0 0.59375q0.46875 -0.6875 1.328125 -0.6875q0.375 0 0.6875 0.140625q0.3125 0.140625 0.46875 0.359375q0.15625 0.21875 0.21875 0.515625q0.046875 0.1875 0.046875 0.6875l0 2.546875l-0.703125 0l0 -2.53125q0 -0.421875 -0.09375 -0.625q-0.078125 -0.21875 -0.296875 -0.34375q-0.203125 -0.140625 -0.484375 -0.140625q-0.4375 0 -0.765625 0.296875q-0.328125 0.28125 -0.328125 1.078125l0 2.265625l-0.703125 0zm7.1367188 0l0 -0.53125q-0.390625 0.625 -1.15625 0.625q-0.5 0 -0.921875 -0.265625q-0.40625 -0.28125 -0.640625 -0.765625q-0.21875 -0.5 -0.21875 -1.140625q0 -0.609375 0.203125 -1.109375q0.203125 -0.515625 0.609375 -0.78125q0.421875 -0.28125 0.9375 -0.28125q0.375 0 0.65625 0.171875q0.296875 0.15625 0.484375 0.40625l0 -2.0625l0.703125 0l0 5.734375l-0.65625 0zm-2.21875 -2.078125q0 0.796875 0.328125 1.203125q0.34375 0.390625 0.796875 0.390625q0.46875 0 0.78125 -0.375q0.328125 -0.375 0.328125 -1.15625q0 -0.84375 -0.328125 -1.234375q-0.328125 -0.40625 -0.8125 -0.40625q-0.46875 0 -0.78125 0.390625q-0.3125 0.375 -0.3125 1.1875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m252.5376 595.8658l30.085266 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m258.5376 595.8658l18.085266 0" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m258.5376 594.21405l-4.538086 1.6517334l4.538086 1.6517334z" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m276.62286 597.5175l4.5381165 -1.6517334l-4.5381165 -1.6517334z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m650.74805 188.60982l-170.74017 133.25984" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m650.74805 188.6098l-166.01025 129.56824" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m483.72153 316.87595l-2.5612183 4.0942383l4.5937195 -1.4900513z" fill-rule="evenodd"/><defs><linearGradient id="p.15" gradientUnits="userSpaceOnUse" gradientTransform="matrix(16.80491668350051 0.0 0.0 16.80491668350051 0.0 0.0)" spreadMethod="pad" x1="39.26344355432729" y1="22.90291888674901" x2="39.263382544654554" y2="39.707835570138776"><stop offset="0.0" stop-color="#d4e5f5"/><stop offset="1.0" stop-color="#70a4d5"/></linearGradient></defs><path fill="url(#p.15)" d="m659.8189 412.36313l0 0c0 -15.177277 12.303589 -27.480865 27.480835 -27.480865l109.920166 0l0 0c7.288391 0 14.278259 2.8952942 19.431946 8.04895c5.1536255 5.153656 8.04895 12.143524 8.04895 19.431915l0 227.4429c0 15.177246 -12.30365 27.480835 -27.480896 27.480835l-109.920166 0c-15.177246 0 -27.480835 -12.303589 -27.480835 -27.480835z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m659.8189 412.36313l0 0c0 -15.177277 12.303589 -27.480865 27.480835 -27.480865l109.920166 0l0 0c7.288391 0 14.278259 2.8952942 19.431946 8.04895c5.1536255 5.153656 8.04895 12.143524 8.04895 19.431915l0 227.4429c0 15.177246 -12.30365 27.480835 -27.480896 27.480835l-109.920166 0c-15.177246 0 -27.480835 -12.303589 -27.480835 -27.480835z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m676.80054 397.20697l137.7008 0l0 33.89444l-137.7008 0z" fill-rule="evenodd"/><path fill="#000000" d="m690.79156 420.0142l0 -11.453125l4.296875 0q1.3125 0 2.109375 0.34375q0.796875 0.34375 1.234375 1.078125q0.453125 0.71875 0.453125 1.5q0 0.734375 -0.40625 1.390625q-0.390625 0.640625 -1.1875 1.046875q1.03125 0.296875 1.59375 1.03125q0.5625 0.734375 0.5625 1.734375q0 0.8125 -0.34375 1.5q-0.34375 0.6875 -0.84375 1.0625q-0.5 0.375 -1.25 0.578125q-0.75 0.1875 -1.84375 0.1875l-4.375 0zm1.515625 -6.640625l2.484375 0q1.0 0 1.4375 -0.140625q0.578125 -0.171875 0.875 -0.5625q0.296875 -0.40625 0.296875 -1.0q0 -0.578125 -0.28125 -1.0q-0.265625 -0.4375 -0.78125 -0.59375q-0.5 -0.171875 -1.734375 -0.171875l-2.296875 0l0 3.46875zm0 5.28125l2.859375 0q0.734375 0 1.03125 -0.046875q0.515625 -0.09375 0.859375 -0.3125q0.359375 -0.21875 0.578125 -0.640625q0.234375 -0.421875 0.234375 -0.96875q0 -0.640625 -0.328125 -1.109375q-0.328125 -0.46875 -0.90625 -0.65625q-0.578125 -0.203125 -1.671875 -0.203125l-2.65625 0l0 3.9375zm14.453125 0.328125q-0.78125 0.671875 -1.5 0.953125q-0.71875 0.265625 -1.546875 0.265625q-1.375 0 -2.109375 -0.671875q-0.734375 -0.671875 -0.734375 -1.703125q0 -0.609375 0.28125 -1.109375q0.28125 -0.515625 0.71875 -0.8125q0.453125 -0.3125 1.015625 -0.46875q0.421875 -0.109375 1.25 -0.203125q1.703125 -0.203125 2.515625 -0.484375q0 -0.296875 0 -0.375q0 -0.859375 -0.390625 -1.203125q-0.546875 -0.484375 -1.609375 -0.484375q-0.984375 0 -1.46875 0.359375q-0.46875 0.34375 -0.6875 1.21875l-1.375 -0.1875q0.1875 -0.875 0.609375 -1.421875q0.4375 -0.546875 1.25 -0.828125q0.8125 -0.296875 1.875 -0.296875q1.0625 0 1.71875 0.25q0.671875 0.25 0.984375 0.625q0.3125 0.375 0.4375 0.953125q0.078125 0.359375 0.078125 1.296875l0 1.875q0 1.96875 0.078125 2.484375q0.09375 0.515625 0.359375 1.0l-1.46875 0q-0.21875 -0.4375 -0.28125 -1.03125zm-0.109375 -3.140625q-0.765625 0.3125 -2.296875 0.53125q-0.875 0.125 -1.234375 0.28125q-0.359375 0.15625 -0.5625 0.46875q-0.1875 0.296875 -0.1875 0.65625q0 0.5625 0.421875 0.9375q0.4375 0.375 1.25 0.375q0.8125 0 1.4375 -0.34375q0.640625 -0.359375 0.9375 -0.984375q0.234375 -0.46875 0.234375 -1.40625l0 -0.515625zm3.5859375 4.171875l0 -8.296875l1.265625 0l0 1.25q0.484375 -0.875 0.890625 -1.15625q0.40625 -0.28125 0.90625 -0.28125q0.703125 0 1.4375 0.453125l-0.484375 1.296875q-0.515625 -0.296875 -1.03125 -0.296875q-0.453125 0 -0.828125 0.28125q-0.359375 0.265625 -0.515625 0.765625q-0.234375 0.75 -0.234375 1.640625l0 4.34375l-1.40625 0zm9.7890625 0l0 -8.296875l1.265625 0l0 1.171875q0.90625 -1.359375 2.640625 -1.359375q0.75 0 1.375 0.265625q0.625 0.265625 0.9375 0.703125q0.3125 0.4375 0.4375 1.046875q0.078125 0.390625 0.078125 1.359375l0 5.109375l-1.40625 0l0 -5.046875q0 -0.859375 -0.171875 -1.28125q-0.15625 -0.4375 -0.578125 -0.6875q-0.40625 -0.25 -0.96875 -0.25q-0.90625 0 -1.5625 0.578125q-0.640625 0.5625 -0.640625 2.15625l0 4.53125l-1.40625 0zm14.3046875 -1.03125q-0.78125 0.671875 -1.5 0.953125q-0.71875 0.265625 -1.546875 0.265625q-1.375 0 -2.109375 -0.671875q-0.734375 -0.671875 -0.734375 -1.703125q0 -0.609375 0.28125 -1.109375q0.28125 -0.515625 0.71875 -0.8125q0.453125 -0.3125 1.015625 -0.46875q0.421875 -0.109375 1.25 -0.203125q1.703125 -0.203125 2.515625 -0.484375q0 -0.296875 0 -0.375q0 -0.859375 -0.390625 -1.203125q-0.546875 -0.484375 -1.609375 -0.484375q-0.984375 0 -1.46875 0.359375q-0.46875 0.34375 -0.6875 1.21875l-1.375 -0.1875q0.1875 -0.875 0.609375 -1.421875q0.4375 -0.546875 1.25 -0.828125q0.8125 -0.296875 1.875 -0.296875q1.0625 0 1.71875 0.25q0.671875 0.25 0.984375 0.625q0.3125 0.375 0.4375 0.953125q0.078125 0.359375 0.078125 1.296875l0 1.875q0 1.96875 0.078125 2.484375q0.09375 0.515625 0.359375 1.0l-1.46875 0q-0.21875 -0.4375 -0.28125 -1.03125zm-0.109375 -3.140625q-0.765625 0.3125 -2.296875 0.53125q-0.875 0.125 -1.234375 0.28125q-0.359375 0.15625 -0.5625 0.46875q-0.1875 0.296875 -0.1875 0.65625q0 0.5625 0.421875 0.9375q0.4375 0.375 1.25 0.375q0.8125 0 1.4375 -0.34375q0.640625 -0.359375 0.9375 -0.984375q0.234375 -0.46875 0.234375 -1.40625l0 -0.515625zm3.6015625 4.171875l0 -8.296875l1.25 0l0 1.15625q0.390625 -0.609375 1.03125 -0.96875q0.65625 -0.375 1.484375 -0.375q0.921875 0 1.515625 0.390625q0.59375 0.375 0.828125 1.0625q0.984375 -1.453125 2.5625 -1.453125q1.234375 0 1.890625 0.6875q0.671875 0.671875 0.671875 2.09375l0 5.703125l-1.390625 0l0 -5.234375q0 -0.84375 -0.140625 -1.203125q-0.140625 -0.375 -0.5 -0.59375q-0.359375 -0.234375 -0.84375 -0.234375q-0.875 0 -1.453125 0.578125q-0.578125 0.578125 -0.578125 1.859375l0 4.828125l-1.40625 0l0 -5.390625q0 -0.9375 -0.34375 -1.40625q-0.34375 -0.46875 -1.125 -0.46875q-0.59375 0 -1.09375 0.3125q-0.5 0.3125 -0.734375 0.921875q-0.21875 0.59375 -0.21875 1.71875l0 4.3125l-1.40625 0zm19.0 -2.671875l1.453125 0.171875q-0.34375 1.28125 -1.28125 1.984375q-0.921875 0.703125 -2.359375 0.703125q-1.828125 0 -2.890625 -1.125q-1.0625 -1.125 -1.0625 -3.140625q0 -2.09375 1.078125 -3.25q1.078125 -1.15625 2.796875 -1.15625q1.65625 0 2.703125 1.140625q1.0625 1.125 1.0625 3.171875q0 0.125 0 0.375l-6.1875 0q0.078125 1.375 0.765625 2.109375q0.703125 0.71875 1.734375 0.71875q0.78125 0 1.328125 -0.40625q0.546875 -0.40625 0.859375 -1.296875zm-4.609375 -2.28125l4.625 0q-0.09375 -1.046875 -0.53125 -1.5625q-0.671875 -0.8125 -1.734375 -0.8125q-0.96875 0 -1.640625 0.65625q-0.65625 0.640625 -0.71875 1.71875zm7.2734375 2.46875l1.390625 -0.21875q0.109375 0.84375 0.640625 1.296875q0.546875 0.4375 1.5 0.4375q0.96875 0 1.4375 -0.390625q0.46875 -0.40625 0.46875 -0.9375q0 -0.46875 -0.40625 -0.75q-0.296875 -0.1875 -1.4375 -0.46875q-1.546875 -0.390625 -2.15625 -0.671875q-0.59375 -0.296875 -0.90625 -0.796875q-0.296875 -0.5 -0.296875 -1.109375q0 -0.5625 0.25 -1.03125q0.25 -0.46875 0.6875 -0.78125q0.328125 -0.25 0.890625 -0.40625q0.578125 -0.171875 1.21875 -0.171875q0.984375 0 1.71875 0.28125q0.734375 0.28125 1.078125 0.765625q0.359375 0.46875 0.5 1.28125l-1.375 0.1875q-0.09375 -0.640625 -0.546875 -1.0q-0.453125 -0.359375 -1.265625 -0.359375q-0.96875 0 -1.390625 0.328125q-0.40625 0.3125 -0.40625 0.734375q0 0.28125 0.171875 0.5q0.171875 0.21875 0.53125 0.375q0.21875 0.078125 1.25 0.359375q1.484375 0.390625 2.078125 0.65625q0.59375 0.25 0.921875 0.734375q0.34375 0.484375 0.34375 1.203125q0 0.703125 -0.421875 1.328125q-0.40625 0.609375 -1.1875 0.953125q-0.765625 0.34375 -1.734375 0.34375q-1.625 0 -2.46875 -0.671875q-0.84375 -0.671875 -1.078125 -2.0zm8.5625 5.671875l0 -11.484375l1.28125 0l0 1.078125q0.453125 -0.640625 1.015625 -0.953125q0.578125 -0.3125 1.390625 -0.3125q1.0625 0 1.875 0.546875q0.8125 0.546875 1.21875 1.546875q0.421875 0.984375 0.421875 2.171875q0 1.28125 -0.46875 2.296875q-0.453125 1.015625 -1.328125 1.5625q-0.859375 0.546875 -1.828125 0.546875q-0.703125 0 -1.265625 -0.296875q-0.546875 -0.296875 -0.90625 -0.75l0 4.046875l-1.40625 0zm1.265625 -7.296875q0 1.609375 0.640625 2.375q0.65625 0.765625 1.578125 0.765625q0.9375 0 1.609375 -0.796875q0.671875 -0.796875 0.671875 -2.453125q0 -1.59375 -0.65625 -2.375q-0.65625 -0.796875 -1.5625 -0.796875q-0.890625 0 -1.59375 0.84375q-0.6875 0.84375 -0.6875 2.4375zm13.0390625 3.078125q-0.78125 0.671875 -1.5 0.953125q-0.71875 0.265625 -1.546875 0.265625q-1.375 0 -2.109375 -0.671875q-0.734375 -0.671875 -0.734375 -1.703125q0 -0.609375 0.28125 -1.109375q0.28125 -0.515625 0.71875 -0.8125q0.453125 -0.3125 1.015625 -0.46875q0.421875 -0.109375 1.25 -0.203125q1.703125 -0.203125 2.515625 -0.484375q0 -0.296875 0 -0.375q0 -0.859375 -0.390625 -1.203125q-0.546875 -0.484375 -1.609375 -0.484375q-0.984375 0 -1.46875 0.359375q-0.46875 0.34375 -0.6875 1.21875l-1.375 -0.1875q0.1875 -0.875 0.609375 -1.421875q0.4375 -0.546875 1.25 -0.828125q0.8125 -0.296875 1.875 -0.296875q1.0625 0 1.71875 0.25q0.671875 0.25 0.984375 0.625q0.3125 0.375 0.4375 0.953125q0.078125 0.359375 0.078125 1.296875l0 1.875q0 1.96875 0.078125 2.484375q0.09375 0.515625 0.359375 1.0l-1.46875 0q-0.21875 -0.4375 -0.28125 -1.03125zm-0.109375 -3.140625q-0.765625 0.3125 -2.296875 0.53125q-0.875 0.125 -1.234375 0.28125q-0.359375 0.15625 -0.5625 0.46875q-0.1875 0.296875 -0.1875 0.65625q0 0.5625 0.421875 0.9375q0.4375 0.375 1.25 0.375q0.8125 0 1.4375 -0.34375q0.640625 -0.359375 0.9375 -0.984375q0.234375 -0.46875 0.234375 -1.40625l0 -0.515625zm9.0078125 1.125l1.390625 0.1875q-0.234375 1.421875 -1.171875 2.234375q-0.921875 0.8125 -2.28125 0.8125q-1.703125 0 -2.75 -1.109375q-1.03125 -1.125 -1.03125 -3.203125q0 -1.34375 0.4375 -2.34375q0.453125 -1.015625 1.359375 -1.515625q0.921875 -0.5 1.984375 -0.5q1.359375 0 2.21875 0.6875q0.859375 0.671875 1.09375 1.9375l-1.359375 0.203125q-0.203125 -0.828125 -0.703125 -1.25q-0.484375 -0.421875 -1.1875 -0.421875q-1.0625 0 -1.734375 0.765625q-0.65625 0.75 -0.65625 2.40625q0 1.671875 0.640625 2.4375q0.640625 0.75 1.671875 0.75q0.828125 0 1.375 -0.5q0.5625 -0.515625 0.703125 -1.578125zm8.265625 0.375l1.453125 0.171875q-0.34375 1.28125 -1.28125 1.984375q-0.921875 0.703125 -2.359375 0.703125q-1.828125 0 -2.890625 -1.125q-1.0625 -1.125 -1.0625 -3.140625q0 -2.09375 1.078125 -3.25q1.078125 -1.15625 2.796875 -1.15625q1.65625 0 2.703125 1.140625q1.0625 1.125 1.0625 3.171875q0 0.125 0 0.375l-6.1875 0q0.078125 1.375 0.765625 2.109375q0.703125 0.71875 1.734375 0.71875q0.78125 0 1.328125 -0.40625q0.546875 -0.40625 0.859375 -1.296875zm-4.609375 -2.28125l4.625 0q-0.09375 -1.046875 -0.53125 -1.5625q-0.671875 -0.8125 -1.734375 -0.8125q-0.96875 0 -1.640625 0.65625q-0.65625 0.640625 -0.71875 1.71875z" fill-rule="nonzero"/><defs><linearGradient id="p.16" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.505923091393766 0.0 0.0 9.505923091393766 0.0 0.0)" spreadMethod="pad" x1="72.06199139688795" y1="59.1988576990809" x2="72.06195688324983" y2="68.70478079041202"><stop offset="0.0" stop-color="#d4e5f5"/><stop offset="1.0" stop-color="#70a4d5"/></linearGradient></defs><path fill="url(#p.16)" d="m690.6634 653.10236c3.1190796 0 5.647644 -2.5285034 5.647644 -5.647644l-5.647644 0c1.5595703 0 2.8237915 -1.2642822 2.8237915 -2.8237915c0 -1.5595703 -1.2642212 -2.8238525 -2.8237915 -2.8238525l5.647644 0l0 -73.41925l0 0c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644l78.66925 0c3.1191406 0 5.647644 2.5285034 5.647644 5.647644c0 3.1190796 -2.5285034 5.647644 -5.647644 5.647644l-5.647644 0l0 73.41925c0 3.1191406 -2.5285034 5.647644 -5.647583 5.647644zm16.942932 -84.71454l0 0c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-1.5595703 0 -2.8238525 -1.2642822 -2.8238525 -2.8238525c0 -1.5595703 1.2642822 -2.8237915 2.8238525 -2.8237915z" fill-rule="evenodd"/><defs><linearGradient id="p.17" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.505923091393766 0.0 0.0 9.505923091393766 0.0 0.0)" spreadMethod="pad" x1="72.06199139688795" y1="59.1988576990809" x2="72.06195688324983" y2="68.70478079041202"><stop offset="0.0" stop-color="#d4e5f5"/><stop offset="1.0" stop-color="#70a4d5"/></linearGradient></defs><path fill="url(#p.17)" d="m707.6063 568.3878l0 0c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-1.5595703 0 -2.8238525 -1.2642822 -2.8238525 -2.8238525c0 -1.5595703 1.2642822 -2.8237915 2.8238525 -2.8237915zm-11.295288 79.066895c0 3.1191406 -2.5285645 5.647644 -5.647644 5.647644c-3.1190796 0 -5.647644 -2.5285034 -5.647644 -5.647644c0 -3.1190796 2.5285645 -5.647644 5.647644 -5.647644l0 0c1.5595703 0 2.8237915 1.2642822 2.8237915 2.8238525c0 1.5595093 -1.2642212 2.8237915 -2.8237915 2.8237915z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m696.31104 641.80707l0 -73.41925l0 0c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644l78.66925 0c3.1191406 0 5.647644 2.5285034 5.647644 5.647644c0 3.1190796 -2.5285034 5.647644 -5.647644 5.647644l-5.647644 0l0 73.41925c0 3.1191406 -2.5285034 5.647644 -5.647583 5.647644l-78.66931 0c-3.1190796 0 -5.647644 -2.5285034 -5.647644 -5.647644c0 -3.1190796 2.5285645 -5.647644 5.647644 -5.647644zm5.647644 -79.066895l0 0c3.1190796 0 5.647644 2.5285034 5.647644 5.647644c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-1.5595703 0 -2.8238525 -1.2642822 -2.8238525 -2.8238525c0 -1.5595703 1.2642822 -2.8237915 2.8238525 -2.8237915l5.647644 0m67.37396 5.647644l-73.02161 0m-11.295288 67.77161l0 0c1.5595703 0 2.8237915 1.2642822 2.8237915 2.8238525c0 1.5595093 -1.2642212 2.8237915 -2.8237915 2.8237915l5.647644 0m-5.647644 5.647644c3.1190796 0 5.647644 -2.5285034 5.647644 -5.647644l0 -5.647644" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.2" d="m707.6063 568.3878l0 0c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-1.5595703 0 -2.8238525 -1.2642822 -2.8238525 -2.8238525c0 -1.5595703 1.2642822 -2.8237915 2.8238525 -2.8237915zm-11.295288 79.066895c0 3.1191406 -2.5285645 5.647644 -5.647644 5.647644c-3.1190796 0 -5.647644 -2.5285034 -5.647644 -5.647644c0 -3.1190796 2.5285645 -5.647644 5.647644 -5.647644l0 0c1.5595703 0 2.8237915 1.2642822 2.8237915 2.8238525c0 1.5595093 -1.2642212 2.8237915 -2.8237915 2.8237915z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m696.31104 641.80707l0 -73.41925l0 0c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644l78.66925 0c3.1191406 0 5.647644 2.5285034 5.647644 5.647644c0 3.1190796 -2.5285034 5.647644 -5.647644 5.647644l-5.647644 0l0 73.41925c0 3.1191406 -2.5285034 5.647644 -5.647583 5.647644l-78.66931 0c-3.1190796 0 -5.647644 -2.5285034 -5.647644 -5.647644c0 -3.1190796 2.5285645 -5.647644 5.647644 -5.647644zm5.647644 -79.066895l0 0c3.1190796 0 5.647644 2.5285034 5.647644 5.647644c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-1.5595703 0 -2.8238525 -1.2642822 -2.8238525 -2.8238525c0 -1.5595703 1.2642822 -2.8237915 2.8238525 -2.8237915l5.647644 0m67.37396 5.647644l-73.02161 0m-11.295288 67.77161l0 0c1.5595703 0 2.8237915 1.2642822 2.8237915 2.8238525c0 1.5595093 -1.2642212 2.8237915 -2.8237915 2.8237915l5.647644 0m-5.647644 5.647644c3.1190796 0 5.647644 -2.5285034 5.647644 -5.647644l0 -5.647644" fill-rule="evenodd"/><path fill="#000000" d="m708.07666 607.9851l0 -6.734375l-2.515625 0l0 -0.890625l6.046875 0l0 0.890625l-2.53125 0l0 6.734375l-1.0 0zm8.056152 -0.6875q-0.53125 0.453125 -1.015625 0.640625q-0.46875 0.171875 -1.015625 0.171875q-0.921875 0 -1.40625 -0.4375q-0.484375 -0.453125 -0.484375 -1.140625q0 -0.40625 0.171875 -0.734375q0.1875 -0.34375 0.484375 -0.546875q0.3125 -0.203125 0.6875 -0.3125q0.265625 -0.0625 0.828125 -0.140625q1.125 -0.125 1.671875 -0.3125q0 -0.203125 0 -0.25q0 -0.578125 -0.265625 -0.8125q-0.359375 -0.3125 -1.0625 -0.3125q-0.65625 0 -0.984375 0.234375q-0.3125 0.234375 -0.453125 0.8125l-0.921875 -0.125q0.125 -0.578125 0.40625 -0.9375q0.296875 -0.375 0.828125 -0.5625q0.546875 -0.203125 1.25 -0.203125q0.71875 0 1.15625 0.171875q0.4375 0.171875 0.640625 0.421875q0.21875 0.25 0.296875 0.640625q0.046875 0.234375 0.046875 0.859375l0 1.25q0 1.296875 0.0625 1.65625q0.0625 0.34375 0.234375 0.65625l-0.96875 0q-0.15625 -0.296875 -0.1875 -0.6875zm-0.078125 -2.078125q-0.515625 0.203125 -1.53125 0.34375q-0.578125 0.078125 -0.828125 0.1875q-0.234375 0.109375 -0.359375 0.3125q-0.125 0.1875 -0.125 0.4375q0 0.375 0.28125 0.625q0.28125 0.25 0.828125 0.25q0.53125 0 0.953125 -0.234375q0.421875 -0.234375 0.625 -0.65625q0.15625 -0.3125 0.15625 -0.9375l0 -0.328125zm2.3795776 2.765625l0 -5.53125l0.84375 0l0 0.84375q0.328125 -0.59375 0.59375 -0.78125q0.28125 -0.1875 0.609375 -0.1875q0.46875 0 0.953125 0.3125l-0.3125 0.859375q-0.34375 -0.203125 -0.6875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.234375 0.1875 -0.34375 0.515625q-0.15625 0.5 -0.15625 1.09375l0 2.890625l-0.9375 0zm3.392395 0.453125l0.90625 0.140625q0.0625 0.421875 0.328125 0.609375q0.34375 0.265625 0.9375 0.265625q0.65625 0 1.0 -0.265625q0.359375 -0.25 0.484375 -0.71875q0.078125 -0.296875 0.078125 -1.203125q-0.625 0.71875 -1.53125 0.71875q-1.140625 0 -1.765625 -0.8125q-0.625 -0.828125 -0.625 -1.984375q0 -0.78125 0.28125 -1.453125q0.296875 -0.671875 0.828125 -1.03125q0.546875 -0.375 1.28125 -0.375q0.984375 0 1.609375 0.796875l0 -0.671875l0.875 0l0 4.78125q0 1.296875 -0.265625 1.828125q-0.265625 0.546875 -0.84375 0.859375q-0.5625 0.3125 -1.390625 0.3125q-0.984375 0 -1.59375 -0.453125q-0.609375 -0.4375 -0.59375 -1.34375zm0.78125 -3.3125q0 1.078125 0.421875 1.578125q0.4375 0.5 1.078125 0.5q0.65625 0 1.09375 -0.484375q0.4375 -0.5 0.4375 -1.5625q0 -1.015625 -0.453125 -1.53125q-0.453125 -0.515625 -1.09375 -0.515625q-0.609375 0 -1.046875 0.515625q-0.4375 0.5 -0.4375 1.5zm9.098389 1.078125l0.96875 0.125q-0.234375 0.84375 -0.859375 1.3125q-0.609375 0.46875 -1.578125 0.46875q-1.203125 0 -1.921875 -0.75q-0.703125 -0.75 -0.703125 -2.09375q0 -1.390625 0.71875 -2.15625q0.71875 -0.78125 1.859375 -0.78125q1.109375 0 1.8125 0.765625q0.703125 0.75 0.703125 2.125q0 0.078125 0 0.234375l-4.125 0q0.046875 0.921875 0.515625 1.40625q0.46875 0.484375 1.15625 0.484375q0.515625 0 0.875 -0.265625q0.359375 -0.28125 0.578125 -0.875zm-3.078125 -1.515625l3.09375 0q-0.0625 -0.6875 -0.359375 -1.046875q-0.453125 -0.53125 -1.15625 -0.53125q-0.640625 0 -1.09375 0.4375q-0.4375 0.421875 -0.484375 1.140625zm7.2702026 2.453125l0.125 0.828125q-0.390625 0.09375 -0.703125 0.09375q-0.5 0 -0.78125 -0.15625q-0.28125 -0.171875 -0.40625 -0.4375q-0.109375 -0.265625 -0.109375 -1.109375l0 -3.171875l-0.6875 0l0 -0.734375l0.6875 0l0 -1.359375l0.9375 -0.5625l0 1.921875l0.9375 0l0 0.734375l-0.9375 0l0 3.234375q0 0.390625 0.046875 0.515625q0.046875 0.109375 0.15625 0.1875q0.109375 0.0625 0.328125 0.0625q0.15625 0 0.40625 -0.046875zm0.53881836 -0.8125l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm5.96875 -2.796875l0 -1.078125l1.0625 0l0 1.078125l-1.0625 0zm0 4.453125l0 -1.0625l1.0625 0l0 1.0625l-1.0625 0z" fill-rule="nonzero"/><path fill="#000000" d="m705.63916 619.32886l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm7.234375 1.65625l-2.09375 -5.53125l0.984375 0l1.1875 3.3125q0.1875 0.53125 0.359375 1.109375q0.109375 -0.4375 0.34375 -1.046875l1.21875 -3.375l0.96875 0l-2.09375 5.53125l-0.875 0zm7.40625 -2.03125l0.921875 0.125q-0.15625 0.953125 -0.78125 1.5q-0.625 0.53125 -1.53125 0.53125q-1.125 0 -1.8125 -0.734375q-0.6875 -0.75 -0.6875 -2.125q0 -0.90625 0.296875 -1.578125q0.296875 -0.671875 0.890625 -1.0q0.609375 -0.34375 1.328125 -0.34375q0.890625 0 1.46875 0.46875q0.578125 0.453125 0.734375 1.28125l-0.90625 0.140625q-0.140625 -0.546875 -0.46875 -0.828125q-0.328125 -0.28125 -0.796875 -0.28125q-0.703125 0 -1.15625 0.515625q-0.4375 0.5 -0.4375 1.59375q0 1.109375 0.421875 1.625q0.4375 0.5 1.125 0.5q0.546875 0 0.90625 -0.34375q0.375 -0.34375 0.484375 -1.046875zm1.796875 2.03125l0 -7.625l2.859375 0q0.875 0 1.40625 0.234375q0.53125 0.21875 0.828125 0.703125q0.296875 0.484375 0.296875 1.015625q0 0.484375 -0.265625 0.921875q-0.265625 0.421875 -0.796875 0.6875q0.6875 0.203125 1.0625 0.703125q0.375 0.484375 0.375 1.140625q0 0.546875 -0.234375 1.015625q-0.21875 0.453125 -0.5625 0.703125q-0.328125 0.25 -0.828125 0.375q-0.5 0.125 -1.234375 0.125l-2.90625 0zm1.015625 -4.421875l1.640625 0q0.671875 0 0.96875 -0.09375q0.375 -0.109375 0.5625 -0.375q0.203125 -0.265625 0.203125 -0.671875q0 -0.375 -0.1875 -0.65625q-0.171875 -0.296875 -0.515625 -0.40625q-0.328125 -0.109375 -1.15625 -0.109375l-1.515625 0l0 2.3125zm0 3.515625l1.890625 0q0.484375 0 0.6875 -0.03125q0.34375 -0.0625 0.578125 -0.203125q0.234375 -0.15625 0.390625 -0.421875q0.15625 -0.28125 0.15625 -0.65625q0 -0.421875 -0.21875 -0.734375q-0.21875 -0.3125 -0.609375 -0.4375q-0.390625 -0.125 -1.125 -0.125l-1.75 0l0 2.609375z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m696.31104 607.92126l-216.31497 -209.7638" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m696.31104 607.92126l-212.0076 -205.58685" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m485.45328 401.14862l-4.407715 -1.9734192l2.1080017 4.3449707z" fill-rule="evenodd"/><defs><linearGradient id="p.18" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.204532861444338 0.0 0.0 9.204532861444338 0.0 0.0)" spreadMethod="pad" x1="13.710007598295238" y1="45.172668004508544" x2="13.709974182287628" y2="54.37720086589223"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#p.18)" d="m126.19422 458.1552l21.180779 -42.36154l58.904297 0l21.18077 42.36154l-21.18077 42.36154l-58.904297 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m126.19422 458.1552l21.180779 -42.36154l58.904297 0l21.18077 42.36154l-21.18077 42.36154l-58.904297 0z" fill-rule="evenodd"/><defs><linearGradient id="p.19" gradientUnits="userSpaceOnUse" gradientTransform="matrix(3.920244289428837 0.0 0.0 3.920244289428837 0.0 0.0)" spreadMethod="pad" x1="34.210965472026515" y1="114.90891187371885" x2="34.210952395514035" y2="118.82915616312589"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#p.19)" d="m134.11534 450.47113l34.274155 0l0 15.368164l-34.274155 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m134.11534 450.47113l34.274155 0l0 15.368164l-34.274155 0z" fill-rule="evenodd"/><defs><linearGradient id="p.20" gradientUnits="userSpaceOnUse" gradientTransform="matrix(3.920244289424911 0.0 0.0 3.920244289424911 0.0 0.0)" spreadMethod="pad" x1="47.5042446800593" y1="114.90890141262395" x2="47.50423421884932" y2="118.82914570203491"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#p.20)" d="m186.22824 450.47113l34.27417 0l0 15.368164l-34.27417 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m186.22824 450.47113l34.27417 0l0 15.368164l-34.27417 0z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m168.3895 458.1552l17.83049 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m174.3895 458.1552l5.83049 0" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m174.38951 456.50348l-4.538101 1.6517334l4.538101 1.6517334z" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m180.21999 459.80695l4.538086 -1.6517334l-4.538086 -1.6517334z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m480.0 398.14172l-256.34644 184.75592" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m480.0 398.14172l-251.47893 181.24774" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m227.55531 578.0495l-2.7157898 3.9933472l4.6473083 -1.3134155z" fill-rule="evenodd"/><defs><linearGradient id="p.21" gradientUnits="userSpaceOnUse" gradientTransform="matrix(11.951568831760474 0.0 0.0 11.951568831760474 0.0 0.0)" spreadMethod="pad" x1="6.179076282902762" y1="13.593736203533323" x2="6.179032961598821" y2="25.545305035215286"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#p.21)" d="m73.849655 233.88678l35.70986 -71.41969l99.310036 0l35.70987 71.41969l-35.70987 71.41971l-99.310036 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m73.849655 233.88678l35.70986 -71.41969l99.310036 0l35.70987 71.41969l-35.70987 71.41971l-99.310036 0z" fill-rule="evenodd"/><defs><linearGradient id="p.22" gradientUnits="userSpaceOnUse" gradientTransform="matrix(5.090215077409307 0.0 0.0 5.090215077409307 0.0 0.0)" spreadMethod="pad" x1="17.131756366072793" y1="43.40318230421125" x2="17.1317382384258" y2="48.49339738158828"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#p.22)" d="m87.20432 220.93175l57.78472 0l0 25.91008l-57.78472 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m87.20432 220.93175l57.78472 0l0 25.91008l-57.78472 0z" fill-rule="evenodd"/><path fill="#000000" d="m105.62012 236.56679l0 -5.734375l4.140625 0l0 0.6875l-3.390625 0l0 1.75l3.171875 0l0 0.671875l-3.171875 0l0 1.953125l3.515625 0l0 0.671875l-4.265625 0zm5.2265625 0l0 -4.15625l0.625 0l0 0.59375q0.46875 -0.6875 1.328125 -0.6875q0.375 0 0.6875 0.140625q0.3125 0.140625 0.46875 0.359375q0.15625 0.21875 0.21875 0.515625q0.046875 0.1875 0.046875 0.6875l0 2.546875l-0.703125 0l0 -2.53125q0 -0.421875 -0.09375 -0.625q-0.078125 -0.21875 -0.296875 -0.34375q-0.203125 -0.140625 -0.484375 -0.140625q-0.4375 0 -0.765625 0.296875q-0.328125 0.28125 -0.328125 1.078125l0 2.265625l-0.703125 0zm5.6054688 0l-1.578125 -4.15625l0.734375 0l0.890625 2.484375q0.140625 0.40625 0.265625 0.84375q0.09375 -0.328125 0.265625 -0.796875l0.921875 -2.53125l0.71875 0l-1.5625 4.15625l-0.65625 0zm2.578125 -2.078125q0 -1.15625 0.6406326 -1.703125q0.53125 -0.46875 1.3125 -0.46875q0.84375 0 1.390625 0.5625q0.546875 0.5625 0.546875 1.546875q0 0.8125 -0.25 1.265625q-0.234375 0.453125 -0.703125 0.71875q-0.453125 0.25 -0.984375 0.25q-0.875 0 -1.421875 -0.5625q-0.5312576 -0.5625 -0.5312576 -1.609375zm0.7187576 0q0 0.796875 0.34375 1.203125q0.359375 0.390625 0.890625 0.390625q0.515625 0 0.859375 -0.390625q0.359375 -0.40625 0.359375 -1.21875q0 -0.78125 -0.359375 -1.171875q-0.34375 -0.390625 -0.859375 -0.390625q-0.53125 0 -0.890625 0.390625q-0.34375 0.390625 -0.34375 1.1875zm3.9648438 3.671875l-0.078125 -0.65625q0.234375 0.0625 0.40625 0.0625q0.234375 0 0.375 -0.078125q0.140625 -0.078125 0.21875 -0.21875q0.078125 -0.109375 0.21875 -0.515625q0.015625 -0.0625 0.0625 -0.171875l-1.578125 -4.171875l0.765625 0l0.859375 2.40625q0.171875 0.453125 0.296875 0.96875q0.125 -0.484375 0.296875 -0.953125l0.890625 -2.421875l0.703125 0l-1.578125 4.234375q-0.265625 0.671875 -0.40625 0.9375q-0.1875 0.34375 -0.4375 0.5q-0.234375 0.171875 -0.5625 0.171875q-0.203125 0 -0.453125 -0.09375z" fill-rule="nonzero"/><defs><linearGradient id="p.23" gradientUnits="userSpaceOnUse" gradientTransform="matrix(5.090215077413094 0.0 0.0 5.090215077413094 0.0 0.0)" spreadMethod="pad" x1="34.392335848391966" y1="43.40318230417896" x2="34.39231570656197" y2="48.49339738155221"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#p.23)" d="m175.06438 220.93175l57.78473 0l0 25.91008l-57.78473 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m175.06438 220.93175l57.78473 0l0 25.91008l-57.78473 0z" fill-rule="evenodd"/><path fill="#000000" d="m190.97823 229.72304l0.71875 -0.0625q0.046875 0.4375 0.234375 0.71875q0.1875 0.265625 0.578125 0.4375q0.390625 0.171875 0.875 0.171875q0.4375 0 0.765625 -0.125q0.328125 -0.140625 0.484375 -0.359375q0.171875 -0.234375 0.171875 -0.5q0 -0.265625 -0.15625 -0.46875q-0.15625 -0.203125 -0.515625 -0.328125q-0.234375 -0.09375 -1.03125 -0.28125q-0.78125 -0.1875 -1.09375 -0.359375q-0.40625 -0.21875 -0.609375 -0.53125q-0.203125 -0.328125 -0.203125 -0.71875q0 -0.4375 0.25 -0.8125q0.25 -0.375 0.71875 -0.5625q0.46875 -0.203125 1.046875 -0.203125q0.640625 0 1.125 0.203125q0.484375 0.203125 0.75 0.609375q0.265625 0.390625 0.28125 0.90625l-0.734375 0.046875q-0.046875 -0.546875 -0.390625 -0.8125q-0.34375 -0.28125 -1.0 -0.28125q-0.6875 0 -1.0 0.25q-0.3125 0.25 -0.3125 0.609375q0 0.3125 0.21875 0.5q0.21875 0.203125 1.140625 0.421875q0.921875 0.203125 1.265625 0.359375q0.5 0.234375 0.734375 0.59375q0.25 0.34375 0.25 0.796875q0 0.46875 -0.265625 0.875q-0.265625 0.390625 -0.75 0.625q-0.484375 0.21875 -1.109375 0.21875q-0.765625 0 -1.296875 -0.21875q-0.53125 -0.234375 -0.828125 -0.6875q-0.296875 -0.453125 -0.3125 -1.03125zm8.3515625 0.5l0.71875 0.09375q-0.171875 0.640625 -0.640625 1.0q-0.453125 0.34375 -1.1875 0.34375q-0.90625 0 -1.4375 -0.5625q-0.53125 -0.5625 -0.53125 -1.578125q0 -1.046875 0.53125 -1.625q0.546875 -0.578125 1.40625 -0.578125q0.828125 0 1.359375 0.578125q0.53125 0.5625 0.53125 1.59375q0 0.0625 -0.015625 0.1875l-3.09375 0q0.046875 0.671875 0.390625 1.046875q0.34375 0.359375 0.875 0.359375q0.375 0 0.640625 -0.203125q0.28125 -0.203125 0.453125 -0.65625zm-2.3125 -1.125l2.3125 0q-0.046875 -0.53125 -0.265625 -0.796875q-0.328125 -0.40625 -0.875 -0.40625q-0.484375 0 -0.8125 0.328125q-0.328125 0.328125 -0.359375 0.875zm3.9023438 2.46875l0 -4.15625l0.640625 0l0 0.640625q0.234375 -0.453125 0.4375 -0.59375q0.21875 -0.140625 0.453125 -0.140625q0.359375 0 0.734375 0.234375l-0.25 0.65625q-0.25 -0.15625 -0.515625 -0.15625q-0.234375 0 -0.421875 0.140625q-0.171875 0.140625 -0.25 0.375q-0.125 0.375 -0.125 0.828125l0 2.171875l-0.703125 0zm3.8359375 0l-1.578125 -4.15625l0.734375 0l0.890625 2.484375q0.140625 0.40625 0.265625 0.84375q0.09375 -0.328125 0.265625 -0.796875l0.921875 -2.53125l0.71875 0l-1.5625 4.15625l-0.65625 0zm2.84375 -4.921875l0 -0.8125l0.703125 0l0 0.8125l-0.703125 0zm0 4.921875l0 -4.15625l0.703125 0l0 4.15625l-0.703125 0zm4.4804688 -1.515625l0.6875 0.078125q-0.109375 0.71875 -0.578125 1.125q-0.46875 0.40625 -1.140625 0.40625q-0.859375 0 -1.375 -0.546875q-0.515625 -0.5625 -0.515625 -1.609375q0 -0.671875 0.21875 -1.171875q0.234375 -0.5 0.6875 -0.75q0.453125 -0.265625 0.984375 -0.265625q0.671875 0 1.09375 0.34375q0.4375 0.34375 0.5625 0.96875l-0.6875 0.109375q-0.09375 -0.421875 -0.34375 -0.625q-0.25 -0.21875 -0.59375 -0.21875q-0.53125 0 -0.875 0.390625q-0.328125 0.375 -0.328125 1.203125q0 0.828125 0.3125 1.21875q0.328125 0.375 0.84375 0.375q0.421875 0 0.6875 -0.25q0.28125 -0.265625 0.359375 -0.78125zm4.140625 0.171875l0.71875 0.09375q-0.171875 0.640625 -0.640625 1.0q-0.453125 0.34375 -1.1875 0.34375q-0.90625 0 -1.4375 -0.5625q-0.53125 -0.5625 -0.53125 -1.578125q0 -1.046875 0.53125 -1.625q0.546875 -0.578125 1.40625 -0.578125q0.828125 0 1.359375 0.578125q0.53125 0.5625 0.53125 1.59375q0 0.0625 -0.015625 0.1875l-3.09375 0q0.046875 0.671875 0.390625 1.046875q0.34375 0.359375 0.875 0.359375q0.375 0 0.640625 -0.203125q0.28125 -0.203125 0.453125 -0.65625zm-2.3125 -1.125l2.3125 0q-0.046875 -0.53125 -0.265625 -0.796875q-0.328125 -0.40625 -0.875 -0.40625q-0.484375 0 -0.8125 0.328125q-0.328125 0.328125 -0.359375 0.875z" fill-rule="nonzero"/><path fill="#000000" d="m190.00557 241.56679l-0.640625 0l0 -5.734375l0.703125 0l0 2.046875q0.4375 -0.5625 1.125 -0.5625q0.390625 0 0.734375 0.15625q0.34375 0.15625 0.5625 0.4375q0.21875 0.28125 0.34375 0.671875q0.125 0.390625 0.125 0.84375q0 1.0625 -0.53125 1.65625q-0.53125 0.578125 -1.265625 0.578125q-0.734375 0 -1.15625 -0.609375l0 0.515625zm0 -2.109375q0 0.75 0.203125 1.078125q0.328125 0.546875 0.890625 0.546875q0.46875 0 0.796875 -0.390625q0.34375 -0.40625 0.34375 -1.203125q0 -0.8125 -0.328125 -1.203125q-0.3125 -0.390625 -0.78125 -0.390625q-0.453125 0 -0.796875 0.40625q-0.328125 0.40625 -0.328125 1.15625zm6.5117188 1.59375q-0.390625 0.328125 -0.75 0.46875q-0.359375 0.140625 -0.78125 0.140625q-0.671875 0 -1.046875 -0.328125q-0.359375 -0.34375 -0.359375 -0.859375q0 -0.3125 0.125 -0.5625q0.140625 -0.25 0.359375 -0.390625q0.234375 -0.15625 0.515625 -0.234375q0.203125 -0.0625 0.625 -0.109375q0.859375 -0.109375 1.25 -0.25q0.015625 -0.140625 0.015625 -0.171875q0 -0.4375 -0.203125 -0.609375q-0.265625 -0.234375 -0.796875 -0.234375q-0.5 0 -0.734375 0.171875q-0.234375 0.171875 -0.359375 0.609375l-0.6875 -0.09375q0.09375 -0.4375 0.3125 -0.703125q0.21875 -0.28125 0.625 -0.421875q0.40625 -0.15625 0.9375 -0.15625q0.53125 0 0.859375 0.125q0.34375 0.125 0.5 0.328125q0.15625 0.1875 0.21875 0.46875q0.03125 0.1875 0.03125 0.65625l0 0.9375q0 0.96875 0.046875 1.234375q0.046875 0.265625 0.171875 0.5l-0.734375 0q-0.109375 -0.21875 -0.140625 -0.515625zm-0.0625 -1.5625q-0.375 0.15625 -1.140625 0.265625q-0.4375 0.0625 -0.625 0.140625q-0.171875 0.078125 -0.265625 0.234375q-0.09375 0.140625 -0.09375 0.328125q0 0.28125 0.203125 0.46875q0.21875 0.1875 0.625 0.1875q0.40625 0 0.71875 -0.171875q0.328125 -0.1875 0.46875 -0.5q0.109375 -0.234375 0.109375 -0.703125l0 -0.25zm4.5117188 0.5625l0.6875 0.078125q-0.109375 0.71875 -0.578125 1.125q-0.46875 0.40625 -1.140625 0.40625q-0.859375 0 -1.375 -0.546875q-0.515625 -0.5625 -0.515625 -1.609375q0 -0.671875 0.21875 -1.171875q0.234375 -0.5 0.6875 -0.75q0.453125 -0.265625 0.984375 -0.265625q0.671875 0 1.09375 0.34375q0.4375 0.34375 0.5625 0.96875l-0.6875 0.109375q-0.09375 -0.421875 -0.34375 -0.625q-0.25 -0.21875 -0.59375 -0.21875q-0.53125 0 -0.875 0.390625q-0.328125 0.375 -0.328125 1.203125q0 0.828125 0.3125 1.21875q0.328125 0.375 0.84375 0.375q0.421875 0 0.6875 -0.25q0.28125 -0.265625 0.359375 -0.78125zm1.296875 1.515625l0 -5.734375l0.703125 0l0 3.265625l1.671875 -1.6875l0.90625 0l-1.59375 1.546875l1.75 2.609375l-0.859375 0l-1.375 -2.125l-0.5 0.484375l0 1.640625l-0.703125 0zm6.84375 -1.34375l0.71875 0.09375q-0.171875 0.640625 -0.640625 1.0q-0.453125 0.34375 -1.1875 0.34375q-0.90625 0 -1.4375 -0.5625q-0.53125 -0.5625 -0.53125 -1.578125q0 -1.046875 0.53125 -1.625q0.546875 -0.578125 1.40625 -0.578125q0.828125 0 1.359375 0.578125q0.53125 0.5625 0.53125 1.59375q0 0.0625 -0.015625 0.1875l-3.09375 0q0.046875 0.671875 0.390625 1.046875q0.34375 0.359375 0.875 0.359375q0.375 0 0.640625 -0.203125q0.28125 -0.203125 0.453125 -0.65625zm-2.3125 -1.125l2.3125 0q-0.046875 -0.53125 -0.265625 -0.796875q-0.328125 -0.40625 -0.875 -0.40625q-0.484375 0 -0.8125 0.328125q-0.328125 0.328125 -0.359375 0.875zm3.9179688 2.46875l0 -4.15625l0.625 0l0 0.59375q0.46875 -0.6875 1.328125 -0.6875q0.375 0 0.6875 0.140625q0.3125 0.140625 0.46875 0.359375q0.15625 0.21875 0.21875 0.515625q0.046875 0.1875 0.046875 0.6875l0 2.546875l-0.703125 0l0 -2.53125q0 -0.421875 -0.09375 -0.625q-0.078125 -0.21875 -0.296875 -0.34375q-0.203125 -0.140625 -0.484375 -0.140625q-0.4375 0 -0.765625 0.296875q-0.328125 0.28125 -0.328125 1.078125l0 2.265625l-0.703125 0zm7.1367188 0l0 -0.53125q-0.390625 0.625 -1.15625 0.625q-0.5 0 -0.921875 -0.265625q-0.40625 -0.28125 -0.640625 -0.765625q-0.21875 -0.5 -0.21875 -1.140625q0 -0.609375 0.203125 -1.109375q0.203125 -0.515625 0.609375 -0.78125q0.421875 -0.28125 0.9375 -0.28125q0.375 0 0.65625 0.171875q0.296875 0.15625 0.484375 0.40625l0 -2.0625l0.703125 0l0 5.734375l-0.65625 0zm-2.21875 -2.078125q0 0.796875 0.328125 1.203125q0.34375 0.390625 0.796875 0.390625q0.46875 0 0.78125 -0.375q0.328125 -0.375 0.328125 -1.15625q0 -0.84375 -0.328125 -1.234375q-0.328125 -0.40625 -0.8125 -0.40625q-0.46875 0 -0.78125 0.390625q-0.3125 0.375 -0.3125 1.1875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m144.98904 233.88678l30.085281 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m150.98904 233.8868l18.085266 0" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m150.98904 232.23506l-4.538101 1.6517334l4.538101 1.6517334z" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m169.07431 235.53853l4.538101 -1.6517334l-4.538101 -1.6517334z" fill-rule="evenodd"/><defs><linearGradient id="p.24" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.204533975311191 0.0 0.0 9.204533975311191 0.0 0.0)" spreadMethod="pad" x1="19.707564839001073" y1="6.799185434178105" x2="19.707531422997505" y2="16.00371940942864"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#p.24)" d="m181.39894 104.945244l21.180786 -42.361546l58.90428 0l21.180786 42.361546l-21.180786 42.361534l-58.90428 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m181.39894 104.945244l21.180786 -42.361546l58.90428 0l21.180786 42.361546l-21.180786 42.361534l-58.90428 0z" fill-rule="evenodd"/><defs><linearGradient id="p.25" gradientUnits="userSpaceOnUse" gradientTransform="matrix(3.920244289433635 0.0 0.0 3.920244289433635 0.0 0.0)" spreadMethod="pad" x1="48.29292576161352" y1="24.80993897081189" x2="48.292910069798545" y2="28.73018326021412"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#p.25)" d="m189.32007 97.26115l34.274155 0l0 15.368187l-34.274155 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m189.32007 97.26115l34.274155 0l0 15.368187l-34.274155 0z" fill-rule="evenodd"/><defs><linearGradient id="p.26" gradientUnits="userSpaceOnUse" gradientTransform="matrix(3.92024298178217 0.0 0.0 3.92024298178217 0.0 0.0)" spreadMethod="pad" x1="61.586225512516044" y1="24.809947246511435" x2="61.58620982069584" y2="28.7301902282622"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#p.26)" d="m241.43297 97.26115l34.274155 0l0 15.368187l-34.274155 0z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m241.43297 97.26115l34.274155 0l0 15.368187l-34.274155 0z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m223.59422 104.945244l17.83049 0" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m229.59422 104.945244l5.830475 0" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m229.59422 103.29351l-4.538101 1.6517334l4.538101 1.6517258z" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m235.4247 106.59697l4.538101 -1.6517258l-4.538101 -1.6517334z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m480.0 321.85828l-363.90552 -75.023636" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m480.0 321.85828l-358.0291 -73.81213" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.0" stroke-linecap="butt" d="m122.30441 246.42844l-4.778137 0.7013855l4.1111145 2.534027z" fill-rule="evenodd"/><defs><linearGradient id="p.27" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.505923091393766 0.0 0.0 9.505923091393766 0.0 0.0)" spreadMethod="pad" x1="75.5578260308426" y1="46.848497436915544" x2="75.55779151720449" y2="56.354420528246656"><stop offset="0.0" stop-color="#d4e5f5"/><stop offset="1.0" stop-color="#70a4d5"/></linearGradient></defs><path fill="url(#p.27)" d="m723.8946 535.7008c3.1190796 0 5.647644 -2.5285645 5.647644 -5.647644l-5.647644 0c1.5595093 0 2.8237915 -1.2642822 2.8237915 -2.8238525c0 -1.5595093 -1.2642822 -2.8237915 -2.8237915 -2.8237915l5.647644 0l0 -73.41931l0 0c0 -3.1190796 2.5285034 -5.6476135 5.647644 -5.6476135l72.87396 0c3.1191406 0 5.647644 2.528534 5.647644 5.6476135c0 3.11911 -2.5285034 5.647644 -5.647644 5.647644l-5.647583 0l0 73.41931c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644zm16.942871 -84.7146l0 0c0 3.11911 -2.5285034 5.647644 -5.647583 5.647644c-1.5595703 0 -2.8238525 -1.2642517 -2.8238525 -2.823822c0 -1.5595398 1.2642822 -2.823822 2.8238525 -2.823822z" fill-rule="evenodd"/><defs><linearGradient id="p.28" gradientUnits="userSpaceOnUse" gradientTransform="matrix(9.505923091393766 0.0 0.0 9.505923091393766 0.0 0.0)" spreadMethod="pad" x1="75.5578260308426" y1="46.848497436915544" x2="75.55779151720449" y2="56.354420528246656"><stop offset="0.0" stop-color="#d4e5f5"/><stop offset="1.0" stop-color="#70a4d5"/></linearGradient></defs><path fill="url(#p.28)" d="m740.83746 450.9862l0 0c0 3.11911 -2.5285034 5.647644 -5.647583 5.647644c-1.5595703 0 -2.8238525 -1.2642517 -2.8238525 -2.823822c0 -1.5595398 1.2642822 -2.823822 2.8238525 -2.823822zm-11.295227 79.066956c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-3.1191406 0 -5.647644 -2.5285645 -5.647644 -5.647644c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644l0 0c1.5595093 0 2.8237915 1.2642822 2.8237915 2.8237915c0 1.5595703 -1.2642822 2.8238525 -2.8237915 2.8238525z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m729.54224 524.4055l0 -73.41931l0 0c0 -3.1190796 2.5285034 -5.6476135 5.647644 -5.6476135l72.87396 0c3.1191406 0 5.647644 2.528534 5.647644 5.6476135c0 3.11911 -2.5285034 5.647644 -5.647644 5.647644l-5.647583 0l0 73.41931c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644l-72.87402 0c-3.1191406 0 -5.647644 -2.5285645 -5.647644 -5.647644c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644zm5.647644 -79.066925l0 0c3.1190796 0 5.647583 2.528534 5.647583 5.6476135c0 3.11911 -2.5285034 5.647644 -5.647583 5.647644c-1.5595703 0 -2.8238525 -1.2642517 -2.8238525 -2.823822c0 -1.5595398 1.2642822 -2.823822 2.8238525 -2.823822l5.647583 0m61.578796 5.647644l-67.22638 0m-11.295288 67.77167l0 0c1.5595093 0 2.8237915 1.2642822 2.8237915 2.8237915c0 1.5595703 -1.2642822 2.8238525 -2.8237915 2.8238525l5.647644 0m-5.647644 5.647644c3.1190796 0 5.647644 -2.5285645 5.647644 -5.647644l0 -5.647644" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.2" d="m740.83746 450.9862l0 0c0 3.11911 -2.5285034 5.647644 -5.647583 5.647644c-1.5595703 0 -2.8238525 -1.2642517 -2.8238525 -2.823822c0 -1.5595398 1.2642822 -2.823822 2.8238525 -2.823822zm-11.295227 79.066956c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644c-3.1191406 0 -5.647644 -2.5285645 -5.647644 -5.647644c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644l0 0c1.5595093 0 2.8237915 1.2642822 2.8237915 2.8237915c0 1.5595703 -1.2642822 2.8238525 -2.8237915 2.8238525z" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m729.54224 524.4055l0 -73.41931l0 0c0 -3.1190796 2.5285034 -5.6476135 5.647644 -5.6476135l72.87396 0c3.1191406 0 5.647644 2.528534 5.647644 5.6476135c0 3.11911 -2.5285034 5.647644 -5.647644 5.647644l-5.647583 0l0 73.41931c0 3.1190796 -2.5285645 5.647644 -5.647644 5.647644l-72.87402 0c-3.1191406 0 -5.647644 -2.5285645 -5.647644 -5.647644c0 -3.1191406 2.5285034 -5.647644 5.647644 -5.647644zm5.647644 -79.066925l0 0c3.1190796 0 5.647583 2.528534 5.647583 5.6476135c0 3.11911 -2.5285034 5.647644 -5.647583 5.647644c-1.5595703 0 -2.8238525 -1.2642517 -2.8238525 -2.823822c0 -1.5595398 1.2642822 -2.823822 2.8238525 -2.823822l5.647583 0m61.578796 5.647644l-67.22638 0m-11.295288 67.77167l0 0c1.5595093 0 2.8237915 1.2642822 2.8237915 2.8237915c0 1.5595703 -1.2642822 2.8238525 -2.8237915 2.8238525l5.647644 0m-5.647644 5.647644c3.1190796 0 5.647644 -2.5285645 5.647644 -5.647644l0 -5.647644" fill-rule="evenodd"/><path fill="#000000" d="m741.30786 497.0835l0 -6.734375l-2.515625 0l0 -0.890625l6.046875 0l0 0.890625l-2.53125 0l0 6.734375l-1.0 0zm8.056091 -0.6875q-0.53125 0.453125 -1.015625 0.640625q-0.46875 0.171875 -1.015625 0.171875q-0.921875 0 -1.40625 -0.4375q-0.484375 -0.453125 -0.484375 -1.140625q0 -0.40625 0.171875 -0.734375q0.1875 -0.34375 0.484375 -0.546875q0.3125 -0.203125 0.6875 -0.3125q0.265625 -0.0625 0.828125 -0.140625q1.125 -0.125 1.671875 -0.3125q0 -0.203125 0 -0.25q0 -0.578125 -0.265625 -0.8125q-0.359375 -0.3125 -1.0625 -0.3125q-0.65625 0 -0.984375 0.234375q-0.3125 0.234375 -0.453125 0.8125l-0.921875 -0.125q0.125 -0.578125 0.40625 -0.9375q0.296875 -0.375 0.828125 -0.5625q0.546875 -0.203125 1.25 -0.203125q0.71875 0 1.15625 0.171875q0.4375 0.171875 0.640625 0.421875q0.21875 0.25 0.296875 0.640625q0.046875 0.234375 0.046875 0.859375l0 1.25q0 1.296875 0.0625 1.65625q0.0625 0.34375 0.234375 0.65625l-0.96875 0q-0.15625 -0.296875 -0.1875 -0.6875zm-0.078125 -2.078125q-0.515625 0.203125 -1.53125 0.34375q-0.578125 0.078125 -0.828125 0.1875q-0.234375 0.109375 -0.359375 0.3125q-0.125 0.1875 -0.125 0.4375q0 0.375 0.28125 0.625q0.28125 0.25 0.828125 0.25q0.53125 0 0.953125 -0.234375q0.421875 -0.234375 0.625 -0.65625q0.15625 -0.3125 0.15625 -0.9375l0 -0.328125zm2.3796387 2.765625l0 -5.53125l0.84375 0l0 0.84375q0.328125 -0.59375 0.59375 -0.78125q0.28125 -0.1875 0.609375 -0.1875q0.46875 0 0.953125 0.3125l-0.3125 0.859375q-0.34375 -0.203125 -0.6875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.234375 0.1875 -0.34375 0.515625q-0.15625 0.5 -0.15625 1.09375l0 2.890625l-0.9375 0zm3.392395 0.453125l0.90625 0.140625q0.0625 0.421875 0.328125 0.609375q0.34375 0.265625 0.9375 0.265625q0.65625 0 1.0 -0.265625q0.359375 -0.25 0.484375 -0.71875q0.078125 -0.296875 0.078125 -1.203125q-0.625 0.71875 -1.53125 0.71875q-1.140625 0 -1.765625 -0.8125q-0.625 -0.828125 -0.625 -1.984375q0 -0.78125 0.28125 -1.453125q0.296875 -0.671875 0.828125 -1.03125q0.546875 -0.375 1.28125 -0.375q0.984375 0 1.609375 0.796875l0 -0.671875l0.875 0l0 4.78125q0 1.296875 -0.265625 1.828125q-0.265625 0.546875 -0.84375 0.859375q-0.5625 0.3125 -1.390625 0.3125q-0.984375 0 -1.59375 -0.453125q-0.609375 -0.4375 -0.59375 -1.34375zm0.78125 -3.3125q0 1.078125 0.421875 1.578125q0.4375 0.5 1.078125 0.5q0.65625 0 1.09375 -0.484375q0.4375 -0.5 0.4375 -1.5625q0 -1.015625 -0.453125 -1.53125q-0.453125 -0.515625 -1.09375 -0.515625q-0.609375 0 -1.046875 0.515625q-0.4375 0.5 -0.4375 1.5zm9.098328 1.078125l0.96875 0.125q-0.234375 0.84375 -0.859375 1.3125q-0.609375 0.46875 -1.578125 0.46875q-1.203125 0 -1.921875 -0.75q-0.703125 -0.75 -0.703125 -2.09375q0 -1.390625 0.71875 -2.15625q0.71875 -0.78125 1.859375 -0.78125q1.109375 0 1.8125 0.765625q0.703125 0.75 0.703125 2.125q0 0.078125 0 0.234375l-4.125 0q0.046875 0.921875 0.515625 1.40625q0.46875 0.484375 1.15625 0.484375q0.515625 0 0.875 -0.265625q0.359375 -0.28125 0.578125 -0.875zm-3.078125 -1.515625l3.09375 0q-0.0625 -0.6875 -0.359375 -1.046875q-0.453125 -0.53125 -1.15625 -0.53125q-0.640625 0 -1.09375 0.4375q-0.4375 0.421875 -0.484375 1.140625zm7.2702637 2.453125l0.125 0.828125q-0.390625 0.09375 -0.703125 0.09375q-0.5 0 -0.78125 -0.15625q-0.28125 -0.171875 -0.40625 -0.4375q-0.109375 -0.265625 -0.109375 -1.109375l0 -3.171875l-0.6875 0l0 -0.734375l0.6875 0l0 -1.359375l0.9375 -0.5625l0 1.921875l0.9375 0l0 0.734375l-0.9375 0l0 3.234375q0 0.390625 0.046875 0.515625q0.046875 0.109375 0.15625 0.1875q0.109375 0.0625 0.328125 0.0625q0.15625 0 0.40625 -0.046875zm0.5387573 -0.8125l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm5.96875 -2.796875l0 -1.078125l1.0625 0l0 1.078125l-1.0625 0zm0 4.453125l0 -1.0625l1.0625 0l0 1.0625l-1.0625 0zm9.265076 -0.6875q-0.53125 0.453125 -1.015625 0.640625q-0.46875 0.171875 -1.015625 0.171875q-0.921875 0 -1.40625 -0.4375q-0.484375 -0.453125 -0.484375 -1.140625q0 -0.40625 0.171875 -0.734375q0.1875 -0.34375 0.484375 -0.546875q0.3125 -0.203125 0.6875 -0.3125q0.265625 -0.0625 0.828125 -0.140625q1.125 -0.125 1.671875 -0.3125q0 -0.203125 0 -0.25q0 -0.578125 -0.265625 -0.8125q-0.359375 -0.3125 -1.0625 -0.3125q-0.65625 0 -0.984375 0.234375q-0.3125 0.234375 -0.453125 0.8125l-0.921875 -0.125q0.125 -0.578125 0.40625 -0.9375q0.296875 -0.375 0.828125 -0.5625q0.546875 -0.203125 1.25 -0.203125q0.71875 0 1.15625 0.171875q0.4375 0.171875 0.640625 0.421875q0.21875 0.25 0.296875 0.640625q0.046875 0.234375 0.046875 0.859375l0 1.25q0 1.296875 0.0625 1.65625q0.0625 0.34375 0.234375 0.65625l-0.96875 0q-0.15625 -0.296875 -0.1875 -0.6875zm-0.078125 -2.078125q-0.515625 0.203125 -1.53125 0.34375q-0.578125 0.078125 -0.828125 0.1875q-0.234375 0.109375 -0.359375 0.3125q-0.125 0.1875 -0.125 0.4375q0 0.375 0.28125 0.625q0.28125 0.25 0.828125 0.25q0.53125 0 0.953125 -0.234375q0.421875 -0.234375 0.625 -0.65625q0.15625 -0.3125 0.15625 -0.9375l0 -0.328125zm2.3796387 2.765625l0 -7.625l0.9375 0l0 7.625l-0.9375 0zm2.3674316 0l0 -7.625l0.9375 0l0 7.625l-0.9375 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m240.88977 620.90027l51.748016 0l0 17.543274l-51.748016 0z" fill-rule="evenodd"/><path fill="#000000" d="m255.5459 631.7557l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm7.234375 1.65625l-2.09375 -5.53125l0.984375 0l1.1875 3.3125q0.1875 0.53125 0.359375 1.109375q0.109375 -0.4375 0.34375 -1.046875l1.21875 -3.375l0.96875 0l-2.09375 5.53125l-0.875 0zm7.40625 -2.03125l0.921875 0.125q-0.15625 0.953125 -0.78125 1.5q-0.625 0.53125 -1.53125 0.53125q-1.125 0 -1.8125 -0.734375q-0.6875 -0.75 -0.6875 -2.125q0 -0.90625 0.296875 -1.578125q0.296875 -0.671875 0.890625 -1.0q0.609375 -0.34375 1.328125 -0.34375q0.890625 0 1.46875 0.46875q0.578125 0.453125 0.734375 1.28125l-0.90625 0.140625q-0.140625 -0.546875 -0.46875 -0.828125q-0.328125 -0.28125 -0.796875 -0.28125q-0.703125 0 -1.15625 0.515625q-0.4375 0.5 -0.4375 1.59375q0 1.109375 0.421875 1.625q0.4375 0.5 1.125 0.5q0.546875 0 0.90625 -0.34375q0.375 -0.34375 0.484375 -1.046875zm1.796875 2.03125l0 -7.625l2.859375 0q0.875 0 1.40625 0.234375q0.53125 0.21875 0.828125 0.703125q0.296875 0.484375 0.296875 1.015625q0 0.484375 -0.265625 0.921875q-0.265625 0.421875 -0.796875 0.6875q0.6875 0.203125 1.0625 0.703125q0.375 0.484375 0.375 1.140625q0 0.546875 -0.234375 1.015625q-0.21875 0.453125 -0.5625 0.703125q-0.328125 0.25 -0.828125 0.375q-0.5 0.125 -1.234375 0.125l-2.90625 0zm1.015625 -4.421875l1.640625 0q0.671875 0 0.96875 -0.09375q0.375 -0.109375 0.5625 -0.375q0.203125 -0.265625 0.203125 -0.671875q0 -0.375 -0.1875 -0.65625q-0.171875 -0.296875 -0.515625 -0.40625q-0.328125 -0.109375 -1.15625 -0.109375l-1.515625 0l0 2.3125zm0 3.515625l1.890625 0q0.484375 0 0.6875 -0.03125q0.34375 -0.0625 0.578125 -0.203125q0.234375 -0.15625 0.390625 -0.421875q0.15625 -0.28125 0.15625 -0.65625q0 -0.421875 -0.21875 -0.734375q-0.21875 -0.3125 -0.609375 -0.4375q-0.390625 -0.125 -1.125 -0.125l-1.75 0l0 2.609375z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m729.54224 490.51968l-249.54333 -92.37796" fill-rule="evenodd"/><path stroke="#990000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m729.54224 490.51968l-243.9165 -90.29498" fill-rule="evenodd"/><path fill="#990000" stroke="#990000" stroke-width="1.0" stroke-linecap="butt" d="m486.19913 398.67572l-4.829254 -0.02645874l3.682434 3.1244507z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m480.0 398.14172l-328.75592 52.314972" fill-rule="evenodd"/><path stroke="#990000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m480.0 398.14172l-322.83044 51.37207" fill-rule="evenodd"/><path fill="#990000" stroke="#990000" stroke-width="1.0" stroke-linecap="butt" d="m156.90997 447.88257l-4.2221375 2.3443909l4.741272 0.9180298z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m480.0 398.14172l-374.80316 164.59845" fill-rule="evenodd"/><path stroke="#990000" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m480.0 398.14172l-369.30957 162.18585" fill-rule="evenodd"/><path fill="#990000" stroke="#990000" stroke-width="1.0" stroke-linecap="butt" d="m110.02629 558.81525l-3.4909286 3.3370972l4.819229 -0.31243896z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m133.3412 275.5748l51.74803 0l0 17.543304l-51.74803 0z" fill-rule="evenodd"/><path fill="#000000" d="m147.99734 286.4302l0.921875 -0.140625q0.078125 0.5625 0.4375 0.859375q0.359375 0.296875 1.0 0.296875q0.640625 0 0.953125 -0.265625q0.3125 -0.265625 0.3125 -0.625q0 -0.3125 -0.28125 -0.5q-0.1875 -0.125 -0.953125 -0.3125q-1.03125 -0.265625 -1.4375 -0.453125q-0.390625 -0.1875 -0.59375 -0.515625q-0.203125 -0.34375 -0.203125 -0.75q0 -0.359375 0.171875 -0.671875q0.171875 -0.328125 0.453125 -0.53125q0.21875 -0.15625 0.59375 -0.265625q0.390625 -0.125 0.8125 -0.125q0.65625 0 1.140625 0.1875q0.5 0.1875 0.734375 0.515625q0.234375 0.3125 0.3125 0.859375l-0.90625 0.125q-0.0625 -0.4375 -0.375 -0.671875q-0.296875 -0.234375 -0.828125 -0.234375q-0.65625 0 -0.9375 0.21875q-0.265625 0.203125 -0.265625 0.484375q0 0.1875 0.109375 0.328125q0.125 0.15625 0.359375 0.25q0.140625 0.0625 0.828125 0.25q1.0 0.265625 1.390625 0.4375q0.390625 0.15625 0.609375 0.484375q0.234375 0.3125 0.234375 0.796875q0 0.46875 -0.28125 0.890625q-0.265625 0.40625 -0.78125 0.640625q-0.515625 0.21875 -1.171875 0.21875q-1.078125 0 -1.640625 -0.4375q-0.5625 -0.453125 -0.71875 -1.34375zm7.234375 1.65625l-2.09375 -5.53125l0.984375 0l1.1875 3.3125q0.1875 0.53125 0.359375 1.109375q0.109375 -0.4375 0.34375 -1.046875l1.21875 -3.375l0.96875 0l-2.09375 5.53125l-0.875 0zm7.40625 -2.03125l0.921875 0.125q-0.15625 0.953125 -0.78125 1.5q-0.625 0.53125 -1.53125 0.53125q-1.125 0 -1.8125 -0.734375q-0.6875 -0.75 -0.6875 -2.125q0 -0.90625 0.296875 -1.578125q0.296875 -0.671875 0.890625 -1.0q0.609375 -0.34375 1.328125 -0.34375q0.890625 0 1.46875 0.46875q0.578125 0.453125 0.734375 1.28125l-0.90625 0.140625q-0.140625 -0.546875 -0.46875 -0.828125q-0.328125 -0.28125 -0.796875 -0.28125q-0.703125 0 -1.15625 0.515625q-0.4375 0.5 -0.4375 1.59375q0 1.109375 0.421875 1.625q0.4375 0.5 1.125 0.5q0.546875 0 0.90625 -0.34375q0.375 -0.34375 0.484375 -1.046875zm1.0 2.03125l2.921875 -7.625l1.09375 0l3.125 7.625l-1.15625 0l-0.890625 -2.3125l-3.1875 0l-0.828125 2.3125l-1.078125 0zm2.203125 -3.125l2.578125 0l-0.796875 -2.125q-0.359375 -0.953125 -0.53125 -1.578125q-0.15625 0.734375 -0.421875 1.453125l-0.828125 2.25z" fill-rule="nonzero"/></g></svg>
\ No newline at end of file
diff --git a/_docs/concepts/security/img/mutual-tls/auth.svg b/_docs/concepts/security/img/mutual-tls/auth.svg
index e8c28857eee4f..3b2da9fd9d4fc 100644
--- a/_docs/concepts/security/img/mutual-tls/auth.svg
+++ b/_docs/concepts/security/img/mutual-tls/auth.svg
@@ -1,4 +1 @@
-<?xml version="1.0" standalone="yes"?>
-
-<svg version="1.1" viewBox="0.0 0.0 960.0 540.0" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><clipPath id="g22838b8494_0_0.0"><path d="m0 0l960.0 0l0 540.0l-960.0 0l0 -540.0z" clip-rule="nonzero"></path></clipPath><g clip-path="url(#g22838b8494_0_0.0)"><path fill="#ffffff" d="m0 0l960.0 0l0 540.0l-960.0 0z" fill-rule="evenodd"></path><defs><linearGradient id="g22838b8494_0_0.1" gradientUnits="userSpaceOnUse" gradientTransform="matrix(17.12302180276804 0.0 0.0 17.12302180276804 0.0 0.0)" spreadMethod="pad" x1="5.577209955348188" y1="10.236193547355041" x2="5.577148282802689" y2="27.35921535001202"><stop offset="0.0" stop-color="#ffffff"></stop><stop offset="1.0" stop-color="#b3b3b3"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.1)" d="m95.49869 222.7831l0 0c0 -26.23767 21.269836 -47.507507 47.507507 -47.507507l190.02435 0l0 0c12.599762 0 24.683502 5.005249 33.592896 13.914627c8.909363 8.909393 13.914612 20.993118 13.914612 33.59288l0 198.18184c0 26.23767 -21.269836 47.507507 -47.507507 47.507507l-190.02435 0c-26.23767 0 -47.507507 -21.269836 -47.507507 -47.507507z" fill-rule="evenodd"></path><path fill="#efefef" d="m112.75538 366.96262l20.043709 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"></path><path stroke="#cccccc" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m112.75538 366.96262l20.043709 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"></path><path fill="#efefef" d="m160.75537 374.96262l20.043716 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"></path><path stroke="#cccccc" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m160.75537 374.96262l20.043716 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m221.46982 269.53543l91.62204 0l0 31.653534l-91.62204 0z" fill-rule="evenodd"></path><path fill="#000000" d="m239.28232 288.84982l1.421875 0.359375q-0.4375 1.75 -1.609375 2.671875q-1.15625 0.921875 -2.828125 0.921875q-1.734375 0 -2.828125 -0.703125q-1.09375 -0.71875 -1.65625 -2.046875q-0.5625 -1.34375 -0.5625 -2.890625q0 -1.671875 0.640625 -2.921875q0.640625 -1.25 1.8125 -1.890625q1.1875 -0.65625 2.609375 -0.65625q1.609375 0 2.703125 0.828125q1.109375 0.8125 1.546875 2.296875l-1.40625 0.328125q-0.375 -1.171875 -1.09375 -1.703125q-0.703125 -0.53125 -1.78125 -0.53125q-1.234375 0 -2.0625 0.59375q-0.828125 0.59375 -1.171875 1.59375q-0.328125 1.0 -0.328125 2.0625q0 1.359375 0.390625 2.390625q0.40625 1.015625 1.234375 1.53125q0.84375 0.5 1.828125 0.5q1.203125 0 2.03125 -0.6875q0.828125 -0.6875 1.109375 -2.046875zm2.2717743 -0.125q0 -2.15625 1.203125 -3.203125q1.0 -0.859375 2.4375 -0.859375q1.609375 0 2.625 1.046875q1.015625 1.046875 1.015625 2.90625q0 1.5 -0.453125 2.359375q-0.4375 0.859375 -1.3125 1.34375q-0.859375 0.46875 -1.875 0.46875q-1.625 0 -2.640625 -1.046875q-1.0 -1.046875 -1.0 -3.015625zm1.359375 0q0 1.5 0.640625 2.25q0.65625 0.734375 1.640625 0.734375q0.984375 0 1.640625 -0.75q0.65625 -0.75 0.65625 -2.28125q0 -1.4375 -0.65625 -2.171875q-0.65625 -0.75 -1.640625 -0.75q-0.984375 0 -1.640625 0.734375q-0.640625 0.734375 -0.640625 2.234375zm7.276108 3.890625l0 -7.78125l1.1875 0l0 1.109375q0.859375 -1.28125 2.484375 -1.28125q0.703125 0 1.28125 0.25q0.59375 0.25 0.890625 0.671875q0.296875 0.40625 0.40625 0.96875q0.078125 0.359375 0.078125 1.28125l0 4.78125l-1.328125 0l0 -4.734375q0 -0.796875 -0.15625 -1.1875q-0.140625 -0.40625 -0.53125 -0.640625q-0.390625 -0.25 -0.921875 -0.25q-0.84375 0 -1.453125 0.53125q-0.609375 0.53125 -0.609375 2.03125l0 4.25l-1.328125 0zm11.041718 -1.171875l0.1875 1.15625q-0.5625 0.125 -1.0 0.125q-0.71875 0 -1.125 -0.234375q-0.390625 -0.234375 -0.546875 -0.59375q-0.15625 -0.375 -0.15625 -1.5625l0 -4.46875l-0.96875 0l0 -1.03125l0.96875 0l0 -1.921875l1.3125 -0.796875l0 2.71875l1.328125 0l0 1.03125l-1.328125 0l0 4.546875q0 0.5625 0.0625 0.734375q0.078125 0.15625 0.234375 0.25q0.15625 0.09375 0.4375 0.09375q0.234375 0 0.59375 -0.046875zm6.259491 0.21875q-0.734375 0.609375 -1.40625 0.875q-0.671875 0.25 -1.453125 0.25q-1.28125 0 -1.96875 -0.625q-0.6875 -0.625 -0.6875 -1.59375q0 -0.578125 0.25 -1.046875q0.265625 -0.46875 0.6875 -0.75q0.421875 -0.296875 0.953125 -0.4375q0.375 -0.109375 1.171875 -0.203125q1.59375 -0.1875 2.34375 -0.453125q0.015625 -0.265625 0.015625 -0.34375q0 -0.8125 -0.375 -1.140625q-0.515625 -0.4375 -1.5 -0.4375q-0.9375 0 -1.390625 0.328125q-0.4375 0.3125 -0.640625 1.140625l-1.296875 -0.171875q0.171875 -0.828125 0.578125 -1.328125q0.40625 -0.515625 1.171875 -0.78125q0.765625 -0.28125 1.765625 -0.28125q1.0 0 1.609375 0.234375q0.625 0.234375 0.921875 0.59375q0.296875 0.34375 0.40625 0.890625q0.0625 0.34375 0.0625 1.21875l0 1.75q0 1.84375 0.078125 2.328125q0.09375 0.484375 0.34375 0.9375l-1.375 0q-0.203125 -0.40625 -0.265625 -0.953125zm-0.109375 -2.953125q-0.71875 0.296875 -2.15625 0.5q-0.8125 0.125 -1.15625 0.265625q-0.328125 0.140625 -0.515625 0.421875q-0.171875 0.28125 -0.171875 0.625q0 0.53125 0.390625 0.890625q0.40625 0.34375 1.171875 0.34375q0.765625 0 1.359375 -0.328125q0.59375 -0.34375 0.875 -0.921875q0.203125 -0.4375 0.203125 -1.3125l0 -0.484375zm3.1979675 -5.3125l0 -1.515625l1.3125 0l0 1.515625l-1.3125 0zm0 9.21875l0 -7.78125l1.3125 0l0 7.78125l-1.3125 0zm3.2405396 0l0 -7.78125l1.1875 0l0 1.109375q0.859375 -1.28125 2.484375 -1.28125q0.703125 0 1.28125 0.25q0.59375 0.25 0.890625 0.671875q0.296875 0.40625 0.40625 0.96875q0.078125 0.359375 0.078125 1.28125l0 4.78125l-1.328125 0l0 -4.734375q0 -0.796875 -0.15625 -1.1875q-0.140625 -0.40625 -0.53125 -0.640625q-0.390625 -0.25 -0.921875 -0.25q-0.84375 0 -1.453125 0.53125q-0.609375 0.53125 -0.609375 2.03125l0 4.25l-1.328125 0zm13.479218 -2.5l1.359375 0.15625q-0.3125 1.203125 -1.1875 1.859375q-0.875 0.65625 -2.234375 0.65625q-1.703125 0 -2.703125 -1.046875q-1.0 -1.046875 -1.0 -2.953125q0 -1.953125 1.015625 -3.03125q1.015625 -1.09375 2.625 -1.09375q1.5625 0 2.546875 1.0625q0.984375 1.0625 0.984375 2.984375q0 0.125 0 0.359375l-5.8125 0q0.078125 1.28125 0.71875 1.96875q0.65625 0.671875 1.640625 0.671875q0.71875 0 1.234375 -0.375q0.515625 -0.390625 0.8125 -1.21875zm-4.328125 -2.140625l4.34375 0q-0.09375 -0.984375 -0.5 -1.46875q-0.625 -0.765625 -1.625 -0.765625q-0.921875 0 -1.546875 0.609375q-0.609375 0.609375 -0.671875 1.625zm7.135498 4.640625l0 -7.78125l1.1875 0l0 1.1875q0.453125 -0.828125 0.84375 -1.09375q0.390625 -0.265625 0.84375 -0.265625q0.671875 0 1.359375 0.421875l-0.453125 1.21875q-0.484375 -0.28125 -0.96875 -0.28125q-0.4375 0 -0.78125 0.265625q-0.34375 0.25 -0.484375 0.71875q-0.21875 0.703125 -0.21875 1.53125l0 4.078125l-1.328125 0z" fill-rule="nonzero"></path><path fill="#eeeeee" d="m638.1916 245.3813l0 0c0 -20.21315 16.385986 -36.59915 36.599182 -36.59915l160.06152 0c9.706665 0 19.015808 3.8559723 25.879517 10.71965c6.8636475 6.8636627 10.7196045 16.172806 10.7196045 25.879501l0 146.39226c0 20.213135 -16.385986 36.59915 -36.59912 36.59915l-160.06152 0c-20.213196 0 -36.599182 -16.386017 -36.599182 -36.59915z" fill-rule="evenodd"></path><defs><linearGradient id="g22838b8494_0_0.2" gradientUnits="userSpaceOnUse" gradientTransform="matrix(8.009865912487124 0.0 0.0 8.009865912487124 0.0 0.0)" spreadMethod="pad" x1="55.440814573606275" y1="7.845580531671038" x2="55.4407889736155" y2="15.855446444117256"><stop offset="0.0" stop-color="#fdecdb"></stop><stop offset="1.0" stop-color="#f0a963"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.2)" d="m444.0735 73.535645l0 0c0 -5.9056473 4.7874756 -10.693127 10.693146 -10.693127l109.19638 0c2.8359985 0 5.555847 1.1265945 7.5612183 3.1319466c2.005371 2.0053482 3.131958 4.725189 3.131958 7.56118l0 42.771225c0 5.905655 -4.7874756 10.6931305 -10.693176 10.6931305l-109.19638 0c-5.90567 0 -10.693146 -4.7874756 -10.693146 -10.6931305z" fill-rule="evenodd"></path><defs><linearGradient id="g22838b8494_0_0.3" gradientUnits="userSpaceOnUse" gradientTransform="matrix(10.216984389426065 0.0 0.0 10.216984389426065 0.0 0.0)" spreadMethod="pad" x1="21.6766325396536" y1="34.75188085635744" x2="21.676596414073476" y2="44.968865245719634"><stop offset="0.0" stop-color="#ffffff"></stop><stop offset="1.0" stop-color="#b3b3b3"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.3)" d="m221.46982 422.46457l0 0c0 -4.0848694 3.3114471 -7.396332 7.3963165 -7.396332l148.86351 0l-9.309509 -60.007874l76.278015 60.007874l37.24936 0c1.9616394 0 3.8428955 0.77926636 5.2299805 2.1663513c1.387085 1.3870544 2.1663513 3.268341 2.1663513 5.2299805l0 0l0 0l0 11.094482l0 18.490814c0 4.0848694 -3.3114624 7.396332 -7.396332 7.396332l-37.24936 0l-66.968506 0l0 0l-148.86351 0c-4.0848694 0 -7.3963165 -3.3114624 -7.3963165 -7.396332l0 -18.490814l0 -11.094482l0 0z" fill-rule="evenodd"></path><path fill="#000000" d="m233.21425 436.05017l1.171875 -0.109375q0.078125 0.703125 0.375 1.15625q0.3125 0.4375 0.9375 0.71875q0.640625 0.265625 1.4375 0.265625q0.703125 0 1.234375 -0.203125q0.546875 -0.203125 0.8125 -0.5625q0.265625 -0.375 0.265625 -0.8125q0 -0.4375 -0.265625 -0.765625q-0.25 -0.328125 -0.828125 -0.546875q-0.375 -0.140625 -1.65625 -0.453125q-1.28125 -0.3125 -1.796875 -0.578125q-0.671875 -0.34375 -1.0 -0.859375q-0.328125 -0.53125 -0.328125 -1.171875q0 -0.703125 0.390625 -1.3125q0.40625 -0.609375 1.171875 -0.921875q0.78125 -0.328125 1.71875 -0.328125q1.03125 0 1.8125 0.34375q0.796875 0.328125 1.21875 0.984375q0.4375 0.640625 0.46875 1.453125l-1.1875 0.09375q-0.09375 -0.890625 -0.640625 -1.328125q-0.546875 -0.453125 -1.625 -0.453125q-1.109375 0 -1.625 0.40625q-0.515625 0.40625 -0.515625 0.984375q0 0.5 0.359375 0.828125q0.359375 0.328125 1.859375 0.671875q1.5 0.328125 2.0625 0.578125q0.8125 0.375 1.1875 0.953125q0.390625 0.578125 0.390625 1.328125q0 0.734375 -0.421875 1.390625q-0.421875 0.65625 -1.21875 1.03125q-0.796875 0.359375 -1.796875 0.359375q-1.265625 0 -2.125 -0.359375q-0.84375 -0.375 -1.328125 -1.109375q-0.484375 -0.75 -0.515625 -1.671875zm8.296005 2.984375l3.578125 -9.3125l1.3125 0l3.8125 9.3125l-1.40625 0l-1.078125 -2.8125l-3.890625 0l-1.03125 2.8125l-1.296875 0zm2.6875 -3.828125l3.15625 0l-0.984375 -2.578125q-0.4375 -1.171875 -0.65625 -1.921875q-0.171875 0.890625 -0.5 1.78125l-1.015625 2.71875zm7.2022552 3.828125l0 -9.3125l1.265625 0l4.8906403 7.3125l0 -7.3125l1.1875 0l0 9.3125l-1.265625 0l-4.8906403 -7.3125l0 7.3125l-1.1875 0zm9.812668 -5.4375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm0 5.4375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm7.9841003 -7.75l0 1.328125l-1.21875 0l0 -1.046875q0 -0.84375 0.203125 -1.234375q0.265625 -0.5 0.84375 -0.765625l0.28125 0.453125q-0.359375 0.140625 -0.53125 0.4375q-0.15625 0.28125 -0.171875 0.828125l0.59375 0zm1.96875 0l0 1.328125l-1.21875 0l0 -1.046875q0 -0.84375 0.203125 -1.234375q0.265625 -0.5 0.84375 -0.765625l0.28125 0.453125q-0.359375 0.140625 -0.53125 0.4375q-0.15625 0.28125 -0.171875 0.828125l0.59375 0zm1.1258545 5.734375l1.125 -0.171875q0.09375 0.671875 0.53125 1.046875q0.4375 0.359375 1.21875 0.359375q0.78125 0 1.15625 -0.3125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.34375 -0.609375q-0.234375 -0.15625 -1.171875 -0.390625q-1.25 -0.3125 -1.734375 -0.546875q-0.484375 -0.234375 -0.734375 -0.640625q-0.25 -0.40625 -0.25 -0.90625q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.5625 -0.640625q0.265625 -0.203125 0.71875 -0.328125q0.46875 -0.140625 1.0 -0.140625q0.78125 0 1.375 0.234375q0.609375 0.21875 0.890625 0.609375q0.296875 0.390625 0.40625 1.046875l-1.125 0.15625q-0.078125 -0.53125 -0.4375 -0.8125q-0.359375 -0.296875 -1.03125 -0.296875q-0.78125 0 -1.125 0.265625q-0.34375 0.25 -0.34375 0.609375q0 0.21875 0.140625 0.390625q0.140625 0.1875 0.4375 0.3125q0.171875 0.0625 1.015625 0.28125q1.21875 0.328125 1.6875 0.53125q0.484375 0.203125 0.75 0.609375q0.28125 0.390625 0.28125 0.96875q0 0.578125 -0.34375 1.078125q-0.328125 0.5 -0.953125 0.78125q-0.625 0.28125 -1.421875 0.28125q-1.3125 0 -2.0 -0.546875q-0.6875 -0.546875 -0.875 -1.625zm7.1171875 4.59375l0 -9.3125l1.03125 0l0 0.875q0.375 -0.515625 0.828125 -0.765625q0.46875 -0.265625 1.140625 -0.265625q0.859375 0 1.515625 0.453125q0.65625 0.4375 0.984375 1.25q0.34375 0.796875 0.34375 1.765625q0 1.03125 -0.375 1.859375q-0.359375 0.828125 -1.078125 1.28125q-0.703125 0.4375 -1.484375 0.4375q-0.5625 0 -1.015625 -0.234375q-0.453125 -0.25 -0.75 -0.625l0 3.28125l-1.140625 0zm1.03125 -5.90625q0 1.296875 0.53125 1.921875q0.53125 0.625 1.265625 0.625q0.765625 0 1.3125 -0.640625q0.546875 -0.65625 0.546875 -2.0q0 -1.296875 -0.53125 -1.9375q-0.53125 -0.640625 -1.265625 -0.640625q-0.734375 0 -1.296875 0.6875q-0.5625 0.671875 -0.5625 1.984375zm6.3812256 -4.65625l0 -1.328125l1.140625 0l0 1.328125l-1.140625 0zm0 7.984375l0 -6.734375l1.140625 0l0 6.734375l-1.140625 0zm3.226715 0l0 -5.859375l-1.0 0l0 -0.875l1.0 0l0 -0.71875q0 -0.6875 0.125 -1.015625q0.171875 -0.4375 0.578125 -0.71875q0.421875 -0.28125 1.171875 -0.28125q0.484375 0 1.0625 0.125l-0.171875 0.984375q-0.359375 -0.0625 -0.671875 -0.0625q-0.515625 0 -0.734375 0.234375q-0.21875 0.21875 -0.21875 0.828125l0 0.625l1.3125 0l0 0.875l-1.3125 0l0 5.859375l-1.140625 0zm3.703003 0l0 -5.859375l-1.0 0l0 -0.875l1.0 0l0 -0.71875q0 -0.6875 0.125 -1.015625q0.171875 -0.4375 0.578125 -0.71875q0.421875 -0.28125 1.171875 -0.28125q0.484375 0 1.0625 0.125l-0.171875 0.984375q-0.359375 -0.0625 -0.671875 -0.0625q-0.515625 0 -0.734375 0.234375q-0.21875 0.21875 -0.21875 0.828125l0 0.625l1.3125 0l0 0.875l-1.3125 0l0 5.859375l-1.140625 0zm8.046722 -2.171875l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.8656006 -1.421875l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm0 5.4375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm2.531128 0.15625l2.703125 -9.625l0.90625 0l-2.6875 9.625l-0.921875 0zm3.7029724 0l2.703125 -9.625l0.90625 0l-2.6875 9.625l-0.921875 0zm4.562378 -0.15625l0 -6.734375l1.015625 0l0 0.9375q0.328125 -0.5 0.84375 -0.796875q0.53125 -0.296875 1.203125 -0.296875q0.75 0 1.21875 0.3125q0.484375 0.3125 0.6875 0.859375q0.796875 -1.171875 2.078125 -1.171875q1.0 0 1.53125 0.5625q0.546875 0.546875 0.546875 1.703125l0 4.625l-1.125 0l0 -4.25q0 -0.6875 -0.109375 -0.984375q-0.109375 -0.296875 -0.40625 -0.484375q-0.296875 -0.1875 -0.6875 -0.1875q-0.71875 0 -1.1875 0.484375q-0.46875 0.46875 -0.46875 1.5l0 3.921875l-1.140625 0l0 -4.375q0 -0.765625 -0.28125 -1.140625q-0.28125 -0.390625 -0.90625 -0.390625q-0.484375 0 -0.890625 0.265625q-0.40625 0.25 -0.59375 0.734375q-0.1875 0.484375 -0.1875 1.40625l0 3.5l-1.140625 0zm11.055542 2.59375l-0.140625 -1.0625q0.375 0.09375 0.65625 0.09375q0.390625 0 0.609375 -0.125q0.234375 -0.125 0.375 -0.359375q0.109375 -0.171875 0.359375 -0.84375q0.03125 -0.09375 0.09375 -0.28125l-2.5625 -6.75l1.234375 0l1.40625 3.890625q0.265625 0.75 0.484375 1.5625q0.203125 -0.78125 0.46875 -1.53125l1.453125 -3.921875l1.140625 0l-2.5625 6.84375q-0.421875 1.109375 -0.640625 1.53125q-0.3125 0.5625 -0.703125 0.828125q-0.390625 0.265625 -0.9375 0.265625q-0.328125 0 -0.734375 -0.140625zm6.2890625 -5.96875q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm6.6468506 3.375l0 -6.734375l1.03125 0l0 1.015625q0.390625 -0.71875 0.71875 -0.9375q0.34375 -0.234375 0.734375 -0.234375q0.578125 0 1.171875 0.359375l-0.390625 1.0625q-0.421875 -0.25 -0.828125 -0.25q-0.375 0 -0.6875 0.234375q-0.296875 0.21875 -0.421875 0.625q-0.1875 0.609375 -0.1875 1.328125l0 3.53125l-1.140625 0zm4.23526 0.5625l1.125 0.15625q0.0625 0.515625 0.375 0.75q0.4375 0.328125 1.171875 0.328125q0.78125 0 1.21875 -0.328125q0.4375 -0.3125 0.578125 -0.890625q0.09375 -0.34375 0.09375 -1.453125q-0.75 0.875 -1.875 0.875q-1.390625 0 -2.15625 -1.0q-0.75 -1.0 -0.75 -2.40625q0 -0.96875 0.34375 -1.78125q0.359375 -0.8125 1.015625 -1.25q0.65625 -0.453125 1.5625 -0.453125q1.1875 0 1.96875 0.96875l0 -0.8125l1.046875 0l0 5.8125q0 1.578125 -0.328125 2.234375q-0.3125 0.65625 -1.015625 1.03125q-0.6875 0.390625 -1.703125 0.390625q-1.203125 0 -1.953125 -0.546875q-0.734375 -0.53125 -0.71875 -1.625zm0.953125 -4.046875q0 1.3125 0.515625 1.921875q0.53125 0.609375 1.328125 0.609375q0.796875 0 1.328125 -0.59375q0.53125 -0.609375 0.53125 -1.90625q0 -1.234375 -0.546875 -1.859375q-0.546875 -0.640625 -1.328125 -0.640625q-0.765625 0 -1.296875 0.625q-0.53125 0.625 -0.53125 1.84375zm7.0062256 3.484375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm7.7654724 -2.46875l1.125 0.140625q-0.171875 1.171875 -0.9375 1.828125q-0.765625 0.65625 -1.859375 0.65625q-1.390625 0 -2.234375 -0.90625q-0.828125 -0.90625 -0.828125 -2.59375q0 -1.09375 0.359375 -1.90625q0.359375 -0.828125 1.09375 -1.234375q0.734375 -0.40625 1.609375 -0.40625q1.09375 0 1.796875 0.5625q0.703125 0.546875 0.890625 1.5625l-1.109375 0.171875q-0.15625 -0.671875 -0.5625 -1.015625q-0.390625 -0.34375 -0.96875 -0.34375q-0.859375 0 -1.40625 0.625q-0.53125 0.609375 -0.53125 1.953125q0 1.359375 0.515625 1.984375q0.515625 0.609375 1.359375 0.609375q0.671875 0 1.125 -0.40625q0.453125 -0.421875 0.5625 -1.28125zm1.8515625 -0.90625q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm6.6624756 3.375l0 -6.734375l1.015625 0l0 0.9375q0.328125 -0.5 0.84375 -0.796875q0.53125 -0.296875 1.203125 -0.296875q0.75 0 1.21875 0.3125q0.484375 0.3125 0.6875 0.859375q0.796875 -1.171875 2.078125 -1.171875q1.0 0 1.53125 0.5625q0.546875 0.546875 0.546875 1.703125l0 4.625l-1.125 0l0 -4.25q0 -0.6875 -0.109375 -0.984375q-0.109375 -0.296875 -0.40625 -0.484375q-0.296875 -0.1875 -0.6875 -0.1875q-0.71875 0 -1.1875 0.484375q-0.46875 0.46875 -0.46875 1.5l0 3.921875l-1.140625 0l0 -4.375q0 -0.765625 -0.28125 -1.140625q-0.28125 -0.390625 -0.90625 -0.390625q-0.484375 0 -0.890625 0.265625q-0.40625 0.25 -0.59375 0.734375q-0.1875 0.484375 -0.1875 1.40625l0 3.5l-1.140625 0zm10.2430725 0.15625l2.703125 -9.625l0.90625 0l-2.6875 9.625l-0.921875 0zm4.8279724 -0.15625l0 -5.859375l-1.0 0l0 -0.875l1.0 0l0 -0.71875q0 -0.6875 0.125 -1.015625q0.171875 -0.4375 0.578125 -0.71875q0.421875 -0.28125 1.171875 -0.28125q0.484375 0 1.0625 0.125l-0.171875 0.984375q-0.359375 -0.0625 -0.671875 -0.0625q-0.515625 0 -0.734375 0.234375q-0.21875 0.21875 -0.21875 0.828125l0 0.625l1.3125 0l0 0.875l-1.3125 0l0 5.859375l-1.140625 0zm3.421753 0l0 -6.734375l1.03125 0l0 1.015625q0.390625 -0.71875 0.71875 -0.9375q0.34375 -0.234375 0.734375 -0.234375q0.578125 0 1.171875 0.359375l-0.390625 1.0625q-0.421875 -0.25 -0.828125 -0.25q-0.375 0 -0.6875 0.234375q-0.296875 0.21875 -0.421875 0.625q-0.1875 0.609375 -0.1875 1.328125l0 3.53125l-1.140625 0zm4.0321045 -3.375q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm6.6624756 3.375l0 -6.734375l1.03125 0l0 0.953125q0.734375 -1.109375 2.140625 -1.109375q0.609375 0 1.109375 0.21875q0.515625 0.21875 0.765625 0.578125q0.265625 0.34375 0.359375 0.84375q0.0625 0.3125 0.0625 1.109375l0 4.140625l-1.140625 0l0 -4.09375q0 -0.703125 -0.140625 -1.046875q-0.125 -0.34375 -0.46875 -0.546875q-0.328125 -0.21875 -0.78125 -0.21875q-0.734375 0 -1.265625 0.46875q-0.53125 0.453125 -0.53125 1.75l0 3.6875l-1.140625 0zm9.912476 -1.015625l0.15625 1.0q-0.484375 0.109375 -0.859375 0.109375q-0.625 0 -0.96875 -0.203125q-0.34375 -0.203125 -0.484375 -0.515625q-0.140625 -0.328125 -0.140625 -1.34375l0 -3.890625l-0.828125 0l0 -0.875l0.828125 0l0 -1.671875l1.140625 -0.6875l0 2.359375l1.15625 0l0 0.875l-1.15625 0l0 3.953125q0 0.484375 0.0625 0.625q0.0625 0.140625 0.1875 0.21875q0.140625 0.078125 0.390625 0.078125q0.203125 0 0.515625 -0.03125zm5.812378 -1.15625l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.5531006 4.015625l0 -6.734375l1.03125 0l0 0.953125q0.734375 -1.109375 2.140625 -1.109375q0.609375 0 1.109375 0.21875q0.515625 0.21875 0.765625 0.578125q0.265625 0.34375 0.359375 0.84375q0.0625 0.3125 0.0625 1.109375l0 4.140625l-1.140625 0l0 -4.09375q0 -0.703125 -0.140625 -1.046875q-0.125 -0.34375 -0.46875 -0.546875q-0.328125 -0.21875 -0.78125 -0.21875q-0.734375 0 -1.265625 0.46875q-0.53125 0.453125 -0.53125 1.75l0 3.6875l-1.140625 0zm11.787476 0l0 -0.84375q-0.640625 1.0 -1.890625 1.0q-0.796875 0 -1.484375 -0.4375q-0.671875 -0.453125 -1.046875 -1.25q-0.375 -0.796875 -0.375 -1.828125q0 -1.015625 0.34375 -1.828125q0.34375 -0.828125 1.015625 -1.265625q0.671875 -0.4375 1.5 -0.4375q0.609375 0 1.078125 0.265625q0.484375 0.25 0.78125 0.65625l0 -3.34375l1.140625 0l0 9.3125l-1.0625 0zm-3.609375 -3.359375q0 1.296875 0.53125 1.9375q0.546875 0.640625 1.296875 0.640625q0.75 0 1.265625 -0.609375q0.53125 -0.625 0.53125 -1.875q0 -1.390625 -0.53125 -2.03125q-0.53125 -0.65625 -1.3125 -0.65625q-0.765625 0 -1.28125 0.625q-0.5 0.625 -0.5 1.96875zm6.1937256 0.5625l0 -1.140625l3.515625 0l0 1.140625l-3.515625 0zm7.3914795 1.78125l0.15625 1.0q-0.484375 0.109375 -0.859375 0.109375q-0.625 0 -0.96875 -0.203125q-0.34375 -0.203125 -0.484375 -0.515625q-0.140625 -0.328125 -0.140625 -1.34375l0 -3.890625l-0.828125 0l0 -0.875l0.828125 0l0 -1.671875l1.140625 -0.6875l0 2.359375l1.15625 0l0 0.875l-1.15625 0l0 3.953125q0 0.484375 0.0625 0.625q0.0625 0.140625 0.1875 0.21875q0.140625 0.078125 0.390625 0.078125q0.203125 0 0.515625 -0.03125zm5.812378 -1.15625l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm10.943726 3.1875q-0.625 0.53125 -1.21875 0.765625q-0.578125 0.21875 -1.25 0.21875q-1.125 0 -1.71875 -0.546875q-0.59375 -0.546875 -0.59375 -1.390625q0 -0.484375 0.21875 -0.890625q0.234375 -0.421875 0.59375 -0.671875q0.375 -0.25 0.828125 -0.375q0.328125 -0.078125 1.015625 -0.171875q1.375 -0.15625 2.03125 -0.390625q0.015625 -0.234375 0.015625 -0.296875q0 -0.703125 -0.328125 -0.984375q-0.4375 -0.390625 -1.296875 -0.390625q-0.8125 0 -1.203125 0.28125q-0.375 0.28125 -0.5625 1.0l-1.109375 -0.140625q0.140625 -0.71875 0.484375 -1.15625q0.359375 -0.453125 1.015625 -0.6875q0.671875 -0.234375 1.53125 -0.234375q0.875 0 1.40625 0.203125q0.546875 0.203125 0.796875 0.515625q0.25 0.296875 0.359375 0.765625q0.046875 0.296875 0.046875 1.0625l0 1.515625q0 1.59375 0.078125 2.015625q0.078125 0.421875 0.28125 0.8125l-1.1875 0q-0.171875 -0.359375 -0.234375 -0.828125zm-0.09375 -2.5625q-0.625 0.265625 -1.859375 0.4375q-0.703125 0.109375 -1.0 0.234375q-0.296875 0.125 -0.453125 0.375q-0.15625 0.234375 -0.15625 0.53125q0 0.453125 0.34375 0.765625q0.34375 0.296875 1.015625 0.296875q0.65625 0 1.171875 -0.28125q0.515625 -0.296875 0.765625 -0.796875q0.171875 -0.375 0.171875 -1.140625l0 -0.421875zm3.1156006 3.390625l0 -6.734375l1.015625 0l0 0.9375q0.328125 -0.5 0.84375 -0.796875q0.53125 -0.296875 1.203125 -0.296875q0.75 0 1.21875 0.3125q0.484375 0.3125 0.6875 0.859375q0.796875 -1.171875 2.078125 -1.171875q1.0 0 1.53125 0.5625q0.546875 0.546875 0.546875 1.703125l0 4.625l-1.125 0l0 -4.25q0 -0.6875 -0.109375 -0.984375q-0.109375 -0.296875 -0.40625 -0.484375q-0.296875 -0.1875 -0.6875 -0.1875q-0.71875 0 -1.1875 0.484375q-0.46875 0.46875 -0.46875 1.5l0 3.921875l-1.140625 0l0 -4.375q0 -0.765625 -0.28125 -1.140625q-0.28125 -0.390625 -0.90625 -0.390625q-0.484375 0 -0.890625 0.265625q-0.40625 0.25 -0.59375 0.734375q-0.1875 0.484375 -0.1875 1.40625l0 3.5l-1.140625 0zm10.789917 -8.078125l0 -1.328125l1.234375 0l0 1.046875q0 0.859375 -0.203125 1.234375q-0.265625 0.515625 -0.84375 0.765625l-0.28125 -0.453125q0.34375 -0.125 0.5 -0.421875q0.171875 -0.3125 0.203125 -0.84375l-0.609375 0zm1.96875 0l0 -1.328125l1.234375 0l0 1.046875q0 0.859375 -0.203125 1.234375q-0.265625 0.515625 -0.84375 0.765625l-0.28125 -0.453125q0.34375 -0.125 0.5 -0.421875q0.171875 -0.3125 0.1875 -0.84375l-0.59375 0z" fill-rule="nonzero"></path><defs><linearGradient id="g22838b8494_0_0.4" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.914569378160547 0.0 0.0 6.914569378160547 0.0 0.0)" spreadMethod="pad" x1="40.85860877059094" y1="48.57725936099422" x2="40.85858208096878" y2="55.491828739103255"><stop offset="0.0" stop-color="#fff6db"></stop><stop offset="1.0" stop-color="#fad25c"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.4)" d="m282.51968 335.89108l67.08661 0l0 47.811005l-67.08661 0z" fill-rule="evenodd"></path><path fill="#000000" d="m295.09424 365.6566l0 -11.453125l8.28125 0l0 1.34375l-6.765625 0l0 3.515625l6.34375 0l0 1.34375l-6.34375 0l0 3.890625l7.03125 0l0 1.359375l-8.546875 0zm10.46875 0l0 -8.296875l1.265625 0l0 1.171875q0.90625 -1.359375 2.640625 -1.359375q0.75 0 1.375 0.265625q0.625 0.265625 0.9375 0.703125q0.3125 0.4375 0.4375 1.046875q0.078125 0.390625 0.078125 1.359375l0 5.109375l-1.40625 0l0 -5.046875q0 -0.859375 -0.171875 -1.28125q-0.15625 -0.4375 -0.578125 -0.6875q-0.40625 -0.25 -0.96875 -0.25q-0.90625 0 -1.5625 0.578125q-0.640625 0.5625 -0.640625 2.15625l0 4.53125l-1.40625 0zm11.1953125 0l-3.15625 -8.296875l1.484375 0l1.78125 4.96875q0.296875 0.796875 0.53125 1.671875q0.1875 -0.65625 0.53125 -1.578125l1.84375 -5.0625l1.4375 0l-3.140625 8.296875l-1.3125 0zm5.171875 -4.15625q0 -2.296875 1.28125 -3.40625q1.078125 -0.921875 2.609375 -0.921875q1.71875 0 2.796875 1.125q1.09375 1.109375 1.09375 3.09375q0 1.59375 -0.484375 2.515625q-0.484375 0.921875 -1.40625 1.4375q-0.90625 0.5 -2.0 0.5q-1.734375 0 -2.8125 -1.109375q-1.078125 -1.125 -1.078125 -3.234375zm1.453125 0q0 1.59375 0.6875 2.390625q0.703125 0.796875 1.75 0.796875q1.046875 0 1.734375 -0.796875q0.703125 -0.796875 0.703125 -2.4375q0 -1.53125 -0.703125 -2.328125q-0.6875 -0.796875 -1.734375 -0.796875q-1.046875 0 -1.75 0.796875q-0.6875 0.78125 -0.6875 2.375zm7.9140625 7.359375l-0.15625 -1.328125q0.453125 0.125 0.796875 0.125q0.46875 0 0.75 -0.15625q0.28125 -0.15625 0.46875 -0.4375q0.125 -0.203125 0.421875 -1.046875q0.046875 -0.109375 0.125 -0.34375l-3.140625 -8.3125l1.515625 0l1.71875 4.796875q0.34375 0.921875 0.609375 1.921875q0.234375 -0.96875 0.578125 -1.890625l1.765625 -4.828125l1.40625 0l-3.15625 8.4375q-0.5 1.375 -0.78125 1.890625q-0.375 0.6875 -0.859375 1.015625q-0.484375 0.328125 -1.15625 0.328125q-0.40625 0 -0.90625 -0.171875z" fill-rule="nonzero"></path><defs><linearGradient id="g22838b8494_0_0.5" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.914570860917175 0.0 0.0 6.914570860917175 0.0 0.0)" spreadMethod="pad" x1="25.330889580021708" y1="48.577435771429506" x2="25.330862890405275" y2="55.49200663229517"><stop offset="0.0" stop-color="#dcecd5"></stop><stop offset="1.0" stop-color="#93bc81"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.5)" d="m175.15224 335.8924l73.95274 0l0 47.811005l-73.95274 0z" fill-rule="evenodd"></path><path fill="#000000" d="m190.48558 353.61353l1.171875 -0.109375q0.078125 0.703125 0.375 1.15625q0.3125 0.4375 0.9375 0.71875q0.640625 0.265625 1.4375 0.265625q0.703125 0 1.234375 -0.203125q0.546875 -0.203125 0.8125 -0.5625q0.265625 -0.375 0.265625 -0.8125q0 -0.4375 -0.265625 -0.765625q-0.25 -0.328125 -0.828125 -0.546875q-0.375 -0.140625 -1.65625 -0.453125q-1.28125 -0.3125 -1.796875 -0.578125q-0.671875 -0.34375 -1.0 -0.859375q-0.328125 -0.53125 -0.328125 -1.171875q0 -0.703125 0.390625 -1.3125q0.40625 -0.609375 1.171875 -0.921875q0.78125 -0.328125 1.71875 -0.328125q1.03125 0 1.8125 0.34375q0.796875 0.328125 1.21875 0.984375q0.4375 0.640625 0.46875 1.453125l-1.1875 0.09375q-0.09375 -0.890625 -0.640625 -1.328125q-0.546875 -0.453125 -1.625 -0.453125q-1.109375 0 -1.625 0.40625q-0.515625 0.40625 -0.515625 0.984375q0 0.5 0.359375 0.828125q0.359375 0.328125 1.859375 0.671875q1.5 0.328125 2.0625 0.578125q0.8125 0.375 1.1875 0.953125q0.390625 0.578125 0.390625 1.328125q0 0.734375 -0.421875 1.390625q-0.421875 0.65625 -1.21875 1.03125q-0.796875 0.359375 -1.796875 0.359375q-1.265625 0 -2.125 -0.359375q-0.84375 -0.375 -1.328125 -1.109375q-0.484375 -0.75 -0.515625 -1.671875zm13.78038 0.8125l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.5374756 4.015625l0 -6.734375l1.0312653 0l0 1.015625q0.390625 -0.71875 0.71875 -0.9375q0.34375 -0.234375 0.734375 -0.234375q0.578125 0 1.171875 0.359375l-0.390625 1.0625q-0.421875 -0.25 -0.828125 -0.25q-0.375 0 -0.6875 0.234375q-0.296875 0.21875 -0.421875 0.625q-0.1875 0.609375 -0.1875 1.328125l0 3.53125l-1.1406403 0zm6.32901 0l-2.5625 -6.734375l1.203125 0l1.4375 4.03125q0.234375 0.65625 0.4375 1.359375q0.15625 -0.53125 0.421875 -1.28125l1.5 -4.109375l1.171875 0l-2.546875 6.734375l-1.0625 0zm4.7890625 -7.984375l0 -1.328125l1.140625 0l0 1.328125l-1.140625 0zm0 7.984375l0 -6.734375l1.140625 0l0 6.734375l-1.140625 0zm7.351715 -2.46875l1.125 0.140625q-0.171875 1.171875 -0.9375 1.828125q-0.765625 0.65625 -1.859375 0.65625q-1.390625 0 -2.234375 -0.90625q-0.828125 -0.90625 -0.828125 -2.59375q0 -1.09375 0.359375 -1.90625q0.359375 -0.828125 1.09375 -1.234375q0.734375 -0.40625 1.609375 -0.40625q1.09375 0 1.796875 0.5625q0.703125 0.546875 0.890625 1.5625l-1.109375 0.171875q-0.15625 -0.671875 -0.5625 -1.015625q-0.390625 -0.34375 -0.96875 -0.34375q-0.859375 0 -1.40625 0.625q-0.53125 0.609375 -0.53125 1.953125q0 1.359375 0.515625 1.984375q0.515625 0.609375 1.359375 0.609375q0.671875 0 1.125 -0.40625q0.453125 -0.421875 0.5625 -1.28125zm6.8828125 0.296875l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625z" fill-rule="nonzero"></path><path fill="#000000" d="m188.269 372.5979l1.21875 -5.859375l-1.03125 0l0.1875 -0.875l1.03125 0l0.203125 -0.96875q0.140625 -0.71875 0.296875 -1.03125q0.171875 -0.3125 0.53125 -0.515625q0.375 -0.21875 1.0 -0.21875q0.4375 0 1.265625 0.1875l-0.203125 1.0q-0.59375 -0.15625 -0.984375 -0.15625q-0.328125 0 -0.515625 0.171875q-0.171875 0.171875 -0.296875 0.796875l-0.140625 0.734375l1.28125 0l-0.1875 0.875l-1.28125 0l-1.234375 5.859375l-1.140625 0zm3.5467377 0l1.40625 -6.734375l1.015625 0l-0.28125 1.375q0.515625 -0.78125 1.015625 -1.15625q0.5 -0.375 1.015625 -0.375q0.34375 0 0.84375 0.25l-0.46875 1.0625q-0.296875 -0.21875 -0.65625 -0.21875q-0.609375 0 -1.25 0.671875q-0.625 0.671875 -0.984375 2.421875l-0.5625 2.703125l-1.09375 0zm4.6414948 -2.5625q0 -1.96875 1.15625 -3.265625q0.953125 -1.0625 2.515625 -1.0625q1.21875 0 1.953125 0.765625q0.75 0.75 0.75 2.046875q0 1.171875 -0.46875 2.171875q-0.46875 0.984375 -1.34375 1.53125q-0.859375 0.53125 -1.8125 0.53125q-0.78125 0 -1.4375 -0.328125q-0.640625 -0.34375 -0.984375 -0.953125q-0.328125 -0.625 -0.328125 -1.4375zm1.140625 -0.109375q0 0.953125 0.453125 1.453125q0.46875 0.484375 1.171875 0.484375q0.359375 0 0.71875 -0.140625q0.375 -0.15625 0.671875 -0.453125q0.3125 -0.3125 0.53125 -0.703125q0.21875 -0.390625 0.359375 -0.84375q0.203125 -0.625 0.203125 -1.203125q0 -0.921875 -0.46875 -1.421875q-0.453125 -0.5 -1.15625 -0.5q-0.546875 0 -0.984375 0.265625q-0.4375 0.25 -0.796875 0.75q-0.359375 0.484375 -0.53125 1.140625q-0.171875 0.65625 -0.171875 1.171875zm6.0687256 2.671875l1.40625 -6.734375l1.03125 0l-0.234375 1.171875q0.671875 -0.703125 1.265625 -1.015625q0.59375 -0.3125 1.203125 -0.3125q0.8125 0 1.28125 0.453125q0.46875 0.4375 0.46875 1.171875q0 0.375 -0.15625 1.1875l-0.859375 4.078125l-1.15625 0l0.90625 -4.265625q0.125 -0.625 0.125 -0.921875q0 -0.34375 -0.234375 -0.546875q-0.234375 -0.21875 -0.671875 -0.21875q-0.875 0 -1.5625 0.640625q-0.6875 0.640625 -1.015625 2.171875l-0.65625 3.140625l-1.140625 0zm10.084351 -0.9375l-0.1875 0.9375q-0.40625 0.109375 -0.796875 0.109375q-0.6875 0 -1.09375 -0.328125q-0.296875 -0.25 -0.296875 -0.703125q0 -0.21875 0.15625 -1.015625l0.828125 -3.921875l-0.90625 0l0.171875 -0.875l0.90625 0l0.359375 -1.65625l1.3125 -0.796875l-0.515625 2.453125l1.125 0l-0.1875 0.875l-1.125 0l-0.78125 3.734375q-0.140625 0.703125 -0.140625 0.84375q0 0.203125 0.109375 0.3125q0.125 0.109375 0.390625 0.109375q0.375 0 0.671875 -0.078125zm5.9842377 -1.359375l1.109375 0.125q-0.234375 0.828125 -1.109375 1.578125q-0.859375 0.75 -2.0625 0.75q-0.75 0 -1.375 -0.34375q-0.625 -0.359375 -0.953125 -1.015625q-0.328125 -0.65625 -0.328125 -1.5q0 -1.109375 0.5 -2.140625q0.515625 -1.046875 1.328125 -1.546875q0.8125 -0.5 1.765625 -0.5q1.203125 0 1.921875 0.75q0.71875 0.75 0.71875 2.046875q0 0.484375 -0.078125 1.015625l-4.96875 0q-0.03125 0.1875 -0.03125 0.34375q0 0.953125 0.4375 1.453125q0.4375 0.5 1.0625 0.5q0.59375 0 1.15625 -0.390625q0.578125 -0.390625 0.90625 -1.125zm-3.34375 -1.671875l3.78125 0q0 -0.171875 0 -0.25q0 -0.859375 -0.4375 -1.3125q-0.421875 -0.46875 -1.09375 -0.46875q-0.734375 0 -1.34375 0.515625q-0.609375 0.5 -0.90625 1.515625zm5.8031006 3.96875l1.40625 -6.734375l1.03125 0l-0.234375 1.171875q0.671875 -0.703125 1.265625 -1.015625q0.59375 -0.3125 1.203125 -0.3125q0.8125 0 1.28125 0.453125q0.46875 0.4375 0.46875 1.171875q0 0.375 -0.15625 1.1875l-0.859375 4.078125l-1.15625 0l0.90625 -4.265625q0.125 -0.625 0.125 -0.921875q0 -0.34375 -0.234375 -0.546875q-0.234375 -0.21875 -0.671875 -0.21875q-0.875 0 -1.5625 0.640625q-0.6875 0.640625 -1.015625 2.171875l-0.65625 3.140625l-1.140625 0zm11.959351 -0.984375q-0.984375 1.140625 -2.0625 1.140625q-0.953125 0 -1.59375 -0.703125q-0.640625 -0.71875 -0.640625 -2.0625q0 -1.234375 0.5 -2.25q0.5 -1.015625 1.265625 -1.515625q0.765625 -0.515625 1.515625 -0.515625q1.265625 0 1.90625 1.203125l0.765625 -3.625l1.140625 0l-1.953125 9.3125l-1.046875 0l0.203125 -0.984375zm-3.15625 -1.84375q0 0.703125 0.140625 1.109375q0.140625 0.40625 0.46875 0.6875q0.34375 0.265625 0.8125 0.265625q0.78125 0 1.421875 -0.8125q0.84375 -1.078125 0.84375 -2.671875q0 -0.796875 -0.421875 -1.25q-0.421875 -0.453125 -1.046875 -0.453125q-0.421875 0 -0.765625 0.1875q-0.328125 0.1875 -0.671875 0.625q-0.328125 0.4375 -0.5625 1.125q-0.21875 0.671875 -0.21875 1.1875z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m249.10498 359.7979l33.417328 0" fill-rule="evenodd"></path><path stroke="#666666" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" d="m261.10498 359.7979l9.417328 0" fill-rule="evenodd"></path><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m261.10498 356.49445l-9.076187 3.3034668l9.076187 3.3034668z" fill-rule="evenodd"></path><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m270.5223 363.10138l9.076202 -3.3034668l-9.076202 -3.3034668z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m333.3596 318.58923l33.417328 0l0 33.417328l-33.417328 0z" fill-rule="evenodd"></path><g transform="matrix(0.16708661417322834 0.0 0.0 0.16708661417322834 333.3595800524934 318.58923884514434)"><clipPath id="g22838b8494_0_0.6"><path d="m0 -2.2737368E-13l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.6)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"></image></g><defs><linearGradient id="g22838b8494_0_0.7" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.9145678953981955 0.0 0.0 6.9145678953981955 0.0 0.0)" spreadMethod="pad" x1="97.15176383453758" y1="48.57727274343287" x2="97.1517401104239" y2="55.491840638790364"><stop offset="0.0" stop-color="#fff6db"></stop><stop offset="1.0" stop-color="#fad25c"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.7)" d="m671.76245 335.89108l67.08661 0l0 47.811005l-67.08661 0z" fill-rule="evenodd"></path><path fill="#000000" d="m684.33704 365.6566l0 -11.453125l8.28125 0l0 1.34375l-6.765625 0l0 3.515625l6.34375 0l0 1.34375l-6.34375 0l0 3.890625l7.03125 0l0 1.359375l-8.546875 0zm10.46875 0l0 -8.296875l1.265625 0l0 1.171875q0.90625 -1.359375 2.640625 -1.359375q0.75 0 1.375 0.265625q0.625 0.265625 0.9375 0.703125q0.3125 0.4375 0.4375 1.046875q0.078125 0.390625 0.078125 1.359375l0 5.109375l-1.40625 0l0 -5.046875q0 -0.859375 -0.171875 -1.28125q-0.15625 -0.4375 -0.578125 -0.6875q-0.40625 -0.25 -0.96875 -0.25q-0.90625 0 -1.5625 0.578125q-0.640625 0.5625 -0.640625 2.15625l0 4.53125l-1.40625 0zm11.1953125 0l-3.15625 -8.296875l1.484375 0l1.78125 4.96875q0.296875 0.796875 0.53125 1.671875q0.1875 -0.65625 0.53125 -1.578125l1.84375 -5.0625l1.4375 0l-3.140625 8.296875l-1.3125 0zm5.171875 -4.15625q0 -2.296875 1.28125 -3.40625q1.078125 -0.921875 2.609375 -0.921875q1.71875 0 2.796875 1.125q1.09375 1.109375 1.09375 3.09375q0 1.59375 -0.484375 2.515625q-0.484375 0.921875 -1.40625 1.4375q-0.90625 0.5 -2.0 0.5q-1.734375 0 -2.8125 -1.109375q-1.078125 -1.125 -1.078125 -3.234375zm1.453125 0q0 1.59375 0.6875 2.390625q0.703125 0.796875 1.75 0.796875q1.046875 0 1.734375 -0.796875q0.703125 -0.796875 0.703125 -2.4375q0 -1.53125 -0.703125 -2.328125q-0.6875 -0.796875 -1.734375 -0.796875q-1.046875 0 -1.75 0.796875q-0.6875 0.78125 -0.6875 2.375zm7.9140625 7.359375l-0.15625 -1.328125q0.453125 0.125 0.796875 0.125q0.46875 0 0.75 -0.15625q0.28125 -0.15625 0.46875 -0.4375q0.125 -0.203125 0.421875 -1.046875q0.046875 -0.109375 0.125 -0.34375l-3.140625 -8.3125l1.515625 0l1.71875 4.796875q0.34375 0.921875 0.609375 1.921875q0.234375 -0.96875 0.578125 -1.890625l1.765625 -4.828125l1.40625 0l-3.15625 8.4375q-0.5 1.375 -0.78125 1.890625q-0.375 0.6875 -0.859375 1.015625q-0.484375 0.328125 -1.15625 0.328125q-0.40625 0 -0.90625 -0.171875z" fill-rule="nonzero"></path><defs><linearGradient id="g22838b8494_0_0.8" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.914570860911769 0.0 0.0 6.914570860911769 0.0 0.0)" spreadMethod="pad" x1="111.47557668916205" y1="48.577435771467485" x2="111.47555296505855" y2="55.49200663233855"><stop offset="0.0" stop-color="#dcecd5"></stop><stop offset="1.0" stop-color="#93bc81"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.8)" d="m770.8058 335.8924l73.95276 0l0 47.811005l-73.95276 0z" fill-rule="evenodd"></path><path fill="#000000" d="m786.13916 353.61353l1.171875 -0.109375q0.078125 0.703125 0.375 1.15625q0.3125 0.4375 0.9375 0.71875q0.640625 0.265625 1.4375 0.265625q0.703125 0 1.234375 -0.203125q0.546875 -0.203125 0.8125 -0.5625q0.265625 -0.375 0.265625 -0.8125q0 -0.4375 -0.265625 -0.765625q-0.25 -0.328125 -0.828125 -0.546875q-0.375 -0.140625 -1.65625 -0.453125q-1.28125 -0.3125 -1.796875 -0.578125q-0.671875 -0.34375 -1.0 -0.859375q-0.328125 -0.53125 -0.328125 -1.171875q0 -0.703125 0.390625 -1.3125q0.40625 -0.609375 1.171875 -0.921875q0.78125 -0.328125 1.71875 -0.328125q1.03125 0 1.8125 0.34375q0.796875 0.328125 1.21875 0.984375q0.4375 0.640625 0.46875 1.453125l-1.1875 0.09375q-0.09375 -0.890625 -0.640625 -1.328125q-0.546875 -0.453125 -1.625 -0.453125q-1.109375 0 -1.625 0.40625q-0.515625 0.40625 -0.515625 0.984375q0 0.5 0.359375 0.828125q0.359375 0.328125 1.859375 0.671875q1.5 0.328125 2.0625 0.578125q0.8125 0.375 1.1875 0.953125q0.390625 0.578125 0.390625 1.328125q0 0.734375 -0.421875 1.390625q-0.421875 0.65625 -1.21875 1.03125q-0.796875 0.359375 -1.796875 0.359375q-1.265625 0 -2.125 -0.359375q-0.84375 -0.375 -1.328125 -1.109375q-0.484375 -0.75 -0.515625 -1.671875zm13.780334 0.8125l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.5374756 4.015625l0 -6.734375l1.03125 0l0 1.015625q0.390625 -0.71875 0.71875 -0.9375q0.34375 -0.234375 0.734375 -0.234375q0.578125 0 1.171875 0.359375l-0.390625 1.0625q-0.421875 -0.25 -0.828125 -0.25q-0.375 0 -0.6875 0.234375q-0.296875 0.21875 -0.421875 0.625q-0.1875 0.609375 -0.1875 1.328125l0 3.53125l-1.140625 0zm6.3290405 0l-2.5625 -6.734375l1.203125 0l1.4375 4.03125q0.234375 0.65625 0.4375 1.359375q0.15625 -0.53125 0.421875 -1.28125l1.5 -4.109375l1.171875 0l-2.546875 6.734375l-1.0625 0zm4.7890625 -7.984375l0 -1.328125l1.140625 0l0 1.328125l-1.140625 0zm0 7.984375l0 -6.734375l1.140625 0l0 6.734375l-1.140625 0zm7.3516846 -2.46875l1.125 0.140625q-0.171875 1.171875 -0.9375 1.828125q-0.765625 0.65625 -1.859375 0.65625q-1.390625 0 -2.234375 -0.90625q-0.828125 -0.90625 -0.828125 -2.59375q0 -1.09375 0.359375 -1.90625q0.359375 -0.828125 1.09375 -1.234375q0.734375 -0.40625 1.609375 -0.40625q1.09375 0 1.796875 0.5625q0.703125 0.546875 0.890625 1.5625l-1.109375 0.171875q-0.15625 -0.671875 -0.5625 -1.015625q-0.390625 -0.34375 -0.96875 -0.34375q-0.859375 0 -1.40625 0.625q-0.53125 0.609375 -0.53125 1.953125q0 1.359375 0.515625 1.984375q0.515625 0.609375 1.359375 0.609375q0.671875 0 1.125 -0.40625q0.453125 -0.421875 0.5625 -1.28125zm6.8828125 0.296875l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625z" fill-rule="nonzero"></path><path fill="#000000" d="m783.0244 372.5979l1.9375 -9.3125l1.140625 0l-0.6875 3.328125q0.546875 -0.5 0.984375 -0.703125q0.453125 -0.203125 0.9375 -0.203125q0.9375 0 1.5625 0.703125q0.640625 0.703125 0.640625 2.046875q0 0.890625 -0.25 1.640625q-0.25 0.734375 -0.625 1.25q-0.375 0.5 -0.78125 0.8125q-0.390625 0.296875 -0.8125 0.4375q-0.421875 0.15625 -0.8125 0.15625q-0.65625 0 -1.171875 -0.34375q-0.5 -0.359375 -0.796875 -1.09375l-0.265625 1.28125l-1.0 0zm1.703125 -2.765625l-0.015625 0.21875q0 0.859375 0.40625 1.3125q0.421875 0.453125 1.03125 0.453125q0.609375 0 1.109375 -0.421875q0.515625 -0.421875 0.828125 -1.3125q0.328125 -0.90625 0.328125 -1.65625q0 -0.859375 -0.40625 -1.328125q-0.40625 -0.46875 -1.015625 -0.46875q-0.625 0 -1.140625 0.484375q-0.515625 0.46875 -0.875 1.46875q-0.25 0.75 -0.25 1.25zm10.256226 1.921875q-0.609375 0.515625 -1.15625 0.765625q-0.546875 0.234375 -1.1875 0.234375q-0.921875 0 -1.5 -0.546875q-0.5625 -0.5625 -0.5625 -1.40625q0 -0.578125 0.25 -1.0q0.25 -0.4375 0.671875 -0.703125q0.4375 -0.265625 1.046875 -0.375q0.390625 -0.078125 1.46875 -0.125q1.09375 -0.046875 1.5625 -0.234375q0.125 -0.46875 0.125 -0.78125q0 -0.390625 -0.28125 -0.625q-0.40625 -0.3125 -1.171875 -0.3125q-0.734375 0 -1.1875 0.328125q-0.453125 0.3125 -0.671875 0.90625l-1.15625 -0.109375q0.359375 -1.0 1.125 -1.53125q0.765625 -0.53125 1.9375 -0.53125q1.25 0 1.984375 0.59375q0.5625 0.4375 0.5625 1.15625q0 0.53125 -0.15625 1.25l-0.375 1.671875q-0.1875 0.796875 -0.1875 1.296875q0 0.328125 0.140625 0.921875l-1.15625 0q-0.09375 -0.328125 -0.125 -0.84375zm0.421875 -2.578125q-0.25 0.109375 -0.53125 0.15625q-0.265625 0.046875 -0.90625 0.109375q-1.015625 0.078125 -1.421875 0.21875q-0.40625 0.140625 -0.625 0.4375q-0.203125 0.296875 -0.203125 0.65625q0 0.484375 0.328125 0.796875q0.328125 0.3125 0.953125 0.3125q0.5625 0 1.09375 -0.296875q0.53125 -0.3125 0.828125 -0.84375q0.3125 -0.546875 0.484375 -1.546875zm7.0843506 0.96875l1.15625 0.109375q-0.4375 1.265625 -1.234375 1.890625q-0.796875 0.609375 -1.8125 0.609375q-1.09375 0 -1.78125 -0.703125q-0.671875 -0.71875 -0.671875 -2.0q0 -1.109375 0.4375 -2.171875q0.4375 -1.0625 1.25 -1.609375q0.8125 -0.5625 1.859375 -0.5625q1.09375 0 1.71875 0.609375q0.640625 0.609375 0.640625 1.625l-1.125 0.078125q-0.015625 -0.640625 -0.375 -1.0q-0.359375 -0.375 -0.96875 -0.375q-0.6875 0 -1.203125 0.4375q-0.5 0.4375 -0.796875 1.34375q-0.28125 0.890625 -0.28125 1.703125q0 0.875 0.375 1.3125q0.390625 0.421875 0.953125 0.421875q0.546875 0 1.0625 -0.421875q0.515625 -0.4375 0.796875 -1.296875zm2.0234375 2.453125l1.953125 -9.3125l1.140625 0l-1.203125 5.78125l3.359375 -3.203125l1.515625 0l-2.875 2.5l1.734375 4.234375l-1.25 0l-1.359375 -3.453125l-1.390625 1.203125l-0.46875 2.25l-1.15625 0zm11.6171875 -2.296875l1.109375 0.125q-0.234375 0.828125 -1.109375 1.578125q-0.859375 0.75 -2.0625 0.75q-0.75 0 -1.375 -0.34375q-0.625 -0.359375 -0.953125 -1.015625q-0.328125 -0.65625 -0.328125 -1.5q0 -1.109375 0.5 -2.140625q0.515625 -1.046875 1.328125 -1.546875q0.8125 -0.5 1.765625 -0.5q1.203125 0 1.921875 0.75q0.71875 0.75 0.71875 2.046875q0 0.484375 -0.078125 1.015625l-4.96875 0q-0.03125 0.1875 -0.03125 0.34375q0 0.953125 0.4375 1.453125q0.4375 0.5 1.0625 0.5q0.59375 0 1.15625 -0.390625q0.578125 -0.390625 0.90625 -1.125zm-3.34375 -1.671875l3.78125 0q0 -0.171875 0 -0.25q0 -0.859375 -0.4375 -1.3125q-0.421875 -0.46875 -1.09375 -0.46875q-0.734375 0 -1.34375 0.515625q-0.609375 0.5 -0.90625 1.515625zm5.8031006 3.96875l1.40625 -6.734375l1.03125 0l-0.234375 1.171875q0.671875 -0.703125 1.265625 -1.015625q0.59375 -0.3125 1.203125 -0.3125q0.8125 0 1.28125 0.453125q0.46875 0.4375 0.46875 1.171875q0 0.375 -0.15625 1.1875l-0.859375 4.078125l-1.15625 0l0.90625 -4.265625q0.125 -0.625 0.125 -0.921875q0 -0.34375 -0.234375 -0.546875q-0.234375 -0.21875 -0.671875 -0.21875q-0.875 0 -1.5625 0.640625q-0.6875 0.640625 -1.015625 2.171875l-0.65625 3.140625l-1.140625 0zm11.959351 -0.984375q-0.984375 1.140625 -2.0625 1.140625q-0.953125 0 -1.59375 -0.703125q-0.640625 -0.71875 -0.640625 -2.0625q0 -1.234375 0.5 -2.25q0.5 -1.015625 1.265625 -1.515625q0.765625 -0.515625 1.515625 -0.515625q1.265625 0 1.90625 1.203125l0.765625 -3.625l1.140625 0l-1.953125 9.3125l-1.046875 0l0.203125 -0.984375zm-3.15625 -1.84375q0 0.703125 0.140625 1.109375q0.140625 0.40625 0.46875 0.6875q0.34375 0.265625 0.8125 0.265625q0.78125 0 1.421875 -0.8125q0.84375 -1.078125 0.84375 -2.671875q0 -0.796875 -0.421875 -1.25q-0.421875 -0.453125 -1.046875 -0.453125q-0.421875 0 -0.765625 0.1875q-0.328125 0.1875 -0.671875 0.625q-0.328125 0.4375 -0.5625 1.125q-0.21875 0.671875 -0.21875 1.1875z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m770.8058 359.7979l-31.968506 0" fill-rule="evenodd"></path><path stroke="#666666" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" d="m758.8058 359.7979l-7.968506 0" fill-rule="evenodd"></path><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m758.8058 363.10138l9.076172 -3.3034668l-9.076172 -3.3034668z" fill-rule="evenodd"></path><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m750.8373 356.49445l-9.076233 3.3034668l9.076233 3.3034668z" fill-rule="evenodd"></path><defs><linearGradient id="g22838b8494_0_0.9" gradientUnits="userSpaceOnUse" gradientTransform="matrix(-10.205940048366829 0.0 0.0 10.205940048366829 0.0 0.0)" spreadMethod="pad" x1="-79.11017475716037" y1="34.5369295408987" x2="-79.11020690353669" y2="44.7428695892149"><stop offset="0.0" stop-color="#ffffff"></stop><stop offset="1.0" stop-color="#b3b3b3"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.9)" d="m807.3937 421.99738l0 0c0 -3.8268433 -3.102234 -6.929138 -6.929138 -6.929138l-149.33069 0l11.773987 -62.58545l-78.74249 62.58545l-37.716553 0c-1.8377075 0 -3.6001587 0.7300415 -4.899597 2.0295105c-1.2994995 1.299469 -2.02948 3.0619202 -2.02948 4.8996277l0 0l0 0l0 10.393707l0 17.322815c0 3.8268738 3.102234 6.929138 6.929077 6.929138l37.716553 0l66.968506 0l0 0l149.33069 0c3.8269043 0 6.929138 -3.1022644 6.929138 -6.929138l0 -17.322815l0 -10.393707l0 0z" fill-rule="evenodd"></path><path fill="#000000" d="m551.12726 435.91333l1.171875 -0.109375q0.078125 0.703125 0.375 1.15625q0.3125 0.4375 0.9375 0.71875q0.640625 0.265625 1.4375 0.265625q0.703125 0 1.234375 -0.203125q0.546875 -0.203125 0.8125 -0.5625q0.265625 -0.375 0.265625 -0.8125q0 -0.4375 -0.265625 -0.765625q-0.25 -0.328125 -0.828125 -0.546875q-0.375 -0.140625 -1.65625 -0.453125q-1.28125 -0.3125 -1.796875 -0.578125q-0.671875 -0.34375 -1.0 -0.859375q-0.328125 -0.53125 -0.328125 -1.171875q0 -0.703125 0.390625 -1.3125q0.40625 -0.609375 1.171875 -0.921875q0.78125 -0.328125 1.71875 -0.328125q1.03125 0 1.8125 0.34375q0.796875 0.328125 1.21875 0.984375q0.4375 0.640625 0.46875 1.453125l-1.1875 0.09375q-0.09375 -0.890625 -0.640625 -1.328125q-0.546875 -0.453125 -1.625 -0.453125q-1.109375 0 -1.625 0.40625q-0.515625 0.40625 -0.515625 0.984375q0 0.5 0.359375 0.828125q0.359375 0.328125 1.859375 0.671875q1.5 0.328125 2.0625 0.578125q0.8125 0.375 1.1875 0.953125q0.390625 0.578125 0.390625 1.328125q0 0.734375 -0.421875 1.390625q-0.421875 0.65625 -1.21875 1.03125q-0.796875 0.359375 -1.796875 0.359375q-1.265625 0 -2.125 -0.359375q-0.84375 -0.375 -1.328125 -1.109375q-0.484375 -0.75 -0.515625 -1.671875zm8.2960205 2.984375l3.578125 -9.3125l1.3125 0l3.8125 9.3125l-1.40625 0l-1.078125 -2.8125l-3.890625 0l-1.03125 2.8125l-1.296875 0zm2.6875 -3.828125l3.15625 0l-0.984375 -2.578125q-0.4375 -1.171875 -0.65625 -1.921875q-0.171875 0.890625 -0.5 1.78125l-1.015625 2.71875zm7.2022705 3.828125l0 -9.3125l1.265625 0l4.890625 7.3125l0 -7.3125l1.1875 0l0 9.3125l-1.265625 0l-4.890625 -7.3125l0 7.3125l-1.1875 0zm9.812622 -5.4375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm0 5.4375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm7.984131 -7.75l0 1.328125l-1.21875 0l0 -1.046875q0 -0.84375 0.203125 -1.234375q0.265625 -0.5 0.84375 -0.765625l0.28125 0.453125q-0.359375 0.140625 -0.53125 0.4375q-0.15625 0.28125 -0.171875 0.828125l0.59375 0zm1.96875 0l0 1.328125l-1.21875 0l0 -1.046875q0 -0.84375 0.203125 -1.234375q0.265625 -0.5 0.84375 -0.765625l0.28125 0.453125q-0.359375 0.140625 -0.53125 0.4375q-0.15625 0.28125 -0.171875 0.828125l0.59375 0zm1.1258545 5.734375l1.125 -0.171875q0.09375 0.671875 0.53125 1.046875q0.4375 0.359375 1.21875 0.359375q0.78125 0 1.15625 -0.3125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.34375 -0.609375q-0.234375 -0.15625 -1.171875 -0.390625q-1.25 -0.3125 -1.734375 -0.546875q-0.484375 -0.234375 -0.734375 -0.640625q-0.25 -0.40625 -0.25 -0.90625q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.5625 -0.640625q0.265625 -0.203125 0.71875 -0.328125q0.46875 -0.140625 1.0 -0.140625q0.78125 0 1.375 0.234375q0.609375 0.21875 0.890625 0.609375q0.296875 0.390625 0.40625 1.046875l-1.125 0.15625q-0.078125 -0.53125 -0.4375 -0.8125q-0.359375 -0.296875 -1.03125 -0.296875q-0.78125 0 -1.125 0.265625q-0.34375 0.25 -0.34375 0.609375q0 0.21875 0.140625 0.390625q0.140625 0.1875 0.4375 0.3125q0.171875 0.0625 1.015625 0.28125q1.21875 0.328125 1.6875 0.53125q0.484375 0.203125 0.75 0.609375q0.28125 0.390625 0.28125 0.96875q0 0.578125 -0.34375 1.078125q-0.328125 0.5 -0.953125 0.78125q-0.625 0.28125 -1.421875 0.28125q-1.3125 0 -2.0 -0.546875q-0.6875 -0.546875 -0.875 -1.625zm7.1171875 4.59375l0 -9.3125l1.03125 0l0 0.875q0.375 -0.515625 0.828125 -0.765625q0.46875 -0.265625 1.140625 -0.265625q0.859375 0 1.515625 0.453125q0.65625 0.4375 0.984375 1.25q0.34375 0.796875 0.34375 1.765625q0 1.03125 -0.375 1.859375q-0.359375 0.828125 -1.078125 1.28125q-0.703125 0.4375 -1.484375 0.4375q-0.5625 0 -1.015625 -0.234375q-0.453125 -0.25 -0.75 -0.625l0 3.28125l-1.140625 0zm1.03125 -5.90625q0 1.296875 0.53125 1.921875q0.53125 0.625 1.265625 0.625q0.765625 0 1.3125 -0.640625q0.546875 -0.65625 0.546875 -2.0q0 -1.296875 -0.53125 -1.9375q-0.53125 -0.640625 -1.265625 -0.640625q-0.734375 0 -1.296875 0.6875q-0.5625 0.671875 -0.5625 1.984375zm6.3812256 -4.65625l0 -1.328125l1.140625 0l0 1.328125l-1.140625 0zm0 7.984375l0 -6.734375l1.140625 0l0 6.734375l-1.140625 0zm3.2267456 0l0 -5.859375l-1.0 0l0 -0.875l1.0 0l0 -0.71875q0 -0.6875 0.125 -1.015625q0.171875 -0.4375 0.578125 -0.71875q0.421875 -0.28125 1.171875 -0.28125q0.484375 0 1.0625 0.125l-0.171875 0.984375q-0.359375 -0.0625 -0.671875 -0.0625q-0.515625 0 -0.734375 0.234375q-0.21875 0.21875 -0.21875 0.828125l0 0.625l1.3125 0l0 0.875l-1.3125 0l0 5.859375l-1.140625 0zm3.702942 0l0 -5.859375l-1.0 0l0 -0.875l1.0 0l0 -0.71875q0 -0.6875 0.125 -1.015625q0.171875 -0.4375 0.578125 -0.71875q0.421875 -0.28125 1.171875 -0.28125q0.484375 0 1.0625 0.125l-0.171875 0.984375q-0.359375 -0.0625 -0.671875 -0.0625q-0.515625 0 -0.734375 0.234375q-0.21875 0.21875 -0.21875 0.828125l0 0.625l1.3125 0l0 0.875l-1.3125 0l0 5.859375l-1.140625 0zm8.046753 -2.171875l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.8656006 -1.421875l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm0 5.4375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm2.531128 0.15625l2.703125 -9.625l0.90625 0l-2.6875 9.625l-0.921875 0zm3.703003 0l2.703125 -9.625l0.90625 0l-2.6875 9.625l-0.921875 0zm4.562317 -0.15625l0 -6.734375l1.015625 0l0 0.9375q0.328125 -0.5 0.84375 -0.796875q0.53125 -0.296875 1.203125 -0.296875q0.75 0 1.21875 0.3125q0.484375 0.3125 0.6875 0.859375q0.796875 -1.171875 2.078125 -1.171875q1.0 0 1.53125 0.5625q0.546875 0.546875 0.546875 1.703125l0 4.625l-1.125 0l0 -4.25q0 -0.6875 -0.109375 -0.984375q-0.109375 -0.296875 -0.40625 -0.484375q-0.296875 -0.1875 -0.6875 -0.1875q-0.71875 0 -1.1875 0.484375q-0.46875 0.46875 -0.46875 1.5l0 3.921875l-1.140625 0l0 -4.375q0 -0.765625 -0.28125 -1.140625q-0.28125 -0.390625 -0.90625 -0.390625q-0.484375 0 -0.890625 0.265625q-0.40625 0.25 -0.59375 0.734375q-0.1875 0.484375 -0.1875 1.40625l0 3.5l-1.140625 0zm11.055603 2.59375l-0.140625 -1.0625q0.375 0.09375 0.65625 0.09375q0.390625 0 0.609375 -0.125q0.234375 -0.125 0.375 -0.359375q0.109375 -0.171875 0.359375 -0.84375q0.03125 -0.09375 0.09375 -0.28125l-2.5625 -6.75l1.234375 0l1.40625 3.890625q0.265625 0.75 0.484375 1.5625q0.203125 -0.78125 0.46875 -1.53125l1.453125 -3.921875l1.140625 0l-2.5625 6.84375q-0.421875 1.109375 -0.640625 1.53125q-0.3125 0.5625 -0.703125 0.828125q-0.390625 0.265625 -0.9375 0.265625q-0.328125 0 -0.734375 -0.140625zm6.2890625 -5.96875q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm6.6468506 3.375l0 -6.734375l1.03125 0l0 1.015625q0.390625 -0.71875 0.71875 -0.9375q0.34375 -0.234375 0.734375 -0.234375q0.578125 0 1.171875 0.359375l-0.390625 1.0625q-0.421875 -0.25 -0.828125 -0.25q-0.375 0 -0.6875 0.234375q-0.296875 0.21875 -0.421875 0.625q-0.1875 0.609375 -0.1875 1.328125l0 3.53125l-1.140625 0zm4.2352295 0.5625l1.125 0.15625q0.0625 0.515625 0.375 0.75q0.4375 0.328125 1.171875 0.328125q0.78125 0 1.21875 -0.328125q0.4375 -0.3125 0.578125 -0.890625q0.09375 -0.34375 0.09375 -1.453125q-0.75 0.875 -1.875 0.875q-1.390625 0 -2.15625 -1.0q-0.75 -1.0 -0.75 -2.40625q0 -0.96875 0.34375 -1.78125q0.359375 -0.8125 1.015625 -1.25q0.65625 -0.453125 1.5625 -0.453125q1.1875 0 1.96875 0.96875l0 -0.8125l1.046875 0l0 5.8125q0 1.578125 -0.328125 2.234375q-0.3125 0.65625 -1.015625 1.03125q-0.6875 0.390625 -1.703125 0.390625q-1.203125 0 -1.953125 -0.546875q-0.734375 -0.53125 -0.71875 -1.625zm0.953125 -4.046875q0 1.3125 0.515625 1.921875q0.53125 0.609375 1.328125 0.609375q0.796875 0 1.328125 -0.59375q0.53125 -0.609375 0.53125 -1.90625q0 -1.234375 -0.546875 -1.859375q-0.546875 -0.640625 -1.328125 -0.640625q-0.765625 0 -1.296875 0.625q-0.53125 0.625 -0.53125 1.84375zm7.0062256 3.484375l0 -1.296875l1.296875 0l0 1.296875l-1.296875 0zm7.765503 -2.46875l1.125 0.140625q-0.171875 1.171875 -0.9375 1.828125q-0.765625 0.65625 -1.859375 0.65625q-1.390625 0 -2.234375 -0.90625q-0.828125 -0.90625 -0.828125 -2.59375q0 -1.09375 0.359375 -1.90625q0.359375 -0.828125 1.09375 -1.234375q0.734375 -0.40625 1.609375 -0.40625q1.09375 0 1.796875 0.5625q0.703125 0.546875 0.890625 1.5625l-1.109375 0.171875q-0.15625 -0.671875 -0.5625 -1.015625q-0.390625 -0.34375 -0.96875 -0.34375q-0.859375 0 -1.40625 0.625q-0.53125 0.609375 -0.53125 1.953125q0 1.359375 0.515625 1.984375q0.515625 0.609375 1.359375 0.609375q0.671875 0 1.125 -0.40625q0.453125 -0.421875 0.5625 -1.28125zm1.8515625 -0.90625q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm6.6624756 3.375l0 -6.734375l1.015625 0l0 0.9375q0.328125 -0.5 0.84375 -0.796875q0.53125 -0.296875 1.203125 -0.296875q0.75 0 1.21875 0.3125q0.484375 0.3125 0.6875 0.859375q0.796875 -1.171875 2.078125 -1.171875q1.0 0 1.53125 0.5625q0.546875 0.546875 0.546875 1.703125l0 4.625l-1.125 0l0 -4.25q0 -0.6875 -0.109375 -0.984375q-0.109375 -0.296875 -0.40625 -0.484375q-0.296875 -0.1875 -0.6875 -0.1875q-0.71875 0 -1.1875 0.484375q-0.46875 0.46875 -0.46875 1.5l0 3.921875l-1.140625 0l0 -4.375q0 -0.765625 -0.28125 -1.140625q-0.28125 -0.390625 -0.90625 -0.390625q-0.484375 0 -0.890625 0.265625q-0.40625 0.25 -0.59375 0.734375q-0.1875 0.484375 -0.1875 1.40625l0 3.5l-1.140625 0zm10.243042 0.15625l2.703125 -9.625l0.90625 0l-2.6875 9.625l-0.921875 0zm5.609253 -0.15625l-1.0625 0l0 -9.3125l1.15625 0l0 3.328125q0.71875 -0.90625 1.84375 -0.90625q0.625 0 1.171875 0.25q0.5625 0.25 0.921875 0.703125q0.359375 0.453125 0.5625 1.09375q0.203125 0.640625 0.203125 1.375q0 1.734375 -0.859375 2.6875q-0.859375 0.9375 -2.0625 0.9375q-1.1875 0 -1.875 -1.0l0 0.84375zm-0.015625 -3.421875q0 1.21875 0.34375 1.75q0.53125 0.890625 1.453125 0.890625q0.75 0 1.296875 -0.65625q0.546875 -0.65625 0.546875 -1.9375q0 -1.328125 -0.53125 -1.953125q-0.515625 -0.625 -1.265625 -0.625q-0.75 0 -1.296875 0.65625q-0.546875 0.640625 -0.546875 1.875zm10.771851 2.59375q-0.625 0.53125 -1.21875 0.765625q-0.578125 0.21875 -1.25 0.21875q-1.125 0 -1.71875 -0.546875q-0.59375 -0.546875 -0.59375 -1.390625q0 -0.484375 0.21875 -0.890625q0.234375 -0.421875 0.59375 -0.671875q0.375 -0.25 0.828125 -0.375q0.328125 -0.078125 1.015625 -0.171875q1.375 -0.15625 2.03125 -0.390625q0.015625 -0.234375 0.015625 -0.296875q0 -0.703125 -0.328125 -0.984375q-0.4375 -0.390625 -1.296875 -0.390625q-0.8125 0 -1.203125 0.28125q-0.375 0.28125 -0.5625 1.0l-1.109375 -0.140625q0.140625 -0.71875 0.484375 -1.15625q0.359375 -0.453125 1.015625 -0.6875q0.671875 -0.234375 1.53125 -0.234375q0.875 0 1.40625 0.203125q0.546875 0.203125 0.796875 0.515625q0.25 0.296875 0.359375 0.765625q0.046875 0.296875 0.046875 1.0625l0 1.515625q0 1.59375 0.078125 2.015625q0.078125 0.421875 0.28125 0.8125l-1.1875 0q-0.171875 -0.359375 -0.234375 -0.828125zm-0.09375 -2.5625q-0.625 0.265625 -1.859375 0.4375q-0.703125 0.109375 -1.0 0.234375q-0.296875 0.125 -0.453125 0.375q-0.15625 0.234375 -0.15625 0.53125q0 0.453125 0.34375 0.765625q0.34375 0.296875 1.015625 0.296875q0.65625 0 1.171875 -0.28125q0.515625 -0.296875 0.765625 -0.796875q0.171875 -0.375 0.171875 -1.140625l0 -0.421875zm7.5062256 0.921875l1.125 0.140625q-0.171875 1.171875 -0.9375 1.828125q-0.765625 0.65625 -1.859375 0.65625q-1.390625 0 -2.234375 -0.90625q-0.828125 -0.90625 -0.828125 -2.59375q0 -1.09375 0.359375 -1.90625q0.359375 -0.828125 1.09375 -1.234375q0.734375 -0.40625 1.609375 -0.40625q1.09375 0 1.796875 0.5625q0.703125 0.546875 0.890625 1.5625l-1.109375 0.171875q-0.15625 -0.671875 -0.5625 -1.015625q-0.390625 -0.34375 -0.96875 -0.34375q-0.859375 0 -1.40625 0.625q-0.53125 0.609375 -0.53125 1.953125q0 1.359375 0.515625 1.984375q0.515625 0.609375 1.359375 0.609375q0.671875 0 1.125 -0.40625q0.453125 -0.421875 0.5625 -1.28125zm2.2734375 2.46875l0 -9.3125l1.140625 0l0 5.3125l2.703125 -2.734375l1.484375 0l-2.578125 2.5l2.84375 4.234375l-1.40625 0l-2.234375 -3.453125l-0.8125 0.78125l0 2.671875l-1.140625 0zm11.2734375 -2.171875l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.5531006 4.015625l0 -6.734375l1.03125 0l0 0.953125q0.734375 -1.109375 2.140625 -1.109375q0.609375 0 1.109375 0.21875q0.515625 0.21875 0.765625 0.578125q0.265625 0.34375 0.359375 0.84375q0.0625 0.3125 0.0625 1.109375l0 4.140625l-1.140625 0l0 -4.09375q0 -0.703125 -0.140625 -1.046875q-0.125 -0.34375 -0.46875 -0.546875q-0.328125 -0.21875 -0.78125 -0.21875q-0.734375 0 -1.265625 0.46875q-0.53125 0.453125 -0.53125 1.75l0 3.6875l-1.140625 0zm11.787476 0l0 -0.84375q-0.640625 1.0 -1.890625 1.0q-0.796875 0 -1.484375 -0.4375q-0.671875 -0.453125 -1.046875 -1.25q-0.375 -0.796875 -0.375 -1.828125q0 -1.015625 0.34375 -1.828125q0.34375 -0.828125 1.015625 -1.265625q0.671875 -0.4375 1.5 -0.4375q0.609375 0 1.078125 0.265625q0.484375 0.25 0.78125 0.65625l0 -3.34375l1.140625 0l0 9.3125l-1.0625 0zm-3.609375 -3.359375q0 1.296875 0.53125 1.9375q0.546875 0.640625 1.296875 0.640625q0.75 0 1.265625 -0.609375q0.53125 -0.625 0.53125 -1.875q0 -1.390625 -0.53125 -2.03125q-0.53125 -0.65625 -1.3125 -0.65625q-0.765625 0 -1.28125 0.625q-0.5 0.625 -0.5 1.96875zm6.1937256 0.5625l0 -1.140625l3.515625 0l0 1.140625l-3.515625 0zm7.3914795 1.78125l0.15625 1.0q-0.484375 0.109375 -0.859375 0.109375q-0.625 0 -0.96875 -0.203125q-0.34375 -0.203125 -0.484375 -0.515625q-0.140625 -0.328125 -0.140625 -1.34375l0 -3.890625l-0.828125 0l0 -0.875l0.828125 0l0 -1.671875l1.140625 -0.6875l0 2.359375l1.15625 0l0 0.875l-1.15625 0l0 3.953125q0 0.484375 0.0625 0.625q0.0625 0.140625 0.1875 0.21875q0.140625 0.078125 0.390625 0.078125q0.203125 0 0.515625 -0.03125zm5.812378 -1.15625l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm10.943726 3.1875q-0.625 0.53125 -1.21875 0.765625q-0.578125 0.21875 -1.25 0.21875q-1.125 0 -1.71875 -0.546875q-0.59375 -0.546875 -0.59375 -1.390625q0 -0.484375 0.21875 -0.890625q0.234375 -0.421875 0.59375 -0.671875q0.375 -0.25 0.828125 -0.375q0.328125 -0.078125 1.015625 -0.171875q1.375 -0.15625 2.03125 -0.390625q0.015625 -0.234375 0.015625 -0.296875q0 -0.703125 -0.328125 -0.984375q-0.4375 -0.390625 -1.296875 -0.390625q-0.8125 0 -1.203125 0.28125q-0.375 0.28125 -0.5625 1.0l-1.109375 -0.140625q0.140625 -0.71875 0.484375 -1.15625q0.359375 -0.453125 1.015625 -0.6875q0.671875 -0.234375 1.53125 -0.234375q0.875 0 1.40625 0.203125q0.546875 0.203125 0.796875 0.515625q0.25 0.296875 0.359375 0.765625q0.046875 0.296875 0.046875 1.0625l0 1.515625q0 1.59375 0.078125 2.015625q0.078125 0.421875 0.28125 0.8125l-1.1875 0q-0.171875 -0.359375 -0.234375 -0.828125zm-0.09375 -2.5625q-0.625 0.265625 -1.859375 0.4375q-0.703125 0.109375 -1.0 0.234375q-0.296875 0.125 -0.453125 0.375q-0.15625 0.234375 -0.15625 0.53125q0 0.453125 0.34375 0.765625q0.34375 0.296875 1.015625 0.296875q0.65625 0 1.171875 -0.28125q0.515625 -0.296875 0.765625 -0.796875q0.171875 -0.375 0.171875 -1.140625l0 -0.421875zm3.1156006 3.390625l0 -6.734375l1.015625 0l0 0.9375q0.328125 -0.5 0.84375 -0.796875q0.53125 -0.296875 1.203125 -0.296875q0.75 0 1.21875 0.3125q0.484375 0.3125 0.6875 0.859375q0.796875 -1.171875 2.078125 -1.171875q1.0 0 1.53125 0.5625q0.546875 0.546875 0.546875 1.703125l0 4.625l-1.125 0l0 -4.25q0 -0.6875 -0.109375 -0.984375q-0.109375 -0.296875 -0.40625 -0.484375q-0.296875 -0.1875 -0.6875 -0.1875q-0.71875 0 -1.1875 0.484375q-0.46875 0.46875 -0.46875 1.5l0 3.921875l-1.140625 0l0 -4.375q0 -0.765625 -0.28125 -1.140625q-0.28125 -0.390625 -0.90625 -0.390625q-0.484375 0 -0.890625 0.265625q-0.40625 0.25 -0.59375 0.734375q-0.1875 0.484375 -0.1875 1.40625l0 3.5l-1.140625 0zm10.789917 -8.078125l0 -1.328125l1.234375 0l0 1.046875q0 0.859375 -0.203125 1.234375q-0.265625 0.515625 -0.84375 0.765625l-0.28125 -0.453125q0.34375 -0.125 0.5 -0.421875q0.171875 -0.3125 0.203125 -0.84375l-0.609375 0zm1.96875 0l0 -1.328125l1.234375 0l0 1.046875q0 0.859375 -0.203125 1.234375q-0.265625 0.515625 -0.84375 0.765625l-0.28125 -0.453125q0.34375 -0.125 0.5 -0.421875q0.171875 -0.3125 0.1875 -0.84375l-0.59375 0z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m448.42258 74.14043l41.561707 0l0 41.561714l-41.561707 0z" fill-rule="evenodd"></path><g transform="matrix(0.06926952755905512 0.0 0.0 0.06926952755905512 448.4225721784777 74.14042283464568)"><clipPath id="g22838b8494_0_0.10"><path d="m0 0l600.0 0l0 600.0l-600.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.10)" fill="#000" width="600.0" height="600.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"></image></g><path fill="#000000" fill-opacity="0.0" d="m475.69815 76.97638l98.01578 0l0 33.41732l-98.01578 0z" fill-rule="evenodd"></path><path fill="#000000" d="m523.3386 96.29076l1.421875 0.359375q-0.4375 1.75 -1.609375 2.671875q-1.15625 0.921875 -2.828125 0.921875q-1.734375 0 -2.828125 -0.703125q-1.09375 -0.71875 -1.65625 -2.046875q-0.5625 -1.34375 -0.5625 -2.890625q0 -1.671875 0.640625 -2.921875q0.640625 -1.25 1.8125 -1.890625q1.1875 -0.65625 2.609375 -0.65625q1.609375 0 2.703125 0.828125q1.109375 0.8125 1.546875 2.296875l-1.40625 0.328125q-0.375 -1.171875 -1.09375 -1.703125q-0.703125 -0.53125 -1.78125 -0.53125q-1.234375 0 -2.0625 0.59375q-0.828125 0.59375 -1.171875 1.59375q-0.328125 1.0 -0.328125 2.0625q0 1.359375 0.390625 2.390625q0.40625 1.015625 1.234375 1.53125q0.84375 0.5 1.828125 0.5q1.203125 0 2.03125 -0.6875q0.828125 -0.6875 1.109375 -2.046875zm1.7561035 3.765625l4.125 -10.734375l1.515625 0l4.40625 10.734375l-1.625 0l-1.25 -3.25l-4.484375 0l-1.1875 3.25l-1.5 0zm3.09375 -4.40625l3.640625 0l-1.125 -2.984375q-0.515625 -1.34375 -0.765625 -2.21875q-0.203125 1.03125 -0.578125 2.046875l-1.171875 3.15625z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m654.5932 318.58923l33.417297 0l0 33.417328l-33.417297 0z" fill-rule="evenodd"></path><g transform="matrix(0.16708661417322834 0.0 0.0 0.16708661417322834 654.5931758530184 318.58923884514434)"><clipPath id="g22838b8494_0_0.11"><path d="m4.5474735E-13 -2.2737368E-13l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.11)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"></image></g><path fill="#000000" fill-opacity="0.0" d="m709.32806 208.78215l164.97638 0l0 31.65355l-164.97638 0z" fill-rule="evenodd"></path><path fill="#000000" d="m730.83484 229.30215l-3.328125 -8.59375l1.234375 0l2.234375 6.25q0.265625 0.75 0.453125 1.40625q0.203125 -0.703125 0.46875 -1.40625l2.3125 -6.25l1.15625 0l-3.359375 8.59375l-1.171875 0zm5.5195312 0l0 -8.59375l1.71875 0l2.03125 6.078125q0.28125 0.859375 0.40625 1.28125q0.140625 -0.46875 0.453125 -1.375l2.0625 -5.984375l1.53125 0l0 8.59375l-1.09375 0l0 -7.1875l-2.5 7.1875l-1.03125 0l-2.484375 -7.3125l0 7.3125l-1.09375 0zm9.105469 0.140625l2.484375 -8.875l0.84375 0l-2.484375 8.875l-0.84375 0zm4.2089844 -0.140625l0 -8.59375l3.234375 0q0.984375 0 1.578125 0.265625q0.59375 0.265625 0.921875 0.8125q0.34375 0.53125 0.34375 1.125q0 0.546875 -0.296875 1.03125q-0.296875 0.484375 -0.90625 0.78125q0.78125 0.234375 1.1875 0.796875q0.421875 0.546875 0.421875 1.296875q0 0.59375 -0.25 1.125q-0.25 0.515625 -0.625 0.796875q-0.375 0.28125 -0.953125 0.421875q-0.5625 0.140625 -1.375 0.140625l-3.28125 0zm1.140625 -4.984375l1.859375 0q0.75 0 1.078125 -0.09375q0.4375 -0.125 0.65625 -0.421875q0.21875 -0.3125 0.21875 -0.765625q0 -0.421875 -0.203125 -0.75q-0.203125 -0.328125 -0.59375 -0.4375q-0.375 -0.125 -1.296875 -0.125l-1.71875 0l0 2.59375zm0 3.96875l2.140625 0q0.546875 0 0.765625 -0.046875q0.40625 -0.0625 0.65625 -0.21875q0.265625 -0.171875 0.4375 -0.484375q0.171875 -0.3125 0.171875 -0.71875q0 -0.484375 -0.25 -0.84375q-0.234375 -0.359375 -0.671875 -0.5q-0.4375 -0.140625 -1.265625 -0.140625l-1.984375 0l0 2.953125zm10.847656 0.25q-0.59375 0.5 -1.140625 0.703125q-0.53125 0.203125 -1.15625 0.203125q-1.03125 0 -1.578125 -0.5q-0.546875 -0.5 -0.546875 -1.28125q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.546875 -0.609375q0.34375 -0.234375 0.765625 -0.34375q0.296875 -0.09375 0.9375 -0.171875q1.265625 -0.140625 1.875 -0.359375q0 -0.21875 0 -0.265625q0 -0.65625 -0.296875 -0.921875q-0.40625 -0.34375 -1.203125 -0.34375q-0.734375 0 -1.09375 0.265625q-0.359375 0.25 -0.53125 0.90625l-1.03125 -0.140625q0.140625 -0.65625 0.46875 -1.0625q0.328125 -0.40625 0.9375 -0.625q0.609375 -0.21875 1.40625 -0.21875q0.796875 0 1.296875 0.1875q0.5 0.1875 0.734375 0.46875q0.234375 0.28125 0.328125 0.71875q0.046875 0.265625 0.046875 0.96875l0 1.40625q0 1.46875 0.0625 1.859375q0.078125 0.390625 0.28125 0.75l-1.109375 0q-0.15625 -0.328125 -0.203125 -0.765625zm-0.09375 -2.359375q-0.578125 0.234375 -1.71875 0.40625q-0.65625 0.09375 -0.921875 0.21875q-0.265625 0.109375 -0.421875 0.328125q-0.140625 0.21875 -0.140625 0.5q0 0.421875 0.3125 0.703125q0.328125 0.28125 0.9375 0.28125q0.609375 0 1.078125 -0.265625q0.484375 -0.265625 0.703125 -0.734375q0.171875 -0.359375 0.171875 -1.046875l0 -0.390625zm2.6894531 3.125l0 -6.21875l0.953125 0l0 0.9375q0.359375 -0.65625 0.65625 -0.859375q0.3125 -0.21875 0.6875 -0.21875q0.53125 0 1.078125 0.328125l-0.359375 0.984375q-0.390625 -0.234375 -0.765625 -0.234375q-0.359375 0 -0.640625 0.21875q-0.265625 0.203125 -0.375 0.578125q-0.1875 0.5625 -0.1875 1.21875l0 3.265625l-1.046875 0zm8.261719 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125zm5.455078 1.125l0 -1.0625l3.25 0l0 1.0625l-3.25 0zm4.4179688 2.578125l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm14.246094 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125zm8.173828 2.765625l0.15625 0.921875q-0.453125 0.09375 -0.796875 0.09375q-0.578125 0 -0.890625 -0.171875q-0.3125 -0.1875 -0.453125 -0.484375q-0.125 -0.296875 -0.125 -1.25l0 -3.578125l-0.765625 0l0 -0.8125l0.765625 0l0 -1.546875l1.046875 -0.625l0 2.171875l1.0625 0l0 0.8125l-1.0625 0l0 3.640625q0 0.453125 0.046875 0.578125q0.0625 0.125 0.1875 0.203125q0.125 0.078125 0.359375 0.078125q0.1875 0 0.46875 -0.03125zm5.0996094 0.171875q-0.59375 0.5 -1.140625 0.703125q-0.53125 0.203125 -1.15625 0.203125q-1.03125 0 -1.578125 -0.5q-0.546875 -0.5 -0.546875 -1.28125q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.546875 -0.609375q0.34375 -0.234375 0.765625 -0.34375q0.296875 -0.09375 0.9375 -0.171875q1.265625 -0.140625 1.875 -0.359375q0 -0.21875 0 -0.265625q0 -0.65625 -0.296875 -0.921875q-0.40625 -0.34375 -1.203125 -0.34375q-0.734375 0 -1.09375 0.265625q-0.359375 0.25 -0.53125 0.90625l-1.03125 -0.140625q0.140625 -0.65625 0.46875 -1.0625q0.328125 -0.40625 0.9375 -0.625q0.609375 -0.21875 1.40625 -0.21875q0.796875 0 1.296875 0.1875q0.5 0.1875 0.734375 0.46875q0.234375 0.28125 0.328125 0.71875q0.046875 0.265625 0.046875 0.96875l0 1.40625q0 1.46875 0.0625 1.859375q0.078125 0.390625 0.28125 0.75l-1.109375 0q-0.15625 -0.328125 -0.203125 -0.765625zm-0.09375 -2.359375q-0.578125 0.234375 -1.71875 0.40625q-0.65625 0.09375 -0.921875 0.21875q-0.265625 0.109375 -0.421875 0.328125q-0.140625 0.21875 -0.140625 0.5q0 0.421875 0.3125 0.703125q0.328125 0.28125 0.9375 0.28125q0.609375 0 1.078125 -0.265625q0.484375 -0.265625 0.703125 -0.734375q0.171875 -0.359375 0.171875 -1.046875l0 -0.390625zm2.6738281 3.125l0 -8.59375l1.0625 0l0 8.59375l-1.0625 0zm6.03125 0l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm14.058594 -0.765625q-0.59375 0.5 -1.140625 0.703125q-0.53125 0.203125 -1.15625 0.203125q-1.03125 0 -1.578125 -0.5q-0.546875 -0.5 -0.546875 -1.28125q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.546875 -0.609375q0.34375 -0.234375 0.765625 -0.34375q0.296875 -0.09375 0.9375 -0.171875q1.265625 -0.140625 1.875 -0.359375q0 -0.21875 0 -0.265625q0 -0.65625 -0.296875 -0.921875q-0.40625 -0.34375 -1.203125 -0.34375q-0.734375 0 -1.09375 0.265625q-0.359375 0.25 -0.53125 0.90625l-1.03125 -0.140625q0.140625 -0.65625 0.46875 -1.0625q0.328125 -0.40625 0.9375 -0.625q0.609375 -0.21875 1.40625 -0.21875q0.796875 0 1.296875 0.1875q0.5 0.1875 0.734375 0.46875q0.234375 0.28125 0.328125 0.71875q0.046875 0.265625 0.046875 0.96875l0 1.40625q0 1.46875 0.0625 1.859375q0.078125 0.390625 0.28125 0.75l-1.109375 0q-0.15625 -0.328125 -0.203125 -0.765625zm-0.09375 -2.359375q-0.578125 0.234375 -1.71875 0.40625q-0.65625 0.09375 -0.921875 0.21875q-0.265625 0.109375 -0.421875 0.328125q-0.140625 0.21875 -0.140625 0.5q0 0.421875 0.3125 0.703125q0.328125 0.28125 0.9375 0.28125q0.609375 0 1.078125 -0.265625q0.484375 -0.265625 0.703125 -0.734375q0.171875 -0.359375 0.171875 -1.046875l0 -0.390625zm6.767578 0.84375l1.03125 0.140625q-0.171875 1.0625 -0.875 1.671875q-0.703125 0.609375 -1.71875 0.609375q-1.28125 0 -2.0625 -0.828125q-0.765625 -0.84375 -0.765625 -2.40625q0 -1.0 0.328125 -1.75q0.34375 -0.765625 1.015625 -1.140625q0.6875 -0.375 1.5 -0.375q1.0 0 1.640625 0.515625q0.65625 0.5 0.84375 1.453125l-1.03125 0.15625q-0.140625 -0.625 -0.515625 -0.9375q-0.375 -0.328125 -0.90625 -0.328125q-0.796875 0 -1.296875 0.578125q-0.5 0.5625 -0.5 1.796875q0 1.265625 0.484375 1.828125q0.484375 0.5625 1.25 0.5625q0.625 0 1.03125 -0.375q0.421875 -0.375 0.546875 -1.171875zm1.9375 2.28125l0 -8.59375l1.046875 0l0 3.078125q0.734375 -0.84375 1.859375 -0.84375q0.703125 0 1.203125 0.28125q0.515625 0.265625 0.734375 0.75q0.21875 0.46875 0.21875 1.390625l0 3.9375l-1.046875 0l0 -3.9375q0 -0.796875 -0.34375 -1.15625q-0.34375 -0.359375 -0.96875 -0.359375q-0.46875 0 -0.890625 0.25q-0.40625 0.234375 -0.59375 0.65625q-0.171875 0.40625 -0.171875 1.140625l0 3.40625l-1.046875 0zm6.673828 -7.375l0 -1.21875l1.0625 0l0 1.21875l-1.0625 0zm0 7.375l0 -6.21875l1.0625 0l0 6.21875l-1.0625 0zm2.6660156 0l0 -6.21875l0.9375 0l0 0.875q0.6875 -1.015625 1.984375 -1.015625q0.5625 0 1.03125 0.203125q0.484375 0.203125 0.71875 0.53125q0.234375 0.328125 0.328125 0.765625q0.046875 0.296875 0.046875 1.03125l0 3.828125l-1.046875 0l0 -3.78125q0 -0.65625 -0.125 -0.96875q-0.125 -0.3125 -0.4375 -0.5q-0.3125 -0.203125 -0.734375 -0.203125q-0.671875 0 -1.171875 0.4375q-0.484375 0.421875 -0.484375 1.609375l0 3.40625l-1.046875 0zm10.923828 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125z" fill-rule="nonzero"></path><defs><linearGradient id="g22838b8494_0_0.12" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.447885991549832 0.0 0.0 6.447885991549832 0.0 0.0)" spreadMethod="pad" x1="99.98516013321546" y1="37.95088526440231" x2="99.98514105231108" y2="44.398771255923904"><stop offset="0.0" stop-color="#dbd4eb"></stop><stop offset="1.0" stop-color="#9180bb"></stop></linearGradient></defs><path fill="url(#g22838b8494_0_0.12)" d="m644.69293 251.63269l0 0c0 -3.8269348 3.102295 -6.9292755 6.9292603 -6.9292755l107.36981 0c1.8377686 0 3.6002197 0.7300415 4.899719 2.029541c1.2994995 1.2994843 2.029541 3.061966 2.029541 4.8997345l0 27.716248c0 3.8269348 -3.102356 6.929291 -6.9292603 6.929291l-107.36981 0c-3.8269653 0 -6.9292603 -3.102356 -6.9292603 -6.929291z" fill-rule="evenodd"></path><path fill="#000000" d="m682.2026 270.2908l0 -9.3125l1.265625 0l4.890625 7.3125l0 -7.3125l1.1875 0l0 9.3125l-1.265625 0l-4.890625 -7.3125l0 7.3125l-1.1875 0zm9.078247 -3.375q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm11.037476 3.375l0 -0.84375q-0.640625 1.0 -1.890625 1.0q-0.796875 0 -1.484375 -0.4375q-0.671875 -0.453125 -1.046875 -1.25q-0.375 -0.796875 -0.375 -1.828125q0 -1.015625 0.34375 -1.828125q0.34375 -0.828125 1.015625 -1.265625q0.671875 -0.4375 1.5 -0.4375q0.609375 0 1.078125 0.265625q0.484375 0.25 0.78125 0.65625l0 -3.34375l1.140625 0l0 9.3125l-1.0625 0zm-3.609375 -3.359375q0 1.296875 0.53125 1.9375q0.546875 0.640625 1.296875 0.640625q0.75 0 1.265625 -0.609375q0.53125 -0.625 0.53125 -1.875q0 -1.390625 -0.53125 -2.03125q-0.53125 -0.65625 -1.3125 -0.65625q-0.765625 0 -1.28125 0.625q-0.5 0.625 -0.5 1.96875zm11.256226 1.1875l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm9.3811035 4.015625l3.578125 -9.3125l1.3125 0l3.8125 9.3125l-1.40625 0l-1.078125 -2.8125l-3.890625 0l-1.03125 2.8125l-1.296875 0zm2.6875 -3.828125l3.15625 0l-0.984375 -2.578125q-0.4375 -1.171875 -0.65625 -1.921875q-0.171875 0.890625 -0.5 1.78125l-1.015625 2.71875zm6.8585205 4.390625l1.125 0.15625q0.0625 0.515625 0.375 0.75q0.4375 0.328125 1.171875 0.328125q0.78125 0 1.21875 -0.328125q0.4375 -0.3125 0.578125 -0.890625q0.09375 -0.34375 0.09375 -1.453125q-0.75 0.875 -1.875 0.875q-1.390625 0 -2.15625 -1.0q-0.75 -1.0 -0.75 -2.40625q0 -0.96875 0.34375 -1.78125q0.359375 -0.8125 1.015625 -1.25q0.65625 -0.453125 1.5625 -0.453125q1.1875 0 1.96875 0.96875l0 -0.8125l1.046875 0l0 5.8125q0 1.578125 -0.328125 2.234375q-0.3125 0.65625 -1.015625 1.03125q-0.6875 0.390625 -1.703125 0.390625q-1.203125 0 -1.953125 -0.546875q-0.734375 -0.53125 -0.71875 -1.625zm0.953125 -4.046875q0 1.3125 0.515625 1.921875q0.53125 0.609375 1.328125 0.609375q0.796875 0 1.328125 -0.59375q0.53125 -0.609375 0.53125 -1.90625q0 -1.234375 -0.546875 -1.859375q-0.546875 -0.640625 -1.328125 -0.640625q-0.765625 0 -1.296875 0.625q-0.53125 0.625 -0.53125 1.84375zm11.287476 1.3125l1.1875 0.140625q-0.28125 1.046875 -1.046875 1.625q-0.75 0.5625 -1.921875 0.5625q-1.484375 0 -2.359375 -0.90625q-0.859375 -0.921875 -0.859375 -2.5625q0 -1.703125 0.875 -2.640625q0.890625 -0.9375 2.28125 -0.9375q1.359375 0 2.203125 0.921875q0.859375 0.921875 0.859375 2.578125q0 0.109375 0 0.3125l-5.03125 0q0.0625 1.109375 0.625 1.703125q0.5625 0.59375 1.40625 0.59375q0.640625 0 1.078125 -0.328125q0.453125 -0.34375 0.703125 -1.0625zm-3.75 -1.84375l3.765625 0q-0.078125 -0.859375 -0.4375 -1.28125q-0.546875 -0.65625 -1.40625 -0.65625q-0.796875 0 -1.328125 0.53125q-0.53125 0.515625 -0.59375 1.40625zm6.5531006 4.015625l0 -6.734375l1.03125 0l0 0.953125q0.734375 -1.109375 2.140625 -1.109375q0.609375 0 1.109375 0.21875q0.515625 0.21875 0.765625 0.578125q0.265625 0.34375 0.359375 0.84375q0.0625 0.3125 0.0625 1.109375l0 4.140625l-1.140625 0l0 -4.09375q0 -0.703125 -0.140625 -1.046875q-0.125 -0.34375 -0.46875 -0.546875q-0.328125 -0.21875 -0.78125 -0.21875q-0.734375 0 -1.265625 0.46875q-0.53125 0.453125 -0.53125 1.75l0 3.6875l-1.140625 0zm9.912476 -1.015625l0.15625 1.0q-0.484375 0.109375 -0.859375 0.109375q-0.625 0 -0.96875 -0.203125q-0.34375 -0.203125 -0.484375 -0.515625q-0.140625 -0.328125 -0.140625 -1.34375l0 -3.890625l-0.828125 0l0 -0.875l0.828125 0l0 -1.671875l1.140625 -0.6875l0 2.359375l1.15625 0l0 0.875l-1.15625 0l0 3.953125q0 0.484375 0.0625 0.625q0.0625 0.140625 0.1875 0.21875q0.140625 0.078125 0.390625 0.078125q0.203125 0 0.515625 -0.03125z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m646.87396 249.93178l33.41736 0l0 33.417343l-33.41736 0z" fill-rule="evenodd"></path><g transform="matrix(0.2610729658792651 0.0 0.0 0.2610729658792651 646.8739905511811 249.93177874015748)"><clipPath id="g22838b8494_0_0.13"><path d="m-4.5474735E-13 -1.1368684E-13l128.0 0l0 128.0l-128.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.13)" fill="#000" width="128.0" height="128.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"></image></g><path fill="#000000" fill-opacity="0.0" d="m705.30707 286.27823l-34.015747 32.31494" fill-rule="evenodd"></path><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m705.30707 286.27823l-29.665771 28.182434" fill-rule="evenodd"></path><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m674.5037 313.26318l-2.1525269 4.32312l4.4277954 -1.9281311z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m705.30707 244.70341c0 -75.51181 -65.79523 -151.02362 -131.59052 -151.02362" fill-rule="evenodd"></path><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m705.30707 244.70341c0 -37.755905 -16.448792 -75.51181 -41.12201 -103.82875c-12.336609 -14.158455 -26.72937 -25.957176 -42.150146 -34.216278c-7.710327 -4.1295547 -15.677734 -7.3742065 -23.773682 -9.586464c-4.0479126 -1.1061249 -8.127991 -1.9541626 -12.224182 -2.5256653c-2.0480347 -0.28575134 -4.1000977 -0.5023651 -6.154236 -0.64754486l-0.16986084 -0.011268616" fill-rule="evenodd"></path><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m579.7701 92.2367l-4.5925293 1.4936829l4.4782104 1.8078003z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m509.36484 127.0c0 69.82677 68.75589 139.65353 137.51181 139.65353" fill-rule="evenodd"></path><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m509.36484 127.0c0 34.91339 17.188995 69.82677 42.972443 96.01181c12.891724 13.092514 27.932068 24.00296 44.046753 31.640259c8.057312 3.8186646 16.38324 6.819031 24.843384 8.864716c4.2301636 1.0228577 8.493835 1.8070679 12.774292 2.3355103c2.1402588 0.2642517 4.284607 0.46453857 6.4311523 0.5987854l0.4463501 0.0262146" fill-rule="evenodd"></path><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m640.8307 268.12833l4.584656 -1.5177307l-4.48761 -1.7843323z" fill-rule="evenodd"></path><path fill="#c9daf8" d="m651.30707 142.40945l63.811035 0l0 23.748032l-63.811035 0z" fill-rule="evenodd"></path><path stroke="#b7b7b7" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m651.30707 142.40945l63.811035 0l0 23.748032l-63.811035 0z" fill-rule="evenodd"></path><path fill="#000000" d="m676.7832 155.81784l1.234375 0.3125q-0.390625 1.515625 -1.40625 2.3125q-1.0 0.796875 -2.453125 0.796875q-1.5 0 -2.453125 -0.609375q-0.9375 -0.609375 -1.4375 -1.765625q-0.484375 -1.171875 -0.484375 -2.5q0 -1.453125 0.5625 -2.53125q0.5625 -1.09375 1.578125 -1.65625q1.03125 -0.5625 2.265625 -0.5625q1.390625 0 2.34375 0.71875q0.953125 0.703125 1.328125 2.0l-1.21875 0.28125q-0.328125 -1.015625 -0.9375 -1.46875q-0.609375 -0.46875 -1.546875 -0.46875q-1.078125 0 -1.796875 0.515625q-0.71875 0.515625 -1.015625 1.375q-0.28125 0.859375 -0.28125 1.78125q0 1.1875 0.34375 2.078125q0.34375 0.890625 1.0625 1.328125q0.734375 0.4375 1.59375 0.4375q1.03125 0 1.75 -0.59375q0.71875 -0.609375 0.96875 -1.78125zm2.562622 0.28125l1.171875 -0.109375q0.078125 0.703125 0.375 1.15625q0.3125 0.4375 0.9375 0.71875q0.640625 0.265625 1.4375 0.265625q0.703125 0 1.234375 -0.203125q0.546875 -0.203125 0.8125 -0.5625q0.265625 -0.375 0.265625 -0.8125q0 -0.4375 -0.265625 -0.765625q-0.25 -0.328125 -0.828125 -0.546875q-0.375 -0.140625 -1.65625 -0.453125q-1.28125 -0.3125 -1.796875 -0.578125q-0.671875 -0.34375 -1.0 -0.859375q-0.328125 -0.53125 -0.328125 -1.171875q0 -0.703125 0.390625 -1.3125q0.40625 -0.609375 1.171875 -0.921875q0.78125 -0.328125 1.71875 -0.328125q1.03125 0 1.8125 0.34375q0.796875 0.328125 1.21875 0.984375q0.4375 0.640625 0.46875 1.453125l-1.1875 0.09375q-0.09375 -0.890625 -0.640625 -1.328125q-0.546875 -0.453125 -1.625 -0.453125q-1.109375 0 -1.625 0.40625q-0.515625 0.40625 -0.515625 0.984375q0 0.5 0.359375 0.828125q0.359375 0.328125 1.859375 0.671875q1.5 0.328125 2.0625 0.578125q0.8125 0.375 1.1875 0.953125q0.390625 0.578125 0.390625 1.328125q0 0.734375 -0.421875 1.390625q-0.421875 0.65625 -1.21875 1.03125q-0.796875 0.359375 -1.796875 0.359375q-1.265625 0 -2.125 -0.359375q-0.84375 -0.375 -1.328125 -1.109375q-0.484375 -0.75 -0.515625 -1.671875zm9.3272705 2.984375l0 -9.3125l4.125 0q1.25 0 1.890625 0.265625q0.65625 0.25 1.046875 0.890625q0.390625 0.625 0.390625 1.390625q0 0.984375 -0.65625 1.671875q-0.640625 0.671875 -1.96875 0.859375q0.484375 0.234375 0.734375 0.46875q0.546875 0.484375 1.03125 1.234375l1.609375 2.53125l-1.546875 0l-1.234375 -1.9375q-0.53125 -0.84375 -0.890625 -1.28125q-0.34375 -0.4375 -0.625 -0.609375q-0.265625 -0.1875 -0.546875 -0.265625q-0.21875 -0.03125 -0.6875 -0.03125l-1.4375 0l0 4.125l-1.234375 0zm1.234375 -5.203125l2.65625 0q0.84375 0 1.3125 -0.171875q0.484375 -0.171875 0.71875 -0.546875q0.25 -0.390625 0.25 -0.84375q0 -0.65625 -0.484375 -1.078125q-0.46875 -0.4375 -1.5 -0.4375l-2.953125 0l0 3.078125z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m396.24384 223.27531l23.748016 0l0 23.748032l-23.748016 0z" fill-rule="evenodd"></path><g transform="matrix(0.11874015748031497 0.0 0.0 0.11874015748031497 396.24382519685037 223.2753212598425)"><clipPath id="g22838b8494_0_0.14"><path d="m-4.5474735E-13 -2.2737368E-13l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.14)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"></image></g><path fill="#000000" fill-opacity="0.0" d="m95.49869 197.43307l106.01575 0l0 31.653534l-106.01575 0z" fill-rule="evenodd"></path><path fill="#000000" d="m123.03195 217.95306l0 -8.59375l1.140625 0l0 4.265625l4.265625 -4.265625l1.546875 0l-3.609375 3.484375l3.765625 5.109375l-1.5 0l-3.0625 -4.34375l-1.40625 1.359375l0 2.984375l-1.140625 0zm9.253906 -4.65625q-0.65625 -0.25 -0.984375 -0.6875q-0.3125 -0.453125 -0.3125 -1.0625q0 -0.9375 0.671875 -1.578125q0.6875 -0.640625 1.796875 -0.640625q1.125 0 1.8125 0.65625q0.6875 0.65625 0.6875 1.59375q0 0.59375 -0.3125 1.03125q-0.3125 0.4375 -0.953125 0.6875q0.796875 0.25 1.203125 0.828125q0.40625 0.578125 0.40625 1.375q0 1.09375 -0.78125 1.84375q-0.765625 0.75 -2.046875 0.75q-1.265625 0 -2.046875 -0.75q-0.78125 -0.75 -0.78125 -1.875q0 -0.84375 0.421875 -1.40625q0.4375 -0.5625 1.21875 -0.765625zm-0.21875 -1.796875q0 0.609375 0.390625 1.0q0.40625 0.390625 1.03125 0.390625q0.609375 0 1.0 -0.375q0.390625 -0.390625 0.390625 -0.953125q0 -0.578125 -0.40625 -0.96875q-0.40625 -0.40625 -1.0 -0.40625q-0.609375 0 -1.015625 0.390625q-0.390625 0.390625 -0.390625 0.921875zm-0.328125 3.96875q0 0.453125 0.203125 0.875q0.21875 0.421875 0.640625 0.65625q0.421875 0.234375 0.90625 0.234375q0.75 0 1.234375 -0.484375q0.5 -0.484375 0.5 -1.234375q0 -0.765625 -0.5 -1.265625q-0.5 -0.5 -1.265625 -0.5q-0.75 0 -1.234375 0.5q-0.484375 0.484375 -0.484375 1.21875zm5.470703 0.625l1.03125 -0.15625q0.09375 0.625 0.484375 0.953125q0.40625 0.328125 1.140625 0.328125q0.71875 0 1.0625 -0.28125q0.359375 -0.296875 0.359375 -0.703125q0 -0.359375 -0.3125 -0.5625q-0.21875 -0.140625 -1.078125 -0.359375q-1.15625 -0.296875 -1.609375 -0.5q-0.4375 -0.21875 -0.671875 -0.59375q-0.234375 -0.375 -0.234375 -0.84375q0 -0.40625 0.1875 -0.765625q0.1875 -0.359375 0.515625 -0.59375q0.25 -0.171875 0.671875 -0.296875q0.421875 -0.125 0.921875 -0.125q0.71875 0 1.265625 0.21875q0.5625 0.203125 0.828125 0.5625q0.265625 0.359375 0.359375 0.953125l-1.03125 0.140625q-0.0625 -0.46875 -0.40625 -0.734375q-0.328125 -0.28125 -0.953125 -0.28125q-0.71875 0 -1.03125 0.25q-0.3125 0.234375 -0.3125 0.5625q0 0.203125 0.125 0.359375q0.140625 0.171875 0.40625 0.28125q0.15625 0.0625 0.9375 0.265625q1.125 0.3125 1.5625 0.5q0.4375 0.1875 0.6875 0.546875q0.25 0.359375 0.25 0.90625q0 0.53125 -0.3125 1.0q-0.296875 0.453125 -0.875 0.71875q-0.578125 0.25 -1.3125 0.25q-1.21875 0 -1.859375 -0.5q-0.625 -0.515625 -0.796875 -1.5zm9.880859 1.859375l0 -8.59375l1.15625 0l4.515625 6.75l0 -6.75l1.09375 0l0 8.59375l-1.171875 0l-4.515625 -6.75l0 6.75l-1.078125 0zm8.150391 -3.109375q0 -1.734375 0.953125 -2.5625q0.796875 -0.6875 1.953125 -0.6875q1.28125 0 2.09375 0.84375q0.828125 0.828125 0.828125 2.3125q0 1.203125 -0.359375 1.890625q-0.359375 0.6875 -1.0625 1.078125q-0.6875 0.375 -1.5 0.375q-1.296875 0 -2.109375 -0.828125q-0.796875 -0.84375 -0.796875 -2.421875zm1.078125 0q0 1.1875 0.515625 1.78125q0.53125 0.59375 1.3125 0.59375q0.796875 0 1.3125 -0.59375q0.515625 -0.59375 0.515625 -1.8125q0 -1.15625 -0.53125 -1.75q-0.515625 -0.59375 -1.296875 -0.59375q-0.78125 0 -1.3125 0.59375q-0.515625 0.578125 -0.515625 1.78125zm10.017578 3.109375l0 -0.78125q-0.59375 0.921875 -1.734375 0.921875q-0.75 0 -1.375 -0.40625q-0.625 -0.421875 -0.96875 -1.15625q-0.34375 -0.734375 -0.34375 -1.6875q0 -0.921875 0.3125 -1.6875q0.3125 -0.765625 0.9375 -1.15625q0.625 -0.40625 1.390625 -0.40625q0.5625 0 1.0 0.234375q0.4375 0.234375 0.71875 0.609375l0 -3.078125l1.046875 0l0 8.59375l-0.984375 0zm-3.328125 -3.109375q0 1.203125 0.5 1.796875q0.5 0.578125 1.1875 0.578125q0.6875 0 1.171875 -0.5625q0.484375 -0.5625 0.484375 -1.71875q0 -1.28125 -0.5 -1.875q-0.484375 -0.59375 -1.203125 -0.59375q-0.703125 0 -1.171875 0.578125q-0.46875 0.5625 -0.46875 1.796875zm10.220703 1.109375l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m349.6063 359.7966l322.14175 0" fill-rule="evenodd"></path><path stroke="#38761d" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" d="m361.6063 359.7966l298.14175 0" fill-rule="evenodd"></path><path fill="#38761d" stroke="#38761d" stroke-width="2.0" stroke-linecap="butt" d="m361.6063 356.49313l-9.076202 3.3034668l9.076202 3.3034668z" fill-rule="evenodd"></path><path fill="#38761d" stroke="#38761d" stroke-width="2.0" stroke-linecap="butt" d="m659.74805 363.10007l9.076172 -3.3034668l-9.076172 -3.3034668z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m485.97614 324.58002l33.417297 0l0 38.4357l-33.417297 0z" fill-rule="evenodd"></path><g transform="matrix(0.10035223097112861 0.0 0.0 0.10035433070866141 485.9761283464567 324.58001679790027)"><clipPath id="g22838b8494_0_0.15"><path d="m0 4.5474735E-13l333.0 0l0 383.0l-333.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.15)" fill="#000" width="333.0" height="383.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"></image></g><path fill="#000000" fill-opacity="0.0" d="m548.24384 215.27531l23.748047 0l0 23.748032l-23.748047 0z" fill-rule="evenodd"></path><g transform="matrix(0.11874015748031497 0.0 0.0 0.11874015748031497 548.2438251968504 215.2753212598425)"><clipPath id="g22838b8494_0_0.16"><path d="m0 0l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"></path></clipPath><image clip-path="url(#g22838b8494_0_0.16)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAMgAAADICAYAAACtWK6eAAAK5klEQVR42u3df2yV1R3H8f5nTBZTo723ggl1Q+Oig3svEjWyUZdMM3+NbDEoLFmjuDjMss39szKImCWTmGyiUWK2CTXTSSpwC1VaflnqNqE/sCz8MA4ng244UayMITJkx3Nu8jhsb2+fc55znufc+7yf5JOQ0HIvt8+r5/s9z3meUyeEqCOElA8fAiEAIQQghACEEIAQAhAy5ofB4dUR6WcieuT3E6sZ+u15xLNwogOEAAQgBCAAIQABCAEIQAhACEAAQgACEAIQgBCAAGSc/HeYxJDTIwMkhgAEIAQgACEAAQgBCAEIQAhAAEIAAhACEIAABCAAAQhAAAIQgBCAAIQABCAEIAAhACEAAQgBCEAIQAASSx5f8XSqs3jpw0QGIAABCEAAAhCAAAQgAAEIQAACEIAABCAAAQhAAAIQgAAEIAABCEAAAhCAAAQgAAEIQAACEIAABCAAAQhAAAIQgAAEIAABCEAAAhCAAIR70rknnQCEAAQgBCAAIQABCAEIQAACEIAABCAAAQhACEAAQgACEAIQAhCAEIAAhAAEIAQgAAEIQAACEIAABCAAIQABCAEIQAhAAEIAQgACEJ5qwlNNeKoJQAACEIAABCAAAQhAAAIQgAAEIAABCEAAAhCAAAQgAAEHQAACEIAABCAAAQhAAAIQgACE1bys5mU1L0AAQgACEAIQgBCAAIQAhAAEIKRKgYy8tlYM//qX4q2fPij2fPNOMTjtRvHaRdNK6crkxepLZpSy5tKZovPyG0RP8x2ib/494ujWPwCE1CaQ97ufE2/ed//nMJTLuUDKRaHZPPNmcWD5MoCQ6gby0aFecfDhxROi0AEyGssfb58rju/tBgipHiABjL6ma0PDMAESpF3GBygAAciEebf9N1ojhg0g544o+5YsAgjxD4gaNVSPYQrDBpAgqkdJYjQBCEDGnZUamnVrZBy2gKgUp1wrDj+/AiAkWSAKh0mv4RpI0JvEiQQgAPlcjvxuuTUYLoAESIYe+CFASLxA1HUN2zhcAIlzJKlqIGm7ScolEFtl1d7b54vhR5aJY53t4virG0v55OR+cfKffy5lZN8W8c62F8WuRYuqAglAAFKarYoyjbsr9w1x9PlV4pNjbwhx5vCYKCCnP+wvkwFxbHeX2Hrb3ZGmgV3ObgEEIGL/3O8Zw1AjRDkU4YD8P8ff3GYMZePVNwIEIG6AmDblqoyaCIYOkCCq/DJB4upiIkBSDESVVrp9R/8Xrw81apgCUVG9yoZrbtbuR1yUWgCpUiA2kKil6bol1X9292rhMAGicuponzYStXYLIACxAuTEni7tkcMEhykQEyQuRhGApBSIWpmrA8QURxQgAZIkRxGApBCIbu9xZMWTxjiiAlF5r79TaxQBCEAiAdGZufrL7DmRcNgAovKnBQtDI7G5DIWlJilcbqJz3UN3xsoVEDWzlcR1EYCkEIjOspGoOGwBUdFZngIQ4nxBolpP5ROQf7/dGxqIrQdAACRlQMLOXqlpXRs4bAJRCTvta2s2CyApA6KeWRUGyIGFD3oJZO+vloUCop69BRCAaCfsql21OtdHIGq5fNhVvgABiLMG3cbslQsgOrNZAAGIMyC2cNgGou4hAQhxAkRnBstfIP2hgdi42xAgAKlZIDamegECEIAABCC6S9xrAYiNpe8AoUkvv7x9aLuXQE4d3UmTTpIHYmuZiW0gYZebtE8CCEAcXkk/2LrESyCHis9yJZ24AxL2ae027gNxASTsfSFqizeAAMTpzVIfvz3gFRCd/sPWTVMASRkQnZksW2WWLSAHVj0VGoitzUEBksIbpganfz30kvcz77/hCZCB0EvdO5qu44YpMhzLE01sjCI2gBwqtoUePdT20gAhsT0TK+o1kahAdHoPm+UVQFK8R8ieW+7UerJJlFIrGpABrYdad14+i8f+kOhAdDfLiXKHYRQgYe8gtH0vOkDYZUprFImCxBSIzqyVi9EDICkHYrLlmgkSfSAD2jhWO9ptCiAp36fQZB901ZPoXETUAaIa8t75C7Rx2LpyDhCAjH1O72XXaSNR10gOh9xEJyyQf2x6QRSvatbGsdbhNmwAYadb8a/fPxVtf8LnVlac5aoMZECM7N0suprnGO9TuG9xK1uwEXdATPcoHNOf/OAnJSyjy6/RQD7+oL+E4q8rn7SyJfTLV34NIMQNEFd7o5ee7XvbvFKG7n1ADP6stRTb+6UH2f/zVoAQ+0CGZt3qDEiQrkzeGYzPHhQ3aUapnwIIsQbEdIdbH4GovHrTtwFC7AAx2eHWNJ3ZQixA1O5SRzpWAoTEv0dhlKxpnBELEJXuq5oBQuJdzVtNQGw37ABhC7aaA7Ju0jXWGnaAsMNUzQFR2fGd7wIEIO4e+1PtQFTD/sGOoodASGzR+eGpDN6fiR1HUkBUXvrSV7Q/oygBSBUDef2J88WOqV9OBMjaxkIiQEp7Fc6bDBCATJz+uZMTwaFSTBDIusn50i8HgABk/NHj0S+IHZOvTiUQlS2zrgAIQMZP301TEsPhAxDVsA/+4gKAAGRsdrVemCgOH4DE1bADpAqB7Jw5FSAxNewAqTIgSU3r+gqk41K3DTtAqgxIUtO6vgJR2dY8FSAASXZa12cgLht2gFQJkNJFwQSndX0GorIhm/9bXYVDCFGKzqH79RwJHvKkbPMFh49ASveNZHILwgAJ/hwmWl9M3CQEjpxPOFTWZ/PeAZFoTwEknUC2+wZkW0Pu+74BUdmYyXcAJEVA5Mk4xzccMj3qvclRpNs3ILJh/9/Whtw0gKQHyN89BJJT702ekPUvNhZO+4akXMMOkBoEIk/EpR7iaDv3PXZm84t9LLVGN+wAqTEg8kSsl/nQMxwj6n2Nfq9rGwvv+N6wA6T2gCz3cPRYWu69rmssfNXTUWQ1QGoQiDwRmzzEcbBSr9SRLfT6BkT2R2eDhh0gtQVku4dA5lQCohr29ktmnPUNyUvZ/G6A1BAQeSI2W+4ZrE3rTnSszxaWWewhzsh/7+QaC1fstzTk7gJI7QAxndYdklkl86NgGtbi8pRc2CUxsh95zwaQTZncK0G52Xvx9Hmyn3jh5Uz+oILTrnsPe2PhBEBqAIg8GX4cth+QKco8JDPb8UXGNp01Y53Z/C02VudWKukUGtlb3CcRbVBoOkI8SLsrk38GIFUMpMK0riqTegIM5aZZK5xI9RZKtCbdhZXyhN0ZBYhEdtpgMWduc0NuiYSwSX7/8Gg0slQ7K/9uCkCqF0gwraswPCbzLZOTs8yJ02F7WneiI2rDHpRXFv7vs+VI86gcZfo2ZPPHgn8XIDW2WDHiSdJiOq2rM1rZatgnKq9MD3oQgNgus1qivrZJw25SXgEEIHGXWT02Xlf2AXclVV4BBCAuy6xmW69dbCzsTrq8AghAbJZZbTZfW6dhl+WVsw8DIACxUWaN2Jg5K9OwPxMGyOaGXB9ASFJAWlxN64Y51jQWToQor1oAQpICUm9yr4etY6KGXZVXLl8fIACJWma1uH79Sg27y/IKIACJWmYNxfH6aqnHeA1778XTFwKEJA2k3vW0rknDvt5xeQUQgEQps4p1MR+jG/buTO51168JEICYlllNcQMZ3bC7Lq8AAhDTMmtpXUJH0LDHUV4BBCAmZdZIHCfm+L1Ifppq2OMorwACEJMyq6Uu4UOWWh1xlFcAAYh2mVWXsgMghLj45cWHQAhACAEIIQAhBCCE+JFPAbquSqps2jPiAAAAAElFTkSuQmCC"></image></g><path fill="#000000" fill-opacity="0.0" d="m344.0 192.0l106.01575 0l0 38.4252l-106.01575 0z" fill-rule="evenodd"></path><path fill="#000000" d="m361.69635 215.7326l-3.328125 -8.59375l1.234375 0l2.234375 6.25q0.265625 0.75 0.453125 1.40625q0.203125 -0.703125 0.46875 -1.40625l2.3125 -6.25l1.15625 0l-3.359375 8.59375l-1.171875 0zm5.0351562 -3.109375q0 -1.734375 0.953125 -2.5625q0.796875 -0.6875 1.953125 -0.6875q1.28125 0 2.09375 0.84375q0.828125 0.828125 0.828125 2.3125q0 1.203125 -0.359375 1.890625q-0.359375 0.6875 -1.0625 1.078125q-0.6875 0.375 -1.5 0.375q-1.296875 0 -2.109375 -0.828125q-0.796875 -0.84375 -0.796875 -2.421875zm1.078125 0q0 1.1875 0.515625 1.78125q0.53125 0.59375 1.3125 0.59375q0.796875 0 1.3125 -0.59375q0.515625 -0.59375 0.515625 -1.8125q0 -1.15625 -0.53125 -1.75q-0.515625 -0.59375 -1.296875 -0.59375q-0.78125 0 -1.3125 0.59375q-0.515625 0.578125 -0.515625 1.78125zm5.955078 3.109375l0 -8.59375l1.0625 0l0 8.59375l-1.0625 0zm6.7753906 0l0 -0.921875q-0.734375 1.0625 -1.984375 1.0625q-0.546875 0 -1.03125 -0.203125q-0.46875 -0.21875 -0.703125 -0.53125q-0.234375 -0.328125 -0.328125 -0.796875q-0.0625 -0.296875 -0.0625 -0.984375l0 -3.84375l1.0625 0l0 3.453125q0 0.8125 0.0625 1.109375q0.09375 0.40625 0.40625 0.65625q0.328125 0.234375 0.8125 0.234375q0.46875 0 0.875 -0.234375q0.421875 -0.25 0.59375 -0.671875q0.1875 -0.421875 0.1875 -1.21875l0 -3.328125l1.046875 0l0 6.21875l-0.9375 0zm2.5957031 0l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm14.246094 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125zm9.2109375 3.703125l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm9.605469 -3.109375q0 -1.734375 0.953125 -2.5625q0.796875 -0.6875 1.953125 -0.6875q1.28125 0 2.09375 0.84375q0.828125 0.828125 0.828125 2.3125q0 1.203125 -0.359375 1.890625q-0.359375 0.6875 -1.0625 1.078125q-0.6875 0.375 -1.5 0.375q-1.296875 0 -2.109375 -0.828125q-0.796875 -0.84375 -0.796875 -2.421875zm1.078125 0q0 1.1875 0.515625 1.78125q0.53125 0.59375 1.3125 0.59375q0.796875 0 1.3125 -0.59375q0.515625 -0.59375 0.515625 -1.8125q0 -1.15625 -0.53125 -1.75q-0.515625 -0.59375 -1.296875 -0.59375q-0.78125 0 -1.3125 0.59375q-0.515625 0.578125 -0.515625 1.78125zm10.064453 3.109375l0 -0.921875q-0.734375 1.0625 -1.984375 1.0625q-0.546875 0 -1.03125 -0.203125q-0.46875 -0.21875 -0.703125 -0.53125q-0.234375 -0.328125 -0.328125 -0.796875q-0.0625 -0.296875 -0.0625 -0.984375l0 -3.84375l1.0625 0l0 3.453125q0 0.8125 0.0625 1.109375q0.09375 0.40625 0.40625 0.65625q0.328125 0.234375 0.8125 0.234375q0.46875 0 0.875 -0.234375q0.421875 -0.25 0.59375 -0.671875q0.1875 -0.421875 0.1875 -1.21875l0 -3.328125l1.046875 0l0 6.21875l-0.9375 0zm2.5957031 0l0 -6.21875l0.9375 0l0 0.875q0.6875 -1.015625 1.984375 -1.015625q0.5625 0 1.03125 0.203125q0.484375 0.203125 0.71875 0.53125q0.234375 0.328125 0.328125 0.765625q0.046875 0.296875 0.046875 1.03125l0 3.828125l-1.046875 0l0 -3.78125q0 -0.65625 -0.125 -0.96875q-0.125 -0.3125 -0.4375 -0.5q-0.3125 -0.203125 -0.734375 -0.203125q-0.671875 0 -1.171875 0.4375q-0.484375 0.421875 -0.484375 1.609375l0 3.40625l-1.046875 0zm8.970703 -0.9375l0.15625 0.921875q-0.453125 0.09375 -0.796875 0.09375q-0.578125 0 -0.890625 -0.171875q-0.3125 -0.1875 -0.453125 -0.484375q-0.125 -0.296875 -0.125 -1.25l0 -3.578125l-0.765625 0l0 -0.8125l0.765625 0l0 -1.546875l1.046875 -0.625l0 2.171875l1.0625 0l0 0.8125l-1.0625 0l0 3.640625q0 0.453125 0.046875 0.578125q0.0625 0.125 0.1875 0.203125q0.125 0.078125 0.359375 0.078125q0.1875 0 0.46875 -0.03125z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m509.36484 127.0c0 47.897644 -39.826782 71.84645 -79.653564 95.79527c-39.82675 23.948822 -79.653534 47.89763 -79.653534 95.79527" fill-rule="evenodd"></path><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m509.36484 127.0c0 47.897644 -39.826782 71.84645 -79.653564 95.79527c-19.91336 11.974411 -39.82675 23.948822 -54.76181 38.916824c-7.467499 7.484009 -13.69043 15.716431 -18.046509 25.071442c-2.178009 4.67749 -3.8893433 9.635651 -5.056122 14.921234c-0.583374 2.6427612 -1.0306702 5.3674316 -1.3321228 8.179779c-0.07531738 0.7030945 -0.14154053 1.4116516 -0.19851685 2.1257935l-0.042663574 0.5840759" fill-rule="evenodd"></path><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m348.62286 312.53503l1.4874573 4.594574l1.8138733 -4.475769z" fill-rule="evenodd"></path></g></svg>
-
+<svg version="1.1" viewBox="0.0 0.0 960.0 540.0" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg"><clipPath id="g5fa7a33c75bdd211_0.0"><path d="m0 0l960.0 0l0 540.0l-960.0 0l0 -540.0z" clip-rule="nonzero"/></clipPath><g clip-path="url(#g5fa7a33c75bdd211_0.0)"><path fill="#ffffff" d="m0 0l960.0 0l0 540.0l-960.0 0z" fill-rule="evenodd"/><defs><linearGradient id="g5fa7a33c75bdd211_0.1" gradientUnits="userSpaceOnUse" gradientTransform="matrix(17.12302180276804 0.0 0.0 17.12302180276804 0.0 0.0)" spreadMethod="pad" x1="5.577209955348188" y1="10.236193547355041" x2="5.577148282802689" y2="27.35921535001202"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.1)" d="m95.49869 222.7831l0 0c0 -26.23767 21.269836 -47.507507 47.507507 -47.507507l190.02435 0l0 0c12.599762 0 24.683502 5.005249 33.592896 13.914627c8.909363 8.909393 13.914612 20.993118 13.914612 33.59288l0 198.18184c0 26.23767 -21.269836 47.507507 -47.507507 47.507507l-190.02435 0c-26.23767 0 -47.507507 -21.269836 -47.507507 -47.507507z" fill-rule="evenodd"/><path fill="#efefef" d="m112.75538 366.96262l20.043709 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"/><path stroke="#cccccc" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m112.75538 366.96262l20.043709 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"/><path fill="#efefef" d="m160.75537 374.96262l20.043716 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"/><path stroke="#cccccc" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m160.75537 374.96262l20.043716 -87.81726l81.15367 -39.082367l81.153656 39.082367l20.043701 87.81726l-56.160767 70.424255l-90.07318 0z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m221.46982 269.53543l91.62204 0l0 31.653534l-91.62204 0z" fill-rule="evenodd"/><path fill="#000000" d="m239.0792 288.94357l1.390625 0.34375q-0.4375 1.703125 -1.578125 2.609375q-1.125 0.890625 -2.765625 0.890625q-1.6875 0 -2.75 -0.6875q-1.0625 -0.6875 -1.625 -2.0q-0.546875 -1.3125 -0.546875 -2.8125q0 -1.640625 0.625 -2.859375q0.625 -1.21875 1.78125 -1.84375q1.15625 -0.640625 2.546875 -0.640625q1.5625 0 2.640625 0.8125q1.078125 0.796875 1.5 2.25l-1.375 0.3125q-0.359375 -1.140625 -1.0625 -1.65625q-0.6875 -0.53125 -1.734375 -0.53125q-1.21875 0 -2.03125 0.578125q-0.8125 0.578125 -1.140625 1.5625q-0.328125 0.96875 -0.328125 2.015625q0 1.328125 0.390625 2.328125q0.390625 1.0 1.21875 1.5q0.828125 0.484375 1.78125 0.484375q1.171875 0 1.96875 -0.671875q0.8125 -0.671875 1.09375 -1.984375zm2.4592743 -0.125q0 -2.109375 1.171875 -3.125q0.984375 -0.84375 2.390625 -0.84375q1.578125 0 2.5625 1.03125q1.0 1.015625 1.0 2.828125q0 1.46875 -0.4375 2.3125q-0.4375 0.828125 -1.28125 1.296875q-0.84375 0.46875 -1.84375 0.46875q-1.59375 0 -2.578125 -1.015625q-0.984375 -1.03125 -0.984375 -2.953125zm1.328125 0q0 1.453125 0.625 2.1875q0.640625 0.71875 1.609375 0.71875q0.96875 0 1.59375 -0.71875q0.640625 -0.734375 0.640625 -2.234375q0 -1.40625 -0.640625 -2.125q-0.640625 -0.734375 -1.59375 -0.734375q-0.96875 0 -1.609375 0.71875q-0.625 0.71875 -0.625 2.1875zm7.307358 3.796875l0 -7.59375l1.15625 0l0 1.078125q0.84375 -1.25 2.421875 -1.25q0.6875 0 1.265625 0.25q0.578125 0.234375 0.859375 0.640625q0.28125 0.40625 0.40625 0.953125q0.0625 0.359375 0.0625 1.25l0 4.671875l-1.28125 0l0 -4.625q0 -0.78125 -0.15625 -1.171875q-0.15625 -0.390625 -0.546875 -0.625q-0.375 -0.234375 -0.890625 -0.234375q-0.8125 0 -1.421875 0.53125q-0.59375 0.515625 -0.59375 1.96875l0 4.15625l-1.28125 0zm10.963593 -1.15625l0.1875 1.140625q-0.546875 0.109375 -0.984375 0.109375q-0.6875 0 -1.078125 -0.21875q-0.390625 -0.21875 -0.546875 -0.578125q-0.15625 -0.359375 -0.15625 -1.515625l0 -4.375l-0.953125 0l0 -1.0l0.953125 0l0 -1.890625l1.28125 -0.765625l0 2.65625l1.296875 0l0 1.0l-1.296875 0l0 4.4375q0 0.546875 0.0625 0.71875q0.078125 0.15625 0.21875 0.25q0.15625 0.078125 0.453125 0.078125q0.203125 0 0.5625 -0.046875zm6.212616 0.21875q-0.71875 0.609375 -1.375 0.859375q-0.65625 0.25 -1.421875 0.25q-1.25 0 -1.921875 -0.609375q-0.671875 -0.609375 -0.671875 -1.5625q0 -0.5625 0.25 -1.015625q0.25 -0.46875 0.65625 -0.75q0.421875 -0.28125 0.9375 -0.421875q0.375 -0.09375 1.140625 -0.1875q1.5625 -0.1875 2.296875 -0.453125q0.015625 -0.265625 0.015625 -0.328125q0 -0.796875 -0.375 -1.109375q-0.484375 -0.4375 -1.453125 -0.4375q-0.921875 0 -1.359375 0.328125q-0.421875 0.3125 -0.625 1.109375l-1.265625 -0.171875q0.171875 -0.796875 0.5625 -1.296875q0.390625 -0.5 1.140625 -0.765625q0.75 -0.265625 1.71875 -0.265625q0.984375 0 1.59375 0.234375q0.609375 0.21875 0.890625 0.5625q0.28125 0.34375 0.40625 0.875q0.0625 0.328125 0.0625 1.1875l0 1.71875q0 1.796875 0.078125 2.28125q0.078125 0.46875 0.328125 0.90625l-1.34375 0q-0.203125 -0.40625 -0.265625 -0.9375zm-0.109375 -2.875q-0.703125 0.28125 -2.09375 0.484375q-0.796875 0.109375 -1.125 0.265625q-0.328125 0.140625 -0.515625 0.421875q-0.171875 0.265625 -0.171875 0.59375q0 0.515625 0.390625 0.859375q0.390625 0.34375 1.140625 0.34375q0.734375 0 1.3125 -0.3125q0.59375 -0.328125 0.859375 -0.890625q0.203125 -0.4375 0.203125 -1.296875l0 -0.46875zm3.3073425 -5.203125l0 -1.46875l1.296875 0l0 1.46875l-1.296875 0zm0 9.015625l0 -7.59375l1.296875 0l0 7.59375l-1.296875 0zm3.2561646 0l0 -7.59375l1.15625 0l0 1.078125q0.84375 -1.25 2.421875 -1.25q0.6875 0 1.265625 0.25q0.578125 0.234375 0.859375 0.640625q0.28125 0.40625 0.40625 0.953125q0.0625 0.359375 0.0625 1.25l0 4.671875l-1.28125 0l0 -4.625q0 -0.78125 -0.15625 -1.171875q-0.15625 -0.390625 -0.546875 -0.625q-0.375 -0.234375 -0.890625 -0.234375q-0.8125 0 -1.421875 0.53125q-0.59375 0.515625 -0.59375 1.96875l0 4.15625l-1.28125 0zm13.354218 -2.453125l1.328125 0.171875q-0.3125 1.171875 -1.171875 1.8125q-0.84375 0.640625 -2.171875 0.640625q-1.671875 0 -2.65625 -1.015625q-0.96875 -1.03125 -0.96875 -2.890625q0 -1.921875 0.984375 -2.96875q1.0 -1.0625 2.578125 -1.0625q1.515625 0 2.484375 1.03125q0.96875 1.03125 0.96875 2.921875q0 0.109375 -0.015625 0.34375l-5.65625 0q0.0625 1.25 0.703125 1.921875q0.640625 0.65625 1.59375 0.65625q0.703125 0 1.203125 -0.359375q0.5 -0.375 0.796875 -1.203125zm-4.234375 -2.078125l4.25 0q-0.09375 -0.953125 -0.484375 -1.4375q-0.625 -0.75 -1.609375 -0.75q-0.875 0 -1.484375 0.59375q-0.609375 0.59375 -0.671875 1.59375zm7.166748 4.53125l0 -7.59375l1.15625 0l0 1.140625q0.453125 -0.796875 0.828125 -1.046875q0.375 -0.265625 0.8125 -0.265625q0.65625 0 1.328125 0.40625l-0.4375 1.203125q-0.46875 -0.28125 -0.953125 -0.28125q-0.421875 0 -0.765625 0.25q-0.328125 0.25 -0.46875 0.703125q-0.21875 0.6875 -0.21875 1.5l0 3.984375l-1.28125 0z" fill-rule="nonzero"/><path fill="#eeeeee" d="m638.1916 245.3813l0 0c0 -20.21315 16.385986 -36.59915 36.599182 -36.59915l160.06152 0c9.706665 0 19.015808 3.8559723 25.879517 10.71965c6.8636475 6.8636627 10.7196045 16.172806 10.7196045 25.879501l0 146.39226c0 20.213135 -16.385986 36.59915 -36.59912 36.59915l-160.06152 0c-20.213196 0 -36.599182 -16.386017 -36.599182 -36.59915z" fill-rule="evenodd"/><defs><linearGradient id="g5fa7a33c75bdd211_0.2" gradientUnits="userSpaceOnUse" gradientTransform="matrix(8.009865912487124 0.0 0.0 8.009865912487124 0.0 0.0)" spreadMethod="pad" x1="55.440814573606275" y1="7.845580531671038" x2="55.4407889736155" y2="15.855446444117256"><stop offset="0.0" stop-color="#fdecdb"/><stop offset="1.0" stop-color="#f0a963"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.2)" d="m444.0735 73.535645l0 0c0 -5.9056473 4.7874756 -10.693127 10.693146 -10.693127l109.19638 0c2.8359985 0 5.555847 1.1265945 7.5612183 3.1319466c2.005371 2.0053482 3.131958 4.725189 3.131958 7.56118l0 42.771225c0 5.905655 -4.7874756 10.6931305 -10.693176 10.6931305l-109.19638 0c-5.90567 0 -10.693146 -4.7874756 -10.693146 -10.6931305z" fill-rule="evenodd"/><defs><linearGradient id="g5fa7a33c75bdd211_0.3" gradientUnits="userSpaceOnUse" gradientTransform="matrix(10.216984389426065 0.0 0.0 10.216984389426065 0.0 0.0)" spreadMethod="pad" x1="21.6766325396536" y1="34.75188085635744" x2="21.676596414073476" y2="44.968865245719634"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.3)" d="m221.46982 422.46457l0 0c0 -4.0848694 3.3114471 -7.396332 7.3963165 -7.396332l148.86351 0l-9.309509 -60.007874l76.278015 60.007874l37.24936 0c1.9616394 0 3.8428955 0.77926636 5.2299805 2.1663513c1.387085 1.3870544 2.1663513 3.268341 2.1663513 5.2299805l0 0l0 0l0 11.094482l0 18.490814c0 4.0848694 -3.3114624 7.396332 -7.396332 7.396332l-37.24936 0l-66.968506 0l0 0l-148.86351 0c-4.0848694 0 -7.3963165 -3.3114624 -7.3963165 -7.396332l0 -18.490814l0 -11.094482l0 0z" fill-rule="evenodd"/><path fill="#000000" d="m233.22987 435.97205l1.203125 -0.109375q0.078125 0.71875 0.390625 1.1875q0.3125 0.453125 0.953125 0.734375q0.65625 0.28125 1.46875 0.28125q0.71875 0 1.265625 -0.21875q0.5625 -0.21875 0.828125 -0.578125q0.265625 -0.375 0.265625 -0.828125q0 -0.453125 -0.265625 -0.78125q-0.25 -0.328125 -0.84375 -0.5625q-0.390625 -0.15625 -1.703125 -0.46875q-1.3125 -0.3125 -1.84375 -0.59375q-0.671875 -0.359375 -1.015625 -0.890625q-0.328125 -0.53125 -0.328125 -1.1875q0 -0.71875 0.40625 -1.34375q0.40625 -0.625 1.1875 -0.953125q0.796875 -0.328125 1.765625 -0.328125q1.046875 0 1.859375 0.34375q0.8125 0.34375 1.25 1.015625q0.4375 0.65625 0.46875 1.484375l-1.203125 0.09375q-0.109375 -0.90625 -0.671875 -1.359375q-0.5625 -0.46875 -1.65625 -0.46875q-1.140625 0 -1.671875 0.421875q-0.515625 0.421875 -0.515625 1.015625q0 0.515625 0.359375 0.84375q0.375 0.328125 1.90625 0.6875q1.546875 0.34375 2.109375 0.59375q0.84375 0.390625 1.234375 0.984375q0.390625 0.578125 0.390625 1.359375q0 0.75 -0.4375 1.4375q-0.421875 0.671875 -1.25 1.046875q-0.8125 0.359375 -1.828125 0.359375q-1.296875 0 -2.171875 -0.375q-0.875 -0.375 -1.375 -1.125q-0.5 -0.765625 -0.53125 -1.71875zm8.28038 3.0625l3.65625 -9.546875l1.359375 0l3.90625 9.546875l-1.4375 0l-1.109375 -2.890625l-3.984375 0l-1.046875 2.890625l-1.34375 0zm2.75 -3.921875l3.234375 0l-1.0 -2.640625q-0.453125 -1.203125 -0.671875 -1.96875q-0.1875 0.90625 -0.515625 1.8125l-1.046875 2.796875zm7.1710052 3.921875l0 -9.546875l1.296875 0l5.0156403 7.5l0 -7.5l1.203125 0l0 9.546875l-1.296875 0l-5.0156403 -7.5l0 7.5l-1.203125 0zm9.812668 -5.578125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm0 5.578125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm7.9997253 -7.9375l0 1.359375l-1.25 0l0 -1.078125q0 -0.875 0.203125 -1.265625q0.265625 -0.515625 0.859375 -0.78125l0.296875 0.453125q-0.359375 0.15625 -0.53125 0.453125q-0.171875 0.296875 -0.1875 0.859375l0.609375 0zm2.015625 0l0 1.359375l-1.25 0l0 -1.078125q0 -0.875 0.203125 -1.265625q0.28125 -0.515625 0.859375 -0.78125l0.296875 0.453125q-0.359375 0.15625 -0.53125 0.453125q-0.171875 0.296875 -0.1875 0.859375l0.609375 0zm1.0321045 5.875l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm7.1328125 4.71875l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3656006 -4.765625l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm3.226715 0l0 -6.0l-1.03125 0l0 -0.90625l1.03125 0l0 -0.734375q0 -0.703125 0.125 -1.046875q0.171875 -0.453125 0.59375 -0.734375q0.421875 -0.28125 1.203125 -0.28125q0.484375 0 1.09375 0.109375l-0.1875 1.03125q-0.359375 -0.0625 -0.6875 -0.0625q-0.53125 0 -0.75 0.234375q-0.21875 0.21875 -0.21875 0.84375l0 0.640625l1.34375 0l0 0.90625l-1.34375 0l0 6.0l-1.171875 0zm3.703003 0l0 -6.0l-1.03125 0l0 -0.90625l1.03125 0l0 -0.734375q0 -0.703125 0.125 -1.046875q0.171875 -0.453125 0.59375 -0.734375q0.421875 -0.28125 1.203125 -0.28125q0.484375 0 1.09375 0.109375l-0.1875 1.03125q-0.359375 -0.0625 -0.6875 -0.0625q-0.53125 0 -0.75 0.234375q-0.21875 0.21875 -0.21875 0.84375l0 0.640625l1.34375 0l0 0.90625l-1.34375 0l0 6.0l-1.171875 0zm8.156097 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.8499756 -1.453125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm0 5.578125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm2.499878 0.15625l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm3.7029724 0l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm4.578003 -0.15625l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm11.055542 2.65625l-0.125 -1.09375q0.375 0.109375 0.65625 0.109375q0.390625 0 0.625 -0.140625q0.234375 -0.125 0.390625 -0.359375q0.109375 -0.171875 0.359375 -0.875q0.03125 -0.09375 0.109375 -0.28125l-2.625 -6.921875l1.265625 0l1.4375 4.0q0.28125 0.765625 0.5 1.59375q0.203125 -0.796875 0.46875 -1.578125l1.484375 -4.015625l1.171875 0l-2.625 7.015625q-0.421875 1.140625 -0.65625 1.578125q-0.3125 0.578125 -0.71875 0.84375q-0.40625 0.28125 -0.96875 0.28125q-0.328125 0 -0.75 -0.15625zm6.2734375 -6.109375q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.23526 0.578125l1.140625 0.15625q0.078125 0.53125 0.40625 0.78125q0.4375 0.3125 1.1875 0.3125q0.8125 0 1.25 -0.328125q0.453125 -0.3125 0.609375 -0.90625q0.09375 -0.359375 0.078125 -1.5q-0.765625 0.90625 -1.90625 0.90625q-1.4375 0 -2.21875 -1.03125q-0.78125 -1.03125 -0.78125 -2.46875q0 -0.984375 0.359375 -1.8125q0.359375 -0.84375 1.03125 -1.296875q0.6875 -0.453125 1.609375 -0.453125q1.21875 0 2.015625 0.984375l0 -0.828125l1.078125 0l0 5.96875q0 1.609375 -0.328125 2.28125q-0.328125 0.6875 -1.046875 1.078125q-0.703125 0.390625 -1.75 0.390625q-1.234375 0 -2.0 -0.5625q-0.75 -0.5625 -0.734375 -1.671875zm0.984375 -4.15625q0 1.359375 0.53125 1.984375q0.546875 0.625 1.359375 0.625q0.796875 0 1.34375 -0.625q0.546875 -0.625 0.546875 -1.953125q0 -1.265625 -0.5625 -1.90625q-0.5625 -0.640625 -1.359375 -0.640625q-0.765625 0 -1.3125 0.640625q-0.546875 0.625 -0.546875 1.875zm6.9749756 3.578125l0 -1.328125l1.34375 0l0 1.328125l-1.34375 0zm7.8904724 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm10.2274475 0.15625l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm4.8592224 -0.15625l0 -6.0l-1.03125 0l0 -0.90625l1.03125 0l0 -0.734375q0 -0.703125 0.125 -1.046875q0.171875 -0.453125 0.59375 -0.734375q0.421875 -0.28125 1.203125 -0.28125q0.484375 0 1.09375 0.109375l-0.1875 1.03125q-0.359375 -0.0625 -0.6875 -0.0625q-0.53125 0 -0.75 0.234375q-0.21875 0.21875 -0.21875 0.84375l0 0.640625l1.34375 0l0 0.90625l-1.34375 0l0 6.0l-1.171875 0zm3.406128 0l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.0164795 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.874878 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5218506 4.125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.896851 0l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm6.1781006 0.59375l0 -1.1875l3.59375 0l0 1.1875l-3.59375 0zm7.4539795 1.8125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.874878 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm11.037476 3.265625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm10.789917 -8.28125l0 -1.359375l1.265625 0l0 1.078125q0 0.875 -0.203125 1.25q-0.28125 0.53125 -0.875 0.796875l-0.28125 -0.453125q0.34375 -0.15625 0.515625 -0.453125q0.171875 -0.3125 0.1875 -0.859375l-0.609375 0zm2.015625 0l0 -1.359375l1.265625 0l0 1.078125q0 0.875 -0.203125 1.25q-0.28125 0.53125 -0.875 0.796875l-0.28125 -0.453125q0.34375 -0.15625 0.515625 -0.453125q0.171875 -0.3125 0.203125 -0.859375l-0.625 0z" fill-rule="nonzero"/><defs><linearGradient id="g5fa7a33c75bdd211_0.4" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.914569378160547 0.0 0.0 6.914569378160547 0.0 0.0)" spreadMethod="pad" x1="40.85860877059094" y1="48.57725936099422" x2="40.85858208096878" y2="55.491828739103255"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.4)" d="m282.51968 335.89108l67.08661 0l0 47.811005l-67.08661 0z" fill-rule="evenodd"/><path fill="#000000" d="m295.09424 365.6566l0 -11.453125l8.28125 0l0 1.34375l-6.765625 0l0 3.515625l6.34375 0l0 1.34375l-6.34375 0l0 3.890625l7.03125 0l0 1.359375l-8.546875 0zm10.46875 0l0 -8.296875l1.265625 0l0 1.171875q0.90625 -1.359375 2.640625 -1.359375q0.75 0 1.375 0.265625q0.625 0.265625 0.9375 0.703125q0.3125 0.4375 0.4375 1.046875q0.078125 0.390625 0.078125 1.359375l0 5.109375l-1.40625 0l0 -5.046875q0 -0.859375 -0.171875 -1.28125q-0.15625 -0.4375 -0.578125 -0.6875q-0.40625 -0.25 -0.96875 -0.25q-0.90625 0 -1.5625 0.578125q-0.640625 0.5625 -0.640625 2.15625l0 4.53125l-1.40625 0zm11.1953125 0l-3.15625 -8.296875l1.484375 0l1.78125 4.96875q0.296875 0.796875 0.53125 1.671875q0.1875 -0.65625 0.53125 -1.578125l1.84375 -5.0625l1.4375 0l-3.140625 8.296875l-1.3125 0zm5.171875 -4.15625q0 -2.296875 1.28125 -3.40625q1.078125 -0.921875 2.609375 -0.921875q1.71875 0 2.796875 1.125q1.09375 1.109375 1.09375 3.09375q0 1.59375 -0.484375 2.515625q-0.484375 0.921875 -1.40625 1.4375q-0.90625 0.5 -2.0 0.5q-1.734375 0 -2.8125 -1.109375q-1.078125 -1.125 -1.078125 -3.234375zm1.453125 0q0 1.59375 0.6875 2.390625q0.703125 0.796875 1.75 0.796875q1.046875 0 1.734375 -0.796875q0.703125 -0.796875 0.703125 -2.4375q0 -1.53125 -0.703125 -2.328125q-0.6875 -0.796875 -1.734375 -0.796875q-1.046875 0 -1.75 0.796875q-0.6875 0.78125 -0.6875 2.375zm7.9140625 7.359375l-0.15625 -1.328125q0.453125 0.125 0.796875 0.125q0.46875 0 0.75 -0.15625q0.28125 -0.15625 0.46875 -0.4375q0.125 -0.203125 0.421875 -1.046875q0.046875 -0.109375 0.125 -0.34375l-3.140625 -8.3125l1.515625 0l1.71875 4.796875q0.34375 0.921875 0.609375 1.921875q0.234375 -0.96875 0.578125 -1.890625l1.765625 -4.828125l1.40625 0l-3.15625 8.4375q-0.5 1.375 -0.78125 1.890625q-0.375 0.6875 -0.859375 1.015625q-0.484375 0.328125 -1.15625 0.328125q-0.40625 0 -0.90625 -0.171875z" fill-rule="nonzero"/><defs><linearGradient id="g5fa7a33c75bdd211_0.5" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.914570860917175 0.0 0.0 6.914570860917175 0.0 0.0)" spreadMethod="pad" x1="25.330889580021708" y1="48.577435771429506" x2="25.330862890405275" y2="55.49200663229517"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.5)" d="m175.15224 335.8924l73.95274 0l0 47.811005l-73.95274 0z" fill-rule="evenodd"/><path fill="#000000" d="m190.5012 353.5354l1.203125 -0.109375q0.078125 0.71875 0.390625 1.1875q0.3125 0.453125 0.953125 0.734375q0.65625 0.28125 1.46875 0.28125q0.71875 0 1.265625 -0.21875q0.5625 -0.21875 0.828125 -0.578125q0.265625 -0.375 0.265625 -0.828125q0 -0.453125 -0.265625 -0.78125q-0.25 -0.328125 -0.84375 -0.5625q-0.390625 -0.15625 -1.703125 -0.46875q-1.3125 -0.3125 -1.84375 -0.59375q-0.671875 -0.359375 -1.015625 -0.890625q-0.328125 -0.53125 -0.328125 -1.1875q0 -0.71875 0.40625 -1.34375q0.40625 -0.625 1.1875 -0.953125q0.796875 -0.328125 1.765625 -0.328125q1.046875 0 1.859375 0.34375q0.8125 0.34375 1.25 1.015625q0.4375 0.65625 0.46875 1.484375l-1.203125 0.09375q-0.109375 -0.90625 -0.671875 -1.359375q-0.5625 -0.46875 -1.65625 -0.46875q-1.140625 0 -1.671875 0.421875q-0.515625 0.421875 -0.515625 1.015625q0 0.515625 0.359375 0.84375q0.375 0.328125 1.90625 0.6875q1.546875 0.34375 2.109375 0.59375q0.84375 0.390625 1.234375 0.984375q0.390625 0.578125 0.390625 1.359375q0 0.75 -0.4375 1.4375q-0.421875 0.671875 -1.25 1.046875q-0.8125 0.359375 -1.828125 0.359375q-1.296875 0 -2.171875 -0.375q-0.875 -0.375 -1.375 -1.125q-0.5 -0.765625 -0.53125 -1.71875zm13.90538 0.84375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625153 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.1718903 0zm6.375885 0l-2.625 -6.90625l1.234375 0l1.484375 4.140625q0.234375 0.65625 0.4375 1.390625q0.15625 -0.546875 0.4375 -1.3125l1.53125 -4.21875l1.21875 0l-2.625 6.90625l-1.09375 0zm4.7578125 -8.1875l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm7.46109 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.8828125 0.3125l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375z" fill-rule="nonzero"/><path fill="#000000" d="m188.28462 372.5979l1.25 -6.0l-1.046875 0l0.1875 -0.90625l1.046875 0l0.203125 -0.984375q0.15625 -0.734375 0.3125 -1.0625q0.171875 -0.328125 0.546875 -0.53125q0.375 -0.21875 1.015625 -0.21875q0.453125 0 1.3125 0.1875l-0.21875 1.03125q-0.59375 -0.15625 -1.0 -0.15625q-0.34375 0 -0.53125 0.171875q-0.171875 0.171875 -0.296875 0.8125l-0.15625 0.75l1.3125 0l-0.1875 0.90625l-1.3125 0l-1.265625 6.0l-1.171875 0zm3.5311127 0l1.453125 -6.90625l1.03125 0l-0.28125 1.40625q0.53125 -0.796875 1.03125 -1.171875q0.515625 -0.390625 1.046875 -0.390625q0.359375 0 0.875 0.25l-0.484375 1.09375q-0.3125 -0.21875 -0.671875 -0.21875q-0.625 0 -1.28125 0.6875q-0.640625 0.6875 -1.015625 2.484375l-0.578125 2.765625l-1.125 0zm4.6571198 -2.625q0 -2.015625 1.1875 -3.34375q0.984375 -1.09375 2.578125 -1.09375q1.25 0 2.015625 0.78125q0.765625 0.78125 0.765625 2.109375q0 1.1875 -0.484375 2.21875q-0.484375 1.015625 -1.375 1.5625q-0.890625 0.546875 -1.875 0.546875q-0.796875 0 -1.46875 -0.34375q-0.65625 -0.34375 -1.0 -0.96875q-0.34375 -0.640625 -0.34375 -1.46875zm1.171875 -0.109375q0 0.96875 0.46875 1.484375q0.46875 0.5 1.1875 0.5q0.375 0 0.75 -0.15625q0.375 -0.15625 0.6875 -0.46875q0.328125 -0.3125 0.546875 -0.703125q0.21875 -0.40625 0.359375 -0.875q0.203125 -0.640625 0.203125 -1.234375q0 -0.9375 -0.46875 -1.453125q-0.46875 -0.515625 -1.1875 -0.515625q-0.5625 0 -1.015625 0.265625q-0.453125 0.265625 -0.828125 0.78125q-0.359375 0.5 -0.53125 1.171875q-0.171875 0.671875 -0.171875 1.203125zm6.0218506 2.734375l1.453125 -6.90625l1.0625 0l-0.25 1.203125q0.6875 -0.71875 1.296875 -1.03125q0.609375 -0.328125 1.234375 -0.328125q0.84375 0 1.3125 0.453125q0.484375 0.453125 0.484375 1.21875q0 0.375 -0.171875 1.203125l-0.875 4.1875l-1.171875 0l0.921875 -4.375q0.125 -0.640625 0.125 -0.953125q0 -0.34375 -0.234375 -0.546875q-0.234375 -0.21875 -0.6875 -0.21875q-0.90625 0 -1.609375 0.65625q-0.703125 0.640625 -1.03125 2.21875l-0.671875 3.21875l-1.1875 0zm10.178101 -0.953125l-0.203125 0.953125q-0.421875 0.109375 -0.8125 0.109375q-0.703125 0 -1.125 -0.34375q-0.3125 -0.25 -0.3125 -0.703125q0 -0.234375 0.171875 -1.046875l0.828125 -4.015625l-0.921875 0l0.1875 -0.90625l0.9375 0l0.34375 -1.703125l1.359375 -0.8125l-0.53125 2.515625l1.15625 0l-0.1875 0.90625l-1.15625 0l-0.796875 3.8125q-0.15625 0.734375 -0.15625 0.875q0 0.21875 0.109375 0.328125q0.125 0.109375 0.40625 0.109375q0.390625 0 0.703125 -0.078125zm6.0154877 -1.390625l1.15625 0.109375q-0.25 0.859375 -1.140625 1.625q-0.890625 0.765625 -2.125 0.765625q-0.765625 0 -1.40625 -0.34375q-0.640625 -0.359375 -0.984375 -1.03125q-0.328125 -0.6875 -0.328125 -1.546875q0 -1.140625 0.515625 -2.203125q0.53125 -1.0625 1.359375 -1.578125q0.84375 -0.515625 1.8125 -0.515625q1.234375 0 1.96875 0.765625q0.75 0.765625 0.75 2.09375q0 0.5 -0.09375 1.046875l-5.09375 0q-0.03125 0.1875 -0.03125 0.359375q0 0.96875 0.4375 1.484375q0.453125 0.5 1.109375 0.5q0.59375 0 1.171875 -0.390625q0.59375 -0.390625 0.921875 -1.140625zm-3.421875 -1.71875l3.875 0q0.015625 -0.1875 0.015625 -0.265625q0 -0.875 -0.453125 -1.34375q-0.4375 -0.484375 -1.125 -0.484375q-0.765625 0 -1.390625 0.53125q-0.609375 0.515625 -0.921875 1.5625zm5.7562256 4.0625l1.453125 -6.90625l1.0625 0l-0.25 1.203125q0.6875 -0.71875 1.296875 -1.03125q0.609375 -0.328125 1.234375 -0.328125q0.84375 0 1.3125 0.453125q0.484375 0.453125 0.484375 1.21875q0 0.375 -0.171875 1.203125l-0.875 4.1875l-1.171875 0l0.921875 -4.375q0.125 -0.640625 0.125 -0.953125q0 -0.34375 -0.234375 -0.546875q-0.234375 -0.21875 -0.6875 -0.21875q-0.90625 0 -1.609375 0.65625q-0.703125 0.640625 -1.03125 2.21875l-0.671875 3.21875l-1.1875 0zm12.084351 -1.0q-1.015625 1.15625 -2.109375 1.15625q-0.984375 0 -1.640625 -0.71875q-0.65625 -0.734375 -0.65625 -2.109375q0 -1.265625 0.515625 -2.3125q0.515625 -1.046875 1.296875 -1.5625q0.78125 -0.515625 1.5625 -0.515625q1.28125 0 1.9375 1.234375l0.78125 -3.71875l1.171875 0l-1.984375 9.546875l-1.09375 0l0.21875 -1.0zm-3.234375 -1.890625q0 0.71875 0.140625 1.140625q0.140625 0.40625 0.484375 0.6875q0.34375 0.28125 0.828125 0.28125q0.796875 0 1.453125 -0.84375q0.875 -1.109375 0.875 -2.734375q0 -0.8125 -0.4375 -1.265625q-0.421875 -0.46875 -1.078125 -0.46875q-0.421875 0 -0.765625 0.1875q-0.34375 0.1875 -0.6875 0.640625q-0.34375 0.453125 -0.578125 1.15625q-0.234375 0.6875 -0.234375 1.21875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m249.10498 359.7979l33.417328 0" fill-rule="evenodd"/><path stroke="#666666" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" d="m261.10498 359.7979l9.417328 0" fill-rule="evenodd"/><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m261.10498 356.49445l-9.076187 3.3034668l9.076187 3.3034668z" fill-rule="evenodd"/><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m270.5223 363.10138l9.076202 -3.3034668l-9.076202 -3.3034668z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m333.3596 318.58923l33.417328 0l0 33.417328l-33.417328 0z" fill-rule="evenodd"/><g transform="matrix(0.16708661417322834 0.0 0.0 0.16708661417322834 333.3595800524934 318.58923884514434)"><clipPath id="g5fa7a33c75bdd211_0.6"><path d="m0 -2.2737368E-13l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.6)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><defs><linearGradient id="g5fa7a33c75bdd211_0.7" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.9145678953981955 0.0 0.0 6.9145678953981955 0.0 0.0)" spreadMethod="pad" x1="97.15176383453758" y1="48.57727274343287" x2="97.1517401104239" y2="55.491840638790364"><stop offset="0.0" stop-color="#fff6db"/><stop offset="1.0" stop-color="#fad25c"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.7)" d="m671.76245 335.89108l67.08661 0l0 47.811005l-67.08661 0z" fill-rule="evenodd"/><path fill="#000000" d="m684.33704 365.6566l0 -11.453125l8.28125 0l0 1.34375l-6.765625 0l0 3.515625l6.34375 0l0 1.34375l-6.34375 0l0 3.890625l7.03125 0l0 1.359375l-8.546875 0zm10.46875 0l0 -8.296875l1.265625 0l0 1.171875q0.90625 -1.359375 2.640625 -1.359375q0.75 0 1.375 0.265625q0.625 0.265625 0.9375 0.703125q0.3125 0.4375 0.4375 1.046875q0.078125 0.390625 0.078125 1.359375l0 5.109375l-1.40625 0l0 -5.046875q0 -0.859375 -0.171875 -1.28125q-0.15625 -0.4375 -0.578125 -0.6875q-0.40625 -0.25 -0.96875 -0.25q-0.90625 0 -1.5625 0.578125q-0.640625 0.5625 -0.640625 2.15625l0 4.53125l-1.40625 0zm11.1953125 0l-3.15625 -8.296875l1.484375 0l1.78125 4.96875q0.296875 0.796875 0.53125 1.671875q0.1875 -0.65625 0.53125 -1.578125l1.84375 -5.0625l1.4375 0l-3.140625 8.296875l-1.3125 0zm5.171875 -4.15625q0 -2.296875 1.28125 -3.40625q1.078125 -0.921875 2.609375 -0.921875q1.71875 0 2.796875 1.125q1.09375 1.109375 1.09375 3.09375q0 1.59375 -0.484375 2.515625q-0.484375 0.921875 -1.40625 1.4375q-0.90625 0.5 -2.0 0.5q-1.734375 0 -2.8125 -1.109375q-1.078125 -1.125 -1.078125 -3.234375zm1.453125 0q0 1.59375 0.6875 2.390625q0.703125 0.796875 1.75 0.796875q1.046875 0 1.734375 -0.796875q0.703125 -0.796875 0.703125 -2.4375q0 -1.53125 -0.703125 -2.328125q-0.6875 -0.796875 -1.734375 -0.796875q-1.046875 0 -1.75 0.796875q-0.6875 0.78125 -0.6875 2.375zm7.9140625 7.359375l-0.15625 -1.328125q0.453125 0.125 0.796875 0.125q0.46875 0 0.75 -0.15625q0.28125 -0.15625 0.46875 -0.4375q0.125 -0.203125 0.421875 -1.046875q0.046875 -0.109375 0.125 -0.34375l-3.140625 -8.3125l1.515625 0l1.71875 4.796875q0.34375 0.921875 0.609375 1.921875q0.234375 -0.96875 0.578125 -1.890625l1.765625 -4.828125l1.40625 0l-3.15625 8.4375q-0.5 1.375 -0.78125 1.890625q-0.375 0.6875 -0.859375 1.015625q-0.484375 0.328125 -1.15625 0.328125q-0.40625 0 -0.90625 -0.171875z" fill-rule="nonzero"/><defs><linearGradient id="g5fa7a33c75bdd211_0.8" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.914570860911769 0.0 0.0 6.914570860911769 0.0 0.0)" spreadMethod="pad" x1="111.47557668916205" y1="48.577435771467485" x2="111.47555296505855" y2="55.49200663233855"><stop offset="0.0" stop-color="#dcecd5"/><stop offset="1.0" stop-color="#93bc81"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.8)" d="m770.8058 335.8924l73.95276 0l0 47.811005l-73.95276 0z" fill-rule="evenodd"/><path fill="#000000" d="m786.1548 353.5354l1.203125 -0.109375q0.078125 0.71875 0.390625 1.1875q0.3125 0.453125 0.953125 0.734375q0.65625 0.28125 1.46875 0.28125q0.71875 0 1.265625 -0.21875q0.5625 -0.21875 0.828125 -0.578125q0.265625 -0.375 0.265625 -0.828125q0 -0.453125 -0.265625 -0.78125q-0.25 -0.328125 -0.84375 -0.5625q-0.390625 -0.15625 -1.703125 -0.46875q-1.3125 -0.3125 -1.84375 -0.59375q-0.671875 -0.359375 -1.015625 -0.890625q-0.328125 -0.53125 -0.328125 -1.1875q0 -0.71875 0.40625 -1.34375q0.40625 -0.625 1.1875 -0.953125q0.796875 -0.328125 1.765625 -0.328125q1.046875 0 1.859375 0.34375q0.8125 0.34375 1.25 1.015625q0.4375 0.65625 0.46875 1.484375l-1.203125 0.09375q-0.109375 -0.90625 -0.671875 -1.359375q-0.5625 -0.46875 -1.65625 -0.46875q-1.140625 0 -1.671875 0.421875q-0.515625 0.421875 -0.515625 1.015625q0 0.515625 0.359375 0.84375q0.375 0.328125 1.90625 0.6875q1.546875 0.34375 2.109375 0.59375q0.84375 0.390625 1.234375 0.984375q0.390625 0.578125 0.390625 1.359375q0 0.75 -0.4375 1.4375q-0.421875 0.671875 -1.25 1.046875q-0.8125 0.359375 -1.828125 0.359375q-1.296875 0 -2.171875 -0.375q-0.875 -0.375 -1.375 -1.125q-0.5 -0.765625 -0.53125 -1.71875zm13.905334 0.84375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5062256 4.125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm6.3759155 0l-2.625 -6.90625l1.234375 0l1.484375 4.140625q0.234375 0.65625 0.4375 1.390625q0.15625 -0.546875 0.4375 -1.3125l1.53125 -4.21875l1.21875 0l-2.625 6.90625l-1.09375 0zm4.7578125 -8.1875l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm7.4610596 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm6.8828125 0.3125l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375z" fill-rule="nonzero"/><path fill="#000000" d="m783.0244 372.5979l2.0 -9.546875l1.171875 0l-0.703125 3.421875q0.5625 -0.515625 1.015625 -0.71875q0.453125 -0.21875 0.953125 -0.21875q0.96875 0 1.609375 0.71875q0.640625 0.71875 0.640625 2.09375q0 0.921875 -0.265625 1.6875q-0.25 0.765625 -0.640625 1.28125q-0.375 0.515625 -0.78125 0.828125q-0.40625 0.296875 -0.84375 0.453125q-0.421875 0.15625 -0.828125 0.15625q-0.6875 0 -1.203125 -0.359375q-0.515625 -0.359375 -0.8125 -1.109375l-0.265625 1.3125l-1.046875 0zm1.75 -2.84375l0 0.234375q0 0.875 0.421875 1.34375q0.421875 0.453125 1.046875 0.453125q0.625 0 1.140625 -0.421875q0.515625 -0.4375 0.84375 -1.34375q0.328125 -0.921875 0.328125 -1.703125q0 -0.875 -0.421875 -1.359375q-0.40625 -0.484375 -1.03125 -0.484375q-0.640625 0 -1.171875 0.5q-0.53125 0.484375 -0.890625 1.515625q-0.265625 0.765625 -0.265625 1.265625zm10.334351 1.984375q-0.625 0.53125 -1.1875 0.78125q-0.5625 0.234375 -1.203125 0.234375q-0.96875 0 -1.5625 -0.5625q-0.578125 -0.5625 -0.578125 -1.4375q0 -0.578125 0.265625 -1.015625q0.265625 -0.453125 0.703125 -0.71875q0.4375 -0.28125 1.0625 -0.390625q0.40625 -0.078125 1.515625 -0.125q1.109375 -0.046875 1.59375 -0.234375q0.125 -0.484375 0.125 -0.8125q0 -0.40625 -0.296875 -0.640625q-0.40625 -0.328125 -1.1875 -0.328125q-0.75 0 -1.21875 0.328125q-0.46875 0.328125 -0.6875 0.9375l-1.1875 -0.109375q0.359375 -1.015625 1.140625 -1.5625q0.796875 -0.546875 2.0 -0.546875q1.28125 0 2.03125 0.609375q0.578125 0.453125 0.578125 1.1875q0 0.546875 -0.15625 1.28125l-0.390625 1.71875q-0.1875 0.8125 -0.1875 1.328125q0 0.328125 0.15625 0.9375l-1.203125 0q-0.09375 -0.34375 -0.125 -0.859375zm0.421875 -2.640625q-0.234375 0.09375 -0.53125 0.15625q-0.28125 0.046875 -0.9375 0.109375q-1.03125 0.078125 -1.453125 0.21875q-0.421875 0.140625 -0.640625 0.453125q-0.21875 0.296875 -0.21875 0.671875q0 0.5 0.34375 0.828125q0.34375 0.3125 0.984375 0.3125q0.578125 0 1.109375 -0.3125q0.546875 -0.3125 0.859375 -0.859375q0.3125 -0.5625 0.484375 -1.578125zm7.0999756 0.984375l1.171875 0.125q-0.4375 1.296875 -1.265625 1.921875q-0.8125 0.625 -1.84375 0.625q-1.140625 0 -1.84375 -0.71875q-0.6875 -0.734375 -0.6875 -2.046875q0 -1.125 0.4375 -2.21875q0.453125 -1.09375 1.28125 -1.65625q0.84375 -0.578125 1.921875 -0.578125q1.109375 0 1.765625 0.625q0.65625 0.625 0.65625 1.65625l-1.15625 0.078125q-0.015625 -0.65625 -0.390625 -1.015625q-0.375 -0.375 -0.984375 -0.375q-0.703125 0 -1.234375 0.453125q-0.515625 0.4375 -0.8125 1.359375q-0.296875 0.90625 -0.296875 1.75q0 0.890625 0.390625 1.34375q0.390625 0.4375 0.96875 0.4375q0.5625 0 1.078125 -0.4375q0.53125 -0.4375 0.84375 -1.328125zm1.8984375 2.515625l2.0 -9.546875l1.171875 0l-1.234375 5.921875l3.4375 -3.28125l1.546875 0l-2.9375 2.578125l1.78125 4.328125l-1.296875 0l-1.375 -3.546875l-1.4375 1.234375l-0.46875 2.3125l-1.1875 0zm11.7265625 -2.34375l1.15625 0.109375q-0.25 0.859375 -1.140625 1.625q-0.890625 0.765625 -2.125 0.765625q-0.765625 0 -1.40625 -0.34375q-0.640625 -0.359375 -0.984375 -1.03125q-0.328125 -0.6875 -0.328125 -1.546875q0 -1.140625 0.515625 -2.203125q0.53125 -1.0625 1.359375 -1.578125q0.84375 -0.515625 1.8125 -0.515625q1.234375 0 1.96875 0.765625q0.75 0.765625 0.75 2.09375q0 0.5 -0.09375 1.046875l-5.09375 0q-0.03125 0.1875 -0.03125 0.359375q0 0.96875 0.4375 1.484375q0.453125 0.5 1.109375 0.5q0.59375 0 1.171875 -0.390625q0.59375 -0.390625 0.921875 -1.140625zm-3.421875 -1.71875l3.875 0q0.015625 -0.1875 0.015625 -0.265625q0 -0.875 -0.453125 -1.34375q-0.4375 -0.484375 -1.125 -0.484375q-0.765625 0 -1.390625 0.53125q-0.609375 0.515625 -0.921875 1.5625zm5.7562256 4.0625l1.453125 -6.90625l1.0625 0l-0.25 1.203125q0.6875 -0.71875 1.296875 -1.03125q0.609375 -0.328125 1.234375 -0.328125q0.84375 0 1.3125 0.453125q0.484375 0.453125 0.484375 1.21875q0 0.375 -0.171875 1.203125l-0.875 4.1875l-1.171875 0l0.921875 -4.375q0.125 -0.640625 0.125 -0.953125q0 -0.34375 -0.234375 -0.546875q-0.234375 -0.21875 -0.6875 -0.21875q-0.90625 0 -1.609375 0.65625q-0.703125 0.640625 -1.03125 2.21875l-0.671875 3.21875l-1.1875 0zm12.084351 -1.0q-1.015625 1.15625 -2.109375 1.15625q-0.984375 0 -1.640625 -0.71875q-0.65625 -0.734375 -0.65625 -2.109375q0 -1.265625 0.515625 -2.3125q0.515625 -1.046875 1.296875 -1.5625q0.78125 -0.515625 1.5625 -0.515625q1.28125 0 1.9375 1.234375l0.78125 -3.71875l1.171875 0l-1.984375 9.546875l-1.09375 0l0.21875 -1.0zm-3.234375 -1.890625q0 0.71875 0.140625 1.140625q0.140625 0.40625 0.484375 0.6875q0.34375 0.28125 0.828125 0.28125q0.796875 0 1.453125 -0.84375q0.875 -1.109375 0.875 -2.734375q0 -0.8125 -0.4375 -1.265625q-0.421875 -0.46875 -1.078125 -0.46875q-0.421875 0 -0.765625 0.1875q-0.34375 0.1875 -0.6875 0.640625q-0.34375 0.453125 -0.578125 1.15625q-0.234375 0.6875 -0.234375 1.21875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m770.8058 359.7979l-31.968506 0" fill-rule="evenodd"/><path stroke="#666666" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" d="m758.8058 359.7979l-7.968506 0" fill-rule="evenodd"/><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m758.8058 363.10138l9.076172 -3.3034668l-9.076172 -3.3034668z" fill-rule="evenodd"/><path fill="#666666" stroke="#666666" stroke-width="2.0" stroke-linecap="butt" d="m750.8373 356.49445l-9.076233 3.3034668l9.076233 3.3034668z" fill-rule="evenodd"/><defs><linearGradient id="g5fa7a33c75bdd211_0.9" gradientUnits="userSpaceOnUse" gradientTransform="matrix(-10.205940048366829 0.0 0.0 10.205940048366829 0.0 0.0)" spreadMethod="pad" x1="-79.11017475716037" y1="34.5369295408987" x2="-79.11020690353669" y2="44.7428695892149"><stop offset="0.0" stop-color="#ffffff"/><stop offset="1.0" stop-color="#b3b3b3"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.9)" d="m807.3937 421.99738l0 0c0 -3.8268433 -3.102234 -6.929138 -6.929138 -6.929138l-149.33069 0l11.773987 -62.58545l-78.74249 62.58545l-37.716553 0c-1.8377075 0 -3.6001587 0.7300415 -4.899597 2.0295105c-1.2994995 1.299469 -2.02948 3.0619202 -2.02948 4.8996277l0 0l0 0l0 10.393707l0 17.322815c0 3.8268738 3.102234 6.929138 6.929077 6.929138l37.716553 0l66.968506 0l0 0l149.33069 0c3.8269043 0 6.929138 -3.1022644 6.929138 -6.929138l0 -17.322815l0 -10.393707l0 0z" fill-rule="evenodd"/><path fill="#000000" d="m551.1429 435.8352l1.203125 -0.109375q0.078125 0.71875 0.390625 1.1875q0.3125 0.453125 0.953125 0.734375q0.65625 0.28125 1.46875 0.28125q0.71875 0 1.265625 -0.21875q0.5625 -0.21875 0.828125 -0.578125q0.265625 -0.375 0.265625 -0.828125q0 -0.453125 -0.265625 -0.78125q-0.25 -0.328125 -0.84375 -0.5625q-0.390625 -0.15625 -1.703125 -0.46875q-1.3125 -0.3125 -1.84375 -0.59375q-0.671875 -0.359375 -1.015625 -0.890625q-0.328125 -0.53125 -0.328125 -1.1875q0 -0.71875 0.40625 -1.34375q0.40625 -0.625 1.1875 -0.953125q0.796875 -0.328125 1.765625 -0.328125q1.046875 0 1.859375 0.34375q0.8125 0.34375 1.25 1.015625q0.4375 0.65625 0.46875 1.484375l-1.203125 0.09375q-0.109375 -0.90625 -0.671875 -1.359375q-0.5625 -0.46875 -1.65625 -0.46875q-1.140625 0 -1.671875 0.421875q-0.515625 0.421875 -0.515625 1.015625q0 0.515625 0.359375 0.84375q0.375 0.328125 1.90625 0.6875q1.546875 0.34375 2.109375 0.59375q0.84375 0.390625 1.234375 0.984375q0.390625 0.578125 0.390625 1.359375q0 0.75 -0.4375 1.4375q-0.421875 0.671875 -1.25 1.046875q-0.8125 0.359375 -1.828125 0.359375q-1.296875 0 -2.171875 -0.375q-0.875 -0.375 -1.375 -1.125q-0.5 -0.765625 -0.53125 -1.71875zm8.2803955 3.0625l3.65625 -9.546875l1.359375 0l3.90625 9.546875l-1.4375 0l-1.109375 -2.890625l-3.984375 0l-1.046875 2.890625l-1.34375 0zm2.75 -3.921875l3.234375 0l-1.0 -2.640625q-0.453125 -1.203125 -0.671875 -1.96875q-0.1875 0.90625 -0.515625 1.8125l-1.046875 2.796875zm7.1710205 3.921875l0 -9.546875l1.296875 0l5.015625 7.5l0 -7.5l1.203125 0l0 9.546875l-1.296875 0l-5.015625 -7.5l0 7.5l-1.203125 0zm9.812622 -5.578125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm0 5.578125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm7.999756 -7.9375l0 1.359375l-1.25 0l0 -1.078125q0 -0.875 0.203125 -1.265625q0.265625 -0.515625 0.859375 -0.78125l0.296875 0.453125q-0.359375 0.15625 -0.53125 0.453125q-0.171875 0.296875 -0.1875 0.859375l0.609375 0zm2.015625 0l0 1.359375l-1.25 0l0 -1.078125q0 -0.875 0.203125 -1.265625q0.28125 -0.515625 0.859375 -0.78125l0.296875 0.453125q-0.359375 0.15625 -0.53125 0.453125q-0.171875 0.296875 -0.1875 0.859375l0.609375 0zm1.0321045 5.875l1.15625 -0.1875q0.109375 0.703125 0.546875 1.078125q0.453125 0.359375 1.25 0.359375q0.8125 0 1.203125 -0.328125q0.390625 -0.328125 0.390625 -0.765625q0 -0.390625 -0.359375 -0.625q-0.234375 -0.15625 -1.1875 -0.390625q-1.296875 -0.328125 -1.796875 -0.5625q-0.484375 -0.25 -0.75 -0.65625q-0.25 -0.421875 -0.25 -0.9375q0 -0.453125 0.203125 -0.84375q0.21875 -0.40625 0.578125 -0.671875q0.28125 -0.1875 0.75 -0.328125q0.46875 -0.140625 1.015625 -0.140625q0.8125 0 1.421875 0.234375q0.609375 0.234375 0.90625 0.640625q0.296875 0.390625 0.40625 1.0625l-1.140625 0.15625q-0.078125 -0.53125 -0.453125 -0.828125q-0.375 -0.3125 -1.0625 -0.3125q-0.8125 0 -1.15625 0.265625q-0.34375 0.265625 -0.34375 0.625q0 0.234375 0.140625 0.421875q0.15625 0.1875 0.453125 0.3125q0.171875 0.0625 1.03125 0.296875q1.25 0.328125 1.734375 0.546875q0.5 0.203125 0.78125 0.609375q0.28125 0.40625 0.28125 1.0q0 0.59375 -0.34375 1.109375q-0.34375 0.515625 -1.0 0.796875q-0.640625 0.28125 -1.453125 0.28125q-1.34375 0 -2.046875 -0.5625q-0.703125 -0.5625 -0.90625 -1.65625zm7.1328125 4.71875l0 -9.5625l1.078125 0l0 0.890625q0.375 -0.53125 0.84375 -0.78125q0.484375 -0.265625 1.15625 -0.265625q0.875 0 1.546875 0.453125q0.6875 0.453125 1.03125 1.28125q0.34375 0.828125 0.34375 1.828125q0 1.046875 -0.375 1.90625q-0.375 0.84375 -1.109375 1.296875q-0.71875 0.453125 -1.53125 0.453125q-0.578125 0 -1.046875 -0.25q-0.46875 -0.25 -0.765625 -0.625l0 3.375l-1.171875 0zm1.0625 -6.078125q0 1.34375 0.53125 1.984375q0.546875 0.625 1.3125 0.625q0.78125 0 1.34375 -0.65625q0.5625 -0.65625 0.5625 -2.046875q0 -1.3125 -0.546875 -1.96875q-0.546875 -0.671875 -1.296875 -0.671875q-0.75 0 -1.328125 0.703125q-0.578125 0.703125 -0.578125 2.03125zm6.3656006 -4.765625l0 -1.359375l1.171875 0l0 1.359375l-1.171875 0zm0 8.1875l0 -6.90625l1.171875 0l0 6.90625l-1.171875 0zm3.2267456 0l0 -6.0l-1.03125 0l0 -0.90625l1.03125 0l0 -0.734375q0 -0.703125 0.125 -1.046875q0.171875 -0.453125 0.59375 -0.734375q0.421875 -0.28125 1.203125 -0.28125q0.484375 0 1.09375 0.109375l-0.1875 1.03125q-0.359375 -0.0625 -0.6875 -0.0625q-0.53125 0 -0.75 0.234375q-0.21875 0.21875 -0.21875 0.84375l0 0.640625l1.34375 0l0 0.90625l-1.34375 0l0 6.0l-1.171875 0zm3.702942 0l0 -6.0l-1.03125 0l0 -0.90625l1.03125 0l0 -0.734375q0 -0.703125 0.125 -1.046875q0.171875 -0.453125 0.59375 -0.734375q0.421875 -0.28125 1.203125 -0.28125q0.484375 0 1.09375 0.109375l-0.1875 1.03125q-0.359375 -0.0625 -0.6875 -0.0625q-0.53125 0 -0.75 0.234375q-0.21875 0.21875 -0.21875 0.84375l0 0.640625l1.34375 0l0 0.90625l-1.34375 0l0 6.0l-1.171875 0zm8.156128 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.8499756 -1.453125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm0 5.578125l0 -1.328125l1.328125 0l0 1.328125l-1.328125 0zm2.499878 0.15625l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm3.703003 0l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm4.577942 -0.15625l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm11.055603 2.65625l-0.125 -1.09375q0.375 0.109375 0.65625 0.109375q0.390625 0 0.625 -0.140625q0.234375 -0.125 0.390625 -0.359375q0.109375 -0.171875 0.359375 -0.875q0.03125 -0.09375 0.109375 -0.28125l-2.625 -6.921875l1.265625 0l1.4375 4.0q0.28125 0.765625 0.5 1.59375q0.203125 -0.796875 0.46875 -1.578125l1.484375 -4.015625l1.171875 0l-2.625 7.015625q-0.421875 1.140625 -0.65625 1.578125q-0.3125 0.578125 -0.71875 0.84375q-0.40625 0.28125 -0.96875 0.28125q-0.328125 0 -0.75 -0.15625zm6.2734375 -6.109375q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6312256 3.453125l0 -6.90625l1.0625 0l0 1.046875q0.40625 -0.734375 0.734375 -0.96875q0.34375 -0.234375 0.765625 -0.234375q0.59375 0 1.203125 0.375l-0.40625 1.078125q-0.4375 -0.25 -0.859375 -0.25q-0.390625 0 -0.703125 0.234375q-0.296875 0.234375 -0.421875 0.640625q-0.203125 0.625 -0.203125 1.359375l0 3.625l-1.171875 0zm4.2352295 0.578125l1.140625 0.15625q0.078125 0.53125 0.40625 0.78125q0.4375 0.3125 1.1875 0.3125q0.8125 0 1.25 -0.328125q0.453125 -0.3125 0.609375 -0.90625q0.09375 -0.359375 0.078125 -1.5q-0.765625 0.90625 -1.90625 0.90625q-1.4375 0 -2.21875 -1.03125q-0.78125 -1.03125 -0.78125 -2.46875q0 -0.984375 0.359375 -1.8125q0.359375 -0.84375 1.03125 -1.296875q0.6875 -0.453125 1.609375 -0.453125q1.21875 0 2.015625 0.984375l0 -0.828125l1.078125 0l0 5.96875q0 1.609375 -0.328125 2.28125q-0.328125 0.6875 -1.046875 1.078125q-0.703125 0.390625 -1.75 0.390625q-1.234375 0 -2.0 -0.5625q-0.75 -0.5625 -0.734375 -1.671875zm0.984375 -4.15625q0 1.359375 0.53125 1.984375q0.546875 0.625 1.359375 0.625q0.796875 0 1.34375 -0.625q0.546875 -0.625 0.546875 -1.953125q0 -1.265625 -0.5625 -1.90625q-0.5625 -0.640625 -1.359375 -0.640625q-0.765625 0 -1.3125 0.640625q-0.546875 0.625 -0.546875 1.875zm6.9749756 3.578125l0 -1.328125l1.34375 0l0 1.328125l-1.34375 0zm7.890503 -2.53125l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm1.7109375 -0.921875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm6.6468506 3.453125l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm10.227417 0.15625l2.765625 -9.859375l0.9375 0l-2.765625 9.859375l-0.9375 0zm5.656128 -0.15625l-1.078125 0l0 -9.546875l1.171875 0l0 3.40625q0.734375 -0.921875 1.890625 -0.921875q0.640625 0 1.203125 0.265625q0.578125 0.25 0.9375 0.71875q0.375 0.453125 0.578125 1.109375q0.203125 0.65625 0.203125 1.40625q0 1.78125 -0.875 2.75q-0.875 0.96875 -2.109375 0.96875q-1.21875 0 -1.921875 -1.015625l0 0.859375zm0 -3.5q0 1.234375 0.328125 1.78125q0.5625 0.90625 1.5 0.90625q0.765625 0 1.328125 -0.65625q0.5625 -0.671875 0.5625 -2.0q0 -1.34375 -0.546875 -1.984375q-0.53125 -0.65625 -1.296875 -0.65625q-0.765625 0 -1.328125 0.671875q-0.546875 0.671875 -0.546875 1.9375zm10.849976 2.640625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm7.5062256 0.9375l1.15625 0.15625q-0.1875 1.1875 -0.96875 1.859375q-0.78125 0.671875 -1.921875 0.671875q-1.40625 0 -2.28125 -0.921875q-0.859375 -0.9375 -0.859375 -2.65625q0 -1.125 0.375 -1.96875q0.375 -0.84375 1.125 -1.25q0.765625 -0.421875 1.65625 -0.421875q1.125 0 1.84375 0.578125q0.71875 0.5625 0.921875 1.609375l-1.140625 0.171875q-0.171875 -0.703125 -0.59375 -1.046875q-0.40625 -0.359375 -0.984375 -0.359375q-0.890625 0 -1.453125 0.640625q-0.546875 0.640625 -0.546875 2.0q0 1.40625 0.53125 2.03125q0.546875 0.625 1.40625 0.625q0.6875 0 1.140625 -0.421875q0.46875 -0.421875 0.59375 -1.296875zm2.1640625 2.53125l0 -9.546875l1.171875 0l0 5.453125l2.765625 -2.8125l1.515625 0l-2.640625 2.5625l2.90625 4.34375l-1.4375 0l-2.28125 -3.53125l-0.828125 0.796875l0 2.734375l-1.171875 0zm11.3828125 -2.21875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5218506 4.125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm11.896851 0l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm6.1781006 0.59375l0 -1.1875l3.59375 0l0 1.1875l-3.59375 0zm7.4539795 1.8125l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875zm5.874878 -1.171875l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm11.037476 3.265625q-0.65625 0.5625 -1.265625 0.796875q-0.59375 0.21875 -1.28125 0.21875q-1.140625 0 -1.75 -0.546875q-0.609375 -0.5625 -0.609375 -1.4375q0 -0.5 0.21875 -0.921875q0.234375 -0.421875 0.609375 -0.671875q0.375 -0.25 0.84375 -0.390625q0.34375 -0.078125 1.046875 -0.171875q1.421875 -0.171875 2.09375 -0.40625q0 -0.234375 0 -0.296875q0 -0.71875 -0.328125 -1.015625q-0.453125 -0.390625 -1.34375 -0.390625q-0.8125 0 -1.21875 0.296875q-0.390625 0.28125 -0.578125 1.015625l-1.140625 -0.15625q0.15625 -0.734375 0.515625 -1.1875q0.359375 -0.453125 1.03125 -0.6875q0.671875 -0.25 1.5625 -0.25q0.890625 0 1.4375 0.203125q0.5625 0.203125 0.8125 0.53125q0.265625 0.3125 0.375 0.796875q0.046875 0.296875 0.046875 1.078125l0 1.5625q0 1.625 0.078125 2.0625q0.078125 0.4375 0.296875 0.828125l-1.21875 0q-0.1875 -0.359375 -0.234375 -0.859375zm-0.09375 -2.609375q-0.640625 0.265625 -1.921875 0.4375q-0.71875 0.109375 -1.015625 0.25q-0.296875 0.125 -0.46875 0.375q-0.15625 0.25 -0.15625 0.546875q0 0.46875 0.34375 0.78125q0.359375 0.3125 1.046875 0.3125q0.671875 0 1.203125 -0.296875q0.53125 -0.296875 0.78125 -0.8125q0.1875 -0.390625 0.1875 -1.171875l0 -0.421875zm2.9906006 3.46875l0 -6.90625l1.046875 0l0 0.96875q0.328125 -0.515625 0.859375 -0.8125q0.546875 -0.3125 1.234375 -0.3125q0.78125 0 1.265625 0.3125q0.484375 0.3125 0.6875 0.890625q0.828125 -1.203125 2.140625 -1.203125q1.03125 0 1.578125 0.578125q0.5625 0.5625 0.5625 1.734375l0 4.75l-1.171875 0l0 -4.359375q0 -0.703125 -0.125 -1.0q-0.109375 -0.3125 -0.40625 -0.5q-0.296875 -0.1875 -0.703125 -0.1875q-0.71875 0 -1.203125 0.484375q-0.484375 0.484375 -0.484375 1.546875l0 4.015625l-1.171875 0l0 -4.484375q0 -0.78125 -0.296875 -1.171875q-0.28125 -0.390625 -0.921875 -0.390625q-0.5 0 -0.921875 0.265625q-0.421875 0.25 -0.609375 0.75q-0.1875 0.5 -0.1875 1.453125l0 3.578125l-1.171875 0zm10.789917 -8.28125l0 -1.359375l1.265625 0l0 1.078125q0 0.875 -0.203125 1.25q-0.28125 0.53125 -0.875 0.796875l-0.28125 -0.453125q0.34375 -0.15625 0.515625 -0.453125q0.171875 -0.3125 0.1875 -0.859375l-0.609375 0zm2.015625 0l0 -1.359375l1.265625 0l0 1.078125q0 0.875 -0.203125 1.25q-0.28125 0.53125 -0.875 0.796875l-0.28125 -0.453125q0.34375 -0.15625 0.515625 -0.453125q0.171875 -0.3125 0.203125 -0.859375l-0.625 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m448.42258 74.14043l41.561707 0l0 41.561714l-41.561707 0z" fill-rule="evenodd"/><g transform="matrix(0.06926952755905512 0.0 0.0 0.06926952755905512 448.4225721784777 74.14042283464568)"><clipPath id="g5fa7a33c75bdd211_0.10"><path d="m0 0l600.0 0l0 600.0l-600.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.10)" fill="#000" width="600.0" height="600.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><path fill="#000000" fill-opacity="0.0" d="m475.69815 76.97638l98.01578 0l0 33.41732l-98.01578 0z" fill-rule="evenodd"/><path fill="#000000" d="m510.5045 96.38451l1.390625 0.34375q-0.4375 1.703125 -1.578125 2.609375q-1.125 0.890625 -2.765625 0.890625q-1.6875 0 -2.75 -0.6875q-1.0625 -0.6875 -1.625 -2.0q-0.546875 -1.3125 -0.546875 -2.8125q0 -1.640625 0.625 -2.859375q0.625 -1.21875 1.78125 -1.84375q1.15625 -0.640625 2.546875 -0.640625q1.5625 0 2.640625 0.8125q1.078125 0.796875 1.5 2.25l-1.375 0.3125q-0.359375 -1.140625 -1.0625 -1.65625q-0.6875 -0.53125 -1.734375 -0.53125q-1.21875 0 -2.03125 0.578125q-0.8125 0.578125 -1.140625 1.5625q-0.328125 0.96875 -0.328125 2.015625q0 1.328125 0.390625 2.328125q0.390625 1.0 1.21875 1.5q0.828125 0.484375 1.78125 0.484375q1.171875 0 1.96875 -0.671875q0.8125 -0.671875 1.09375 -1.984375zm2.943634 -5.34375l0 -1.46875l1.296875 0l0 1.46875l-1.296875 0zm0 9.015625l0 -7.59375l1.296875 0l0 7.59375l-1.296875 0zm6.0686646 -1.15625l0.1875 1.140625q-0.546875 0.109375 -0.984375 0.109375q-0.6875 0 -1.078125 -0.21875q-0.390625 -0.21875 -0.546875 -0.578125q-0.15625 -0.359375 -0.15625 -1.515625l0 -4.375l-0.953125 0l0 -1.0l0.953125 0l0 -1.890625l1.28125 -0.765625l0 2.65625l1.296875 0l0 1.0l-1.296875 0l0 4.4375q0 0.546875 0.0625 0.71875q0.078125 0.15625 0.21875 0.25q0.15625 0.078125 0.453125 0.078125q0.203125 0 0.5625 -0.046875zm6.2125854 0.21875q-0.71875 0.609375 -1.375 0.859375q-0.65625 0.25 -1.421875 0.25q-1.25 0 -1.921875 -0.609375q-0.671875 -0.609375 -0.671875 -1.5625q0 -0.5625 0.25 -1.015625q0.25 -0.46875 0.65625 -0.75q0.421875 -0.28125 0.9375 -0.421875q0.375 -0.09375 1.140625 -0.1875q1.5625 -0.1875 2.296875 -0.453125q0.015625 -0.265625 0.015625 -0.328125q0 -0.796875 -0.375 -1.109375q-0.484375 -0.4375 -1.453125 -0.4375q-0.921875 0 -1.359375 0.328125q-0.421875 0.3125 -0.625 1.109375l-1.265625 -0.171875q0.171875 -0.796875 0.5625 -1.296875q0.390625 -0.5 1.140625 -0.765625q0.75 -0.265625 1.71875 -0.265625q0.984375 0 1.59375 0.234375q0.609375 0.21875 0.890625 0.5625q0.28125 0.34375 0.40625 0.875q0.0625 0.328125 0.0625 1.1875l0 1.71875q0 1.796875 0.078125 2.28125q0.078125 0.46875 0.328125 0.90625l-1.34375 0q-0.203125 -0.40625 -0.265625 -0.9375zm-0.109375 -2.875q-0.703125 0.28125 -2.09375 0.484375q-0.796875 0.109375 -1.125 0.265625q-0.328125 0.140625 -0.515625 0.421875q-0.171875 0.265625 -0.171875 0.59375q0 0.515625 0.390625 0.859375q0.390625 0.34375 1.140625 0.34375q0.734375 0 1.3125 -0.3125q0.59375 -0.328125 0.859375 -0.890625q0.203125 -0.4375 0.203125 -1.296875l0 -0.46875zm8.229248 3.8125l0 -0.953125q-0.71875 1.125 -2.125 1.125q-0.90625 0 -1.671875 -0.5q-0.75 -0.5 -1.171875 -1.390625q-0.421875 -0.90625 -0.421875 -2.078125q0 -1.140625 0.375 -2.0625q0.390625 -0.921875 1.140625 -1.40625q0.765625 -0.5 1.703125 -0.5q0.6875 0 1.21875 0.296875q0.53125 0.28125 0.875 0.734375l0 -3.75l1.28125 0l0 10.484375l-1.203125 0zm-4.0625 -3.796875q0 1.46875 0.609375 2.1875q0.625 0.71875 1.453125 0.71875q0.84375 0 1.4375 -0.6875q0.59375 -0.6875 0.59375 -2.109375q0 -1.5625 -0.609375 -2.28125q-0.59375 -0.734375 -1.484375 -0.734375q-0.84375 0 -1.421875 0.703125q-0.578125 0.703125 -0.578125 2.203125zm12.494873 1.34375l1.328125 0.171875q-0.3125 1.171875 -1.171875 1.8125q-0.84375 0.640625 -2.171875 0.640625q-1.671875 0 -2.65625 -1.015625q-0.96875 -1.03125 -0.96875 -2.890625q0 -1.921875 0.984375 -2.96875q1.0 -1.0625 2.578125 -1.0625q1.515625 0 2.484375 1.03125q0.96875 1.03125 0.96875 2.921875q0 0.109375 -0.015625 0.34375l-5.65625 0q0.0625 1.25 0.703125 1.921875q0.640625 0.65625 1.59375 0.65625q0.703125 0 1.203125 -0.359375q0.5 -0.375 0.796875 -1.203125zm-4.234375 -2.078125l4.25 0q-0.09375 -0.953125 -0.484375 -1.4375q-0.625 -0.75 -1.609375 -0.75q-0.875 0 -1.484375 0.59375q-0.609375 0.59375 -0.671875 1.59375zm7.151062 4.53125l0 -10.484375l1.28125 0l0 10.484375l-1.28125 0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m654.5932 318.58923l33.417297 0l0 33.417328l-33.417297 0z" fill-rule="evenodd"/><g transform="matrix(0.16708661417322834 0.0 0.0 0.16708661417322834 654.5931758530184 318.58923884514434)"><clipPath id="g5fa7a33c75bdd211_0.11"><path d="m4.5474735E-13 -2.2737368E-13l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.11)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><path fill="#000000" fill-opacity="0.0" d="m709.32806 208.78215l164.97638 0l0 31.65355l-164.97638 0z" fill-rule="evenodd"/><path fill="#000000" d="m730.83484 229.30215l-3.328125 -8.59375l1.234375 0l2.234375 6.25q0.265625 0.75 0.453125 1.40625q0.203125 -0.703125 0.46875 -1.40625l2.3125 -6.25l1.15625 0l-3.359375 8.59375l-1.171875 0zm5.5195312 0l0 -8.59375l1.71875 0l2.03125 6.078125q0.28125 0.859375 0.40625 1.28125q0.140625 -0.46875 0.453125 -1.375l2.0625 -5.984375l1.53125 0l0 8.59375l-1.09375 0l0 -7.1875l-2.5 7.1875l-1.03125 0l-2.484375 -7.3125l0 7.3125l-1.09375 0zm9.105469 0.140625l2.484375 -8.875l0.84375 0l-2.484375 8.875l-0.84375 0zm4.2089844 -0.140625l0 -8.59375l3.234375 0q0.984375 0 1.578125 0.265625q0.59375 0.265625 0.921875 0.8125q0.34375 0.53125 0.34375 1.125q0 0.546875 -0.296875 1.03125q-0.296875 0.484375 -0.90625 0.78125q0.78125 0.234375 1.1875 0.796875q0.421875 0.546875 0.421875 1.296875q0 0.59375 -0.25 1.125q-0.25 0.515625 -0.625 0.796875q-0.375 0.28125 -0.953125 0.421875q-0.5625 0.140625 -1.375 0.140625l-3.28125 0zm1.140625 -4.984375l1.859375 0q0.75 0 1.078125 -0.09375q0.4375 -0.125 0.65625 -0.421875q0.21875 -0.3125 0.21875 -0.765625q0 -0.421875 -0.203125 -0.75q-0.203125 -0.328125 -0.59375 -0.4375q-0.375 -0.125 -1.296875 -0.125l-1.71875 0l0 2.59375zm0 3.96875l2.140625 0q0.546875 0 0.765625 -0.046875q0.40625 -0.0625 0.65625 -0.21875q0.265625 -0.171875 0.4375 -0.484375q0.171875 -0.3125 0.171875 -0.71875q0 -0.484375 -0.25 -0.84375q-0.234375 -0.359375 -0.671875 -0.5q-0.4375 -0.140625 -1.265625 -0.140625l-1.984375 0l0 2.953125zm10.847656 0.25q-0.59375 0.5 -1.140625 0.703125q-0.53125 0.203125 -1.15625 0.203125q-1.03125 0 -1.578125 -0.5q-0.546875 -0.5 -0.546875 -1.28125q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.546875 -0.609375q0.34375 -0.234375 0.765625 -0.34375q0.296875 -0.09375 0.9375 -0.171875q1.265625 -0.140625 1.875 -0.359375q0 -0.21875 0 -0.265625q0 -0.65625 -0.296875 -0.921875q-0.40625 -0.34375 -1.203125 -0.34375q-0.734375 0 -1.09375 0.265625q-0.359375 0.25 -0.53125 0.90625l-1.03125 -0.140625q0.140625 -0.65625 0.46875 -1.0625q0.328125 -0.40625 0.9375 -0.625q0.609375 -0.21875 1.40625 -0.21875q0.796875 0 1.296875 0.1875q0.5 0.1875 0.734375 0.46875q0.234375 0.28125 0.328125 0.71875q0.046875 0.265625 0.046875 0.96875l0 1.40625q0 1.46875 0.0625 1.859375q0.078125 0.390625 0.28125 0.75l-1.109375 0q-0.15625 -0.328125 -0.203125 -0.765625zm-0.09375 -2.359375q-0.578125 0.234375 -1.71875 0.40625q-0.65625 0.09375 -0.921875 0.21875q-0.265625 0.109375 -0.421875 0.328125q-0.140625 0.21875 -0.140625 0.5q0 0.421875 0.3125 0.703125q0.328125 0.28125 0.9375 0.28125q0.609375 0 1.078125 -0.265625q0.484375 -0.265625 0.703125 -0.734375q0.171875 -0.359375 0.171875 -1.046875l0 -0.390625zm2.6894531 3.125l0 -6.21875l0.953125 0l0 0.9375q0.359375 -0.65625 0.65625 -0.859375q0.3125 -0.21875 0.6875 -0.21875q0.53125 0 1.078125 0.328125l-0.359375 0.984375q-0.390625 -0.234375 -0.765625 -0.234375q-0.359375 0 -0.640625 0.21875q-0.265625 0.203125 -0.375 0.578125q-0.1875 0.5625 -0.1875 1.21875l0 3.265625l-1.046875 0zm8.261719 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125zm5.455078 1.125l0 -1.0625l3.25 0l0 1.0625l-3.25 0zm4.4179688 2.578125l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm14.246094 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125zm8.173828 2.765625l0.15625 0.921875q-0.453125 0.09375 -0.796875 0.09375q-0.578125 0 -0.890625 -0.171875q-0.3125 -0.1875 -0.453125 -0.484375q-0.125 -0.296875 -0.125 -1.25l0 -3.578125l-0.765625 0l0 -0.8125l0.765625 0l0 -1.546875l1.046875 -0.625l0 2.171875l1.0625 0l0 0.8125l-1.0625 0l0 3.640625q0 0.453125 0.046875 0.578125q0.0625 0.125 0.1875 0.203125q0.125 0.078125 0.359375 0.078125q0.1875 0 0.46875 -0.03125zm5.0996094 0.171875q-0.59375 0.5 -1.140625 0.703125q-0.53125 0.203125 -1.15625 0.203125q-1.03125 0 -1.578125 -0.5q-0.546875 -0.5 -0.546875 -1.28125q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.546875 -0.609375q0.34375 -0.234375 0.765625 -0.34375q0.296875 -0.09375 0.9375 -0.171875q1.265625 -0.140625 1.875 -0.359375q0 -0.21875 0 -0.265625q0 -0.65625 -0.296875 -0.921875q-0.40625 -0.34375 -1.203125 -0.34375q-0.734375 0 -1.09375 0.265625q-0.359375 0.25 -0.53125 0.90625l-1.03125 -0.140625q0.140625 -0.65625 0.46875 -1.0625q0.328125 -0.40625 0.9375 -0.625q0.609375 -0.21875 1.40625 -0.21875q0.796875 0 1.296875 0.1875q0.5 0.1875 0.734375 0.46875q0.234375 0.28125 0.328125 0.71875q0.046875 0.265625 0.046875 0.96875l0 1.40625q0 1.46875 0.0625 1.859375q0.078125 0.390625 0.28125 0.75l-1.109375 0q-0.15625 -0.328125 -0.203125 -0.765625zm-0.09375 -2.359375q-0.578125 0.234375 -1.71875 0.40625q-0.65625 0.09375 -0.921875 0.21875q-0.265625 0.109375 -0.421875 0.328125q-0.140625 0.21875 -0.140625 0.5q0 0.421875 0.3125 0.703125q0.328125 0.28125 0.9375 0.28125q0.609375 0 1.078125 -0.265625q0.484375 -0.265625 0.703125 -0.734375q0.171875 -0.359375 0.171875 -1.046875l0 -0.390625zm2.6738281 3.125l0 -8.59375l1.0625 0l0 8.59375l-1.0625 0zm6.03125 0l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm14.058594 -0.765625q-0.59375 0.5 -1.140625 0.703125q-0.53125 0.203125 -1.15625 0.203125q-1.03125 0 -1.578125 -0.5q-0.546875 -0.5 -0.546875 -1.28125q0 -0.453125 0.203125 -0.828125q0.203125 -0.390625 0.546875 -0.609375q0.34375 -0.234375 0.765625 -0.34375q0.296875 -0.09375 0.9375 -0.171875q1.265625 -0.140625 1.875 -0.359375q0 -0.21875 0 -0.265625q0 -0.65625 -0.296875 -0.921875q-0.40625 -0.34375 -1.203125 -0.34375q-0.734375 0 -1.09375 0.265625q-0.359375 0.25 -0.53125 0.90625l-1.03125 -0.140625q0.140625 -0.65625 0.46875 -1.0625q0.328125 -0.40625 0.9375 -0.625q0.609375 -0.21875 1.40625 -0.21875q0.796875 0 1.296875 0.1875q0.5 0.1875 0.734375 0.46875q0.234375 0.28125 0.328125 0.71875q0.046875 0.265625 0.046875 0.96875l0 1.40625q0 1.46875 0.0625 1.859375q0.078125 0.390625 0.28125 0.75l-1.109375 0q-0.15625 -0.328125 -0.203125 -0.765625zm-0.09375 -2.359375q-0.578125 0.234375 -1.71875 0.40625q-0.65625 0.09375 -0.921875 0.21875q-0.265625 0.109375 -0.421875 0.328125q-0.140625 0.21875 -0.140625 0.5q0 0.421875 0.3125 0.703125q0.328125 0.28125 0.9375 0.28125q0.609375 0 1.078125 -0.265625q0.484375 -0.265625 0.703125 -0.734375q0.171875 -0.359375 0.171875 -1.046875l0 -0.390625zm6.767578 0.84375l1.03125 0.140625q-0.171875 1.0625 -0.875 1.671875q-0.703125 0.609375 -1.71875 0.609375q-1.28125 0 -2.0625 -0.828125q-0.765625 -0.84375 -0.765625 -2.40625q0 -1.0 0.328125 -1.75q0.34375 -0.765625 1.015625 -1.140625q0.6875 -0.375 1.5 -0.375q1.0 0 1.640625 0.515625q0.65625 0.5 0.84375 1.453125l-1.03125 0.15625q-0.140625 -0.625 -0.515625 -0.9375q-0.375 -0.328125 -0.90625 -0.328125q-0.796875 0 -1.296875 0.578125q-0.5 0.5625 -0.5 1.796875q0 1.265625 0.484375 1.828125q0.484375 0.5625 1.25 0.5625q0.625 0 1.03125 -0.375q0.421875 -0.375 0.546875 -1.171875zm1.9375 2.28125l0 -8.59375l1.046875 0l0 3.078125q0.734375 -0.84375 1.859375 -0.84375q0.703125 0 1.203125 0.28125q0.515625 0.265625 0.734375 0.75q0.21875 0.46875 0.21875 1.390625l0 3.9375l-1.046875 0l0 -3.9375q0 -0.796875 -0.34375 -1.15625q-0.34375 -0.359375 -0.96875 -0.359375q-0.46875 0 -0.890625 0.25q-0.40625 0.234375 -0.59375 0.65625q-0.171875 0.40625 -0.171875 1.140625l0 3.40625l-1.046875 0zm6.673828 -7.375l0 -1.21875l1.0625 0l0 1.21875l-1.0625 0zm0 7.375l0 -6.21875l1.0625 0l0 6.21875l-1.0625 0zm2.6660156 0l0 -6.21875l0.9375 0l0 0.875q0.6875 -1.015625 1.984375 -1.015625q0.5625 0 1.03125 0.203125q0.484375 0.203125 0.71875 0.53125q0.234375 0.328125 0.328125 0.765625q0.046875 0.296875 0.046875 1.03125l0 3.828125l-1.046875 0l0 -3.78125q0 -0.65625 -0.125 -0.96875q-0.125 -0.3125 -0.4375 -0.5q-0.3125 -0.203125 -0.734375 -0.203125q-0.671875 0 -1.171875 0.4375q-0.484375 0.421875 -0.484375 1.609375l0 3.40625l-1.046875 0zm10.923828 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125z" fill-rule="nonzero"/><defs><linearGradient id="g5fa7a33c75bdd211_0.12" gradientUnits="userSpaceOnUse" gradientTransform="matrix(6.447885991549832 0.0 0.0 6.447885991549832 0.0 0.0)" spreadMethod="pad" x1="99.98516013321546" y1="37.95088526440231" x2="99.98514105231108" y2="44.398771255923904"><stop offset="0.0" stop-color="#dbd4eb"/><stop offset="1.0" stop-color="#9180bb"/></linearGradient></defs><path fill="url(#g5fa7a33c75bdd211_0.12)" d="m644.69293 251.63269l0 0c0 -3.8269348 3.102295 -6.9292755 6.9292603 -6.9292755l107.36981 0c1.8377686 0 3.6002197 0.7300415 4.899719 2.029541c1.2994995 1.2994843 2.029541 3.061966 2.029541 4.8997345l0 27.716248c0 3.8269348 -3.102356 6.929291 -6.9292603 6.929291l-107.36981 0c-3.8269653 0 -6.9292603 -3.102356 -6.9292603 -6.929291z" fill-rule="evenodd"/><path fill="#000000" d="m682.2338 270.2908l0 -9.546875l1.296875 0l5.015625 7.5l0 -7.5l1.203125 0l0 9.546875l-1.296875 0l-5.015625 -7.5l0 7.5l-1.203125 0zm9.046997 -3.453125q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0zm11.365601 1.234375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm9.3342285 4.125l3.65625 -9.546875l1.359375 0l3.90625 9.546875l-1.4375 0l-1.109375 -2.890625l-3.984375 0l-1.046875 2.890625l-1.34375 0zm2.75 -3.921875l3.234375 0l-1.0 -2.640625q-0.453125 -1.203125 -0.671875 -1.96875q-0.1875 0.90625 -0.515625 1.8125l-1.046875 2.796875zm6.8116455 4.5l1.140625 0.15625q0.078125 0.53125 0.40625 0.78125q0.4375 0.3125 1.1875 0.3125q0.8125 0 1.25 -0.328125q0.453125 -0.3125 0.609375 -0.90625q0.09375 -0.359375 0.078125 -1.5q-0.765625 0.90625 -1.90625 0.90625q-1.4375 0 -2.21875 -1.03125q-0.78125 -1.03125 -0.78125 -2.46875q0 -0.984375 0.359375 -1.8125q0.359375 -0.84375 1.03125 -1.296875q0.6875 -0.453125 1.609375 -0.453125q1.21875 0 2.015625 0.984375l0 -0.828125l1.078125 0l0 5.96875q0 1.609375 -0.328125 2.28125q-0.328125 0.6875 -1.046875 1.078125q-0.703125 0.390625 -1.75 0.390625q-1.234375 0 -2.0 -0.5625q-0.75 -0.5625 -0.734375 -1.671875zm0.984375 -4.15625q0 1.359375 0.53125 1.984375q0.546875 0.625 1.359375 0.625q0.796875 0 1.34375 -0.625q0.546875 -0.625 0.546875 -1.953125q0 -1.265625 -0.5625 -1.90625q-0.5625 -0.640625 -1.359375 -0.640625q-0.765625 0 -1.3125 0.640625q-0.546875 0.625 -0.546875 1.875zm11.381226 1.359375l1.203125 0.140625q-0.28125 1.0625 -1.0625 1.65625q-0.765625 0.578125 -1.96875 0.578125q-1.515625 0 -2.40625 -0.9375q-0.890625 -0.9375 -0.890625 -2.609375q0 -1.75 0.890625 -2.703125q0.90625 -0.96875 2.34375 -0.96875q1.390625 0 2.265625 0.9375q0.875 0.9375 0.875 2.65625q0 0.109375 0 0.3125l-5.15625 0q0.0625 1.140625 0.640625 1.75q0.578125 0.59375 1.4375 0.59375q0.65625 0 1.109375 -0.328125q0.453125 -0.34375 0.71875 -1.078125zm-3.84375 -1.90625l3.859375 0q-0.078125 -0.859375 -0.4375 -1.296875q-0.5625 -0.6875 -1.453125 -0.6875q-0.8125 0 -1.359375 0.546875q-0.546875 0.53125 -0.609375 1.4375zm6.5218506 4.125l0 -6.90625l1.0625 0l0 0.984375q0.75 -1.140625 2.1875 -1.140625q0.625 0 1.15625 0.21875q0.53125 0.21875 0.78125 0.59375q0.265625 0.359375 0.375 0.859375q0.0625 0.328125 0.0625 1.140625l0 4.25l-1.171875 0l0 -4.203125q0 -0.71875 -0.140625 -1.0625q-0.140625 -0.359375 -0.484375 -0.5625q-0.34375 -0.21875 -0.8125 -0.21875q-0.75 0 -1.296875 0.46875q-0.546875 0.46875 -0.546875 1.796875l0 3.78125l-1.171875 0zm9.974976 -1.046875l0.171875 1.03125q-0.5 0.109375 -0.890625 0.109375q-0.640625 0 -1.0 -0.203125q-0.34375 -0.203125 -0.484375 -0.53125q-0.140625 -0.328125 -0.140625 -1.390625l0 -3.96875l-0.859375 0l0 -0.90625l0.859375 0l0 -1.71875l1.171875 -0.703125l0 2.421875l1.171875 0l0 0.90625l-1.171875 0l0 4.046875q0 0.5 0.046875 0.640625q0.0625 0.140625 0.203125 0.234375q0.140625 0.078125 0.40625 0.078125q0.203125 0 0.515625 -0.046875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m646.87396 249.93178l33.41736 0l0 33.417343l-33.41736 0z" fill-rule="evenodd"/><g transform="matrix(0.2610729658792651 0.0 0.0 0.2610729658792651 646.8739905511811 249.93177874015748)"><clipPath id="g5fa7a33c75bdd211_0.13"><path d="m-4.5474735E-13 -1.1368684E-13l128.0 0l0 128.0l-128.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.13)" fill="#000" width="128.0" height="128.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><path fill="#000000" fill-opacity="0.0" d="m705.30707 286.27823l-34.015747 32.31494" fill-rule="evenodd"/><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m705.30707 286.27823l-29.665771 28.182434" fill-rule="evenodd"/><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m674.5037 313.26318l-2.1525269 4.32312l4.4277954 -1.9281311z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m705.30707 244.70341c0 -75.51181 -65.79523 -151.02362 -131.59052 -151.02362" fill-rule="evenodd"/><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m705.30707 244.70341c0 -37.755905 -16.448792 -75.51181 -41.12201 -103.82875c-12.336609 -14.158455 -26.72937 -25.957176 -42.150146 -34.216278c-7.710327 -4.1295547 -15.677734 -7.3742065 -23.773682 -9.586464c-4.0479126 -1.1061249 -8.127991 -1.9541626 -12.224182 -2.5256653c-2.0480347 -0.28575134 -4.1000977 -0.5023651 -6.154236 -0.64754486l-0.16986084 -0.011268616" fill-rule="evenodd"/><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m579.7701 92.2367l-4.5925293 1.4936829l4.4782104 1.8078003z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m509.36484 127.0c0 69.82677 68.75589 139.65353 137.51181 139.65353" fill-rule="evenodd"/><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m509.36484 127.0c0 34.91339 17.188995 69.82677 42.972443 96.01181c12.891724 13.092514 27.932068 24.00296 44.046753 31.640259c8.057312 3.8186646 16.38324 6.819031 24.843384 8.864716c4.2301636 1.0228577 8.493835 1.8070679 12.774292 2.3355103c2.1402588 0.2642517 4.284607 0.46453857 6.4311523 0.5987854l0.4463501 0.0262146" fill-rule="evenodd"/><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m640.8307 268.12833l4.584656 -1.5177307l-4.48761 -1.7843323z" fill-rule="evenodd"/><path fill="#c9daf8" d="m651.30707 142.40945l63.811035 0l0 23.748032l-63.811035 0z" fill-rule="evenodd"/><path stroke="#b7b7b7" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m651.30707 142.40945l63.811035 0l0 23.748032l-63.811035 0z" fill-rule="evenodd"/><path fill="#000000" d="m676.9707 155.73972l1.265625 0.3125q-0.390625 1.5625 -1.421875 2.375q-1.03125 0.8125 -2.53125 0.8125q-1.53125 0 -2.5 -0.625q-0.96875 -0.625 -1.484375 -1.8125q-0.5 -1.1875 -0.5 -2.5625q0 -1.484375 0.5625 -2.59375q0.578125 -1.109375 1.625 -1.6875q1.0625 -0.578125 2.328125 -0.578125q1.421875 0 2.390625 0.734375q0.984375 0.71875 1.375 2.046875l-1.25 0.296875q-0.328125 -1.046875 -0.96875 -1.515625q-0.625 -0.484375 -1.578125 -0.484375q-1.09375 0 -1.84375 0.53125q-0.734375 0.53125 -1.03125 1.421875q-0.296875 0.875 -0.296875 1.828125q0 1.21875 0.34375 2.125q0.359375 0.90625 1.109375 1.359375q0.75 0.4375 1.625 0.4375q1.0625 0 1.796875 -0.609375q0.734375 -0.609375 0.984375 -1.8125zm2.390747 0.28125l1.203125 -0.109375q0.078125 0.71875 0.390625 1.1875q0.3125 0.453125 0.953125 0.734375q0.65625 0.28125 1.46875 0.28125q0.71875 0 1.265625 -0.21875q0.5625 -0.21875 0.828125 -0.578125q0.265625 -0.375 0.265625 -0.828125q0 -0.453125 -0.265625 -0.78125q-0.25 -0.328125 -0.84375 -0.5625q-0.390625 -0.15625 -1.703125 -0.46875q-1.3125 -0.3125 -1.84375 -0.59375q-0.671875 -0.359375 -1.015625 -0.890625q-0.328125 -0.53125 -0.328125 -1.1875q0 -0.71875 0.40625 -1.34375q0.40625 -0.625 1.1875 -0.953125q0.796875 -0.328125 1.765625 -0.328125q1.046875 0 1.859375 0.34375q0.8125 0.34375 1.25 1.015625q0.4375 0.65625 0.46875 1.484375l-1.203125 0.09375q-0.109375 -0.90625 -0.671875 -1.359375q-0.5625 -0.46875 -1.65625 -0.46875q-1.140625 0 -1.671875 0.421875q-0.515625 0.421875 -0.515625 1.015625q0 0.515625 0.359375 0.84375q0.375 0.328125 1.90625 0.6875q1.546875 0.34375 2.109375 0.59375q0.84375 0.390625 1.234375 0.984375q0.390625 0.578125 0.390625 1.359375q0 0.75 -0.4375 1.4375q-0.421875 0.671875 -1.25 1.046875q-0.8125 0.359375 -1.828125 0.359375q-1.296875 0 -2.171875 -0.375q-0.875 -0.375 -1.375 -1.125q-0.5 -0.765625 -0.53125 -1.71875zm9.3428955 3.0625l0 -9.546875l4.234375 0q1.265625 0 1.921875 0.265625q0.671875 0.25 1.0625 0.90625q0.40625 0.65625 0.40625 1.4375q0 1.015625 -0.65625 1.71875q-0.65625 0.6875 -2.03125 0.875q0.5 0.25 0.765625 0.484375q0.546875 0.5 1.046875 1.265625l1.65625 2.59375l-1.578125 0l-1.265625 -1.984375q-0.5625 -0.859375 -0.921875 -1.3125q-0.34375 -0.453125 -0.640625 -0.640625q-0.28125 -0.1875 -0.5625 -0.25q-0.21875 -0.046875 -0.703125 -0.046875l-1.46875 0l0 4.234375l-1.265625 0zm1.265625 -5.328125l2.71875 0q0.859375 0 1.34375 -0.171875q0.484375 -0.1875 0.734375 -0.578125q0.265625 -0.390625 0.265625 -0.859375q0 -0.671875 -0.5 -1.109375q-0.484375 -0.4375 -1.546875 -0.4375l-3.015625 0l0 3.15625z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m95.49869 197.43307l106.01575 0l0 31.653534l-106.01575 0z" fill-rule="evenodd"/><path fill="#000000" d="m123.03195 217.95306l0 -8.59375l1.140625 0l0 4.265625l4.265625 -4.265625l1.546875 0l-3.609375 3.484375l3.765625 5.109375l-1.5 0l-3.0625 -4.34375l-1.40625 1.359375l0 2.984375l-1.140625 0zm9.253906 -4.65625q-0.65625 -0.25 -0.984375 -0.6875q-0.3125 -0.453125 -0.3125 -1.0625q0 -0.9375 0.671875 -1.578125q0.6875 -0.640625 1.796875 -0.640625q1.125 0 1.8125 0.65625q0.6875 0.65625 0.6875 1.59375q0 0.59375 -0.3125 1.03125q-0.3125 0.4375 -0.953125 0.6875q0.796875 0.25 1.203125 0.828125q0.40625 0.578125 0.40625 1.375q0 1.09375 -0.78125 1.84375q-0.765625 0.75 -2.046875 0.75q-1.265625 0 -2.046875 -0.75q-0.78125 -0.75 -0.78125 -1.875q0 -0.84375 0.421875 -1.40625q0.4375 -0.5625 1.21875 -0.765625zm-0.21875 -1.796875q0 0.609375 0.390625 1.0q0.40625 0.390625 1.03125 0.390625q0.609375 0 1.0 -0.375q0.390625 -0.390625 0.390625 -0.953125q0 -0.578125 -0.40625 -0.96875q-0.40625 -0.40625 -1.0 -0.40625q-0.609375 0 -1.015625 0.390625q-0.390625 0.390625 -0.390625 0.921875zm-0.328125 3.96875q0 0.453125 0.203125 0.875q0.21875 0.421875 0.640625 0.65625q0.421875 0.234375 0.90625 0.234375q0.75 0 1.234375 -0.484375q0.5 -0.484375 0.5 -1.234375q0 -0.765625 -0.5 -1.265625q-0.5 -0.5 -1.265625 -0.5q-0.75 0 -1.234375 0.5q-0.484375 0.484375 -0.484375 1.21875zm5.470703 0.625l1.03125 -0.15625q0.09375 0.625 0.484375 0.953125q0.40625 0.328125 1.140625 0.328125q0.71875 0 1.0625 -0.28125q0.359375 -0.296875 0.359375 -0.703125q0 -0.359375 -0.3125 -0.5625q-0.21875 -0.140625 -1.078125 -0.359375q-1.15625 -0.296875 -1.609375 -0.5q-0.4375 -0.21875 -0.671875 -0.59375q-0.234375 -0.375 -0.234375 -0.84375q0 -0.40625 0.1875 -0.765625q0.1875 -0.359375 0.515625 -0.59375q0.25 -0.171875 0.671875 -0.296875q0.421875 -0.125 0.921875 -0.125q0.71875 0 1.265625 0.21875q0.5625 0.203125 0.828125 0.5625q0.265625 0.359375 0.359375 0.953125l-1.03125 0.140625q-0.0625 -0.46875 -0.40625 -0.734375q-0.328125 -0.28125 -0.953125 -0.28125q-0.71875 0 -1.03125 0.25q-0.3125 0.234375 -0.3125 0.5625q0 0.203125 0.125 0.359375q0.140625 0.171875 0.40625 0.28125q0.15625 0.0625 0.9375 0.265625q1.125 0.3125 1.5625 0.5q0.4375 0.1875 0.6875 0.546875q0.25 0.359375 0.25 0.90625q0 0.53125 -0.3125 1.0q-0.296875 0.453125 -0.875 0.71875q-0.578125 0.25 -1.3125 0.25q-1.21875 0 -1.859375 -0.5q-0.625 -0.515625 -0.796875 -1.5zm9.880859 1.859375l0 -8.59375l1.15625 0l4.515625 6.75l0 -6.75l1.09375 0l0 8.59375l-1.171875 0l-4.515625 -6.75l0 6.75l-1.078125 0zm8.150391 -3.109375q0 -1.734375 0.953125 -2.5625q0.796875 -0.6875 1.953125 -0.6875q1.28125 0 2.09375 0.84375q0.828125 0.828125 0.828125 2.3125q0 1.203125 -0.359375 1.890625q-0.359375 0.6875 -1.0625 1.078125q-0.6875 0.375 -1.5 0.375q-1.296875 0 -2.109375 -0.828125q-0.796875 -0.84375 -0.796875 -2.421875zm1.078125 0q0 1.1875 0.515625 1.78125q0.53125 0.59375 1.3125 0.59375q0.796875 0 1.3125 -0.59375q0.515625 -0.59375 0.515625 -1.8125q0 -1.15625 -0.53125 -1.75q-0.515625 -0.59375 -1.296875 -0.59375q-0.78125 0 -1.3125 0.59375q-0.515625 0.578125 -0.515625 1.78125zm10.017578 3.109375l0 -0.78125q-0.59375 0.921875 -1.734375 0.921875q-0.75 0 -1.375 -0.40625q-0.625 -0.421875 -0.96875 -1.15625q-0.34375 -0.734375 -0.34375 -1.6875q0 -0.921875 0.3125 -1.6875q0.3125 -0.765625 0.9375 -1.15625q0.625 -0.40625 1.390625 -0.40625q0.5625 0 1.0 0.234375q0.4375 0.234375 0.71875 0.609375l0 -3.078125l1.046875 0l0 8.59375l-0.984375 0zm-3.328125 -3.109375q0 1.203125 0.5 1.796875q0.5 0.578125 1.1875 0.578125q0.6875 0 1.171875 -0.5625q0.484375 -0.5625 0.484375 -1.71875q0 -1.28125 -0.5 -1.875q-0.484375 -0.59375 -1.203125 -0.59375q-0.703125 0 -1.171875 0.578125q-0.46875 0.5625 -0.46875 1.796875zm10.220703 1.109375l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m349.6063 359.7966l322.14175 0" fill-rule="evenodd"/><path stroke="#38761d" stroke-width="2.0" stroke-linejoin="round" stroke-linecap="butt" d="m361.6063 359.7966l298.14175 0" fill-rule="evenodd"/><path fill="#38761d" stroke="#38761d" stroke-width="2.0" stroke-linecap="butt" d="m361.6063 356.49313l-9.076202 3.3034668l9.076202 3.3034668z" fill-rule="evenodd"/><path fill="#38761d" stroke="#38761d" stroke-width="2.0" stroke-linecap="butt" d="m659.74805 363.10007l9.076172 -3.3034668l-9.076172 -3.3034668z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m485.97614 324.58002l33.417297 0l0 38.4357l-33.417297 0z" fill-rule="evenodd"/><g transform="matrix(0.10035223097112861 0.0 0.0 0.10035433070866141 485.9761283464567 324.58001679790027)"><clipPath id="g5fa7a33c75bdd211_0.14"><path d="m0 4.5474735E-13l333.0 0l0 383.0l-333.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.14)" fill="#000" width="333.0" height="383.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><path fill="#000000" fill-opacity="0.0" d="m548.24384 215.27531l23.748047 0l0 23.748032l-23.748047 0z" fill-rule="evenodd"/><g transform="matrix(0.11874015748031497 0.0 0.0 0.11874015748031497 548.2438251968504 215.2753212598425)"><clipPath id="g5fa7a33c75bdd211_0.15"><path d="m0 0l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.15)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g><path fill="#000000" fill-opacity="0.0" d="m344.0 192.0l106.01575 0l0 38.4252l-106.01575 0z" fill-rule="evenodd"/><path fill="#000000" d="m361.69635 215.7326l-3.328125 -8.59375l1.234375 0l2.234375 6.25q0.265625 0.75 0.453125 1.40625q0.203125 -0.703125 0.46875 -1.40625l2.3125 -6.25l1.15625 0l-3.359375 8.59375l-1.171875 0zm5.0351562 -3.109375q0 -1.734375 0.953125 -2.5625q0.796875 -0.6875 1.953125 -0.6875q1.28125 0 2.09375 0.84375q0.828125 0.828125 0.828125 2.3125q0 1.203125 -0.359375 1.890625q-0.359375 0.6875 -1.0625 1.078125q-0.6875 0.375 -1.5 0.375q-1.296875 0 -2.109375 -0.828125q-0.796875 -0.84375 -0.796875 -2.421875zm1.078125 0q0 1.1875 0.515625 1.78125q0.53125 0.59375 1.3125 0.59375q0.796875 0 1.3125 -0.59375q0.515625 -0.59375 0.515625 -1.8125q0 -1.15625 -0.53125 -1.75q-0.515625 -0.59375 -1.296875 -0.59375q-0.78125 0 -1.3125 0.59375q-0.515625 0.578125 -0.515625 1.78125zm5.955078 3.109375l0 -8.59375l1.0625 0l0 8.59375l-1.0625 0zm6.7753906 0l0 -0.921875q-0.734375 1.0625 -1.984375 1.0625q-0.546875 0 -1.03125 -0.203125q-0.46875 -0.21875 -0.703125 -0.53125q-0.234375 -0.328125 -0.328125 -0.796875q-0.0625 -0.296875 -0.0625 -0.984375l0 -3.84375l1.0625 0l0 3.453125q0 0.8125 0.0625 1.109375q0.09375 0.40625 0.40625 0.65625q0.328125 0.234375 0.8125 0.234375q0.46875 0 0.875 -0.234375q0.421875 -0.25 0.59375 -0.671875q0.1875 -0.421875 0.1875 -1.21875l0 -3.328125l1.046875 0l0 6.21875l-0.9375 0zm2.5957031 0l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm14.246094 -2.0l1.09375 0.125q-0.25 0.953125 -0.953125 1.484375q-0.703125 0.53125 -1.78125 0.53125q-1.359375 0 -2.171875 -0.84375q-0.796875 -0.84375 -0.796875 -2.359375q0 -1.5625 0.8125 -2.421875q0.8125 -0.875 2.09375 -0.875q1.25 0 2.03125 0.84375q0.796875 0.84375 0.796875 2.390625q0 0.09375 0 0.28125l-4.640625 0q0.0625 1.03125 0.578125 1.578125q0.515625 0.53125 1.296875 0.53125q0.578125 0 0.984375 -0.296875q0.421875 -0.3125 0.65625 -0.96875zm-3.453125 -1.703125l3.46875 0q-0.0625 -0.796875 -0.390625 -1.1875q-0.515625 -0.609375 -1.3125 -0.609375q-0.734375 0 -1.234375 0.484375q-0.484375 0.484375 -0.53125 1.3125zm9.2109375 3.703125l0 -6.21875l0.9375 0l0 0.875q0.296875 -0.46875 0.78125 -0.734375q0.484375 -0.28125 1.109375 -0.28125q0.6875 0 1.125 0.28125q0.453125 0.28125 0.625 0.796875q0.75 -1.078125 1.921875 -1.078125q0.9375 0 1.421875 0.515625q0.5 0.5 0.5 1.578125l0 4.265625l-1.046875 0l0 -3.921875q0 -0.625 -0.109375 -0.90625q-0.09375 -0.28125 -0.359375 -0.453125q-0.265625 -0.171875 -0.640625 -0.171875q-0.65625 0 -1.09375 0.4375q-0.421875 0.4375 -0.421875 1.40625l0 3.609375l-1.0625 0l0 -4.046875q0 -0.703125 -0.265625 -1.046875q-0.25 -0.359375 -0.828125 -0.359375q-0.453125 0 -0.828125 0.234375q-0.375 0.234375 -0.546875 0.6875q-0.171875 0.453125 -0.171875 1.296875l0 3.234375l-1.046875 0zm9.605469 -3.109375q0 -1.734375 0.953125 -2.5625q0.796875 -0.6875 1.953125 -0.6875q1.28125 0 2.09375 0.84375q0.828125 0.828125 0.828125 2.3125q0 1.203125 -0.359375 1.890625q-0.359375 0.6875 -1.0625 1.078125q-0.6875 0.375 -1.5 0.375q-1.296875 0 -2.109375 -0.828125q-0.796875 -0.84375 -0.796875 -2.421875zm1.078125 0q0 1.1875 0.515625 1.78125q0.53125 0.59375 1.3125 0.59375q0.796875 0 1.3125 -0.59375q0.515625 -0.59375 0.515625 -1.8125q0 -1.15625 -0.53125 -1.75q-0.515625 -0.59375 -1.296875 -0.59375q-0.78125 0 -1.3125 0.59375q-0.515625 0.578125 -0.515625 1.78125zm10.064453 3.109375l0 -0.921875q-0.734375 1.0625 -1.984375 1.0625q-0.546875 0 -1.03125 -0.203125q-0.46875 -0.21875 -0.703125 -0.53125q-0.234375 -0.328125 -0.328125 -0.796875q-0.0625 -0.296875 -0.0625 -0.984375l0 -3.84375l1.0625 0l0 3.453125q0 0.8125 0.0625 1.109375q0.09375 0.40625 0.40625 0.65625q0.328125 0.234375 0.8125 0.234375q0.46875 0 0.875 -0.234375q0.421875 -0.25 0.59375 -0.671875q0.1875 -0.421875 0.1875 -1.21875l0 -3.328125l1.046875 0l0 6.21875l-0.9375 0zm2.5957031 0l0 -6.21875l0.9375 0l0 0.875q0.6875 -1.015625 1.984375 -1.015625q0.5625 0 1.03125 0.203125q0.484375 0.203125 0.71875 0.53125q0.234375 0.328125 0.328125 0.765625q0.046875 0.296875 0.046875 1.03125l0 3.828125l-1.046875 0l0 -3.78125q0 -0.65625 -0.125 -0.96875q-0.125 -0.3125 -0.4375 -0.5q-0.3125 -0.203125 -0.734375 -0.203125q-0.671875 0 -1.171875 0.4375q-0.484375 0.421875 -0.484375 1.609375l0 3.40625l-1.046875 0zm8.970703 -0.9375l0.15625 0.921875q-0.453125 0.09375 -0.796875 0.09375q-0.578125 0 -0.890625 -0.171875q-0.3125 -0.1875 -0.453125 -0.484375q-0.125 -0.296875 -0.125 -1.25l0 -3.578125l-0.765625 0l0 -0.8125l0.765625 0l0 -1.546875l1.046875 -0.625l0 2.171875l1.0625 0l0 0.8125l-1.0625 0l0 3.640625q0 0.453125 0.046875 0.578125q0.0625 0.125 0.1875 0.203125q0.125 0.078125 0.359375 0.078125q0.1875 0 0.46875 -0.03125z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m509.36484 127.0c0 47.897644 -39.826782 71.84645 -79.653564 95.79527c-39.82675 23.948822 -79.653534 47.89763 -79.653534 95.79527" fill-rule="evenodd"/><path stroke="#595959" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m509.36484 127.0c0 47.897644 -39.826782 71.84645 -79.653564 95.79527c-19.91336 11.974411 -39.82675 23.948822 -54.76181 38.916824c-7.467499 7.484009 -13.69043 15.716431 -18.046509 25.071442c-2.178009 4.67749 -3.8893433 9.635651 -5.056122 14.921234c-0.583374 2.6427612 -1.0306702 5.3674316 -1.3321228 8.179779c-0.07531738 0.7030945 -0.14154053 1.4116516 -0.19851685 2.1257935l-0.042663574 0.5840759" fill-rule="evenodd"/><path fill="#595959" stroke="#595959" stroke-width="1.0" stroke-linecap="butt" d="m348.62286 312.53503l1.4874573 4.594574l1.8138733 -4.475769z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m396.24384 223.27531l23.748016 0l0 23.748032l-23.748016 0z" fill-rule="evenodd"/><g transform="matrix(0.11874015748031497 0.0 0.0 0.11874015748031497 396.24382519685037 223.2753212598425)"><clipPath id="g5fa7a33c75bdd211_0.16"><path d="m-4.5474735E-13 -2.2737368E-13l200.0 0l0 200.0l-200.0 0z" clip-rule="evenodd"/></clipPath><image clip-path="url(#g5fa7a33c75bdd211_0.16)" fill="#000" width="200.0" height="200.0" x="0.0" y="0.0" preserveAspectRatio="none" xlink:href="data:image/png;base64,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"/></g></g></svg>
\ No newline at end of file
diff --git a/_docs/concepts/security/index.md b/_docs/concepts/security/index.md
index 8b3170f4f3617..c1138c61d27c4 100644
--- a/_docs/concepts/security/index.md
+++ b/_docs/concepts/security/index.md
@@ -1,11 +1,9 @@
---
title: Security
-overview: Describes Istio's authorization and authentication functionality.
+description: Describes Istio's authorization and authentication functionality.
-order: 30
+weight: 30
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/concepts/security/mutual-tls.md b/_docs/concepts/security/mutual-tls.md
index fb02fd45b8735..b59fab9dc41d0 100644
--- a/_docs/concepts/security/mutual-tls.md
+++ b/_docs/concepts/security/mutual-tls.md
@@ -1,166 +1,166 @@
---
title: Mutual TLS Authentication
-overview: Describes Istio's mutual TLS authentication architecture which provides a strong service identity and secure communication channels between services.
-order: 10
+description: Describes Istio's mutual TLS authentication architecture which provides a strong service identity and secure communication channels between services.
+weight: 10
-layout: docs
-type: markdown
---
-## Overview
-
-Istio Auth's aim is to enhance the security of microservices and their communication without requiring service code changes. It is responsible for:
-
+{% include home.html %}
+## Overview
-* Providing each service with a strong identity that represents its role to enable interoperability across clusters and clouds
+Istio's aim is to enhance the security of microservices and their communication without requiring service code changes. It is responsible for:
-* Securing service to service communication and end-user to service communication
+* Providing each service with a strong identity that represents its role to enable interoperability across clusters and clouds
-* Providing a key management system to automate key and certificate generation, distribution, rotation, and revocation
+* Securing service to service communication and end-user to service communication
+* Providing a key management system to automate key and certificate generation, distribution, rotation, and revocation
## Architecture
-The diagram below shows Istio Auth's architecture, which includes three primary components: identity, key management, and communication security. This diagram describes how Istio Auth is used to secure the service-to-service communication between service 'frontend' running as the service account 'frontend-team' and service 'backend' running as the service account 'backend-team'. Istio supports services running on both Kubernetes containers and VM/bare-metal machines.
+The diagram below shows Istio's security-related architecture, which includes three primary components: identity, key management, and communication
+security. This diagram describes how Istio is used to secure the service-to-service communication between service 'frontend' running
+as the service account 'frontend-team' and service 'backend' running as the service account 'backend-team'. Istio supports services running
+on both Kubernetes containers and VM/bare-metal machines.
-{% include figure.html width='80%' ratio='56.25%'
- img='./img/mutual-tls/auth.svg'
- alt='Components making up the Istio auth model.'
- title='Istio Auth Architecture'
- caption='Istio Auth Architecture'
+{% include image.html width="80%" ratio="56.25%"
+ link="./img/mutual-tls/auth.svg"
+ alt="Components making up the Istio auth model."
+ caption="Istio Security Architecture"
%}
-As illustrated in the diagram, Istio Auth leverages secret volume mount to deliver keys/certs from Istio CA to Kubernetes containers. For services running on VM/bare-metal machines, we introduce a node agent, which is a process running on each VM/bare-metal machine. It generates the private key and CSR (certificate signing request) locally, sends CSR to Istio CA for signing, and delivers the generated certificate together with the private key to Envoy.
+As illustrated in the diagram, Istio leverages secret volume mount to deliver keys/certs from Citadel to Kubernetes containers. For services running on
+VM/bare-metal machines, we introduce a node agent, which is a process running on each VM/bare-metal machine. It generates the private key and CSR (certificate
+signing request) locally, sends CSR to Citadel for signing, and delivers the generated certificate together with the private key to Envoy.
## Components
### Identity
-Istio Auth uses [Kubernetes service accounts](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/) to identify who runs the service:
+Istio uses [Kubernetes service accounts](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/) to identify who runs the service:
+* A service account in Istio has the format "spiffe://\<_domain_\>/ns/\<_namespace_>/sa/\<_serviceaccount_\>".
-* A service account in Istio has the format "spiffe://\<_domain_\>/ns/\<_namespace_>/sa/\<_serviceaccount_\>".
- * _domain_ is currently _cluster.local_. We will support customization of domain in the near future.
- * _namespace_ is the namespace of the Kubernetes service account.
- * _serviceaccount_ is the Kubernetes service account name.
+ * _domain_ is currently _cluster.local_. We will support customization of domain in the near future.
+ * _namespace_ is the namespace of the Kubernetes service account.
+ * _serviceaccount_ is the Kubernetes service account name.
-* A service account is **the identity (or role) a workload runs as**, which represents that workload's privileges. For systems requiring strong security, the amount of privilege for a workload should not be identified by a random string (i.e., service name, label, etc), or by the binary that is deployed.
+* A service account is **the identity (or role) a workload runs as**, which represents that workload's privileges. For systems requiring strong security, the
+amount of privilege for a workload should not be identified by a random string (i.e., service name, label, etc), or by the binary that is deployed.
- * For example, let's say we have a workload pulling data from a multi-tenant database. If Alice ran this workload, she will be able to pull a different set of data than if Bob ran this workload.
+ * For example, let's say we have a workload pulling data from a multi-tenant database. If Alice ran this workload, she will be able to pull
+ a different set of data than if Bob ran this workload.
-* Service accounts enable strong security policies by offering the flexibility to identify a machine, a user, a workload, or a group of workloads (different workloads can run as the same service account).
+* Service accounts enable strong security policies by offering the flexibility to identify a machine, a user, a workload, or a group of workloads (different
+workloads can run as the same service account).
-* The service account a workload runs as won't change during the lifetime of the workload.
+* The service account a workload runs as won't change during the lifetime of the workload.
-* Service account uniqueness can be ensured with domain name constraint
+* Service account uniqueness can be ensured with domain name constraint
### Communication security
Service-to-service communication is tunneled through the client side [Envoy](https://envoyproxy.github.io/envoy/) and the server side Envoy. End-to-end communication is secured by:
+* Local TCP connections between the service and Envoy
-* Local TCP connections between the service and Envoy
+* Mutual TLS connections between proxies
-* Mutual TLS connections between proxies
-
-* Secure Naming: during the handshake process, the client side Envoy checks that the service account provided by the server side certificate is allowed to run the target service
+* Secure Naming: during the handshake process, the client side Envoy checks that the service account provided by the server side certificate is allowed to run the target service
### Key management
-Istio v0.2 supports services running on both Kubernetes pods and VM/bare-metal machines. We use different key provisioning mechanisms for each scenario.
-
-For services running on Kubernetes pods, the per-cluster Istio CA (Certificate Authority) automates the key & certificate management process. It mainly performs four critical operations :
+Istio 0.2 supports services running on both Kubernetes pods and VM/bare-metal machines. We use different key provisioning mechanisms for each scenario.
+For services running on Kubernetes pods, the per-cluster Citadel (acting as Certificate Authority) automates the key & certificate management process. It mainly performs four critical operations:
-* Generate a [SPIFFE](https://spiffe.github.io/docs/svid) key and certificate pair for each service account
+* Generate a [SPIFFE](https://spiffe.github.io/docs/svid) key and certificate pair for each service account
-* Distribute a key and certificate pair to each pod according to the service account
+* Distribute a key and certificate pair to each pod according to the service account
-* Rotate keys and certificates periodically
+* Rotate keys and certificates periodically
-* Revoke a specific key and certificate pair when necessary
+* Revoke a specific key and certificate pair when necessary
-For services running on VM/bare-metal machines, the above four operations are performed by Istio CA together with node agents.
+For services running on VM/bare-metal machines, the above four operations are performed by Citadel together with node agents.
## Workflow
-The Istio Auth workflow consists of two phases, deployment and runtime. For the deployment phase, we discuss the two scenarios (i.e., in Kubernetes and VM/bare-metal machines) separately since they are different. Once the key and certificate are deployed, the runtime phase is the same for the two scenarios. We briefly cover the workflow in this section.
+The Istio Security workflow consists of two phases, deployment and runtime. For the deployment phase, we discuss the two
+scenarios (i.e., in Kubernetes and VM/bare-metal machines) separately since they are different. Once the key and
+certificate are deployed, the runtime phase is the same for the two scenarios. We briefly cover the workflow in this
+section.
### Deployment phase (Kubernetes Scenario)
+1. Citadel watches the Kubernetes API Server, creates a [SPIFFE](https://spiffe.github.io/docs/svid) key and certificate
+pair for each of the existing and new service accounts, and sends them to the API Server.
-1. Istio CA watches Kubernetes API Server, creates a [SPIFFE](https://spiffe.github.io/docs/svid) key and certificate pair for each of the existing and new service accounts, and sends them to API Server.
-
-1. When a pod is created, API Server mounts the key and certificate pair according to the service account using [Kubernetes secrets](https://kubernetes.io/docs/concepts/configuration/secret/).
+1. When a pod is created, API Server mounts the key and certificate pair according to the service account using [Kubernetes secrets](https://kubernetes.io/docs/concepts/configuration/secret/).
-1. [Pilot]({{home}}/docs/concepts/traffic-management/pilot.html) generates the config with proper key and certificate and secure naming information,
-which
- defines what service account(s) can run a certain service, and passes it to Envoy.
+1. [Pilot]({{home}}/docs/concepts/traffic-management/pilot.html) generates the config with proper key and certificate and secure naming information,
+which defines what service account(s) can run a certain service, and passes it to Envoy.
### Deployment phase (VM/bare-metal Machines Scenario)
+1. Citadel creates a gRPC service to take CSR request.
-1. Istio CA creates a gRPC service to take CSR request.
+1. Node agent creates the private key and CSR, sends the CSR to Citadel for signing.
-1. Node agent creates the private key and CSR, sends the CSR to Istio CA for signing.
+1. Citadel validates the credentials carried in the CSR, and signs the CSR to generate the certificate.
-1. Istio CA validates the credentials carried in the CSR, and signs the CSR to generate the certificate.
-
-1. Node agent puts the certificate received from CA and the private key to Envoy.
-
-1. The above CSR process repeats periodically for rotation.
+1. Node agent puts the certificate received from Citadel and the private key to Envoy.
+1. The above CSR process repeats periodically for rotation.
### Runtime phase
+1. The outbound traffic from a client service is rerouted to its local Envoy.
+1. The client side Envoy starts a mutual TLS handshake with the server side Envoy. During the handshake, it also does a secure naming check to verify that the service account presented in the server certificate can run the server service.
-1. The outbound traffic from a client service is rerouted to its local Envoy.
-
-1. The client side Envoy starts a mutual TLS handshake with the server side Envoy. During the handshake, it also does a secure naming check to verify that the service account presented in the server certificate can run the server service.
-
-1. The traffic is forwarded to the server side Envoy after mTLS connection is established, which is then forwarded to the server service through local TCP connections.
+1. The traffic is forwarded to the server side Envoy after mTLS connection is established, which is then forwarded to the server service through local TCP connections.
## Best practices
-In this section, we provide a few deployment guidelines and then discuss a real-world scenario.
+In this section, we provide a few deployment guidelines and then discuss a real-world scenario.
### Deployment guidelines
+* If there are multiple service operators (a.k.a. [SREs](https://en.wikipedia.org/wiki/Site_reliability_engineering)) deploying different services in a cluster (typically in a medium- or large-size cluster), we recommend creating a separate [namespace](https://kubernetes.io/docs/tasks/administer-cluster/namespaces-walkthrough/) for each SRE team to isolate their access. For example, you could create a "team1-ns" namespace for team1, and "team2-ns" namespace for team2, such that both teams won't be able to access each other's services.
-
-* If there are multiple service operators (a.k.a. [SREs](https://en.wikipedia.org/wiki/Site_reliability_engineering)) deploying different services in a cluster (typically in a medium- or large-size cluster), we recommend creating a separate [namespace](https://kubernetes.io/docs/tasks/administer-cluster/namespaces-walkthrough/) for each SRE team to isolate their access. For example, you could create a "team1-ns" namespace for team1, and "team2-ns" namespace for team2, such that both teams won't be able to access each other's services.
-
-* If Istio CA is compromised, all its managed keys and certificates in the cluster may be exposed. We *strongly* recommend running Istio CA on a dedicated namespace (for example, istio-ca-ns), which only cluster admins have access to.
+* If Citadel is compromised, all its managed keys and certificates in the cluster may be exposed. We *strongly* recommend running Citadel
+on a dedicated namespace (for example, istio-citadel-ns), which only cluster admins have access to.
### Example
Let's consider a 3-tier application with three services: photo-frontend, photo-backend, and datastore. Photo-frontend and photo-backend services are managed by the photo SRE team while the datastore service is managed by the datastore SRE team. Photo-frontend can access photo-backend, and photo-backend can access datastore. However, photo-frontend cannot access datastore.
-In this scenario, a cluster admin creates 3 namespaces: istio-ca-ns, photo-ns, and datastore-ns. Admin has access to all namespaces, and each team only has
-access to its own namespace. The photo SRE team creates 2 service accounts to run photo-frontend and photo-backend respectively in namespace photo-ns. The
-datastore SRE team creates 1 service account to run the datastore service in namespace datastore-ns. Moreover, we need to enforce the service access control
+In this scenario, a cluster admin creates 3 namespaces: istio-citadel-ns, photo-ns, and datastore-ns. Admin has access to all namespaces, and each team only has
+access to its own namespace. The photo SRE team creates 2 service accounts to run photo-frontend and photo-backend respectively in namespace photo-ns. The
+datastore SRE team creates 1 service account to run the datastore service in namespace datastore-ns. Moreover, we need to enforce the service access control
in [Istio Mixer]({{home}}/docs/concepts/policy-and-control/mixer.html) such that photo-frontend cannot access datastore.
-In this setup, Istio CA is able to provide keys and certificates management for all namespaces, and isolate microservice deployments from each other.
+In this setup, Citadel is able to provide keys and certificates management for all namespaces, and isolate
+microservice deployments from each other.
## Future work
-* Inter-cluster service-to-service authentication
+* Inter-cluster service-to-service authentication
-* Powerful authorization mechanisms: ABAC, RBAC, etc
+* Powerful authorization mechanisms: ABAC, RBAC, etc
-* Per-service auth enablement support
+* Per-service auth enablement support
-* Secure Istio components (Mixer, Pilot)
+* Secure Istio components (Mixer, Pilot)
-* End-user to service authentication using JWT/OAuth2/OpenID_Connect.
+* End-user to service authentication using JWT/OAuth2/OpenID_Connect.
-* Support GCP service account
+* Support GCP service account
-* Unix domain socket for local communication between service and Envoy
+* Unix domain socket for local communication between service and Envoy
-* Middle proxy support
+* Middle proxy support
-* Pluggable key management component
+* Pluggable key management component
diff --git a/_docs/concepts/security/rbac.md b/_docs/concepts/security/rbac.md
index 05ae247fec744..ead114865c56a 100644
--- a/_docs/concepts/security/rbac.md
+++ b/_docs/concepts/security/rbac.md
@@ -1,39 +1,41 @@
---
title: Istio Role-Based Access Control (RBAC)
-overview: Describes Istio RBAC which provides access control for services in Istio Mesh.
-order: 10
+description: Describes Istio RBAC which provides access control for services in Istio Mesh.
+weight: 20
-layout: docs
-type: markdown
---
{% include home.html %}
## Overview
-Istio Role-Based Access Control (RBAC) provides namespace-level, service-level, method-level access control for services in Istio Mesh.
+
+Istio Role-Based Access Control (RBAC) provides namespace-level, service-level, method-level access control for services in the Istio Mesh.
It features:
+
* Role-Based semantics, which is simple and easy to use.
+
* Service-to-service and endUser-to-Service authorization.
+
* Flexibility through custom properties support in roles and role-bindings.
## Architecture
-The diagram below shows Istio RBAC architecture. The admins specify Istio RBAC policies. The policies are saved in Istio config store.
+The diagram below shows the Istio RBAC architecture. Operators specify Istio RBAC policies. The policies are saved in
+the Istio config store.
-{% include figure.html width='80%' ratio='56.25%'
- img='./img/IstioRBAC.svg'
- alt='Istio RBAC'
- title='Istio RBAC Architecture'
- caption='Istio RBAC Architecture'
+{% include image.html width="80%" ratio="56.25%"
+ link="./img/IstioRBAC.svg"
+ alt="Istio RBAC"
+ caption="Istio RBAC Architecture"
%}
-Istio RBAC engine does two things:
+The Istio RBAC engine does two things:
* **Fetch RBAC policy.** Istio RBAC engine watches for changes on RBAC policy. It fetches the updated RBAC policy if it sees any changes.
* **Authorize Requests.** At runtime, when a request comes, the request context is passed to Istio RBAC engine. RBAC engine evaluates the
request context against the RBAC policies, and returns the authorization result (ALLOW or DENY).
-### Request Context
+### Request context
-In the current release, Istio RBAC engine is implemented as a [Mixer adapter]({{home}}/docs/concepts/policy-and-control/mixer.html#adapters).
+In the current release, the Istio RBAC engine is implemented as a [Mixer adapter]({{home}}/docs/concepts/policy-and-control/mixer.html#adapters).
The request context is provided as an instance of the
[authorization template](https://github.com/istio/istio/blob/master/mixer/template/authorization/template.proto). The request context
contains all the information about the request and the environment that an authorization module needs to know. In particular, it has two parts:
@@ -44,180 +46,206 @@ or any additional properties about the subject such as namespace, service name.
and any additional properties about the action.
Below we show an example "requestcontext".
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: authorization
- metadata:
- name: requestcontext
- namespace: istio-system
- spec:
- subject:
- user: request.auth.principal | ""
- groups: request.auth.principal | ""
- properties:
- service: source.service | ""
- namespace: source.namespace | ""
- action:
- namespace: destination.namespace | ""
- service: destination.service | ""
- method: request.method | ""
- path: request.path | ""
- properties:
- version: request.headers["version"] | ""
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: authorization
+metadata:
+ name: requestcontext
+ namespace: istio-system
+spec:
+ subject:
+ user: source.user | ""
+ groups: ""
+ properties:
+ service: source.service | ""
+ namespace: source.namespace | ""
+ action:
+ namespace: destination.namespace | ""
+ service: destination.service | ""
+ method: request.method | ""
+ path: request.path | ""
+ properties:
+ version: request.headers["version"] | ""
```
-## Istio RBAC Policy
+## Istio RBAC policy
-Istio RBAC introduces ServiceRole and ServiceRoleBinding, both of which are defined as Kubernetes CustomResourceDefinition (CRD) objects.
+Istio RBAC introduces `ServiceRole` and `ServiceRoleBinding`, both of which are defined as Kubernetes CustomResourceDefinition (CRD) objects.
-* **ServiceRole** defines a role for access to services in the mesh.
-* **ServiceRoleBinding** grants a role to subjects (e.g., a user, a group, a service).
+* **`ServiceRole`** defines a role for access to services in the mesh.
+* **`ServiceRoleBinding`** grants a role to subjects (e.g., a user, a group, a service).
-### ServiceRole
+### `ServiceRole`
-A ServiceRole specification includes a list of rules. Each rule has the following standard fields:
+A `ServiceRole` specification includes a list of rules. Each rule has the following standard fields:
* **services**: A list of service names, which are matched against the `action.service` field of the "requestcontext".
* **methods**: A list of method names which are matched against the `action.method` field of the "requestcontext". In the above "requestcontext",
this is the HTTP or gRPC method. Note that gRPC methods are formatted in the form of "packageName.serviceName/methodName" (case sensitive).
* **paths**: A list of HTTP paths which are matched against the `action.path` field of the "requestcontext". It is ignored in gRPC case.
-A ServiceRole specification only applies to the **namespace** specified in `"metadata"` section. The "services" and "methods" are required
+A `ServiceRole` specification only applies to the **namespace** specified in `"metadata"` section. The "services" and "methods" are required
fields in a rule. "paths" is optional. If not specified or set to "*", it applies to "any" instance.
Here is an example of a simple role "service-admin", which has full access to all services in "default" namespace.
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: ServiceRole
- metadata:
- name: service-admin
- namespace: default
- spec:
- rules:
- - services: ["*"]
- methods: ["*"]
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: ServiceRole
+metadata:
+ name: service-admin
+ namespace: default
+spec:
+ rules:
+ - services: ["*"]
+ methods: ["*"]
```
Here is another role "products-viewer", which has read ("GET" and "HEAD") access to service "products.default.svc.cluster.local"
in "default" namespace.
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: ServiceRole
- metadata:
- name: products-viewer
- namespace: default
- spec:
- rules:
- - services: ["products.default.svc.cluster.local"]
- methods: ["GET", "HEAD"]
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: ServiceRole
+metadata:
+ name: products-viewer
+ namespace: default
+spec:
+ rules:
+ - services: ["products.default.svc.cluster.local"]
+ methods: ["GET", "HEAD"]
```
-In addition, we support **prefix match** and **suffix match** for all the fields in a rule. For example, you can define a "tester" role that
+In addition, we support **prefix matching** and **suffix matching** for all the fields in a rule. For example, you can define a "tester" role that
has the following permissions in "default" namespace:
* Full access to all services with prefix "test-" (e.g, "test-bookstore", "test-performance", "test-api.default.svc.cluster.local").
* Read ("GET") access to all paths with "/reviews" suffix (e.g, "/books/reviews", "/events/booksale/reviews", "/reviews")
in service "bookstore.default.svc.cluster.local".
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: ServiceRole
- metadata:
- name: tester
- namespace: default
- spec:
- rules:
- - services: ["test-*"]
- methods: ["*"]
- - services: ["bookstore.default.svc.cluster.local"]
- paths: ["*/reviews"]
- methods: ["GET"]
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: ServiceRole
+metadata:
+ name: tester
+ namespace: default
+spec:
+ rules:
+ - services: ["test-*"]
+ methods: ["*"]
+ - services: ["bookstore.default.svc.cluster.local"]
+ paths: ["*/reviews"]
+ methods: ["GET"]
```
-In ServiceRole, the combination of "namespace"+"services"+"paths"+"methods" defines "how a service (services) is allowed to be accessed".
+In `ServiceRole`, the combination of "namespace"+"services"+"paths"+"methods" defines "how a service (services) is allowed to be accessed".
In some situations, you may need to specify additional constraints that a rule applies to. For example, a rule may only applies to a
certain "version" of a service, or only applies to services that are labeled "foo". You can easily specify these constraints using
custom fields.
-For example, the following ServiceRole definition extends the previous "products-viewer" role by adding a constraint on service "version"
+For example, the following `ServiceRole` definition extends the previous "products-viewer" role by adding a constraint on service "version"
being "v1" or "v2". Note that the "version" property is provided by `"action.properties.version"` in "requestcontext".
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: ServiceRole
- metadata:
- name: products-viewer-version
- namespace: default
- spec:
- rules:
- - services: ["products.default.svc.cluster.local"]
- methods: ["GET", "HEAD"]
- constraints:
- - key: "version"
- values: ["v1", "v2"]
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: ServiceRole
+metadata:
+ name: products-viewer-version
+ namespace: default
+spec:
+ rules:
+ - services: ["products.default.svc.cluster.local"]
+ methods: ["GET", "HEAD"]
+ constraints:
+ - key: "version"
+ values: ["v1", "v2"]
```
-### ServiceRoleBinding
+### `ServiceRoleBinding`
-A ServiceRoleBinding specification includes two parts:
-* **roleRef** refers to a ServiceRole object **in the same namespace**.
+A `ServiceRoleBinding` specification includes two parts:
+* **roleRef** refers to a `ServiceRole` resource **in the same namespace**.
* A list of **subjects** that are assigned the role.
A subject can either be a "user", or a "group", or is represented with a set of "properties". Each entry ("user" or "group" or an entry
in "properties") must match one of fields ("user" or "groups" or an entry in "properties") in the "subject" part of the "requestcontext"
instance.
-Here is an example of ServiceRoleBinding object "test-binding-products", which binds two subjects to ServiceRole "product-viewer":
+Here is an example of `ServiceRoleBinding` resource "test-binding-products", which binds two subjects to ServiceRole "product-viewer":
* user "alice@yahoo.com".
* "reviews.abc.svc.cluster.local" service in "abc" namespace.
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: ServiceRoleBinding
- metadata:
- name: test-binding-products
- namespace: default
- spec:
- subjects:
- - user: "alice@yahoo.com"
- - properties:
- service: "reviews.abc.svc.cluster.local"
- namespace: "abc"
- roleRef:
- kind: ServiceRole
- name: "products-viewer"
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: ServiceRoleBinding
+metadata:
+ name: test-binding-products
+ namespace: default
+spec:
+ subjects:
+ - user: "alice@yahoo.com"
+ - properties:
+ service: "reviews.abc.svc.cluster.local"
+ namespace: "abc"
+ roleRef:
+ kind: ServiceRole
+ name: "products-viewer"
+```
+
+In the case that you want to make a service(s) publicly accessible, you can use set the subject to `user: "*"`. This will assign a `ServiceRole`
+to all users/services.
+
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: ServiceRoleBinding
+metadata:
+ name: binding-products-allusers
+ namespace: default
+spec:
+ subjects:
+ - user: "*"
+ roleRef:
+ kind: ServiceRole
+ name: "products-viewer"
```
## Enabling Istio RBAC
Istio RBAC can be enabled by adding the following Mixer adapter rule. The rule has two parts. The first part defines a RBAC handler.
-The `"config_store_url"` parameter specifies where RBAC engine fetches RBAC policies. The default value for "config_store_url" is `"k8s://"`,
-which means Kubernetes API server. Alternatively, if you are testing RBAC policy locally, you may set it to a local directory such as
-`"fs:///tmp/testdata/configroot"`.
+It has two parameters, `"config_store_url"` and `"cache_duration"`.
+* The `"config_store_url"` parameter specifies where RBAC engine fetches RBAC policies. The default value for `"config_store_url"` is
+`"k8s://"`, which means Kubernetes API server. Alternatively, if you are testing RBAC policy locally, you may set it to a local directory
+such as `"fs:///tmp/testdata/configroot"`.
+* The `"cache_duration"` parameter specifies the duration for which the authorization results may be cached on Mixer client (i.e., Istio proxy).
+The default value for `"cache_duration"` is 1 minute.
The second part defines a rule, which specifies that the RBAC handler should be invoked with the "requestcontext" instance [defined
earlier in the document](#request-context).
-```rule
- apiVersion: "config.istio.io/v1alpha2"
- kind: rbac
- metadata:
- name: handler
- namespace: istio-system
- spec:
- config_store_url: "k8s://"
-
- ---
- apiVersion: "config.istio.io/v1alpha2"
- kind: rule
- metadata:
- name: rbaccheck
- namespace: istio-system
- spec:
- actions:
- # handler and instance names default to the rule's namespace.
- - handler: handler.rbac
- instances:
- - requestcontext.authorization
- ---
+In the following example, Istio RBAC is enabled for "default" namespace. And the cache duration is set to 30 seconds.
+
+```yaml
+apiVersion: "config.istio.io/v1alpha2"
+kind: rbac
+metadata:
+ name: handler
+ namespace: istio-system
+spec:
+ config_store_url: "k8s://"
+ cache_duration: "30s"
+---
+apiVersion: "config.istio.io/v1alpha2"
+kind: rule
+metadata:
+ name: rbaccheck
+ namespace: istio-system
+spec:
+ match: destination.namespace == "default"
+ actions:
+ # handler and instance names default to the rule's namespace.
+ - handler: handler.rbac
+ instances:
+ - requestcontext.authorization
```
+
+## What's next
+
+Try out the [Istio RBAC with Bookinfo]({{home}}/docs/tasks/security/role-based-access-control.html) sample.
diff --git a/_docs/concepts/traffic-management/fault-injection.md b/_docs/concepts/traffic-management/fault-injection.md
index bfde97b87be7a..b8b11b5b31e93 100644
--- a/_docs/concepts/traffic-management/fault-injection.md
+++ b/_docs/concepts/traffic-management/fault-injection.md
@@ -1,14 +1,12 @@
---
title: Fault Injection
-overview: Introduces the idea of systematic fault injection that can be used to uncover conflicting failure recovery policies across services.
-
-order: 40
+description: Introduces the idea of systematic fault injection that can be used to uncover conflicting failure recovery policies across services.
+
+weight: 40
-layout: docs
-type: markdown
toc: false
---
-
+
While Envoy sidecar/proxy provides a host of
[failure recovery mechanisms](./handling-failures.html) to services running
on Istio, it is still
@@ -25,12 +23,12 @@ regardless of network level failures, and that more meaningful failures can
be injected at the application layer (e.g., HTTP error codes) to exercise
the resilience of an application.
-Operators can configure faults to be injected into requests that match
+Operators can configure faults to be injected into requests that match
specific criteria. Operators can further restrict the percentage of
requests that should be subjected to faults. Two types of faults can be
injected: delays and aborts. Delays are timing failures, mimicking
increased network latency, or an overloaded upstream service. Aborts are
-crash failures that mimick failures in upstream services. Aborts usually
+crash failures that mimic failures in upstream services. Aborts usually
manifest in the form of HTTP error codes, or TCP connection failures.
-Refer to [Istio's traffic management rules](./rules-configuration.html) for more details.
\ No newline at end of file
+Refer to [Istio's traffic management rules](./rules-configuration.html) for more details.
diff --git a/_docs/concepts/traffic-management/handling-failures.md b/_docs/concepts/traffic-management/handling-failures.md
index b4e97c6f526f7..fb619e6b17870 100644
--- a/_docs/concepts/traffic-management/handling-failures.md
+++ b/_docs/concepts/traffic-management/handling-failures.md
@@ -1,11 +1,9 @@
---
title: Handling Failures
-overview: An overview of failure recovery capabilities in Envoy that can be leveraged by unmodified applications to improve robustness and prevent cascading failures.
+description: An overview of failure recovery capabilities in Envoy that can be leveraged by unmodified applications to improve robustness and prevent cascading failures.
-order: 30
+weight: 30
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -14,18 +12,22 @@ that can be taken advantage of by the services in an application. Features
include:
1. Timeouts
-2. Bounded retries with timeout budgets and variable jitter between retries
-3. Limits on number of concurrent connections and requests to upstream services
-4. Active (periodic) health checks on each member of the load balancing pool
-5. Fine-grained circuit breakers (passive health checks) -- applied per
- instance in the load balancing pool
+
+1. Bounded retries with timeout budgets and variable jitter between retries
+
+1. Limits on number of concurrent connections and requests to upstream services
+
+1. Active (periodic) health checks on each member of the load balancing pool
+
+1. Fine-grained circuit breakers (passive health checks) -- applied per
+instance in the load balancing pool
These features can be dynamically configured at runtime through
[Istio's traffic management rules](./rules-configuration.html).
The jitter between retries minimizes the impact of retries on an overloaded
upstream service, while timeout budgets ensure that the calling service
-gets a response (success/failure) within a predictable timeframe.
+gets a response (success/failure) within a predictable time frame.
A combination of active and passive health checks (4 and 5 above)
minimizes the chances of accessing an unhealthy instance in the load
@@ -37,7 +39,7 @@ mesh, minimizing the request failures and impact on latency.
Together, these features enable the service mesh to tolerate failing nodes
and prevent localized failures from cascading instability to other nodes.
-## Fine tuning
+## Fine tuning
Istio's traffic management rules allow
operators to set global defaults for failure recovery per
@@ -46,13 +48,12 @@ service/version. However, consumers of a service can also override
and
[retry]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#HTTPRetry)
defaults by providing request-level overrides through special HTTP headers.
-With the Envoy proxy implementation, the headers are "x-envoy-upstream-rq-timeout-ms" and
-"x-envoy-max-retries", respectively.
-
+With the Envoy proxy implementation, the headers are `x-envoy-upstream-rq-timeout-ms` and
+`x-envoy-max-retries`, respectively.
## FAQ
-_1. Do applications still handle failures when running in Istio?_
+Q: *Do applications still handle failures when running in Istio?*
Yes. Istio improves the reliability and availability of services in the
mesh. However, **applications need to handle the failure (errors)
@@ -61,15 +62,15 @@ a load balancing pool have failed, Envoy will return HTTP 503. It is the
responsibility of the application to implement any fallback logic that is
needed to handle the HTTP 503 error code from an upstream service.
-_2. Will Envoy's failure recovery features break applications that already
-use fault tolerance libraries (e.g., [Hystrix](https://github.com/Netflix/Hystrix))?_
+Q: *Will Envoy's failure recovery features break applications that already
+use fault tolerance libraries (e.g. [Hystrix](https://github.com/Netflix/Hystrix))?*
No. Envoy is completely transparent to the application. A failure response
returned by Envoy would not be distinguishable from a failure response
returned by the upstream service to which the call was made.
-_3. How will failures be handled when using application-level libraries and
-Envoy at the same time?_
+Q: *How will failures be handled when using application-level libraries and
+Envoy at the same time?*
Given two failure recovery policies for the same destination service (e.g.,
two timeouts -- one set in Envoy and another in application's library), **the
diff --git a/_docs/concepts/traffic-management/index.md b/_docs/concepts/traffic-management/index.md
index 4940f53f0ac21..db6114be6502e 100644
--- a/_docs/concepts/traffic-management/index.md
+++ b/_docs/concepts/traffic-management/index.md
@@ -1,11 +1,9 @@
---
title: Traffic Management
-overview: Describes the various Istio features focused on traffic routing and control.
+description: Describes the various Istio features focused on traffic routing and control.
-order: 20
+weight: 20
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/concepts/traffic-management/load-balancing.md b/_docs/concepts/traffic-management/load-balancing.md
index c7525614fca23..ead3ffdb37591 100644
--- a/_docs/concepts/traffic-management/load-balancing.md
+++ b/_docs/concepts/traffic-management/load-balancing.md
@@ -1,11 +1,9 @@
---
title: Discovery & Load Balancing
-overview: Describes how traffic is load balanced across instances of a service in the mesh.
-
-order: 25
+description: Describes how traffic is load balanced across instances of a service in the mesh.
+
+weight: 25
-layout: docs
-type: markdown
toc: false
---
@@ -22,14 +20,12 @@ applications.
**Service Discovery:** Pilot consumes information from the service
registry and provides a platform-agnostic service discovery
-interface. Envoy instances in the mesh perform service discovery and
+interface. Envoy instances in the mesh perform service discovery and
dynamically update their load balancing pools accordingly.
-{% include figure.html width='80%' ratio='74.79%'
- img='./img/pilot/LoadBalancing.svg'
- alt='Discovery and Load Balancing'
- title='Discovery and Load Balancing'
- caption='Discovery and Load Balancing'
+{% include image.html width="80%" ratio="74.79%"
+ link="./img/pilot/LoadBalancing.svg"
+ caption="Discovery and Load Balancing"
%}
As illustrated in the figure above, services in the mesh access each other
@@ -40,7 +36,6 @@ the load balancing pool. While Envoy supports several
Istio currently allows three load balancing modes:
round robin, random, and weighted least request.
-
In addition to load balancing, Envoy periodically checks the health of each
instance in the pool. Envoy follows a circuit breaker style pattern to
classify instances as unhealthy or healthy based on their failure rates for
diff --git a/_docs/concepts/traffic-management/overview.md b/_docs/concepts/traffic-management/overview.md
index e2002fd2b724e..8497c2867fc21 100644
--- a/_docs/concepts/traffic-management/overview.md
+++ b/_docs/concepts/traffic-management/overview.md
@@ -1,13 +1,13 @@
---
title: Overview
-overview: Provides a conceptual overview of traffic management in Istio and the features it enables.
-
-order: 0
+description: Provides a conceptual overview of traffic management in Istio and the features it enables.
+
+weight: 1
-layout: docs
-type: markdown
---
+{% include home.html %}
+
This page provides an overview of how traffic management works
in Istio, including the benefits of its traffic management
principles. It assumes that you've already read [What Is Istio?]({{home}}/docs/concepts/what-is-istio/overview.html)
@@ -43,11 +43,9 @@ of traffic for a particular service to go to a canary version irrespective
of the size of the canary deployment, or send traffic to a particular version
depending on the content of the request.
-{% include figure.html width='85%' ratio='69.52%'
- img='./img/pilot/TrafficManagementOverview.svg'
- alt='Traffic Management with Istio'
- title='Traffic Management with Istio'
- caption='Traffic Management with Istio'
+{% include image.html width="85%" ratio="69.52%"
+ link="./img/pilot/TrafficManagementOverview.svg"
+ caption="Traffic Management with Istio"
%}
Decoupling traffic flow from infrastructure scaling like this allows Istio
diff --git a/_docs/concepts/traffic-management/pilot.md b/_docs/concepts/traffic-management/pilot.md
index a2e2366908043..13c65c745f712 100644
--- a/_docs/concepts/traffic-management/pilot.md
+++ b/_docs/concepts/traffic-management/pilot.md
@@ -1,23 +1,21 @@
---
title: Pilot
-overview: Introduces Pilot, the component responsible for managing a distributed deployment of Envoy proxies in the service mesh.
-
-order: 10
+description: Introduces Pilot, the component responsible for managing a distributed deployment of Envoy proxies in the service mesh.
+
+weight: 10
-layout: docs
-type: markdown
toc: false
+redirect_from: /docs/concepts/traffic-management/manager.html
---
{% include home.html %}
Pilot is responsible for the lifecycle of Envoy instances deployed
across the Istio service mesh.
-{% include figure.html width='60%' ratio='72.17%'
- img='./img/pilot/PilotAdapters.svg'
+{% include image.html width="60%" ratio="72.17%"
+ link="./img/pilot/PilotAdapters.svg"
alt="Pilot's overall architecture."
- title='Pilot Architecture'
- caption='Pilot Architecture'
+ caption="Pilot Architecture"
%}
As illustrated in the figure above, Pilot maintains a canonical
@@ -36,6 +34,6 @@ and [routing tables](https://www.envoyproxy.io/docs/envoy/latest/configuration/h
These APIs decouple Envoy from platform-specific nuances, simplifying the
design and increasing portability across platforms.
-Operators can specify high-level traffic management rules through
+Operators can specify high-level traffic management rules through
[Pilot's Rules API]({{home}}/docs/reference/config/istio.routing.v1alpha1.html). These rules are translated into low-level
configurations and distributed to Envoy instances via the discovery API.
diff --git a/_docs/concepts/traffic-management/request-routing.md b/_docs/concepts/traffic-management/request-routing.md
index 7c318c44a0c96..01f12851dbcfd 100644
--- a/_docs/concepts/traffic-management/request-routing.md
+++ b/_docs/concepts/traffic-management/request-routing.md
@@ -1,12 +1,11 @@
---
title: Request Routing
-overview: Describes how requests are routed between services in an Istio service mesh.
-
-order: 20
+description: Describes how requests are routed between services in an Istio service mesh.
+
+weight: 20
-layout: docs
-type: markdown
---
+{% include home.html %}
This page describes how requests are routed between services in an Istio service mesh.
@@ -20,7 +19,6 @@ etc.). Platform-specific adapters are responsible for populating the
internal model representation with various fields from the metadata found
in the platform.
-
Istio introduces the concept of a service version, which is a finer-grained
way to subdivide service instances by versions (`v1`, `v2`) or environment
(`staging`, `prod`). These variants are not necessarily different API
@@ -32,11 +30,10 @@ additional control over traffic between services.
## Communication between services
-{% include figure.html width='60%' ratio='100.42%'
- img='./img/pilot/ServiceModel_Versions.svg'
- alt='Showing how service versions are handled.'
- title='Service Versions'
- caption='Service Versions'
+{% include image.html width="60%" ratio="100.42%"
+ link="./img/pilot/ServiceModel_Versions.svg"
+ alt="Showing how service versions are handled."
+ caption="Service Versions"
%}
As illustrated in the figure above, clients of a service have no knowledge
@@ -73,10 +70,9 @@ via the sidecar Envoy, operators can add failure recovery features such as
timeouts, retries, circuit breakers, etc., and obtain detailed metrics on
the connections to these services.
-{% include figure.html width='60%' ratio='28.88%'
- img='./img/pilot/ServiceModel_RequestFlow.svg'
- alt='Ingress and Egress through Envoy.'
- title='Request Flow'
- caption='Request Flow'
+{% include image.html width="60%" ratio="28.88%"
+ link="./img/pilot/ServiceModel_RequestFlow.svg"
+ alt="Ingress and Egress through Envoy."
+ caption="Request Flow"
%}
diff --git a/_docs/concepts/traffic-management/rules-configuration.md b/_docs/concepts/traffic-management/rules-configuration.md
index 86892827eeb34..4dc57624fd621 100644
--- a/_docs/concepts/traffic-management/rules-configuration.md
+++ b/_docs/concepts/traffic-management/rules-configuration.md
@@ -1,11 +1,9 @@
---
title: Rules Configuration
-overview: Provides a high-level overview of the domain-specific language used by Istio to configure traffic management rules in the service mesh.
+description: Provides a high-level overview of the domain-specific language used by Istio to configure traffic management rules in the service mesh.
-order: 50
+weight: 50
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -37,7 +35,7 @@ spec:
The destination is the name of the service to which the traffic is being
routed. The route *labels* identify the specific service instances that will
-recieve traffic. For example, in a Kubernetes deployment of Istio, the route
+receive traffic. For example, in a Kubernetes deployment of Istio, the route
*label* "version: v1" indicates that only pods containing the label "version: v1"
will receive traffic.
@@ -76,7 +74,7 @@ domain name (FQDN). It is used by Istio Pilot for matching rules to services.
Normally, the FQDN of the service is composed from three components: *name*,
*namespace*, and *domain*:
-```
+```plain
FQDN = name + "." + namespace + "." + domain
```
@@ -409,7 +407,8 @@ spec:
match:
request:
headers:
- Foo: bar
+ Foo:
+ exact: bar
route:
- labels:
version: v2
diff --git a/_docs/concepts/what-is-istio/goals.md b/_docs/concepts/what-is-istio/goals.md
index 8172c5c32e0c5..8d055ce6f2633 100644
--- a/_docs/concepts/what-is-istio/goals.md
+++ b/_docs/concepts/what-is-istio/goals.md
@@ -1,38 +1,36 @@
---
title: Design Goals
-overview: Describes the core principles that Istio's design adheres to.
-
-order: 20
+description: Describes the core principles that Istio's design adheres to.
+
+weight: 20
-layout: docs
-type: markdown
---
This page outlines the core principles that guide Istio's design.
-Istio’s architecture is informed by a few key design goals that are essential to making the system capable of dealing with services at scale and with high
+Istio’s architecture is informed by a few key design goals that are essential to making the system capable of dealing with services at scale and with high
performance.
- **Maximize Transparency**.
-To adopt Istio, an operator or developer should be required to do the minimum amount of work possible to get real value from the system. To this end, Istio
-can automatically inject itself into all the network paths between services. Istio uses sidecar proxies to capture traffic, and where possible, automatically
-program the networking layer to route traffic through those proxies without any changes to the deployed application code. In Kubernetes, the proxies are
-injected into pods and traffic is captured by programming iptables rules. Once the sidecar proxies are injected and traffic routing is programmed, Istio is
-able to mediate all traffic. This principle also applies to performance. When applying Istio to a deployment, operators should see a minimal increase in
-resource costs for the
+To adopt Istio, an operator or developer should be required to do the minimum amount of work possible to get real value from the system. To this end, Istio
+can automatically inject itself into all the network paths between services. Istio uses sidecar proxies to capture traffic, and where possible, automatically
+program the networking layer to route traffic through those proxies without any changes to the deployed application code. In Kubernetes, the proxies are
+injected into pods and traffic is captured by programming iptables rules. Once the sidecar proxies are injected and traffic routing is programmed, Istio is
+able to mediate all traffic. This principle also applies to performance. When applying Istio to a deployment, operators should see a minimal increase in
+resource costs for the
functionality being provided. Components and APIs must all be designed with performance and scale in mind.
- **Incrementality**.
-As operators and developers become more dependent on the functionality that Istio provides, the system must grow with their needs. While we expect to
-continue adding new features ourselves, we expect the greatest need will be the ability to extend the policy system, to integrate with other sources of policy and control and to propagate signals about mesh behavior to other systems for analysis. The policy runtime supports a standard extension mechanism for plugging in other services. In addition, it allows for the extension of its vocabulary to allow policies to be enforced based on new signals that the mesh produces.
+As operators and developers become more dependent on the functionality that Istio provides, the system must grow with their needs. While we expect to
+continue adding new features ourselves, we expect the greatest need will be the ability to extend the policy system, to integrate with other sources of policy and control and to propagate signals about mesh behavior to other systems for analysis. The policy runtime supports a standard extension mechanism for plugging in other services. In addition, it allows for the extension of its vocabulary to allow policies to be enforced based on new signals that the mesh produces.
- **Portability**.
-The ecosystem in which Istio will be used varies along many dimensions. Istio must run on any cloud or on-prem environment with minimal effort. The task of
-porting Istio-based services to new environments should be trivial, and it should be possible to operate a single service deployed into multiple
+The ecosystem in which Istio will be used varies along many dimensions. Istio must run on any cloud or on-prem environment with minimal effort. The task of
+porting Istio-based services to new environments should be trivial, and it should be possible to operate a single service deployed into multiple
environments (on multiple clouds for redundancy for example) using Istio.
- **Policy Uniformity**.
-The application of policy to API calls between services provides a great deal of control over mesh behavior, but it can be equally important to apply
-policies to resources which are not necessarily expressed at the API level. For example, applying quota to the amount of CPU consumed by an ML training task
-is more useful than applying quota to the call which initiated the work. To this end, the policy system is maintained as a distinct service with its own API
+The application of policy to API calls between services provides a great deal of control over mesh behavior, but it can be equally important to apply
+policies to resources which are not necessarily expressed at the API level. For example, applying quota to the amount of CPU consumed by an ML training task
+is more useful than applying quota to the call which initiated the work. To this end, the policy system is maintained as a distinct service with its own API
rather than being baked into the proxy/sidecar, allowing services to directly integrate with it as needed.
diff --git a/_docs/concepts/what-is-istio/img/overview/arch.svg b/_docs/concepts/what-is-istio/img/overview/arch.svg
index e885cf8898531..87b0f52e20f4b 100644
--- a/_docs/concepts/what-is-istio/img/overview/arch.svg
+++ b/_docs/concepts/what-is-istio/img/overview/arch.svg
@@ -1,4 +1 @@
-<?xml version="1.0" standalone="yes"?>
-
-<svg version="1.1" viewBox="0.0 0.0 672.0341207349081 360.56955380577426" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink"><clipPath id="p.0"><path d="m0 0l672.0341 0l0 360.56955l-672.0341 0l0 -360.56955z" clip-rule="nonzero"></path></clipPath><g clip-path="url(#p.0)"><path fill="#000000" fill-opacity="0.0" d="m0 0l672.0341 0l0 360.56955l-672.0341 0z" fill-rule="evenodd"></path><path fill="#bfbfbf" d="m309.00073 156.55511l0 0c16.31372 0 29.538635 13.224915 29.538635 29.53865l0 122.24553l0 0c0 7.834137 -3.112091 15.347412 -8.651672 20.886993c-5.5395813 5.5395813 -13.052826 8.651672 -20.886963 8.651672l-118.15106 0c-16.313736 0 -29.53865 -13.224915 -29.53865 -29.538666l0 -122.24553c0 -16.313736 13.224915 -29.53865 29.53865 -29.53865z" fill-rule="evenodd"></path><path fill="#ffffff" d="m304.7566 163.35324l0 0c11.277863 0 20.42038 9.142517 20.42038 20.420364l0 109.45851c0 5.415802 -2.1514282 10.609802 -5.9809875 14.439362c-3.8295593 3.8295593 -9.02356 5.9809875 -14.439392 5.9809875l-81.67897 0c-11.277847 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -109.45851l0 0c0 -11.277847 9.142502 -20.420364 20.42035 -20.420364z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m304.7566 163.35324l0 0c11.277863 0 20.42038 9.142517 20.42038 20.420364l0 109.45851c0 5.415802 -2.1514282 10.609802 -5.9809875 14.439362c-3.8295593 3.8295593 -9.02356 5.9809875 -14.439392 5.9809875l-81.67897 0c-11.277847 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -109.45851l0 0c0 -11.277847 9.142502 -20.420364 20.42035 -20.420364z" fill-rule="evenodd"></path><path fill="#ffffff" d="m286.13574 174.59386l0 0c11.277863 0 20.42035 9.142502 20.42035 20.42035l0 104.76561c0 5.415802 -2.1514282 10.609802 -5.9809875 14.439362c-3.8295593 3.8295593 -9.023529 5.9809875 -14.439362 5.9809875l-81.67897 0c-11.277847 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -104.76561c0 -11.277847 9.142502 -20.42035 20.42035 -20.42035z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m286.13574 174.59386l0 0c11.277863 0 20.42035 9.142502 20.42035 20.42035l0 104.76561c0 5.415802 -2.1514282 10.609802 -5.9809875 14.439362c-3.8295593 3.8295593 -9.023529 5.9809875 -14.439362 5.9809875l-81.67897 0c-11.277847 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -104.76561c0 -11.277847 9.142502 -20.42035 20.42035 -20.42035z" fill-rule="evenodd"></path><path fill="#ffffff" d="m270.02924 185.81349l0 0c11.277832 0 20.42035 9.142502 20.42035 20.42035l0 97.58449c0 5.415802 -2.1514282 10.609802 -5.9809875 14.439362c-3.8295593 3.8295593 -9.02356 5.9809875 -14.439362 5.9809875l-81.678986 0c-11.277847 0 -20.42035 -9.142487 -20.42035 -20.42035l0 -97.58449c0 -11.277847 9.142502 -20.42035 20.42035 -20.42035z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m270.02924 185.81349l0 0c11.277832 0 20.42035 9.142502 20.42035 20.42035l0 97.58449c0 5.415802 -2.1514282 10.609802 -5.9809875 14.439362c-3.8295593 3.8295593 -9.02356 5.9809875 -14.439362 5.9809875l-81.678986 0c-11.277847 0 -20.42035 -9.142487 -20.42035 -20.42035l0 -97.58449c0 -11.277847 9.142502 -20.42035 20.42035 -20.42035z" fill-rule="evenodd"></path><path fill="#d9ead3" d="m179.92 283.37875l88.157486 0l0 27.527557l-88.157486 0z" fill-rule="evenodd"></path><path fill="#000000" d="m213.98036 300.08313q0 -0.421875 -0.34375 -0.625q-0.328125 -0.21875 -1.125 -0.390625q-0.78125 -0.171875 -1.3125 -0.421875q-1.15625 -0.5625 -1.15625 -1.609375q0 -0.890625 0.75 -1.484375q0.75 -0.609375 1.90625 -0.609375q1.234375 0 1.984375 0.609375q0.765625 0.609375 0.765625 1.578125l-1.546875 0q0 -0.4375 -0.328125 -0.734375q-0.328125 -0.296875 -0.875 -0.296875q-0.515625 0 -0.84375 0.234375q-0.3125 0.234375 -0.3125 0.625q0 0.359375 0.296875 0.5625q0.3125 0.1875 1.21875 0.390625q0.90625 0.203125 1.421875 0.484375q0.515625 0.265625 0.765625 0.65625q0.25 0.390625 0.25 0.9375q0 0.9375 -0.765625 1.515625q-0.765625 0.5625 -2.015625 0.5625q-0.84375 0 -1.5 -0.296875q-0.65625 -0.3125 -1.03125 -0.84375q-0.375 -0.53125 -0.375 -1.15625l1.5 0q0.03125 0.546875 0.40625 0.84375q0.390625 0.296875 1.015625 0.296875q0.609375 0 0.921875 -0.21875q0.328125 -0.234375 0.328125 -0.609375zm5.456955 -0.09375l1.453125 -4.921875l1.59375 0l-2.390625 6.875l-1.328125 0l-2.40625 -6.875l1.59375 0l1.484375 4.921875zm6.9831085 0.84375q0.578125 0 0.953125 -0.328125q0.390625 -0.34375 0.421875 -0.828125l1.453125 0q-0.03125 0.640625 -0.40625 1.203125q-0.375 0.546875 -1.015625 0.875q-0.640625 0.3125 -1.390625 0.3125q-1.4375 0 -2.28125 -0.921875q-0.84375 -0.9375 -0.84375 -2.59375l0 -0.15625q0 -1.5625 0.828125 -2.5q0.84375 -0.953125 2.296875 -0.953125q1.21875 0 1.984375 0.71875q0.78125 0.71875 0.828125 1.875l-1.453125 0q-0.03125 -0.59375 -0.40625 -0.96875q-0.375 -0.375 -0.96875 -0.375q-0.75 0 -1.15625 0.546875q-0.40625 0.53125 -0.40625 1.640625l0 0.25q0 1.109375 0.390625 1.65625q0.40625 0.546875 1.171875 0.546875zm9.47644 -1.046875l-3.578125 0l-0.75 2.15625l-1.671875 0l3.5 -9.25l1.4375 0l3.5 9.25l-1.671875 0l-0.765625 -2.15625zm-3.125 -1.296875l2.671875 0l-1.328125 -3.828125l-1.34375 3.828125z" fill-rule="nonzero"></path><path fill="#cfe2f3" d="m180.70866 216.26115l86.58269 0l0 28.409454l-86.58269 0z" fill-rule="evenodd"></path><path fill="#000000" d="m212.53494 231.14088l-3.796875 0l0 2.84375l4.4375 0l0 1.28125l-6.046875 0l0 -9.25l6.0 0l0 1.296875l-4.390625 0l0 2.5625l3.796875 0l0 1.265625zm3.4111176 -2.75l0.046875 0.796875q0.765625 -0.921875 2.0 -0.921875q2.140625 0 2.1875 2.46875l0 4.53125l-1.546875 0l0 -4.453125q0 -0.65625 -0.28125 -0.96875q-0.28125 -0.3125 -0.921875 -0.3125q-0.9375 0 -1.390625 0.84375l0 4.890625l-1.546875 0l0 -6.875l1.453125 0zm8.412476 4.921875l1.453125 -4.921875l1.59375 0l-2.390625 6.875l-1.328125 0l-2.40625 -6.875l1.59375 0l1.484375 4.921875zm3.8737335 -1.546875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm8.728806 1.15625l1.40625 -4.671875l1.640625 0l-2.734375 7.921875q-0.625 1.734375 -2.125 1.734375q-0.34375 0 -0.75 -0.125l0 -1.1875l0.296875 0.015625q0.578125 0 0.875 -0.21875q0.296875 -0.203125 0.46875 -0.703125l0.21875 -0.59375l-2.40625 -6.84375l1.65625 0l1.453125 4.671875z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m224.0 244.67061l0 38.708664" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m224.0 248.09769l0 31.854492" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m224.0 248.09769l1.124588 1.124588l-1.124588 -3.0897675l-1.124588 3.0897675z" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m224.0 279.95218l-1.124588 -1.1245728l1.124588 3.0897522l1.124588 -3.0897522z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m169.02539 184.79134l48.0 0l0 23.527557l-48.0 0z" fill-rule="evenodd"></path><path fill="#000000" d="m177.02539 200.59134l0 -9.3125l3.515625 0q0.921875 0 1.40625 0.09375q0.6875 0.109375 1.15625 0.4375q0.46875 0.3125 0.75 0.890625q0.28125 0.578125 0.28125 1.28125q0 1.1875 -0.765625 2.015625q-0.75 0.8125 -2.71875 0.8125l-2.390625 0l0 3.78125l-1.234375 0zm1.234375 -4.875l2.40625 0q1.1875 0 1.6875 -0.4375q0.515625 -0.453125 0.515625 -1.265625q0 -0.578125 -0.296875 -0.984375q-0.296875 -0.421875 -0.78125 -0.5625q-0.3125 -0.078125 -1.15625 -0.078125l-2.375 0l0 3.328125zm7.0928802 1.5q0 -1.875 1.03125 -2.765625q0.875 -0.75 2.125 -0.75q1.390625 0 2.265625 0.90625q0.890625 0.90625 0.890625 2.515625q0 1.296875 -0.390625 2.046875q-0.390625 0.75 -1.140625 1.171875q-0.75 0.40625 -1.625 0.40625q-1.421875 0 -2.296875 -0.90625q-0.859375 -0.90625 -0.859375 -2.625zm1.171875 0q0 1.296875 0.5625 1.953125q0.5625 0.640625 1.421875 0.640625q0.84375 0 1.40625 -0.640625q0.578125 -0.65625 0.578125 -1.984375q0 -1.25 -0.578125 -1.890625q-0.5625 -0.65625 -1.40625 -0.65625q-0.859375 0 -1.421875 0.640625q-0.5625 0.640625 -0.5625 1.9375zm11.037476 3.375l0 -0.84375q-0.640625 1.0 -1.890625 1.0q-0.796875 0 -1.484375 -0.4375q-0.671875 -0.453125 -1.046875 -1.25q-0.375 -0.796875 -0.375 -1.828125q0 -1.015625 0.34375 -1.828125q0.34375 -0.828125 1.015625 -1.265625q0.671875 -0.4375 1.5 -0.4375q0.609375 0 1.078125 0.265625q0.484375 0.25 0.78125 0.65625l0 -3.34375l1.140625 0l0 9.3125l-1.0625 0zm-3.609375 -3.359375q0 1.296875 0.53125 1.9375q0.546875 0.640625 1.296875 0.640625q0.75 0 1.265625 -0.609375q0.53125 -0.625 0.53125 -1.875q0 -1.390625 -0.53125 -2.03125q-0.53125 -0.65625 -1.3125 -0.65625q-0.765625 0 -1.28125 0.625q-0.5 0.625 -0.5 1.96875z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m23.82677 232.32414l156.8819 -1.8582611" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m23.82677 232.32414l153.45506 -1.8176575" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m177.28181 230.50647l-1.1111908 1.1378326l3.076233 -1.1611023l-3.1028595 -1.0879211z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m179.39638 334.22455l90.61418 0l0 23.527557l-90.61418 0z" fill-rule="evenodd"></path><path fill="#000000" d="m192.162 347.64954q0 -0.609375 -0.4375 -0.9375q-0.421875 -0.34375 -1.546875 -0.671875q-1.109375 -0.34375 -1.765625 -0.75q-1.265625 -0.796875 -1.265625 -2.078125q0 -1.109375 0.90625 -1.828125q0.921875 -0.734375 2.375 -0.734375q0.96875 0 1.71875 0.359375q0.75 0.359375 1.1875 1.015625q0.4375 0.65625 0.4375 1.453125l-1.609375 0q0 -0.71875 -0.453125 -1.125q-0.453125 -0.421875 -1.296875 -0.421875q-0.78125 0 -1.21875 0.34375q-0.4375 0.328125 -0.4375 0.9375q0 0.515625 0.46875 0.859375q0.46875 0.328125 1.546875 0.65625q1.078125 0.3125 1.734375 0.71875q0.65625 0.40625 0.953125 0.9375q0.3125 0.53125 0.3125 1.25q0 1.15625 -0.890625 1.84375q-0.875 0.671875 -2.390625 0.671875q-1.015625 0 -1.859375 -0.359375q-0.828125 -0.375 -1.296875 -1.03125q-0.46875 -0.65625 -0.46875 -1.53125l1.609375 0q0 0.796875 0.515625 1.234375q0.515625 0.421875 1.5 0.421875q0.828125 0 1.25 -0.34375q0.421875 -0.34375 0.421875 -0.890625zm6.0906067 2.5q-1.46875 0 -2.375 -0.921875q-0.90625 -0.921875 -0.90625 -2.453125l0 -0.203125q0 -1.015625 0.390625 -1.828125q0.40625 -0.8125 1.109375 -1.265625q0.71875 -0.453125 1.609375 -0.453125q1.40625 0 2.15625 0.90625q0.765625 0.890625 0.765625 2.53125l0 0.609375l-4.484375 0q0.078125 0.859375 0.578125 1.359375q0.5 0.484375 1.25 0.484375q1.0625 0 1.71875 -0.859375l0.84375 0.796875q-0.421875 0.625 -1.109375 0.96875q-0.6875 0.328125 -1.546875 0.328125zm-0.1875 -5.875q-0.625 0 -1.015625 0.4375q-0.390625 0.4375 -0.5 1.234375l2.9375 0l0 -0.109375q-0.046875 -0.78125 -0.421875 -1.171875q-0.359375 -0.390625 -1.0 -0.390625zm7.9177856 0.296875q-0.3125 -0.0625 -0.625 -0.0625q-1.0625 0 -1.4375 0.8125l0 4.703125l-1.546875 0l0 -6.875l1.484375 0l0.03125 0.78125q0.5625 -0.90625 1.546875 -0.90625q0.328125 0 0.546875 0.09375l0 1.453125zm3.513794 3.5l1.453125 -4.921875l1.59375 0l-2.390625 6.875l-1.328125 0l-2.40625 -6.875l1.59375 0l1.484375 4.921875zm5.8112335 1.953125l-1.546875 0l0 -6.875l1.546875 0l0 6.875zm-1.640625 -8.65625q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm6.2161255 7.546875q0.578125 0 0.953125 -0.328125q0.390625 -0.34375 0.421875 -0.828125l1.453125 0q-0.03125 0.640625 -0.40625 1.203125q-0.375 0.546875 -1.015625 0.875q-0.640625 0.3125 -1.390625 0.3125q-1.4375 0 -2.28125 -0.921875q-0.84375 -0.9375 -0.84375 -2.59375l0 -0.15625q0 -1.5625 0.828125 -2.5q0.84375 -0.953125 2.296875 -0.953125q1.21875 0 1.984375 0.71875q0.78125 0.71875 0.828125 1.875l-1.453125 0q-0.03125 -0.59375 -0.40625 -0.96875q-0.375 -0.375 -0.96875 -0.375q-0.75 0 -1.15625 0.546875q-0.40625 0.53125 -0.40625 1.640625l0 0.25q0 1.109375 0.390625 1.65625q0.40625 0.546875 1.171875 0.546875zm7.1795654 1.234375q-1.46875 0 -2.375 -0.921875q-0.90625 -0.921875 -0.90625 -2.453125l0 -0.203125q0 -1.015625 0.390625 -1.828125q0.40625 -0.8125 1.109375 -1.265625q0.71875 -0.453125 1.609375 -0.453125q1.40625 0 2.15625 0.90625q0.765625 0.890625 0.765625 2.53125l0 0.609375l-4.484375 0q0.078125 0.859375 0.578125 1.359375q0.5 0.484375 1.25 0.484375q1.0625 0 1.71875 -0.859375l0.84375 0.796875q-0.421875 0.625 -1.109375 0.96875q-0.6875 0.328125 -1.546875 0.328125zm-0.1875 -5.875q-0.625 0 -1.015625 0.4375q-0.390625 0.4375 -0.5 1.234375l2.9375 0l0 -0.109375q-0.046875 -0.78125 -0.421875 -1.171875q-0.359375 -0.390625 -1.0 -0.390625zm12.955551 3.59375l-3.578125 0l-0.75 2.15625l-1.671875 0l3.5 -9.25l1.4375 0l3.5 9.25l-1.671875 0l-0.765625 -2.15625zm-3.125 -1.296875l2.671875 0l-1.328125 -3.828125l-1.34375 3.828125z" fill-rule="nonzero"></path><path fill="#bfbfbf" d="m633.41016 154.06693l0 0c16.313782 0 29.538635 13.224915 29.538635 29.53865l0 124.73372l0 0c0 7.834137 -3.1120605 15.347412 -8.651672 20.886993c-5.539551 5.5395813 -13.052795 8.651672 -20.886963 8.651672l-118.15106 0c-16.31372 0 -29.538635 -13.224915 -29.538635 -29.538666l0 -124.73372c0 -16.313736 13.224915 -29.53865 29.538635 -29.53865z" fill-rule="evenodd"></path><path fill="#ffffff" d="m602.62537 162.33916l0 0c11.277832 0 20.42035 9.142502 20.42035 20.420364l0 110.46637c0 5.415802 -2.1514282 10.609802 -5.980957 14.439362c-3.8295898 3.8295593 -9.02356 5.9809875 -14.439392 5.9809875l-81.678955 0c-11.277863 0 -20.42038 -9.142487 -20.42038 -20.42035l0 -110.46637l0 0c0 -11.277863 9.142517 -20.420364 20.42038 -20.420364z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m602.62537 162.33916l0 0c11.277832 0 20.42035 9.142502 20.42035 20.420364l0 110.46637c0 5.415802 -2.1514282 10.609802 -5.980957 14.439362c-3.8295898 3.8295593 -9.02356 5.9809875 -14.439392 5.9809875l-81.678955 0c-11.277863 0 -20.42038 -9.142487 -20.42038 -20.42035l0 -110.46637l0 0c0 -11.277863 9.142517 -20.420364 20.42038 -20.420364z" fill-rule="evenodd"></path><path fill="#ffffff" d="m619.7996 173.5798l0 0c11.277832 0 20.42035 9.142502 20.42035 20.42035l0 105.77347c0 5.415802 -2.1514282 10.609802 -5.980957 14.439362c-3.8295898 3.8295593 -9.02356 5.9809875 -14.439392 5.9809875l-81.678955 0c-11.277893 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -105.77347c0 -11.277847 9.142456 -20.42035 20.42035 -20.42035z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m619.7996 173.5798l0 0c11.277832 0 20.42035 9.142502 20.42035 20.42035l0 105.77347c0 5.415802 -2.1514282 10.609802 -5.980957 14.439362c-3.8295898 3.8295593 -9.02356 5.9809875 -14.439392 5.9809875l-81.678955 0c-11.277893 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -105.77347c0 -11.277847 9.142456 -20.42035 20.42035 -20.42035z" fill-rule="evenodd"></path><path fill="#ffffff" d="m634.80994 185.6449l0 0c11.277832 0 20.42035 9.142502 20.42035 20.420364l0 95.064804c0 5.415802 -2.1514282 10.609802 -5.981018 14.439362c-3.8295288 3.8295593 -9.02356 5.9809875 -14.439331 5.9809875l-81.679016 0c-11.277832 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -95.064804c0 -11.277863 9.142517 -20.420364 20.42035 -20.420364z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m634.80994 185.6449l0 0c11.277832 0 20.42035 9.142502 20.42035 20.420364l0 95.064804c0 5.415802 -2.1514282 10.609802 -5.981018 14.439362c-3.8295288 3.8295593 -9.02356 5.9809875 -14.439331 5.9809875l-81.679016 0c-11.277832 0 -20.42035 -9.142517 -20.42035 -20.42035l0 -95.064804c0 -11.277863 9.142517 -20.420364 20.42035 -20.420364z" fill-rule="evenodd"></path><path fill="#d9ead3" d="m552.27014 283.37924l88.15747 0l0 27.527557l-88.15747 0z" fill-rule="evenodd"></path><path fill="#000000" d="m586.5615 300.08365q0 -0.421875 -0.34375 -0.625q-0.328125 -0.21875 -1.125 -0.390625q-0.78125 -0.171875 -1.3125 -0.421875q-1.15625 -0.5625 -1.15625 -1.609375q0 -0.890625 0.75 -1.484375q0.75 -0.609375 1.90625 -0.609375q1.234375 0 1.984375 0.609375q0.765625 0.609375 0.765625 1.578125l-1.546875 0q0 -0.4375 -0.328125 -0.734375q-0.328125 -0.296875 -0.875 -0.296875q-0.515625 0 -0.84375 0.234375q-0.3125 0.234375 -0.3125 0.625q0 0.359375 0.296875 0.5625q0.3125 0.1875 1.21875 0.390625q0.90625 0.203125 1.421875 0.484375q0.515625 0.265625 0.765625 0.65625q0.25 0.390625 0.25 0.9375q0 0.9375 -0.765625 1.515625q-0.765625 0.5625 -2.015625 0.5625q-0.84375 0 -1.5 -0.296875q-0.65625 -0.3125 -1.03125 -0.84375q-0.375 -0.53125 -0.375 -1.15625l1.5 0q0.03125 0.546875 0.40625 0.84375q0.390625 0.296875 1.015625 0.296875q0.609375 0 0.921875 -0.21875q0.328125 -0.234375 0.328125 -0.609375zm5.45697 -0.09375l1.453125 -4.921875l1.59375 0l-2.390625 6.875l-1.328125 0l-2.40625 -6.875l1.59375 0l1.484375 4.921875zm6.9830933 0.84375q0.578125 0 0.953125 -0.328125q0.390625 -0.34375 0.421875 -0.828125l1.453125 0q-0.03125 0.640625 -0.40625 1.203125q-0.375 0.546875 -1.015625 0.875q-0.640625 0.3125 -1.390625 0.3125q-1.4375 0 -2.28125 -0.921875q-0.84375 -0.9375 -0.84375 -2.59375l0 -0.15625q0 -1.5625 0.828125 -2.5q0.84375 -0.953125 2.296875 -0.953125q1.21875 0 1.984375 0.71875q0.78125 0.71875 0.828125 1.875l-1.453125 0q-0.03125 -0.59375 -0.40625 -0.96875q-0.375 -0.375 -0.96875 -0.375q-0.75 0 -1.15625 0.546875q-0.40625 0.53125 -0.40625 1.640625l0 0.25q0 1.109375 0.390625 1.65625q0.40625 0.546875 1.171875 0.546875zm4.3045654 1.109375l0 -9.25l3.171875 0q1.5625 0 2.375 0.640625q0.828125 0.625 0.828125 1.875q0 0.625 -0.34375 1.140625q-0.34375 0.5 -1.0 0.78125q0.75 0.203125 1.15625 0.765625q0.40625 0.5625 0.40625 1.34375q0 1.3125 -0.84375 2.015625q-0.828125 0.6875 -2.375 0.6875l-3.375 0zm1.609375 -4.171875l0 2.890625l1.78125 0q0.75 0 1.171875 -0.375q0.4375 -0.375 0.4375 -1.046875q0 -1.4375 -1.46875 -1.46875l-1.921875 0zm0 -1.171875l1.578125 0q0.75 0 1.171875 -0.34375q0.421875 -0.34375 0.421875 -0.96875q0 -0.6875 -0.390625 -0.984375q-0.390625 -0.3125 -1.21875 -0.3125l-1.5625 0l0 2.609375z" fill-rule="nonzero"></path><path fill="#cfe2f3" d="m552.08844 216.25995l86.58264 0l0 28.409454l-86.58264 0z" fill-rule="evenodd"></path><path fill="#000000" d="m583.91473 231.13968l-3.796875 0l0 2.84375l4.4375 0l0 1.28125l-6.046875 0l0 -9.25l6.0 0l0 1.296875l-4.390625 0l0 2.5625l3.796875 0l0 1.265625zm3.4110718 -2.75l0.046875 0.796875q0.765625 -0.921875 2.0 -0.921875q2.140625 0 2.1875 2.46875l0 4.53125l-1.546875 0l0 -4.453125q0 -0.65625 -0.28125 -0.96875q-0.28125 -0.3125 -0.921875 -0.3125q-0.9375 0 -1.390625 0.84375l0 4.890625l-1.546875 0l0 -6.875l1.453125 0zm8.412476 4.921875l1.453125 -4.921875l1.59375 0l-2.390625 6.875l-1.328125 0l-2.40625 -6.875l1.59375 0l1.484375 4.921875zm3.8737793 -1.546875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm8.72876 1.15625l1.40625 -4.671875l1.640625 0l-2.734375 7.921875q-0.625 1.734375 -2.125 1.734375q-0.34375 0 -0.75 -0.125l0 -1.1875l0.296875 0.015625q0.578125 0 0.875 -0.21875q0.296875 -0.203125 0.46875 -0.703125l0.21875 -0.59375l-2.40625 -6.84375l1.65625 0l1.453125 4.671875z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m595.37976 244.6694l0.5984497 36.22046" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m595.43634 248.09601l0.4852295 29.367249" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m595.4364 248.09601l1.1430054 1.1058502l-1.1754761 -3.070755l-1.0734253 3.1079102z" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m595.9216 277.46326l-1.1430054 -1.1058655l1.1754761 3.0707703l1.0733643 -3.1079102z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m269.40778 230.46376l280.56696 -0.03149414" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m269.40778 230.46376l277.13983 -0.031097412" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m546.5476 230.43266l-1.1244507 1.1247101l3.0896606 -1.124939l-3.0899048 -1.1242371z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m548.9624 334.22556l90.01575 0l0 23.527557l-90.01575 0z" fill-rule="evenodd"></path><path fill="#000000" d="m561.728 347.65054q0 -0.609375 -0.4375 -0.9375q-0.421875 -0.34375 -1.546875 -0.671875q-1.109375 -0.34375 -1.765625 -0.75q-1.265625 -0.796875 -1.265625 -2.078125q0 -1.109375 0.90625 -1.828125q0.921875 -0.734375 2.375 -0.734375q0.96875 0 1.71875 0.359375q0.75 0.359375 1.1875 1.015625q0.4375 0.65625 0.4375 1.453125l-1.609375 0q0 -0.71875 -0.453125 -1.125q-0.453125 -0.421875 -1.296875 -0.421875q-0.78125 0 -1.21875 0.34375q-0.4375 0.328125 -0.4375 0.9375q0 0.515625 0.46875 0.859375q0.46875 0.328125 1.546875 0.65625q1.078125 0.3125 1.734375 0.71875q0.65625 0.40625 0.953125 0.9375q0.3125 0.53125 0.3125 1.25q0 1.15625 -0.890625 1.84375q-0.875 0.671875 -2.390625 0.671875q-1.015625 0 -1.859375 -0.359375q-0.828125 -0.375 -1.296875 -1.03125q-0.46875 -0.65625 -0.46875 -1.53125l1.609375 0q0 0.796875 0.515625 1.234375q0.515625 0.421875 1.5 0.421875q0.828125 0 1.25 -0.34375q0.421875 -0.34375 0.421875 -0.890625zm6.090637 2.5q-1.46875 0 -2.375 -0.921875q-0.90625 -0.921875 -0.90625 -2.453125l0 -0.203125q0 -1.015625 0.390625 -1.828125q0.40625 -0.8125 1.109375 -1.265625q0.71875 -0.453125 1.609375 -0.453125q1.40625 0 2.15625 0.90625q0.765625 0.890625 0.765625 2.53125l0 0.609375l-4.484375 0q0.078125 0.859375 0.578125 1.359375q0.5 0.484375 1.25 0.484375q1.0625 0 1.71875 -0.859375l0.84375 0.796875q-0.421875 0.625 -1.109375 0.96875q-0.6875 0.328125 -1.546875 0.328125zm-0.1875 -5.875q-0.625 0 -1.015625 0.4375q-0.390625 0.4375 -0.5 1.234375l2.9375 0l0 -0.109375q-0.046875 -0.78125 -0.421875 -1.171875q-0.359375 -0.390625 -1.0 -0.390625zm7.9177856 0.296875q-0.3125 -0.0625 -0.625 -0.0625q-1.0625 0 -1.4375 0.8125l0 4.703125l-1.546875 0l0 -6.875l1.484375 0l0.03125 0.78125q0.5625 -0.90625 1.546875 -0.90625q0.328125 0 0.546875 0.09375l0 1.453125zm3.513794 3.5l1.453125 -4.921875l1.59375 0l-2.390625 6.875l-1.328125 0l-2.40625 -6.875l1.59375 0l1.484375 4.921875zm5.8112183 1.953125l-1.546875 0l0 -6.875l1.546875 0l0 6.875zm-1.640625 -8.65625q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm6.2161255 7.546875q0.578125 0 0.953125 -0.328125q0.390625 -0.34375 0.421875 -0.828125l1.453125 0q-0.03125 0.640625 -0.40625 1.203125q-0.375 0.546875 -1.015625 0.875q-0.640625 0.3125 -1.390625 0.3125q-1.4375 0 -2.28125 -0.921875q-0.84375 -0.9375 -0.84375 -2.59375l0 -0.15625q0 -1.5625 0.828125 -2.5q0.84375 -0.953125 2.296875 -0.953125q1.21875 0 1.984375 0.71875q0.78125 0.71875 0.828125 1.875l-1.453125 0q-0.03125 -0.59375 -0.40625 -0.96875q-0.375 -0.375 -0.96875 -0.375q-0.75 0 -1.15625 0.546875q-0.40625 0.53125 -0.40625 1.640625l0 0.25q0 1.109375 0.390625 1.65625q0.40625 0.546875 1.171875 0.546875zm7.1795654 1.234375q-1.46875 0 -2.375 -0.921875q-0.90625 -0.921875 -0.90625 -2.453125l0 -0.203125q0 -1.015625 0.390625 -1.828125q0.40625 -0.8125 1.109375 -1.265625q0.71875 -0.453125 1.609375 -0.453125q1.40625 0 2.15625 0.90625q0.765625 0.890625 0.765625 2.53125l0 0.609375l-4.484375 0q0.078125 0.859375 0.578125 1.359375q0.5 0.484375 1.25 0.484375q1.0625 0 1.71875 -0.859375l0.84375 0.796875q-0.421875 0.625 -1.109375 0.96875q-0.6875 0.328125 -1.546875 0.328125zm-0.1875 -5.875q-0.625 0 -1.015625 0.4375q-0.390625 0.4375 -0.5 1.234375l2.9375 0l0 -0.109375q-0.046875 -0.78125 -0.421875 -1.171875q-0.359375 -0.390625 -1.0 -0.390625zm7.7836914 5.75l0 -9.25l3.171875 0q1.5625 0 2.375 0.640625q0.828125 0.625 0.828125 1.875q0 0.625 -0.34375 1.140625q-0.34375 0.5 -1.0 0.78125q0.75 0.203125 1.15625 0.765625q0.40625 0.5625 0.40625 1.34375q0 1.3125 -0.84375 2.015625q-0.828125 0.6875 -2.375 0.6875l-3.375 0zm1.609375 -4.171875l0 2.890625l1.78125 0q0.75 0 1.171875 -0.375q0.4375 -0.375 0.4375 -1.046875q0 -1.4375 -1.46875 -1.46875l-1.921875 0zm0 -1.171875l1.578125 0q0.75 0 1.171875 -0.34375q0.421875 -0.34375 0.421875 -0.96875q0 -0.6875 -0.390625 -0.984375q-0.390625 -0.3125 -1.21875 -0.3125l-1.5625 0l0 2.609375z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m669.2703 11.057743l251.87402 0l0 58.771656l-251.87402 0z" fill-rule="evenodd"></path><path fill="#000000" d="m679.0047 23.607742l0 3.25l-1.90625 0l0 -9.25l3.609375 0q1.03125 0 1.8125 0.390625q0.796875 0.375 1.21875 1.078125q0.4375 0.703125 0.4375 1.59375q0 1.359375 -0.9375 2.15625q-0.921875 0.78125 -2.5625 0.78125l-1.671875 0zm0 -1.546875l1.703125 0q0.75 0 1.140625 -0.359375q0.40625 -0.359375 0.40625 -1.015625q0 -0.671875 -0.40625 -1.09375q-0.390625 -0.421875 -1.109375 -0.4375l-1.734375 0l0 2.90625zm8.503174 4.796875l-1.84375 0l0 -6.875l1.84375 0l0 6.875zm-1.953125 -8.640625q0 -0.421875 0.28125 -0.6875q0.28125 -0.265625 0.75 -0.265625q0.46875 0 0.75 0.265625q0.28125 0.265625 0.28125 0.6875q0 0.40625 -0.28125 0.6875q-0.28125 0.265625 -0.75 0.265625q-0.46875 0 -0.75 -0.265625q-0.28125 -0.28125 -0.28125 -0.6875zm5.4869385 8.640625l-1.84375 0l0 -9.75l1.84375 0l0 9.75zm1.3150024 -3.5q0 -1.015625 0.390625 -1.8125q0.390625 -0.8125 1.125 -1.25q0.75 -0.4375 1.71875 -0.4375q1.390625 0 2.265625 0.859375q0.890625 0.84375 0.984375 2.3125l0.015625 0.46875q0 1.578125 -0.890625 2.53125q-0.875 0.953125 -2.359375 0.953125q-1.484375 0 -2.375 -0.953125q-0.875 -0.953125 -0.875 -2.59375l0 -0.078125zm1.828125 0.140625q0 0.96875 0.359375 1.484375q0.375 0.515625 1.0625 0.515625q0.671875 0 1.046875 -0.5q0.375 -0.515625 0.375 -1.640625q0 -0.953125 -0.375 -1.484375q-0.375 -0.53125 -1.0625 -0.53125q-0.671875 0 -1.046875 0.53125q-0.359375 0.515625 -0.359375 1.625zm8.192383 -5.203125l0 1.6875l1.171875 0l0 1.359375l-1.171875 0l0 3.421875q0 0.375 0.140625 0.546875q0.140625 0.15625 0.5625 0.15625q0.296875 0 0.53125 -0.03125l0 1.390625q-0.53125 0.15625 -1.109375 0.15625q-1.921875 0 -1.96875 -1.953125l0 -3.6875l-1.0 0l0 -1.359375l1.0 0l0 -1.6875l1.84375 0z" fill-rule="nonzero"></path><path fill="#000000" d="m707.88324 23.373367q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm7.9072266 3.359375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm7.234436 6.859375q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm4.4660645 -6.703125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.07251 2.71875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm2.4787598 5.8125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm9.046875 5.328125q0 1.578125 -0.734375 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.296875 0 -2.0 -0.921875l-0.0625 0.796875l-1.078125 0l0 -9.75l1.171875 0l0 3.640625q0.71875 -0.890625 1.96875 -0.890625q1.25 0 1.953125 0.953125q0.71875 0.9375 0.71875 2.59375l0 0.09375zm-1.171875 -0.125q0 -1.203125 -0.46875 -1.859375q-0.453125 -0.65625 -1.328125 -0.65625q-1.15625 0 -1.671875 1.078125l0 2.96875q0.546875 1.078125 1.6875 1.078125q0.84375 0 1.3125 -0.640625q0.46875 -0.65625 0.46875 -1.96875zm7.07135 2.8125q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.706726 -7.859375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.603821 8.65625q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm9.484314 -3.984375q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm4.0411987 5.9375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm4.07666 2.546875q0 -1.625 0.734375 -2.5625q0.75 -0.953125 2.0 -0.953125q1.21875 0 1.921875 0.828125l0.046875 -0.703125l1.078125 0l0 9.515625l-1.171875 0l0 -3.28125q-0.71875 0.765625 -1.890625 0.765625q-1.25 0 -1.984375 -0.96875q-0.734375 -0.96875 -0.734375 -2.5625l0 -0.078125zm1.171875 0.125q0 1.1875 0.5 1.859375q0.5 0.671875 1.34375 0.671875q1.046875 0 1.59375 -0.9375l0 -3.359375q-0.5625 -0.90625 -1.59375 -0.90625q-0.84375 0 -1.34375 0.6875q-0.5 0.671875 -0.5 1.984375zm10.918945 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm5.956787 0.796875q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm4.4660645 -6.703125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm9.372009 2.71875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.88494873 2.3125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.960571 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.706787 -7.859375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm13.18335 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm5.4318237 5.140625q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.394287 0.671875l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm4.796875 0.125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.357971 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375z" fill-rule="nonzero"></path><path fill="#000000" d="m681.3953 42.857742q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062317 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm13.237976 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm4.0411987 5.9375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm4.1535645 1.828125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.515686 8.6875l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234436 0l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm6.078186 8.8125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm8.994507 6.046875q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.0701904 0.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm10.40741 5.203125q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm3.9139404 -2.671875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm7.8355713 -3.515625l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm6.822693 6.875l0 -5.953125l-1.09375 0l0 -0.921875l1.09375 0l0 -0.703125q0 -1.09375 0.578125 -1.703125q0.59375 -0.609375 1.671875 -0.609375q0.40625 0 0.8125 0.109375l-0.0625 0.953125q-0.296875 -0.046875 -0.640625 -0.046875q-0.5625 0 -0.875 0.328125q-0.3125 0.328125 -0.3125 0.953125l0 0.71875l1.46875 0l0 0.921875l-1.46875 0l0 5.953125l-1.171875 0zm5.3302 0l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.953186 5.203125q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm10.805664 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm6.425537 -5.140625q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm5.4318237 5.8125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.546631 -7.640625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.041321 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.921875 5.1875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm7.8355713 -3.515625l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm10.244568 5.046875q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm7.765564 -6.703125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm2.4475098 5.03125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm15.431946 -0.90625l-4.0 0l0 3.265625l4.640625 0l0 1.0l-5.859375 0l0 -9.25l5.796875 0l0 1.015625l-4.578125 0l0 2.96875l4.0 0l0 1.0zm3.2782593 -2.609375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm8.510193 5.28125l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm3.8776855 -1.90625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.976196 1.640625l1.59375 -5.15625l1.265625 0l-2.765625 7.9375q-0.640625 1.71875 -2.046875 1.71875l-0.21875 -0.03125l-0.4375 -0.078125l0 -0.953125l0.3125 0.03125q0.609375 0 0.9375 -0.25q0.328125 -0.234375 0.546875 -0.875l0.265625 -0.703125l-2.453125 -6.796875l1.28125 0l1.71875 5.15625z" fill-rule="nonzero"></path><path fill="#000000" d="m678.4422 58.857742l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm10.244507 5.046875q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm4.4660645 -6.703125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.994446 8.53125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm8.994507 6.046875q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.0701904 0.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.9035645 1.21875q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375z" fill-rule="nonzero"></path><path fill="#bfbfbf" d="m560.7229 28.471128l0 0c5.3779907 0 9.737732 4.359728 9.737732 9.737726l0 38.949745l0 0c0 2.5826035 -1.02594 5.059433 -2.8521118 6.8856125c-1.8261719 1.8261795 -4.3030396 2.8521118 -6.88562 2.8521118l-336.39856 0c-5.3779907 0 -9.737732 -4.359726 -9.737732 -9.737724l0 -38.949745c0 -5.3779984 4.359741 -9.737726 9.737732 -9.737726z" fill-rule="evenodd"></path><path fill="#ffffff" d="m222.40555 43.36234l0 0c0 -3.6848717 2.9871826 -6.6720505 6.672043 -6.6720505l102.49843 0c1.7695312 0 3.4665833 0.7029457 4.7178345 1.9541969c1.2512817 1.251255 1.9542236 2.9483147 1.9542236 4.7178535l0 26.687397c0 3.6848679 -2.9871826 6.6720505 -6.672058 6.6720505l-102.49843 0l0 0c-3.6848602 0 -6.672043 -2.9871826 -6.672043 -6.6720505z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m222.40555 43.36234l0 0c0 -3.6848717 2.9871826 -6.6720505 6.672043 -6.6720505l102.49843 0c1.7695312 0 3.4665833 0.7029457 4.7178345 1.9541969c1.2512817 1.251255 1.9542236 2.9483147 1.9542236 4.7178535l0 26.687397c0 3.6848679 -2.9871826 6.6720505 -6.672058 6.6720505l-102.49843 0l0 0c-3.6848602 0 -6.672043 -2.9871826 -6.672043 -6.6720505z" fill-rule="evenodd"></path><path fill="#000000" d="m269.20062 58.068535l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm8.409454 4.71875l-1.546875 0l0 -6.875l1.546875 0l0 6.875zm-1.640625 -8.65625q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm5.0442505 8.65625l-1.546875 0l0 -9.75l1.546875 0l0 9.75zm1.4661255 -3.5q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.8749695 0.890625 0.9374695 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.39059448 0.796875 -1.1249695 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm8.26004 -5.171875l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.828125q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.890625l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0z" fill-rule="nonzero"></path><path fill="#434343" d="m257.29535 22.192942l0 0c0 -0.7653866 0.6204834 -1.3858547 1.3858643 -1.3858547l266.48816 0c0.3675537 0 0.72003174 0.14600945 0.97991943 0.40590668c0.2598877 0.25989914 0.40594482 0.61239624 0.40594482 0.97994804l0 5.543251c0 0.7653866 -0.6204834 1.3858547 -1.3858643 1.3858547l-266.48816 0l0 0c-0.76538086 0 -1.3858643 -0.62046814 -1.3858643 -1.3858547z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m334.249 0l155.87402 0l0 23.52756l-155.87402 0z" fill-rule="evenodd"></path><path fill="#000000" d="m367.52164 12.784374q-0.125 1.484375 -1.078125 2.3125q-0.953125 0.828125 -2.53125 0.828125q-1.109375 0 -1.953125 -0.515625q-0.84375 -0.53125 -1.296875 -1.484375q-0.453125 -0.96875 -0.484375 -2.25l0 -0.859375q0 -1.3125 0.46875 -2.3125q0.46875 -1.0 1.328125 -1.53125q0.875 -0.546875 2.0 -0.546875q1.53125 0 2.46875 0.84375q0.9375 0.828125 1.078125 2.34375l-1.59375 0q-0.109375 -1.0 -0.578125 -1.4375q-0.46875 -0.4375 -1.375 -0.4375q-1.046875 0 -1.609375 0.765625q-0.5625 0.765625 -0.5625 2.234375l0 0.828125q0 1.484375 0.53125 2.28125q0.53125 0.78125 1.578125 0.78125q0.9375 0 1.40625 -0.421875q0.484375 -0.421875 0.609375 -1.421875l1.59375 0zm1.2166748 -0.484375q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm7.7600403 -3.515625l0.046875 0.796875q0.765625 -0.921875 2.0 -0.921875q2.140625 0 2.1875 2.46875l0 4.53125l-1.546875 0l0 -4.453125q0 -0.65625 -0.28125 -0.96875q-0.28125 -0.3125 -0.921875 -0.3125q-0.9375 0 -1.390625 0.84375l0 4.890625l-1.546875 0l0 -6.875l1.453125 0zm7.9124756 -1.65625l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.828125q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.890625l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0zm6.10376 3.078125q-0.3125 -0.0625 -0.625 -0.0625q-1.0625 0 -1.4375 0.8125l0 4.703125l-1.546875 0l0 -6.875l1.484375 0l0.03125 0.78125q0.5625 -0.90625 1.546875 -0.90625q0.328125 0 0.546875 0.09375l0 1.453125zm0.79504395 1.953125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm7.9787903 3.359375l-1.546875 0l0 -9.75l1.546875 0l0 9.75zm6.8320312 -3.4375l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm8.409424 4.71875l-1.546875 0l0 -9.75l1.546875 0l0 9.75zm5.8567505 0q-0.09375 -0.203125 -0.171875 -0.640625q-0.734375 0.765625 -1.8125 0.765625q-1.03125 0 -1.6875 -0.578125q-0.640625 -0.59375 -0.640625 -1.46875q0 -1.09375 0.8125 -1.6875q0.8125 -0.59375 2.328125 -0.59375l0.953125 0l0 -0.4375q0 -0.546875 -0.3125 -0.859375q-0.296875 -0.328125 -0.90625 -0.328125q-0.515625 0 -0.859375 0.265625q-0.328125 0.265625 -0.328125 0.671875l-1.546875 0q0 -0.5625 0.375 -1.046875q0.375 -0.5 1.015625 -0.78125q0.640625 -0.28125 1.4375 -0.28125q1.203125 0 1.921875 0.609375q0.71875 0.609375 0.734375 1.703125l0 3.09375q0 0.9375 0.265625 1.484375l0 0.109375l-1.578125 0zm-1.6875 -1.109375q0.453125 0 0.859375 -0.21875q0.40625 -0.234375 0.609375 -0.609375l0 -1.28125l-0.84375 0q-0.84375 0 -1.28125 0.296875q-0.4375 0.296875 -0.4375 0.84375q0 0.4375 0.296875 0.703125q0.296875 0.265625 0.796875 0.265625zm6.226349 -5.765625l0.046875 0.796875q0.765625 -0.921875 2.0 -0.921875q2.140625 0 2.1875 2.46875l0 4.53125l-1.546875 0l0 -4.453125q0 -0.65625 -0.28125 -0.96875q-0.28125 -0.3125 -0.921875 -0.3125q-0.9375 0 -1.390625 0.84375l0 4.890625l-1.546875 0l0 -6.875l1.453125 0zm9.006226 7.0q-1.46875 0 -2.375 -0.921875q-0.90625 -0.921875 -0.90625 -2.453125l0 -0.203125q0 -1.015625 0.390625 -1.828125q0.40625 -0.8125 1.109375 -1.265625q0.71875 -0.453125 1.609375 -0.453125q1.40625 0 2.15625 0.90625q0.765625 0.890625 0.765625 2.53125l0 0.609375l-4.484375 0q0.078125 0.859375 0.578125 1.359375q0.5 0.484375 1.25 0.484375q1.0625 0 1.71875 -0.859375l0.84375 0.796875q-0.421875 0.625 -1.109375 0.96875q-0.6875 0.328125 -1.546875 0.328125zm-0.1875 -5.875q-0.625 0 -1.015625 0.4375q-0.390625 0.4375 -0.5 1.234375l2.9375 0l0 -0.109375q-0.046875 -0.78125 -0.421875 -1.171875q-0.359375 -0.390625 -1.0 -0.390625zm12.955566 3.59375l-3.578125 0l-0.75 2.15625l-1.671875 0l3.5 -9.25l1.4375 0l3.5 9.25l-1.671875 0l-0.765625 -2.15625zm-3.125 -1.296875l2.671875 0l-1.328125 -3.828125l-1.34375 3.828125zm8.432739 0.015625l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm8.612549 4.71875l-1.609375 0l0 -9.25l1.609375 0l0 9.25z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m280.3268 76.72179l0.7558899 43.779526" fill-rule="evenodd"></path><path stroke="#000000" stroke-width="1.3333333333333333" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="5.333333333333333,4.0" d="m280.3268 76.72179l0.6770325 39.210762" fill-rule="evenodd"></path><path fill="#000000" stroke="#000000" stroke-width="1.3333333333333333" stroke-linecap="butt" d="m281.00385 115.93254l-1.525116 -1.4733353l1.570343 4.093193l1.4281006 -4.1449585z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m280.3268 76.72179l60.251953 27.685036" fill-rule="evenodd"></path><path stroke="#000000" stroke-width="1.3333333333333333" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="5.333333333333333,4.0" d="m280.3268 76.72179l56.099854 25.777199" fill-rule="evenodd"></path><path fill="#000000" stroke="#000000" stroke-width="1.3333333333333333" stroke-linecap="butt" d="m336.42667 102.498985l-1.9885254 0.73644257l4.3694763 0.3575592l-3.1174011 -3.08255z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m666.6877 166.93176l251.87402 0l0 88.50394l-251.87402 0z" fill-rule="evenodd"></path><path fill="#000000" d="m680.0783 178.73175l-3.65625 0l0 2.46875l4.28125 0l0 1.53125l-6.1875 0l0 -9.25l6.1875 0l0 1.546875l-4.28125 0l0 2.203125l3.65625 0l0 1.5zm3.4970703 -2.875l0.0625 0.796875q0.734375 -0.921875 1.96875 -0.921875q1.09375 0 1.625 0.640625q0.53125 0.640625 0.546875 1.921875l0 4.4375l-1.828125 0l0 -4.390625q0 -0.59375 -0.265625 -0.84375q-0.25 -0.265625 -0.84375 -0.265625q-0.765625 0 -1.15625 0.65625l0 4.84375l-1.828125 0l0 -6.875l1.71875 0zm8.355164 4.640625l1.265625 -4.640625l1.921875 0l-2.3125 6.875l-1.75 0l-2.328125 -6.875l1.921875 0l1.28125 4.640625zm3.8762817 -1.265625q0 -1.015625 0.390625 -1.8125q0.390625 -0.8125 1.125 -1.25q0.75 -0.4375 1.71875 -0.4375q1.390625 0 2.265625 0.859375q0.890625 0.84375 0.984375 2.3125l0.015625 0.46875q0 1.578125 -0.890625 2.53125q-0.875 0.953125 -2.359375 0.953125q-1.484375 0 -2.375 -0.953125q-0.875 -0.953125 -0.875 -2.59375l0 -0.078125zm1.828125 0.140625q0 0.96875 0.359375 1.484375q0.375 0.515625 1.0625 0.515625q0.671875 0 1.046875 -0.5q0.375 -0.515625 0.375 -1.640625q0 -0.953125 -0.375 -1.484375q-0.375 -0.53125 -1.0625 -0.53125q-0.671875 0 -1.046875 0.53125q-0.359375 0.515625 -0.359375 1.625zm8.551697 0.765625l1.265625 -4.28125l1.96875 0l-2.75 7.9375l-0.15625 0.359375q-0.609375 1.359375 -2.03125 1.359375q-0.40625 0 -0.8125 -0.125l0 -1.390625l0.28125 0q0.515625 0 0.765625 -0.15625q0.265625 -0.15625 0.40625 -0.53125l0.21875 -0.5625l-2.40625 -6.890625l1.984375 0l1.265625 4.28125z" fill-rule="nonzero"></path><path fill="#000000" d="m719.59814 179.37238q0 1.5625 -0.71875 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.25 0 -1.96875 -0.796875l0 3.3125l-1.171875 0l0 -9.515625l1.078125 0l0.046875 0.765625q0.71875 -0.890625 2.0 -0.890625q1.234375 0 1.953125 0.9375q0.71875 0.9375 0.71875 2.59375l0 0.109375zm-1.171875 -0.125q0 -1.171875 -0.5 -1.84375q-0.484375 -0.671875 -1.359375 -0.671875q-1.0625 0 -1.59375 0.953125l0 3.28125q0.53125 0.9375 1.609375 0.9375q0.84375 0 1.34375 -0.671875q0.5 -0.671875 0.5 -1.984375zm6.165039 -2.328125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.88494873 2.3125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.991821 1.765625l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm5.4714355 1.59375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.953186 5.203125q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm9.469727 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm7.453064 1.828125l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm1.640686 -3.5q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.960571 3.359375q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm4.671631 -2.59375q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm15.737976 0q0 1.578125 -0.734375 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.296875 0 -2.0 -0.921875l-0.0625 0.796875l-1.078125 0l0 -9.75l1.171875 0l0 3.640625q0.71875 -0.890625 1.96875 -0.890625q1.25 0 1.953125 0.953125q0.71875 0.9375 0.71875 2.59375l0 0.09375zm-1.171875 -0.125q0 -1.203125 -0.46875 -1.859375q-0.453125 -0.65625 -1.328125 -0.65625q-1.15625 0 -1.671875 1.078125l0 2.96875q0.546875 1.078125 1.6875 1.078125q0.84375 0 1.3125 -0.640625q0.46875 -0.65625 0.46875 -1.96875zm7.07135 3.484375q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.234131 0.890625l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm6.187561 0q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm8.994507 6.046875q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.5076904 0.828125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm6.524414 5.203125l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125z" fill-rule="nonzero"></path><path fill="#000000" d="m675.85956 198.73175l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.34375 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838318 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.60376 8.65625q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.63916 6.03125l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234436 0l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234436 0l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.953125 5.203125q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm9.4151 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838257 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm7.4657593 7.53125l4.375 0l0 1.0l-5.59375 0l0 -9.25l1.21875 0l0 8.25zm10.593567 -2.109375l1.296875 0l0 0.96875l-1.296875 0l0 2.140625l-1.171875 0l0 -2.140625l-4.203125 0l0 -0.703125l4.125 -6.40625l1.25 0l0 6.140625zm-4.046875 0l2.875 0l0 -4.53125l-0.140625 0.265625l-2.734375 4.265625zm6.937195 3.90625l-1.015625 0l3.859375 -10.046875l1.015625 0l-3.859375 10.046875zm6.6644897 -1.796875l4.375 0l0 1.0l-5.59375 0l0 -9.25l1.21875 0l0 8.25zm11.609192 -7.578125l-3.828125 8.578125l-1.234375 0l3.8125 -8.28125l-5.0 0l0 -0.96875l6.25 0l0 0.671875zm8.252319 2.765625q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.88494873 2.3125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.960571 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.706787 -7.859375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm6.524414 5.203125l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm12.525085 -10.078125l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm2.7963257 7.234375l4.375 0l0 1.0l-5.59375 0l0 -9.25l1.21875 0l0 8.25zm8.671692 -3.125q-1.5625 -0.453125 -2.28125 -1.109375q-0.71875 -0.65625 -0.71875 -1.609375q0 -1.09375 0.875 -1.8125q0.875 -0.71875 2.265625 -0.71875q0.953125 0 1.703125 0.375q0.75 0.359375 1.15625 1.015625q0.40625 0.640625 0.40625 1.421875l-1.21875 0q0 -0.84375 -0.546875 -1.3125q-0.53125 -0.484375 -1.5 -0.484375q-0.890625 0 -1.40625 0.390625q-0.5 0.390625 -0.5 1.09375q0 0.578125 0.46875 0.96875q0.484375 0.390625 1.640625 0.71875q1.15625 0.3125 1.796875 0.703125q0.65625 0.390625 0.96875 0.921875q0.3125 0.515625 0.3125 1.21875q0 1.125 -0.875 1.796875q-0.875 0.671875 -2.34375 0.671875q-0.953125 0 -1.78125 -0.359375q-0.8125 -0.375 -1.265625 -1.0q-0.4375 -0.640625 -0.4375 -1.4375l1.21875 0q0 0.828125 0.609375 1.3125q0.625 0.484375 1.65625 0.484375q0.96875 0 1.484375 -0.390625q0.515625 -0.390625 0.515625 -1.0625q0 -0.6875 -0.484375 -1.0625q-0.46875 -0.375 -1.71875 -0.734375z" fill-rule="nonzero"></path><path fill="#000000" d="m676.17206 206.2005l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.60376 8.65625q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.67041 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm2.3068237 -1.0625l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm11.853516 6.875l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm10.478882 6.875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.546692 -7.640625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.921936 5.1875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm7.8355713 -3.515625l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm6.197632 8.71875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm8.712524 -2.671875q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.5076904 0.828125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm6.546936 2.875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.9474487 4.984375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm8.460815 0.15625q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.394287 0.671875l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828186 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm11.872009 5.171875q0 1.578125 -0.734375 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.296875 0 -2.0 -0.921875l-0.0625 0.796875l-1.078125 0l0 -9.75l1.171875 0l0 3.640625q0.71875 -0.890625 1.96875 -0.890625q1.25 0 1.953125 0.953125q0.71875 0.9375 0.71875 2.59375l0 0.09375zm-1.171875 -0.125q0 -1.203125 -0.46875 -1.859375q-0.453125 -0.65625 -1.328125 -0.65625q-1.15625 0 -1.671875 1.078125l0 2.96875q0.546875 1.078125 1.6875 1.078125q0.84375 0 1.3125 -0.640625q0.46875 -0.65625 0.46875 -1.96875zm6.149414 -2.328125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm4.0411987 5.9375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.592346 6.03125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.874756 -2.296875l-0.75 0.78125l0 2.40625l-1.171875 0l0 -9.75l1.171875 0l0 5.890625l0.640625 -0.75l2.140625 -2.265625l1.421875 0l-2.671875 2.875l2.984375 4.0l-1.375 0l-2.390625 -3.1875zm7.677063 3.3125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.67041 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm5.1974487 3.984375q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.8254395 3.671875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm7.5562744 -10.375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.041321 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.34375 1.8125l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm13.416016 7.0q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm4.045471 2.53125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.960571 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.706726 -7.859375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.760071 6.703125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.8254395 3.671875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125z" fill-rule="nonzero"></path><path fill="#000000" d="m677.8908 224.91925q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm4.0411987 5.9375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.95166 -2.5l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.07251 2.71875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm2.4787598 5.8125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm6.078125 8.8125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.357971 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm10.406189 1.828125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm13.237976 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm4.0411987 5.9375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm4.076721 2.546875q0 -1.625 0.734375 -2.5625q0.75 -0.953125 2.0 -0.953125q1.21875 0 1.921875 0.828125l0.046875 -0.703125l1.078125 0l0 9.51564l-1.171875 0l0 -3.2812653q-0.71875 0.765625 -1.890625 0.765625q-1.25 0 -1.984375 -0.96875q-0.734375 -0.96875 -0.734375 -2.5625l0 -0.078125zm1.171875 0.125q0 1.1875 0.5 1.859375q0.5 0.671875 1.34375 0.671875q1.046875 0 1.59375 -0.9375l0 -3.359375q-0.5625 -0.90625 -1.59375 -0.90625q-0.84375 0 -1.34375 0.6875q-0.5 0.671875 -0.5 1.984375zm10.918884 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm5.956787 0.796875q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm4.4660645 -6.703125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm7.6532593 0l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.072571 2.71875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm5.4318237 5.8125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm7.702881 0.0625q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.5076904 0.828125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.3437653 -0.796875 2.1093903q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.3593903l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm6.602539 2.75q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375zm8.260376 0.609375l-1.21875 0l0 -9.25l1.21875 0l0 9.25zm3.249939 -6.875l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm13.778381 6.875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm4.671631 -2.59375q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm6.3447266 -0.125q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm7.9072266 3.359375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828186 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.921936 5.1875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm7.8355713 -3.515625l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm6.197632 8.718765l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.7187653l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.2812653q-0.3125 0.640625 -0.796875 1.03125z" fill-rule="nonzero"></path><path fill="#000000" d="m675.85956 246.73177l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828125 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm12.137695 6.90625l1.328125 -5.25l1.171875 0l-2.0 6.875l-0.953125 0l-1.671875 -5.203125l-1.625 5.203125l-0.953125 0l-2.0 -6.875l1.171875 0l1.359375 5.140625l1.59375 -5.140625l0.953125 0l1.625 5.25zm3.625 -1.875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.038696 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.1193237 2.625l-0.75 0.78125l0 2.40625l-1.171875 0l0 -9.75l1.171875 0l0 5.890625l0.640625 -0.75l2.140625 -2.265625l1.421875 0l-2.671875 2.875l2.984375 4.0l-1.375 0l-2.390625 -3.1875zm8.833313 1.359375q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm12.249939 0.203125l1.328125 -5.25l1.171875 0l-2.0 6.875l-0.953125 0l-1.671875 -5.203125l-1.625 5.203125l-0.953125 0l-2.0 -6.875l1.171875 0l1.359375 5.140625l1.59375 -5.140625l0.953125 0l1.625 5.25zm5.21875 1.625l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828125 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm3.9319458 2.5q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -9.75l1.171875 0l0 3.71875zm11.218506 -3.21875l3.03125 7.546875l3.015625 -7.546875l1.578125 0l0 9.25l-1.21875 0l0 -3.59375l0.125 -3.890625l-3.046875 7.484375l-0.921875 0l-3.03125 -7.46875l0.125 3.875l0 3.59375l-1.21875 0l0 -9.25l1.5625 0zm11.167297 9.25l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.531311 4.328125l1.53125 -2.515625l1.375 0l-2.25 3.40625l2.3125 3.46875l-1.359375 0l-1.578125 -2.578125l-1.59375 2.578125l-1.359375 0l2.3125 -3.46875l-2.25 -3.40625l1.359375 0l1.5 2.515625zm7.1523438 4.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.670471 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm6.0906982 -2.71875l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm2.4475098 5.03125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm12.869446 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm6.822693 6.875l0 -5.953125l-1.09375 0l0 -0.921875l1.09375 0l0 -0.703125q0 -1.09375 0.578125 -1.703125q0.59375 -0.609375 1.671875 -0.609375q0.40625 0 0.8125 0.109375l-0.0625 0.953125q-0.296875 -0.046875 -0.640625 -0.046875q-0.5625 0 -0.875 0.328125q-0.3125 0.328125 -0.3125 0.953125l0 0.71875l1.46875 0l0 0.921875l-1.46875 0l0 5.953125l-1.171875 0zm3.7364502 -3.5q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.038696 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.9474487 4.984375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.0701904 0.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm13.454346 2.671875q0 1.5625 -0.71875 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.25 0 -1.96875 -0.796875l0 3.3125l-1.171875 0l0 -9.515625l1.078125 0l0.046875 0.765625q0.71875 -0.890625 2.0 -0.890625q1.234375 0 1.953125 0.9375q0.71875 0.9375 0.71875 2.59375l0 0.109375zm-1.171875 -0.125q0 -1.171875 -0.5 -1.84375q-0.484375 -0.671875 -1.359375 -0.671875q-1.0625 0 -1.59375 0.953125l0 3.28125q0.53125 0.9375 1.609375 0.9375q0.84375 0 1.34375 -0.671875q0.5 -0.671875 0.5 -1.984375zm2.540039 -0.015625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.007446 3.359375l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234436 0l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.984375 7.859375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.5076904 0.828125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm6.078186 8.8125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.9035645 1.21875q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m344.47507 204.57086l150.11023 0l0 65.35434l-150.11023 0z" fill-rule="evenodd"></path><path fill="#000000" d="m361.64694 226.37086l-1.21875 0l0 -4.265625l-4.65625 0l0 4.265625l-1.21875 0l0 -9.25l1.21875 0l0 3.984375l4.65625 0l0 -3.984375l1.21875 0l0 9.25zm8.782745 -8.234375l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm7.952606 0l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm2.7963867 4.609375l0 3.625l-1.21875 0l0 -9.25l3.40625 0q1.515625 0 2.375 0.78125q0.859375 0.78125 0.859375 2.046875q0 1.34375 -0.84375 2.078125q-0.84375 0.71875 -2.40625 0.71875l-2.171875 0zm0 -0.984375l2.1875 0q0.96875 0 1.484375 -0.453125q0.53125 -0.46875 0.53125 -1.34375q0 -0.828125 -0.53125 -1.3125q-0.515625 -0.5 -1.421875 -0.515625l-2.25 0l0 3.625zm7.2362976 5.40625l-1.015625 0l3.859375 -10.046875l1.015625 0l-3.859375 10.046875zm8.992645 -0.796875l-1.171875 0l0 -7.828125l-2.375 0.875l0 -1.078125l3.359375 -1.25l0.1875 0l0 9.28125zm3.7809143 -0.609375q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375zm7.2108765 0.609375l-1.171875 0l0 -7.828125l-2.375 0.875l0 -1.078125l3.359375 -1.25l0.1875 0l0 9.28125zm3.7028198 1.84375l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm13.243774 -1.84375l-1.21875 0l0 -4.265625l-4.65625 0l0 4.265625l-1.21875 0l0 -9.25l1.21875 0l0 3.984375l4.65625 0l0 -3.984375l1.21875 0l0 9.25zm8.782745 -8.234375l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm7.9526367 0l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm2.7963562 4.609375l0 3.625l-1.21875 0l0 -9.25l3.40625 0q1.515625 0 2.375 0.78125q0.859375 0.78125 0.859375 2.046875q0 1.34375 -0.84375 2.078125q-0.84375 0.71875 -2.40625 0.71875l-2.171875 0zm0 -0.984375l2.1875 0q0.96875 0 1.484375 -0.453125q0.53125 -0.46875 0.53125 -1.34375q0 -0.828125 -0.53125 -1.3125q-0.515625 -0.5 -1.421875 -0.515625l-2.25 0l0 3.625zm7.2362976 5.40625l-1.015625 0l3.859375 -10.046875l1.015625 0l-3.859375 10.046875zm11.19577 -0.796875l-6.0625 0l0 -0.84375l3.203125 -3.5625q0.703125 -0.796875 0.96875 -1.296875q0.28125 -0.515625 0.28125 -1.046875q0 -0.734375 -0.4375 -1.1875q-0.4375 -0.46875 -1.171875 -0.46875q-0.875 0 -1.359375 0.5q-0.484375 0.5 -0.484375 1.390625l-1.171875 0q0 -1.28125 0.8125 -2.0625q0.828125 -0.796875 2.203125 -0.796875q1.296875 0 2.046875 0.6875q0.75 0.671875 0.75 1.796875q0 1.359375 -1.75 3.25l-2.46875 2.6875l4.640625 0l0 0.953125zm1.4996948 1.84375l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125z" fill-rule="nonzero"></path><path fill="#000000" d="m354.08444 238.88649q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm10.149414 -0.375l-2.171875 0l0 3.734375l-1.234375 0l0 -9.25l3.0625 0q1.5625 0 2.40625 0.71875q0.84375 0.703125 0.84375 2.0625q0 0.875 -0.46875 1.515625q-0.46875 0.640625 -1.296875 0.953125l2.171875 3.921875l0 0.078125l-1.3125 0l-2.0 -3.734375zm-2.171875 -1.0l1.875 0q0.90625 0 1.4375 -0.46875q0.53125 -0.46875 0.53125 -1.265625q0 -0.84375 -0.515625 -1.296875q-0.5 -0.46875 -1.46875 -0.46875l-1.859375 0l0 3.5zm8.206451 1.109375l0 3.625l-1.21875 0l0 -9.25l3.40625 0q1.515625 0 2.375 0.78125q0.859375 0.78125 0.859375 2.046875q0 1.34375 -0.84375 2.078125q-0.84375 0.71875 -2.40625 0.71875l-2.171875 0zm0 -0.984375l2.1875 0q0.96875 0 1.484375 -0.453125q0.53125 -0.46875 0.53125 -1.34375q0 -0.828125 -0.53125 -1.3125q-0.515625 -0.5 -1.421875 -0.515625l-2.25 0l0 3.625zm13.986298 1.671875q-0.171875 1.46875 -1.09375 2.265625q-0.90625 0.796875 -2.40625 0.796875q-1.640625 0 -2.640625 -1.171875q-0.984375 -1.171875 -0.984375 -3.140625l0 -0.890625q0 -1.28125 0.453125 -2.265625q0.46875 -0.984375 1.3125 -1.5q0.84375 -0.53125 1.953125 -0.53125q1.484375 0 2.359375 0.828125q0.890625 0.828125 1.046875 2.28125l-1.234375 0q-0.15625 -1.109375 -0.6875 -1.59375q-0.53125 -0.5 -1.484375 -0.5q-1.15625 0 -1.828125 0.859375q-0.65625 0.859375 -0.65625 2.453125l0 0.890625q0 1.515625 0.625 2.40625q0.625 0.875 1.765625 0.875q1.015625 0 1.546875 -0.453125q0.546875 -0.46875 0.71875 -1.609375l1.234375 0zm1.6437378 4.78125l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm12.525055 -10.078125l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm8.374481 5.296875q-0.171875 1.46875 -1.09375 2.265625q-0.90625 0.796875 -2.40625 0.796875q-1.640625 0 -2.640625 -1.171875q-0.984375 -1.171875 -0.984375 -3.140625l0 -0.890625q0 -1.28125 0.453125 -2.265625q0.46875 -0.984375 1.3125 -1.5q0.84375 -0.53125 1.953125 -0.53125q1.484375 0 2.359375 0.828125q0.890625 0.828125 1.046875 2.28125l-1.234375 0q-0.15625 -1.109375 -0.6875 -1.59375q-0.53125 -0.5 -1.484375 -0.5q-1.15625 0 -1.828125 0.859375q-0.65625 0.859375 -0.65625 2.453125l0 0.890625q0 1.515625 0.625 2.40625q0.625 0.875 1.765625 0.875q1.015625 0 1.546875 -0.453125q0.546875 -0.46875 0.71875 -1.609375l1.234375 0zm3.0968933 -0.6875l0 3.625l-1.21875 0l0 -9.25l3.40625 0q1.515625 0 2.375 0.78125q0.859375 0.78125 0.859375 2.046875q0 1.34375 -0.84375 2.078125q-0.84375 0.71875 -2.40625 0.71875l-2.171875 0zm0 -0.984375l2.1875 0q0.96875 0 1.484375 -0.453125q0.53125 -0.46875 0.53125 -1.34375q0 -0.828125 -0.53125 -1.3125q-0.515625 -0.5 -1.421875 -0.515625l-2.25 0l0 3.625zm16.379547 2.984375l1.328125 -5.25l1.171875 0l-2.0 6.875l-0.953125 0l-1.671875 -5.203125l-1.625 5.203125l-0.953125 0l-2.0 -6.875l1.171875 0l1.359375 5.140625l1.59375 -5.140625l0.953125 0l1.625 5.25zm5.21875 1.625l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.8281555 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm3.9319153 2.5q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -9.75l1.171875 0l0 3.71875zm9.156006 2.53125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.038696 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375z" fill-rule="nonzero"></path><path fill="#000000" d="m360.44382 256.74588l1.328125 -5.2500153l1.171875 0l-2.0 6.8750153l-0.953125 0l-1.671875 -5.2031403l-1.625 5.2031403l-0.953125 0l-2.0 -6.8750153l1.171875 0l1.359375 5.1406403l1.59375 -5.1406403l0.953125 0l1.625 5.2500153zm5.21875 1.625l-1.1875 0l0 -6.8750153l1.1875 0l0 6.8750153zm-1.28125 -8.687515q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.8281555 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.2500153q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.2500153l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm3.9319153 2.5q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.5312653l-1.1875 0l0 -4.5468903q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.8906403l-1.171875 0l0 -9.750015l1.171875 0l0 3.71875zm5.8565063 2.53125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0000153 -0.390625 1.7968903q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.5781403l0 -0.078125zm1.1875 0.140625q0 1.1406403 0.515625 1.8437653q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.9687653q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.960571 2.6875153q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.8906403l0 -4.46875l1.171875 0l0 4.4375q0 1.5625153 1.28125 1.5625153q1.34375 0 1.78125 -1.0l0 -5.0000153l1.171875 0l0 6.8750153l-1.109375 0l-0.03125 -0.671875zm4.7067566 -7.8593903l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.2500153q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.2500153l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm12.62204 0.296875l-2.96875 0l0 8.23439l-1.203125 0l0 -8.23439l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm2.7963562 7.2343903l4.375 0l0 1.0l-5.59375 0l0 -9.250015l1.21875 0l0 8.250015zm8.671692 -3.1250153q-1.5625 -0.453125 -2.28125 -1.109375q-0.71875 -0.65625 -0.71875 -1.609375q0 -1.09375 0.875 -1.8125q0.875 -0.71875 2.265625 -0.71875q0.953125 0 1.703125 0.375q0.75 0.359375 1.15625 1.015625q0.40625 0.640625 0.40625 1.421875l-1.21875 0q0 -0.84375 -0.546875 -1.3125q-0.53125 -0.484375 -1.5 -0.484375q-0.890625 0 -1.40625 0.390625q-0.5 0.390625 -0.5 1.09375q0 0.578125 0.46875 0.96875q0.484375 0.390625 1.640625 0.71875q1.15625 0.3125 1.796875 0.703125q0.65625 0.390625 0.96875 0.921875q0.3125 0.515625 0.3125 1.2187653q0 1.125 -0.875 1.796875q-0.875 0.671875 -2.34375 0.671875q-0.953125 0 -1.78125 -0.359375q-0.8125 -0.375 -1.265625 -1.0q-0.4375 -0.640625 -0.4375 -1.4375153l1.21875 0q0 0.82814026 0.609375 1.3125153q0.625 0.484375 1.65625 0.484375q0.96875 0 1.484375 -0.390625q0.515625 -0.390625 0.515625 -1.0625q0 -0.68751526 -0.484375 -1.0625153q-0.46875 -0.375 -1.71875 -0.734375z" fill-rule="nonzero"></path><path fill="#ffffff" d="m351.16406 43.025066l0 0c0 -3.6848679 2.987152 -6.6720467 6.6720276 -6.6720467l77.27008 0c1.7695312 0 3.4666138 0.7029457 4.717865 1.9541969c1.2512512 1.2512512 1.9541931 2.9483147 1.9541931 4.7178497l0 26.687397c0 3.6848755 -2.9871826 6.6720505 -6.672058 6.6720505l-77.27008 0c-3.6848755 0 -6.6720276 -2.987175 -6.6720276 -6.6720505z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m351.16406 43.025066l0 0c0 -3.6848679 2.987152 -6.6720467 6.6720276 -6.6720467l77.27008 0c1.7695312 0 3.4666138 0.7029457 4.717865 1.9541969c1.2512512 1.2512512 1.9541931 2.9483147 1.9541931 4.7178497l0 26.687397c0 3.6848755 -2.9871826 6.6720505 -6.672058 6.6720505l-77.27008 0c-3.6848755 0 -6.6720276 -2.987175 -6.6720276 -6.6720505z" fill-rule="evenodd"></path><path fill="#000000" d="m382.68018 51.918766l2.671875 7.09375l2.65625 -7.09375l2.078125 0l0 9.25l-1.59375 0l0 -3.046875l0.15625 -4.078125l-2.734375 7.125l-1.140625 0l-2.734375 -7.109375l0.171875 4.0625l0 3.046875l-1.609375 0l0 -9.25l2.078125 0zm11.090485 9.25l-1.546875 0l0 -6.875l1.546875 0l0 6.875zm-1.640625 -8.65625q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm5.8567505 4.046875l1.3125 -2.265625l1.71875 0l-2.109375 3.390625l2.171875 3.484375l-1.703125 0l-1.359375 -2.34375l-1.375 2.34375l-1.703125 0l2.171875 -3.484375l-2.109375 -3.390625l1.703125 0l1.28125 2.265625zm7.265625 4.734375q-1.46875 0 -2.375 -0.921875q-0.90625 -0.921875 -0.90625 -2.453125l0 -0.203125q0 -1.015625 0.390625 -1.828125q0.40625 -0.8125 1.109375 -1.265625q0.71875 -0.453125 1.609375 -0.453125q1.40625 0 2.15625 0.90625q0.765625 0.890625 0.765625 2.53125l0 0.609375l-4.484375 0q0.078125 0.859375 0.578125 1.359375q0.5 0.484375 1.25 0.484375q1.0625 0 1.71875 -0.859375l0.84375 0.796875q-0.421875 0.625 -1.109375 0.96875q-0.6875 0.328125 -1.546875 0.328125zm-0.1875 -5.875q-0.625 0 -1.015625 0.4375q-0.390625 0.4375 -0.5 1.234375l2.9375 0l0 -0.109375q-0.046875 -0.78125 -0.421875 -1.171875q-0.359375 -0.390625 -1.0 -0.390625zm7.9177856 0.296875q-0.3125 -0.0625 -0.625 -0.0625q-1.0625 0 -1.4375 0.8125l0 4.703125l-1.546875 0l0 -6.875l1.484375 0l0.03125 0.78125q0.5625 -0.90625 1.546875 -0.90625q0.328125 0 0.546875 0.09375l0 1.453125z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m224.0 216.26115l172.47244 -139.87402" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m224.0 216.26115l169.81067 -137.71533" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m393.81067 78.545815l-0.1651001 1.58181l1.6914368 -2.8196487l-3.1081543 1.0727539z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m595.37976 216.25995l-198.89764 -139.87401" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m595.37976 216.25995l-196.09433 -137.9026" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m399.28543 78.357346l1.5667725 -0.27297974l-3.174286 -0.8574753l1.8804932 2.697258z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m0 205.479l150.11023 0l0 65.35434l-150.11023 0z" fill-rule="evenodd"></path><path fill="#000000" d="m34.89189 227.279l-1.609375 0l0 -4.109375l-4.125 0l0 4.109375l-1.609375 0l0 -9.25l1.609375 0l0 3.859375l4.125 0l0 -3.859375l1.609375 0l0 9.25zm8.812714 -7.953125l-2.890625 0l0 7.953125l-1.59375 0l0 -7.953125l-2.859375 0l0 -1.296875l7.34375 0l0 1.296875zm8.089294 0l-2.890625 0l0 7.953125l-1.59375 0l0 -7.953125l-2.859375 0l0 -1.296875l7.34375 0l0 1.296875zm3.0111694 4.515625l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm7.190689 5.515625l-1.203125 0l3.640625 -10.046875l1.203125 0l-3.640625 10.046875zm8.927628 -0.796875l-1.546875 0l0 -7.421875l-2.265625 0.78125l0 -1.3125l3.609375 -1.328125l0.203125 0l0 9.28125zm4.450165 -1.625q0.4375 0 0.671875 0.25q0.234375 0.234375 0.234375 0.609375q0 0.359375 -0.234375 0.59375q-0.234375 0.234375 -0.671875 0.234375q-0.40625 0 -0.65625 -0.234375q-0.234375 -0.234375 -0.234375 -0.59375q0 -0.375 0.234375 -0.609375q0.234375 -0.25 0.65625 -0.25zm6.8475037 1.625l-1.546875 0l0 -7.421875l-2.265625 0.78125l0 -1.3125l3.609375 -1.328125l0.203125 0l0 9.28125zm3.7157898 2.078125l-0.84375 -0.484375q0.375 -0.578125 0.5 -1.015625q0.140625 -0.421875 0.15625 -0.875l0 -1.1875l1.390625 0l-0.015625 1.109375q0 0.671875 -0.34375 1.34375q-0.328125 0.671875 -0.84375 1.109375zm13.513184 -2.078125l-1.609375 0l0 -4.109375l-4.125 0l0 4.109375l-1.609375 0l0 -9.25l1.609375 0l0 3.859375l4.125 0l0 -3.859375l1.609375 0l0 9.25zm8.812714 -7.953125l-2.890625 0l0 7.953125l-1.59375 0l0 -7.953125l-2.859375 0l0 -1.296875l7.34375 0l0 1.296875zm8.089294 0l-2.890625 0l0 7.953125l-1.59375 0l0 -7.953125l-2.859375 0l0 -1.296875l7.34375 0l0 1.296875zm3.0111694 4.515625l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm7.190689 5.515625l-1.203125 0l3.640625 -10.046875l1.203125 0l-3.640625 10.046875zm10.958878 -0.796875l-6.21875 0l0 -1.0625l3.078125 -3.359375q0.671875 -0.734375 0.953125 -1.234375q0.28125 -0.5 0.28125 -1.0q0 -0.65625 -0.375 -1.0625q-0.359375 -0.40625 -1.0 -0.40625q-0.75 0 -1.15625 0.453125q-0.40625 0.453125 -0.40625 1.25l-1.546875 0q0 -0.84375 0.375 -1.515625q0.390625 -0.6875 1.09375 -1.0625q0.71875 -0.375 1.65625 -0.375q1.34375 0 2.125 0.6875q0.78125 0.671875 0.78125 1.859375q0 0.703125 -0.390625 1.46875q-0.390625 0.75 -1.28125 1.703125l-2.265625 2.421875l4.296875 0l0 1.234375zm1.6845398 2.078125l-0.84375 -0.484375q0.375 -0.578125 0.5 -1.015625q0.140625 -0.421875 0.15625 -0.875l0 -1.1875l1.390625 0l-0.015625 1.109375q0 0.671875 -0.34375 1.34375q-0.328125 0.671875 -0.84375 1.109375z" fill-rule="nonzero"></path><path fill="#000000" d="m32.924774 239.79463q0 -1.59375 0.75 -2.546875q0.765625 -0.96875 2.0 -0.96875q1.171875 0 1.84375 0.828125l0.078125 -0.703125l1.390625 0l0 6.671875q0 1.34375 -0.84375 2.125q-0.84375 0.78125 -2.265625 0.78125q-0.765625 0 -1.484375 -0.3125q-0.71875 -0.3125 -1.09375 -0.828125l0.734375 -0.921875q0.71875 0.84375 1.75 0.84375q0.765625 0 1.203125 -0.421875q0.453125 -0.40625 0.453125 -1.21875l0 -0.453125q-0.65625 0.734375 -1.78125 0.734375q-1.203125 0 -1.96875 -0.953125q-0.765625 -0.96875 -0.765625 -2.65625zm1.546875 0.125q0 1.046875 0.421875 1.640625q0.421875 0.59375 1.171875 0.59375q0.921875 0 1.375 -0.8125l0 -3.015625q-0.4375 -0.78125 -1.375 -0.78125q-0.75 0 -1.171875 0.609375q-0.421875 0.59375 -0.421875 1.765625zm9.821274 -0.203125l-1.78125 0l0 3.5625l-1.609375 0l0 -9.25l3.25 0q1.609375 0 2.46875 0.71875q0.875 0.71875 0.875 2.078125q0 0.9375 -0.453125 1.5625q-0.4375 0.625 -1.25 0.953125l2.078125 3.859375l0 0.078125l-1.71875 0l-1.859375 -3.5625zm-1.78125 -1.28125l1.65625 0q0.8125 0 1.265625 -0.40625q0.453125 -0.421875 0.453125 -1.125q0 -0.75 -0.421875 -1.15625q-0.421875 -0.40625 -1.265625 -0.421875l-1.6875 0l0 3.109375zm8.317062 1.40625l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm13.956314 1.703125q-0.125 1.484375 -1.078125 2.3125q-0.953125 0.828125 -2.53125 0.828125q-1.109375 0 -1.953125 -0.515625q-0.84375 -0.53125 -1.296875 -1.484375q-0.453125 -0.96875 -0.484375 -2.25l0 -0.859375q0 -1.3125 0.46875 -2.3125q0.46875 -1.0 1.328125 -1.53125q0.875 -0.546875 2.0 -0.546875q1.53125 0 2.46875 0.84375q0.9375 0.828125 1.078125 2.34375l-1.59375 0q-0.109375 -1.0 -0.578125 -1.4375q-0.46875 -0.4375 -1.375 -0.4375q-1.046875 0 -1.609375 0.765625q-0.5625 0.765625 -0.5625 2.234375l0 0.828125q0 1.484375 0.53125 2.28125q0.53125 0.78125 1.578125 0.78125q0.9375 0 1.40625 -0.421875q0.484375 -0.421875 0.609375 -1.421875l1.59375 0zm1.7322845 5.09375l-0.84375 -0.484375q0.375 -0.578125 0.5 -1.015625q0.140625 -0.421875 0.15625 -0.875l0 -1.1875l1.390625 0l-0.015625 1.109375q0 0.671875 -0.34375 1.34375q-0.328125 0.671875 -0.84375 1.109375zm12.856934 -10.03125l-2.890625 0l0 7.953125l-1.59375 0l0 -7.953125l-2.859375 0l0 -1.296875l7.34375 0l0 1.296875zm8.448669 4.9375q-0.125 1.484375 -1.078125 2.3125q-0.953125 0.828125 -2.53125 0.828125q-1.109375 0 -1.953125 -0.515625q-0.84375 -0.53125 -1.296875 -1.484375q-0.453125 -0.96875 -0.484375 -2.25l0 -0.859375q0 -1.3125 0.46875 -2.3125q0.46875 -1.0 1.328125 -1.53125q0.875 -0.546875 2.0 -0.546875q1.53125 0 2.46875 0.84375q0.9375 0.828125 1.078125 2.34375l-1.59375 0q-0.109375 -1.0 -0.578125 -1.4375q-0.46875 -0.4375 -1.375 -0.4375q-1.046875 0 -1.609375 0.765625q-0.5625 0.765625 -0.5625 2.234375l0 0.828125q0 1.484375 0.53125 2.28125q0.53125 0.78125 1.578125 0.78125q0.9375 0 1.40625 -0.421875q0.484375 -0.421875 0.609375 -1.421875l1.59375 0zm3.2635345 -0.421875l0 3.4375l-1.609375 0l0 -9.25l3.53125 0q1.5625 0 2.46875 0.8125q0.90625 0.8125 0.90625 2.140625q0 1.359375 -0.890625 2.109375q-0.890625 0.75 -2.5 0.75l-1.90625 0zm0 -1.28125l1.921875 0q0.859375 0 1.3125 -0.40625q0.453125 -0.40625 0.453125 -1.171875q0 -0.75 -0.46875 -1.1875q-0.453125 -0.453125 -1.25 -0.46875l-1.96875 0l0 3.234375zm16.11908 2.59375l1.09375 -4.75l1.5 0l-1.875 6.875l-1.265625 0l-1.46875 -4.71875l-1.453125 4.71875l-1.265625 0l-1.890625 -6.875l1.515625 0l1.109375 4.703125l1.40625 -4.703125l1.15625 0l1.4375 4.75zm5.5143585 2.125l-1.546875 0l0 -6.875l1.546875 0l0 6.875zm-1.640625 -8.65625q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm5.3255005 0.125l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.828125q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.890625l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0zm4.0256195 2.40625q0.75 -0.875 1.90625 -0.875q2.203125 0 2.234375 2.515625l0 4.484375l-1.546875 0l0 -4.4375q0 -0.703125 -0.3125 -1.0q-0.296875 -0.296875 -0.90625 -0.296875q-0.921875 0 -1.375 0.828125l0 4.90625l-1.546875 0l0 -9.75l1.546875 0l0 3.625zm8.905975 2.625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm9.931931 -2.09375q-0.3125 -0.0625 -0.625 -0.0625q-1.0625 0 -1.4375 0.8125l0 4.703125l-1.546875 0l0 -6.875l1.484375 0l0.03125 0.78125q0.5625 -0.90625 1.546875 -0.90625q0.328125 0 0.546875 0.09375l0 1.453125z" fill-rule="nonzero"></path><path fill="#000000" d="m76.70964 257.154l1.09375 -4.7499847l1.5 0l-1.875 6.8749847l-1.265625 0l-1.46875 -4.7187347l-1.453125 4.7187347l-1.265625 0l-1.890625 -6.8749847l1.515625 0l1.109375 4.7031097l1.40625 -4.7031097l1.15625 0l1.4375 4.7499847zm5.5143585 2.125l-1.546875 0l0 -6.8749847l1.546875 0l0 6.8749847zm-1.640625 -8.656235q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm5.3255005 0.125l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.8281097q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.8906097l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0zm4.0256195 2.40625q0.75 -0.875 1.90625 -0.875q2.203125 0 2.234375 2.515625l0 4.4843597l-1.546875 0l0 -4.4374847q0 -0.703125 -0.3125 -1.0q-0.296875 -0.296875 -0.90625 -0.296875q-0.921875 0 -1.375 0.828125l0 4.9062347l-1.546875 0l0 -9.749985l1.546875 0l0 3.625zm5.58696 2.625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.0156097 -0.390625 1.8124847q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.5781097l0 -0.078125zm1.546875 0.140625q0 1.0624847 0.4375 1.6562347q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.7812347q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm10.494431 2.6874847q-0.6875 0.796875 -1.9375 0.796875q-1.109375 0 -1.6875 -0.65625q-0.578125 -0.65625 -0.578125 -1.890625l0 -4.4531097l1.546875 0l0 4.4374847q0 1.3125 1.09375 1.3125q1.109375 0 1.515625 -0.8125l0 -4.9374847l1.53125 0l0 6.8749847l-1.453125 0l-0.03125 -0.671875zm5.171585 -7.8593597l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.8281097q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.8906097l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0zm12.657135 0.578125l-2.890625 0l0 7.9531097l-1.59375 0l0 -7.9531097l-2.859375 0l0 -1.296875l7.34375 0l0 1.296875zm3.0111694 6.6718597l4.1875 0l0 1.28125l-5.796875 0l0 -9.249985l1.609375 0l0 7.9687347zm10.429474 -1.09375q0 -0.609375 -0.4375 -0.93748474q-0.421875 -0.34375 -1.546875 -0.671875q-1.109375 -0.34375 -1.765625 -0.75q-1.265625 -0.796875 -1.265625 -2.078125q0 -1.109375 0.90625 -1.828125q0.921875 -0.734375 2.375 -0.734375q0.96875 0 1.71875 0.359375q0.75 0.359375 1.1875 1.015625q0.4375 0.65625 0.4375 1.453125l-1.609375 0q0 -0.71875 -0.453125 -1.125q-0.453125 -0.421875 -1.296875 -0.421875q-0.78125 0 -1.21875 0.34375q-0.4375 0.328125 -0.4375 0.9375q0 0.515625 0.46875 0.859375q0.46875 0.328125 1.546875 0.65625q1.078125 0.3125 1.734375 0.71875q0.65625 0.40625 0.953125 0.9375q0.3125 0.53123474 0.3125 1.2499847q0 1.15625 -0.890625 1.84375q-0.875 0.671875 -2.390625 0.671875q-1.015625 0 -1.859375 -0.359375q-0.828125 -0.375 -1.296875 -1.03125q-0.46875 -0.65625 -0.46875 -1.53125l1.609375 0q0 0.796875 0.515625 1.234375q0.515625 0.421875 1.5 0.421875q0.828125 0 1.25 -0.34375q0.421875 -0.34375 0.421875 -0.890625z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m157.46906 82.85221l122.519684 0.03149414l0 42.740158l-122.519684 -0.03150177z" fill-rule="evenodd"></path><path fill="#000000" d="m194.55293 101.64612q-0.125 1.4843369 -1.078125 2.3122177q-0.953125 0.82788086 -2.53125 0.8274765q-1.109375 -2.822876E-4 -1.953125 -0.51612854q-0.84375 -0.5314636 -1.296875 -1.4847031q-0.453125 -0.9688721 -0.484375 -2.2501297l0 -0.859375q0 -1.3125 0.46875 -2.312378q0.46875 -0.9998779 1.328125 -1.5309067q0.875 -0.54665375 2.0 -0.54636383q1.53125 3.9672852E-4 2.46875 0.84438324q0.9375 0.82836914 1.078125 2.3440323l-1.59375 -4.119873E-4q-0.109375 -1.0000305 -0.578125 -1.4376526q-0.46875 -0.43761444 -1.375 -0.43785095q-1.046875 -2.670288E-4 -1.609375 0.765213q-0.5625 0.76548004 -0.5625 2.23423l0 0.828125q0 1.484375 0.53125 2.2813873q0.53125 0.7813873 1.578125 0.78165436q0.9375 2.4414062E-4 1.40625 -0.42151642q0.484375 -0.4217453 0.609375 -1.4217148l1.59375 4.119873E-4zm1.2166595 -0.4840622q0 -1.0 0.390625 -1.8124008q0.40625 -0.8124008 1.125 -1.2497101q0.734375 -0.4373169 1.671875 -0.43707275q1.390625 3.5858154E-4 2.25 0.90682983q0.875 0.89084625 0.9375 2.3752365l0.015625 0.35938263q0 1.015625 -0.390625 1.8124008q-0.390625 0.7967758 -1.125 1.2340851q-0.71875 0.4373169 -1.671875 0.43707275q-1.453125 -3.7384033E-4 -2.328125 -0.9693527q-0.875 -0.96897125 -0.875 -2.5783463l0 -0.078125zm1.546875 0.14102173q0 1.0625 0.4375 1.6563568q0.4375 0.59386444 1.21875 0.59407043q0.78125 1.9836426E-4 1.203125 -0.6090698q0.4375 -0.60926056 0.4375 -1.7811356q0 -1.03125 -0.453125 -1.6407394q-0.4375 -0.60948944 -1.203125 -0.6096878q-0.75 -1.9073486E-4 -1.203125 0.5934372q-0.4375 0.5936432 -0.4375 1.7967682zm7.7600555 -3.5136337l0.046875 0.79689026q0.765625 -0.92167664 2.0 -0.92136383q2.140625 5.493164E-4 2.1875 2.4693146l0 4.53125l-1.546875 -3.9672852E-4l0 -4.453125q0 -0.65625 -0.28125 -0.9688263q-0.28125 -0.31256866 -0.921875 -0.3127365q-0.9375 -2.3651123E-4 -1.390625 0.8433914l0 4.890625l-1.546875 -3.9672852E-4l0 -6.875l1.453125 3.7384033E-4zm6.5218506 6.8766785l0 -5.71875l-1.046875 -2.670288E-4l0 -1.15625l1.046875 2.670288E-4l0 -0.625q0 -1.140625 0.640625 -1.7654572q0.640625 -0.6248398 1.78125 -0.62454224q0.40625 9.918213E-5 0.859375 0.12522125l-0.03125 1.2031097q-0.265625 -0.046936035 -0.59375 -0.047027588q-1.109375 -2.822876E-4 -1.109375 1.1247177l0 0.609375l1.390625 3.5858154E-4l0 1.15625l-1.390625 -3.5858154E-4l0 5.71875l-1.546875 -3.9672852E-4zm5.834091 0.0015029907l-1.546875 -4.043579E-4l0 -6.875l1.546875 4.043579E-4l0 6.875zm-1.640625 -8.656677q0 -0.34375 0.21875 -0.57806396q0.234375 -0.24993896 0.640625 -0.24983978q0.421875 1.0681152E-4 0.65625 0.25016785q0.234375 0.23443604 0.234375 0.57818604q0 0.359375 -0.234375 0.59368896q-0.234375 0.21868896 -0.65625 0.21858215q-0.40625 -9.918213E-5 -0.640625 -0.21891022q-0.21875 -0.23443604 -0.21875 -0.59381104zm3.1223755 5.172676q0 -1.59375 0.75 -2.5466766q0.765625 -0.96855164 2.0 -0.96823883q1.171875 3.0517578E-4 1.84375 0.828598l0.078125 -0.7031021l1.390625 3.5858154E-4l0 6.671875q0 1.34375 -0.84375 2.1247787q-0.84375 0.7810364 -2.265625 0.78067017q-0.765625 -1.9836426E-4 -1.484375 -0.31288147q-0.71875 -0.3126831 -1.09375 -0.8284073l0.734375 -0.92168427q0.71875 0.8439331 1.75 0.84420013q0.765625 1.9836426E-4 1.203125 -0.42156982q0.453125 -0.40612793 0.453125 -1.2186279l0 -0.453125q-0.65625 0.73420715 -1.78125 0.73391724q-1.203125 -3.1280518E-4 -1.96875 -0.95363617q-0.765625 -0.96894836 -0.765625 -2.6564484zm1.546875 0.12540436q0 1.046875 0.421875 1.6407318q0.421875 0.5938568 1.171875 0.59404755q0.921875 2.3651123E-4 1.375 -0.8121414l0 -3.015625q-0.4375 -0.78136444 -1.375 -0.7816086q-0.75 -1.9073486E-4 -1.171875 0.60907745q-0.421875 0.5936432 -0.421875 1.7655182zm9.312164 -0.122612q0 -1.59375 0.734375 -2.5466843q0.734375 -0.96855927 1.984375 -0.96823883q1.078125 2.746582E-4 1.765625 0.76607513l0 -3.515625l1.53125 3.9672852E-4l0 9.75l-1.390625 -3.5858154E-4l-0.078125 -0.71876526q-0.6875 0.8435669 -1.84375 0.84326935q-1.203125 -3.0517578E-4 -1.953125 -0.9692459q-0.75 -0.96894836 -0.75 -2.6408234zm1.546875 0.12539673q0 1.0625 0.390625 1.6563568q0.40625 0.5782242 1.15625 0.57842255q0.9375 2.3651123E-4 1.390625 -0.84339905l0 -2.9375q-0.4375 -0.8282318 -1.375 -0.82847595q-0.75 -1.9073486E-4 -1.15625 0.59345245q-0.40625 0.5936432 -0.40625 1.7811432zm10.366852 3.3620453q-0.09375 -0.20314789 -0.171875 -0.6406708q-0.734375 0.76543427 -1.8125 0.7651596q-1.03125 -2.670288E-4 -1.6875 -0.5785599q-0.640625 -0.59391785 -0.640625 -1.4689178q0 -1.09375 0.8125 -1.6872864q0.8125 -0.593544 2.328125 -0.5931549l0.953125 2.4414062E-4l0 -0.4375q0 -0.546875 -0.3125 -0.8594513q-0.296875 -0.3282013 -0.90625 -0.3283615q-0.515625 -1.296997E-4 -0.859375 0.26540375q-0.328125 0.26554108 -0.328125 0.6717911l-1.546875 -3.9672852E-4q0 -0.5625 0.375 -1.0467758q0.375 -0.49990845 1.015625 -0.7809906q0.640625 -0.28108215 1.4375 -0.2808838q1.203125 3.1280518E-4 1.921875 0.6098709q0.71875 0.6095581 0.734375 1.7033157l0 3.09375q0 0.9375 0.265625 1.4844437l0 0.109375l-1.578125 -4.043579E-4zm-1.6875 -1.1098099q0.453125 1.1444092E-4 0.859375 -0.21852875q0.40625 -0.23426819 0.609375 -0.6092224l0 -1.28125l-0.84375 -2.1362305E-4q-0.84375 -2.1362305E-4 -1.28125 0.29654694q-0.4375 0.29676056 -0.4375 0.84363556q0 0.4375 0.296875 0.7032013q0.296875 0.2657013 0.796875 0.265831zm6.726349 -7.420143l0 1.65625l1.21875 3.1280518E-4l0 1.15625l-1.21875 -3.1280518E-4l0 3.828125q0 0.390625 0.15625 0.56253815q0.15625 0.17191315 0.5625 0.17201996q0.265625 6.866455E-5 0.53125 -0.06236267l0 1.203125q-0.515625 0.14048767 -1.015625 0.14035797q-1.765625 -4.5013428E-4 -1.765625 -1.9535751l0 -3.890625l-1.140625 -2.89917E-4l0 -1.15625l1.140625 2.89917E-4l0 -1.65625l1.53125 3.9672852E-4zm6.6037445 8.532944q-0.09375 -0.20314789 -0.171875 -0.6406708q-0.734375 0.7654419 -1.8125 0.7651596q-1.03125 -2.670288E-4 -1.6875 -0.5785599q-0.640625 -0.5939102 -0.640625 -1.4689102q0 -1.09375 0.8125 -1.687294q0.8125 -0.5935364 2.328125 -0.5931473l0.953125 2.4414062E-4l0 -0.4375q0 -0.546875 -0.3125 -0.8594589q-0.296875 -0.3282013 -0.90625 -0.32835388q-0.515625 -1.373291E-4 -0.859375 0.26540375q-0.328125 0.26554108 -0.328125 0.6717911l-1.546875 -3.9672852E-4q0 -0.5625 0.375 -1.0467834q0.375 -0.49990082 1.015625 -0.7809906q0.640625 -0.28108215 1.4375 -0.28087616q1.203125 3.0517578E-4 1.921875 0.6098709q0.71875 0.6095581 0.734375 1.7033081l0 3.09375q0 0.9375 0.265625 1.4844437l0 0.109375l-1.578125 -4.043579E-4zm-1.6875 -1.1098099q0.453125 1.2207031E-4 0.859375 -0.21852875q0.40625 -0.23426819 0.609375 -0.6092148l0 -1.28125l-0.84375 -2.2125244E-4q-0.84375 -2.1362305E-4 -1.28125 0.29654694q-0.4375 0.29676056 -0.4375 0.84363556q0 0.4375 0.296875 0.7032013q0.296875 0.2657013 0.796875 0.265831zm10.045364 -7.4192886l0 1.65625l1.21875 3.1280518E-4l0 1.15625l-1.21875 -3.1280518E-4l0 3.828125q0 0.390625 0.15625 0.56253815q0.15625 0.17191315 0.5625 0.17201996q0.265625 6.866455E-5 0.53125 -0.06236267l0 1.203125q-0.515625 0.14048767 -1.015625 0.1403656q-1.765625 -4.5776367E-4 -1.765625 -1.9535828l0 -3.890625l-1.140625 -2.89917E-4l0 -1.15625l1.140625 2.89917E-4l0 -1.65625l1.53125 3.9672852E-4zm2.2131042 5.0318146q0 -1.0 0.390625 -1.8124008q0.40625 -0.8123932 1.125 -1.2497101q0.734375 -0.43730927 1.671875 -0.43706512q1.390625 3.5858154E-4 2.25 0.9068222q0.875 0.8908539 0.9375 2.3752441l0.015625 0.35938263q0 1.015625 -0.390625 1.8123932q-0.390625 0.7967758 -1.125 1.2340927q-0.71875 0.43730927 -1.671875 0.43706512q-1.453125 -3.7384033E-4 -2.328125 -0.9693451q-0.875 -0.9689789 -0.875 -2.578354l0 -0.078125zm1.546875 0.14102173q0 1.0625 0.4375 1.6563644q0.4375 0.59386444 1.21875 0.5940628q0.78125 2.0599365E-4 1.203125 -0.6090622q0.4375 -0.6092682 0.4375 -1.7811432q0 -1.03125 -0.453125 -1.6407394q-0.4375 -0.60948944 -1.203125 -0.6096802q-0.75 -1.9836426E-4 -1.203125 0.5934372q-0.4375 0.59363556 -0.4375 1.7967606z" fill-rule="nonzero"></path><path fill="#000000" d="m234.83604 116.5471l-3.796875 -9.765625E-4l0 2.84375l4.4375 0.0011444092l0 1.28125l-6.046875 -0.0015563965l0 -9.25l6.0 0.0015411377l0 1.296875l-4.390625 -0.0011291504l0 2.5625l3.796875 9.765625E-4l0 1.265625zm3.4111176 -2.7491226l0.046875 0.79689026q0.765625 -0.92168427 2.0 -0.92136383q2.140625 5.493164E-4 2.1875 2.4693146l0 4.53125l-1.546875 -3.9672852E-4l0 -4.453125q0 -0.65625 -0.28125 -0.9688263q-0.28125 -0.31256866 -0.921875 -0.3127365q-0.9375 -2.4414062E-4 -1.390625 0.8433914l0 4.890625l-1.546875 -3.9672852E-4l0 -6.875l1.453125 3.7384033E-4zm8.412476 4.924034l1.453125 -4.921501l1.59375 4.119873E-4l-2.390625 6.8743896l-1.328125 -3.4332275E-4l-2.40625 -6.875618l1.59375 4.043579E-4l1.484375 4.9222565zm3.8737335 -1.5458755q0 -1.0 0.390625 -1.8124008q0.40625 -0.8123932 1.125 -1.2497101q0.734375 -0.43730927 1.671875 -0.43707275q1.390625 3.5858154E-4 2.25 0.90682983q0.87498474 0.8908539 0.93748474 2.3752441l0.015625 0.359375q0 1.015625 -0.390625 1.8124008q-0.390625 0.7967758 -1.1249847 1.2340851q-0.71875 0.4373169 -1.671875 0.43707275q-1.453125 -3.7384033E-4 -2.328125 -0.9693527q-0.875 -0.96897125 -0.875 -2.5783463l0 -0.078125zm1.546875 0.14102173q0 1.0625 0.4375 1.6563644q0.4375 0.59386444 1.21875 0.5940628q0.78125 1.9836426E-4 1.203125 -0.6090698q0.4375 -0.60926056 0.4375 -1.7811356q0 -1.03125 -0.453125 -1.6407394q-0.4375 -0.60948944 -1.203125 -0.6096878q-0.75 -1.9073486E-4 -1.203125 0.5934448q-0.4375 0.59363556 -0.4375 1.7967606zm8.728806 1.158493l1.40625 -4.671509l1.640625 4.196167E-4l-2.734375 7.921173q-0.625 1.7342148 -2.125 1.7338257q-0.34375 -8.392334E-5 -0.75 -0.12519073l0 -1.1875l0.296875 0.015701294q0.578125 1.449585E-4 0.875 -0.21852875q0.296875 -0.2030487 0.46875 -0.7030029l0.21875 -0.5936966l-2.40625 -6.844368l1.65625 4.272461E-4l1.453125 4.672249zm7.9414673 0.34579468q0 -0.421875 -0.34375 -0.62509155q-0.328125 -0.21883392 -1.125 -0.39091492q-0.78125 -0.17207336 -1.3125 -0.4222107q-1.15625 -0.56279755 -1.15625 -1.6096725q0 -0.890625 0.75 -1.4841843q0.75 -0.60917664 1.90625 -0.6088791q1.234375 3.1280518E-4 1.984375 0.60987854q0.765625 0.60957336 0.765625 1.5783234l-1.546875 -3.9672852E-4q0 -0.4375 -0.328125 -0.7344589q-0.328125 -0.29695892 -0.875 -0.29709625q-0.515625 -1.373291E-4 -0.84375 0.23415375q-0.3125 0.2342987 -0.3125 0.6249237q0 0.359375 0.296875 0.5625763q0.3125 0.1875763 1.21875 0.3909378q0.90625 0.20335388 1.421875 0.4847412q0.515625 0.2657547 0.765625 0.65644073q0.25 0.39069366 0.25 0.93756866q0 0.9375 -0.765625 1.5154266q-0.765625 0.56230164 -2.015625 0.5619812q-0.84375 -2.1362305E-4 -1.5 -0.29725647q-0.65625 -0.31267548 -1.03125 -0.844017q-0.375 -0.5313492 -0.375 -1.1563492l1.5 3.8909912E-4q0.03125 0.5468826 0.40625 0.8438492q0.390625 0.2969818 1.015625 0.29714203q0.609375 1.5258789E-4 0.921875 -0.21851349q0.328125 -0.23429108 0.328125 -0.6092911z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m388.47507 128.34776l106.11023 0.34646606l0 42.519684l-106.11023 -0.34646606z" fill-rule="evenodd"></path><path fill="#000000" d="m403.1658 146.75833l0 3.4375153l-1.609375 -0.0052490234l0 -9.250046l3.53125 0.011520386q1.5625 0.0051116943 2.4687195 0.8205719q0.90625 0.8154602 0.90625 2.1435852q0 1.3593903 -0.890625 2.106491q-0.8905945 0.7470856 -2.4999695 0.74183655l-1.90625 -0.006225586zm0 -1.28125l1.921875 0.0062713623q0.859375 0.0028076172 1.3125 -0.40196228q0.45309448 -0.40478516 0.45309448 -1.1704102q0 -0.75 -0.46871948 -1.1890411q-0.453125 -0.4546051 -1.25 -0.4728241l-1.96875 -0.006439209l0 3.2344055zm6.471924 1.2398834q0 -1.0 0.39059448 -1.8112335q0.40625 -0.81118774 1.125 -1.2463379q0.734375 -0.43510437 1.671875 -0.43203735q1.390625 0.0045318604 2.25 0.9135895q0.8749695 0.89349365 0.9374695 2.3780823l0.015625 0.35942078q0 1.0156403 -0.390625 1.8112335q-0.39059448 0.7956085 -1.1249695 1.2307129q-0.71875 0.4351654 -1.671875 0.4320526q-1.453125 -0.0047454834 -2.328125 -0.97636414q-0.8749695 -0.97161865 -0.8749695 -2.5809937l0 -0.078125zm1.5468445 0.14567566q0 1.0625 0.4375 1.6576843q0.4375 0.5951843 1.21875 0.59773254q0.78125 0.0025482178 1.203125 -0.6054535q0.4375 -0.6079407 0.4375 -1.7798309q0 -1.03125 -0.453125 -1.6421051q-0.4375 -0.6108093 -1.203125 -0.61331177q-0.75 -0.0024414062 -1.203125 0.5898285q-0.4375 0.59233093 -0.4375 1.7954559zm7.97876 3.385437l-1.5468445 -0.005050659l0 -9.750046l1.5468445 0.005050659l0 9.750046zm3.4036255 0.011123657l-1.546875 -0.005050659l0 -6.875046l1.546875 0.005050659l0 6.875046zm-1.640625 -8.661652q0 -0.34375 0.21875 -0.5774231q0.234375 -0.24923706 0.640625 -0.24790955q0.421875 0.001373291 0.65625 0.2521515q0.234375 0.23513794 0.234375 0.57888794q0 0.359375 -0.234375 0.59298706q-0.234375 0.21798706 -0.65625 0.21661377q-0.40625 -0.0013275146 -0.640625 -0.22084045q-0.21875 -0.23509216 -0.21875 -0.59446716zm6.216095 7.5671997q0.578125 0.0018920898 0.953125 -0.3250122q0.390625 -0.34246826 0.421875 -0.8267517l1.4530945 0.0047454834q-0.03125 0.64053345 -0.40621948 1.2018127q-0.375 0.5456543 -1.015625 0.87168884q-0.640625 0.31040955 -1.390625 0.30795288q-1.4375 -0.0046844482 -2.28125 -0.9293213q-0.84375 -0.94026184 -0.84375 -2.596527l0 -0.15625q0 -1.5625 0.828125 -2.4972992q0.84375 -0.9503784 2.296875 -0.94563293q1.21875 0.003967285 1.984375 0.725235q0.7812195 0.7212982 0.8280945 1.8777008l-1.4530945 -0.0047454834q-0.03125 -0.59384155 -0.40625 -0.9700775q-0.375 -0.3762207 -0.96875 -0.37815857q-0.75 -0.002456665 -1.15625 0.5431061q-0.40625 0.5299225 -0.40625 1.6392975l0 0.25q0 1.1093903 0.390625 1.6575317q0.40625 0.5482178 1.171875 0.55070496zm6.554535 -1.0723419l1.40625 -4.6673126l1.6405945 0.005355835l-2.7343445 7.9129944q-0.625 1.7323303 -2.125 1.7274323q-0.34375 -0.0011138916 -0.75 -0.1274414l0 -1.1875153l0.296875 0.016601562q0.578125 0.0018920898 0.875 -0.2158966q0.296875 -0.20214844 0.46875 -0.7015991l0.21875 -0.59303284l-2.40625 -6.851639l1.65625 0.0054016113l1.453125 4.676651zm10.229187 1.1271515q0.578125 0.001876831 0.953125 -0.3250122q0.390625 -0.34248352 0.421875 -0.8267517l1.453125 0.0047454834q-0.03125 0.6405182 -0.40625 1.2017975q-0.375 0.5456543 -1.015625 0.87168884q-0.640625 0.31040955 -1.390625 0.30796814q-1.4375 -0.004699707 -2.28125 -0.92933655q-0.8437195 -0.94026184 -0.8437195 -2.5965118l0 -0.15625q0 -1.5625153 0.8280945 -2.4973145q0.84375 -0.9503784 2.296875 -0.94563293q1.21875 0.003982544 1.984375 0.725235q0.78125 0.7212982 0.828125 1.8777161l-1.453125 -0.0047454834q-0.03125 -0.5938568 -0.40625 -0.9700775q-0.375 -0.37623596 -0.96875 -0.37817383q-0.75 -0.0024414062 -1.15625 0.5431061q-0.40625 0.5299225 -0.40625 1.6393127l0 0.25q0 1.109375 0.390625 1.6575317q0.40625 0.5482025 1.171875 0.55070496zm5.679535 -4.997116q0.75 -0.8725586 1.90625 -0.8687744q2.2030945 0.0071868896 2.2343445 2.522934l0 4.4843903l-1.5468445 -0.005050659l0 -4.4375153q0 -0.703125 -0.3125 -1.0010223q-0.296875 -0.29785156 -0.90625 -0.2998352q-0.921875 -0.0030212402 -1.375 0.8236389l0 4.9062653l-1.546875 -0.005050659l0 -9.750046l1.546875 0.005050659l0 3.6250153zm8.899414 6.2790985q-1.46875 -0.0048065186 -2.375 -0.9296417q-0.9062195 -0.9248352 -0.9062195 -2.4561005l0 -0.203125q0 -1.015625 0.39059448 -1.8268585q0.40625 -0.8111725 1.109375 -1.2620087q0.71875 -0.45077515 1.609375 -0.44786072q1.40625 0.0045776367 2.15625 0.9132843q0.7655945 0.89312744 0.7655945 2.5337677l0 0.609375l-4.4843445 -0.014633179q0.078125 0.8596344 0.578125 1.3612671q0.5 0.4860077 1.25 0.4884491q1.0625 0.003479004 1.71875 -0.85375977l0.84375 0.79963684q-0.421875 0.6236267 -1.109375 0.96513367q-0.6875 0.32588196 -1.546875 0.32307434zm-0.1875 -5.875641q-0.625 -0.0020446777 -1.015625 0.43417358q-0.390625 0.43623352 -0.5 1.2327576l2.9375 0.0095825195l0 -0.109375q-0.046875 -0.7814026 -0.421875 -1.1732483q-0.359375 -0.39179993 -1.0 -0.39389038zm7.136505 4.6639404q0.578125 0.0018920898 0.953125 -0.3250122q0.390625 -0.34246826 0.421875 -0.8267517l1.4530945 0.0047454834q-0.03125 0.64053345 -0.40625 1.2018127q-0.375 0.54563904 -1.0155945 0.87168884q-0.640625 0.31040955 -1.390625 0.30795288q-1.4375 -0.004699707 -2.28125 -0.9293213q-0.84375 -0.94026184 -0.84375 -2.596527l0 -0.15625q0 -1.5625 0.828125 -2.4973145q0.84375 -0.95036316 2.296875 -0.9456177q1.21875 0.003967285 1.9843445 0.7252197q0.78125 0.7213135 0.828125 1.8777161l-1.4530945 -0.0047454834q-0.03125 -0.5938568 -0.40625 -0.9700775q-0.375 -0.3762207 -0.96875 -0.37815857q-0.75 -0.002456665 -1.15625 0.5430908q-0.40625 0.52993774 -0.40625 1.6393127l0 0.25q0 1.1093903 0.390625 1.6575317q0.40625 0.5482025 1.171875 0.55070496zm6.38266 -1.8229218l-0.671875 0.716568l0 2.2343903l-1.546875 -0.005050659l0 -9.750061l1.546875 0.005050659l0 5.6250305l0.46875 -0.6078491l1.9062195 -2.1344147l1.84375 0.0060272217l-2.546875 2.8666992l2.828125 4.009262l-1.78125 -0.0058288574l-2.0468445 -2.9598236zm8.581879 1.1217804q0 -0.421875 -0.34375 -0.62612915q-0.328125 -0.21981812 -1.125 -0.39430237q-0.78125 -0.17442322 -1.3125 -0.42616272q-1.15625 -0.5662689 -1.15625 -1.6131439q0 -0.89064026 0.75 -1.4819489q0.75 -0.60691833 1.90625 -0.6031494q1.234375 0.0040283203 1.984375 0.61586q0.7655945 0.61187744 0.7655945 1.5806274l-1.5468445 -0.005050659q0 -0.4375 -0.328125 -0.7354431q-0.328125 -0.29794312 -0.875 -0.2997284q-0.515625 -0.0016937256 -0.84375 0.23161316q-0.3125 0.23335266 -0.3125 0.62397766q0 0.35939026 0.296875 0.56347656q0.3125 0.18852234 1.21875 0.39460754q0.90625 0.2060852 1.421875 0.48902893q0.5155945 0.26730347 0.7655945 0.65875244q0.25 0.39143372 0.25 0.9383087q0 0.93751526 -0.7655945 1.5131378q-0.765625 0.55999756 -2.015625 0.55592346q-0.84375 -0.0027618408 -1.5 -0.30177307q-0.65625 -0.3146515 -1.03125 -0.8471222q-0.375 -0.5324707 -0.375 -1.157486l1.5 0.0048980713q0.03125 0.5469818 0.40625 0.8450928q0.390625 0.29814148 1.015625 0.30018616q0.609375 0.0019836426 0.921875 -0.21574402q0.328125 -0.23330688 0.328125 -0.6083069zm3.2538147 3.9481506l-0.84375 -0.48713684q0.375 -0.5769043 0.5 -1.0139923q0.140625 -0.42141724 0.15625 -0.87449646l0 -1.1875153l1.3905945 0.004547119l-0.015625 1.1093292q0 0.671875 -0.34375 1.3426361q-0.328125 0.6708069 -0.8437195 1.1066284z" fill-rule="nonzero"></path><path fill="#000000" d="m431.80948 157.75816l0 1.6562653l1.21875 0.003967285l0 1.1562653l-1.21875 -0.003982544l0 3.8281403q0 0.390625 0.15625 0.5630188q0.15625 0.17237854 0.5625 0.17370605q0.265625 8.69751E-4 0.53125 -0.060760498l0 1.203125q-0.515625 0.13894653 -1.015625 0.13731384q-1.765625 -0.0057678223 -1.765625 -1.9588928l0 -3.8906555l-1.1405945 -0.0037231445l0 -1.15625l1.1405945 0.0037231445l0 -1.6562653l1.53125 0.005004883zm5.5256042 8.674332q-1.46875 -0.0047912598 -2.375 -0.92962646q-0.90625 -0.9248352 -0.90625 -2.4561005l0 -0.203125q0 -1.015625 0.390625 -1.8268585q0.40625 -0.8111725 1.109375 -1.2620087q0.71875 -0.45077515 1.609375 -0.44787598q1.4062195 0.0045928955 2.1562195 0.91329956q0.765625 0.89312744 0.765625 2.5337677l0 0.609375l-4.4843445 -0.0146484375q0.078125 0.8596344 0.578125 1.3612671q0.5 0.48602295 1.25 0.48846436q1.0624695 0.0034637451 1.7187195 -0.85375977l0.84375 0.7996216q-0.421875 0.6236267 -1.109375 0.96513367q-0.6874695 0.32588196 -1.5468445 0.32307434zm-0.1875 -5.875641q-0.625 -0.002029419 -1.015625 0.43418884q-0.390625 0.43623352 -0.5 1.2327576l2.9374695 0.0095825195l0 -0.109375q-0.046875 -0.7814026 -0.42184448 -1.1732635q-0.359375 -0.39179993 -1.0 -0.39389038zm5.96463 5.769516l-1.546875 -0.005050659l0 -9.750061l1.546875 0.005050659l0 9.750061zm4.778595 0.14059448q-1.46875 -0.0047912598 -2.375 -0.92962646q-0.90625 -0.92485046 -0.90625 -2.4561005l0 -0.203125q0 -1.0156403 0.390625 -1.8268585q0.40625 -0.81118774 1.109375 -1.2620087q0.71875 -0.4507904 1.609375 -0.44787598q1.40625 0.0045928955 2.1562195 0.91329956q0.765625 0.89312744 0.765625 2.5337524l0 0.609375l-4.4843445 -0.014633179q0.078125 0.8596344 0.578125 1.3612671q0.5 0.4860077 1.25 0.48846436q1.0625 0.0034637451 1.71875 -0.853775l0.8437195 0.79963684q-0.421875 0.6236267 -1.1093445 0.96513367q-0.6875 0.32588196 -1.546875 0.32307434zm-0.1875 -5.875641q-0.625 -0.0020446777 -1.015625 0.43418884q-0.390625 0.43621826 -0.5 1.2327423l2.9375 0.009597778l0 -0.109375q-0.046875 -0.78141785 -0.421875 -1.1732635q-0.359375 -0.39179993 -1.0 -0.39389038zm5.761505 -1.1062012l0.046875 0.71891785q0.734375 -0.84135437 1.9843445 -0.8372803q1.375 0.004486084 1.890625 1.0686798q0.75 -1.0600586 2.109375 -1.0556183q1.125 0.0036773682 1.671875 0.64608765q0.5624695 0.62683105 0.5780945 1.8456421l0 4.5156555l-1.5468445 -0.005050659l0 -4.4687805q0 -0.65625 -0.28125 -0.9540405q-0.28125 -0.3134308 -0.9375 -0.31556702q-0.53125 -0.001739502 -0.875 0.2783966q-0.328125 0.28018188 -0.453125 0.7485199l0 4.7031555l-1.546875 -0.005050659l0 -4.5156555q-0.03125 -1.2188568 -1.2343445 -1.2227783q-0.921875 -0.0030212402 -1.3125 0.7457123l0 4.9844055l-1.546875 -0.005050659l0 -6.875046l1.453125 0.0047454834zm13.175079 7.0430603q-1.46875 -0.0047912598 -2.375 -0.92962646q-0.9062195 -0.92485046 -0.9062195 -2.4561005l0 -0.203125q0 -1.0156403 0.390625 -1.8268585q0.40621948 -0.81118774 1.1093445 -1.2620087q0.71875 -0.4507904 1.609375 -0.44787598q1.40625 0.0045928955 2.15625 0.9132843q0.765625 0.8931427 0.765625 2.5337677l0 0.609375l-4.484375 -0.014633179q0.078125 0.8596344 0.578125 1.3612671q0.5 0.4860077 1.25 0.48846436q1.0625 0.0034637451 1.71875 -0.853775l0.84375 0.79963684q-0.421875 0.6236267 -1.109375 0.96513367q-0.6875 0.32588196 -1.546875 0.32307434zm-0.1875 -5.875641q-0.625 -0.0020446777 -1.015625 0.43418884q-0.390625 0.43621826 -0.5 1.2327423l2.9375 0.009597778l0 -0.109375q-0.046875 -0.78141785 -0.421875 -1.1732635q-0.359375 -0.39179993 -1.0 -0.39389038zm6.24588 -2.7608795l0 1.6562653l1.21875 0.003982544l0 1.15625l-1.21875 -0.003982544l0 3.8281555q0 0.390625 0.15625 0.56300354q0.15625 0.1723938 0.5625 0.17372131q0.265625 8.69751E-4 0.53125 -0.060775757l0 1.2031403q-0.515625 0.13894653 -1.015625 0.13731384q-1.765625 -0.0057678223 -1.765625 -1.9589081l0 -3.8906403l-1.140625 -0.0037231445l0 -1.1562653l1.140625 0.0037231445l0 -1.65625l1.53125 0.004989624zm6.1036987 3.0980835q-0.3125 -0.06352234 -0.6249695 -0.06454468q-1.0625 -0.003479004 -1.4375 0.8078003l0 4.7031555l-1.546875 -0.005050659l0 -6.8750305l1.484375 0.004837036l0.03125 0.7813568q0.5625 -0.90441895 1.546875 -0.90119934q0.32809448 0.0010681152 0.5468445 0.09553528l0 1.4531403zm3.482544 3.261383l1.40625 -4.6673126l1.6405945 0.005355835l-2.7343445 7.9129944q-0.625 1.7323456 -2.125 1.7274475q-0.34375 -0.0011291504 -0.75 -0.12745667l0 -1.1875l0.296875 0.016586304q0.578125 0.0018920898 0.875 -0.2158966q0.296875 -0.20214844 0.46875 -0.70158386l0.21875 -0.5930481l-2.40625 -6.851639l1.65625 0.0054016113l1.453125 4.676651z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m669.2703 82.85302l251.87402 0l0 73.07087l-251.87402 0z" fill-rule="evenodd"></path><path fill="#000000" d="m679.5828 89.403015l2.375 6.703125l2.359375 -6.703125l2.5 0l0 9.25l-1.90625 0l0 -2.53125l0.1875 -4.359375l-2.5 6.890625l-1.296875 0l-2.484375 -6.875l0.1875 4.34375l0 2.53125l-1.90625 0l0 -9.25l2.484375 0zm11.003296 9.25l-1.84375 0l0 -6.875l1.84375 0l0 6.875zm-1.953125 -8.640625q0 -0.421875 0.28125 -0.6875q0.28125 -0.265625 0.75 -0.265625q0.46875 0 0.75 0.265625q0.28125 0.265625 0.28125 0.6875q0 0.40625 -0.28125 0.6875q-0.28125 0.265625 -0.75 0.265625q-0.46875 0 -0.75 -0.265625q-0.28125 -0.28125 -0.28125 -0.6875zm6.1587524 3.828125l1.15625 -2.0625l1.96875 0l-1.953125 3.375l2.03125 3.5l-1.96875 0l-1.21875 -2.15625l-1.21875 2.15625l-1.96875 0l2.03125 -3.5l-1.953125 -3.375l1.96875 0l1.125 2.0625zm7.328064 4.9375q-1.5 0 -2.453125 -0.921875q-0.953125 -0.9375 -0.953125 -2.46875l0 -0.1875q0 -1.03125 0.390625 -1.84375q0.40625 -0.8125 1.140625 -1.25q0.734375 -0.453125 1.671875 -0.453125q1.421875 0 2.21875 0.890625q0.8125 0.890625 0.8125 2.515625l0 0.75l-4.375 0q0.09375 0.671875 0.53125 1.078125q0.453125 0.40625 1.140625 0.40625q1.0625 0 1.65625 -0.765625l0.90625 1.015625q-0.421875 0.578125 -1.125 0.90625q-0.703125 0.328125 -1.5625 0.328125zm-0.203125 -5.640625q-0.546875 0 -0.890625 0.375q-0.328125 0.359375 -0.421875 1.046875l2.546875 0l0 -0.140625q-0.015625 -0.609375 -0.34375 -0.9375q-0.3125 -0.34375 -0.890625 -0.34375zm8.110474 0.375q-0.375 -0.0625 -0.65625 -0.0625q-1.046875 0 -1.359375 0.703125l0 4.5l-1.84375 0l0 -6.875l1.734375 0l0.046875 0.828125q0.5625 -0.953125 1.53125 -0.953125q0.3125 0 0.578125 0.09375l-0.03125 1.765625z" fill-rule="nonzero"></path><path fill="#000000" d="m720.31305 95.29364q0 1.5625 -0.71875 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.25 0 -1.96875 -0.796875l0 3.3125l-1.171875 0l0 -9.515625l1.078125 0l0.046875 0.765625q0.71875 -0.890625 2.0 -0.890625q1.234375 0 1.953125 0.9375q0.71875 0.9375 0.71875 2.59375l0 0.109375zm-1.171875 -0.125q0 -1.171875 -0.5 -1.84375q-0.484375 -0.671875 -1.359375 -0.671875q-1.0625 0 -1.59375 0.953125l0 3.28125q0.53125 0.9375 1.609375 0.9375q0.84375 0 1.34375 -0.671875q0.5 -0.671875 0.5 -1.984375zm6.1651 -2.328125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.88494873 2.3125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.991821 1.765625l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm5.4714355 1.59375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.953186 5.203125q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm9.469727 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.35791 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm9.484314 -3.984375q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm5.4318237 5.140625q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.222412 -6.203125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838257 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm13.416016 7.0q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm13.454285 2.671875q0 1.5625 -0.71875 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.25 0 -1.96875 -0.796875l0 3.3125l-1.171875 0l0 -9.515625l1.078125 0l0.046875 0.765625q0.71875 -0.890625 2.0 -0.890625q1.234375 0 1.953125 0.9375q0.71875 0.9375 0.71875 2.59375l0 0.109375zm-1.171875 -0.125q0 -1.171875 -0.5 -1.84375q-0.484375 -0.671875 -1.359375 -0.671875q-1.0625 0 -1.59375 0.953125l0 3.28125q0.53125 0.9375 1.609375 0.9375q0.84375 0 1.34375 -0.671875q0.5 -0.671875 0.5 -1.984375zm2.5401 -0.015625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.007446 3.359375l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234375 0l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.984436 7.859375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm6.4764404 -0.890625l1.59375 -5.15625l1.265625 0l-2.765625 7.9375q-0.640625 1.71875 -2.046875 1.71875l-0.21875 -0.03125l-0.4375 -0.078125l0 -0.953125l0.3125 0.03125q0.609375 0 0.9375 -0.25q0.328125 -0.234375 0.546875 -0.875l0.265625 -0.703125l-2.453125 -6.796875l1.28125 0l1.71875 5.15625z" fill-rule="nonzero"></path><path fill="#000000" d="m678.2703 107.778015l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm13.416016 7.0q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.107971 5.203125q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.3983154 -5.203125q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -9.75l1.171875 0l0 3.71875zm10.403381 6.03125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.525757 6.875l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm7.234436 6.859375q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm3.9816895 -5.046875l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm14.572266 5.046875q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm10.171814 0q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm7.1066895 1.15625q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm5.863037 -0.15625q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.3983154 -5.203125q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -9.75l1.171875 0l0 3.71875zm13.702881 6.03125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm8.952881 -0.9375q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm11.453064 -0.578125l-3.875 0l-0.859375 2.40625l-1.265625 0l3.53125 -9.25l1.078125 0l3.53125 9.25l-1.25 0l-0.890625 -2.40625zm-3.5 -1.015625l3.140625 0l-1.578125 -4.3125l-1.5625 4.3125zm13.897644 0.484375q-0.171875 1.46875 -1.09375 2.265625q-0.90625 0.796875 -2.40625 0.796875q-1.640625 0 -2.640625 -1.171875q-0.984375 -1.171875 -0.984375 -3.140625l0 -0.890625q0 -1.28125 0.453125 -2.265625q0.46875 -0.984375 1.3125 -1.5q0.84375 -0.53125 1.953125 -0.53125q1.484375 0 2.359375 0.828125q0.890625 0.828125 1.046875 2.28125l-1.234375 0q-0.15625 -1.109375 -0.6875 -1.59375q-0.53125 -0.5 -1.484375 -0.5q-1.15625 0 -1.828125 0.859375q-0.65625 0.859375 -0.65625 2.453125l0 0.890625q0 1.515625 0.625 2.40625q0.625 0.875 1.765625 0.875q1.015625 0 1.546875 -0.453125q0.546875 -0.46875 0.71875 -1.609375l1.234375 0zm3.0968628 1.9375l4.375 0l0 1.0l-5.59375 0l0 -9.25l1.21875 0l0 8.25zm9.765442 -0.828125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.8254395 3.671875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm9.275024 -7.65625q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm5.4318237 5.8125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.546692 -7.640625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.60376 8.65625q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.93866 6.03125l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234436 0l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm11.853516 6.875l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828125 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.760071 6.703125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.8254395 3.671875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125z" fill-rule="nonzero"></path><path fill="#000000" d="m676.8797 127.16864q0 -1.625 0.734375 -2.5625q0.75 -0.953125 2.0 -0.953125q1.21875 0 1.921875 0.828125l0.046875 -0.703125l1.078125 0l0 9.515625l-1.171875 0l0 -3.28125q-0.71875 0.765625 -1.890625 0.765625q-1.25 0 -1.984375 -0.96875q-0.734375 -0.96875 -0.734375 -2.5625l0 -0.078125zm1.171875 0.125q0 1.1875 0.5 1.859375q0.5 0.671875 1.34375 0.671875q1.046875 0 1.59375 -0.9375l0 -3.359375q-0.5625 -0.90625 -1.59375 -0.90625q-0.84375 0 -1.34375 0.6875q-0.5 0.671875 -0.5 1.984375zm10.918945 2.6875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm2.800537 -2.828125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.319946 -5.171875l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.994385 8.53125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm8.952881 -0.9375q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.8254395 3.671875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm8.806274 -1.71875q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.951721 -2.5l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.51001 7.703125q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm4.2576904 0.21875q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375zm12.057251 -1.796875l-3.875 0l-0.859375 2.40625l-1.265625 0l3.53125 -9.25l1.078125 0l3.53125 9.25l-1.25 0l-0.890625 -2.40625zm-3.5 -1.015625l3.140625 0l-1.578125 -4.3125l-1.5625 4.3125zm8.194519 3.421875l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm5.953186 -1.828125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.5598145 -1.671875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm12.775696 2.53125q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm3.9139404 -2.671875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.007446 3.359375l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.234375 0l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm4.796936 0.125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.10791 5.203125q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm5.8201904 -7.703125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.760071 6.703125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm10.406189 1.828125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm10.503601 3.359375l0 -5.953125l-1.09375 0l0 -0.921875l1.09375 0l0 -0.703125q0 -1.09375 0.578125 -1.703125q0.59375 -0.609375 1.671875 -0.609375q0.40625 0 0.8125 0.109375l-0.0625 0.953125q-0.296875 -0.046875 -0.640625 -0.046875q-0.5625 0 -0.875 0.328125q-0.3125 0.328125 -0.3125 0.953125l0 0.71875l1.46875 0l0 0.921875l-1.46875 0l0 5.953125l-1.171875 0zm3.7365112 -3.5q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm10.038696 -2.453125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm7.2755737 4.1875l1.328125 -5.25l1.171875 0l-2.0 6.875l-0.953125 0l-1.671875 -5.203125l-1.625 5.203125l-0.953125 0l-2.0 -6.875l1.171875 0l1.359375 5.140625l1.59375 -5.140625l0.953125 0l1.625 5.25zm8.171875 1.625q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm8.265381 -4.921875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.91619873 2.328125q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm10.625977 1.53125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375z" fill-rule="nonzero"></path><path fill="#000000" d="m678.7547 138.12177l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.603821 8.65625q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.63916 6.03125l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm4.796936 0.125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm13.416016 7.0q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.95166 -2.5l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.07251 2.71875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.4475098 4.09375l1.59375 -5.15625l1.265625 0l-2.765625 7.9375q-0.640625 1.71875 -2.046875 1.71875l-0.21875 -0.03125l-0.4375 -0.078125l0 -0.953125l0.3125 0.03125q0.609375 0 0.9375 -0.25q0.328125 -0.234375 0.546875 -0.875l0.265625 -0.703125l-2.453125 -6.796875l1.28125 0l1.71875 5.15625zm7.933716 1.71875l0 -5.953125l-1.09375 0l0 -0.921875l1.09375 0l0 -0.703125q0 -1.09375 0.578125 -1.703125q0.59375 -0.609375 1.671875 -0.609375q0.40625 0 0.8125 0.109375l-0.0625 0.953125q-0.296875 -0.046875 -0.640625 -0.046875q-0.5625 0 -0.875 0.328125q-0.3125 0.328125 -0.3125 0.953125l0 0.71875l1.46875 0l0 0.921875l-1.46875 0l0 5.953125l-1.171875 0zm7.361511 -5.8125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.88494873 2.3125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm7.8355713 -3.515625l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm19.278015 2.609375l-4.0 0l0 3.265625l4.640625 0l0 1.0l-5.859375 0l0 -9.25l5.796875 0l0 1.015625l-4.578125 0l0 2.96875l4.0 0l0 1.0zm3.2783203 -2.609375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm8.510132 5.28125l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm3.8776855 -1.90625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.976196 1.640625l1.59375 -5.15625l1.265625 0l-2.765625 7.9375q-0.640625 1.71875 -2.046875 1.71875l-0.21875 -0.03125l-0.4375 -0.078125l0 -0.953125l0.3125 0.03125q0.609375 0 0.9375 -0.25q0.328125 -0.234375 0.546875 -0.875l0.265625 -0.703125l-2.453125 -6.796875l1.28125 0l1.71875 5.15625zm11.590027 1.71875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm13.925476 1.53125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm5.7160645 1.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.67041 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.4631348 4.21875l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm5.4714355 1.59375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.984375 7.859375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.0701904 0.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.357971 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm2.9035645 1.21875q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m21.38845 50.44882l44.97638 -0.25196838" fill-rule="evenodd"></path><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m21.38845 50.44882l41.549347 -0.23276901" fill-rule="evenodd"></path><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m62.937798 50.21605l-1.118267 1.130867l3.083416 -1.1418762l-3.096016 -1.1072578z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m58.367455 28.8084l130.70865 0l0 43.77953l-130.70865 0z" fill-rule="evenodd"></path><path fill="#000000" d="m73.836205 45.282772l1.046875 0.265625q-0.328125 1.28125 -1.1875 1.96875q-0.84375 0.671875 -2.078125 0.671875q-1.28125 0 -2.078125 -0.515625q-0.796875 -0.53125 -1.21875 -1.515625q-0.40625 -0.984375 -0.40625 -2.109375q0 -1.21875 0.46875 -2.140625q0.46875 -0.921875 1.328125 -1.390625q0.875 -0.484375 1.921875 -0.484375q1.1875 0 1.984375 0.609375q0.8125 0.59375 1.125 1.6875l-1.03125 0.25q-0.265625 -0.859375 -0.796875 -1.25q-0.515625 -0.390625 -1.296875 -0.390625q-0.921875 0 -1.53125 0.4375q-0.609375 0.421875 -0.859375 1.15625q-0.234375 0.734375 -0.234375 1.515625q0 1.0 0.28125 1.75q0.296875 0.75 0.90625 1.125q0.625 0.375 1.34375 0.375q0.875 0 1.484375 -0.5q0.609375 -0.515625 0.828125 -1.515625zm1.5862274 -0.09375q0 -1.578125 0.890625 -2.34375q0.734375 -0.625 1.796875 -0.625q1.171875 0 1.90625 0.765625q0.75 0.765625 0.75 2.125q0 1.109375 -0.328125 1.75q-0.328125 0.625 -0.96875 0.96875q-0.625 0.34375 -1.359375 0.34375q-1.203125 0 -1.953125 -0.765625q-0.734375 -0.765625 -0.734375 -2.21875zm1.0 0q0 1.109375 0.46875 1.65625q0.484375 0.53125 1.21875 0.53125q0.71875 0 1.1875 -0.546875q0.484375 -0.546875 0.484375 -1.671875q0 -1.046875 -0.484375 -1.59375q-0.484375 -0.546875 -1.1875 -0.546875q-0.734375 0 -1.21875 0.546875q-0.46875 0.53125 -0.46875 1.625zm5.2858734 2.859375l0 -5.703125l0.875 0l0 0.8125q0.625 -0.9375 1.8125 -0.9375q0.515625 0 0.953125 0.1875q0.4375 0.171875 0.640625 0.484375q0.21875 0.296875 0.3125 0.703125q0.046875 0.28125 0.046875 0.953125l0 3.5l-0.96875 0l0 -3.46875q0 -0.59375 -0.109375 -0.875q-0.109375 -0.296875 -0.40625 -0.46875q-0.28125 -0.1875 -0.671875 -0.1875q-0.609375 0 -1.0625 0.390625q-0.453125 0.390625 -0.453125 1.5l0 3.109375l-0.96875 0zm8.051498 -0.859375l0.125 0.84375q-0.40625 0.09375 -0.71875 0.09375q-0.53125 0 -0.828125 -0.171875q-0.28125 -0.171875 -0.40625 -0.4375q-0.109375 -0.265625 -0.109375 -1.140625l0 -3.28125l-0.71875 0l0 -0.75l0.71875 0l0 -1.40625l0.953125 -0.59375l0 2.0l0.984375 0l0 0.75l-0.984375 0l0 3.34375q0 0.40625 0.046875 0.53125q0.0625 0.109375 0.171875 0.1875q0.125 0.0625 0.328125 0.0625q0.171875 0 0.4375 -0.03125zm0.8356476 0.859375l0 -5.703125l0.859375 0l0 0.859375q0.34375 -0.609375 0.625 -0.796875q0.28125 -0.1875 0.609375 -0.1875q0.5 0 1.0 0.3125l-0.328125 0.890625q-0.359375 -0.203125 -0.71875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.25 0.1875 -0.359375 0.53125q-0.15625 0.515625 -0.15625 1.125l0 2.984375l-0.96875 0zm3.1892395 -2.859375q0 -1.578125 0.890625 -2.34375q0.734375 -0.625 1.796875 -0.625q1.171875 0 1.90625 0.765625q0.75 0.765625 0.75 2.125q0 1.109375 -0.328125 1.75q-0.328125 0.625 -0.96875 0.96875q-0.625 0.34375 -1.359375 0.34375q-1.203125 0 -1.953125 -0.765625q-0.734375 -0.765625 -0.734375 -2.21875zm1.0 0q0 1.109375 0.46875 1.65625q0.484375 0.53125 1.21875 0.53125q0.71875 0 1.1875 -0.546875q0.484375 -0.546875 0.484375 -1.671875q0 -1.046875 -0.484375 -1.59375q-0.484375 -0.546875 -1.1875 -0.546875q-0.734375 0 -1.21875 0.546875q-0.46875 0.53125 -0.46875 1.625zm5.2702484 2.859375l0 -7.875l0.96875 0l0 7.875l-0.96875 0zm5.578125 0l0 -4.953125l-0.84375 0l0 -0.75l0.84375 0l0 -0.609375q0 -0.578125 0.109375 -0.859375q0.140625 -0.375 0.484375 -0.609375q0.359375 -0.234375 0.984375 -0.234375q0.40625 0 0.90625 0.109375l-0.140625 0.84375q-0.3125 -0.0625 -0.578125 -0.0625q-0.4375 0 -0.625 0.1875q-0.171875 0.1875 -0.171875 0.703125l0 0.53125l1.109375 0l0 0.75l-1.109375 0l0 4.953125l-0.96875 0zm2.7106476 0l0 -7.875l0.96875 0l0 7.875l-0.96875 0zm2.0237274 -2.859375q0 -1.578125 0.890625 -2.34375q0.734375 -0.625 1.796875 -0.625q1.171875 0 1.90625 0.765625q0.75 0.765625 0.75 2.125q0 1.109375 -0.328125 1.75q-0.328125 0.625 -0.96875 0.96875q-0.625 0.34375 -1.359375 0.34375q-1.203125 0 -1.953125 -0.765625q-0.734375 -0.765625 -0.734375 -2.21875zm1.0 0q0 1.109375 0.46875 1.65625q0.484375 0.53125 1.21875 0.53125q0.71875 0 1.1875 -0.546875q0.484375 -0.546875 0.484375 -1.671875q0 -1.046875 -0.484375 -1.59375q-0.484375 -0.546875 -1.1875 -0.546875q-0.734375 0 -1.21875 0.546875q-0.46875 0.53125 -0.46875 1.625zm6.3483734 2.859375l-1.75 -5.703125l1.0 0l0.90625 3.296875l0.34375 1.21875q0.015625 -0.09375 0.296875 -1.171875l0.90625 -3.34375l0.984375 0l0.859375 3.3125l0.28125 1.078125l0.328125 -1.09375l0.984375 -3.296875l0.9375 0l-1.78125 5.703125l-1.0 0l-0.921875 -3.421875l-0.21875 -0.96875l-1.15625 4.390625l-1.0 0zm13.296867 0l0 -0.71875q-0.53125 0.84375 -1.59375 0.84375q-0.671875 0 -1.25 -0.375q-0.5781174 -0.375 -0.8906174 -1.046875q-0.3125 -0.671875 -0.3125 -1.546875q0 -0.859375 0.28125 -1.546875q0.296875 -0.703125 0.8593674 -1.0625q0.5625 -0.375 1.265625 -0.375q0.515625 0 0.921875 0.21875q0.40625 0.21875 0.65625 0.5625l0 -2.828125l0.96875 0l0 7.875l-0.90625 0zm-3.0468674 -2.84375q0 1.09375 0.45311737 1.640625q0.46875 0.53125 1.09375 0.53125q0.640625 0 1.078125 -0.515625q0.4375 -0.515625 0.4375 -1.578125q0 -1.171875 -0.453125 -1.71875q-0.4375 -0.546875 -1.109375 -0.546875q-0.640625 0 -1.078125 0.53125q-0.42186737 0.515625 -0.42186737 1.65625zm9.020241 2.84375l0 -0.84375q-0.671875 0.96875 -1.8125 0.96875q-0.5 0 -0.953125 -0.1875q-0.4375 -0.203125 -0.65625 -0.484375q-0.203125 -0.296875 -0.28125 -0.71875q-0.0625 -0.28125 -0.0625 -0.90625l0 -3.53125l0.96875 0l0 3.15625q0 0.765625 0.0625 1.03125q0.09375 0.375 0.375 0.59375q0.296875 0.21875 0.734375 0.21875q0.4375 0 0.8125 -0.21875q0.390625 -0.234375 0.546875 -0.609375q0.15625 -0.390625 0.15625 -1.109375l0 -3.0625l0.96875 0l0 5.703125l-0.859375 0zm2.1764984 0l0 -5.703125l0.859375 0l0 0.859375q0.34375 -0.609375 0.625 -0.796875q0.28125 -0.1875 0.609375 -0.1875q0.5 0 1.0 0.3125l-0.328125 0.890625q-0.359375 -0.203125 -0.71875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.25 0.1875 -0.359375 0.53125q-0.15625 0.515625 -0.15625 1.125l0 2.984375l-0.96875 0zm3.5642395 -6.765625l0 -1.109375l0.96875 0l0 1.109375l-0.96875 0zm0 6.765625l0 -5.703125l0.96875 0l0 5.703125l-0.96875 0zm2.3518524 0l0 -5.703125l0.875 0l0 0.8125q0.625 -0.9375 1.8125 -0.9375q0.515625 0 0.953125 0.1875q0.4375 0.171875 0.640625 0.484375q0.21875 0.296875 0.3125 0.703125q0.046875 0.28125 0.046875 0.953125l0 3.5l-0.96875 0l0 -3.46875q0 -0.59375 -0.109375 -0.875q-0.109375 -0.296875 -0.40625 -0.46875q-0.28125 -0.1875 -0.671875 -0.1875q-0.609375 0 -1.0625 0.390625q-0.453125 0.390625 -0.453125 1.5l0 3.109375l-0.96875 0zm5.7546234 0.46875l0.9375 0.140625q0.0625 0.4375 0.328125 0.640625q0.359375 0.265625 0.984375 0.265625q0.671875 0 1.03125 -0.265625q0.375 -0.265625 0.5 -0.75q0.078125 -0.296875 0.078125 -1.25q-0.640625 0.75 -1.59375 0.75q-1.171875 0 -1.8125 -0.84375q-0.640625 -0.859375 -0.640625 -2.046875q0 -0.8125 0.296875 -1.5q0.296875 -0.6875 0.84375 -1.0625q0.5625 -0.375 1.328125 -0.375q1.0 0 1.65625 0.8125l0 -0.6875l0.890625 0l0 4.921875q0 1.34375 -0.265625 1.890625q-0.265625 0.5625 -0.859375 0.875q-0.59375 0.328125 -1.453125 0.328125q-1.015625 0 -1.640625 -0.46875q-0.625 -0.453125 -0.609375 -1.375zm0.796875 -3.421875q0 1.125 0.4375 1.640625q0.453125 0.515625 1.125 0.515625q0.671875 0 1.125 -0.515625q0.453125 -0.515625 0.453125 -1.609375q0 -1.046875 -0.46875 -1.578125q-0.46875 -0.53125 -1.125 -0.53125q-0.640625 0 -1.09375 0.53125q-0.453125 0.515625 -0.453125 1.546875z" fill-rule="nonzero"></path><path fill="#000000" d="m68.086205 61.048397l0 -5.703125l0.859375 0l0 0.859375q0.34375 -0.609375 0.625 -0.796875q0.28125 -0.1875 0.609375 -0.1875q0.5 0 1.0 0.3125l-0.328125 0.890625q-0.359375 -0.203125 -0.71875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.25 0.1875 -0.359375 0.53125q-0.15625 0.515625 -0.15625 1.125l0 2.984375l-0.96875 0zm7.4548645 -1.84375l1.0 0.125q-0.234375 0.875 -0.875 1.359375q-0.640625 0.484375 -1.625 0.484375q-1.25 0 -1.984375 -0.765625q-0.734375 -0.765625 -0.734375 -2.15625q0 -1.453125 0.734375 -2.234375q0.75 -0.796875 1.921875 -0.796875q1.15625 0 1.875 0.78125q0.71875 0.765625 0.71875 2.1875q0 0.078125 0 0.25l-4.25 0q0.046875 0.9375 0.515625 1.4375q0.484375 0.5 1.203125 0.5q0.53125 0 0.90625 -0.265625q0.375 -0.28125 0.59375 -0.90625zm-3.171875 -1.5625l3.1875 0q-0.0625 -0.71875 -0.359375 -1.078125q-0.46875 -0.546875 -1.203125 -0.546875q-0.671875 0 -1.125 0.453125q-0.453125 0.4375 -0.5 1.171875zm8.832748 5.59375l0 -2.796875q-0.21875 0.3125 -0.625 0.53125q-0.40625 0.203125 -0.859375 0.203125q-1.015625 0 -1.75 -0.8125q-0.734375 -0.8125 -0.734375 -2.21875q0 -0.859375 0.296875 -1.53125q0.296875 -0.6875 0.859375 -1.03125q0.5625 -0.359375 1.25 -0.359375q1.046875 0 1.65625 0.890625l0 -0.765625l0.875 0l0 7.890625l-0.96875 0zm-2.984375 -5.0625q0 1.109375 0.453125 1.65625q0.46875 0.546875 1.125 0.546875q0.609375 0 1.046875 -0.515625q0.453125 -0.53125 0.453125 -1.59375q0 -1.140625 -0.46875 -1.71875q-0.46875 -0.578125 -1.09375 -0.578125q-0.640625 0 -1.078125 0.546875q-0.4375 0.53125 -0.4375 1.65625zm9.020248 2.875l0 -0.84375q-0.671875 0.96875 -1.8125 0.96875q-0.5 0 -0.953125 -0.1875q-0.4375 -0.203125 -0.65625 -0.484375q-0.203125 -0.296875 -0.28125 -0.71875q-0.0625 -0.28125 -0.0625 -0.90625l0 -3.53125l0.96875 0l0 3.15625q0 0.765625 0.0625 1.03125q0.09375 0.375 0.375 0.59375q0.296875 0.21875 0.734375 0.21875q0.4375 0 0.8125 -0.21875q0.390625 -0.234375 0.546875 -0.609375q0.15625 -0.390625 0.15625 -1.109375l0 -3.0625l0.96875 0l0 5.703125l-0.859375 0zm6.0827484 -1.84375l1.0 0.125q-0.234375 0.875 -0.875 1.359375q-0.640625 0.484375 -1.625 0.484375q-1.25 0 -1.984375 -0.765625q-0.734375 -0.765625 -0.734375 -2.15625q0 -1.453125 0.734375 -2.234375q0.75 -0.796875 1.921875 -0.796875q1.15625 0 1.875 0.78125q0.71875 0.765625 0.71875 2.1875q0 0.078125 0 0.25l-4.25 0q0.046875 0.9375 0.515625 1.4375q0.484375 0.5 1.203125 0.5q0.53125 0 0.90625 -0.265625q0.375 -0.28125 0.59375 -0.90625zm-3.171875 -1.5625l3.1875 0q-0.0625 -0.71875 -0.359375 -1.078125q-0.46875 -0.546875 -1.203125 -0.546875q-0.671875 0 -1.125 0.453125q-0.453125 0.4375 -0.5 1.171875zm4.8171234 1.703125l0.953125 -0.15625q0.078125 0.578125 0.4375 0.890625q0.375 0.296875 1.03125 0.296875q0.671875 0 0.984375 -0.265625q0.328125 -0.265625 0.328125 -0.640625q0 -0.328125 -0.28125 -0.515625q-0.203125 -0.125 -0.984375 -0.328125q-1.0625 -0.265625 -1.484375 -0.453125q-0.40625 -0.203125 -0.625 -0.546875q-0.203125 -0.34375 -0.203125 -0.765625q0 -0.390625 0.171875 -0.703125q0.171875 -0.328125 0.484375 -0.546875q0.21875 -0.171875 0.609375 -0.28125q0.390625 -0.109375 0.828125 -0.109375q0.671875 0 1.171875 0.1875q0.515625 0.1875 0.75 0.53125q0.25 0.328125 0.34375 0.875l-0.9375 0.125q-0.078125 -0.4375 -0.390625 -0.671875q-0.296875 -0.25 -0.859375 -0.25q-0.671875 0 -0.953125 0.21875q-0.28125 0.21875 -0.28125 0.515625q0 0.1875 0.109375 0.328125q0.125 0.15625 0.375 0.265625q0.140625 0.046875 0.859375 0.25q1.015625 0.265625 1.421875 0.4375q0.40625 0.171875 0.640625 0.515625q0.234375 0.328125 0.234375 0.828125q0 0.484375 -0.28125 0.90625q-0.28125 0.421875 -0.8125 0.65625q-0.53125 0.234375 -1.203125 0.234375q-1.109375 0 -1.703125 -0.453125q-0.578125 -0.46875 -0.734375 -1.375zm7.828125 0.84375l0.125 0.84375q-0.40625 0.09375 -0.71875 0.09375q-0.53125 0 -0.828125 -0.171875q-0.28125 -0.171875 -0.40625 -0.4375q-0.109375 -0.265625 -0.109375 -1.140625l0 -3.28125l-0.71875 0l0 -0.75l0.71875 0l0 -1.40625l0.953125 -0.59375l0 2.0l0.984375 0l0 0.75l-0.984375 0l0 3.34375q0 0.40625 0.046875 0.53125q0.0625 0.109375 0.171875 0.1875q0.125 0.0625 0.328125 0.0625q0.171875 0 0.4375 -0.03125zm3.7962952 3.046875l0 -7.890625l0.890625 0l0 0.734375q0.3125 -0.421875 0.703125 -0.640625q0.390625 -0.21875 0.953125 -0.21875q0.71875 0 1.28125 0.375q0.5625 0.375 0.84375 1.0625q0.28125 0.671875 0.28125 1.5q0 0.875 -0.3125 1.578125q-0.3125 0.6875 -0.921875 1.0625q-0.59375 0.375 -1.25 0.375q-0.484375 0 -0.875 -0.203125q-0.375 -0.203125 -0.625 -0.515625l0 2.78125l-0.96875 0zm0.875 -5.0q0 1.09375 0.453125 1.625q0.453125 0.515625 1.078125 0.515625q0.640625 0 1.09375 -0.53125q0.46875 -0.546875 0.46875 -1.703125q0 -1.078125 -0.453125 -1.625q-0.4375 -0.546875 -1.0625 -0.546875q-0.625 0 -1.109375 0.578125q-0.46875 0.578125 -0.46875 1.6875zm5.0514984 2.8125l0 -5.703125l0.859375 0l0 0.859375q0.34375 -0.609375 0.625 -0.796875q0.28125 -0.1875 0.609375 -0.1875q0.5 0 1.0 0.3125l-0.328125 0.890625q-0.359375 -0.203125 -0.71875 -0.203125q-0.3125 0 -0.5625 0.1875q-0.25 0.1875 -0.359375 0.53125q-0.15625 0.515625 -0.15625 1.125l0 2.984375l-0.96875 0zm3.1892395 -2.859375q0 -1.578125 0.890625 -2.34375q0.734375 -0.625 1.796875 -0.625q1.171875 0 1.90625 0.765625q0.75 0.765625 0.75 2.125q0 1.109375 -0.328125 1.75q-0.328125 0.625 -0.96875 0.96875q-0.625 0.34375 -1.359375 0.34375q-1.203125 0 -1.953125 -0.765625q-0.734375 -0.765625 -0.734375 -2.21875zm1.0 0q0 1.109375 0.46875 1.65625q0.484375 0.53125 1.21875 0.53125q0.71875 0 1.1875 -0.546875q0.484375 -0.546875 0.484375 -1.671875q0 -1.046875 -0.484375 -1.59375q-0.484375 -0.546875 -1.1875 -0.546875q-0.734375 0 -1.21875 0.546875q-0.46875 0.53125 -0.46875 1.625zm9.020248 0.765625l0.9375 0.125q-0.140625 0.984375 -0.796875 1.546875q-0.640625 0.546875 -1.5625 0.546875q-1.171875 0 -1.890625 -0.765625q-0.703125 -0.765625 -0.703125 -2.1875q0 -0.921875 0.296875 -1.609375q0.3125 -0.703125 0.9375 -1.046875q0.625 -0.34375 1.359375 -0.34375q0.921875 0 1.515625 0.46875q0.59375 0.46875 0.765625 1.328125l-0.953125 0.140625q-0.125 -0.5625 -0.46875 -0.84375q-0.34375 -0.296875 -0.828125 -0.296875q-0.71875 0 -1.1875 0.53125q-0.453125 0.515625 -0.453125 1.640625q0 1.15625 0.4375 1.671875q0.4375 0.515625 1.15625 0.515625q0.5625 0 0.9375 -0.34375q0.390625 -0.34375 0.5 -1.078125zm5.4999924 0.25l1.0 0.125q-0.234375 0.875 -0.875 1.359375q-0.640625 0.484375 -1.625 0.484375q-1.25 0 -1.9843674 -0.765625q-0.734375 -0.765625 -0.734375 -2.15625q0 -1.453125 0.734375 -2.234375q0.7499924 -0.796875 1.9218674 -0.796875q1.15625 0 1.875 0.78125q0.71875 0.765625 0.71875 2.1875q0 0.078125 0 0.25l-4.25 0q0.046875 0.9375 0.515625 1.4375q0.484375 0.5 1.203125 0.5q0.53125 0 0.90625 -0.265625q0.375 -0.28125 0.59375 -0.90625zm-3.171875 -1.5625l3.1875 0q-0.0625 -0.71875 -0.359375 -1.078125q-0.46875 -0.546875 -1.203125 -0.546875q-0.671875 0 -1.125 0.453125q-0.453125 0.4375 -0.5 1.171875zm4.8171234 1.703125l0.953125 -0.15625q0.078125 0.578125 0.4375 0.890625q0.375 0.296875 1.03125 0.296875q0.671875 0 0.984375 -0.265625q0.328125 -0.265625 0.328125 -0.640625q0 -0.328125 -0.28125 -0.515625q-0.203125 -0.125 -0.984375 -0.328125q-1.0625 -0.265625 -1.484375 -0.453125q-0.40625 -0.203125 -0.625 -0.546875q-0.203125 -0.34375 -0.203125 -0.765625q0 -0.390625 0.171875 -0.703125q0.171875 -0.328125 0.484375 -0.546875q0.21875 -0.171875 0.609375 -0.28125q0.390625 -0.109375 0.828125 -0.109375q0.671875 0 1.171875 0.1875q0.515625 0.1875 0.75 0.53125q0.25 0.328125 0.34375 0.875l-0.9375 0.125q-0.078125 -0.4375 -0.390625 -0.671875q-0.296875 -0.25 -0.859375 -0.25q-0.671875 0 -0.953125 0.21875q-0.28125 0.21875 -0.28125 0.515625q0 0.1875 0.109375 0.328125q0.125 0.15625 0.375 0.265625q0.140625 0.046875 0.859375 0.25q1.015625 0.265625 1.421875 0.4375q0.40625 0.171875 0.640625 0.515625q0.234375 0.328125 0.234375 0.828125q0 0.484375 -0.28125 0.90625q-0.28125 0.421875 -0.8125 0.65625q-0.53125 0.234375 -1.203125 0.234375q-1.109375 0 -1.703125 -0.453125q-0.578125 -0.46875 -0.734375 -1.375zm5.328125 0l0.953125 -0.15625q0.078125 0.578125 0.4375 0.890625q0.375 0.296875 1.03125 0.296875q0.671875 0 0.984375 -0.265625q0.328125 -0.265625 0.328125 -0.640625q0 -0.328125 -0.28125 -0.515625q-0.203125 -0.125 -0.984375 -0.328125q-1.0625 -0.265625 -1.484375 -0.453125q-0.40625 -0.203125 -0.625 -0.546875q-0.203125 -0.34375 -0.203125 -0.765625q0 -0.390625 0.171875 -0.703125q0.171875 -0.328125 0.484375 -0.546875q0.21875 -0.171875 0.609375 -0.28125q0.390625 -0.109375 0.828125 -0.109375q0.671875 0 1.171875 0.1875q0.515625 0.1875 0.75 0.53125q0.25 0.328125 0.34375 0.875l-0.9375 0.125q-0.078125 -0.4375 -0.390625 -0.671875q-0.296875 -0.25 -0.859375 -0.25q-0.671875 0 -0.953125 0.21875q-0.28125 0.21875 -0.28125 0.515625q0 0.1875 0.109375 0.328125q0.125 0.15625 0.375 0.265625q0.140625 0.046875 0.859375 0.25q1.015625 0.265625 1.421875 0.4375q0.40625 0.171875 0.640625 0.515625q0.234375 0.328125 0.234375 0.828125q0 0.484375 -0.28125 0.90625q-0.28125 0.421875 -0.8125 0.65625q-0.53125 0.234375 -1.203125 0.234375q-1.109375 0 -1.703125 -0.453125q-0.578125 -0.46875 -0.734375 -1.375zm5.71875 -5.0625l0 -1.109375l0.96875 0l0 1.109375l-0.96875 0zm0 6.765625l0 -5.703125l0.96875 0l0 5.703125l-0.96875 0zm2.3518524 0l0 -5.703125l0.875 0l0 0.8125q0.625 -0.9375 1.8125 -0.9375q0.515625 0 0.953125 0.1875q0.4375 0.171875 0.640625 0.484375q0.21875 0.296875 0.3125 0.703125q0.046875 0.28125 0.046875 0.953125l0 3.5l-0.96875 0l0 -3.46875q0 -0.59375 -0.109375 -0.875q-0.109375 -0.296875 -0.40625 -0.46875q-0.28125 -0.1875 -0.671875 -0.1875q-0.609375 0 -1.0625 0.390625q-0.453125 0.390625 -0.453125 1.5l0 3.109375l-0.96875 0zm5.7546234 0.46875l0.9375 0.140625q0.0625 0.4375 0.328125 0.640625q0.359375 0.265625 0.984375 0.265625q0.671875 0 1.03125 -0.265625q0.375 -0.265625 0.5 -0.75q0.078125 -0.296875 0.078125 -1.25q-0.640625 0.75 -1.59375 0.75q-1.171875 0 -1.8125 -0.84375q-0.640625 -0.859375 -0.640625 -2.046875q0 -0.8125 0.296875 -1.5q0.296875 -0.6875 0.84375 -1.0625q0.5625 -0.375 1.328125 -0.375q1.0 0 1.65625 0.8125l0 -0.6875l0.890625 0l0 4.921875q0 1.34375 -0.265625 1.890625q-0.265625 0.5625 -0.859375 0.875q-0.59375 0.328125 -1.453125 0.328125q-1.015625 0 -1.640625 -0.46875q-0.625 -0.453125 -0.609375 -1.375zm0.796875 -3.421875q0 1.125 0.4375 1.640625q0.453125 0.515625 1.125 0.515625q0.671875 0 1.125 -0.515625q0.453125 -0.515625 0.453125 -1.609375q0 -1.046875 -0.46875 -1.578125q-0.46875 -0.53125 -1.125 -0.53125q-0.640625 0 -1.09375 0.53125q-0.453125 0.515625 -0.453125 1.546875z" fill-rule="nonzero"></path><path fill="#ffffff" d="m457.66275 43.36365l0 0c0 -3.6848717 2.987152 -6.6720505 6.6720276 -6.6720505l77.27008 0c1.7695312 0 3.4666138 0.7029457 4.7178345 1.9541969c1.2512817 1.251255 1.9542236 2.9483147 1.9542236 4.7178535l0 26.687397c0 3.6848679 -2.9871826 6.6720505 -6.672058 6.6720505l-77.27008 0c-3.6848755 0 -6.6720276 -2.9871826 -6.6720276 -6.6720505z" fill-rule="evenodd"></path><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m457.66275 43.36365l0 0c0 -3.6848717 2.987152 -6.6720505 6.6720276 -6.6720505l77.27008 0c1.7695312 0 3.4666138 0.7029457 4.7178345 1.9541969c1.2512817 1.251255 1.9542236 2.9483147 1.9542236 4.7178535l0 26.687397c0 3.6848679 -2.9871826 6.6720505 -6.672058 6.6720505l-77.27008 0c-3.6848755 0 -6.6720276 -2.9871826 -6.6720276 -6.6720505z" fill-rule="evenodd"></path><path fill="#000000" d="m476.338 61.507347l-1.609375 0l0 -9.25l1.609375 0l0 9.25zm5.7615356 -1.859375q0 -0.421875 -0.34375 -0.625q-0.328125 -0.21875 -1.125 -0.390625q-0.78125 -0.171875 -1.3125 -0.421875q-1.15625 -0.5625 -1.15625 -1.609375q0 -0.890625 0.75 -1.484375q0.75 -0.609375 1.90625 -0.609375q1.234375 0 1.984375 0.609375q0.765625 0.609375 0.765625 1.578125l-1.546875 0q0 -0.4375 -0.328125 -0.734375q-0.328125 -0.296875 -0.875 -0.296875q-0.515625 0 -0.84375 0.234375q-0.3125 0.234375 -0.3125 0.625q0 0.359375 0.296875 0.5625q0.3125 0.1875 1.21875 0.390625q0.90625 0.203125 1.421875 0.484375q0.515625 0.265625 0.765625 0.65625q0.25 0.390625 0.25 0.9375q0 0.9375 -0.765625 1.515625q-0.765625 0.5625 -2.015625 0.5625q-0.84375 0 -1.5 -0.296875q-0.65625 -0.3125 -1.03125 -0.84375q-0.375 -0.53125 -0.375 -1.15625l1.5 0q0.03125 0.546875 0.40625 0.84375q0.390625 0.296875 1.015625 0.296875q0.609375 0 0.921875 -0.21875q0.328125 -0.234375 0.328125 -0.609375zm4.95697 -6.671875l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.828125q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.890625l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0zm4.1506042 8.53125l-1.546875 0l0 -6.875l1.546875 0l0 6.875zm-1.640625 -8.65625q0 -0.34375 0.21875 -0.578125q0.234375 -0.25 0.640625 -0.25q0.421875 0 0.65625 0.25q0.234375 0.234375 0.234375 0.578125q0 0.359375 -0.234375 0.59375q-0.234375 0.21875 -0.65625 0.21875q-0.40625 0 -0.640625 -0.21875q-0.21875 -0.234375 -0.21875 -0.59375zm3.1067505 5.15625q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.125 -1.25q0.734375 -0.4375 1.671875 -0.4375q1.390625 0 2.25 0.90625q0.875 0.890625 0.9375 2.375l0.015625 0.359375q0 1.015625 -0.390625 1.8125q-0.390625 0.796875 -1.125 1.234375q-0.71875 0.4375 -1.671875 0.4375q-1.453125 0 -2.328125 -0.96875q-0.875 -0.96875 -0.875 -2.578125l0 -0.078125zm1.546875 0.140625q0 1.0625 0.4375 1.65625q0.4375 0.59375 1.21875 0.59375q0.78125 0 1.203125 -0.609375q0.4375 -0.609375 0.4375 -1.78125q0 -1.03125 -0.453125 -1.640625q-0.4375 -0.609375 -1.203125 -0.609375q-0.75 0 -1.203125 0.59375q-0.4375 0.59375 -0.4375 1.796875zm9.322571 0.046875l-3.328125 0l0 -1.234375l3.328125 0l0 1.234375zm6.701416 1.15625l-3.578125 0l-0.75 2.15625l-1.671875 0l3.5 -9.25l1.4375 0l3.4999695 9.25l-1.6718445 0l-0.765625 -2.15625zm-3.125 -1.296875l2.671875 0l-1.328125 -3.828125l-1.34375 3.828125zm10.838959 2.78125q-0.6875 0.796875 -1.9375 0.796875q-1.109375 0 -1.6875 -0.65625q-0.578125 -0.65625 -0.578125 -1.890625l0 -4.453125l1.546875 0l0 4.4375q0 1.3125 1.09375 1.3125q1.109375 0 1.515625 -0.8125l0 -4.9375l1.53125 0l0 6.875l-1.453125 0l-0.03125 -0.671875zm5.171631 -7.859375l0 1.65625l1.21875 0l0 1.15625l-1.21875 0l0 3.828125q0 0.390625 0.15625 0.5625q0.15625 0.171875 0.5625 0.171875q0.265625 0 0.53125 -0.0625l0 1.203125q-0.515625 0.140625 -1.015625 0.140625q-1.765625 0 -1.765625 -1.953125l0 -3.890625l-1.140625 0l0 -1.15625l1.140625 0l0 -1.65625l1.53125 0zm4.025635 2.40625q0.75 -0.875 1.90625 -0.875q2.203125 0 2.234375 2.515625l0 4.484375l-1.546875 0l0 -4.4375q0 -0.703125 -0.3125 -1.0q-0.296875 -0.296875 -0.90625 -0.296875q-0.921875 0 -1.375 0.828125l0 4.90625l-1.546875 0l0 -9.75l1.546875 0l0 3.625z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m502.96982 76.7231l9.921295 45.95275" fill-rule="evenodd"></path><path stroke="#1155cc" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m502.96982 76.7231l9.197968 42.60285" fill-rule="evenodd"></path><path fill="#1155cc" stroke="#1155cc" stroke-width="1.0" stroke-linecap="butt" d="m512.16785 119.32595l-1.3366089 -0.8619232l1.7513428 2.7828522l0.44714355 -3.257515z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m504.3268 76.72179l-19.968506 18.267715" fill-rule="evenodd"></path><path stroke="#1155cc" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m504.3268 76.72179l-17.43988 15.954475" fill-rule="evenodd"></path><path fill="#1155cc" stroke="#1155cc" stroke-width="1.0" stroke-linecap="butt" d="m486.8869 92.67626l0.07067871 -1.588829l-1.5206299 2.915306l3.0387878 -1.2557983z" fill-rule="evenodd"></path><path fill="#000000" fill-opacity="0.0" d="m514.09186 92.58268l83.93701 0.03149414l0 40.724403l-83.93701 -0.03149414z" fill-rule="evenodd"></path><path fill="#000000" d="m530.71686 106.43579l-2.890625 -0.001083374l0 7.953125l-1.59375 -6.0272217E-4l0 -7.953125l-2.859375 -0.0010681152l0 -1.296875l7.34375 0.0027542114l0 1.296875zm3.0111694 6.673004l4.1875 0.0015716553l0 1.28125l-5.796875 -0.0021743774l0 -9.25l1.609375 6.0272217E-4l0 7.96875zm10.429504 -1.0898361q0 -0.609375 -0.4375 -0.9376602q-0.421875 -0.34391022 -1.546875 -0.67246246q-1.109375 -0.344162 -1.765625 -0.7506561q-1.265625 -0.79735565 -1.265625 -2.0786057q0 -1.109375 0.90625 -1.8277817q0.921875 -0.7340317 2.375 -0.73348236q0.96875 3.5858154E-4 1.71875 0.36001587q0.75 0.3596573 1.1875 1.0160751q0.4375 0.6564102 0.4375 1.4532852l-1.609375 -6.0272217E-4q0 -0.71875 -0.453125 -1.1251678q-0.453125 -0.42205048 -1.296875 -0.42236328q-0.78125 -2.89917E-4 -1.21875 0.34329224q-0.4375 0.32795715 -0.4375 0.93733215q0 0.515625 0.46875 0.8595581q0.46875 0.32830048 1.546875 0.65682983q1.078125 0.31290436 1.734375 0.7193985q0.65625 0.40649414 0.953125 0.9378586q0.3125 0.53136444 0.3125 1.2501144q0 1.15625 -0.890625 1.8434143q-0.875 0.67154694 -2.390625 0.67098236q-1.015625 -3.8146973E-4 -1.859375 -0.3600769q-0.828125 -0.37530518 -1.296875 -1.0317307q-0.46875 -0.6564255 -0.46875 -1.5314255l1.609375 6.0272217E-4q0 0.796875 0.515625 1.2345657q0.515625 0.42206573 1.5 0.42243958q0.828125 3.1280518E-4 1.25 -0.3432846q0.421875 -0.34358978 0.421875 -0.8904648zm9.206482 1.2690811q0.578125 2.1362305E-4 0.953125 -0.32776642q0.390625 -0.34360504 0.421875 -0.8279724l1.453125 5.493164E-4q-0.03125 0.64060974 -0.40625 1.2029724q-0.375 0.5467377 -1.015625 0.87461853q-0.640625 0.3122635 -1.390625 0.3119812q-1.4375 -5.41687E-4 -2.28125 -0.9227371q-0.84375 -0.9378128 -0.84375 -2.5940628l0 -0.15625q0 -1.5625 0.828125 -2.4996872q0.84375 -0.9528122 2.296875 -0.9522629q1.21875 4.5776367E-4 1.984375 0.71949005q0.78125 0.71904755 0.828125 1.8753128l-1.453125 -5.493164E-4q-0.03125 -0.5937576 -0.40625 -0.9689026q-0.375 -0.37513733 -0.96875 -0.37535858q-0.75 -2.822876E-4 -1.15625 0.5464401q-0.40625 0.5310974 -0.40625 1.6404724l0 0.25q0 1.109375 0.390625 1.656395q0.40625 0.5470276 1.171875 0.5473175zm7.1795654 1.2370682q-1.46875 -5.493164E-4 -2.375 -0.92276764q-0.90625 -0.9222107 -0.90625 -2.4534607l0 -0.203125q0 -1.015625 0.390625 -1.82798q0.40625 -0.8123474 1.109375 -1.265213q0.71875 -0.45285034 1.609375 -0.45252228q1.40625 5.340576E-4 2.15625 0.90706635q0.765625 0.8909073 0.765625 2.5315323l0 0.609375l-4.484375 -0.0016784668q0.078125 0.8594055 0.578125 1.3595886q0.5 0.48456573 1.25 0.48484802q1.0625 3.9672852E-4 1.71875 -0.85873413l0.84375 0.79719543q-0.421875 0.6248398 -1.109375 0.9683304q-0.6875 0.3278656 -1.546875 0.32754517zm-0.1875 -5.8750687q-0.625 -2.3651123E-4 -1.015625 0.43711853q-0.390625 0.43735504 -0.5 1.2341843l2.9375 0.0011062622l0 -0.109375q-0.046875 -0.7812729 -0.421875 -1.1720352q-0.359375 -0.39076233 -1.0 -0.39099884zm7.9177856 0.29984283q-0.3125 -0.06261444 -0.625 -0.06273651q-1.0625 -3.9672852E-4 -1.4375 0.81196594l0 4.703125l-1.546875 -5.79834E-4l0 -6.875l1.484375 5.569458E-4l0.03125 0.7812576q0.5625 -0.9060364 1.546875 -0.90567017q0.328125 1.2207031E-4 0.546875 0.09395599l0 1.453125zm3.013794 -3.0769958l0 1.65625l1.21875 4.5776367E-4l0 1.15625l-1.21875 -4.5776367E-4l0 3.828125q0 0.390625 0.15625 0.56256104q0.15625 0.17193604 0.5625 0.17208862q0.265625 9.918213E-5 0.53125 -0.062301636l0 1.203125q-0.515625 0.14043427 -1.015625 0.14024353q-1.765625 -6.637573E-4 -1.765625 -1.9537888l0 -3.890625l-1.140625 -4.272461E-4l0 -1.15625l1.140625 4.272461E-4l0 -1.65625l1.53125 5.722046E-4zm6.35376 6.674263q0 -0.421875 -0.34375 -0.6251297q-0.328125 -0.21887207 -1.125 -0.39104462q-0.78125 -0.17217255 -1.3125 -0.4223709q-1.15625 -0.5629349 -1.15625 -1.6098099q0 -0.890625 0.75 -1.4840927q0.75 -0.6090927 1.90625 -0.60865784q1.234375 4.6539307E-4 1.984375 0.61011505q0.765625 0.6096649 0.765625 1.5784149l-1.546875 -5.79834E-4q0 -0.4375 -0.328125 -0.7344971q-0.328125 -0.29699707 -0.875 -0.29720306q-0.515625 -1.9836426E-4 -0.84375 0.23405457q-0.3125 0.23426056 -0.3125 0.62488556q0 0.359375 0.296875 0.56261444q0.3125 0.18761444 1.21875 0.39108276q0.90625 0.2034607 1.421875 0.48490143q0.515625 0.26582336 0.765625 0.6565399q0.25 0.39071655 0.25 0.93759155q0 0.9375 -0.765625 1.5153427q-0.765625 0.5622101 -2.015625 0.5617447q-0.84375 -3.2043457E-4 -1.5 -0.29743958q-0.65625 -0.31274414 -1.03125 -0.8441391q-0.375 -0.5313873 -0.375 -1.1563873l1.5 5.569458E-4q0.03125 0.54689026 0.40625 0.8439026q0.390625 0.2970276 1.015625 0.29725647q0.609375 2.2888184E-4 0.921875 -0.21839905q0.328125 -0.23425293 0.328125 -0.6092529z" fill-rule="nonzero"></path><path fill="#000000" d="m525.8106 121.85583l0 1.65625l1.21875 4.5776367E-4l0 1.15625l-1.21875 -4.5776367E-4l0 3.8281174q0 0.390625 0.15625 0.56256104q0.15625 0.17193604 0.5625 0.17208862q0.265625 1.0681152E-4 0.53125 -0.062301636l0 1.203125q-0.515625 0.14042664 -1.015625 0.14024353q-1.765625 -6.5612793E-4 -1.765625 -1.9537811l0 -3.890625l-1.140625 -4.348755E-4l0 -1.15625l1.140625 4.272461E-4l0 -1.65625l1.53125 5.79834E-4zm2.2131348 5.0320816q0 -1.0 0.390625 -1.812355q0.40625 -0.8123474 1.125 -1.2495804q0.734375 -0.43722534 1.671875 -0.4368744q1.390625 5.264282E-4 2.25 0.90709686q0.875 0.89095306 0.9375 2.375351l0.015625 0.35938263q0 1.015625 -0.390625 1.8123474q-0.390625 0.7967377 -1.125 1.233963q-0.71875 0.43722534 -1.671875 0.4368744q-1.453125 -5.493164E-4 -2.328125 -0.969635q-0.875 -0.96907043 -0.875 -2.5784454l0 -0.078125zm1.546875 0.14120483q0 1.0625 0.4375 1.6564178q0.4375 0.5939026 1.21875 0.59420776q0.78125 2.89917E-4 1.203125 -0.6089325q0.4375 -0.60920715 0.4375 -1.7810822q0 -1.03125 -0.453125 -1.6407928q-0.4375 -0.60954285 -1.203125 -0.60983276q-0.75 -2.746582E-4 -1.203125 0.59329987q-0.4375 0.5935898 -0.4375 1.7967148zm15.204041 -0.7599182l-3.796875 -0.0014266968l0 2.8437424l4.4375 0.0016784668l0 1.28125l-6.046875 -0.0022735596l0 -9.25l6.0 0.0022506714l0 1.296875l-4.390625 -0.0016479492l0 2.5625l3.796875 0.0014266968l0 1.265625zm3.4111328 -2.748726l0.046875 0.7968979q0.765625 -0.9215927 2.0 -0.9211273q2.140625 8.010864E-4 2.1875 2.469574l0 4.53125l-1.546875 -5.79834E-4l0 -4.4531326q0 -0.65625 -0.28125 -0.9688492q-0.28125 -0.3126068 -0.921875 -0.31285095q-0.9375 -3.5095215E-4 -1.390625 0.8432312l0 4.890625l-1.546875 -5.79834E-4l0 -6.875l1.453125 5.41687E-4zm8.412476 4.925041l1.453125 -4.921341l1.59375 6.0272217E-4l-2.390625 6.8741074l-1.328125 -5.0354004E-4l-2.40625 -6.8759003l1.59375 5.950928E-4l1.484375 4.9224396zm3.8737183 -1.5454254q0 -1.0 0.390625 -1.812355q0.40625 -0.8123474 1.125 -1.2495804q0.734375 -0.43722534 1.671875 -0.4368744q1.390625 5.264282E-4 2.25 0.90709686q0.875 0.89095306 0.9375 2.375351l0.015625 0.35938263q0 1.015625 -0.390625 1.8123474q-0.390625 0.7967377 -1.125 1.233963q-0.71875 0.43722534 -1.671875 0.4368744q-1.453125 -5.493164E-4 -2.328125 -0.969635q-0.875 -0.96907043 -0.875 -2.5784454l0 -0.078125zm1.546875 0.14120483q0 1.0625 0.4375 1.6564178q0.4375 0.5939026 1.21875 0.59420776q0.78125 2.89917E-4 1.203125 -0.6089325q0.4375 -0.60920715 0.4375 -1.7810822q0 -1.03125 -0.453125 -1.6407928q-0.4375 -0.60954285 -1.203125 -0.60983276q-0.75 -2.822876E-4 -1.203125 0.59329987q-0.4375 0.5935898 -0.4375 1.7967148zm8.728821 1.1595154l1.40625 -4.671341l1.640625 6.1798096E-4l-2.734375 7.920845q-0.625 1.7341461 -2.125 1.7335815q-0.34375 -1.373291E-4 -0.75 -0.12528992l0 -1.1875l0.296875 0.01574707q0.578125 2.1362305E-4 0.875 -0.21842957q0.296875 -0.20300293 0.46875 -0.7029419l0.21875 -0.5936737l-2.40625 -6.8446503l1.65625 6.1798096E-4l1.453125 4.6724167z" fill-rule="nonzero"></path><path fill="#000000" fill-opacity="0.0" d="m669.2703 266.44357l251.87402 0l0 81.73227l-251.87402 0z" fill-rule="evenodd"></path><path fill="#000000" d="m679.1141 282.24356l-1.890625 0l0 -9.25l1.890625 0l0 9.25zm5.463379 -1.890625q0 -0.34375 -0.328125 -0.53125q-0.328125 -0.203125 -1.078125 -0.359375q-2.4375 -0.5 -2.4375 -2.078125q0 -0.90625 0.75 -1.515625q0.765625 -0.625 1.984375 -0.625q1.3125 0 2.09375 0.625q0.78125 0.609375 0.78125 1.59375l-1.828125 0q0 -0.390625 -0.265625 -0.640625q-0.25 -0.265625 -0.78125 -0.265625q-0.46875 0 -0.71875 0.21875q-0.25 0.203125 -0.25 0.53125q0 0.296875 0.28125 0.484375q0.28125 0.1875 0.96875 0.328125q0.6875 0.125 1.15625 0.296875q1.453125 0.546875 1.453125 1.859375q0 0.9375 -0.8125 1.515625q-0.796875 0.578125 -2.078125 0.578125q-0.859375 0 -1.53125 -0.296875q-0.65625 -0.3125 -1.046875 -0.84375q-0.375 -0.546875 -0.375 -1.171875l1.734375 0q0.03125 0.5 0.359375 0.765625q0.34375 0.25 0.90625 0.25q0.53125 0 0.796875 -0.203125q0.265625 -0.203125 0.265625 -0.515625zm5.337158 -6.671875l0 1.6875l1.171875 0l0 1.359375l-1.171875 0l0 3.421875q0 0.375 0.140625 0.546875q0.140625 0.15625 0.5625 0.15625q0.296875 0 0.53125 -0.03125l0 1.390625q-0.53125 0.15625 -1.109375 0.15625q-1.921875 0 -1.96875 -1.953125l0 -3.6875l-1.0 0l0 -1.359375l1.0 0l0 -1.6875l1.84375 0zm4.237793 8.5625l-1.84375 0l0 -6.875l1.84375 0l0 6.875zm-1.953125 -8.640625q0 -0.421875 0.28125 -0.6875q0.28125 -0.265625 0.75 -0.265625q0.46875 0 0.75 0.265625q0.28125 0.265625 0.28125 0.6875q0 0.40625 -0.28125 0.6875q-0.28125 0.265625 -0.75 0.265625q-0.46875 0 -0.75 -0.265625q-0.28125 -0.28125 -0.28125 -0.6875zm3.2681885 5.140625q0 -1.015625 0.390625 -1.8125q0.390625 -0.8125 1.125 -1.25q0.75 -0.4375 1.71875 -0.4375q1.390625 0 2.265625 0.859375q0.890625 0.84375 0.984375 2.3125l0.015625 0.46875q0 1.578125 -0.890625 2.53125q-0.875 0.953125 -2.359375 0.953125q-1.484375 0 -2.375 -0.953125q-0.875 -0.953125 -0.875 -2.59375l0 -0.078125zm1.828125 0.140625q0 0.96875 0.359375 1.484375q0.375 0.515625 1.0625 0.515625q0.671875 0 1.046875 -0.5q0.375 -0.515625 0.375 -1.640625q0 -0.953125 -0.375 -1.484375q-0.375 -0.53125 -1.0625 -0.53125q-0.671875 0 -1.046875 0.53125q-0.359375 0.515625 -0.359375 1.625zm9.551758 0.140625l-3.5625 0l0 -1.484375l3.5625 0l0 1.484375zm6.9484863 1.3125l-3.34375 0l-0.640625 1.90625l-2.015625 0l3.4375 -9.25l1.765625 0l3.453125 9.25l-2.015625 0l-0.640625 -1.90625zm-2.828125 -1.546875l2.3125 0l-1.15625 -3.453125l-1.15625 3.453125zm10.561584 2.75q-0.671875 0.828125 -1.875 0.828125q-1.109375 0 -1.6875 -0.625q-0.578125 -0.640625 -0.59375 -1.875l0 -4.5l1.84375 0l0 4.4375q0 1.078125 0.96875 1.078125q0.9375 0 1.28125 -0.640625l0 -4.875l1.84375 0l0 6.875l-1.71875 0l-0.0625 -0.703125zm5.551758 -7.859375l0 1.6875l1.171875 0l0 1.359375l-1.171875 0l0 3.421875q0 0.375 0.140625 0.546875q0.140625 0.15625 0.5625 0.15625q0.296875 0 0.53125 -0.03125l0 1.390625q-0.53125 0.15625 -1.109375 0.15625q-1.921875 0 -1.96875 -1.953125l0 -3.6875l-1.0 0l0 -1.359375l1.0 0l0 -1.6875l1.84375 0zm4.097229 2.4375q0.71875 -0.875 1.828125 -0.875q2.234375 0 2.265625 2.59375l0 4.40625l-1.828125 0l0 -4.34375q0 -0.59375 -0.265625 -0.875q-0.25 -0.28125 -0.84375 -0.28125q-0.796875 0 -1.15625 0.625l0 4.875l-1.84375 0l0 -9.75l1.84375 0l0 3.625z" fill-rule="nonzero"></path><path fill="#000000" d="m746.1233 278.8842q0 1.5625 -0.71875 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.25 0 -1.96875 -0.796875l0 3.3125l-1.171875 0l0 -9.515625l1.078125 0l0.046875 0.765625q0.71875 -0.890625 2.0 -0.890625q1.234375 0 1.953125 0.9375q0.71875 0.9375 0.71875 2.59375l0 0.109375zm-1.171875 -0.125q0 -1.171875 -0.5 -1.84375q-0.484375 -0.671875 -1.359375 -0.671875q-1.0625 0 -1.59375 0.953125l0 3.28125q0.53125 0.9375 1.609375 0.9375q0.84375 0 1.34375 -0.671875q0.5 -0.671875 0.5 -1.984375zm6.165039 -2.328125q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm0.88500977 2.3125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm8.991821 1.765625l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm5.4714355 1.59375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.953125 5.203125q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm9.469727 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm8.357971 4.203125q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm10.171814 0q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm5.7160645 1.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.67041 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.4630737 4.21875l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm5.4714355 1.59375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.984436 7.859375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.0701904 0.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm6.79541 2.578125l-3.09375 0l0 -0.953125l3.09375 0l0 0.953125zm2.833191 -5.078125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm2.4475708 5.03125q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm9.163696 -0.09375l-3.09375 0l0 -0.953125l3.09375 0l0 0.953125zm5.239441 1.625q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm5.7160645 1.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.67041 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm3.4630737 4.21875l1.703125 -5.28125l1.203125 0l-2.46875 6.875l-0.890625 0l-2.5 -6.875l1.203125 0l1.75 5.28125zm5.4714355 1.59375l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.984436 7.859375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.0701904 0.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5z" fill-rule="nonzero"></path><path fill="#000000" d="m681.3953 298.24356q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062317 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm12.769226 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm9.063477 -0.09375l-3.09375 0l0 -0.953125l3.09375 0l0 0.953125zm5.473877 2.78125q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm7.112976 -1.15625q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm5.7160645 1.953125q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm7.670471 0.21875q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm8.731323 5.8125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm9.187256 0.21875q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.706787 -7.859375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm3.9318848 2.5q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -9.75l1.171875 0l0 3.71875zm9.012756 6.15625q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838318 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm5.984436 7.859375q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm8.460815 0.828125q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.546631 -7.640625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.921936 5.1875q0 -1.0 0.390625 -1.8125q0.40625 -0.8125 1.109375 -1.25q0.703125 -0.4375 1.609375 -0.4375q1.40625 0 2.265625 0.984375q0.875 0.96875 0.875 2.578125l0 0.078125q0 1.0 -0.390625 1.796875q-0.375 0.796875 -1.09375 1.25q-0.703125 0.4375 -1.640625 0.4375q-1.390625 0 -2.265625 -0.96875q-0.859375 -0.96875 -0.859375 -2.578125l0 -0.078125zm1.1875 0.140625q0 1.140625 0.515625 1.84375q0.53125 0.6875 1.421875 0.6875q0.90625 0 1.421875 -0.703125q0.53125 -0.703125 0.53125 -1.96875q0 -1.125 -0.546875 -1.828125q-0.53125 -0.703125 -1.421875 -0.703125q-0.859375 0 -1.390625 0.703125q-0.53125 0.6875 -0.53125 1.96875zm7.8355713 -3.515625l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm13.778381 6.203125q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm7.113037 -1.15625q0 -0.46875 -0.359375 -0.734375q-0.359375 -0.265625 -1.25 -0.453125q-0.890625 -0.1875 -1.421875 -0.453125q-0.515625 -0.265625 -0.765625 -0.625q-0.25 -0.375 -0.25 -0.890625q0 -0.84375 0.703125 -1.421875q0.71875 -0.59375 1.828125 -0.59375q1.171875 0 1.890625 0.609375q0.734375 0.59375 0.734375 1.546875l-1.1875 0q0 -0.484375 -0.40625 -0.828125q-0.40625 -0.359375 -1.03125 -0.359375q-0.640625 0 -1.0 0.28125q-0.359375 0.28125 -0.359375 0.734375q0 0.421875 0.328125 0.640625q0.34375 0.203125 1.21875 0.40625q0.875 0.203125 1.421875 0.484375q0.546875 0.265625 0.8125 0.65625q0.265625 0.375 0.265625 0.921875q0 0.921875 -0.734375 1.484375q-0.734375 0.546875 -1.90625 0.546875q-0.828125 0 -1.46875 -0.28125q-0.625 -0.296875 -0.984375 -0.8125q-0.359375 -0.53125 -0.359375 -1.140625l1.171875 0q0.03125 0.578125 0.46875 0.9375q0.4375 0.34375 1.171875 0.34375q0.65625 0 1.0625 -0.265625q0.40625 -0.28125 0.40625 -0.734375zm4.1535645 1.828125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875z" fill-rule="nonzero"></path><path fill="#000000" d="m678.2703 307.36856l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm14.806641 6.203125q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.706787 -7.859375l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm6.994385 7.859375q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm7.347412 0.671875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.234131 0.890625l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm11.815186 -8.234375l-2.96875 0l0 8.234375l-1.203125 0l0 -8.234375l-2.96875 0l0 -1.015625l7.140625 0l0 1.015625zm2.7963867 7.234375l4.375 0l0 1.0l-5.59375 0l0 -9.25l1.21875 0l0 8.25zm8.671692 -3.125q-1.5625 -0.453125 -2.28125 -1.109375q-0.71875 -0.65625 -0.71875 -1.609375q0 -1.09375 0.875 -1.8125q0.875 -0.71875 2.265625 -0.71875q0.953125 0 1.703125 0.375q0.75 0.359375 1.15625 1.015625q0.40625 0.640625 0.40625 1.421875l-1.21875 0q0 -0.84375 -0.546875 -1.3125q-0.53125 -0.484375 -1.5 -0.484375q-0.890625 0 -1.40625 0.390625q-0.5 0.390625 -0.5 1.09375q0 0.578125 0.46875 0.96875q0.484375 0.390625 1.640625 0.71875q1.15625 0.3125 1.796875 0.703125q0.65625 0.390625 0.96875 0.921875q0.3125 0.515625 0.3125 1.21875q0 1.125 -0.875 1.796875q-0.875 0.671875 -2.34375 0.671875q-0.953125 0 -1.78125 -0.359375q-0.8125 -0.375 -1.265625 -1.0q-0.4375 -0.640625 -0.4375 -1.4375l1.21875 0q0 0.828125 0.609375 1.3125q0.625 0.484375 1.65625 0.484375q0.96875 0 1.484375 -0.390625q0.515625 -0.390625 0.515625 -1.0625q0 -0.6875 -0.484375 -1.0625q-0.46875 -0.375 -1.71875 -0.734375zm4.9539185 5.96875l-0.65625 -0.453125q0.59375 -0.84375 0.625 -1.71875l0 -1.0625l1.140625 0l0 0.921875q0 0.640625 -0.3125 1.28125q-0.3125 0.640625 -0.796875 1.03125zm12.040649 -3.46875l1.328125 -5.25l1.171875 0l-2.0 6.875l-0.953125 0l-1.671875 -5.203125l-1.625 5.203125l-0.953125 0l-2.0 -6.875l1.171875 0l1.359375 5.140625l1.59375 -5.140625l0.953125 0l1.625 5.25zm5.21875 1.625l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828186 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm3.9318848 2.5q0.78125 -0.96875 2.03125 -0.96875q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -9.75l1.171875 0l0 3.71875zm15.281006 2.671875q0 1.578125 -0.734375 2.53125q-0.71875 0.953125 -1.9375 0.953125q-1.296875 0 -2.0 -0.921875l-0.0625 0.796875l-1.078125 0l0 -9.75l1.171875 0l0 3.640625q0.71875 -0.890625 1.96875 -0.890625q1.25 0 1.953125 0.953125q0.71875 0.9375 0.71875 2.59375l0 0.09375zm-1.171875 -0.125q0 -1.203125 -0.46875 -1.859375q-0.453125 -0.65625 -1.328125 -0.65625q-1.15625 0 -1.671875 1.078125l0 2.96875q0.546875 1.078125 1.6875 1.078125q0.84375 0 1.3125 -0.640625q0.46875 -0.65625 0.46875 -1.96875zm7.07135 2.8125q-0.6875 0.796875 -2.015625 0.796875q-1.09375 0 -1.671875 -0.640625q-0.5625 -0.640625 -0.578125 -1.890625l0 -4.46875l1.171875 0l0 4.4375q0 1.5625 1.28125 1.5625q1.34375 0 1.78125 -1.0l0 -5.0l1.171875 0l0 6.875l-1.109375 0l-0.03125 -0.671875zm4.394226 0.671875l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.515686 8.6875l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm3.546936 -8.53125l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.19751 5.078125l-3.09375 0l0 -0.953125l3.09375 0l0 0.953125zm2.520691 3.453125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.343811 1.8125l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm10.825256 6.875l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm2.953186 5.203125q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm9.469727 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838318 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.04126 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm4.828186 0.15625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm5.01001 6.8125l1.59375 -5.15625l1.265625 0l-2.765625 7.9375q-0.640625 1.71875 -2.046875 1.71875l-0.21875 -0.03125l-0.4375 -0.078125l0 -0.953125l0.3125 0.03125q0.609375 0 0.9375 -0.25q0.328125 -0.234375 0.546875 -0.875l0.265625 -0.703125l-2.453125 -6.796875l1.28125 0l1.71875 5.15625zm11.590027 1.71875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062256 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm5.963257 3.390625q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875z" fill-rule="nonzero"></path><path fill="#000000" d="m679.91095 329.41544q0.625 0 1.09375 -0.375q0.484375 -0.390625 0.53125 -0.96875l1.109375 0q-0.03125 0.59375 -0.40625 1.125q-0.375 0.53125 -1.0 0.859375q-0.625 0.3125 -1.328125 0.3125q-1.40625 0 -2.234375 -0.9375q-0.828125 -0.9375 -0.828125 -2.5625l0 -0.1875q0 -1.015625 0.375 -1.78125q0.375 -0.78125 1.0625 -1.21875q0.6875 -0.4375 1.625 -0.4375q1.15625 0 1.921875 0.703125q0.765625 0.6875 0.8125 1.796875l-1.109375 0q-0.046875 -0.671875 -0.515625 -1.09375q-0.453125 -0.4375 -1.109375 -0.4375q-0.890625 0 -1.390625 0.65625q-0.484375 0.640625 -0.484375 1.859375l0 0.21875q0 1.1875 0.484375 1.828125q0.484375 0.640625 1.390625 0.640625zm7.5389404 -4.984375q-0.265625 -0.046875 -0.578125 -0.046875q-1.15625 0 -1.5625 0.984375l0 4.875l-1.171875 0l0 -6.875l1.140625 0l0.015625 0.796875q0.578125 -0.921875 1.640625 -0.921875q0.34375 0 0.515625 0.09375l0 1.09375zm4.04126 5.9375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm4.07666 2.546875q0 -1.59375 0.734375 -2.546875q0.75 -0.96875 1.96875 -0.96875q1.203125 0 1.90625 0.828125l0 -3.578125l1.1875 0l0 9.75l-1.09375 0l-0.046875 -0.734375q-0.703125 0.859375 -1.96875 0.859375q-1.1875 0 -1.9375 -0.96875q-0.75 -0.984375 -0.75 -2.5625l0 -0.078125zm1.171875 0.125q0 1.171875 0.484375 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.625 -1.0l0 -3.15625q-0.515625 -0.96875 -1.609375 -0.96875q-0.859375 0 -1.34375 0.671875q-0.484375 0.65625 -0.484375 1.96875zm9.469727 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838257 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm4.041321 8.53125l-1.1875 0l0 -6.875l1.1875 0l0 6.875zm-1.28125 -8.6875q0 -0.28125 0.171875 -0.484375q0.1875 -0.203125 0.53125 -0.203125q0.34375 0 0.515625 0.203125q0.171875 0.203125 0.171875 0.484375q0 0.28125 -0.171875 0.46875q-0.171875 0.1875 -0.515625 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.1875 -0.171875 -0.46875zm7.46875 8.6875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.234192 0.890625l-1.1875 0l0 -9.75l1.1875 0l0 9.75zm6.3619995 -6.875l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm14.806641 6.875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm6.062317 -5.984375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm10.478882 6.875q-0.09375 -0.203125 -0.15625 -0.71875q-0.828125 0.84375 -1.953125 0.84375q-1.015625 0 -1.671875 -0.5625q-0.65625 -0.578125 -0.65625 -1.46875q0 -1.078125 0.8125 -1.671875q0.828125 -0.59375 2.296875 -0.59375l1.140625 0l0 -0.53125q0 -0.609375 -0.375 -0.96875q-0.359375 -0.375 -1.078125 -0.375q-0.625 0 -1.046875 0.3125q-0.421875 0.3125 -0.421875 0.765625l-1.1875 0q0 -0.515625 0.359375 -0.984375q0.375 -0.484375 1.0 -0.765625q0.625 -0.28125 1.375 -0.28125q1.1875 0 1.859375 0.59375q0.671875 0.59375 0.703125 1.640625l0 3.15625q0 0.953125 0.234375 1.5l0 0.109375l-1.234375 0zm-1.9375 -0.890625q0.546875 0 1.03125 -0.28125q0.5 -0.296875 0.71875 -0.75l0 -1.40625l-0.90625 0q-2.171875 0 -2.171875 1.265625q0 0.546875 0.375 0.859375q0.375 0.3125 0.953125 0.3125zm4.671631 -2.59375q0 -1.609375 0.734375 -2.5625q0.75 -0.953125 1.96875 -0.953125q1.265625 0 1.96875 0.890625l0.0625 -0.765625l1.0625 0l0 6.703125q0 1.34375 -0.796875 2.109375q-0.78125 0.765625 -2.109375 0.765625q-0.75 0 -1.46875 -0.328125q-0.703125 -0.3125 -1.078125 -0.859375l0.609375 -0.703125q0.765625 0.9375 1.859375 0.9375q0.84375 0 1.328125 -0.484375q0.484375 -0.484375 0.484375 -1.359375l0 -0.59375q-0.703125 0.8125 -1.921875 0.8125q-1.21875 0 -1.96875 -0.96875q-0.734375 -0.96875 -0.734375 -2.640625zm1.1875 0.125q0 1.15625 0.46875 1.828125q0.484375 0.65625 1.328125 0.65625q1.109375 0 1.640625 -1.0l0 -3.140625q-0.546875 -0.984375 -1.625 -0.984375q-0.859375 0 -1.34375 0.671875q-0.46875 0.65625 -0.46875 1.96875zm9.415039 3.484375q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467346 -0.84375l0.03125 0.765625q0.75 -0.890625 2.03125 -0.890625q1.4375 0 1.96875 1.109375q0.328125 -0.5 0.875 -0.796875q0.5625 -0.3125 1.3125 -0.3125q2.25 0 2.296875 2.390625l0 4.609375l-1.171875 0l0 -4.53125q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.375 -1.125 -0.375q-0.65625 0 -1.09375 0.390625q-0.421875 0.390625 -0.5 1.046875l0 4.5625l-1.171875 0l0 -4.5q0 -1.5 -1.46875 -1.5q-1.15625 0 -1.578125 0.984375l0 5.015625l-1.1875 0l0 -6.875l1.125 0zm13.416016 7.0q-1.390625 0 -2.265625 -0.90625q-0.875 -0.921875 -0.875 -2.46875l0 -0.203125q0 -1.03125 0.390625 -1.828125q0.390625 -0.8125 1.09375 -1.265625q0.703125 -0.453125 1.515625 -0.453125q1.34375 0 2.078125 0.890625q0.75 0.875 0.75 2.515625l0 0.5l-4.65625 0q0.03125 1.015625 0.59375 1.640625q0.5625 0.625 1.4375 0.625q0.625 0 1.046875 -0.25q0.4375 -0.265625 0.765625 -0.6875l0.71875 0.5625q-0.859375 1.328125 -2.59375 1.328125zm-0.140625 -6.15625q-0.71875 0 -1.203125 0.515625q-0.46875 0.515625 -0.59375 1.453125l3.453125 0l0 -0.09375q-0.0625 -0.890625 -0.5 -1.375q-0.421875 -0.5 -1.15625 -0.5zm5.467285 -0.84375l0.03125 0.875q0.796875 -1.0 2.0625 -1.0q2.171875 0 2.203125 2.46875l0 4.53125l-1.1875 0l0 -4.546875q0 -0.734375 -0.34375 -1.09375q-0.328125 -0.359375 -1.03125 -0.359375q-0.5625 0 -1.0 0.3125q-0.4375 0.296875 -0.671875 0.796875l0 4.890625l-1.171875 0l0 -6.875l1.109375 0zm7.838257 -1.65625l0 1.65625l1.28125 0l0 0.921875l-1.28125 0l0 4.25q0 0.421875 0.171875 0.625q0.171875 0.203125 0.578125 0.203125q0.203125 0 0.5625 -0.078125l0 0.953125q-0.46875 0.125 -0.90625 0.125q-0.78125 0 -1.1875 -0.46875q-0.390625 -0.484375 -0.390625 -1.359375l0 -4.25l-1.25 0l0 -0.921875l1.25 0l0 -1.65625l1.171875 0zm2.7912598 7.921875q0 -0.3125 0.171875 -0.515625q0.1875 -0.203125 0.546875 -0.203125q0.359375 0 0.546875 0.203125q0.1875 0.203125 0.1875 0.515625q0 0.28125 -0.1875 0.484375q-0.1875 0.1875 -0.546875 0.1875q-0.359375 0 -0.546875 -0.1875q-0.171875 -0.203125 -0.171875 -0.484375z" fill-rule="nonzero"></path></g></svg>
-
+<svg version="1.1" viewBox="0.0 0.0 960.0 540.0" fill="none" stroke="none" stroke-linecap="square" stroke-miterlimit="10" xmlns:xlink="http://www.w3.org/1999/xlink" xmlns="http://www.w3.org/2000/svg"><clipPath id="g36f6282d6c_0_45.0"><path d="m0 0l960.0 0l0 540.0l-960.0 0l0 -540.0z" clip-rule="nonzero"/></clipPath><g clip-path="url(#g36f6282d6c_0_45.0)"><path fill="#ffffff" d="m0 0l960.0 0l0 540.0l-960.0 0z" fill-rule="evenodd"/><path fill="#bfbfbf" d="m438.45914 242.05052l0 0c19.131104 0 34.639954 15.508835 34.639954 34.63997l0 143.35733l0 0c0 9.187103 -3.6495361 17.997925 -10.145813 24.494171c-6.4962463 6.4962463 -15.307068 10.145813 -24.49414 10.145813l-138.55576 0c-19.131134 0 -34.639954 -15.50885 -34.639954 -34.639984l0 -143.35733c0 -19.131134 15.50882 -34.63997 34.639954 -34.63997z" fill-rule="evenodd"/><path fill="#ffffff" d="m433.48206 250.02267l0 0c13.225525 0 23.94693 10.721405 23.94693 23.94696l0 128.36197c0 6.3511353 -2.5229492 12.442139 -7.0138855 16.933075c-4.4909363 4.490906 -10.58194 7.0138855 -16.933044 7.0138855l-95.78494 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94696l0 -128.36197l0 0c0 -13.225555 10.721436 -23.94696 23.94696 -23.94696z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m433.48206 250.02267l0 0c13.225525 0 23.94693 10.721405 23.94693 23.94696l0 128.36197c0 6.3511353 -2.5229492 12.442139 -7.0138855 16.933075c-4.4909363 4.490906 -10.58194 7.0138855 -16.933044 7.0138855l-95.78494 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94696l0 -128.36197l0 0c0 -13.225555 10.721436 -23.94696 23.94696 -23.94696z" fill-rule="evenodd"/><path fill="#ffffff" d="m411.64536 263.20453l0 0c13.225555 0 23.94696 10.721436 23.94696 23.94696l0 122.85861c0 6.3511353 -2.5229797 12.442139 -7.0138855 16.933044c-4.4909363 4.4909363 -10.58194 7.013916 -16.933075 7.013916l-95.78491 0c-13.225555 0 -23.94696 -10.721436 -23.94696 -23.94696l0 -122.85861c0 -13.225525 10.721405 -23.94696 23.94696 -23.94696z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m411.64536 263.20453l0 0c13.225555 0 23.94696 10.721436 23.94696 23.94696l0 122.85861c0 6.3511353 -2.5229797 12.442139 -7.0138855 16.933044c-4.4909363 4.4909363 -10.58194 7.013916 -16.933075 7.013916l-95.78491 0c-13.225555 0 -23.94696 -10.721436 -23.94696 -23.94696l0 -122.85861c0 -13.225525 10.721405 -23.94696 23.94696 -23.94696z" fill-rule="evenodd"/><path fill="#ffffff" d="m392.75726 276.36182l0 0c13.225525 0 23.94693 10.721405 23.94693 23.94693l0 114.43735c0 6.3511047 -2.5229492 12.442108 -7.0138855 16.933044c-4.4909363 4.490906 -10.58194 7.0138855 -16.933044 7.0138855l-95.78494 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94693l0 -114.43735c0 -13.225525 10.721436 -23.94693 23.94696 -23.94693z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m392.75726 276.36182l0 0c13.225525 0 23.94693 10.721405 23.94693 23.94693l0 114.43735c0 6.3511047 -2.5229492 12.442108 -7.0138855 16.933044c-4.4909363 4.490906 -10.58194 7.0138855 -16.933044 7.0138855l-95.78494 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94693l0 -114.43735c0 -13.225525 10.721436 -23.94693 23.94696 -23.94693z" fill-rule="evenodd"/><path fill="#d9ead3" d="m287.08615 390.77658l103.38229 0l0 32.281555l-103.38229 0z" fill-rule="evenodd"/><path fill="#000000" d="m328.8683 409.8111q0 -0.4375 -0.34375 -0.65625q-0.34375 -0.21875 -1.15625 -0.390625q-0.796875 -0.171875 -1.34375 -0.421875q-1.1875 -0.578125 -1.1875 -1.65625q0 -0.921875 0.765625 -1.53125q0.78125 -0.609375 1.953125 -0.609375q1.265625 0 2.046875 0.625q0.78125 0.625 0.78125 1.625l-1.59375 0q0 -0.453125 -0.34375 -0.75q-0.328125 -0.3125 -0.890625 -0.3125q-0.515625 0 -0.84375 0.25q-0.328125 0.234375 -0.328125 0.625q0 0.375 0.296875 0.578125q0.3125 0.203125 1.234375 0.40625q0.9375 0.203125 1.46875 0.484375q0.53125 0.28125 0.78125 0.6875q0.265625 0.390625 0.265625 0.953125q0 0.953125 -0.796875 1.546875q-0.78125 0.578125 -2.046875 0.578125q-0.875 0 -1.546875 -0.3125q-0.671875 -0.3125 -1.0625 -0.859375q-0.375 -0.546875 -0.375 -1.171875l1.546875 0q0.03125 0.5625 0.421875 0.875q0.390625 0.296875 1.03125 0.296875q0.625 0 0.9375 -0.234375q0.328125 -0.25 0.328125 -0.625zm5.42572 -0.09375l1.484375 -5.046875l1.640625 0l-2.453125 7.046875l-1.359375 0l-2.46875 -7.046875l1.640625 0l1.515625 5.046875zm6.9987183 0.875q0.59375 0 0.984375 -0.34375q0.390625 -0.359375 0.421875 -0.859375l1.484375 0q-0.03125 0.65625 -0.421875 1.234375q-0.375 0.5625 -1.03125 0.890625q-0.65625 0.328125 -1.421875 0.328125q-1.46875 0 -2.34375 -0.953125q-0.859375 -0.953125 -0.859375 -2.640625l0 -0.15625q0 -1.609375 0.859375 -2.578125q0.859375 -0.96875 2.34375 -0.96875q1.25 0 2.03125 0.734375q0.796875 0.734375 0.84375 1.921875l-1.484375 0q-0.03125 -0.609375 -0.421875 -1.0q-0.390625 -0.390625 -0.984375 -0.390625q-0.765625 0 -1.1875 0.5625q-0.40625 0.546875 -0.421875 1.6875l0 0.25q0 1.140625 0.40625 1.71875q0.421875 0.5625 1.203125 0.5625zm9.53894 -1.078125l-3.671875 0l-0.765625 2.203125l-1.71875 0l3.59375 -9.46875l1.46875 0l3.59375 9.46875l-1.71875 0l-0.78125 -2.203125zm-3.203125 -1.328125l2.75 0l-1.375 -3.9375l-1.375 3.9375z" fill-rule="nonzero"/><path fill="#cfe2f3" d="m288.01102 312.06778l101.53552 0l0 33.315765l-101.53552 0z" fill-rule="evenodd"/><path fill="#000000" d="m329.2631 330.07254q0 1.640625 -0.734375 2.609375q-0.734375 0.96875 -1.984375 0.96875q-1.171875 0 -1.859375 -0.75l0 3.328125l-1.578125 0l0 -9.75l1.453125 0l0.0625 0.71875q0.703125 -0.84375 1.890625 -0.84375q1.296875 0 2.015625 0.96875q0.734375 0.953125 0.734375 2.65625l0 0.09375zm-1.5625 -0.125q0 -1.0625 -0.421875 -1.671875q-0.421875 -0.625 -1.203125 -0.625q-0.96875 0 -1.390625 0.796875l0 3.125q0.421875 0.828125 1.40625 0.828125q0.75 0 1.171875 -0.609375q0.4375 -0.609375 0.4375 -1.84375zm6.5973206 -2.015625q-0.3125 -0.0625 -0.640625 -0.0625q-1.09375 0 -1.46875 0.84375l0 4.8125l-1.578125 0l0 -7.046875l1.5 0l0.046875 0.796875q0.5625 -0.921875 1.578125 -0.921875q0.34375 0 0.5625 0.09375l0 1.484375zm0.70129395 2.015625q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.140625 -1.265625q0.75 -0.453125 1.71875 -0.453125q1.421875 0 2.3125 0.921875q0.890625 0.90625 0.953125 2.4375l0.015625 0.359375q0 1.046875 -0.40625 1.875q-0.390625 0.8125 -1.140625 1.265625q-0.75 0.4375 -1.71875 0.4375q-1.5 0 -2.390625 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.578125 0.125q0 1.09375 0.453125 1.71875q0.453125 0.609375 1.25 0.609375q0.796875 0 1.234375 -0.625q0.453125 -0.625 0.453125 -1.828125q0 -1.078125 -0.46875 -1.703125q-0.453125 -0.625 -1.234375 -0.625q-0.78125 0 -1.234375 0.625q-0.453125 0.609375 -0.453125 1.828125zm8.838196 -1.265625l1.328125 -2.328125l1.765625 0l-2.15625 3.46875l2.234375 3.578125l-1.75 0l-1.40625 -2.40625l-1.40625 2.40625l-1.75 0l2.21875 -3.578125l-2.140625 -3.46875l1.75 0l1.3125 2.328125zm6.6405945 2.453125l1.421875 -4.78125l1.6875 0l-2.796875 8.109375q-0.640625 1.78125 -2.1875 1.78125q-0.34375 0 -0.765625 -0.109375l0 -1.234375l0.296875 0.015625q0.609375 0 0.90625 -0.21875q0.296875 -0.203125 0.484375 -0.71875l0.21875 -0.609375l-2.46875 -7.015625l1.703125 0l1.5 4.78125z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m338.77878 345.38354l0 45.393646" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m338.77878 348.8106l0 38.53949" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m338.77878 348.8106l1.1246033 1.1246033l-1.1246033 -3.0897827l-1.1245728 3.0897827z" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m338.77878 387.3501l-1.1245728 -1.1245728l1.1245728 3.0897522l1.1246033 -3.0897522z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m274.31006 275.16312l56.28961 0l0 27.59079l-56.28961 0z" fill-rule="evenodd"/><path fill="#000000" d="m282.3413 290.96313l0 -9.546875l3.59375 0q0.953125 0 1.453125 0.09375q0.703125 0.125 1.171875 0.453125q0.484375 0.328125 0.765625 0.921875q0.296875 0.59375 0.296875 1.296875q0 1.21875 -0.78125 2.0625q-0.765625 0.84375 -2.796875 0.84375l-2.4375 0l0 3.875l-1.265625 0zm1.265625 -5.0l2.453125 0q1.234375 0 1.75 -0.453125q0.515625 -0.46875 0.515625 -1.28125q0 -0.609375 -0.3125 -1.03125q-0.296875 -0.421875 -0.796875 -0.5625q-0.3125 -0.09375 -1.171875 -0.09375l-2.4375 0l0 3.421875zm7.030365 1.546875q0 -1.921875 1.078125 -2.84375q0.890625 -0.765625 2.171875 -0.765625q1.421875 0 2.328125 0.9375q0.90625 0.921875 0.90625 2.578125q0 1.328125 -0.40625 2.09375q-0.390625 0.765625 -1.15625 1.1875q-0.765625 0.421875 -1.671875 0.421875q-1.453125 0 -2.359375 -0.921875q-0.890625 -0.9375 -0.890625 -2.6875zm1.203125 0q0 1.328125 0.578125 1.984375q0.59375 0.65625 1.46875 0.65625q0.875 0 1.453125 -0.65625q0.578125 -0.671875 0.578125 -2.03125q0 -1.28125 -0.59375 -1.9375q-0.578125 -0.65625 -1.4375 -0.65625q-0.875 0 -1.46875 0.65625q-0.578125 0.65625 -0.578125 1.984375zm11.131226 3.453125l0 -0.875q-0.65625 1.03125 -1.9375 1.03125q-0.8125 0 -1.515625 -0.453125q-0.6875 -0.453125 -1.078125 -1.265625q-0.375 -0.828125 -0.375 -1.890625q0 -1.03125 0.34375 -1.875q0.34375 -0.84375 1.03125 -1.28125q0.703125 -0.453125 1.546875 -0.453125q0.625 0 1.109375 0.265625q0.5 0.25 0.796875 0.671875l0 -3.421875l1.171875 0l0 9.546875l-1.09375 0zm-3.703125 -3.453125q0 1.328125 0.5625 1.984375q0.5625 0.65625 1.328125 0.65625q0.765625 0 1.296875 -0.625q0.53125 -0.625 0.53125 -1.90625q0 -1.421875 -0.546875 -2.078125q-0.546875 -0.671875 -1.34375 -0.671875q-0.78125 0 -1.3125 0.640625q-0.515625 0.625 -0.515625 2.0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m104.03564 330.90485l183.97537 -2.1791992" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m104.03564 330.90485l180.54855 -2.1385803" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m284.5842 328.76627l-1.111206 1.1378174l3.076233 -1.1611023l-3.1028748 -1.0879211z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m286.4721 450.40344l106.263245 0l0 27.59079l-106.263245 0z" fill-rule="evenodd"/><path fill="#000000" d="m299.39398 463.76596q0 -0.625 -0.453125 -0.953125q-0.4375 -0.34375 -1.578125 -0.6875q-1.140625 -0.359375 -1.828125 -0.78125q-1.28125 -0.8125 -1.28125 -2.109375q0 -1.15625 0.921875 -1.890625q0.9375 -0.75 2.421875 -0.75q1.0 0 1.765625 0.375q0.78125 0.359375 1.21875 1.03125q0.453125 0.671875 0.453125 1.5l-1.640625 0q0 -0.75 -0.46875 -1.171875q-0.46875 -0.421875 -1.328125 -0.421875q-0.8125 0 -1.265625 0.359375q-0.4375 0.34375 -0.4375 0.953125q0 0.515625 0.484375 0.875q0.484375 0.34375 1.578125 0.671875q1.109375 0.328125 1.78125 0.75q0.671875 0.421875 0.984375 0.96875q0.3125 0.53125 0.3125 1.265625q0 1.1875 -0.90625 1.890625q-0.90625 0.6875 -2.46875 0.6875q-1.03125 0 -1.890625 -0.375q-0.859375 -0.375 -1.34375 -1.046875q-0.46875 -0.671875 -0.46875 -1.5625l1.640625 0q0 0.796875 0.53125 1.25q0.546875 0.4375 1.53125 0.4375q0.859375 0 1.296875 -0.34375q0.4375 -0.359375 0.4375 -0.921875zm6.0281067 2.5625q-1.5 0 -2.4375 -0.9375q-0.921875 -0.953125 -0.921875 -2.53125l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5 1.28125 0.5q1.09375 0 1.765625 -0.890625l0.859375 0.8125q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.03125q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm7.9334106 0.3125q-0.3125 -0.0625 -0.640625 -0.0625q-1.09375 0 -1.46875 0.84375l0 4.8125l-1.578125 0l0 -7.046875l1.5 0l0.046875 0.796875q0.5625 -0.921875 1.578125 -0.921875q0.34375 0 0.5625 0.09375l0 1.484375zm3.482544 3.59375l1.484375 -5.046875l1.640625 0l-2.453125 7.046875l-1.359375 0l-2.46875 -7.046875l1.640625 0l1.515625 5.046875zm5.795624 2.0l-1.59375 0l0 -7.046875l1.59375 0l0 7.046875zm-1.6875 -8.875q0 -0.359375 0.234375 -0.59375q0.234375 -0.25 0.65625 -0.25q0.4375 0 0.671875 0.25q0.234375 0.234375 0.234375 0.59375q0 0.359375 -0.234375 0.609375q-0.234375 0.234375 -0.671875 0.234375q-0.421875 0 -0.65625 -0.234375q-0.234375 -0.25 -0.234375 -0.609375zm6.2942505 7.75q0.59375 0 0.984375 -0.34375q0.390625 -0.359375 0.421875 -0.859375l1.484375 0q-0.03125 0.65625 -0.421875 1.234375q-0.375 0.5625 -1.03125 0.890625q-0.65625 0.328125 -1.421875 0.328125q-1.46875 0 -2.34375 -0.953125q-0.859375 -0.953125 -0.859375 -2.640625l0 -0.15625q0 -1.609375 0.859375 -2.578125q0.859375 -0.96875 2.34375 -0.96875q1.25 0 2.03125 0.734375q0.796875 0.734375 0.84375 1.921875l-1.484375 0q-0.03125 -0.609375 -0.421875 -1.0q-0.390625 -0.390625 -0.984375 -0.390625q-0.765625 0 -1.1875 0.5625q-0.40625 0.546875 -0.421875 1.6875l0 0.25q0 1.140625 0.40625 1.71875q0.421875 0.5625 1.203125 0.5625zm7.1795654 1.25q-1.5 0 -2.4375 -0.9375q-0.921875 -0.953125 -0.921875 -2.53125l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5 1.28125 0.5q1.09375 0 1.765625 -0.890625l0.859375 0.8125q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.03125q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm13.018036 3.703125l-3.671875 0l-0.765625 2.203125l-1.71875 0l3.59375 -9.46875l1.46875 0l3.59375 9.46875l-1.71875 0l-0.78125 -2.203125zm-3.203125 -1.328125l2.75 0l-1.375 -3.9375l-1.375 3.9375z" fill-rule="nonzero"/><path fill="#bfbfbf" d="m818.8941 239.13261l0 0c19.131104 0 34.639954 15.50885 34.639954 34.63997l0 146.27524l0 0c0 9.187103 -3.6495361 17.997925 -10.145813 24.494171c-6.496277 6.4962463 -15.307068 10.145813 -24.49414 10.145813l-138.55573 0c-19.131165 0 -34.640015 -15.50885 -34.640015 -34.639984l0 -146.27524c0 -19.131119 15.50885 -34.63997 34.640015 -34.63997z" fill-rule="evenodd"/><path fill="#ffffff" d="m782.7927 248.83347l0 0c13.225525 0 23.94696 10.721405 23.94696 23.94693l0 129.54395c0 6.3511047 -2.5229492 12.442108 -7.013916 16.933044c-4.490906 4.490906 -10.581909 7.0138855 -16.933044 7.0138855l-95.78491 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94693l0 -129.54395l0 0c0 -13.225525 10.721436 -23.94693 23.94696 -23.94693z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m782.7927 248.83347l0 0c13.225525 0 23.94696 10.721405 23.94696 23.94693l0 129.54395c0 6.3511047 -2.5229492 12.442108 -7.013916 16.933044c-4.490906 4.490906 -10.581909 7.0138855 -16.933044 7.0138855l-95.78491 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94693l0 -129.54395l0 0c0 -13.225525 10.721436 -23.94693 23.94696 -23.94693z" fill-rule="evenodd"/><path fill="#ffffff" d="m802.933 262.01535l0 0c13.225525 0 23.94696 10.721405 23.94696 23.94696l0 124.04053c0 6.3511353 -2.5229492 12.442139 -7.013916 16.933044c-4.490906 4.4909363 -10.581909 7.013916 -16.933044 7.013916l-95.78491 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94696l0 -124.04053c0 -13.225555 10.721436 -23.94696 23.94696 -23.94696z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m802.933 262.01535l0 0c13.225525 0 23.94696 10.721405 23.94696 23.94696l0 124.04053c0 6.3511353 -2.5229492 12.442139 -7.013916 16.933044c-4.490906 4.4909363 -10.581909 7.013916 -16.933044 7.013916l-95.78491 0c-13.225525 0 -23.94696 -10.721405 -23.94696 -23.94696l0 -124.04053c0 -13.225555 10.721436 -23.94696 23.94696 -23.94696z" fill-rule="evenodd"/><path fill="#ffffff" d="m820.5356 276.1641l0 0c13.225525 0 23.94696 10.721436 23.94696 23.94696l0 111.48248c0 6.3511353 -2.5230103 12.442139 -7.013916 16.933044c-4.490906 4.4909363 -10.581909 7.013916 -16.933044 7.013916l-95.78497 0c-13.225525 0 -23.9469 -10.721405 -23.9469 -23.94696l0 -111.48248c0 -13.225525 10.7213745 -23.94696 23.9469 -23.94696z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m820.5356 276.1641l0 0c13.225525 0 23.94696 10.721436 23.94696 23.94696l0 111.48248c0 6.3511353 -2.5230103 12.442139 -7.013916 16.933044c-4.490906 4.4909363 -10.581909 7.013916 -16.933044 7.013916l-95.78497 0c-13.225525 0 -23.9469 -10.721405 -23.9469 -23.94696l0 -111.48248c0 -13.225525 10.7213745 -23.94696 23.9469 -23.94696z" fill-rule="evenodd"/><path fill="#d9ead3" d="m723.7412 390.77716l103.38226 0l0 32.281555l-103.38226 0z" fill-rule="evenodd"/><path fill="#000000" d="m765.75433 409.8117q0 -0.4375 -0.34375 -0.65625q-0.34375 -0.21875 -1.15625 -0.390625q-0.796875 -0.171875 -1.34375 -0.421875q-1.1875 -0.578125 -1.1875 -1.65625q0 -0.921875 0.765625 -1.53125q0.78125 -0.609375 1.953125 -0.609375q1.265625 0 2.046875 0.625q0.78125 0.625 0.78125 1.625l-1.59375 0q0 -0.453125 -0.34375 -0.75q-0.328125 -0.3125 -0.890625 -0.3125q-0.515625 0 -0.84375 0.25q-0.328125 0.234375 -0.328125 0.625q0 0.375 0.296875 0.578125q0.3125 0.203125 1.234375 0.40625q0.9375 0.203125 1.46875 0.484375q0.53125 0.28125 0.78125 0.6875q0.265625 0.390625 0.265625 0.953125q0 0.953125 -0.796875 1.546875q-0.78125 0.578125 -2.046875 0.578125q-0.875 0 -1.546875 -0.3125q-0.671875 -0.3125 -1.0625 -0.859375q-0.375 -0.546875 -0.375 -1.171875l1.546875 0q0.03125 0.5625 0.421875 0.875q0.390625 0.296875 1.03125 0.296875q0.625 0 0.9375 -0.234375q0.328125 -0.25 0.328125 -0.625zm5.42572 -0.09375l1.484375 -5.046875l1.640625 0l-2.453125 7.046875l-1.359375 0l-2.46875 -7.046875l1.640625 0l1.515625 5.046875zm6.9987183 0.875q0.59375 0 0.984375 -0.34375q0.390625 -0.359375 0.421875 -0.859375l1.484375 0q-0.03125 0.65625 -0.421875 1.234375q-0.375 0.5625 -1.03125 0.890625q-0.65625 0.328125 -1.421875 0.328125q-1.46875 0 -2.34375 -0.953125q-0.859375 -0.953125 -0.859375 -2.640625l0 -0.15625q0 -1.609375 0.859375 -2.578125q0.859375 -0.96875 2.34375 -0.96875q1.25 0 2.03125 0.734375q0.796875 0.734375 0.84375 1.921875l-1.484375 0q-0.03125 -0.609375 -0.421875 -1.0q-0.390625 -0.390625 -0.984375 -0.390625q-0.765625 0 -1.1875 0.5625q-0.40625 0.546875 -0.421875 1.6875l0 0.25q0 1.140625 0.40625 1.71875q0.421875 0.5625 1.203125 0.5625zm4.2420654 1.125l0 -9.46875l3.234375 0q1.609375 0 2.453125 0.640625q0.84375 0.640625 0.84375 1.921875q0 0.640625 -0.359375 1.171875q-0.34375 0.515625 -1.015625 0.796875q0.765625 0.21875 1.171875 0.796875q0.421875 0.5625 0.421875 1.375q0 1.328125 -0.859375 2.046875q-0.84375 0.71875 -2.4375 0.71875l-3.453125 0zm1.640625 -4.28125l0 2.96875l1.828125 0q0.78125 0 1.203125 -0.375q0.4375 -0.390625 0.4375 -1.078125q0 -1.484375 -1.5 -1.515625l-1.96875 0zm0 -1.203125l1.609375 0q0.765625 0 1.203125 -0.34375q0.4375 -0.359375 0.4375 -0.984375q0 -0.703125 -0.40625 -1.015625q-0.390625 -0.3125 -1.25 -0.3125l-1.59375 0l0 2.65625z" fill-rule="nonzero"/><path fill="#cfe2f3" d="m723.5281 312.06638l101.53552 0l0 33.315765l-101.53552 0z" fill-rule="evenodd"/><path fill="#000000" d="m764.78015 330.07114q0 1.640625 -0.734375 2.609375q-0.734375 0.96875 -1.984375 0.96875q-1.171875 0 -1.859375 -0.75l0 3.328125l-1.578125 0l0 -9.75l1.453125 0l0.0625 0.71875q0.703125 -0.84375 1.890625 -0.84375q1.296875 0 2.015625 0.96875q0.734375 0.953125 0.734375 2.65625l0 0.09375zm-1.5625 -0.125q0 -1.0625 -0.421875 -1.671875q-0.421875 -0.625 -1.203125 -0.625q-0.96875 0 -1.390625 0.796875l0 3.125q0.421875 0.828125 1.40625 0.828125q0.75 0 1.171875 -0.609375q0.4375 -0.609375 0.4375 -1.84375zm6.59729 -2.015625q-0.3125 -0.0625 -0.640625 -0.0625q-1.09375 0 -1.46875 0.84375l0 4.8125l-1.578125 0l0 -7.046875l1.5 0l0.046875 0.796875q0.5625 -0.921875 1.578125 -0.921875q0.34375 0 0.5625 0.09375l0 1.484375zm0.70129395 2.015625q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.140625 -1.265625q0.75 -0.453125 1.71875 -0.453125q1.421875 0 2.3125 0.921875q0.890625 0.90625 0.953125 2.4375l0.015625 0.359375q0 1.046875 -0.40625 1.875q-0.390625 0.8125 -1.140625 1.265625q-0.75 0.4375 -1.71875 0.4375q-1.5 0 -2.390625 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.578125 0.125q0 1.09375 0.453125 1.71875q0.453125 0.609375 1.25 0.609375q0.796875 0 1.234375 -0.625q0.453125 -0.625 0.453125 -1.828125q0 -1.078125 -0.46875 -1.703125q-0.453125 -0.625 -1.234375 -0.625q-0.78125 0 -1.234375 0.625q-0.453125 0.609375 -0.453125 1.828125zm8.838196 -1.265625l1.328125 -2.328125l1.765625 0l-2.15625 3.46875l2.234375 3.578125l-1.75 0l-1.40625 -2.40625l-1.40625 2.40625l-1.75 0l2.21875 -3.578125l-2.140625 -3.46875l1.75 0l1.3125 2.328125zm6.640625 2.453125l1.421875 -4.78125l1.6875 0l-2.796875 8.109375q-0.640625 1.78125 -2.1875 1.78125q-0.34375 0 -0.765625 -0.109375l0 -1.234375l0.296875 0.015625q0.609375 0 0.90625 -0.21875q0.296875 -0.203125 0.484375 -0.71875l0.21875 -0.609375l-2.46875 -7.015625l1.703125 0l1.5 4.78125z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m774.29584 345.38214l0.7017822 42.47574" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m774.3524 348.80878l0.58862305 35.622498" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m774.3525 348.80875l1.1430054 1.1058655l-1.1754761 -3.0707703l-1.0734253 3.1079102z" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m774.941 384.43127l-1.1430054 -1.105835l1.1754761 3.0707703l1.0734253 -3.1079407z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m392.02847 328.72318l329.02084 -0.03692627" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m392.02847 328.72318l325.59372 -0.03656006" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m717.6222 328.6866l-1.1244507 1.1246948l3.0896606 -1.1249084l-3.0899048 -1.1242371z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m719.8622 450.40463l105.56146 0l0 27.59076l-105.56146 0z" fill-rule="evenodd"/><path fill="#000000" d="m732.78406 463.76712q0 -0.625 -0.453125 -0.953125q-0.4375 -0.34375 -1.578125 -0.6875q-1.140625 -0.359375 -1.828125 -0.78125q-1.28125 -0.8125 -1.28125 -2.109375q0 -1.15625 0.921875 -1.890625q0.9375 -0.75 2.421875 -0.75q1.0 0 1.765625 0.375q0.78125 0.359375 1.21875 1.03125q0.453125 0.671875 0.453125 1.5l-1.640625 0q0 -0.75 -0.46875 -1.171875q-0.46875 -0.421875 -1.328125 -0.421875q-0.8125 0 -1.265625 0.359375q-0.4375 0.34375 -0.4375 0.953125q0 0.515625 0.484375 0.875q0.484375 0.34375 1.578125 0.671875q1.109375 0.328125 1.78125 0.75q0.671875 0.421875 0.984375 0.96875q0.3125 0.53125 0.3125 1.265625q0 1.1875 -0.90625 1.890625q-0.90625 0.6875 -2.46875 0.6875q-1.03125 0 -1.890625 -0.375q-0.859375 -0.375 -1.34375 -1.046875q-0.46875 -0.671875 -0.46875 -1.5625l1.640625 0q0 0.796875 0.53125 1.25q0.546875 0.4375 1.53125 0.4375q0.859375 0 1.296875 -0.34375q0.4375 -0.359375 0.4375 -0.921875zm6.028137 2.5625q-1.5 0 -2.4375 -0.9375q-0.921875 -0.953125 -0.921875 -2.53125l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5 1.28125 0.5q1.09375 0 1.765625 -0.890625l0.859375 0.8125q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.03125q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm7.9334106 0.3125q-0.3125 -0.0625 -0.640625 -0.0625q-1.09375 0 -1.46875 0.84375l0 4.8125l-1.578125 0l0 -7.046875l1.5 0l0.046875 0.796875q0.5625 -0.921875 1.578125 -0.921875q0.34375 0 0.5625 0.09375l0 1.484375zm3.482544 3.59375l1.484375 -5.046875l1.640625 0l-2.453125 7.046875l-1.359375 0l-2.46875 -7.046875l1.640625 0l1.515625 5.046875zm5.7955933 2.0l-1.59375 0l0 -7.046875l1.59375 0l0 7.046875zm-1.6875 -8.875q0 -0.359375 0.234375 -0.59375q0.234375 -0.25 0.65625 -0.25q0.4375 0 0.671875 0.25q0.234375 0.234375 0.234375 0.59375q0 0.359375 -0.234375 0.609375q-0.234375 0.234375 -0.671875 0.234375q-0.421875 0 -0.65625 -0.234375q-0.234375 -0.25 -0.234375 -0.609375zm6.2942505 7.75q0.59375 0 0.984375 -0.34375q0.390625 -0.359375 0.421875 -0.859375l1.484375 0q-0.03125 0.65625 -0.421875 1.234375q-0.375 0.5625 -1.03125 0.890625q-0.65625 0.328125 -1.421875 0.328125q-1.46875 0 -2.34375 -0.953125q-0.859375 -0.953125 -0.859375 -2.640625l0 -0.15625q0 -1.609375 0.859375 -2.578125q0.859375 -0.96875 2.34375 -0.96875q1.25 0 2.03125 0.734375q0.796875 0.734375 0.84375 1.921875l-1.484375 0q-0.03125 -0.609375 -0.421875 -1.0q-0.390625 -0.390625 -0.984375 -0.390625q-0.765625 0 -1.1875 0.5625q-0.40625 0.546875 -0.421875 1.6875l0 0.25q0 1.140625 0.40625 1.71875q0.421875 0.5625 1.203125 0.5625zm7.1795654 1.25q-1.5 0 -2.4375 -0.9375q-0.921875 -0.953125 -0.921875 -2.53125l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5 1.28125 0.5q1.09375 0 1.765625 -0.890625l0.859375 0.8125q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.03125q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm7.7211914 5.90625l0 -9.46875l3.234375 0q1.609375 0 2.453125 0.640625q0.84375 0.640625 0.84375 1.921875q0 0.640625 -0.359375 1.171875q-0.34375 0.515625 -1.015625 0.796875q0.765625 0.21875 1.171875 0.796875q0.421875 0.5625 0.421875 1.375q0 1.328125 -0.859375 2.046875q-0.84375 0.71875 -2.4375 0.71875l-3.453125 0zm1.640625 -4.28125l0 2.96875l1.828125 0q0.78125 0 1.203125 -0.375q0.4375 -0.390625 0.4375 -1.078125q0 -1.484375 -1.5 -1.515625l-1.96875 0zm0 -1.203125l1.609375 0q0.765625 0 1.203125 -0.34375q0.4375 -0.359375 0.4375 -0.984375q0 -0.703125 -0.40625 -1.015625q-0.390625 -0.3125 -1.25 -0.3125l-1.59375 0l0 2.65625z" fill-rule="nonzero"/><path fill="#bfbfbf" d="m733.65375 91.84642l0 0c6.3067627 0 11.419434 5.1126556 11.419434 11.419434l0 45.67636l0 0c0 3.0286255 -1.203125 5.933197 -3.3446655 8.074753c-2.1416016 2.1415558 -5.0461426 3.3446808 -8.074768 3.3446808l-394.4946 0c-6.306793 0 -11.419434 -5.1126556 -11.419434 -11.419434l0 -45.67636c0 -6.306778 5.1126404 -11.419434 11.419434 -11.419434z" fill-rule="evenodd"/><path fill="#ffffff" d="m336.90897 109.30934l0 0c0 -4.321251 3.5030518 -7.824318 7.8243103 -7.824318l120.19989 0c2.0751343 0 4.065277 0.82434845 5.5326233 2.2916946c1.4673462 1.4673386 2.291687 3.4574814 2.291687 5.5326233l0 31.29631c0 4.3212433 -3.5030518 7.8243103 -7.8243103 7.8243103l-120.19989 0l0 0c-4.3212585 0 -7.8243103 -3.503067 -7.8243103 -7.8243103z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m336.90897 109.30934l0 0c0 -4.321251 3.5030518 -7.824318 7.8243103 -7.824318l120.19989 0c2.0751343 0 4.065277 0.82434845 5.5326233 2.2916946c1.4673462 1.4673386 2.291687 3.4574814 2.291687 5.5326233l0 31.29631c0 4.3212433 -3.5030518 7.8243103 -7.8243103 7.8243103l-120.19989 0l0 0c-4.3212585 0 -7.8243103 -3.503067 -7.8243103 -7.8243103z" fill-rule="evenodd"/><path fill="#000000" d="m393.76953 126.24187l0 3.515625l-1.640625 0l0 -9.46875l3.625 0q1.578125 0 2.515625 0.828125q0.9375 0.8125 0.9375 2.171875q0 1.40625 -0.921875 2.1875q-0.90625 0.765625 -2.5625 0.765625l-1.953125 0zm0 -1.328125l1.984375 0q0.875 0 1.328125 -0.40625q0.46875 -0.421875 0.46875 -1.203125q0 -0.765625 -0.46875 -1.21875q-0.46875 -0.46875 -1.28125 -0.46875l-2.03125 0l0 3.296875zm8.409454 4.84375l-1.59375 0l0 -7.046875l1.59375 0l0 7.046875zm-1.6875 -8.875q0 -0.359375 0.234375 -0.59375q0.234375 -0.25 0.65625 -0.25q0.4375 0 0.671875 0.25q0.234375 0.234375 0.234375 0.59375q0 0.359375 -0.234375 0.609375q-0.234375 0.234375 -0.671875 0.234375q-0.421875 0 -0.65625 -0.234375q-0.234375 -0.25 -0.234375 -0.609375zm5.0911255 8.875l-1.59375 0l0 -10.0l1.59375 0l0 10.0zm1.4192505 -3.578125q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.140625 -1.265625q0.75 -0.453125 1.71875 -0.453125q1.421875 0 2.3125 0.921875q0.890625 0.90625 0.953125 2.4375l0.015625 0.359375q0 1.046875 -0.40625 1.875q-0.390625 0.8125 -1.140625 1.265625q-0.75 0.4375 -1.71875 0.4375q-1.5 0 -2.390625 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.578125 0.125q0 1.09375 0.453125 1.71875q0.453125 0.609375 1.25 0.609375q0.796875 0 1.234375 -0.625q0.453125 -0.625 0.453125 -1.828125q0 -1.078125 -0.46875 -1.703125q-0.453125 -0.625 -1.234375 -0.625q-0.78125 0 -1.234375 0.625q-0.453125 0.609375 -0.453125 1.828125zm8.29129 -5.296875l0 1.703125l1.234375 0l0 1.171875l-1.234375 0l0 3.9375q0 0.40625 0.15625 0.59375q0.15625 0.171875 0.5625 0.171875q0.28125 0 0.5625 -0.078125l0 1.234375q-0.546875 0.140625 -1.046875 0.140625q-1.828125 0 -1.828125 -2.0l0 -4.0l-1.15625 0l0 -1.171875l1.15625 0l0 -1.703125l1.59375 0z" fill-rule="nonzero"/><path fill="#434343" d="m377.82425 84.483986l0 0c0 -0.89756775 0.7276306 -1.6251907 1.6251831 -1.6251907l312.51065 0c0.43103027 0 0.8444214 0.1712265 1.1491699 0.47600555c0.30480957 0.30478668 0.47601318 0.71816254 0.47601318 1.1491852l0 6.500572c0 0.89756775 -0.7276001 1.6251907 -1.6251831 1.6251907l-312.51065 0l0 0c-0.8975525 0 -1.6251831 -0.727623 -1.6251831 -1.6251907z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m468.06778 58.458324l182.79349 0l0 27.59077l-182.79349 0z" fill-rule="evenodd"/><path fill="#000000" d="m515.0033 71.1802q-0.140625 1.515625 -1.125 2.359375q-0.96875 0.84375 -2.5781555 0.84375q-1.140625 0 -2.0 -0.53125q-0.859375 -0.53125 -1.328125 -1.515625q-0.46875 -1.0 -0.5 -2.3125l0 -0.875q0 -1.34375 0.46875 -2.359375q0.484375 -1.03125 1.375 -1.578125q0.890625 -0.5625 2.0625 -0.5625q1.5625305 0 2.5156555 0.859375q0.953125 0.84375 1.109375 2.40625l-1.640625 0q-0.109375 -1.015625 -0.59375 -1.46875q-0.46875 -0.453125 -1.3906555 -0.453125q-1.078125 0 -1.65625 0.78125q-0.578125 0.78125 -0.59375 2.296875l0 0.84375q0 1.53125 0.546875 2.34375q0.5625 0.796875 1.625 0.796875q0.9687805 0 1.4531555 -0.421875q0.484375 -0.4375 0.609375 -1.453125l1.640625 0zm1.0291138 -0.5q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.140625 -1.265625q0.75 -0.453125 1.71875 -0.453125q1.421875 0 2.3125 0.921875q0.890625 0.90625 0.953125 2.4375l0.015625 0.359375q0 1.046875 -0.40625 1.875q-0.390625 0.8125 -1.140625 1.265625q-0.75 0.4375 -1.71875 0.4375q-1.5 0 -2.390625 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.578125 0.125q0 1.09375 0.453125 1.71875q0.453125 0.609375 1.25 0.609375q0.796875 0 1.234375 -0.625q0.453125 -0.625 0.453125 -1.828125q0 -1.078125 -0.46875 -1.703125q-0.453125 -0.625 -1.234375 -0.625q-0.78125 0 -1.234375 0.625q-0.453125 0.609375 -0.453125 1.828125zm7.775696 -3.59375l0.046875 0.8125q0.78125 -0.9375 2.046875 -0.9375q2.203125 0 2.234375 2.515625l0 4.65625l-1.578125 0l0 -4.5625q0 -0.671875 -0.296875 -0.984375q-0.28125 -0.328125 -0.9375 -0.328125q-0.953125 0 -1.421875 0.859375l0 5.015625l-1.59375 0l0 -7.046875l1.5 0zm7.9281006 -1.703125l0 1.703125l1.234375 0l0 1.171875l-1.234375 0l0 3.9375q0 0.40625 0.15625 0.59375q0.15625 0.171875 0.5625 0.171875q0.28125 0 0.5625 -0.078125l0 1.234375q-0.546875 0.140625 -1.046875 0.140625q-1.828125 0 -1.828125 -2.0l0 -4.0l-1.15625 0l0 -1.171875l1.15625 0l0 -1.703125l1.59375 0zm6.13501 3.15625q-0.3125 -0.0625 -0.640625 -0.0625q-1.09375 0 -1.46875 0.84375l0 4.8125l-1.578125 0l0 -7.046875l1.5 0l0.046875 0.796875q0.5625 -0.921875 1.578125 -0.921875q0.34375 0 0.5625 0.09375l0 1.484375zm0.70129395 2.015625q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.140625 -1.265625q0.75 -0.453125 1.71875 -0.453125q1.421875 0 2.3125 0.921875q0.890625 0.90625 0.953125 2.4375l0.015625 0.359375q0 1.046875 -0.40625 1.875q-0.390625 0.8125 -1.140625 1.265625q-0.75 0.4375 -1.71875 0.4375q-1.5 0 -2.390625 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.578125 0.125q0 1.09375 0.453125 1.71875q0.453125 0.609375 1.25 0.609375q0.796875 0 1.234375 -0.625q0.453125 -0.625 0.453125 -1.828125q0 -1.078125 -0.46875 -1.703125q-0.453125 -0.625 -1.234375 -0.625q-0.78125 0 -1.234375 0.625q-0.453125 0.609375 -0.453125 1.828125zm7.994446 3.453125l-1.59375 0l0 -10.0l1.59375 0l0 10.0zm6.83197 -3.515625l0 3.515625l-1.640625 0l0 -9.46875l3.625 0q1.578125 0 2.515625 0.828125q0.9375 0.8125 0.9375 2.171875q0 1.40625 -0.921875 2.1875q-0.90625 0.765625 -2.5625 0.765625l-1.953125 0zm0 -1.328125l1.984375 0q0.875 0 1.328125 -0.40625q0.46875 -0.421875 0.46875 -1.203125q0 -0.765625 -0.46875 -1.21875q-0.46875 -0.46875 -1.28125 -0.46875l-2.03125 0l0 3.296875zm8.409485 4.84375l-1.59375 0l0 -10.0l1.59375 0l0 10.0zm5.9192505 0q-0.109375 -0.203125 -0.1875 -0.65625q-0.75 0.78125 -1.84375 0.78125q-1.0625 0 -1.734375 -0.59375q-0.671875 -0.609375 -0.671875 -1.5q0 -1.125 0.84375 -1.71875q0.84375 -0.609375 2.390625 -0.609375l0.96875 0l0 -0.46875q0 -0.546875 -0.3125 -0.875q-0.296875 -0.328125 -0.921875 -0.328125q-0.546875 0 -0.890625 0.28125q-0.34375 0.265625 -0.34375 0.671875l-1.578125 0q0 -0.578125 0.375 -1.078125q0.390625 -0.5 1.046875 -0.78125q0.671875 -0.296875 1.484375 -0.296875q1.234375 0 1.96875 0.625q0.734375 0.625 0.75 1.75l0 3.171875q0 0.953125 0.265625 1.515625l0 0.109375l-1.609375 0zm-1.734375 -1.140625q0.46875 0 0.875 -0.21875q0.421875 -0.234375 0.625 -0.625l0 -1.328125l-0.84375 0q-0.890625 0 -1.328125 0.3125q-0.4375 0.3125 -0.4375 0.859375q0 0.46875 0.296875 0.734375q0.296875 0.265625 0.8125 0.265625zm6.2106934 -5.90625l0.046875 0.8125q0.78125 -0.9375 2.046875 -0.9375q2.203125 0 2.234375 2.515625l0 4.65625l-1.578125 0l0 -4.5625q0 -0.671875 -0.296875 -0.984375q-0.28125 -0.328125 -0.9375 -0.328125q-0.953125 0 -1.421875 0.859375l0 5.015625l-1.59375 0l0 -7.046875l1.5 0zm9.037476 7.171875q-1.5 0 -2.4375 -0.9375q-0.921875 -0.953125 -0.921875 -2.53125l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5 1.28125 0.5q1.09375 0 1.765625 -0.890625l0.859375 0.8125q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.03125q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm13.018066 3.703125l-3.671875 0l-0.765625 2.203125l-1.71875 0l3.59375 -9.46875l1.46875 0l3.59375 9.46875l-1.71875 0l-0.78125 -2.203125zm-3.203125 -1.328125l2.75 0l-1.375 -3.9375l-1.375 3.9375zm8.417114 0.015625l0 3.515625l-1.640625 0l0 -9.46875l3.625 0q1.578125 0 2.515625 0.828125q0.9375 0.8125 0.9375 2.171875q0 1.40625 -0.921875 2.1875q-0.90625 0.765625 -2.5625 0.765625l-1.953125 0zm0 -1.328125l1.984375 0q0.875 0 1.328125 -0.40625q0.46875 -0.421875 0.46875 -1.203125q0 -0.765625 -0.46875 -1.21875q-0.46875 -0.46875 -1.28125 -0.46875l-2.03125 0l0 3.296875zm8.612549 4.84375l-1.640625 0l0 -9.46875l1.640625 0l0 9.46875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m404.83322 148.42996l0.8864441 51.340256" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.3333333333333333" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="5.333333333333333,4.0" d="m404.83322 148.42996l0.80755615 46.771484" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.3333333333333333" stroke-linecap="butt" d="m405.6408 195.20145l-1.525116 -1.4733276l1.570343 4.0931854l1.4281006 -4.1449585z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m404.83322 148.42996l70.6575 32.466248" fill-rule="evenodd"/><path stroke="#000000" stroke-width="1.3333333333333333" stroke-linejoin="round" stroke-linecap="butt" stroke-dasharray="5.333333333333333,4.0" d="m404.83322 148.42996l66.50537 30.558395" fill-rule="evenodd"/><path fill="#000000" stroke="#000000" stroke-width="1.3333333333333333" stroke-linecap="butt" d="m471.3386 178.98836l-1.9885559 0.7364502l4.3694763 0.3575592l-3.1173706 -3.08255z" fill-rule="evenodd"/><path fill="#ffffff" d="m487.90405 108.913826l0 0c0 -4.321251 3.5030823 -7.824318 7.8243103 -7.824318l90.614655 0c2.0751343 0 4.0652466 0.82434845 5.532593 2.291687c1.4673462 1.4673462 2.291687 3.457489 2.291687 5.532631l0 31.296303c0 4.3212585 -3.5030518 7.8243103 -7.82428 7.8243103l-90.614655 0c-4.321228 0 -7.8243103 -3.5030518 -7.8243103 -7.8243103z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m487.90405 108.913826l0 0c0 -4.321251 3.5030823 -7.824318 7.8243103 -7.824318l90.614655 0c2.0751343 0 4.0652466 0.82434845 5.532593 2.291687c1.4673462 1.4673462 2.291687 3.457489 2.291687 5.532631l0 31.296303c0 4.3212585 -3.5030518 7.8243103 -7.82428 7.8243103l-90.614655 0c-4.321228 0 -7.8243103 -3.5030518 -7.8243103 -7.8243103z" fill-rule="evenodd"/><path fill="#000000" d="m527.3228 119.89323l2.734375 7.25l2.734375 -7.25l2.125 0l0 9.468758l-1.640625 0l0 -3.1250076l0.15625 -4.171875l-2.796875 7.2968826l-1.171875 0l-2.796875 -7.2968826l0.171875 4.171875l0 3.1250076l-1.640625 0l0 -9.468758l2.125 0zm11.07489 9.468758l-1.59375 0l0 -7.0468826l1.59375 0l0 7.0468826zm-1.6875 -8.875008q0 -0.359375 0.234375 -0.59375q0.234375 -0.25 0.65625 -0.25q0.4375 0 0.671875 0.25q0.234375 0.234375 0.234375 0.59375q0 0.359375 -0.234375 0.609375q-0.234375 0.234375 -0.671875 0.234375q-0.421875 0 -0.65625 -0.234375q-0.234375 -0.25 -0.234375 -0.609375zm5.9348755 4.15625l1.328125 -2.328125l1.765625 0l-2.15625 3.46875l2.234375 3.5781326l-1.75 0l-1.40625 -2.4062576l-1.40625 2.4062576l-1.75 0l2.21875 -3.5781326l-2.140625 -3.46875l1.75 0l1.3125 2.328125zm7.265625 4.8437576q-1.5 0 -2.4375 -0.9375q-0.921875 -0.9531326 -0.921875 -2.5312576l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5000076 1.28125 0.5000076q1.09375 0 1.765625 -0.8906326l0.859375 0.8125076q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.0312576q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm7.9334106 0.3125q-0.3125 -0.0625 -0.640625 -0.0625q-1.09375 0 -1.46875 0.84375l0 4.8125076l-1.578125 0l0 -7.0468826l1.5 0l0.046875 0.796875q0.5625 -0.921875 1.578125 -0.921875q0.34375 0 0.5625 0.09375l0 1.484375z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m774.29584 312.06638l-233.24725 -164.03026" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m774.29584 312.06638l-230.44397 -162.05885" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m543.85187 150.00752l1.5667725 -0.27297974l-3.1742554 -0.85746765l1.8804321 2.6972504z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m280.0182 155.62299l124.435486 0.03692627l0 50.121384l-124.435486 -0.03694153z" fill-rule="evenodd"/><path fill="#000000" d="m319.221 174.35649q-0.140625 1.5155792 -1.125 2.3590393q-0.96875 0.8434601 -2.578125 0.84298706q-1.140625 -3.3569336E-4 -2.0 -0.5318451q-0.859375 -0.5315094 -1.328125 -1.5160217q-0.46875 -1.0001373 -0.5 -2.3126526l0 -0.875q0 -1.34375 0.46875 -2.3592224q0.484375 -1.0311127 1.375 -1.5777283q0.890625 -0.56222534 2.0625 -0.56188965q1.5625 4.7302246E-4 2.515625 0.8601227q0.953125 0.8440399 1.109375 2.4065857l-1.640625 -4.8828125E-4q-0.109375 -1.0156555 -0.59375 -1.4689331q-0.46875 -0.45326233 -1.390625 -0.453537q-1.078125 -3.2043457E-4 -1.65625 0.7807617q-0.578125 0.78108215 -0.59375 2.2967072l0 0.84375q0 1.53125 0.546875 2.3439026q0.5625 0.79704285 1.625 0.7973633q0.96875 2.89917E-4 1.453125 -0.42144775q0.484375 -0.4373474 0.609375 -1.4529419l1.640625 4.8828125E-4zm1.0291443 -0.49969482q0 -1.046875 0.40625 -1.8748779q0.40625 -0.8280029 1.140625 -1.2652893q0.75 -0.45289612 1.71875 -0.45262146q1.421875 4.272461E-4 2.3125 0.92256165q0.890625 0.90652466 0.953125 2.43779l0.015625 0.359375q0 1.046875 -0.40625 1.8748779q-0.390625 0.8123932 -1.140625 1.2652893q-0.75 0.43728638 -1.71875 0.43699646q-1.5 -4.4250488E-4 -2.390625 -0.98509216q-0.890625 -1.0002594 -0.890625 -2.6408844l0 -0.078125zm1.578125 0.12547302q0 1.09375 0.453125 1.7188721q0.453125 0.6095123 1.25 0.60975647q0.796875 2.2888184E-4 1.234375 -0.6246338q0.453125 -0.6248627 0.453125 -1.8279877q0 -1.078125 -0.46875 -1.7032776q-0.453125 -0.6251221 -1.234375 -0.6253662q-0.78125 -2.2888184E-4 -1.234375 0.6246338q-0.453125 0.6092529 -0.453125 1.8280029zm7.775696 -3.591446l0.046875 0.81251526q0.78125 -0.9372711 2.046875 -0.93688965q2.203125 6.4086914E-4 2.234375 2.5162811l0 4.65625l-1.578125 -4.7302246E-4l0 -4.5625q0 -0.671875 -0.296875 -0.9844513q-0.28125 -0.32821655 -0.9375 -0.32841492q-0.953125 -2.746582E-4 -1.421875 0.858963l0 5.015625l-1.59375 -4.7302246E-4l0 -7.046875l1.5 4.4250488E-4zm6.4906006 7.0487976l0 -5.875l-1.0625 -3.2043457E-4l0 -1.171875l1.0625 3.2043457E-4l0 -0.640625q0 -1.171875 0.65625 -1.7966766q0.65625 -0.64042664 1.828125 -0.64009094q0.40625 1.2207031E-4 0.875 0.1096344l-0.03125 1.234375q-0.265625 -0.046951294 -0.609375 -0.047058105q-1.125 -3.3569336E-4 -1.125 1.1559143l0 0.625l1.421875 4.272461E-4l0 1.171875l-1.421875 -4.272461E-4l0 5.875l-1.59375 -4.7302246E-4zm5.865326 0.001739502l-1.59375 -4.7302246E-4l0 -7.046875l1.59375 4.7302246E-4l0 7.046875zm-1.6875 -8.875504q0 -0.359375 0.234375 -0.5936737q0.234375 -0.2499237 0.65625 -0.24980164q0.4375 1.2207031E-4 0.671875 0.25019836q0.234375 0.23443604 0.234375 0.59381104q0 0.359375 -0.234375 0.60931396q-0.234375 0.2342987 -0.671875 0.23417664q-0.421875 -1.2207031E-4 -0.65625 -0.23457336q-0.234375 -0.2500763 -0.234375 -0.6094513zm3.1223755 5.297806q0 -1.640625 0.765625 -2.609146q0.78125 -0.9841461 2.046875 -0.98376465q1.21875 3.6621094E-4 1.90625 0.8443146l0.0625 -0.71873474l1.421875 4.272461E-4l0 6.828125q0 1.390625 -0.859375 2.1872406q-0.859375 0.7966156 -2.328125 0.79618835q-0.765625 -2.2888184E-4 -1.515625 -0.32858276q-0.734375 -0.31271362 -1.109375 -0.82844543l0.75 -0.9529114q0.71875 0.8595886 1.796875 0.85990906q0.78125 2.4414062E-4 1.234375 -0.4215088q0.453125 -0.42173767 0.453125 -1.2498627l0 -0.46875q-0.671875 0.74980164 -1.8125 0.74946594q-1.234375 -3.6621094E-4 -2.03125 -0.96936035q-0.78125 -0.9846039 -0.78125 -2.734604zm1.578125 0.14109802q0 1.0625 0.421875 1.6719971q0.4375 0.6095123 1.203125 0.60972595q0.96875 2.89917E-4 1.421875 -0.82769775l0 -3.09375q-0.4375 -0.7969971 -1.40625 -0.797287q-0.78125 -2.2888184E-4 -1.21875 0.6246338q-0.421875 0.6092529 -0.421875 1.8123779zm9.280914 -0.13787842q0 -1.625 0.75 -2.609146q0.765625 -0.9841461 2.03125 -0.98376465q1.109375 3.2043457E-4 1.8125 0.78178406l0 -3.609375l1.578125 4.5776367E-4l0 10.0l-1.4375 -4.119873E-4l-0.078125 -0.7344055q-0.703125 0.8591614 -1.890625 0.8588104q-1.234375 -3.6621094E-4 -2.0 -0.9849701q-0.765625 -1.0002289 -0.765625 -2.718979zm1.578125 0.14109802q0 1.078125 0.40625 1.6876221q0.421875 0.5938721 1.1875 0.59410095q0.96875 2.89917E-4 1.421875 -0.87457275l0 -3.0q-0.4375 -0.8438873 -1.40625 -0.84417725q-0.78125 -2.2888184E-4 -1.203125 0.60902405q-0.40625 0.6092529 -0.40625 1.8280029zm10.444977 3.4405975q-0.109375 -0.20315552 -0.1875 -0.6562958q-0.75 0.7810211 -1.84375 0.7807007q-1.0625 -3.2043457E-4 -1.734375 -0.5942688q-0.671875 -0.60957336 -0.671875 -1.5001984q0 -1.125 0.84375 -1.7185059q0.84375 -0.6091156 2.390625 -0.60865784l0.96875 2.89917E-4l0 -0.46875q0 -0.546875 -0.3125 -0.87509155q-0.296875 -0.32821655 -0.921875 -0.32839966q-0.546875 -1.6784668E-4 -0.890625 0.28097534q-0.34375 0.26553345 -0.34375 0.67178345l-1.578125 -4.7302246E-4q0 -0.578125 0.375 -1.0780182q0.390625 -0.49987793 1.046875 -0.78092957q0.671875 -0.29667664 1.484375 -0.2964325q1.234375 3.6621094E-4 1.96875 0.62557983q0.734375 0.6252136 0.75 1.7502136l0 3.171875q0 0.953125 0.265625 1.5157166l0 0.109375l-1.609375 -4.8828125E-4zm-1.734375 -1.1411285q0.46875 1.373291E-4 0.875 -0.2184906q0.421875 -0.23425293 0.625 -0.6248169l0 -1.328125l-0.84375 -2.593994E-4q-0.890625 -2.593994E-4 -1.328125 0.31210327q-0.4375 0.31237793 -0.4375 0.8592529q0 0.46875 0.296875 0.73446655q0.296875 0.26571655 0.8125 0.26586914zm6.726349 -7.6073914l0 1.703125l1.234375 3.6621094E-4l0 1.171875l-1.234375 -3.6621094E-4l0 3.9375q0 0.40625 0.15625 0.5937958q0.15625 0.17192078 0.5625 0.17204285q0.28125 9.1552734E-5 0.5625 -0.07795715l0 1.234375q-0.546875 0.14047241 -1.046875 0.14031982q-1.828125 -5.493164E-4 -1.828125 -2.0005493l0 -4.0l-1.15625 -3.3569336E-4l0 -1.171875l1.15625 3.3569336E-4l0 -1.703125l1.59375 4.7302246E-4zm6.6506042 8.751984q-0.109375 -0.20315552 -0.1875 -0.65631104q-0.75 0.7810364 -1.84375 0.7807007q-1.0625 -3.0517578E-4 -1.734375 -0.59425354q-0.671875 -0.6095886 -0.671875 -1.5002136q0 -1.125 0.84375 -1.7184906q0.84375 -0.60913086 2.390625 -0.6086731l0.96875 2.89917E-4l0 -0.46875q0 -0.546875 -0.3125 -0.87509155q-0.296875 -0.32821655 -0.921875 -0.32839966q-0.546875 -1.5258789E-4 -0.890625 0.2809906q-0.34375 0.2655182 -0.34375 0.6717682l-1.578125 -4.7302246E-4q0 -0.578125 0.375 -1.0780029q0.390625 -0.4998932 1.046875 -0.7809448q0.671875 -0.29667664 1.484375 -0.2964325q1.234375 3.6621094E-4 1.96875 0.62557983q0.734375 0.6252289 0.75 1.7502289l0 3.171875q0 0.953125 0.265625 1.5157013l0 0.109375l-1.609375 -4.7302246E-4zm-1.734375 -1.1411438q0.46875 1.373291E-4 0.875 -0.2184906q0.421875 -0.23425293 0.625 -0.6248169l0 -1.328125l-0.84375 -2.4414062E-4q-0.890625 -2.746582E-4 -1.328125 0.31210327q-0.4375 0.31236267 -0.4375 0.8592377q0 0.46875 0.296875 0.73446655q0.296875 0.26571655 0.8125 0.26586914zm10.04538 -7.6063995l0 1.703125l1.234375 3.6621094E-4l0 1.171875l-1.234375 -3.6621094E-4l0 3.9375q0 0.40625 0.15625 0.5937958q0.15625 0.17193604 0.5625 0.17204285q0.28125 9.1552734E-5 0.5625 -0.07795715l0 1.234375q-0.546875 0.14047241 -1.046875 0.14031982q-1.828125 -5.493164E-4 -1.828125 -2.0005493l0 -4.0l-1.15625 -3.3569336E-4l0 -1.171875l1.15625 3.3569336E-4l0 -1.703125l1.59375 4.7302246E-4zm2.1506042 5.172516q0 -1.046875 0.40625 -1.8748779q0.40625 -0.8280029 1.140625 -1.2652893q0.75 -0.45289612 1.71875 -0.4526062q1.421875 4.119873E-4 2.3125 0.92256165q0.890625 0.9065094 0.953125 2.4377747l0.015625 0.35939026q0 1.046875 -0.40625 1.8748779q-0.390625 0.8123779 -1.140625 1.2652893q-0.75 0.43727112 -1.71875 0.4369812q-1.5 -4.4250488E-4 -2.390625 -0.9850769q-0.890625 -1.0002747 -0.890625 -2.6408997l0 -0.078125zm1.578125 0.12547302q0 1.09375 0.453125 1.7188873q0.453125 0.6095123 1.25 0.6097412q0.796875 2.4414062E-4 1.234375 -0.6246338q0.453125 -0.6248627 0.453125 -1.8279877q0 -1.078125 -0.46875 -1.7032623q-0.453125 -0.6251373 -1.234375 -0.6253662q-0.78125 -2.2888184E-4 -1.234375 0.6246338q-0.453125 0.6092377 -0.453125 1.8279877z" fill-rule="nonzero"/><path fill="#000000" d="m359.45724 189.21219l-3.890625 -0.001159668l0 2.921875l4.546875 0.0013427734l0 1.3125l-6.1875 -0.0018310547l0 -9.46875l6.140625 0.0018310547l0 1.328125l-4.5 -0.0013427734l0 2.609375l3.890625 0.001159668l0 1.296875zm3.3173523 -2.8115234l0.046875 0.81251526q0.78125 -0.9372711 2.046875 -0.93688965q2.203125 6.5612793E-4 2.234375 2.5162811l0 4.65625l-1.578125 -4.5776367E-4l0 -4.5625q0 -0.671875 -0.296875 -0.98446655q-0.28125 -0.32821655 -0.9375 -0.32839966q-0.953125 -2.89917E-4 -1.421875 0.85894775l0 5.015625l-1.59375 -4.7302246E-4l0 -7.046875l1.5 4.4250488E-4zm8.428101 5.0493774l1.484375 -5.0464325l1.640625 4.8828125E-4l-2.453125 7.0461426l-1.359375 -3.9672852E-4l-2.46875 -7.0476074l1.640625 4.8828125E-4l1.515625 5.0473175zm3.8112183 -1.5769958q0 -1.046875 0.40625 -1.8748779q0.40625 -0.8280029 1.140625 -1.2652893q0.75 -0.45289612 1.71875 -0.4526062q1.421875 4.119873E-4 2.3125 0.92256165q0.890625 0.9065094 0.953125 2.4377747l0.015625 0.35939026q0 1.046875 -0.40625 1.8748779q-0.390625 0.8123779 -1.140625 1.2652893q-0.75 0.43727112 -1.71875 0.4369812q-1.5 -4.4250488E-4 -2.390625 -0.9850769q-0.890625 -1.0002747 -0.890625 -2.6408997l0 -0.078125zm1.578125 0.12547302q0 1.09375 0.453125 1.7188873q0.453125 0.6095123 1.25 0.6097412q0.796875 2.4414062E-4 1.234375 -0.6246338q0.453125 -0.6248627 0.453125 -1.8279877q0 -1.078125 -0.46875 -1.7032623q-0.453125 -0.6251373 -1.234375 -0.6253662q-0.78125 -2.2888184E-4 -1.234375 0.6246338q-0.453125 0.6092377 -0.453125 1.8279877zm8.775696 1.1901093l1.421875 -4.780838l1.6875 5.0354004E-4l-2.796875 8.108551q-0.640625 1.7810516 -2.1875 1.7805939q-0.34375 -9.1552734E-5 -0.765625 -0.10960388l0 -1.234375l0.296875 0.015716553q0.609375 1.8310547E-4 0.90625 -0.21847534q0.296875 -0.20303345 0.484375 -0.7186127l0.21875 -0.60931396l-2.46875 -7.0163574l1.703125 5.187988E-4l1.5 4.7816925zm7.9570923 0.36172485q0 -0.4375 -0.34375 -0.65634155q-0.34375 -0.21885681 -1.15625 -0.39097595q-0.796875 -0.17210388 -1.34375 -0.42227173q-1.1875 -0.57847595 -1.1875 -1.656601q0 -0.921875 0.765625 -1.5310211q0.78125 -0.6091461 1.953125 -0.60879517q1.265625 3.8146973E-4 2.046875 0.62561035q0.78125 0.6252289 0.78125 1.6252289l-1.59375 -4.7302246E-4q0 -0.453125 -0.34375 -0.7501068q-0.328125 -0.31259155 -0.890625 -0.3127594q-0.515625 -1.5258789E-4 -0.84375 0.24975586q-0.328125 0.23426819 -0.328125 0.6248932q0 0.375 0.296875 0.57821655q0.3125 0.20321655 1.234375 0.4066162q0.9375 0.20339966 1.46875 0.4848175q0.53125 0.2814026 0.78125 0.6877289q0.265625 0.3907013 0.265625 0.9532013q0 0.953125 -0.796875 1.5466309q-0.78125 0.5778961 -2.046875 0.5775299q-0.875 -2.593994E-4 -1.546875 -0.31297302q-0.671875 -0.31269836 -1.0625 -0.8596802q-0.375 -0.5469818 -0.375 -1.1719818l1.546875 4.5776367E-4q0.03125 0.5625 0.421875 0.8751221q0.390625 0.2969818 1.03125 0.29718018q0.625 1.8310547E-4 0.9375 -0.23410034q0.328125 -0.24990845 0.328125 -0.62490845z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m522.274 205.37054l124.435486 0.40629578l0 49.86284l-124.435486 -0.40629578z" fill-rule="evenodd"/><path fill="#000000" d="m555.3525 223.76303l0 3.5156403l-1.640625 -0.005355835l0 -9.468811l3.625 0.01184082q1.578125 0.0051574707 2.515625 0.8363495q0.9375 0.815567 0.9375 2.174942q0 1.4062653 -0.921875 2.1845093q-0.90625 0.7626648 -2.5625 0.7572479l-1.953125 -0.006362915zm0 -1.3281403l1.984375 0.0064849854q0.875 0.0028533936 1.328125 -0.4019165q0.46875 -0.42034912 0.46875 -1.2015991q0 -0.76564026 -0.46875 -1.2202911q-0.46875 -0.47029114 -1.28125 -0.4729309l-2.03125 -0.0066375732l0 3.2968903zm6.425049 1.2866058q0 -1.046875 0.40625 -1.8736725q0.40625 -0.82681274 1.140625 -1.2619171q0.75 -0.45066833 1.71875 -0.44750977q1.421814 0.004638672 2.312439 0.9294281q0.890625 0.9091644 0.953125 2.440628l0.015625 0.35942078q0 1.0468903 -0.40625 1.8736877q-0.390625 0.8112335 -1.140625 1.2619019q-0.75 0.4350586 -1.718689 0.43190002q-1.5 -0.0048980713 -2.390625 -0.9921875q-0.890625 -1.0029144 -0.890625 -2.6435547l0 -0.078125zm1.578125 0.13015747q0 1.09375 0.453125 1.7202454q0.453125 0.6108551 1.25 0.6134491q0.79681396 0.002609253 1.234314 -0.6209717q0.453125 -0.6235199 0.453125 -1.8266449q0 -1.0781403 -0.46875 -1.7046661q-0.453125 -0.6264801 -1.234314 -0.6290436q-0.78125 -0.0025482178 -1.234375 0.6209717q-0.453125 0.60791016 -0.453125 1.8266602zm7.994385 3.479248l-1.59375 -0.005203247l0 -10.000061l1.59375 0.005203247l0 10.000061zm3.4035645 0.011108398l-1.593689 -0.005203247l0 -7.0469055l1.593689 0.005203247l0 7.0469055zm-1.687439 -8.880554q0 -0.359375 0.234375 -0.59298706q0.234375 -0.24923706 0.65625 -0.24786377q0.43743896 0.0014343262 0.67181396 0.25219727q0.234375 0.23513794 0.234375 0.5945282q0 0.359375 -0.234375 0.60861206q-0.234375 0.23361206 -0.67181396 0.23217773q-0.421875 -0.001373291 -0.65625 -0.23652649q-0.234375 -0.25076294 -0.234375 -0.61013794zm6.2941895 7.7705994q0.59375 0.0019378662 0.984375 -0.34054565q0.390625 -0.35809326 0.421875 -0.8580017l1.484375 0.004852295q-0.03125 0.6561432 -0.421875 1.2330017q-0.375 0.5612793 -1.03125 0.88726807q-0.65625 0.3259735 -1.421875 0.32347107q-1.46875 -0.0047912598 -2.34375 -0.96076965q-0.859375 -0.9559479 -0.859375 -2.6434479l0 -0.15625q0 -1.6093903 0.859375 -2.5753326q0.859375 -0.96595764 2.34375 -0.96110535q1.25 0.0040740967 2.03125 0.7410126q0.796875 0.736969 0.84375 1.9246368l-1.484375 -0.004852295q-0.03125 -0.6094818 -0.421875 -1.0013733q-0.390625 -0.39190674 -0.984375 -0.3938446q-0.765625 -0.0025024414 -1.1875 0.55862427q-0.40625 0.5455475 -0.421875 1.6861267l0 0.25q0 1.1406403 0.40625 1.7200928q0.421875 0.5638733 1.203125 0.56643677zm6.5545044 -1.1192322l1.421875 -4.776642l1.6875 0.005508423l-2.796875 8.100296q-0.640625 1.7791595 -2.187439 1.7741089q-0.34375 -0.0011138916 -0.765625 -0.11187744l0 -1.234375l0.296875 0.016601562q0.609375 0.0019836426 0.90625 -0.21580505q0.296875 -0.20214844 0.484375 -0.7171631l0.21875 -0.6086731l-2.46875 -7.023712l1.703125 0.005554199l1.499939 4.7861786zm10.229248 1.1740265q0.59375 0.0019378662 0.98431396 -0.34054565q0.390625 -0.35809326 0.421875 -0.8580017l1.484375 0.004852295q-0.03125 0.65615845 -0.421875 1.2330017q-0.375 0.5612793 -1.03125 0.88726807q-0.65618896 0.32598877 -1.421814 0.32348633q-1.46875 -0.0048065186 -2.34375 -0.9607849q-0.859375 -0.9559326 -0.859375 -2.6434479l0 -0.15625q0 -1.6093903 0.859375 -2.5753326q0.859375 -0.9659424 2.34375 -0.96110535q1.249939 0.0040893555 2.031189 0.7410126q0.796875 0.73698425 0.84375 1.9246368l-1.484375 -0.004837036q-0.03125 -0.6094818 -0.421875 -1.0013885q-0.39056396 -0.39190674 -0.98431396 -0.3938446q-0.765625 -0.0025024414 -1.1875 0.55862427q-0.40625 0.54556274 -0.421875 1.686142l0 0.25q0 1.140625 0.40625 1.7200775q0.421875 0.56388855 1.203125 0.56643677zm5.6482544 -5.1378326q0.765625 -0.8881378 1.953125 -0.8842621q2.25 0.0073547363 2.28125 2.5855865l0 4.5937805l-1.578125 -0.0051574707l0 -4.5468903q0 -0.71875 -0.3125 -1.0166473q-0.3125 -0.31352234 -0.9375 -0.31556702q-0.9375 -0.0030670166 -1.40625 0.8391571l0 5.0312805l-1.59375 -0.005203247l0 -10.000061l1.59375 0.005203247l0 3.7187805zm8.930664 6.43544q-1.5 -0.0048980713 -2.4375 -0.9454651q-0.921875 -0.95614624 -0.921875 -2.5342712l0 -0.1875q0 -1.0625 0.40625 -1.8893127q0.40625 -0.8267975 1.140625 -1.2775269q0.734375 -0.46635437 1.640625 -0.46339417q1.4375 0.0046844482 2.21875 0.9291229q0.78125 0.9087982 0.78125 2.5963135l0 0.640625l-4.59375 -0.01499939q0.0625 0.8752136 0.578125 1.3925171q0.515625 0.5016937 1.28125 0.50419617q1.09375 0.0035705566 1.765625 -0.88487244l0.859375 0.8153076q-0.421875 0.6392517 -1.125 0.9807129q-0.703125 0.34146118 -1.59375 0.33854675zm-0.1875 -6.031891q-0.640625 -0.002090454 -1.046875 0.46533203q-0.40625 0.4517975 -0.515625 1.2639465l3.015625 0.009841919l0 -0.125q-0.046875 -0.7970276 -0.421875 -1.2044983q-0.375 -0.40748596 -1.03125 -0.4096222zm7.1364746 4.8045654q0.59375 0.001953125 0.984375 -0.3405304q0.390625 -0.35810852 0.421875 -0.8580017l1.484375 0.004852295q-0.03125 0.6561432 -0.421875 1.2330017q-0.375 0.5612793 -1.03125 0.8872528q-0.65625 0.32598877 -1.421875 0.32348633q-1.468689 -0.0047912598 -2.343689 -0.9607849q-0.859375 -0.9559326 -0.859375 -2.6434326l0 -0.15625q0 -1.6093903 0.859375 -2.5753326q0.859375 -0.96595764 2.343689 -0.96110535q1.25 0.0040740967 2.03125 0.7410126q0.796875 0.736969 0.84375 1.9246368l-1.484375 -0.004852295q-0.03125 -0.6094818 -0.421875 -1.0013733q-0.390625 -0.39190674 -0.984375 -0.3938446q-0.76556396 -0.0025024414 -1.187439 0.55862427q-0.40625 0.5455475 -0.421875 1.6861267l0 0.25q0 1.1406403 0.40625 1.7200928q0.421875 0.5638733 1.203064 0.5664215zm6.3670654 -1.8698425l-0.703125 0.7164612l0 2.2968903l-1.578125 -0.0051574707l0 -10.000046l1.578125 0.005142212l0 5.7656555l0.5 -0.6077423l1.9375 -2.1968079l1.90625 0.006225586l-2.609375 2.9290009l2.890625 4.11882l-1.828125 -0.0059661865l-2.09375 -3.0224762zm8.613098 1.1375122q0 -0.4375 -0.34375 -0.65737915q-0.34375 -0.21987915 -1.156189 -0.39440918q-0.796875 -0.174469 -1.34375 -0.42625427q-1.1875 -0.582016 -1.1875 -1.660141q0 -0.921875 0.765625 -1.5287628q0.78125 -0.6068268 1.953064 -0.6029968q1.265625 0.004135132 2.046875 0.63168335q0.78125 0.6275635 0.78125 1.6275635l-1.59375 -0.005203247q0 -0.453125 -0.34375 -0.75112915q-0.328125 -0.31356812 -0.890625 -0.31541443q-0.51556396 -0.0016784668 -0.84368896 0.24725342q-0.328125 0.23330688 -0.328125 0.6239319q0 0.375 0.296875 0.57910156q0.3125 0.20414734 1.234314 0.41027832q0.9375 0.20619202 1.46875 0.48916626q0.53125 0.2829895 0.78125 0.6900635q0.265625 0.39149475 0.265625 0.95399475q0 0.953125 -0.796875 1.544281q-0.78125 0.5755768 -2.046875 0.57144165q-0.87493896 -0.0028533936 -1.546814 -0.31755066q-0.671875 -0.31469727 -1.0625 -0.862854q-0.375 -0.5480957 -0.375 -1.1730957l1.546875 0.005050659q0.03125 0.5626068 0.421875 0.8763733q0.390625 0.29815674 1.031189 0.3002472q0.625 0.0020446777 0.9375 -0.23130798q0.328125 -0.24893188 0.328125 -0.6239319zm3.1600952 4.057205l-0.84375 -0.5183716q0.375 -0.5925293 0.515625 -1.0295715q0.140625 -0.4370575 0.140625 -0.8901825l0 -1.234375l1.421875 0.004638672l0 1.1406403q0 0.6875 -0.34375 1.3738708q-0.34375 0.7020111 -0.890625 1.1533508z" fill-rule="nonzero"/><path fill="#000000" d="m584.0118 234.62228l0 1.703125l1.234375 0.004043579l0 1.171875l-1.234375 -0.0040283203l0 3.9375153q0 0.40625 0.15625 0.5942688q0.15625 0.17237854 0.5625 0.17370605q0.28125 9.1552734E-4 0.5625 -0.07627869l0 1.234375q-0.546875 0.13883972 -1.046875 0.13720703q-1.828125 -0.0059661865 -1.828125 -2.0059814l0 -4.0000153l-1.15625 -0.0037841797l0 -1.171875l1.15625 0.003768921l0 -1.703125l1.59375 0.005203247zm5.5411987 8.893143q-1.499939 -0.0048980713 -2.437439 -0.9454651q-0.921875 -0.95614624 -0.921875 -2.5342712l0 -0.1875q0 -1.0625153 0.40625 -1.8893127q0.40625 -0.82681274 1.140625 -1.2775421q0.73431396 -0.46635437 1.640564 -0.46339417q1.4375 0.004699707 2.21875 0.9291229q0.78125 0.9088135 0.78125 2.5963135l0 0.64064026l-4.593689 -0.01499939q0.0625 0.87519836 0.57806396 1.3925171q0.515625 0.50167847 1.28125 0.5041809q1.09375 0.0035705566 1.765625 -0.8848572l0.859375 0.8153076q-0.421875 0.6392517 -1.125 0.9807129q-0.703125 0.34144592 -1.59375 0.33854675zm-0.1875 -6.031906q-0.640625 -0.002090454 -1.046814 0.4653473q-0.40625 0.4517975 -0.515625 1.2639465l3.015564 0.009841919l0 -0.125q-0.046875 -0.7970276 -0.421875 -1.2045135q-0.375 -0.4074707 -1.03125 -0.4096222zm5.9334106 5.925659l-1.59375 -0.005203247l0 -10.000046l1.59375 0.005203247l0 10.000046zm4.8098145 0.1407013q-1.499939 -0.0048980713 -2.437439 -0.9454651q-0.921875 -0.956131 -0.921875 -2.5342712l0 -0.1875q0 -1.0625 0.40625 -1.8892975q0.40625 -0.82681274 1.140625 -1.2775421q0.734375 -0.46635437 1.640564 -0.46339417q1.4375 0.004699707 2.21875 0.9291229q0.78125 0.9088135 0.78125 2.5963135l0 0.640625l-4.593689 -0.01499939q0.0625 0.8752136 0.578125 1.3925323q0.515625 0.50167847 1.281189 0.5041809q1.09375 0.0035705566 1.765625 -0.88487244l0.859375 0.8153229q-0.421875 0.6392517 -1.125 0.98069763q-0.703125 0.34146118 -1.59375 0.33854675zm-0.1875 -6.031891q-0.64056396 -0.002090454 -1.046814 0.46533203q-0.40625 0.4517975 -0.515625 1.2639465l3.015564 0.009857178l0 -0.125q-0.046875 -0.79704285 -0.421875 -1.2045135q-0.375 -0.4074707 -1.03125 -0.4096222zm5.7302856 -1.1219177l0.046875 0.7345276q0.734375 -0.85697937 2.03125 -0.8527374q1.40625 0.0045776367 1.9375 1.0844421q0.765625 -1.0756226 2.156189 -1.0710907q1.15625 0.0037841797 1.71875 0.64624023q0.578125 0.6425171 0.59375 1.9082031l0 4.6250305l-1.578125 -0.0051574707l0 -4.5781403q0 -0.67189026 -0.296875 -0.98535156q-0.296875 -0.31347656 -0.96875 -0.31567383q-0.53118896 -0.0017242432 -0.87493896 0.2940216q-0.34375 0.2801361 -0.484375 0.74842834l0.015625 4.8282013l-1.59375 -0.005203247l0 -4.6406555q-0.03125 -1.2344818 -1.265625 -1.2385101q-0.953125 -0.003112793 -1.34375 0.7612457l0 5.1093903l-1.578125 -0.005142212l0 -7.046921l1.484375 0.004852295zm13.20636 7.215027q-1.5 -0.0048980713 -2.4375 -0.9454651q-0.921875 -0.956131 -0.921875 -2.5342712l0 -0.1875q0 -1.0625 0.40625 -1.8893127q0.40625 -0.8267975 1.140625 -1.2775269q0.734375 -0.46635437 1.640625 -0.46339417q1.437439 0.004699707 2.218689 0.9291229q0.78125 0.9088135 0.78125 2.5963135l0 0.640625l-4.593689 -0.01499939q0.0625 0.8752136 0.578125 1.3925323q0.515625 0.50167847 1.28125 0.5041809q1.093689 0.0035705566 1.765564 -0.88487244l0.859375 0.8153229q-0.421875 0.63923645 -1.125 0.98069763q-0.70306396 0.34146118 -1.593689 0.33854675zm-0.1875 -6.031891q-0.640625 -0.002090454 -1.046875 0.46533203q-0.40625 0.4517975 -0.515625 1.2639465l3.015564 0.009857178l0 -0.125q-0.046875 -0.79704285 -0.42181396 -1.2045135q-0.375 -0.40748596 -1.03125 -0.4096222zm6.2302246 -2.8234253l0 1.7031403l1.234375 0.0040283203l0 1.171875l-1.234375 -0.0040283203l0 3.9375305q0 0.40625 0.15625 0.59425354q0.15625 0.1723938 0.5625 0.17372131q0.28125 9.1552734E-4 0.5625 -0.076293945l0 1.234375q-0.546875 0.13883972 -1.046875 0.13720703q-1.828125 -0.0059661865 -1.828125 -2.0059662l0 -4.0000305l-1.15625 -0.003768921l0 -1.1718903l1.15625 0.0037841797l0 -1.7031403l1.59375 0.005203247zm6.1349487 3.1763q-0.3125 -0.06352234 -0.640625 -0.064590454q-1.09375 -0.0035705566 -1.46875 0.83895874l0 4.8125305l-1.578064 -0.0051574707l0 -7.046921l1.499939 0.0048980713l0.046875 0.79704285q0.5625 -0.92004395 1.578125 -0.9167328q0.34375 0.0011291504 0.5625 0.09559631l0 1.484375zm3.466919 3.3394623l1.421875 -4.7766266l1.6875 0.005508423l-2.796875 8.100281q-0.640625 1.7791748 -2.1875 1.7741241q-0.34375 -0.0011291504 -0.765625 -0.11187744l0 -1.2343903l0.296875 0.016601562q0.609375 0.0019836426 0.90625 -0.2157898q0.296875 -0.2021637 0.484375 -0.71717834l0.21875 -0.60865784l-2.46875 -7.0237274l1.703125 0.005554199l1.5 4.7861786z" fill-rule="nonzero"/><path fill="#ffffff" d="m612.79504 109.310875l0 0c0 -4.3212433 3.5031128 -7.8243103 7.824341 -7.8243103l90.614624 0c2.0751343 0 4.0652466 0.82434845 5.532593 2.291687c1.4673462 1.4673462 2.291687 3.457489 2.291687 5.5326233l0 31.296318c0 4.3212433 -3.5030518 7.8243103 -7.82428 7.8243103l-90.614624 0c-4.321228 0 -7.824341 -3.503067 -7.824341 -7.8243103z" fill-rule="evenodd"/><path stroke="#7f7f7f" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m612.79504 109.310875l0 0c0 -4.3212433 3.5031128 -7.8243103 7.824341 -7.8243103l90.614624 0c2.0751343 0 4.0652466 0.82434845 5.532593 2.291687c1.4673462 1.4673462 2.291687 3.457489 2.291687 5.5326233l0 31.296318c0 4.3212433 -3.5030518 7.8243103 -7.82428 7.8243103l-90.614624 0c-4.321228 0 -7.824341 -3.503067 -7.824341 -7.8243103z" fill-rule="evenodd"/><path fill="#000000" d="m653.2011 126.68091q-0.140625 1.515625 -1.125 2.359375q-0.96875 0.84375 -2.578125 0.84375q-1.140625 0 -2.0 -0.53125q-0.859375 -0.53125 -1.328125 -1.515625q-0.46875 -1.0 -0.5 -2.3125l0 -0.875q0 -1.34375 0.46875 -2.359375q0.484375 -1.03125 1.375 -1.578125q0.890625 -0.5625 2.0625 -0.5625q1.5625 0 2.515625 0.859375q0.953125 0.84375 1.109375 2.40625l-1.640625 0q-0.109375 -1.015625 -0.59375 -1.46875q-0.46875 -0.453125 -1.390625 -0.453125q-1.078125 0 -1.65625 0.78125q-0.578125 0.78125 -0.59375 2.296875l0 0.84375q0 1.53125 0.546875 2.34375q0.5625 0.796875 1.625 0.796875q0.96875 0 1.453125 -0.421875q0.484375 -0.4375 0.609375 -1.453125l1.640625 0zm3.0135498 3.078125l-1.59375 0l0 -7.046875l1.59375 0l0 7.046875zm-1.6875 -8.875q0 -0.359375 0.234375 -0.59375q0.234375 -0.25 0.65625 -0.25q0.4375 0 0.671875 0.25q0.234375 0.234375 0.234375 0.59375q0 0.359375 -0.234375 0.609375q-0.234375 0.234375 -0.671875 0.234375q-0.421875 0 -0.65625 -0.234375q-0.234375 -0.25 -0.234375 -0.609375zm5.3880005 0.125l0 1.703125l1.234375 0l0 1.171875l-1.234375 0l0 3.9375q0 0.40625 0.15625 0.59375q0.15625 0.171875 0.5625 0.171875q0.28125 0 0.5625 -0.078125l0 1.234375q-0.546875 0.140625 -1.046875 0.140625q-1.828125 0 -1.828125 -2.0l0 -4.0l-1.15625 0l0 -1.171875l1.15625 0l0 -1.703125l1.59375 0zm6.650635 8.75q-0.109375 -0.203125 -0.1875 -0.65625q-0.75 0.78125 -1.84375 0.78125q-1.0625 0 -1.734375 -0.59375q-0.671875 -0.609375 -0.671875 -1.5q0 -1.125 0.84375 -1.71875q0.84375 -0.609375 2.390625 -0.609375l0.96875 0l0 -0.46875q0 -0.546875 -0.3125 -0.875q-0.296875 -0.328125 -0.921875 -0.328125q-0.546875 0 -0.890625 0.28125q-0.34375 0.265625 -0.34375 0.671875l-1.578125 0q0 -0.578125 0.375 -1.078125q0.390625 -0.5 1.046875 -0.78125q0.671875 -0.296875 1.484375 -0.296875q1.234375 0 1.96875 0.625q0.734375 0.625 0.75 1.75l0 3.171875q0 0.953125 0.265625 1.515625l0 0.109375l-1.609375 0zm-1.734375 -1.140625q0.46875 0 0.875 -0.21875q0.421875 -0.234375 0.625 -0.625l0 -1.328125l-0.84375 0q-0.890625 0 -1.328125 0.3125q-0.4375 0.3125 -0.4375 0.859375q0 0.46875 0.296875 0.734375q0.296875 0.265625 0.8125 0.265625zm4.4450684 -2.4375q0 -1.625 0.75 -2.609375q0.765625 -0.984375 2.03125 -0.984375q1.109375 0 1.8125 0.78125l0 -3.609375l1.578125 0l0 10.0l-1.4375 0l-0.078125 -0.734375q-0.703125 0.859375 -1.890625 0.859375q-1.234375 0 -2.0 -0.984375q-0.765625 -1.0 -0.765625 -2.71875zm1.578125 0.140625q0 1.078125 0.40625 1.6875q0.421875 0.59375 1.1875 0.59375q0.96875 0 1.421875 -0.875l0 -3.0q-0.4375 -0.84375 -1.40625 -0.84375q-0.78125 0 -1.203125 0.609375q-0.40625 0.609375 -0.40625 1.828125zm9.335632 3.5625q-1.5 0 -2.4375 -0.9375q-0.921875 -0.953125 -0.921875 -2.53125l0 -0.1875q0 -1.0625 0.40625 -1.890625q0.40625 -0.828125 1.140625 -1.28125q0.734375 -0.46875 1.640625 -0.46875q1.4375 0 2.21875 0.921875q0.78125 0.90625 0.78125 2.59375l0 0.640625l-4.59375 0q0.0625 0.875 0.578125 1.390625q0.515625 0.5 1.28125 0.5q1.09375 0 1.765625 -0.890625l0.859375 0.8125q-0.421875 0.640625 -1.125 0.984375q-0.703125 0.34375 -1.59375 0.34375zm-0.1875 -6.03125q-0.640625 0 -1.046875 0.46875q-0.40625 0.453125 -0.515625 1.265625l3.015625 0l0 -0.125q-0.046875 -0.796875 -0.421875 -1.203125q-0.375 -0.40625 -1.03125 -0.40625zm5.9334106 5.90625l-1.59375 0l0 -10.0l1.59375 0l0 10.0z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m665.9267 148.4315l11.634644 53.888794" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m665.9267 148.4315l10.911377 50.538895" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m676.8381 198.9704l-1.3365479 -0.8619232l1.7512817 2.782837l0.4472046 -3.2575073z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m667.518 148.42996l-23.417053 21.422546" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m667.51807 148.42996l-20.888489 19.109314" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m646.6296 167.53928l0.07067871 -1.5888214l-1.5206299 2.9152985l3.0387573 -1.2557983z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m678.9695 167.03003l98.43298 0.03694153l0 47.757507l-98.43298 -0.03692627z" fill-rule="evenodd"/><path fill="#000000" d="m695.782 180.69571l-2.953125 -0.0010986328l0 8.140625l-1.640625 -6.2561035E-4l0 -8.140625l-2.921875 -0.001083374l0 -1.328125l7.515625 0.0028076172l0 1.328125zm2.8861694 6.8292084l4.296875 0.0016174316l0 1.3125l-5.9375 -0.0022277832l0 -9.46875l1.640625 6.1035156E-4l0 8.15625zm10.523254 -1.121048q0 -0.625 -0.453125 -0.95329285q-0.4375 -0.34391785 -1.578125 -0.6880951q-1.140625 -0.35980225 -1.828125 -0.78193665q-1.28125 -0.812973 -1.28125 -2.109848q0 -1.15625 0.921875 -1.8902893q0.9375 -0.74964905 2.421875 -0.7490845q1.0 3.8146973E-4 1.765625 0.37565613q0.78125 0.35968018 1.21875 1.0317078q0.453125 0.67204285 0.453125 1.5001678l-1.640625 -6.1035156E-4q0 -0.75 -0.46875 -1.1720428q-0.46875 -0.4220581 -1.328125 -0.42237854q-0.8125 -3.0517578E-4 -1.265625 0.35890198q-0.4375 0.34358215 -0.4375 0.95295715q0 0.515625 0.484375 0.8751831q0.484375 0.3439331 1.578125 0.6724701q1.109375 0.328537 1.78125 0.7506714q0.671875 0.42211914 0.984375 0.9691162q0.3125 0.5313568 0.3125 1.2657318q0 1.1875 -0.90625 1.8902893q-0.90625 0.6871643 -2.46875 0.6865845q-1.03125 -3.9672852E-4 -1.890625 -0.37571716q-0.859375 -0.37532043 -1.34375 -1.0473785q-0.46875 -0.6720581 -0.46875 -1.5626831l1.640625 6.2561035E-4q0 0.796875 0.53125 1.2501984q0.546875 0.43769836 1.53125 0.43807983q0.859375 3.2043457E-4 1.296875 -0.34327698q0.4375 -0.35920715 0.4375 -0.92170715zm9.143982 1.3159332q0.59375 2.2888184E-4 0.984375 -0.3433838q0.390625 -0.3592224 0.421875 -0.85920715l1.484375 5.493164E-4q-0.03125 0.65623474 -0.421875 1.2342224q-0.375 0.5623627 -1.03125 0.8902283q-0.65625 0.32788086 -1.421875 0.32759094q-1.46875 -5.493164E-4 -2.34375 -0.95399475q-0.859375 -0.95344543 -0.859375 -2.6409454l0 -0.15625q0 -1.609375 0.859375 -2.5778046q0.859375 -0.96842957 2.34375 -0.96788025q1.25 4.7302246E-4 2.03125 0.73513794q0.796875 0.7346802 0.84375 1.9221954l-1.484375 -5.493164E-4q-0.03125 -0.60939026 -0.421875 -1.0001678q-0.390625 -0.39076233 -0.984375 -0.3909912q-0.765625 -2.89917E-4 -1.1875 0.5620575q-0.40625 0.5467224 -0.421875 1.6873322l0 0.25q0 1.140625 0.40625 1.7189026q0.421875 0.56266785 1.203125 0.56295776zm7.1795654 1.2527008q-1.5 -5.645752E-4 -2.4375 -0.9384155q-0.921875 -0.95347595 -0.921875 -2.531601l0 -0.1875q0 -1.0625 0.40625 -1.8904724q0.40625 -0.8279724 1.140625 -1.2808228q0.734375 -0.46847534 1.640625 -0.46813965q1.4375 5.493164E-4 2.21875 0.92271423q0.78125 0.9065399 0.78125 2.59404l0 0.640625l-4.59375 -0.0017242432q0.0625 0.8750305 0.578125 1.3908386q0.515625 0.50019836 1.28125 0.5004883q1.09375 4.119873E-4 1.765625 -0.8899689l0.859375 0.81282043q-0.421875 0.6404724 -1.125 0.983963q-0.703125 0.34347534 -1.59375 0.3431549zm-0.1875 -6.0313263q-0.640625 -2.4414062E-4 -1.046875 0.46835327q-0.40625 0.4529724 -0.515625 1.2654419l3.015625 0.0011291504l0 -0.125q-0.046875 -0.79689026 -0.421875 -1.2032928q-0.375 -0.40638733 -1.03125 -0.40663147zm7.9334106 0.31547546q-0.3125 -0.06262207 -0.640625 -0.06274414q-1.09375 -4.119873E-4 -1.46875 0.8432007l0 4.8125l-1.578125 -5.950928E-4l0 -7.046875l1.5 5.645752E-4l0.046875 0.79689026q0.5625 -0.9216614 1.578125 -0.9212799q0.34375 1.373291E-4 0.5625 0.09396362l0 1.484375zm2.982544 -3.155136l0 1.703125l1.234375 4.7302246E-4l0 1.171875l-1.234375 -4.7302246E-4l0 3.9375q0 0.40625 0.15625 0.59381104q0.15625 0.17193604 0.5625 0.17208862q0.28125 1.0681152E-4 0.5625 -0.07791138l0 1.234375q-0.546875 0.14041138 -1.046875 0.14022827q-1.828125 -6.866455E-4 -1.828125 -2.0006866l0 -4.0l-1.15625 -4.272461E-4l0 -1.171875l1.15625 4.272461E-4l0 -1.703125l1.59375 5.950928E-4zm6.38501 6.8461456q0 -0.4375 -0.34375 -0.6563721q-0.34375 -0.21887207 -1.15625 -0.39105225q-0.796875 -0.17218018 -1.34375 -0.4223938q-1.1875 -0.5785675 -1.1875 -1.6566925q0 -0.921875 0.765625 -1.5309601q0.78125 -0.6090851 1.953125 -0.6086426q1.265625 4.7302246E-4 2.046875 0.62576294q0.78125 0.6253052 0.78125 1.6253052l-1.59375 -6.1035156E-4q0 -0.453125 -0.34375 -0.7501221q-0.328125 -0.31262207 -0.890625 -0.3128357q-0.515625 -1.9836426E-4 -0.84375 0.24967957q-0.328125 0.23425293 -0.328125 0.6248779q0 0.375 0.296875 0.5782471q0.3125 0.20323181 1.234375 0.40670776q0.9375 0.20347595 1.46875 0.48492432q0.53125 0.28144836 0.78125 0.6877899q0.265625 0.3907318 0.265625 0.9532318q0 0.953125 -0.796875 1.5465698q-0.78125 0.5778351 -2.046875 0.57736206q-0.875 -3.3569336E-4 -1.546875 -0.31307983q-0.671875 -0.3127594 -1.0625 -0.8597717q-0.375 -0.5470123 -0.375 -1.1720123l1.546875 5.79834E-4q0.03125 0.5625 0.421875 0.8751526q0.390625 0.2970276 1.03125 0.29725647q0.625 2.4414062E-4 0.9375 -0.23402405q0.328125 -0.24987793 0.328125 -0.6248779zm8.24469 -6.8406525l0 1.703125l1.234375 4.5776367E-4l0 1.171875l-1.234375 -4.5776367E-4l0 3.9375q0 0.40625 0.15625 0.59381104q0.15625 0.17193604 0.5625 0.17208862q0.28125 1.0681152E-4 0.5625 -0.07791138l0 1.234375q-0.546875 0.14041138 -1.046875 0.14022827q-1.828125 -6.866455E-4 -1.828125 -2.0006866l0 -4.0l-1.15625 -4.272461E-4l0 -1.171875l1.15625 4.272461E-4l0 -1.703125l1.59375 5.950928E-4zm2.1506348 5.1726837q0 -1.046875 0.40625 -1.8748474q0.40625 -0.8279724 1.140625 -1.2651978q0.75 -0.45283508 1.71875 -0.45248413q1.421875 5.340576E-4 2.3125 0.92274475q0.890625 0.9065857 0.953125 2.4378662l0.015625 0.359375q0 1.046875 -0.40625 1.8748474q-0.390625 0.8123474 -1.140625 1.2651978q-0.75 0.43722534 -1.71875 0.43685913q-1.5 -5.645752E-4 -2.390625 -0.98527527q-0.890625 -1.0003357 -0.890625 -2.6409607l0 -0.078125zm1.578125 0.1255951q0 1.09375 0.453125 1.7189178q0.453125 0.60954285 1.25 0.609848q0.796875 2.89917E-4 1.234375 -0.62454224q0.453125 -0.62483215 0.453125 -1.8279572q0 -1.078125 -0.46875 -1.7032928q-0.453125 -0.62516785 -1.234375 -0.625473q-0.78125 -2.89917E-4 -1.234375 0.62454224q-0.453125 0.60920715 -0.453125 1.8279572z" fill-rule="nonzero"/><path fill="#000000" d="m694.4695 200.60147l-3.890625 -0.001449585l0 2.921875l4.546875 0.0016937256l0 1.3125l-6.1875 -0.002319336l0 -9.46875l6.140625 0.0023040771l0 1.328125l-4.5 -0.0016937256l0 2.609375l3.890625 0.0014648438l0 1.296875zm3.3173828 -2.8112488l0.046875 0.81251526q0.78125 -0.9372101 2.046875 -0.93673706q2.203125 8.239746E-4 2.234375 2.5164642l0 4.65625l-1.578125 -5.950928E-4l0 -4.5625q0 -0.671875 -0.296875 -0.9844818q-0.28125 -0.3282318 -0.9375 -0.32847595q-0.953125 -3.5095215E-4 -1.421875 0.85884094l0 5.015625l-1.59375 -5.950928E-4l0 -7.046875l1.5 5.645752E-4zm8.428101 5.0500336l1.484375 -5.0463104l1.640625 6.1035156E-4l-2.453125 7.0459595l-1.359375 -5.187988E-4l-2.46875 -7.047806l1.640625 6.2561035E-4l1.515625 5.0474396zm3.8112183 -1.5766907q0 -1.046875 0.40625 -1.8748474q0.40625 -0.8279724 1.140625 -1.2651978q0.75 -0.45285034 1.71875 -0.45248413q1.421875 5.340576E-4 2.3125 0.92274475q0.890625 0.9065857 0.953125 2.437851l0.015625 0.35939026q0 1.046875 -0.40625 1.8748474q-0.390625 0.8123474 -1.140625 1.2651978q-0.75 0.43721008 -1.71875 0.43684387q-1.5 -5.493164E-4 -2.390625 -0.98526q-0.890625 -1.0003357 -0.890625 -2.6409607l0 -0.078125zm1.578125 0.1255951q0 1.09375 0.453125 1.7189178q0.453125 0.60954285 1.25 0.60983276q0.796875 3.0517578E-4 1.234375 -0.624527q0.453125 -0.62483215 0.453125 -1.8279572q0 -1.078125 -0.46875 -1.7033081q-0.453125 -0.62516785 -1.234375 -0.62545776q-0.78125 -2.89917E-4 -1.234375 0.62454224q-0.453125 0.60920715 -0.453125 1.8279572zm8.775696 1.1907806l1.421875 -4.780716l1.6875 6.4086914E-4l-2.796875 8.108322q-0.640625 1.7810059 -2.1875 1.780426q-0.34375 -1.2207031E-4 -0.765625 -0.10966492l0 -1.234375l0.296875 0.01574707q0.609375 2.2888184E-4 0.90625 -0.2184143q0.296875 -0.20301819 0.484375 -0.7185669l0.21875 -0.6092987l-2.46875 -7.0165405l1.703125 6.2561035E-4l1.5 4.7818146z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m90.93438 121.85661l52.72442 -0.28346252" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m90.93438 121.85662l49.297386 -0.26504517" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m140.23175 121.591576l-1.118515 1.1306152l3.0836792 -1.141182l-3.0957794 -1.1079559z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m138.51846 96.029396l176.0315 0l0 51.37008l-176.0315 0z" fill-rule="evenodd"/><path fill="#000000" d="m155.58096 114.82939q-0.171875 1.5 -1.109375 2.3125q-0.921875 0.8125 -2.46875 0.8125q-1.6875 0 -2.703125 -1.203125q-1.0 -1.203125 -1.0 -3.21875l0 -0.90625q0 -1.328125 0.46875 -2.328125q0.46875 -1.0 1.328125 -1.53125q0.875 -0.546875 2.015625 -0.546875q1.5 0 2.40625 0.84375q0.921875 0.84375 1.0625 2.328125l-1.25 0q-0.15625 -1.125 -0.703125 -1.625q-0.546875 -0.515625 -1.515625 -0.515625q-1.203125 0 -1.890625 0.890625q-0.671875 0.875 -0.671875 2.515625l0 0.921875q0 1.53125 0.640625 2.453125q0.640625 0.90625 1.8125 0.90625q1.03125 0 1.578125 -0.46875q0.5625 -0.46875 0.75 -1.640625l1.25 0zm1.206253 -0.578125q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.125 -1.265625q0.734375 -0.453125 1.65625 -0.453125q1.4375 0 2.328125 1.0q0.890625 0.984375 0.890625 2.640625l0 0.09375q0 1.015625 -0.390625 1.84375q-0.390625 0.8125 -1.125 1.265625q-0.734375 0.453125 -1.6875 0.453125q-1.421875 0 -2.3125 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.203125 0.140625q0 1.171875 0.546875 1.875q0.546875 0.703125 1.453125 0.703125q0.921875 0 1.453125 -0.71875q0.546875 -0.71875 0.546875 -2.0q0 -1.171875 -0.546875 -1.890625q-0.546875 -0.71875 -1.46875 -0.71875q-0.890625 0 -1.4375 0.71875q-0.546875 0.703125 -0.546875 2.03125zm7.8511963 -3.609375l0.046875 0.890625q0.796875 -1.015625 2.109375 -1.015625q2.234375 0 2.25 2.515625l0 4.65625l-1.203125 0l0 -4.65625q-0.015625 -0.765625 -0.359375 -1.125q-0.328125 -0.375 -1.0625 -0.375q-0.578125 0 -1.03125 0.3125q-0.4375 0.3125 -0.6875 0.828125l0 5.015625l-1.203125 0l0 -7.046875l1.140625 0zm7.853897 -1.703125l0 1.703125l1.3125 0l0 0.9375l-1.3125 0l0 4.359375q0 0.421875 0.171875 0.640625q0.171875 0.21875 0.59375 0.21875q0.21875 0 0.578125 -0.078125l0 0.96875q-0.46875 0.125 -0.921875 0.125q-0.8125 0 -1.21875 -0.484375q-0.40625 -0.484375 -0.40625 -1.390625l0 -4.359375l-1.28125 0l0 -0.9375l1.28125 0l0 -1.703125l1.203125 0zm6.1194 2.78125q-0.265625 -0.03125 -0.59375 -0.03125q-1.1875 0 -1.609375 1.0l0 5.0l-1.203125 0l0 -7.046875l1.171875 0l0.03125 0.8125q0.578125 -0.9375 1.671875 -0.9375q0.34375 0 0.53125 0.09375l0 1.109375zm0.791214 2.390625q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.125 -1.265625q0.734375 -0.453125 1.65625 -0.453125q1.4375 0 2.328125 1.0q0.890625 0.984375 0.890625 2.640625l0 0.09375q0 1.015625 -0.390625 1.84375q-0.390625 0.8125 -1.125 1.265625q-0.734375 0.453125 -1.6875 0.453125q-1.421875 0 -2.3125 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.203125 0.140625q0 1.171875 0.546875 1.875q0.546875 0.703125 1.453125 0.703125q0.921875 0 1.453125 -0.71875q0.546875 -0.71875 0.546875 -2.0q0 -1.171875 -0.546875 -1.890625q-0.546875 -0.71875 -1.46875 -0.71875q-0.890625 0 -1.4375 0.71875q-0.546875 0.703125 -0.546875 2.03125zm8.023071 3.4375l-1.203125 0l0 -10.0l1.203125 0l0 10.0zm5.8151703 0l0 -6.109375l-1.109375 0l0 -0.9375l1.109375 0l0 -0.71875q0 -1.125 0.609375 -1.734375q0.609375 -0.625 1.703125 -0.625q0.421875 0 0.828125 0.109375l-0.0625 0.96875q-0.296875 -0.0625 -0.640625 -0.0625q-0.59375 0 -0.921875 0.34375q-0.3125 0.34375 -0.3125 0.984375l0 0.734375l1.5 0l0 0.9375l-1.5 0l0 6.109375l-1.203125 0zm5.3458557 0l-1.203125 0l0 -10.0l1.203125 0l0 10.0zm1.6094208 -3.578125q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.125 -1.265625q0.734375 -0.453125 1.65625 -0.453125q1.4375 0 2.328125 1.0q0.890625 0.984375 0.890625 2.640625l0 0.09375q0 1.015625 -0.390625 1.84375q-0.390625 0.8125 -1.125 1.265625q-0.734375 0.453125 -1.6875 0.453125q-1.421875 0 -2.3125 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.203125 0.140625q0 1.171875 0.546875 1.875q0.546875 0.703125 1.453125 0.703125q0.921875 0 1.453125 -0.71875q0.546875 -0.71875 0.546875 -2.0q0 -1.171875 -0.546875 -1.890625q-0.546875 -0.71875 -1.46875 -0.71875q-0.890625 0 -1.4375 0.71875q-0.546875 0.703125 -0.546875 2.03125zm12.944946 1.78125l1.359375 -5.390625l1.203125 0l-2.046875 7.046875l-0.984375 0l-1.703125 -5.34375l-1.671875 5.34375l-0.96875 0l-2.046875 -7.046875l1.203125 0l1.375 5.28125l1.640625 -5.28125l0.96875 0l1.671875 5.390625zm6.7994995 -1.921875q0 -1.625 0.765625 -2.609375q0.765625 -0.984375 2.0 -0.984375q1.25 0 1.96875 0.84375l0 -3.671875l1.203125 0l0 10.0l-1.109375 0l-0.0625 -0.75q-0.71875 0.875 -2.0 0.875q-1.234375 0 -2.0 -1.0q-0.765625 -1.0 -0.765625 -2.609375l0 -0.09375zm1.203125 0.140625q0 1.1875 0.484375 1.875q0.5 0.671875 1.375 0.671875q1.140625 0 1.671875 -1.03125l0 -3.234375q-0.546875 -1.0 -1.65625 -1.0q-0.890625 0 -1.390625 0.6875q-0.484375 0.6875 -0.484375 2.03125zm10.954102 2.734375q-0.703125 0.828125 -2.0625 0.828125q-1.140625 0 -1.734375 -0.640625q-0.578125 -0.65625 -0.578125 -1.9375l0 -4.59375l1.203125 0l0 4.546875q0 1.609375 1.296875 1.609375q1.375 0 1.828125 -1.03125l0 -5.125l1.21875 0l0 7.046875l-1.15625 0l-0.015625 -0.703125zm6.394272 -5.265625q-0.265625 -0.03125 -0.59375 -0.03125q-1.1875 0 -1.609375 1.0l0 5.0l-1.203125 0l0 -7.046875l1.171875 0l0.03125 0.8125q0.578125 -0.9375 1.671875 -0.9375q0.34375 0 0.53125 0.09375l0 1.109375zm2.416214 5.96875l-1.203125 0l0 -7.046875l1.203125 0l0 7.046875zm-1.296875 -8.90625q0 -0.296875 0.171875 -0.5q0.1875 -0.203125 0.53125 -0.203125q0.359375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.5q0 0.296875 -0.1875 0.5q-0.171875 0.1875 -0.53125 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.203125 -0.171875 -0.5zm4.359421 1.859375l0.046875 0.890625q0.796875 -1.015625 2.109375 -1.015625q2.234375 0 2.25 2.515625l0 4.65625l-1.203125 0l0 -4.65625q-0.015625 -0.765625 -0.359375 -1.125q-0.328125 -0.375 -1.0625 -0.375q-0.578125 0 -1.03125 0.3125q-0.4375 0.3125 -0.6875 0.828125l0 5.015625l-1.203125 0l0 -7.046875l1.140625 0zm5.932022 3.46875q0 -1.640625 0.75 -2.609375q0.765625 -0.984375 2.03125 -0.984375q1.28125 0 2.015625 0.90625l0.046875 -0.78125l1.109375 0l0 6.875q0 1.375 -0.8125 2.15625q-0.8125 0.78125 -2.1875 0.78125q-0.75 0 -1.484375 -0.328125q-0.734375 -0.3125 -1.109375 -0.875l0.625 -0.734375q0.765625 0.96875 1.890625 0.96875q0.875 0 1.359375 -0.5q0.5 -0.5 0.5 -1.390625l0 -0.609375q-0.71875 0.828125 -1.96875 0.828125q-1.234375 0 -2.0 -0.984375q-0.765625 -1.0 -0.765625 -2.71875zm1.203125 0.140625q0 1.1875 0.484375 1.875q0.5 0.671875 1.375 0.671875q1.140625 0 1.671875 -1.03125l0 -3.21875q-0.546875 -1.015625 -1.65625 -1.015625q-0.875 0 -1.375 0.6875q-0.5 0.6875 -0.5 2.03125z" fill-rule="nonzero"/><path fill="#000000" d="m151.83096 127.86064q-0.265625 -0.03125 -0.59375 -0.03125q-1.1875 0 -1.609375 1.0l0 5.0l-1.203125 0l0 -7.046875l1.171875 0l0.03125 0.8125q0.578125 -0.9375 1.671875 -0.9375q0.34375 0 0.53125 0.09375l0 1.109375zm4.025589 6.09375q-1.421875 0 -2.328125 -0.9375q-0.890625 -0.9375 -0.890625 -2.515625l0 -0.21875q0 -1.046875 0.390625 -1.859375q0.40625 -0.828125 1.125 -1.296875q0.71875 -0.46875 1.5625 -0.46875q1.375 0 2.125 0.90625q0.765625 0.90625 0.765625 2.59375l0 0.5l-4.765625 0q0.015625 1.03125 0.59375 1.671875q0.59375 0.640625 1.484375 0.640625q0.640625 0 1.078125 -0.25q0.453125 -0.265625 0.78125 -0.6875l0.734375 0.5625q-0.875 1.359375 -2.65625 1.359375zm-0.140625 -6.3125q-0.734375 0 -1.234375 0.53125q-0.484375 0.53125 -0.609375 1.484375l3.53125 0l0 -0.078125q-0.046875 -0.921875 -0.5 -1.421875q-0.4375 -0.515625 -1.1875 -0.515625zm3.9985504 2.609375q0 -1.65625 0.75 -2.625q0.765625 -0.96875 2.046875 -0.96875q1.25 0 1.96875 0.84375l0.0625 -0.71875l1.09375 0l0 9.75l-1.203125 0l0 -3.359375q-0.71875 0.78125 -1.9375 0.78125q-1.265625 0 -2.03125 -0.984375q-0.75 -1.0 -0.75 -2.640625l0 -0.078125zm1.203125 0.140625q0 1.203125 0.5 1.890625q0.515625 0.6875 1.375 0.6875q1.078125 0 1.640625 -0.9375l0 -3.453125q-0.5625 -0.9375 -1.625 -0.9375q-0.875 0 -1.390625 0.703125q-0.5 0.6875 -0.5 2.046875zm11.012665 2.734375q-0.703125 0.828125 -2.0625 0.828125q-1.140625 0 -1.734375 -0.640625q-0.578125 -0.65625 -0.578125 -1.9375l0 -4.59375l1.203125 0l0 4.546875q0 1.609375 1.296875 1.609375q1.375 0 1.828125 -1.03125l0 -5.125l1.21875 0l0 7.046875l-1.15625 0l-0.015625 -0.703125zm5.909897 0.828125q-1.421875 0 -2.328125 -0.9375q-0.890625 -0.9375 -0.890625 -2.515625l0 -0.21875q0 -1.046875 0.390625 -1.859375q0.40625 -0.828125 1.125 -1.296875q0.71875 -0.46875 1.5625 -0.46875q1.375 0 2.125 0.90625q0.765625 0.90625 0.765625 2.59375l0 0.5l-4.765625 0q0.015625 1.03125 0.59375 1.671875q0.59375 0.640625 1.484375 0.640625q0.640625 0 1.078125 -0.25q0.453125 -0.265625 0.78125 -0.6875l0.734375 0.5625q-0.875 1.359375 -2.65625 1.359375zm-0.140625 -6.3125q-0.734375 0 -1.234375 0.53125q-0.484375 0.53125 -0.609375 1.484375l3.53125 0l0 -0.078125q-0.046875 -0.921875 -0.5 -1.421875q-0.4375 -0.515625 -1.1875 -0.515625zm8.389175 4.3125q0 -0.484375 -0.375 -0.75q-0.359375 -0.265625 -1.28125 -0.453125q-0.90625 -0.203125 -1.453125 -0.46875q-0.53125 -0.28125 -0.796875 -0.65625q-0.25 -0.390625 -0.25 -0.90625q0 -0.859375 0.734375 -1.453125q0.734375 -0.609375 1.875 -0.609375q1.1875 0 1.9375 0.625q0.75 0.609375 0.75 1.578125l-1.21875 0q0 -0.5 -0.421875 -0.859375q-0.421875 -0.359375 -1.046875 -0.359375q-0.65625 0 -1.03125 0.296875q-0.375 0.28125 -0.375 0.75q0 0.421875 0.34375 0.65625q0.34375 0.21875 1.25 0.421875q0.90625 0.203125 1.453125 0.484375q0.5625 0.265625 0.828125 0.671875q0.28125 0.390625 0.28125 0.953125q0 0.9375 -0.765625 1.515625q-0.75 0.5625 -1.953125 0.5625q-0.84375 0 -1.5 -0.296875q-0.640625 -0.296875 -1.015625 -0.828125q-0.359375 -0.546875 -0.359375 -1.171875l1.203125 0q0.03125 0.609375 0.484375 0.96875q0.453125 0.34375 1.1875 0.34375q0.6875 0 1.09375 -0.265625q0.421875 -0.28125 0.421875 -0.75zm4.4035645 -6.875l0 1.703125l1.3125 0l0 0.9375l-1.3125 0l0 4.359375q0 0.421875 0.171875 0.640625q0.171875 0.21875 0.59375 0.21875q0.21875 0 0.578125 -0.078125l0 0.96875q-0.46875 0.125 -0.921875 0.125q-0.8125 0 -1.21875 -0.484375q-0.40625 -0.484375 -0.40625 -1.390625l0 -4.359375l-1.28125 0l0 -0.9375l1.28125 0l0 -1.703125l1.203125 0zm11.965775 5.3125q0 1.609375 -0.734375 2.59375q-0.734375 0.96875 -2.0 0.96875q-1.28125 0 -2.015625 -0.8125l0 3.390625l-1.203125 0l0 -9.75l1.109375 0l0.046875 0.78125q0.75 -0.90625 2.046875 -0.90625q1.265625 0 2.0 0.953125q0.75 0.953125 0.75 2.671875l0 0.109375zm-1.203125 -0.140625q0 -1.1875 -0.515625 -1.875q-0.5 -0.703125 -1.390625 -0.703125q-1.09375 0 -1.640625 0.96875l0 3.375q0.546875 0.953125 1.65625 0.953125q0.875 0 1.375 -0.671875q0.515625 -0.6875 0.515625 -2.046875zm6.1338043 -2.390625q-0.265625 -0.03125 -0.59375 -0.03125q-1.1875 0 -1.609375 1.0l0 5.0l-1.203125 0l0 -7.046875l1.171875 0l0.03125 0.8125q0.578125 -0.9375 1.671875 -0.9375q0.34375 0 0.53125 0.09375l0 1.109375zm0.791214 2.390625q0 -1.046875 0.40625 -1.875q0.40625 -0.828125 1.125 -1.265625q0.734375 -0.453125 1.65625 -0.453125q1.4375 0 2.328125 1.0q0.890625 0.984375 0.890625 2.640625l0 0.09375q0 1.015625 -0.390625 1.84375q-0.390625 0.8125 -1.125 1.265625q-0.734375 0.453125 -1.6875 0.453125q-1.421875 0 -2.3125 -0.984375q-0.890625 -1.0 -0.890625 -2.640625l0 -0.078125zm1.203125 0.140625q0 1.171875 0.546875 1.875q0.546875 0.703125 1.453125 0.703125q0.921875 0 1.453125 -0.71875q0.546875 -0.71875 0.546875 -2.0q0 -1.171875 -0.546875 -1.890625q-0.546875 -0.71875 -1.46875 -0.71875q-0.890625 0 -1.4375 0.71875q-0.546875 0.703125 -0.546875 2.03125zm9.538696 2.578125q0.640625 0 1.125 -0.390625q0.484375 -0.390625 0.53125 -0.96875l1.140625 0q-0.03125 0.609375 -0.421875 1.15625q-0.375 0.546875 -1.015625 0.875q-0.640625 0.3125 -1.359375 0.3125q-1.4375 0 -2.296875 -0.953125q-0.84375 -0.96875 -0.84375 -2.625l0 -0.203125q0 -1.03125 0.375 -1.828125q0.390625 -0.796875 1.09375 -1.234375q0.703125 -0.453125 1.671875 -0.453125q1.171875 0 1.953125 0.71875q0.796875 0.703125 0.84375 1.828125l-1.140625 0q-0.046875 -0.671875 -0.515625 -1.109375q-0.46875 -0.453125 -1.140625 -0.453125q-0.921875 0 -1.4375 0.671875q-0.5 0.65625 -0.5 1.90625l0 0.21875q0 1.21875 0.5 1.875q0.515625 0.65625 1.4375 0.65625zm7.0701904 0.984375q-1.421875 0 -2.328125 -0.9375q-0.890625 -0.9375 -0.890625 -2.515625l0 -0.21875q0 -1.046875 0.390625 -1.859375q0.40625 -0.828125 1.125 -1.296875q0.71875 -0.46875 1.5625 -0.46875q1.375 0 2.125 0.90625q0.765625 0.90625 0.765625 2.59375l0 0.5l-4.765625 0q0.015625 1.03125 0.59375 1.671875q0.59375 0.640625 1.484375 0.640625q0.640625 0 1.078125 -0.25q0.453125 -0.265625 0.78125 -0.6875l0.734375 0.5625q-0.875 1.359375 -2.65625 1.359375zm-0.140625 -6.3125q-0.734375 0 -1.234375 0.53125q-0.484375 0.53125 -0.609375 1.484375l3.53125 0l0 -0.078125q-0.046875 -0.921875 -0.5 -1.421875q-0.4375 -0.515625 -1.1875 -0.515625zm8.389175 4.3125q0 -0.484375 -0.375 -0.75q-0.359375 -0.265625 -1.28125 -0.453125q-0.90625 -0.203125 -1.453125 -0.46875q-0.53125 -0.28125 -0.796875 -0.65625q-0.25 -0.390625 -0.25 -0.90625q0 -0.859375 0.734375 -1.453125q0.734375 -0.609375 1.875 -0.609375q1.1875 0 1.9375 0.625q0.75 0.609375 0.75 1.578125l-1.21875 0q0 -0.5 -0.421875 -0.859375q-0.421875 -0.359375 -1.046875 -0.359375q-0.65625 0 -1.03125 0.296875q-0.375 0.28125 -0.375 0.75q0 0.421875 0.34375 0.65625q0.34375 0.21875 1.25 0.421875q0.90625 0.203125 1.453125 0.484375q0.5625 0.265625 0.828125 0.671875q0.28125 0.390625 0.28125 0.953125q0 0.9375 -0.765625 1.515625q-0.75 0.5625 -1.953125 0.5625q-0.84375 0 -1.5 -0.296875q-0.640625 -0.296875 -1.015625 -0.828125q-0.359375 -0.546875 -0.359375 -1.171875l1.203125 0q0.03125 0.609375 0.484375 0.96875q0.453125 0.34375 1.1875 0.34375q0.6875 0 1.09375 -0.265625q0.421875 -0.28125 0.421875 -0.75zm6.8723145 0q0 -0.484375 -0.375 -0.75q-0.359375 -0.265625 -1.28125 -0.453125q-0.90625 -0.203125 -1.453125 -0.46875q-0.53125 -0.28125 -0.796875 -0.65625q-0.25 -0.390625 -0.25 -0.90625q0 -0.859375 0.734375 -1.453125q0.734375 -0.609375 1.875 -0.609375q1.1875 0 1.9375 0.625q0.75 0.609375 0.75 1.578125l-1.21875 0q0 -0.5 -0.421875 -0.859375q-0.421875 -0.359375 -1.046875 -0.359375q-0.65625 0 -1.03125 0.296875q-0.375 0.28125 -0.375 0.75q0 0.421875 0.34375 0.65625q0.34375 0.21875 1.25 0.421875q0.90625 0.203125 1.453125 0.484375q0.5625 0.265625 0.828125 0.671875q0.28125 0.390625 0.28125 0.953125q0 0.9375 -0.765625 1.515625q-0.75 0.5625 -1.953125 0.5625q-0.84375 0 -1.5 -0.296875q-0.640625 -0.296875 -1.015625 -0.828125q-0.359375 -0.546875 -0.359375 -1.171875l1.203125 0q0.03125 0.609375 0.484375 0.96875q0.453125 0.34375 1.1875 0.34375q0.6875 0 1.09375 -0.265625q0.421875 -0.28125 0.421875 -0.75zm4.0754395 1.875l-1.203125 0l0 -7.046875l1.203125 0l0 7.046875zm-1.296875 -8.90625q0 -0.296875 0.171875 -0.5q0.1875 -0.203125 0.53125 -0.203125q0.359375 0 0.53125 0.203125q0.1875 0.203125 0.1875 0.5q0 0.296875 -0.1875 0.5q-0.171875 0.1875 -0.53125 0.1875q-0.34375 0 -0.53125 -0.1875q-0.171875 -0.203125 -0.171875 -0.5zm4.359421 1.859375l0.046875 0.890625q0.796875 -1.015625 2.109375 -1.015625q2.234375 0 2.25 2.515625l0 4.65625l-1.203125 0l0 -4.65625q-0.015625 -0.765625 -0.359375 -1.125q-0.328125 -0.375 -1.0625 -0.375q-0.578125 0 -1.03125 0.3125q-0.4375 0.3125 -0.6875 0.828125l0 5.015625l-1.203125 0l0 -7.046875l1.140625 0zm5.932022 3.46875q0 -1.640625 0.75 -2.609375q0.765625 -0.984375 2.03125 -0.984375q1.28125 0 2.015625 0.90625l0.046875 -0.78125l1.109375 0l0 6.875q0 1.375 -0.8125 2.15625q-0.8125 0.78125 -2.1875 0.78125q-0.75 0 -1.484375 -0.328125q-0.734375 -0.3125 -1.109375 -0.875l0.625 -0.734375q0.765625 0.96875 1.890625 0.96875q0.875 0 1.359375 -0.5q0.5 -0.5 0.5 -1.390625l0 -0.609375q-0.71875 0.828125 -1.96875 0.828125q-1.234375 0 -2.0 -0.984375q-0.765625 -1.0 -0.765625 -2.71875zm1.203125 0.140625q0 1.1875 0.484375 1.875q0.5 0.671875 1.375 0.671875q1.140625 0 1.671875 -1.03125l0 -3.21875q-0.546875 -1.015625 -1.65625 -1.015625q-0.875 0 -1.375 0.6875q-0.5 0.6875 -0.5 2.03125z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m338.77878 312.06778l202.26773 -164.0315" fill-rule="evenodd"/><path stroke="#4f81bd" stroke-width="1.0" stroke-linejoin="round" stroke-linecap="butt" d="m338.77878 312.06778l199.60593 -161.87286" fill-rule="evenodd"/><path fill="#4f81bd" stroke="#4f81bd" stroke-width="1.0" stroke-linecap="butt" d="m538.3847 150.19492l-0.1651001 1.5818024l1.6914673 -2.8196259l-3.1081543 1.0727081z" fill-rule="evenodd"/><path fill="#000000" fill-opacity="0.0" d="m108.485565 302.79794l166.61417 0l0 72.62991l-166.61417 0z" fill-rule="evenodd"/><path fill="#000000" d="m126.048065 324.59793l-1.953125 0l0 -4.0625l-3.8125 0l0 4.0625l-1.953125 0l0 -9.46875l1.953125 0l0 3.828125l3.8125 0l0 -3.828125l1.953125 0l0 9.46875zm8.838776 -7.890625l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm8.245483 0l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm3.0579834 4.546875l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm7.1125336 5.734375l-1.390625 0l3.484375 -10.28125l1.390625 0l-3.484375 10.28125zm8.884781 -0.8125l-1.890625 0l0 -7.25l-2.234375 0.703125l0 -1.53125l3.921875 -1.40625l0.203125 0l0 9.484375zm3.240509 -0.921875q0 -0.453125 0.296875 -0.734375q0.3125 -0.28125 0.765625 -0.28125q0.46875 0 0.765625 0.28125q0.3125 0.28125 0.3125 0.734375q0 0.4375 -0.3125 0.71875q-0.296875 0.28125 -0.765625 0.28125q-0.453125 0 -0.765625 -0.28125q-0.296875 -0.28125 -0.296875 -0.71875zm8.278442 0.921875l-1.890625 0l0 -7.25l-2.234375 0.703125l0 -1.53125l3.921875 -1.40625l0.203125 0l0 9.484375zm3.631134 2.375l-0.96875 -0.515625l0.234375 -0.421875q0.421875 -0.796875 0.4375 -1.578125l0 -1.453125l1.59375 0l0 1.296875q-0.015625 0.71875 -0.375 1.453125q-0.359375 0.734375 -0.921875 1.21875zm13.932327 -2.375l-1.953125 0l0 -4.0625l-3.8125 0l0 4.0625l-1.953125 0l0 -9.46875l1.953125 0l0 3.828125l3.8125 0l0 -3.828125l1.953125 0l0 9.46875zm8.838776 -7.890625l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm8.245483 0l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm3.0579834 4.546875l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm7.1125336 5.734375l-1.390625 0l3.484375 -10.28125l1.390625 0l-3.484375 10.28125zm10.806656 -0.8125l-6.5 0l0 -1.28125l3.0625 -3.28125q0.640625 -0.6875 0.9375 -1.203125q0.3125 -0.515625 0.3125 -0.96875q0 -0.625 -0.328125 -0.984375q-0.3125 -0.375 -0.90625 -0.375q-0.640625 0 -1.015625 0.453125q-0.359375 0.4375 -0.359375 1.140625l-1.890625 0q0 -0.859375 0.40625 -1.578125q0.421875 -0.71875 1.171875 -1.125q0.765625 -0.40625 1.71875 -0.40625q1.46875 0 2.265625 0.703125q0.8125 0.703125 0.8125 1.984375q0 0.703125 -0.359375 1.4375q-0.359375 0.734375 -1.25 1.703125l-2.15625 2.265625l4.078125 0l0 1.515625zm1.709259 2.375l-0.96875 -0.515625l0.234375 -0.421875q0.421875 -0.796875 0.4375 -1.578125l0 -1.453125l1.59375 0l0 1.296875q-0.015625 0.71875 -0.375 1.453125q-0.359375 0.734375 -0.921875 1.21875z" fill-rule="nonzero"/><path fill="#000000" d="m117.93869 337.0198q0 -1.609375 0.765625 -2.59375q0.765625 -1.0 2.078125 -1.0q1.15625 0 1.8125 0.796875l0.078125 -0.671875l1.703125 0l0 6.8125q0 0.921875 -0.421875 1.609375q-0.421875 0.6875 -1.1875 1.03125q-0.765625 0.359375 -1.78125 0.359375q-0.765625 0 -1.515625 -0.3125q-0.734375 -0.296875 -1.109375 -0.78125l0.84375 -1.15625q0.703125 0.796875 1.703125 0.796875q0.75 0 1.15625 -0.40625q0.421875 -0.40625 0.421875 -1.140625l0 -0.375q-0.65625 0.734375 -1.71875 0.734375q-1.265625 0 -2.046875 -0.984375q-0.78125 -1.0 -0.78125 -2.640625l0 -0.078125zm1.875 0.140625q0 0.953125 0.375 1.5q0.390625 0.546875 1.0625 0.546875q0.859375 0 1.234375 -0.640625l0 -2.96875q-0.375 -0.640625 -1.21875 -0.640625q-0.671875 0 -1.0625 0.5625q-0.390625 0.546875 -0.390625 1.640625zm9.638962 -0.03125l-1.5625 0l0 3.46875l-1.953125 0l0 -9.46875l3.515625 0q1.6875 0 2.59375 0.75q0.921875 0.734375 0.921875 2.109375q0 0.96875 -0.421875 1.625q-0.421875 0.640625 -1.28125 1.015625l2.046875 3.875l0 0.09375l-2.09375 0l-1.765625 -3.46875zm-1.5625 -1.578125l1.578125 0q0.734375 0 1.140625 -0.375q0.40625 -0.375 0.40625 -1.03125q0 -0.671875 -0.390625 -1.046875q-0.375 -0.390625 -1.171875 -0.390625l-1.5625 0l0 2.84375zm8.505798 1.703125l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm14.081284 1.765625q-0.109375 1.53125 -1.125 2.40625q-1.015625 0.875 -2.6875 0.875q-1.8125 0 -2.859375 -1.21875q-1.046875 -1.234375 -1.046875 -3.375l0 -0.578125q0 -1.359375 0.46875 -2.40625q0.484375 -1.046875 1.375 -1.59375q0.90625 -0.5625 2.09375 -0.5625q1.640625 0 2.640625 0.890625q1.0 0.875 1.15625 2.453125l-1.953125 0q-0.0625 -0.90625 -0.515625 -1.3125q-0.4375 -0.421875 -1.328125 -0.421875q-0.984375 0 -1.46875 0.703125q-0.484375 0.6875 -0.5 2.15625l0 0.71875q0 1.53125 0.46875 2.25q0.46875 0.703125 1.46875 0.703125q0.90625 0 1.34375 -0.40625q0.453125 -0.421875 0.515625 -1.28125l1.953125 0zm1.6424255 5.53125l-0.96875 -0.515625l0.234375 -0.421875q0.421875 -0.796875 0.4375 -1.578125l0 -1.453125l1.59375 0l0 1.296875q-0.015625 0.71875 -0.375 1.453125q-0.359375 0.734375 -0.921875 1.21875zm13.354202 -10.265625l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm8.542358 4.734375q-0.109375 1.53125 -1.125 2.40625q-1.015625 0.875 -2.6875 0.875q-1.8125 0 -2.859375 -1.21875q-1.046875 -1.234375 -1.046875 -3.375l0 -0.578125q0 -1.359375 0.46875 -2.40625q0.484375 -1.046875 1.375 -1.59375q0.90625 -0.5625 2.09375 -0.5625q1.640625 0 2.640625 0.890625q1.0 0.875 1.15625 2.453125l-1.953125 0q-0.0625 -0.90625 -0.515625 -1.3125q-0.4375 -0.421875 -1.328125 -0.421875q-0.984375 0 -1.46875 0.703125q-0.484375 0.6875 -0.5 2.15625l0 0.71875q0 1.53125 0.46875 2.25q0.46875 0.703125 1.46875 0.703125q0.90625 0 1.34375 -0.40625q0.453125 -0.421875 0.515625 -1.28125l1.953125 0zm3.2361755 -0.1875l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm15.962799 2.359375l0.921875 -4.484375l1.828125 0l-1.796875 7.046875l-1.578125 0l-1.34375 -4.4375l-1.328125 4.4375l-1.5625 0l-1.796875 -7.046875l1.8125 0l0.921875 4.484375l1.28125 -4.484375l1.359375 0l1.28125 4.484375zm5.6537323 2.5625l-1.890625 0l0 -7.046875l1.890625 0l0 7.046875zm-2.0 -8.859375q0 -0.421875 0.28125 -0.6875q0.296875 -0.28125 0.78125 -0.28125q0.484375 0 0.765625 0.28125q0.28125 0.265625 0.28125 0.6875q0 0.421875 -0.296875 0.703125q-0.28125 0.265625 -0.765625 0.265625q-0.46875 0 -0.765625 -0.265625q-0.28125 -0.28125 -0.28125 -0.703125zm5.799408 0.09375l0 1.71875l1.203125 0l0 1.390625l-1.203125 0l0 3.515625q0 0.390625 0.15625 0.5625q0.15625 0.15625 0.578125 0.15625q0.3125 0 0.546875 -0.046875l0 1.4375q-0.546875 0.15625 -1.140625 0.15625q-1.984375 0 -2.015625 -2.0l0 -3.78125l-1.03125 0l0 -1.390625l1.03125 0l0 -1.71875l1.875 0zm4.0971985 2.484375q0.75 -0.890625 1.875 -0.890625q2.296875 0 2.328125 2.65625l0 4.515625l-1.890625 0l0 -4.453125q0 -0.609375 -0.265625 -0.890625q-0.25 -0.296875 -0.859375 -0.296875q-0.828125 0 -1.1875 0.640625l0 5.0l-1.890625 0l0 -10.0l1.890625 0l0 3.71875zm8.636414 2.703125q0 -1.0625 0.40625 -1.875q0.40625 -0.828125 1.15625 -1.265625q0.765625 -0.453125 1.765625 -0.453125q1.4375 0 2.328125 0.875q0.90625 0.875 1.015625 2.359375l0 0.484375q0 1.625 -0.90625 2.609375q-0.890625 0.96875 -2.421875 0.96875q-1.515625 0 -2.4375 -0.96875q-0.90625 -0.984375 -0.90625 -2.65625l0 -0.078125zm1.890625 0.125q0 1.0 0.375 1.53125q0.375 0.53125 1.078125 0.53125q0.6875 0 1.0625 -0.515625q0.390625 -0.53125 0.390625 -1.671875q0 -0.984375 -0.390625 -1.53125q-0.375 -0.546875 -1.078125 -0.546875q-0.6875 0 -1.0625 0.546875q-0.375 0.53125 -0.375 1.65625zm9.895493 -1.828125q-0.375 -0.046875 -0.671875 -0.046875q-1.0625 0 -1.390625 0.71875l0 4.609375l-1.890625 0l0 -7.046875l1.78125 0l0.046875 0.84375q0.578125 -0.96875 1.578125 -0.96875q0.3125 0 0.578125 0.078125l-0.03125 1.8125z" fill-rule="nonzero"/><path fill="#000000" d="m124.329315 354.03543l0.921875 -4.484375l1.828125 0l-1.796875 7.046875l-1.578125 0l-1.34375 -4.4375l-1.328125 4.4375l-1.5625 0l-1.796875 -7.046875l1.8125 0l0.921875 4.484375l1.28125 -4.484375l1.359375 0l1.28125 4.484375zm5.6537323 2.5625l-1.890625 0l0 -7.046875l1.890625 0l0 7.046875zm-2.0 -8.859375q0 -0.421875 0.28125 -0.6875q0.296875 -0.28125 0.78125 -0.28125q0.484375 0 0.765625 0.28125q0.28125 0.265625 0.28125 0.6875q0 0.421875 -0.296875 0.703125q-0.28125 0.265625 -0.765625 0.265625q-0.46875 0 -0.765625 -0.265625q-0.28125 -0.28125 -0.28125 -0.703125zm5.799408 0.09375l0 1.71875l1.203125 0l0 1.390625l-1.203125 0l0 3.515625q0 0.390625 0.15625 0.5625q0.15625 0.15625 0.578125 0.15625q0.3125 0 0.546875 -0.046875l0 1.4375q-0.546875 0.15625 -1.140625 0.15625q-1.984375 0 -2.015625 -2.0l0 -3.78125l-1.03125 0l0 -1.390625l1.03125 0l0 -1.71875l1.875 0zm4.0971985 2.484375q0.75 -0.890625 1.875 -0.890625q2.296875 0 2.328125 2.65625l0 4.515625l-1.890625 0l0 -4.453125q0 -0.609375 -0.265625 -0.890625q-0.25 -0.296875 -0.859375 -0.296875q-0.828125 0 -1.1875 0.640625l0 5.0l-1.890625 0l0 -10.0l1.890625 0l0 3.71875zm5.317398 2.703125q0 -1.0625 0.40625 -1.875q0.40625 -0.828125 1.15625 -1.265625q0.765625 -0.453125 1.765625 -0.453125q1.4375 0 2.328125 0.875q0.90625 0.875 1.015625 2.359375l0 0.484375q0 1.625 -0.90625 2.609375q-0.890625 0.96875 -2.421875 0.96875q-1.515625 0 -2.4375 -0.96875q-0.90625 -0.984375 -0.90625 -2.65625l0 -0.078125zm1.890625 0.125q0 1.0 0.375 1.53125q0.375 0.53125 1.078125 0.53125q0.6875 0 1.0625 -0.515625q0.390625 -0.53125 0.390625 -1.671875q0 -0.984375 -0.390625 -1.53125q-0.375 -0.546875 -1.078125 -0.546875q-0.6875 0 -1.0625 0.546875q-0.375 0.53125 -0.375 1.65625zm10.161118 2.734375q-0.6875 0.84375 -1.921875 0.84375q-1.140625 0 -1.734375 -0.640625q-0.59375 -0.65625 -0.609375 -1.90625l0 -4.625l1.890625 0l0 4.546875q0 1.109375 1.0 1.109375q0.953125 0 1.3125 -0.671875l0 -4.984375l1.890625 0l0 7.046875l-1.78125 0l-0.046875 -0.71875zm5.489273 -8.046875l0 1.71875l1.203125 0l0 1.390625l-1.203125 0l0 3.515625q0 0.390625 0.15625 0.5625q0.15625 0.15625 0.578125 0.15625q0.3125 0 0.546875 -0.046875l0 1.4375q-0.546875 0.15625 -1.140625 0.15625q-1.984375 0 -2.015625 -2.0l0 -3.78125l-1.03125 0l0 -1.390625l1.03125 0l0 -1.71875l1.875 0zm12.838089 0.875l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm3.0579834 6.328125l4.140625 0l0 1.5625l-6.09375 0l0 -9.46875l1.953125 0l0 7.90625zm10.185989 -0.921875q0 -0.5625 -0.390625 -0.84375q-0.390625 -0.296875 -1.40625 -0.625q-1.015625 -0.328125 -1.609375 -0.65625q-1.625 -0.875 -1.625 -2.34375q0 -0.765625 0.4375 -1.359375q0.4375 -0.609375 1.25 -0.953125q0.8125 -0.34375 1.8125 -0.34375q1.015625 0 1.8125 0.375q0.796875 0.359375 1.234375 1.03125q0.4375 0.671875 0.4375 1.53125l-1.953125 0q0 -0.65625 -0.40625 -1.015625q-0.40625 -0.359375 -1.15625 -0.359375q-0.71875 0 -1.125 0.3125q-0.390625 0.296875 -0.390625 0.78125q0 0.46875 0.46875 0.78125q0.46875 0.3125 1.375 0.578125q1.671875 0.5 2.421875 1.25q0.765625 0.734375 0.765625 1.84375q0 1.234375 -0.9375 1.9375q-0.921875 0.6875 -2.5 0.6875q-1.09375 0 -2.0 -0.390625q-0.890625 -0.40625 -1.359375 -1.09375q-0.46875 -0.703125 -0.46875 -1.625l1.953125 0q0 1.578125 1.875 1.578125q0.703125 0 1.09375 -0.28125q0.390625 -0.296875 0.390625 -0.796875z" fill-rule="nonzero"/><path fill="#000000" fill-opacity="0.0" d="m495.30447 302.80316l166.61417 0l0 72.62991l-166.61417 0z" fill-rule="evenodd"/><path fill="#000000" d="m512.86694 324.60315l-1.9530945 0l0 -4.0625l-3.8125 0l0 4.0625l-1.953125 0l0 -9.46875l1.953125 0l0 3.828125l3.8125 0l0 -3.828125l1.9530945 0l0 9.46875zm8.838806 -7.890625l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm8.245483 0l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm3.0579834 4.546875l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm7.112549 5.734375l-1.390625 0l3.484375 -10.28125l1.390625 0l-3.484375 10.28125zm8.884766 -0.8125l-1.890625 0l0 -7.25l-2.234375 0.703125l0 -1.53125l3.921875 -1.40625l0.203125 0l0 9.484375zm3.2404785 -0.921875q0 -0.453125 0.296875 -0.734375q0.3125 -0.28125 0.765625 -0.28125q0.46875 0 0.765625 0.28125q0.3125 0.28125 0.3125 0.734375q0 0.4375 -0.3125 0.71875q-0.296875 0.28125 -0.765625 0.28125q-0.453125 0 -0.765625 -0.28125q-0.296875 -0.28125 -0.296875 -0.71875zm8.278442 0.921875l-1.890625 0l0 -7.25l-2.234375 0.703125l0 -1.53125l3.921875 -1.40625l0.203125 0l0 9.484375zm3.6311646 2.375l-0.96875 -0.515625l0.234375 -0.421875q0.421875 -0.796875 0.4375 -1.578125l0 -1.453125l1.59375 0l0 1.296875q-0.015625 0.71875 -0.375 1.453125q-0.359375 0.734375 -0.921875 1.21875zm13.932312 -2.375l-1.953125 0l0 -4.0625l-3.8125 0l0 4.0625l-1.953125 0l0 -9.46875l1.953125 0l0 3.828125l3.8125 0l0 -3.828125l1.953125 0l0 9.46875zm8.838806 -7.890625l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm8.245483 0l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm3.0579834 4.546875l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm7.112488 5.734375l-1.390625 0l3.484375 -10.28125l1.390625 0l-3.484375 10.28125zm10.806702 -0.8125l-6.5 0l0 -1.28125l3.0625 -3.28125q0.640625 -0.6875 0.9375 -1.203125q0.3125 -0.515625 0.3125 -0.96875q0 -0.625 -0.328125 -0.984375q-0.3125 -0.375 -0.90625 -0.375q-0.640625 0 -1.015625 0.453125q-0.359375 0.4375 -0.359375 1.140625l-1.890625 0q0 -0.859375 0.40625 -1.578125q0.421875 -0.71875 1.171875 -1.125q0.765625 -0.40625 1.71875 -0.40625q1.46875 0 2.265625 0.703125q0.8125 0.703125 0.8125 1.984375q0 0.703125 -0.359375 1.4375q-0.359375 0.734375 -1.25 1.703125l-2.15625 2.265625l4.078125 0l0 1.515625zm1.7092285 2.375l-0.96875 -0.515625l0.234375 -0.421875q0.421875 -0.796875 0.4375 -1.578125l0 -1.453125l1.59375 0l0 1.296875q-0.015625 0.71875 -0.375 1.453125q-0.359375 0.734375 -0.921875 1.21875z" fill-rule="nonzero"/><path fill="#000000" d="m504.7576 337.02502q0 -1.609375 0.765625 -2.59375q0.765625 -1.0 2.078125 -1.0q1.15625 0 1.8125 0.796875l0.078125 -0.671875l1.703125 0l0 6.8125q0 0.921875 -0.421875 1.609375q-0.421875 0.6875 -1.1875 1.03125q-0.765625 0.359375 -1.78125 0.359375q-0.765625 0 -1.515625 -0.3125q-0.734375 -0.296875 -1.109375 -0.78125l0.84375 -1.15625q0.703125 0.796875 1.703125 0.796875q0.75 0 1.15625 -0.40625q0.421875 -0.40625 0.421875 -1.140625l0 -0.375q-0.65625 0.734375 -1.71875 0.734375q-1.265625 0 -2.046875 -0.984375q-0.78125 -1.0 -0.78125 -2.640625l0 -0.078125zm1.875 0.140625q0 0.953125 0.375 1.5q0.390625 0.546875 1.0625 0.546875q0.859375 0 1.234375 -0.640625l0 -2.96875q-0.375 -0.640625 -1.21875 -0.640625q-0.671875 0 -1.0625 0.5625q-0.390625 0.546875 -0.390625 1.640625zm9.638947 -0.03125l-1.5625 0l0 3.46875l-1.953125 0l0 -9.46875l3.515625 0q1.6875 0 2.59375 0.75q0.921875 0.734375 0.921875 2.109375q0 0.96875 -0.421875 1.625q-0.421875 0.640625 -1.28125 1.015625l2.046875 3.875l0 0.09375l-2.09375 0l-1.765625 -3.46875zm-1.5625 -1.578125l1.578125 0q0.734375 0 1.140625 -0.375q0.40625 -0.375 0.40625 -1.03125q0 -0.671875 -0.390625 -1.046875q-0.375 -0.390625 -1.171875 -0.390625l-1.5625 0l0 2.84375zm8.505798 1.703125l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm14.081299 1.765625q-0.109375 1.53125 -1.125 2.40625q-1.015625 0.875 -2.6875 0.875q-1.8125 0 -2.859375 -1.21875q-1.046875 -1.234375 -1.046875 -3.375l0 -0.578125q0 -1.359375 0.46875 -2.40625q0.484375 -1.046875 1.375 -1.59375q0.90625 -0.5625 2.09375 -0.5625q1.640625 0 2.640625 0.890625q1.0 0.875 1.15625 2.453125l-1.953125 0q-0.0625 -0.90625 -0.515625 -1.3125q-0.4375 -0.421875 -1.328125 -0.421875q-0.984375 0 -1.46875 0.703125q-0.484375 0.6875 -0.5 2.15625l0 0.71875q0 1.53125 0.46875 2.25q0.46875 0.703125 1.46875 0.703125q0.90625 0 1.34375 -0.40625q0.453125 -0.421875 0.515625 -1.28125l1.953125 0zm1.642395 5.53125l-0.96875 -0.515625l0.234375 -0.421875q0.421875 -0.796875 0.4375 -1.578125l0 -1.453125l1.59375 0l0 1.296875q-0.015625 0.71875 -0.375 1.453125q-0.359375 0.734375 -0.921875 1.21875zm13.354248 -10.265625l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm8.542358 4.734375q-0.109375 1.53125 -1.125 2.40625q-1.015625 0.875 -2.6875 0.875q-1.8125 0 -2.859375 -1.21875q-1.046875 -1.234375 -1.046875 -3.375l0 -0.578125q0 -1.359375 0.46875 -2.40625q0.484375 -1.046875 1.375 -1.59375q0.90625 -0.5625 2.09375 -0.5625q1.640625 0 2.640625 0.890625q1.0 0.875 1.15625 2.453125l-1.953125 0q-0.0625 -0.90625 -0.515625 -1.3125q-0.4375 -0.421875 -1.328125 -0.421875q-0.984375 0 -1.46875 0.703125q-0.484375 0.6875 -0.5 2.15625l0 0.71875q0 1.53125 0.46875 2.25q0.46875 0.703125 1.46875 0.703125q0.90625 0 1.34375 -0.40625q0.453125 -0.421875 0.515625 -1.28125l1.953125 0zm3.236145 -0.1875l0 3.34375l-1.953125 0l0 -9.46875l3.703125 0q1.0625 0 1.875 0.390625q0.8125 0.390625 1.25 1.109375q0.4375 0.71875 0.4375 1.625q0 1.390625 -0.953125 2.203125q-0.953125 0.796875 -2.640625 0.796875l-1.71875 0zm0 -1.578125l1.75 0q0.765625 0 1.171875 -0.359375q0.40625 -0.375 0.40625 -1.046875q0 -0.6875 -0.40625 -1.109375q-0.40625 -0.4375 -1.125 -0.453125l-1.796875 0l0 2.96875zm15.96283 2.359375l0.921875 -4.484375l1.828125 0l-1.796875 7.046875l-1.578125 0l-1.34375 -4.4375l-1.328125 4.4375l-1.5625 0l-1.796875 -7.046875l1.8125 0l0.921875 4.484375l1.28125 -4.484375l1.359375 0l1.28125 4.484375zm5.6536865 2.5625l-1.890625 0l0 -7.046875l1.890625 0l0 7.046875zm-2.0 -8.859375q0 -0.421875 0.28125 -0.6875q0.296875 -0.28125 0.78125 -0.28125q0.484375 0 0.765625 0.28125q0.28125 0.265625 0.28125 0.6875q0 0.421875 -0.296875 0.703125q-0.28125 0.265625 -0.765625 0.265625q-0.46875 0 -0.765625 -0.265625q-0.28125 -0.28125 -0.28125 -0.703125zm5.7994385 0.09375l0 1.71875l1.203125 0l0 1.390625l-1.203125 0l0 3.515625q0 0.390625 0.15625 0.5625q0.15625 0.15625 0.578125 0.15625q0.3125 0 0.546875 -0.046875l0 1.4375q-0.546875 0.15625 -1.140625 0.15625q-1.984375 0 -2.015625 -2.0l0 -3.78125l-1.03125 0l0 -1.390625l1.03125 0l0 -1.71875l1.875 0zm4.097168 2.484375q0.75 -0.890625 1.875 -0.890625q2.296875 0 2.328125 2.65625l0 4.515625l-1.890625 0l0 -4.453125q0 -0.609375 -0.265625 -0.890625q-0.25 -0.296875 -0.859375 -0.296875q-0.828125 0 -1.1875 0.640625l0 5.0l-1.890625 0l0 -10.0l1.890625 0l0 3.71875zm8.636414 2.703125q0 -1.0625 0.40625 -1.875q0.40625 -0.828125 1.15625 -1.265625q0.765625 -0.453125 1.765625 -0.453125q1.4375 0 2.328125 0.875q0.90625 0.875 1.015625 2.359375l0 0.484375q0 1.625 -0.90625 2.609375q-0.890625 0.96875 -2.421875 0.96875q-1.515625 0 -2.4375 -0.96875q-0.90625 -0.984375 -0.90625 -2.65625l0 -0.078125zm1.890625 0.125q0 1.0 0.375 1.53125q0.375 0.53125 1.078125 0.53125q0.6875 0 1.0625 -0.515625q0.390625 -0.53125 0.390625 -1.671875q0 -0.984375 -0.390625 -1.53125q-0.375 -0.546875 -1.078125 -0.546875q-0.6875 0 -1.0625 0.546875q-0.375 0.53125 -0.375 1.65625zm9.895508 -1.828125q-0.375 -0.046875 -0.671875 -0.046875q-1.0625 0 -1.390625 0.71875l0 4.609375l-1.890625 0l0 -7.046875l1.78125 0l0.046875 0.84375q0.578125 -0.96875 1.578125 -0.96875q0.3125 0 0.578125 0.078125l-0.03125 1.8125z" fill-rule="nonzero"/><path fill="#000000" d="m511.14822 354.04065l0.9218445 -4.484375l1.828125 0l-1.796875 7.046875l-1.5780945 0l-1.34375 -4.4375l-1.328125 4.4375l-1.5625 0l-1.796875 -7.046875l1.8125 0l0.921875 4.484375l1.28125 -4.484375l1.359375 0l1.28125 4.484375zm5.653717 2.5625l-1.890625 0l0 -7.046875l1.890625 0l0 7.046875zm-2.0 -8.859375q0 -0.421875 0.28125 -0.6875q0.296875 -0.28125 0.78125 -0.28125q0.484375 0 0.765625 0.28125q0.28125 0.265625 0.28125 0.6875q0 0.421875 -0.296875 0.703125q-0.28125 0.265625 -0.765625 0.265625q-0.46875 0 -0.765625 -0.265625q-0.28125 -0.28125 -0.28125 -0.703125zm5.7994385 0.09375l0 1.71875l1.203125 0l0 1.390625l-1.203125 0l0 3.515625q0 0.390625 0.15625 0.5625q0.15625 0.15625 0.578125 0.15625q0.3125 0 0.546875 -0.046875l0 1.4375q-0.546875 0.15625 -1.140625 0.15625q-1.984375 0 -2.015625 -2.0l0 -3.78125l-1.03125 0l0 -1.390625l1.03125 0l0 -1.71875l1.875 0zm4.097168 2.484375q0.75 -0.890625 1.875 -0.890625q2.296875 0 2.328125 2.65625l0 4.515625l-1.890625 0l0 -4.453125q0 -0.609375 -0.265625 -0.890625q-0.25 -0.296875 -0.859375 -0.296875q-0.828125 0 -1.1875 0.640625l0 5.0l-1.890625 0l0 -10.0l1.890625 0l0 3.71875zm5.317383 2.703125q0 -1.0625 0.40625 -1.875q0.40625 -0.828125 1.15625 -1.265625q0.765625 -0.453125 1.765625 -0.453125q1.4375 0 2.328125 0.875q0.90625 0.875 1.015625 2.359375l0 0.484375q0 1.625 -0.90625 2.609375q-0.890625 0.96875 -2.421875 0.96875q-1.515625 0 -2.4375 -0.96875q-0.90625 -0.984375 -0.90625 -2.65625l0 -0.078125zm1.890625 0.125q0 1.0 0.375 1.53125q0.375 0.53125 1.078125 0.53125q0.6875 0 1.0625 -0.515625q0.390625 -0.53125 0.390625 -1.671875q0 -0.984375 -0.390625 -1.53125q-0.375 -0.546875 -1.078125 -0.546875q-0.6875 0 -1.0625 0.546875q-0.375 0.53125 -0.375 1.65625zm10.161133 2.734375q-0.6875 0.84375 -1.921875 0.84375q-1.140625 0 -1.734375 -0.640625q-0.59375 -0.65625 -0.609375 -1.90625l0 -4.625l1.890625 0l0 4.546875q0 1.109375 1.0 1.109375q0.953125 0 1.3125 -0.671875l0 -4.984375l1.890625 0l0 7.046875l-1.78125 0l-0.046875 -0.71875zm5.489258 -8.046875l0 1.71875l1.203125 0l0 1.390625l-1.203125 0l0 3.515625q0 0.390625 0.15625 0.5625q0.15625 0.15625 0.578125 0.15625q0.3125 0 0.546875 -0.046875l0 1.4375q-0.546875 0.15625 -1.140625 0.15625q-1.984375 0 -2.015625 -2.0l0 -3.78125l-1.03125 0l0 -1.390625l1.03125 0l0 -1.71875l1.875 0zm12.838135 0.875l-2.90625 0l0 7.890625l-1.953125 0l0 -7.890625l-2.859375 0l0 -1.578125l7.71875 0l0 1.578125zm3.0579834 6.328125l4.140625 0l0 1.5625l-6.09375 0l0 -9.46875l1.953125 0l0 7.90625zm10.185974 -0.921875q0 -0.5625 -0.390625 -0.84375q-0.390625 -0.296875 -1.40625 -0.625q-1.015625 -0.328125 -1.609375 -0.65625q-1.625 -0.875 -1.625 -2.34375q0 -0.765625 0.4375 -1.359375q0.4375 -0.609375 1.25 -0.953125q0.8125 -0.34375 1.8125 -0.34375q1.015625 0 1.8125 0.375q0.796875 0.359375 1.234375 1.03125q0.4375 0.671875 0.4375 1.53125l-1.953125 0q0 -0.65625 -0.40625 -1.015625q-0.40625 -0.359375 -1.15625 -0.359375q-0.71875 0 -1.125 0.3125q-0.390625 0.296875 -0.390625 0.78125q0 0.46875 0.46875 0.78125q0.46875 0.3125 1.375 0.578125q1.671875 0.5 2.421875 1.25q0.765625 0.734375 0.765625 1.84375q0 1.234375 -0.9375 1.9375q-0.921875 0.6875 -2.5 0.6875q-1.09375 0 -2.0 -0.390625q-0.890625 -0.40625 -1.359375 -1.09375q-0.46875 -0.703125 -0.46875 -1.625l1.953125 0q0 1.578125 1.875 1.578125q0.703125 0 1.09375 -0.28125q0.390625 -0.296875 0.390625 -0.796875z" fill-rule="nonzero"/></g></svg>
\ No newline at end of file
diff --git a/_docs/concepts/what-is-istio/index.md b/_docs/concepts/what-is-istio/index.md
index f8b57d6864351..300b912a04730 100644
--- a/_docs/concepts/what-is-istio/index.md
+++ b/_docs/concepts/what-is-istio/index.md
@@ -1,11 +1,9 @@
---
title: What is Istio?
-overview: A broad overview of the Istio system.
+description: A broad overview of the Istio system.
-order: 10
+weight: 10
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/concepts/what-is-istio/overview.md b/_docs/concepts/what-is-istio/overview.md
index b43a0becb2a37..a3963965cc3a5 100644
--- a/_docs/concepts/what-is-istio/overview.md
+++ b/_docs/concepts/what-is-istio/overview.md
@@ -1,16 +1,15 @@
---
title: Overview
-overview: Provides a conceptual introduction to Istio, including the problems it solves and its high-level architecture.
-
-order: 15
+description: Provides a conceptual introduction to Istio, including the problems it solves and its high-level architecture.
+
+weight: 15
-layout: docs
-type: markdown
---
+{% include home.html %}
This document introduces Istio: an open platform to connect, manage, and secure microservices. Istio provides an easy way to create a network of deployed services with load balancing, service-to-service authentication, monitoring, and more, without requiring any changes in service code. You add Istio support to services by deploying a special sidecar proxy throughout your environment that intercepts all network communication between microservices, configured and managed using Istio's control plane functionality.
-Istio currently only supports service deployment on Kubernetes, though other environments will be supported in future versions.
+Istio currently supports service deployment on Kubernetes, as well as services registered with Consul or Eureka and services running on individual VMs.
For detailed conceptual information about Istio components see our other [Concepts]({{home}}/docs/concepts/) guides.
@@ -18,7 +17,7 @@ For detailed conceptual information about Istio components see our other [Concep
Istio addresses many of the challenges faced by developers and operators as monolithic applications transition towards a distributed microservice architecture. The term **service mesh** is often used to describe the network of
microservices that make up such applications and the interactions between them. As a service mesh grows in size and complexity, it can become harder to understand
-and manage. Its requirements can include discovery, load balancing, failure recovery, metrics, and monitoring, and often more complex operational requirements
+and manage. Its requirements can include discovery, load balancing, failure recovery, metrics, and monitoring, and often more complex operational requirements
such as A/B testing, canary releases, rate limiting, access control, and end-to-end authentication.
Istio provides a complete solution to satisfy the diverse requirements of microservice applications by providing
@@ -27,10 +26,10 @@ network of services:
- **Traffic Management**. Control the flow of traffic and API calls between services, make calls more reliable, and make the network more robust in the face
of adverse conditions.
-
+
- **Observability**. Gain understanding of the dependencies between services and the nature and flow of traffic between them, providing the ability to quickly identify issues.
-- **Policy Enforcement**. Apply organizational policy to the interaction between services, ensure access policies are enforced and resources are fairly
+- **Policy Enforcement**. Apply organizational policy to the interaction between services, ensure access policies are enforced and resources are fairly
distributed among consumers. Policy changes are made by configuring the mesh, not by changing application code.
- **Service Identity and Security**. Provide services in the mesh with a verifiable identity and provide the ability to protect service traffic
@@ -38,14 +37,14 @@ as it flows over networks of varying degrees of trustability.
In addition to these behaviors, Istio is designed for extensibility to meet diverse deployment needs:
-- **Platform Support**. Istio is designed to run in a variety of environments including ones that span Cloud, on-premise, Kubernetes, Mesos etc. We’re
+- **Platform Support**. Istio is designed to run in a variety of environments including ones that span Cloud, on-premise, Kubernetes, Mesos etc. We’re
initially focused on Kubernetes but are working to support other environments soon.
-- **Integration and Customization**. The policy enforcement component can be extended and customized to integrate with existing solutions for
+- **Integration and Customization**. The policy enforcement component can be extended and customized to integrate with existing solutions for
ACLs, logging, monitoring, quotas, auditing and more.
-These capabilities greatly decrease the coupling between application code, the underlying platform, and policy. This decreased coupling not only makes
-services easier to implement, but also makes it simpler for operators to move application deployments between environments or to new policy schemes.
+These capabilities greatly decrease the coupling between application code, the underlying platform, and policy. This decreased coupling not only makes
+services easier to implement, but also makes it simpler for operators to move application deployments between environments or to new policy schemes.
Applications become inherently more portable as a result.
## Architecture
@@ -55,21 +54,20 @@ An Istio service mesh is logically split into a **data plane** and a **control p
- The **data plane** is composed of a set of intelligent
proxies (Envoy) deployed as sidecars that mediate and control all network communication between microservices.
-- The **control plane** is responsible for managing and
+- The **control plane** is responsible for managing and
configuring proxies to route traffic, as well as enforcing policies at runtime.
The following diagram shows the different components that make up each plane:
-{% include figure.html width='80%' ratio='56.25%'
- img='./img/overview/arch.svg'
- alt='The overall architecture of an Istio-based application.'
- title='Istio Architecture'
- caption='Istio Architecture'
+{% include image.html width="80%" ratio="56.25%"
+ link="./img/overview/arch.svg"
+ alt="The overall architecture of an Istio-based application."
+ caption="Istio Architecture"
%}
### Envoy
-Istio uses an extended version of the [Envoy](https://envoyproxy.github.io/envoy/) proxy, a high-performance proxy developed in C++, to mediate all inbound and outbound traffic for all services in the service mesh.
+Istio uses an extended version of the [Envoy](https://envoyproxy.github.io/envoy/) proxy, a high-performance proxy developed in C++, to mediate all inbound and outbound traffic for all services in the service mesh.
Istio leverages Envoy’s many built-in features such as dynamic service discovery, load balancing, TLS termination, HTTP/2 & gRPC proxying, circuit breakers,
health checks, staged rollouts with %-based traffic split, fault injection, and rich metrics.
@@ -77,8 +75,8 @@ Envoy is deployed as a **sidecar** to the relevant service in the same Kubernete
### Mixer
-[Mixer]({{home}}/docs/concepts/policy-and-control/mixer.html) is a platform-independent component responsible for enforcing access control and usage policies across the service mesh and collecting telemetry data from the Envoy proxy and other
-services. The proxy extracts request level [attributes]({{home}}/docs/concepts/policy-and-control/attributes.html), which are sent to Mixer for evaluation. More information on this attribute extraction and policy
+[Mixer]({{home}}/docs/concepts/policy-and-control/mixer.html) is a platform-independent component responsible for enforcing access control and usage policies across the service mesh and collecting telemetry data from the Envoy proxy and other
+services. The proxy extracts request level [attributes]({{home}}/docs/concepts/policy-and-control/attributes.html), which are sent to Mixer for evaluation. More information on this attribute extraction and policy
evaluation can be found in [Mixer Configuration]({{home}}/docs/concepts/policy-and-control/mixer-config.html). Mixer includes a flexible plugin model enabling it to interface with a variety of host environments and infrastructure backends, abstracting the Envoy proxy and Istio-managed services from these details.
### Pilot
@@ -86,30 +84,30 @@ evaluation can be found in [Mixer Configuration]({{home}}/docs/concepts/policy-a
[Pilot]({{home}}/docs/concepts/traffic-management/pilot.html) provides
service discovery for the Envoy sidecars, traffic management capabilities
for intelligent routing (e.g., A/B tests, canary deployments, etc.),
-and resiliency (timeouts, retries, circuit breakers, etc.). It converts a
+and resiliency (timeouts, retries, circuit breakers, etc.). It converts
high level routing rules that control traffic behavior into Envoy-specific
configurations, and propagates them to the sidecars at runtime. Pilot
-abstracts platform-specifc service discovery mechanisms and synthesizes
+abstracts platform-specific service discovery mechanisms and synthesizes
them into a standard format consumable by any sidecar that conforms to the
[Envoy data plane APIs](https://github.com/envoyproxy/data-plane-api).
-This loose coupling allows Istio to run on multiple environments
-(e.g., Kubernetes, Consul/Nomad) while maintaining the same operator
+This loose coupling allows Istio to run on multiple environments
+(e.g., Kubernetes, Consul/Nomad) while maintaining the same operator
interface for traffic management.
-### Istio-Auth
+### Security
-[Istio-Auth]({{home}}/docs/concepts/security/mutual-tls.html) provides strong service-to-service and end-user authentication using mutual TLS, with built-in identity and credential management.
-It can be used to upgrade unencrypted traffic in the service mesh, and provides operators the ability to enforce policy based
-on service identity rather than network controls. Future releases of Istio will add fine-grained access control and auditing to control
-and monitor who accesses your service, API, or resource, using a variety of access control mechanisms, including attribute and
-role-based access control as well as authorization hooks.
+[Security]({{home}}/docs/concepts/security/) provides strong service-to-service and end-user authentication, with built-in identity and
+credential management. It can be used to upgrade unencrypted traffic in the service mesh, and provides operators the ability to enforce
+policy based on service identity rather than network controls. Starting from release 0.5, Istio supports
+[role-based access control]({{home}}/docs/concepts/security/rbac.html) to control who can access your services. Future
+releases of Istio will add service auditing feature.
## What's next
-* Learn about Istio's [design goals]({{home}}/docs/concepts/what-is-istio/goals.html).
+- Learn about Istio's [design goals]({{home}}/docs/concepts/what-is-istio/goals.html).
-* Explore our [Guides]({{home}}/docs/guides/).
+- Explore our [Guides]({{home}}/docs/guides/).
-* Read about Istio components in detail in our other [Concepts]({{home}}/docs/concepts/) guides.
+- Read about Istio components in detail in our other [Concepts]({{home}}/docs/concepts/) guides.
-* Learn how to deploy Istio with your own services using our [Tasks]({{home}}/docs/tasks/) guides.
+- Learn how to deploy Istio with your own services using our [Tasks]({{home}}/docs/tasks/) guides.
diff --git a/_docs/guides/bookinfo.md b/_docs/guides/bookinfo.md
index 77c34654f8a8e..4761c96236b51 100644
--- a/_docs/guides/bookinfo.md
+++ b/_docs/guides/bookinfo.md
@@ -1,11 +1,9 @@
---
1;95;0ctitle: Bookinfo Sample Application
-overview: This guide deploys a sample application composed of four separate microservices which will be used to demonstrate various features of the Istio service mesh.
+description: This guide deploys a sample application composed of four separate microservices which will be used to demonstrate various features of the Istio service mesh.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -34,16 +32,14 @@ There are 3 versions of the reviews microservice:
The end-to-end architecture of the application is shown below.
-{% include figure.html width='80%' ratio='68.52%'
- img='./img/bookinfo/noistio.svg'
- alt='Bookinfo Application without Istio'
- title='Bookinfo Application without Istio'
- caption='Bookinfo Application without Istio'
+{% include image.html width="80%" ratio="68.52%"
+ link="./img/bookinfo/noistio.svg"
+ caption="Bookinfo Application without Istio"
%}
This application is polyglot, i.e., the microservices are written in different languages.
It’s worth noting that these services have no dependencies on Istio, but make an interesting
-sevice mesh example, particularly because of the multitude of services, languages and versions
+service mesh example, particularly because of the multitude of services, languages and versions
for the reviews service.
## Before you begin
@@ -59,11 +55,9 @@ Istio-enabled environment, with Envoy sidecars injected along side each service.
The needed commands and configuration vary depending on the runtime environment
although in all cases the resulting deployment will look like this:
-{% include figure.html width='80%' ratio='59.08%'
- img='./img/bookinfo/withistio.svg'
- alt='Bookinfo Application'
- title='Bookinfo Application'
- caption='Bookinfo Application'
+{% include image.html width="80%" ratio="59.08%"
+ link="./img/bookinfo/withistio.svg"
+ caption="Bookinfo Application"
%}
All of the microservices will be packaged with an Envoy sidecar that intercepts incoming
@@ -75,46 +69,46 @@ To start the application, follow the instructions below corresponding to your Is
### Running on Kubernetes
-> Note: If you use GKE, please ensure your cluster has at least 4 standard GKE nodes. If you use Minikube, please ensure you have at least 4GB RAM.
+> If you use GKE, please ensure your cluster has at least 4 standard GKE nodes. If you use Minikube, please ensure you have at least 4GB RAM.
1. Change directory to the root of the Istio installation directory.
1. Bring up the application containers:
- If you are using [manual sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar-injection),
- use the following command instead:
+ * If you are using [manual sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar-injection),
+ use the following command
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo.yaml)
- ```
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject --debug -f samples/bookinfo/kube/bookinfo.yaml)
+ ```
- If you are using a cluster with
- [automatic sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection)
- enabled, simply deploy the services using `kubectl`:
+ The `istioctl kube-inject` command is used to manually modify the `bookinfo.yaml`
+ file before creating the deployments as documented [here]({{home}}/docs/reference/commands/istioctl.html#istioctl kube-inject).
- ```bash
- kubectl apply -f samples/bookinfo/kube/bookinfo.yaml
- ```
+ * If you are using a cluster with
+ [automatic sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection)
+ enabled, simply deploy the services using `kubectl`
- The `istioctl kube-inject` command is used to manually modify the `bookinfo.yaml`
- file before creating the deployments as documented [here]({{home}}/docs/reference/commands/istioctl.html#istioctl kube-inject).
+ ```command
+ $ kubectl apply -f samples/bookinfo/kube/bookinfo.yaml
+ ```
- Either of the above commands launches all four microservices and creates the gateway
- ingress resource as illustrated in the above diagram.
+ Either of the above commands launches all four microservices as illustrated in the above diagram.
All 3 versions of the reviews service, v1, v2, and v3, are started.
- > Note that in a realistic deployment, new versions of a microservice are deployed
+ > In a realistic deployment, new versions of a microservice are deployed
over time instead of deploying all versions simultaneously.
-1. Confirm all services and pods are correctly defined and running:
+1. Define the ingress gateway for the application:
- ```bash
- kubectl get services
+ ```command
+ $ istioctl create -f samples/bookinfo/routing/bookinfo-gateway.yaml
```
- which produces the following output:
-
- ```bash
+1. Confirm all services and pods are correctly defined and running:
+
+ ```command
+ $ kubectl get services
NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
details 10.0.0.31 <none> 9080/TCP 6m
kubernetes 10.0.0.1 <none> 443/TCP 7d
@@ -125,13 +119,8 @@ To start the application, follow the instructions below corresponding to your Is
and
- ```bash
- kubectl get pods
- ```
-
- which produces
-
- ```bash
+ ```command
+ $ kubectl get pods
NAME READY STATUS RESTARTS AGE
details-v1-1520924117-48z17 2/2 Running 0 6m
productpage-v1-560495357-jk1lz 2/2 Running 0 6m
@@ -143,49 +132,41 @@ To start the application, follow the instructions below corresponding to your Is
#### Determining the ingress IP and Port
-1. If your Kubernetes cluster is running in an environment that supports external load balancers, the IP address of ingress can be obtained by the following command:
+Execute the following command to determine if your Kubernetes cluster is running in an environment that supports external load balancers
- ```bash
- kubectl get ingress -o wide
- ```
+```command
+$ kubectl get svc istio-ingressgateway -n istio-system
+NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
+istio-ingressgateway LoadBalancer 172.21.109.129 130.211.10.121 80:31380/TCP,443:31390/TCP,31400:31400/TCP 17h
+```
- whose output should be similar to
+If the `EXTERNAL-IP` value is set, your environment has an external load balancer that you can use for the ingress gateway
- ```bash
- NAME HOSTS ADDRESS PORTS AGE
- gateway * 130.211.10.121 80 1d
- ```
+```command
+$ export GATEWAY_URL=130.211.10.121:80
+```
- The address of the ingress service would then be
-
- ```bash
- export GATEWAY_URL=130.211.10.121:80
- ```
+If the `EXTERNAL-IP` value is `<none>` (or perpetually `<pending>`), your environment does not support external load balancers.
+In this case, you can access the gateway using the service `nodePort`.
-1. _GKE:_ Sometimes when the service is unable to obtain an external IP, `kubectl get ingress -o wide` may display a list of worker node addresses. In this case, you can use any of the addresses, along with the NodePort, to access the ingress. If the cluster has a firewall, you will also need to create a firewall rule to allow TCP traffic to the NodePort.
+1. _GKE:_
- ```bash
- export GATEWAY_URL=<workerNodeAddress>:$(kubectl get svc istio-ingress -n istio-system -o jsonpath='{.spec.ports[0].nodePort}')
- gcloud compute firewall-rules create allow-book --allow tcp:$(kubectl get svc istio-ingress -n istio-system -o jsonpath='{.spec.ports[0].nodePort}')
+ ```command
+ $ export GATEWAY_URL=<workerNodeAddress>:$(kubectl get svc istio-ingressgateway -n istio-system -o jsonpath='{.spec.ports[0].nodePort}')
+ $ gcloud compute firewall-rules create allow-book --allow tcp:$(kubectl get svc istio-ingressgateway -n istio-system -o jsonpath='{.spec.ports[0].nodePort}')
```
-1. _IBM Cloud Container Service Free Tier:_ External load balancer is not available for kubernetes clusters in the free tier. You can use the public IP of the worker node, along with the NodePort, to access the ingress. The public IP of the worker node can be obtained from the output of the following command:
+1. _IBM Cloud Container Service Free Tier:_
- ```bash
- bx cs workers <cluster-name or id>
- export GATEWAY_URL=<public IP of the worker node>:$(kubectl get svc istio-ingress -n istio-system -o jsonpath='{.spec.ports[0].nodePort}')
+ ```command
+ $ bx cs workers <cluster-name or id>
+ $ export GATEWAY_URL=<public IP of the worker node>:$(kubectl get svc istio-ingressgateway -n istio-system -o jsonpath='{.spec.ports[0].nodePort}')
```
-1. _IBM Cloud Private:_ External load balancers are not supported in IBM Cloud Private. You can use the host IP of the ingress service, along with the NodePort, to access the ingress.
+1. _Other environments (e.g., minikube):_
- ```bash
- export GATEWAY_URL=$(kubectl get po -l istio=ingress -n istio-system -o 'jsonpath={.items[0].status.hostIP}'):$(kubectl get svc istio-ingress -n istio-system -o 'jsonpath={.spec.ports[0].nodePort}')
- ```
-
-1. _Minikube:_ External load balancers are not supported in Minikube. You can use the host IP of the ingress service, along with the NodePort, to access the ingress.
-
- ```bash
- export GATEWAY_URL=$(kubectl get po -l istio=ingress -n istio-system -o 'jsonpath={.items[0].status.hostIP}'):$(kubectl get svc istio-ingress -n istio-system -o 'jsonpath={.spec.ports[0].nodePort}')
+ ```command
+ $ export GATEWAY_URL=$(kubectl get po -l istio=ingressgateway -n istio-system -o 'jsonpath={.items[0].status.hostIP}'):$(kubectl get svc istio-ingressgateway -n istio-system -o 'jsonpath={.spec.ports[0].nodePort}')
```
### Running on Docker with Consul or Eureka
@@ -194,38 +175,40 @@ To start the application, follow the instructions below corresponding to your Is
1. Bring up the application containers.
- * To test with Consul, run the following commands:
- ```bash
- docker-compose -f samples/bookinfo/consul/bookinfo.yaml up -d
- docker-compose -f samples/bookinfo/consul/bookinfo.sidecars.yaml up -d
- ```
- * To test with Eureka, run the following commands:
- ```bash
- docker-compose -f samples/bookinfo/eureka/bookinfo.yaml up -d
- docker-compose -f samples/bookinfo/eureka/bookinfo.sidecars.yaml up -d
- ```
+ To test with Consul, run the following commands:
+
+ ```command
+ $ docker-compose -f samples/bookinfo/consul/bookinfo.yaml up -d
+ $ docker-compose -f samples/bookinfo/consul/bookinfo.sidecars.yaml up -d
+ ```
+
+ To test with Eureka, run the following commands:
+
+ ```command
+ $ docker-compose -f samples/bookinfo/eureka/bookinfo.yaml up -d
+ $ docker-compose -f samples/bookinfo/eureka/bookinfo.sidecars.yaml up -d
+ ```
+
1. Confirm that all docker containers are running:
- ```bash
- docker ps -a
+ ```command
+ $ docker ps -a
```
> If the Istio Pilot container terminates, re-run the command from the previous step.
1. Set the GATEWAY_URL:
- ```bash
- export GATEWAY_URL=localhost:9081
+ ```command
+ $ export GATEWAY_URL=localhost:9081
```
## What's next
To confirm that the Bookinfo application is running, run the following `curl` command:
-```bash
-curl -o /dev/null -s -w "%{http_code}\n" http://${GATEWAY_URL}/productpage
-```
-```
+```command
+$ curl -o /dev/null -s -w "%{http_code}\n" http://${GATEWAY_URL}/productpage
200
```
@@ -236,7 +219,7 @@ stars, black stars, no stars), since we haven't yet used Istio to control the
version routing.
You can now use this sample to experiment with Istio's features for
-traffic routing, fault injection, rate limitting, etc..
+traffic routing, fault injection, rate limiting, etc..
To proceed, refer to one or more of the [Istio Guides]({{home}}/docs/guides),
depending on your interest. [Intelligent Routing]({{home}}/docs/guides/intelligent-routing.html)
is a good place to start for beginners.
@@ -250,36 +233,36 @@ uninstall and clean it up using the following instructions.
1. Delete the routing rules and terminate the application pods
- ```bash
- samples/bookinfo/kube/cleanup.sh
+ ```command
+ $ samples/bookinfo/kube/cleanup.sh
```
1. Confirm shutdown
- ```bash
- istioctl get routerules #-- there should be no more routing rules
- kubectl get pods #-- the Bookinfo pods should be deleted
+ ```command
+ $ istioctl get virtualservices #-- there should be no more routing rules
+ $ kubectl get pods #-- the Bookinfo pods should be deleted
```
### Uninstall from Docker environment
1. Delete the routing rules and application containers
- 1. In a Consul setup, run the following command:
+ In a Consul setup, run the following command:
- ```bash
- samples/bookinfo/consul/cleanup.sh
+ ```command
+ $ samples/bookinfo/consul/cleanup.sh
```
-
- 1. In a Eureka setup, run the following command:
-
- ```bash
- samples/bookinfo/eureka/cleanup.sh
+
+ In a Eureka setup, run the following command:
+
+ ```command
+ $ samples/bookinfo/eureka/cleanup.sh
```
-2. Confirm cleanup
+1. Confirm cleanup
- ```bash
- istioctl get routerules #-- there should be no more routing rules
- docker ps -a #-- the Bookinfo containers should be deleted
+ ```command
+ $ istioctl get virtualservices #-- there should be no more routing rules
+ $ docker ps -a #-- the Bookinfo containers should be deleted
```
diff --git a/_docs/guides/endpoints.md b/_docs/guides/endpoints.md
new file mode 100644
index 0000000000000..4b5d95dad2438
--- /dev/null
+++ b/_docs/guides/endpoints.md
@@ -0,0 +1,116 @@
+---
+title: Install Istio for Google Cloud Endpoints Services
+description: Explains how to manually integrate Google Cloud Endpoints services with Istio.
+
+weight: 42
+---
+{% include home.html %}
+
+This document shows how to manually integrate Istio with existing
+Google Cloud Endpoints services.
+
+## Before you begin
+
+If you don't have an Endpoints service and want to try it out, you can follow
+the [instructions](https://cloud.google.com/endpoints/docs/openapi/get-started-kubernetes-engine)
+to setup an Endpoints service on GKE.
+After setup, you should be able to get an API key and store it in `ENDPOINTS_KEY` environment variable and the external IP address `EXTERNAL_IP`.
+You may test the service using the following command:
+
+```command
+$ curl --request POST --header "content-type:application/json" --data '{"message":"hello world"}' "http://${EXTERNAL_IP}:80/echo?key=${ENDPOINTS_KEY}"
+```
+
+You need to install Istio with [instructions]({{home}}/docs/setup/kubernetes/quick-start.html#google-kubernetes-engine).
+
+## HTTP Endpoints service
+
+1. Inject the service into the mesh using `--includeIPRanges` by following the
+[instructions]({{home}}/docs/tasks/traffic-management/egress.html#calling-external-services-directly)
+so that Egress is allowed to call external services directly.
+Otherwise, ESP won't be able to access Google cloud service control.
+
+1. After injection, issue the same test command as above to ensure that calling ESP continues to work.
+
+1. If you want to access the service through Ingress, create the following Ingress definition:
+
+ ```bash
+ cat <<EOF | istioctl create -f -
+ apiVersion: extensions/v1beta1
+ kind: Ingress
+ metadata:
+ name: simple-ingress
+ annotations:
+ kubernetes.io/ingress.class: istio
+ spec:
+ rules:
+ - http:
+ paths:
+ - path: /echo
+ backend:
+ serviceName: esp-echo
+ servicePort: 80
+ EOF
+ ```
+
+1. Get the Ingress IP through [instructions]({{home}}/docs/tasks/traffic-management/ingress.html#verifying-http-ingress).
+You can verify accessing the Endpoints service through Ingress:
+```command
+$ curl --request POST --header "content-type:application/json" --data '{"message":"hello world"}' "http://${INGRESS_HOST}:80/echo?key=${ENDPOINTS_KEY}"i
+```
+
+## HTTPS Endpoints service using secured Ingress
+
+The recommended way to securely access a mesh Endpoints service is through an ingress configured with mutual TLS.
+
+1. Expose the HTTP port in your mesh service.
+Adding `"--http_port=8081"` in the ESP deployment arguments and expose the HTTP port:
+```yaml
+ - port: 80
+ targetPort: 8081
+ protocol: TCP
+ name: http
+```
+Update the mesh service deployment.
+
+1. Turn on mTLS in Istio by using the following command:
+```command
+$ kubectl edit cm istio -n istio-system
+```
+And uncomment the line:
+```yaml
+authPolicy: MUTUAL_TLS
+```
+
+1. After this, you will find access to `EXTERNAL_IP` no longer works because istio proxy only accept secure mesh connections.
+Accessing through Ingress works because Ingress does HTTP terminations.
+
+1. To secure the access at Ingress, following the [instructions]({{home}}/docs/tasks/traffic-management/ingress.html#configuring-secure-ingress-https).
+
+1. You can verify accessing the Endpoints service through secure Ingress:
+```command
+$ curl --request POST --header "content-type:application/json" --data '{"message":"hello world"}' "https://${INGRESS_HOST}/echo?key=${ENDPOINTS_KEY}" -k
+```
+
+## HTTPS Endpoints service using `LoadBalancer EXTERNAL_IP`
+
+This solution uses Istio proxy for TCP bypassing. The traffic is secured through ESP. This is not a recommended way.
+
+1. Modify the name of the HTTP port to be `tcp`
+```yaml
+ - port: 80
+ targetPort: 8081
+ protocol: TCP
+ name: tcp
+```
+Update the mesh service deployment. See further readings on port naming rules
+[here]({{home}}/docs/setup/kubernetes/sidecar-injection.html#pod-spec-requirements).
+
+1. You can verify access to the Endpoints service through secure Ingress:
+```command
+$ curl --request POST --header "content-type:application/json" --data '{"message":"hello world"}' "https://${EXTERNAL_IP}/echo?key=${ENDPOINTS_KEY}" -k
+```
+
+## What's next
+
+Learn more about [GCP Endpoints](https://cloud.google.com/endpoints/docs/).
diff --git a/_docs/guides/index.md b/_docs/guides/index.md
index 65db87e6c028a..065d09191bec9 100644
--- a/_docs/guides/index.md
+++ b/_docs/guides/index.md
@@ -1,11 +1,9 @@
---
title: Guides
-overview: Guides include a variety of fully working example uses for Istio that you can experiment with.
+description: Guides include a variety of fully working example uses for Istio that you can experiment with.
-order: 30
+weight: 30
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/guides/integrating-vms.md b/_docs/guides/integrating-vms.md
index 7f976d9892d3c..aef23e1fe08e8 100644
--- a/_docs/guides/integrating-vms.md
+++ b/_docs/guides/integrating-vms.md
@@ -1,10 +1,8 @@
---
title: Integrating Virtual Machines
-overview: This sample deploys the Bookinfo services across Kubernetes and a set of virtual machines, and illustrates how to use the Istio service mesh to control this infrastructure as a single mesh.
+description: This sample deploys the Bookinfo services across Kubernetes and a set of virtual machines, and illustrates how to use the Istio service mesh to control this infrastructure as a single mesh.
-order: 60
-layout: docs
-type: markdown
+weight: 60
---
{% include home.html %}
@@ -12,22 +10,19 @@ This sample deploys the Bookinfo services across Kubernetes and a set of
Virtual Machines, and illustrates how to use Istio service mesh to control
this infrastructure as a single mesh.
-> Note: this guide is still under development and only tested on Google Cloud Platform.
- On IBM Cloud or other platforms where overlay network of Pods is isolated from VM network,
- VMs cannot initiate any direct communication to Kubernetes Pods even when using Istio.
+> This guide is still under development and only tested on Google Cloud Platform.
+On IBM Cloud or other platforms where overlay network of Pods is isolated from VM network,
+VMs cannot initiate any direct communication to Kubernetes Pods even when using Istio.
## Overview
-{% include figure.html width='80%' ratio='56.78%'
- img='./img/mesh-expansion.svg'
- alt='Bookinfo Application with Istio Mesh Expansion'
- title='Bookinfo Application with Istio Mesh Expansion'
- caption='Bookinfo Application with Istio Mesh Expansion'
+{% include image.html width="80%" ratio="56.78%"
+ link="./img/mesh-expansion.svg"
+ caption="Bookinfo Application with Istio Mesh Expansion"
%}
<!-- source of the drawing https://docs.google.com/drawings/d/1gQp1OTusiccd-JUOHktQ9RFZaqREoQbwl2Vb-P3XlRQ/edit -->
-
## Before you begin
* Setup Istio by following the instructions in the
@@ -36,38 +31,48 @@ this infrastructure as a single mesh.
* Deploy the [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application (in the `bookinfo` namespace).
* Create a VM named 'vm-1' in the same project as Istio cluster, and [Join the Mesh]({{home}}/docs/setup/kubernetes/mesh-expansion.html).
-## Running mysql on the VM
+## Running MySQL on the VM
-We will first install mysql on the VM, and configure it as a backend for the ratings service.
+We will first install MySQL on the VM, and configure it as a backend for the ratings service.
On the VM:
-```bash
-sudo apt-get update && sudo apt-get install -y mariadb-server
-sudo mysql
+
+```command
+$ sudo apt-get update && sudo apt-get install -y mariadb-server
+$ sudo mysql
# Grant access to root
GRANT ALL PRIVILEGES ON *.* TO 'root'@'localhost' IDENTIFIED BY 'password' WITH GRANT OPTION;
quit;
-sudo systemctl restart mysql
```
-You can find details of configuring mysql at [Mysql](https://mariadb.com/kb/en/library/download/).
+
+```command
+$ sudo systemctl restart mysql
+```
+You can find details of configuring MySQL at [Mysql](https://mariadb.com/kb/en/library/download/).
On the VM add ratings database to mysql.
-```bash
-# Add ratings db to the mysql db
-curl -q https://raw.githubusercontent.com/istio/istio/master/samples/bookinfo/src/mysql/mysqldb-init.sql | mysql -u root -ppassword
+
+```command
+$ curl -q https://raw.githubusercontent.com/istio/istio/master/samples/bookinfo/src/mysql/mysqldb-init.sql | mysql -u root -ppassword
```
-To make it easy to visually inspect the difference in the output of the bookinfo application, you can change the ratings that are generated by using the following commands
-```bash
-# To inspect the ratings
-mysql -u root -ppassword test -e "select * from ratings;"
+
+To make it easy to visually inspect the difference in the output of the Bookinfo application, you can change the ratings that are generated by using the
+following commands to inspect the ratings:
+
+```command
+$ mysql -u root -ppassword test -e "select * from ratings;"
+----------+--------+
| ReviewID | Rating |
+----------+--------+
| 1 | 5 |
| 2 | 4 |
+----------+--------+
-# To change the ratings
-mysql -u root -ppassword test -e "update ratings set rating=1 where reviewid=1;select * from ratings;"
+```
+
+and to change the ratings
+
+```command
+$ mysql -u root -ppassword test -e "update ratings set rating=1 where reviewid=1;select * from ratings;"
+----------+--------+
| ReviewID | Rating |
+----------+--------+
@@ -79,18 +84,17 @@ mysql -u root -ppassword test -e "update ratings set rating=1 where reviewid=1;
## Find out the IP address of the VM that will be used to add it to the mesh
On the VM:
-```bash
-hostname -I
+
+```command
+$ hostname -I
```
## Registering the mysql service with the mesh
+
On a host with access to `istioctl` commands, register the VM and mysql db service
-```bash
-istioctl register -n vm mysqldb <ip-address-of-vm> 3306
-```
-Sample output:
-```
-$ istioctl register -n vm mysqldb 10.150.0.5 3306
+
+```command
+$ istioctl register -n vm mysqldb <ip-address-of-vm> 3306
I1108 20:17:54.256699 40419 register.go:43] Registering for service 'mysqldb' ip '10.150.0.5', ports list [{3306 mysql}]
I1108 20:17:54.256815 40419 register.go:48] 0 labels ([]) and 1 annotations ([alpha.istio.io/kubernetes-serviceaccounts=default])
W1108 20:17:54.573068 40419 register.go:123] Got 'services "mysqldb" not found' looking up svc 'mysqldb' in namespace 'vm', attempting to create it
@@ -104,14 +108,17 @@ Note that the 'mysqldb' virtual machine does not need and should not have specia
## Using the mysql service
The ratings service in bookinfo will use the DB on the machine. To verify that it works, create version 2 of the ratings service that uses the mysql db on the VM. Then specify route rules that force the review service to use the ratings version 2.
-```bash
-# Create the version of ratings service that will use mysql back end
-istioctl kube-inject -n bookinfo -f samples/bookinfo/kube/bookinfo-ratings-v2-mysql-vm.yaml | kubectl apply -n bookinfo -f -
-# Create route rules that will force bookinfo to use the ratings back end
-istioctl create -n bookinfo -f samples/bookinfo/kube/route-rule-ratings-mysql-vm.yaml
+```command
+$ istioctl kube-inject -n bookinfo -f samples/bookinfo/kube/bookinfo-ratings-v2-mysql-vm.yaml | kubectl apply -n bookinfo -f -
+```
+Create route rules that will force bookinfo to use the ratings back end:
+
+```command
+$ istioctl create -n bookinfo -f samples/bookinfo/kube/route-rule-ratings-mysql-vm.yaml
```
-You can verify the output of bookinfo application is showing 1 star from Reviewer1 and 4 stars from Reviewer2 or change the ratings on your VM and see the results.
+You can verify the output of the Bookinfo application is showing 1 star from Reviewer1 and 4 stars from Reviewer2 or change the ratings on your VM and see the
+results.
You can also find some troubleshooting and other information in the [RawVM MySQL](https://github.com/istio/istio/blob/master/samples/rawvm/README.md) document in the meantime.
diff --git a/_docs/guides/intelligent-routing.md b/_docs/guides/intelligent-routing.md
index c917577cb1304..5c6f391bc7884 100644
--- a/_docs/guides/intelligent-routing.md
+++ b/_docs/guides/intelligent-routing.md
@@ -1,10 +1,8 @@
---
title: Intelligent Routing
-overview: This guide demonstrates how to use various traffic management capabilities of an Istio service mesh.
+description: This guide demonstrates how to use various traffic management capabilities of an Istio service mesh.
-order: 20
-layout: docs
-type: markdown
+weight: 20
---
{% include home.html %}
diff --git a/_docs/guides/policy-enforcement.md b/_docs/guides/policy-enforcement.md
index 5c92621d8e130..68d30b2e66e37 100644
--- a/_docs/guides/policy-enforcement.md
+++ b/_docs/guides/policy-enforcement.md
@@ -1,11 +1,9 @@
---
title: Policy Enforcement
-overview: This sample uses the Bookinfo application to demonstrate policy enforcement using Istio Mixer.
+description: This sample uses the Bookinfo application to demonstrate policy enforcement using Istio Mixer.
-order: 40
+weight: 40
draft: true
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -18,6 +16,7 @@ features are important, and so on. This is not a task, but a feature of
Istio.
## Before you begin
+
* Describe installation options.
* Install Istio control plane in a Kubernetes cluster by following the quick start instructions in the
diff --git a/_docs/guides/security.md b/_docs/guides/security.md
index 9da4ba1162f0a..2af8822707de8 100644
--- a/_docs/guides/security.md
+++ b/_docs/guides/security.md
@@ -1,11 +1,9 @@
---
title: Security
-overview: This sample demonstrates how to obtain uniform metrics, logs, traces across different services using Istio Mixer and Istio sidecar.
+description: This sample demonstrates how to obtain uniform metrics, logs, traces across different services using Istio Mixer and Istio sidecar.
-order: 30
+weight: 30
draft: true
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -16,6 +14,7 @@ This sample demonstrates how to obtain uniform metrics, logs, traces across diff
Placeholder.
## Before you begin
+
* Describe installation options.
* Install Istio control plane in a Kubernetes cluster by following the quick start instructions in the
diff --git a/_docs/guides/telemetry.md b/_docs/guides/telemetry.md
index afe0b3b8ee73c..7076c39a32c1f 100644
--- a/_docs/guides/telemetry.md
+++ b/_docs/guides/telemetry.md
@@ -1,10 +1,8 @@
---
title: In-Depth Telemetry
-overview: This sample demonstrates how to obtain uniform metrics, logs, traces across different services using Istio Mixer and Istio sidecar.
+description: This sample demonstrates how to obtain uniform metrics, logs, traces across different services using Istio Mixer and Istio sidecar.
-order: 30
-layout: docs
-type: markdown
+weight: 30
---
{% include home.html %}
@@ -49,7 +47,7 @@ developers to manually instrument their applications.
applications.
1. [Using the Istio Dashboard]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html)
- This task installs the Grafana add-on with a pre-configured dashboard
+ This task installs the Grafana add-on with a preconfigured dashboard
for monitoring mesh traffic.
## Cleanup
diff --git a/_docs/guides/upgrading-istio.md b/_docs/guides/upgrading-istio.md
deleted file mode 100644
index 691100bb26d21..0000000000000
--- a/_docs/guides/upgrading-istio.md
+++ /dev/null
@@ -1,24 +0,0 @@
----
-title: Upgrading Istio
-overview: This guide demonstrates how to upgrade the Istio control plane and data plane independently.
-
-order: 70
-draft: true
-layout: docs
-type: markdown
----
-{% include home.html %}
-
-This guide demonstrates how to upgrade the Istio control plane and data plane independently.
-
-## Overview
-
-Placeholder.
-
-## Application Setup
-
-1. Steps
-
-## Tasks
-
-1. some tasks that will complete the goal of this sample.
diff --git a/_docs/guides/using-external-services.md b/_docs/guides/using-external-services.md
index 579afa9a2083d..cd3f9692d7a62 100644
--- a/_docs/guides/using-external-services.md
+++ b/_docs/guides/using-external-services.md
@@ -1,11 +1,9 @@
---
title: Integrating with External Services
-overview: This sample integrates third party services with Bookinfo and demonstrates how to use Istio service mesh to provide metrics, and routing functions for these services.
+description: This sample integrates third party services with Bookinfo and demonstrates how to use Istio service mesh to provide metrics, and routing functions for these services.
-order: 50
+weight: 50
draft: true
-layout: docs
-type: markdown
---
{% include home.html %}
diff --git a/_docs/index.md b/_docs/index.md
index ad2cc2950de33..f6f469b611557 100644
--- a/_docs/index.md
+++ b/_docs/index.md
@@ -1,11 +1,9 @@
---
title: Welcome
-overview: Istio documentation home page.
+description: Istio documentation home page.
-order: 0
+weight: 1
-layout: docs
-type: markdown
toc: false
---
{% include home.html %}
@@ -19,8 +17,8 @@ is where you can learn about what Istio does and how it does it.
the Istio control plane in various environments, as well as instructions
for installing the sidecar in the application deployment. Quick start
instructions are available for
- [Kubernetes]({{docs}}/docs/setup/kubernetes/quick-start.html) and
- [Docker Compose w/ Consul]({{docs}}/docs/setup/consul/quick-start.html).
+ [Kubernetes]({{home}}/docs/setup/kubernetes/quick-start.html) and
+ [Docker Compose w/ Consul]({{home}}/docs/setup/consul/quick-start.html).
- [Tasks]({{home}}/docs/tasks/). Tasks show you how to do a single directed activity with Istio.
@@ -30,9 +28,14 @@ intended to highlight a particular set of Istio's features.
- [Reference]({{home}}/docs/reference/). Detailed exhaustive lists of
command-line options, configuration options, API definitions, and procedures.
-We're always looking for help improving our documentation, so please don't hesitate to
+In addition, you might find these links interesting:
+
+- The latest Istio monthly release is {{site.data.istio.version}}: [download {{site.data.istio.version}}](https://github.com/istio/istio/releases),
+[release notes]({{home}}/about/notes/{{site.data.istio.version}}.html).
+
+- Nostalgic for days gone by? We keep an [archive of the earlier releases' documentation](https://archive.istio.io/).
+
+- We're always looking for help improving our documentation, so please don't hesitate to
[file an issue](https://github.com/istio/istio.github.io/issues/new) if you see some problem.
Or better yet, submit your own [contributions]({{home}}/about/contribute/editing.html) to help
make our docs better.
-
-Follow this link for the archive of the [earlier releases' documentation](https://archive.istio.io/).
diff --git a/_docs/reference/api/index.md b/_docs/reference/api/index.md
index f20458e4c0b72..b9e5b9b9cce16 100644
--- a/_docs/reference/api/index.md
+++ b/_docs/reference/api/index.md
@@ -1,11 +1,9 @@
---
title: API
-overview: Detailed information on API parameters.
+description: Detailed information on API parameters.
-order: 10
+weight: 10
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/reference/api/istio.mixer.v1.html b/_docs/reference/api/istio.mixer.v1.html
index 1636374e948fc..a1815b79b30be 100644
--- a/_docs/reference/api/istio.mixer.v1.html
+++ b/_docs/reference/api/istio.mixer.v1.html
@@ -1,6 +1,6 @@
---
title: Mixer
-overview: API definitions to interact with Mixer
+description: API definitions to interact with Mixer
location: https://istio.io/docs/reference/api/istio.mixer.v1.html
layout: protoc-gen-docs
redirect_from: /docs/reference/api/mixer/mixer.html
@@ -71,7 +71,7 @@ <h3 id="Attributes">Attributes</h3>
<a href="{{site.baseurl}}/docs/reference/config/mixer/attribute-vocabulary.html">here</a>.</p>
<p>Attributes are strongly typed. The supported attribute types are defined by
-<a href="https://github.com/istio/api/blob/master/mixer/v1/config/descriptor/value_type.proto">ValueType</a>.
+<a href="https://github.com/istio/api/blob/master/policy/v1beta1/value_type.proto">ValueType</a>.
Each type of value is encoded into one of the so-called transport types present
in this message.</p>
@@ -92,7 +92,7 @@ <h3 id="Attributes">Attributes</h3>
<tbody>
<tr id="Attributes.attributes">
<td><code>attributes</code></td>
-<td><code>map<string,<a href="#Attributes.AttributeValue">Attributes.AttributeValue</a>></code></td>
+<td><code>map<string, <a href="#Attributes.AttributeValue">Attributes.AttributeValue</a>></code></td>
<td>
<p>A map of attribute name to its value.</p>
@@ -196,7 +196,7 @@ <h3 id="Attributes.StringMap">Attributes.StringMap</h3>
<tbody>
<tr id="Attributes.StringMap.entries">
<td><code>entries</code></td>
-<td><code>map<string,string></code></td>
+<td><code>map<string, string></code></td>
<td>
<p>Holds a set of name/value pairs.</p>
@@ -250,7 +250,7 @@ <h3 id="CheckRequest">CheckRequest</h3>
</tr>
<tr id="CheckRequest.quotas">
<td><code>quotas</code></td>
-<td><code>map<string,<a href="#CheckRequest.QuotaParams">CheckRequest.QuotaParams</a>></code></td>
+<td><code>map<string, <a href="#CheckRequest.QuotaParams">CheckRequest.QuotaParams</a>></code></td>
<td>
<p>The individual quotas to allocate</p>
@@ -314,7 +314,7 @@ <h3 id="CheckResponse">CheckResponse</h3>
</tr>
<tr id="CheckResponse.quotas">
<td><code>quotas</code></td>
-<td><code>map<string,<a href="#CheckResponse.QuotaResult">CheckResponse.QuotaResult</a>></code></td>
+<td><code>map<string, <a href="#CheckResponse.QuotaResult">CheckResponse.QuotaResult</a>></code></td>
<td>
<p>The resulting quota, one entry per requested quota.</p>
@@ -457,7 +457,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.strings">
<td><code>strings</code></td>
-<td><code>map<int32,int32></code></td>
+<td><code>map<int32, int32></code></td>
<td>
<p>Holds attributes of type STRING, DNS<em>NAME, EMAIL</em>ADDRESS, URI</p>
@@ -465,7 +465,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.int64s">
<td><code>int64s</code></td>
-<td><code>map<int32,int64></code></td>
+<td><code>map<int32, int64></code></td>
<td>
<p>Holds attributes of type INT64</p>
@@ -473,7 +473,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.doubles">
<td><code>doubles</code></td>
-<td><code>map<int32,double></code></td>
+<td><code>map<int32, double></code></td>
<td>
<p>Holds attributes of type DOUBLE</p>
@@ -481,7 +481,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.bools">
<td><code>bools</code></td>
-<td><code>map<int32,bool></code></td>
+<td><code>map<int32, bool></code></td>
<td>
<p>Holds attributes of type BOOL</p>
@@ -489,7 +489,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.timestamps">
<td><code>timestamps</code></td>
-<td><code>map<int32,<a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#timestamp">google.protobuf.Timestamp</a>></code></td>
+<td><code>map<int32, <a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#timestamp">google.protobuf.Timestamp</a>></code></td>
<td>
<p>Holds attributes of type TIMESTAMP</p>
@@ -497,7 +497,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.durations">
<td><code>durations</code></td>
-<td><code>map<int32,<a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a>></code></td>
+<td><code>map<int32, <a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a>></code></td>
<td>
<p>Holds attributes of type DURATION</p>
@@ -505,7 +505,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.bytes">
<td><code>bytes</code></td>
-<td><code>map<int32,bytes></code></td>
+<td><code>map<int32, bytes></code></td>
<td>
<p>Holds attributes of type BYTES</p>
@@ -513,7 +513,7 @@ <h3 id="CompressedAttributes">CompressedAttributes</h3>
</tr>
<tr id="CompressedAttributes.string_maps">
<td><code>stringMaps</code></td>
-<td><code>map<int32,<a href="#StringMap">StringMap</a>></code></td>
+<td><code>map<int32, <a href="#StringMap">StringMap</a>></code></td>
<td>
<p>Holds attributes of type STRING_MAP</p>
@@ -740,7 +740,7 @@ <h3 id="StringMap">StringMap</h3>
<tbody>
<tr id="StringMap.entries">
<td><code>entries</code></td>
-<td><code>map<int32,int32></code></td>
+<td><code>map<int32, int32></code></td>
<td>
<p>Holds a set of name/value pairs.</p>
diff --git a/_docs/reference/commands/index.md b/_docs/reference/commands/index.md
index 0fd20af35c09c..291b1d442c64f 100644
--- a/_docs/reference/commands/index.md
+++ b/_docs/reference/commands/index.md
@@ -1,11 +1,9 @@
---
title: Commands
-overview: Describes usage and options of the Istio commands and utilities.
+description: Describes usage and options of the Istio commands and utilities.
-order: 30
+weight: 30
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/reference/commands/istio_ca.html b/_docs/reference/commands/istio_ca.html
index 0c1277eff8c52..51b2f9d845960 100644
--- a/_docs/reference/commands/istio_ca.html
+++ b/_docs/reference/commands/istio_ca.html
@@ -1,6 +1,6 @@
---
title: istio_ca
-overview: Istio Certificate Authority (CA)
+description: Istio Certificate Authority (CA)
layout: pkg-collateral-docs
number_of_entries: 4
---
@@ -10,199 +10,160 @@
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
+<td><code>--append-dns-names</code></td>
+<td>Append DNS names to the certificates for webhook services. </td>
</tr>
<tr>
<td><code>--cert-chain <string></code></td>
-<td></td>
<td>Path to the certificate chain file (default ``)</td>
</tr>
<tr>
+<td><code>--citadel-storage-namespace <string></code></td>
+<td>Namespace where the Citadel pod is running. Will not be used if explicit file or other storage mechanism is specified. (default `istio-system`)</td>
+</tr>
+<tr>
+<td><code>--custom-dns-names <string></code></td>
+<td>The list of account.namespace:customdns names, separated by comma. (default ``)</td>
+</tr>
+<tr>
+<td><code>--enable-profiling</code></td>
+<td>Enabling profiling when monitoring Citadel. </td>
+</tr>
+<tr>
+<td><code>--grpc-host-identities <string></code></td>
+<td>The list of hostnames for istio ca server, separated by comma. (default `istio-ca,istio-citadel`)</td>
+</tr>
+<tr>
<td><code>--grpc-hostname <string></code></td>
-<td></td>
-<td>The hostname for GRPC server. (default `localhost`)</td>
+<td>DEPRECATED, use --grpc-host-identites. (default `istio-ca`)</td>
</tr>
<tr>
<td><code>--grpc-port <int></code></td>
-<td></td>
-<td>The port number for GRPC server. If unspecified, Istio CA will not server GRPC request. (default `0`)</td>
+<td>The port number for Citadel GRPC server. If unspecified, Citadel will not serve GRPC requests. (default `8060`)</td>
</tr>
<tr>
-<td><code>--istio-ca-storage-namespace <string></code></td>
-<td></td>
-<td>Namespace where the Istio CA pods is running. Will not be used if explicit file or other storage mechanism is specified. (default `istio-system`)</td>
+<td><code>--key-size <int></code></td>
+<td>Size of generated private key (default `2048`)</td>
</tr>
<tr>
<td><code>--kube-config <string></code></td>
-<td></td>
<td>Specifies path to kubeconfig file. This must be specified when not running inside a Kubernetes pod. (default ``)</td>
</tr>
<tr>
<td><code>--listened-namespace <string></code></td>
-<td></td>
-<td>Select a namespace for the CA to listen to. If unspecified, Istio CA tries to use the ${NAMESPACE} environment variable. If neither is set, Istio CA listens to all namespaces. (default ``)</td>
+<td>Select a namespace for the CA to listen to. If unspecified, Citadel tries to use the ${NAMESPACE} environment variable. If neither is set, Citadel listens to all namespaces. (default ``)</td>
</tr>
<tr>
<td><code>--liveness-probe-interval <duration></code></td>
-<td></td>
<td>Interval of updating file for the liveness probe. (default `0s`)</td>
</tr>
<tr>
<td><code>--liveness-probe-path <string></code></td>
-<td></td>
<td>Path to the file for the liveness probe. (default ``)</td>
</tr>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
+<td><code>--max-workload-cert-ttl <duration></code></td>
+<td>The max TTL of issued workload certificates (default `2160h0m0s`)</td>
</tr>
<tr>
-<td><code>--max-workload-cert-ttl <duration></code></td>
-<td></td>
-<td>The max TTL of issued workload certificates (default `168h0m0s`)</td>
+<td><code>--monitoring-port <int></code></td>
+<td>The port number for monitoring Citadel. If unspecified, Citadel will disable monitoring. (default `9093`)</td>
+</tr>
+<tr>
+<td><code>--org <string></code></td>
+<td>Organization for the cert (default ``)</td>
</tr>
<tr>
<td><code>--probe-check-interval <duration></code></td>
-<td></td>
<td>Interval of checking the liveness of the CA. (default `30s`)</td>
</tr>
<tr>
+<td><code>--requested-ca-cert-ttl <duration></code></td>
+<td>The requested TTL for the workload (default `8760h0m0s`)</td>
+</tr>
+<tr>
<td><code>--root-cert <string></code></td>
-<td></td>
<td>Path to the root certificate file (default ``)</td>
</tr>
<tr>
<td><code>--self-signed-ca</code></td>
-<td></td>
<td>Indicates whether to use auto-generated self-signed CA certificate. When set to true, the '--signing-cert' and '--signing-key' options are ignored. </td>
</tr>
<tr>
<td><code>--self-signed-ca-cert-ttl <duration></code></td>
-<td></td>
<td>The TTL of self-signed CA root certificate (default `8760h0m0s`)</td>
</tr>
<tr>
<td><code>--self-signed-ca-org <string></code></td>
-<td></td>
<td>The issuer organization used in self-signed CA certificate (default to k8s.cluster.local) (default `k8s.cluster.local`)</td>
</tr>
<tr>
+<td><code>--sign-ca-certs</code></td>
+<td>Whether Citadel signs certificates for other CAs </td>
+</tr>
+<tr>
<td><code>--signing-cert <string></code></td>
-<td></td>
<td>Path to the CA signing certificate file (default ``)</td>
</tr>
<tr>
<td><code>--signing-key <string></code></td>
-<td></td>
<td>Path to the CA signing key file (default ``)</td>
</tr>
<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--upstream-auth <string></code></td>
-<td></td>
-<td>Specifies how the Istio CA is authenticated to the upstream CA. (default `mtls`)</td>
-</tr>
-<tr>
<td><code>--upstream-ca-address <string></code></td>
-<td></td>
-<td>The IP:port address of the upstream CA. When set, the CA will rely on the upstream Istio CA to provision its own certificate. (default ``)</td>
-</tr>
-<tr>
-<td><code>--upstream-ca-cert-file <string></code></td>
-<td></td>
-<td>Path to the certificate for authenticating upstream CA. (default ``)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td>The IP:port address of the upstream CA. When set, the CA will rely on the upstream Citadel to provision its own certificate. (default ``)</td>
</tr>
<tr>
<td><code>--workload-cert-grace-period-ratio <float32></code></td>
-<td></td>
<td>The workload certificate rotation grace period, as a ratio of the workload certificate TTL. (default `0.5`)</td>
</tr>
<tr>
<td><code>--workload-cert-min-grace-period <duration></code></td>
-<td></td>
<td>The minimum workload certificate rotation grace period. (default `10m0s`)</td>
</tr>
<tr>
<td><code>--workload-cert-ttl <duration></code></td>
-<td></td>
-<td>The TTL of issued workload certificates (default `19h0m0s`)</td>
+<td>The TTL of issued workload certificates (default `2160h0m0s`)</td>
</tr>
</tbody>
</table>
@@ -213,100 +174,53 @@ <h2 id="istio_ca probe">istio_ca probe</h2>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
<td><code>--interval <duration></code></td>
-<td></td>
<td>Duration used for checking the target file's last modified time. (default `0s`)</td>
</tr>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
<td><code>--probe-path <string></code></td>
-<td></td>
<td>Path of the file for checking the availability. (default ``)</td>
</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h2 id="istio_ca version">istio_ca version</h2>
@@ -321,34 +235,19 @@ <h2 id="istio_ca version">istio_ca version</h2>
</thead>
<tbody>
<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
<td><code>--log_as_json</code></td>
<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -373,7 +272,7 @@ <h2 id="istio_ca version">istio_ca version</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -381,29 +280,9 @@ <h2 id="istio_ca version">istio_ca version</h2>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
<td><code>--short</code></td>
<td><code>-s</code></td>
<td>Displays a short form of the version information </td>
</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
diff --git a/_docs/reference/commands/istioctl.html b/_docs/reference/commands/istioctl.html
index 4755b2c762197..25d0904271c60 100644
--- a/_docs/reference/commands/istioctl.html
+++ b/_docs/reference/commands/istioctl.html
@@ -1,8 +1,8 @@
---
title: istioctl
-overview: Istio control interface
+description: Istio control interface
layout: pkg-collateral-docs
-number_of_entries: 14
+number_of_entries: 19
---
<p>
Istio configuration command line utility.</p>
@@ -36,19 +36,14 @@
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -73,7 +68,7 @@
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -90,16 +85,6 @@
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h2 id="istioctl context-create">istioctl context-create</h2>
@@ -139,19 +124,14 @@ <h2 id="istioctl context-create">istioctl context-create</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -176,7 +156,7 @@ <h2 id="istioctl context-create">istioctl context-create</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -193,16 +173,6 @@ <h2 id="istioctl context-create">istioctl context-create</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl context-create Examples">Examples</h3>
@@ -242,19 +212,14 @@ <h2 id="istioctl create">istioctl create</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -279,7 +244,7 @@ <h2 id="istioctl create">istioctl create</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -296,16 +261,6 @@ <h2 id="istioctl create">istioctl create</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl create Examples">Examples</h3>
@@ -343,19 +298,14 @@ <h2 id="istioctl delete">istioctl delete</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -380,7 +330,7 @@ <h2 id="istioctl delete">istioctl delete</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -397,16 +347,6 @@ <h2 id="istioctl delete">istioctl delete</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl delete Examples">Examples</h3>
@@ -444,19 +384,357 @@ <h2 id="istioctl deregister">istioctl deregister</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
+<td><code>--log_caller <string></code></td>
+<td></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_output_level <string></code></td>
+<td></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate <string></code></td>
+<td></td>
+<td>The path for the optional rotating log file (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_age <int></code></td>
+<td></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
+<td></td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_size <int></code></td>
+<td></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
+</tr>
+<tr>
+<td><code>--log_target <stringArray></code></td>
+<td></td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
+</tr>
+<tr>
+<td><code>--namespace <string></code></td>
+<td><code>-n</code></td>
+<td>Config namespace (default ``)</td>
+</tr>
+<tr>
+<td><code>--platform <string></code></td>
+<td><code>-p</code></td>
+<td>Istio host platform (default `kube`)</td>
+</tr>
+</tbody>
+</table>
+<h2 id="istioctl experimental">istioctl experimental</h2>
+<p>Experimental commands that may be modified or deprecated</p>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Shorthand</th>
+<th>Description</th>
+</thead>
+<tbody>
+<tr>
+<td><code>--istioNamespace <string></code></td>
+<td><code>-i</code></td>
+<td>Istio system namespace (default `istio-system`)</td>
+</tr>
+<tr>
+<td><code>--kubeconfig <string></code></td>
+<td><code>-c</code></td>
+<td>Kubernetes configuration file (default `$KUBECONFIG else $HOME/.kube/config`)</td>
+</tr>
+<tr>
+<td><code>--log_as_json</code></td>
+<td></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
+</tr>
+<tr>
+<td><code>--log_caller <string></code></td>
+<td></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_output_level <string></code></td>
+<td></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate <string></code></td>
+<td></td>
+<td>The path for the optional rotating log file (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_age <int></code></td>
+<td></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
+<td></td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_size <int></code></td>
+<td></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
+</tr>
+<tr>
+<td><code>--log_target <stringArray></code></td>
+<td></td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
+</tr>
+<tr>
+<td><code>--namespace <string></code></td>
+<td><code>-n</code></td>
+<td>Config namespace (default ``)</td>
+</tr>
+<tr>
+<td><code>--platform <string></code></td>
+<td><code>-p</code></td>
+<td>Istio host platform (default `kube`)</td>
+</tr>
+</tbody>
+</table>
+<h2 id="istioctl experimental convert-networking-config">istioctl experimental convert-networking-config</h2>
+<p>Converts sets of v1alpha1 configs to v1alpha3 equivalents on a best effort basis. The output should be considered a starting point for your v1alpha3 configs and probably require some minor modification. Warnings will (hopefully) be generated where configs cannot be converted perfectly, or in certain edge cases. The input must be the set of configs that would be in place in an environment at a given time. This allows the command to attempt to create and merge output configs intelligently.Output configs are given the namespace and domain of the first input config so it is recommended that input configs be part of the same namespace and domain.</p>
+<pre class="language-bash"><code>istioctl experimental convert-networking-config [flags]
+</code></pre>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Shorthand</th>
+<th>Description</th>
+</thead>
+<tbody>
+<tr>
+<td><code>--filenames <stringSlice></code></td>
+<td><code>-f</code></td>
+<td>Input filenames (default `[]`)</td>
+</tr>
+<tr>
+<td><code>--istioNamespace <string></code></td>
+<td><code>-i</code></td>
+<td>Istio system namespace (default `istio-system`)</td>
+</tr>
+<tr>
+<td><code>--kubeconfig <string></code></td>
+<td><code>-c</code></td>
+<td>Kubernetes configuration file (default `$KUBECONFIG else $HOME/.kube/config`)</td>
+</tr>
+<tr>
+<td><code>--log_as_json</code></td>
+<td></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
+</tr>
+<tr>
+<td><code>--log_caller <string></code></td>
+<td></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_output_level <string></code></td>
+<td></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate <string></code></td>
+<td></td>
+<td>The path for the optional rotating log file (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_age <int></code></td>
+<td></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
+<td></td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_size <int></code></td>
+<td></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
+</tr>
+<tr>
+<td><code>--log_target <stringArray></code></td>
+<td></td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
+</tr>
+<tr>
+<td><code>--namespace <string></code></td>
+<td><code>-n</code></td>
+<td>Config namespace (default ``)</td>
+</tr>
+<tr>
+<td><code>--output <string></code></td>
+<td><code>-o</code></td>
+<td>Output filename (default `-`)</td>
+</tr>
+<tr>
+<td><code>--platform <string></code></td>
+<td><code>-p</code></td>
+<td>Istio host platform (default `kube`)</td>
+</tr>
+</tbody>
+</table>
+<h3 id="istioctl experimental convert-networking-config Examples">Examples</h3>
+<pre class="language-bash"><code>istioctl experimental convert-networking-config -f v1alpha1/default-route.yaml -f v1alpha1/header-delay.yaml
+</code></pre>
+<h2 id="istioctl experimental metrics">istioctl experimental metrics</h2>
+<p>
+Prints the metrics for the specified service(s) when running in Kubernetes.</p>
+<p>This command finds a Prometheus pod running in the specified istio system
+namespace. It then executes a series of queries per requested service to
+find the following top-level service metrics: total requests per second,
+error rate, and request latency at p50, p90, and p99 percentiles. The
+query results are printed to the console, organized by service name.</p>
+<p>All metrics returned are from server-side reports. This means that latencies
+and error rates are from the perspective of the service itself and not of an
+individual client (or aggregate set of clients). Rates and latencies are
+calculated over a time interval of 1 minute.
+</p>
+<pre class="language-bash"><code>istioctl experimental metrics <service name>...
+</code></pre>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Shorthand</th>
+<th>Description</th>
+</thead>
+<tbody>
+<tr>
+<td><code>--istioNamespace <string></code></td>
+<td><code>-i</code></td>
+<td>Istio system namespace (default `istio-system`)</td>
+</tr>
+<tr>
+<td><code>--kubeconfig <string></code></td>
+<td><code>-c</code></td>
+<td>Kubernetes configuration file (default `$KUBECONFIG else $HOME/.kube/config`)</td>
+</tr>
+<tr>
+<td><code>--log_as_json</code></td>
+<td></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
+</tr>
+<tr>
+<td><code>--log_caller <string></code></td>
+<td></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_output_level <string></code></td>
+<td></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate <string></code></td>
+<td></td>
+<td>The path for the optional rotating log file (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_age <int></code></td>
+<td></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_rotate_max_size <int></code></td>
+<td></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
+</tr>
+<tr>
+<td><code>--log_target <stringArray></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
+</tr>
+<tr>
+<td><code>--namespace <string></code></td>
+<td><code>-n</code></td>
+<td>Config namespace (default ``)</td>
+</tr>
+<tr>
+<td><code>--platform <string></code></td>
+<td><code>-p</code></td>
+<td>Istio host platform (default `kube`)</td>
+</tr>
+</tbody>
+</table>
+<h3 id="istioctl experimental metrics Examples">Examples</h3>
+<pre class="language-bash"><code>
+# Retrieve service metrics for productpage service
+istioctl experimental metrics productpage
+
+# Retrieve service metrics for various services in the different namespaces
+istioctl experimental metrics productpage.foo reviews.bar ratings.baz
+
+</code></pre>
+<h2 id="istioctl experimental rbac">istioctl experimental rbac</h2>
+<p>
+A group of commands used to interact with Istio RBAC policies. For example, Query whether a specific
+request is allowed or denied under the current Istio RBAC policies.</p>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Shorthand</th>
+<th>Description</th>
+</thead>
+<tbody>
+<tr>
+<td><code>--istioNamespace <string></code></td>
+<td><code>-i</code></td>
+<td>Istio system namespace (default `istio-system`)</td>
+</tr>
+<tr>
+<td><code>--kubeconfig <string></code></td>
+<td><code>-c</code></td>
+<td>Kubernetes configuration file (default `$KUBECONFIG else $HOME/.kube/config`)</td>
+</tr>
+<tr>
+<td><code>--log_as_json</code></td>
+<td></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
+</tr>
+<tr>
+<td><code>--log_caller <string></code></td>
+<td></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -481,7 +759,7 @@ <h2 id="istioctl deregister">istioctl deregister</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -498,18 +776,123 @@ <h2 id="istioctl deregister">istioctl deregister</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
+</tbody>
+</table>
+<h3 id="istioctl experimental rbac Examples">Examples</h3>
+<pre class="language-bash"><code># Query if user test is allowed to GET /v1/health of service rating.
+istioctl experimental rbac can -u test GET rating /v1/health
+</code></pre>
+<h2 id="istioctl experimental rbac can">istioctl experimental rbac can</h2>
+<p>
+This command lets you query whether a specific request will be allowed or denied under current Istio
+RBAC policies. It constructs a fake request with the custom subject and action specified in the command
+line to check if your Istio RBAC policies are working as expected. Note the fake request is only used
+locally to evaluate the effect of the Istio RBAC policies, no actual request will be issued.</p>
+<p>METHOD is the HTTP method being taken, like GET, POST, etc. SERVICE is the short service name the action
+is being taken on. PATH is the HTTP path within the service.</p>
+<pre class="language-bash"><code>istioctl experimental rbac can METHOD SERVICE PATH [flags]
+</code></pre>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Shorthand</th>
+<th>Description</th>
+</thead>
+<tbody>
+<tr>
+<td><code>--action-properties <stringArray></code></td>
+<td><code>-a</code></td>
+<td>[Action] Additional data about the action. Specified as name1=value1,name2=value2,... (default `[]`)</td>
+</tr>
+<tr>
+<td><code>--groups <string></code></td>
+<td><code>-g</code></td>
+<td>[Subject] Group name/ID that the subject represents. (default ``)</td>
+</tr>
+<tr>
+<td><code>--istioNamespace <string></code></td>
+<td><code>-i</code></td>
+<td>Istio system namespace (default `istio-system`)</td>
+</tr>
+<tr>
+<td><code>--kubeconfig <string></code></td>
+<td><code>-c</code></td>
+<td>Kubernetes configuration file (default `$KUBECONFIG else $HOME/.kube/config`)</td>
+</tr>
+<tr>
+<td><code>--log_as_json</code></td>
+<td></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
+</tr>
+<tr>
+<td><code>--log_caller <string></code></td>
+<td></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_output_level <string></code></td>
+<td></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate <string></code></td>
+<td></td>
+<td>The path for the optional rotating log file (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_age <int></code></td>
+<td></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
+<td></td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
+</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
+<td><code>--log_rotate_max_size <int></code></td>
+<td></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
-<td><code>--vmodule <moduleSpec></code></td>
+<td><code>--log_target <stringArray></code></td>
<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
+</tr>
+<tr>
+<td><code>--namespace <string></code></td>
+<td><code>-n</code></td>
+<td>Config namespace (default ``)</td>
+</tr>
+<tr>
+<td><code>--platform <string></code></td>
+<td><code>-p</code></td>
+<td>Istio host platform (default `kube`)</td>
+</tr>
+<tr>
+<td><code>--subject-properties <stringArray></code></td>
+<td><code>-s</code></td>
+<td>[Subject] Additional data about the subject. Specified as name1=value1,name2=value2,... (default `[]`)</td>
+</tr>
+<tr>
+<td><code>--user <string></code></td>
+<td><code>-u</code></td>
+<td>[Subject] User name/ID that the subject represents. (default ``)</td>
</tr>
</tbody>
</table>
+<h3 id="istioctl experimental rbac can Examples">Examples</h3>
+<pre class="language-bash"><code># Query if user test is allowed to GET /v1/health of service rating.
+istioctl experimental rbac can -u test GET rating /v1/health
+
+# Query if service product-page is allowed to POST to /data of service rating with label version=dev.
+istioctl experimental rbac can -s service=product-page POST rating /data -a version=dev
+</code></pre>
<h2 id="istioctl gen-deploy">istioctl gen-deploy</h2>
<p>istioctl gen-deploy produces deployment files to run the minimum Istio control for the set of features requested by the --feature flag. If no features are provided, we create deployments for the default control plane: Pilot, Mixer, CA, and Ingress Proxies, with mTLS enabled.</p>
<pre class="language-bash"><code>istioctl gen-deploy [flags]
@@ -544,7 +927,7 @@ <h2 id="istioctl gen-deploy">istioctl gen-deploy</h2>
<tr>
<td><code>--hyperkube-tag <Hyperkube></code></td>
<td></td>
-<td>The tag to use to pull the Hyperkube container (default `0.4.0`)</td>
+<td>The tag to use to pull the Hyperkube container (default `v1.7.6_coreos.0`)</td>
</tr>
<tr>
<td><code>--ingress-node-port <uint16></code></td>
@@ -567,19 +950,14 @@ <h2 id="istioctl gen-deploy">istioctl gen-deploy</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -604,7 +982,7 @@ <h2 id="istioctl gen-deploy">istioctl gen-deploy</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -627,20 +1005,10 @@ <h2 id="istioctl gen-deploy">istioctl gen-deploy</h2>
<td>Istio host platform (default `kube`)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
<td><code>--values <string></code></td>
<td></td>
<td>Path to the Helm values.yaml file used to render YAML deployments locally when --out=yaml. Flag values are ignored in favor of using the file directly. (default ``)</td>
</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl gen-deploy Examples">Examples</h3>
@@ -673,19 +1041,14 @@ <h2 id="istioctl get">istioctl get</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -710,7 +1073,7 @@ <h2 id="istioctl get">istioctl get</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -732,16 +1095,6 @@ <h2 id="istioctl get">istioctl get</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl get Examples">Examples</h3>
@@ -800,6 +1153,16 @@ <h2 id="istioctl kube-inject">istioctl kube-inject</h2>
<td>Emit sidecar template based on parameterized flags </td>
</tr>
<tr>
+<td><code>--excludeIPRanges <string></code></td>
+<td></td>
+<td>Comma separated list of IP ranges in CIDR form. If set, outbound traffic will not be redirected for these IP ranges. Exclusions are only applied if configured to redirect all outbound traffic. By default, no IP ranges are excluded. (default ``)</td>
+</tr>
+<tr>
+<td><code>--excludeInboundPorts <string></code></td>
+<td></td>
+<td>Comma separated list of inbound ports. If set, inbound traffic will not be redirected for those ports. Exclusions are only applied if configured to redirect all inbound traffic. By default, no ports are excluded. (default ``)</td>
+</tr>
+<tr>
<td><code>--filename <string></code></td>
<td><code>-f</code></td>
<td>Input Kubernetes resource filename (default ``)</td>
@@ -817,7 +1180,12 @@ <h2 id="istioctl kube-inject">istioctl kube-inject</h2>
<tr>
<td><code>--includeIPRanges <string></code></td>
<td></td>
-<td>Comma separated list of IP ranges in CIDR form. If set, only redirect outbound traffic to Envoy for IP ranges. Otherwise all outbound traffic is redirected (default ``)</td>
+<td>Comma separated list of IP ranges in CIDR form. If set, only redirect outbound traffic to Envoy for these IP ranges. All outbound traffic can be redirected with the wildcard character '*'. Defaults to '*'. (default `*`)</td>
+</tr>
+<tr>
+<td><code>--includeInboundPorts <string></code></td>
+<td></td>
+<td>Comma separated list of inbound ports for which traffic is to be redirected to Envoy. All ports can be redirected with the wildcard character '*'. Defaults to '*'. (default `*`)</td>
</tr>
<tr>
<td><code>--injectConfigFile <string></code></td>
@@ -845,19 +1213,14 @@ <h2 id="istioctl kube-inject">istioctl kube-inject</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -882,7 +1245,7 @@ <h2 id="istioctl kube-inject">istioctl kube-inject</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -930,20 +1293,10 @@ <h2 id="istioctl kube-inject">istioctl kube-inject</h2>
<td>Docker tag (default `unknown`)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
<td><code>--verbosity <int></code></td>
<td></td>
<td>Runtime verbosity (default `2`)</td>
</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl kube-inject Examples">Examples</h3>
@@ -965,10 +1318,15 @@ <h3 id="istioctl kube-inject Examples">Examples</h3>
</code></pre>
<h2 id="istioctl proxy-config">istioctl proxy-config</h2>
<p>
-Retrieves the static/bootstrap proxy configuration for the specified pod when running in Kubernetes.
-Support for other environments to follow.
-</p>
-<pre class="language-bash"><code>istioctl proxy-config <pod-name> [flags]
+Retrieves proxy configuration for the specified pod from the endpoint proxy or Pilot when running in Kubernetes.
+It is also able to retrieve the state of the entire mesh by using mesh instead of <pod-name>. This is only available when querying Pilot.</p>
+<p>Available configuration types:</p>
+<p> Endpoint:
+ [clusters listeners routes static]</p>
+<p> Pilot:
+ [ads eds]</p>
+<p></p>
+<pre class="language-bash"><code>istioctl proxy-config <endpoint|pilot> <pod-name|mesh> [<configuration-type>] [flags]
</code></pre>
<table class="command-flags">
<thead>
@@ -993,19 +1351,14 @@ <h2 id="istioctl proxy-config">istioctl proxy-config</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -1030,7 +1383,7 @@ <h2 id="istioctl proxy-config">istioctl proxy-config</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -1047,21 +1400,20 @@ <h2 id="istioctl proxy-config">istioctl proxy-config</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl proxy-config Examples">Examples</h3>
-<pre class="language-bash"><code># Retrieve config for productpage-v1-bb8d5cbc7-k7qbm pod
-istioctl proxy-config productpage-v1-bb8d5cbc7-k7qbm
+<pre class="language-bash"><code># Retrieve all config for productpage-v1-bb8d5cbc7-k7qbm pod from the endpoint proxy
+istioctl proxy-config endpoint productpage-v1-bb8d5cbc7-k7qbm
+
+# Retrieve eds config for productpage-v1-bb8d5cbc7-k7qbm pod from Pilot
+istioctl proxy-config pilot productpage-v1-bb8d5cbc7-k7qbm eds
+
+# Retrieve ads config for the mesh from Pilot
+istioctl proxy-config pilot mesh ads
+
+# Retrieve static config for productpage-v1-bb8d5cbc7-k7qbm pod in the application namespace from the endpoint proxy
+istioctl proxy-config endpoint -n application productpage-v1-bb8d5cbc7-k7qbm static
</code></pre>
<h2 id="istioctl register">istioctl register</h2>
<p>Registers a service instance (e.g. VM) joining the mesh</p>
@@ -1100,19 +1452,14 @@ <h2 id="istioctl register">istioctl register</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -1137,7 +1484,7 @@ <h2 id="istioctl register">istioctl register</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -1159,16 +1506,6 @@ <h2 id="istioctl register">istioctl register</h2>
<td><code>-s</code></td>
<td>Service account to link to the service (default `default`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h2 id="istioctl replace">istioctl replace</h2>
@@ -1203,19 +1540,14 @@ <h2 id="istioctl replace">istioctl replace</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -1240,7 +1572,7 @@ <h2 id="istioctl replace">istioctl replace</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -1257,16 +1589,6 @@ <h2 id="istioctl replace">istioctl replace</h2>
<td><code>-p</code></td>
<td>Istio host platform (default `kube`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h3 id="istioctl replace Examples">Examples</h3>
@@ -1299,19 +1621,14 @@ <h2 id="istioctl version">istioctl version</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -1336,7 +1653,7 @@ <h2 id="istioctl version">istioctl version</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -1358,15 +1675,5 @@ <h2 id="istioctl version">istioctl version</h2>
<td><code>-s</code></td>
<td>Displays a short form of the version information </td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
diff --git a/_docs/reference/commands/mixc.html b/_docs/reference/commands/mixc.html
index 118e1b7c3a187..428e0c0ecf9de 100644
--- a/_docs/reference/commands/mixc.html
+++ b/_docs/reference/commands/mixc.html
@@ -1,36 +1,12 @@
---
title: mixc
-overview: Utility to trigger direct calls to Mixer's API.
+description: Utility to trigger direct calls to Mixer's API.
layout: pkg-collateral-docs
number_of_entries: 5
---
<p>This command lets you interact with a running instance of
Mixer. Note that you need a pretty good understanding of Mixer's
API in order to use this command.</p>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--trace_jaeger_url <string></code></td>
-<td></td>
-<td>URL of Jaeger HTTP collector (example: 'http://jaeger:14268/api/traces?format=jaeger.thrift'). (default ``)</td>
-</tr>
-<tr>
-<td><code>--trace_log_spans</code></td>
-<td></td>
-<td>Whether or not to log trace spans. </td>
-</tr>
-<tr>
-<td><code>--trace_zipkin_url <string></code></td>
-<td></td>
-<td>URL of Zipkin collector (example: 'http://zipkin:9411/api/v1/spans'). (default ``)</td>
-</tr>
-</tbody>
-</table>
<h2 id="mixc check">mixc check</h2>
<p>The Check method is used to perform precondition checks and quota allocations. Mixer
expects a set of attributes as input, which it uses, along with
@@ -224,20 +200,5 @@ <h2 id="mixc version">mixc version</h2>
<td><code>-s</code></td>
<td>Displays a short form of the version information </td>
</tr>
-<tr>
-<td><code>--trace_jaeger_url <string></code></td>
-<td></td>
-<td>URL of Jaeger HTTP collector (example: 'http://jaeger:14268/api/traces?format=jaeger.thrift'). (default ``)</td>
-</tr>
-<tr>
-<td><code>--trace_log_spans</code></td>
-<td></td>
-<td>Whether or not to log trace spans. </td>
-</tr>
-<tr>
-<td><code>--trace_zipkin_url <string></code></td>
-<td></td>
-<td>URL of Zipkin collector (example: 'http://zipkin:9411/api/v1/spans'). (default ``)</td>
-</tr>
</tbody>
</table>
diff --git a/_docs/reference/commands/mixs.html b/_docs/reference/commands/mixs.html
index 41e7d6f2e80ea..ccbda2dfe3587 100644
--- a/_docs/reference/commands/mixs.html
+++ b/_docs/reference/commands/mixs.html
@@ -1,245 +1,25 @@
---
title: mixs
-overview: Mixer is Istio's abstraction on top of infrastructure backends.
+description: Mixer is Istio's abstraction on top of infrastructure backends.
layout: pkg-collateral-docs
-number_of_entries: 10
+number_of_entries: 9
---
<p>Mixer is Istio's point of integration with infrastructure backends and is the
nexus for policy evaluation and telemetry reporting.</p>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-</tbody>
-</table>
<h2 id="mixs crd">mixs crd</h2>
<p>CRDs (CustomResourceDefinition) available in Mixer</p>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-</tbody>
-</table>
<h2 id="mixs crd adapter">mixs crd adapter</h2>
<p>List CRDs for available adapters</p>
<pre class="language-bash"><code>mixs crd adapter [flags]
</code></pre>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-</tbody>
-</table>
<h2 id="mixs crd all">mixs crd all</h2>
<p>List all CRDs</p>
<pre class="language-bash"><code>mixs crd all [flags]
</code></pre>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-</tbody>
-</table>
<h2 id="mixs crd instance">mixs crd instance</h2>
<p>List CRDs for available instance kinds (mesh functions)</p>
<pre class="language-bash"><code>mixs crd instance [flags]
</code></pre>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-</tbody>
-</table>
<h2 id="mixs probe">mixs probe</h2>
<p>Check the liveness or readiness of a locally-running server</p>
<pre class="language-bash"><code>mixs probe [flags]
@@ -247,100 +27,53 @@ <h2 id="mixs probe">mixs probe</h2>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
<td><code>--interval <duration></code></td>
-<td></td>
<td>Duration used for checking the target file's last modified time. (default `0s`)</td>
</tr>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include caller information, scopes can be any of [adapters, default, attributes] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>Comma-separated minimum per-scope logging level of messages to output, in the form of <scope>:<level>,<scope>:<level>,... where scope can be one of [adapters, default, attributes] and level can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>Comma-separated minimum per-scope logging level at which stack traces are captured, in the form of <scope>:<level>,<scope:level>,... where scope can be one of [adapters, default, attributes] and level can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
<td><code>--probe-path <string></code></td>
-<td></td>
<td>Path of the file for checking the availability. (default ``)</td>
</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
<h2 id="mixs server">mixs server</h2>
@@ -360,11 +93,6 @@ <h2 id="mixs server">mixs server</h2>
<td>Max number of goroutines in the adapter worker pool (default `1024`)</td>
</tr>
<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
<td><code>--apiWorkerPoolSize <int></code></td>
<td></td>
<td>Max number of goroutines in the API worker pool (default `1024`)</td>
@@ -380,9 +108,9 @@ <h2 id="mixs server">mixs server</h2>
<td>URL of the config store. Use k8s://path_to_kubeconfig or fs:// for file system. If path_to_kubeconfig is empty, in-cluster kubeconfig is used. (default ``)</td>
</tr>
<tr>
-<td><code>--expressionEvalCacheSize <int></code></td>
+<td><code>--ctrlz_port <uint16></code></td>
<td></td>
-<td>Number of entries in the expression cache (default `1024`)</td>
+<td>The IP port to use for the ControlZ introspection facility (default `9876`)</td>
</tr>
<tr>
<td><code>--livenessProbeInterval <duration></code></td>
@@ -400,24 +128,14 @@ <h2 id="mixs server">mixs server</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
+<td>Comma-separated list of scopes for which to include caller information, scopes can be any of [adapters, default, attributes] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>Comma-separated minimum per-scope logging level of messages to output, in the form of <scope>:<level>,<scope>:<level>,... where scope can be one of [adapters, default, attributes] and level can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -442,7 +160,7 @@ <h2 id="mixs server">mixs server</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>Comma-separated minimum per-scope logging level at which stack traces are captured, in the form of <scope>:<level>,<scope:level>,... where scope can be one of [adapters, default, attributes] and level can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -450,11 +168,6 @@ <h2 id="mixs server">mixs server</h2>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
<td><code>--maxConcurrentStreams <uint></code></td>
<td></td>
<td>Maximum number of outstanding RPCs per connection (default `1024`)</td>
@@ -475,6 +188,11 @@ <h2 id="mixs server">mixs server</h2>
<td>TCP port to use for Mixer's gRPC API (default `9091`)</td>
</tr>
<tr>
+<td><code>--profile</code></td>
+<td></td>
+<td>Enable profiling via web interface host:port/debug/pprof </td>
+</tr>
+<tr>
<td><code>--readinessProbeInterval <duration></code></td>
<td></td>
<td>Interval of updating file for the readiness probe. (default `0s`)</td>
@@ -490,11 +208,6 @@ <h2 id="mixs server">mixs server</h2>
<td>If true, each request to Mixer will be executed in a single go routine (useful for debugging) </td>
</tr>
<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
<td><code>--trace_jaeger_url <string></code></td>
<td></td>
<td>URL of Jaeger HTTP collector (example: 'http://jaeger:14268/api/traces?format=jaeger.thrift'). (default ``)</td>
@@ -509,109 +222,6 @@ <h2 id="mixs server">mixs server</h2>
<td></td>
<td>URL of Zipkin collector (example: 'http://zipkin:9411/api/v1/spans'). (default ``)</td>
</tr>
-<tr>
-<td><code>--useNewRuntime</code></td>
-<td></td>
-<td>Use the new runtime code for processing requests. </td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-</tbody>
-</table>
-<h2 id="mixs validator">mixs validator</h2>
-<p>Runs an https server for validations. Works as an external admission webhook for k8s</p>
-<pre class="language-bash"><code>mixs validator [flags]
-</code></pre>
-<table class="command-flags">
-<thead>
-<th>Flags</th>
-<th>Shorthand</th>
-<th>Description</th>
-</thead>
-<tbody>
-<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--external-admission-webook-name <string></code></td>
-<td></td>
-<td>the name of the external admission webhook registration. Needs to be a domain with at least three segments separated by dots. (default `mixer-webhook.istio.io`)</td>
-</tr>
-<tr>
-<td><code>--kubeconfig <string></code></td>
-<td></td>
-<td>Use a Kubernetes configuration file instead of in-cluster configuration (default ``)</td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
-<td><code>--namespace <string></code></td>
-<td></td>
-<td>the namespace where this webhook is deployed (default `istio-system`)</td>
-</tr>
-<tr>
-<td><code>--port <int></code></td>
-<td><code>-p</code></td>
-<td>the port number of the webhook (default `9099`)</td>
-</tr>
-<tr>
-<td><code>--registration-delay <duration></code></td>
-<td></td>
-<td>Time to delay webhook registration after starting webhook server (default `5s`)</td>
-</tr>
-<tr>
-<td><code>--secret-name <string></code></td>
-<td></td>
-<td>The name of k8s secret where the certificates are stored (default ``)</td>
-</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--target-namespaces <stringArray></code></td>
-<td></td>
-<td>the list of namespaces where changes should be validated. Empty means to validate everything. Used for test only. (default `[]`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
-<tr>
-<td><code>--webhook-name <string></code></td>
-<td></td>
-<td>the name of the webhook (default `istio-mixer-webhook`)</td>
-</tr>
</tbody>
</table>
<h2 id="mixs version">mixs version</h2>
@@ -626,44 +236,9 @@ <h2 id="mixs version">mixs version</h2>
</thead>
<tbody>
<tr>
-<td><code>--alsologtostderr</code></td>
-<td></td>
-<td>log to standard error as well as files </td>
-</tr>
-<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_dir <string></code></td>
-<td></td>
-<td>If non-empty, write log files in this directory (default ``)</td>
-</tr>
-<tr>
-<td><code>--logtostderr</code></td>
-<td></td>
-<td>log to standard error instead of files </td>
-</tr>
-<tr>
<td><code>--short</code></td>
<td><code>-s</code></td>
<td>Displays a short form of the version information </td>
</tr>
-<tr>
-<td><code>--stderrthreshold <severity></code></td>
-<td></td>
-<td>logs at or above this threshold go to stderr (default `2`)</td>
-</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
diff --git a/_docs/reference/commands/node_agent.html b/_docs/reference/commands/node_agent.html
index 76c6ecd37b77f..94e4d0c997154 100644
--- a/_docs/reference/commands/node_agent.html
+++ b/_docs/reference/commands/node_agent.html
@@ -1,6 +1,6 @@
---
title: node_agent
-overview: Istio security per-node agent
+description: Istio security per-node agent
layout: pkg-collateral-docs
number_of_entries: 3
---
@@ -10,109 +10,80 @@
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
-<td><code>--aws-root-cert <string></code></td>
-<td></td>
-<td>Root Certificate file in AWS environment (default `/etc/certs/root-cert.pem`)</td>
-</tr>
-<tr>
<td><code>--ca-address <string></code></td>
-<td></td>
-<td>Istio CA address (default `istio-ca:8060`)</td>
+<td>Istio CA address (default `istio-citadel:8060`)</td>
</tr>
<tr>
-<td><code>--env <string></code></td>
-<td></td>
-<td>Node Environment : onprem | gcp | aws (default `onprem`)</td>
+<td><code>--cert-chain <string></code></td>
+<td>Node Agent identity cert file (default `/etc/certs/cert-chain.pem`)</td>
</tr>
<tr>
-<td><code>--gcp-ca-address <string></code></td>
-<td></td>
-<td>Istio CA address in GCP environment (default `istio-ca:8060`)</td>
+<td><code>--env <string></code></td>
+<td>Node Environment : unspecified | onprem | gcp | aws (default `unspecified`)</td>
</tr>
<tr>
-<td><code>--gcp-root-cert <string></code></td>
-<td></td>
-<td>Root Certificate file in GCP environment (default `/etc/certs/root-cert.pem`)</td>
+<td><code>--key <string></code></td>
+<td>Node Agent private key file (default `/etc/certs/key.pem`)</td>
</tr>
<tr>
<td><code>--key-size <int></code></td>
-<td></td>
<td>Size of generated private key (default `2048`)</td>
</tr>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
-<td><code>--onprem-cert-chain <string></code></td>
-<td></td>
-<td>Node Agent identity cert file in on premise environment (default `/etc/certs/cert-chain.pem`)</td>
-</tr>
-<tr>
-<td><code>--onprem-key <string></code></td>
-<td></td>
-<td>Node identity private key file in on premise environment (default `/etc/certs/key.pem`)</td>
+<td><code>--org <string></code></td>
+<td>Organization for the cert (default ``)</td>
</tr>
<tr>
-<td><code>--onprem-root-cert <string></code></td>
-<td></td>
-<td>Root Certificate file in on premise environment (default `/etc/certs/root-cert.pem`)</td>
+<td><code>--platform <string></code></td>
+<td>The platform istio runs on: vm | k8s (default `vm`)</td>
</tr>
<tr>
-<td><code>--org <string></code></td>
-<td></td>
-<td>Organization for the cert (default ``)</td>
+<td><code>--root-cert <string></code></td>
+<td>Root Certificate file (default `/etc/certs/root-cert.pem`)</td>
</tr>
<tr>
<td><code>--workload-cert-ttl <duration></code></td>
-<td></td>
-<td>The requested TTL for the workload (default `19h0m0s`)</td>
+<td>The requested TTL for the workload (default `2160h0m0s`)</td>
</tr>
</tbody>
</table>
@@ -133,14 +104,14 @@ <h2 id="node_agent version">node_agent version</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -165,7 +136,7 @@ <h2 id="node_agent version">node_agent version</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
diff --git a/_docs/reference/commands/pilot-agent.html b/_docs/reference/commands/pilot-agent.html
index 3e04853895fb7..6672af31aaaaa 100644
--- a/_docs/reference/commands/pilot-agent.html
+++ b/_docs/reference/commands/pilot-agent.html
@@ -1,76 +1,99 @@
---
title: pilot-agent
-overview: Istio Pilot agent
+description: Istio Pilot agent
layout: pkg-collateral-docs
-number_of_entries: 4
+number_of_entries: 5
---
<p>Istio Pilot provides management plane functionality to the Istio service mesh and Istio Mixer.</p>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
+</tbody>
+</table>
+<h2 id="pilot-agent debug">pilot-agent debug</h2>
+<p>Debug local envoy</p>
+<pre class="language-bash"><code>pilot-agent debug <configuration-type> [flags]
+</code></pre>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Description</th>
+</thead>
+<tbody>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
+<td><code>--log_as_json</code></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_output_level <string></code></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate <string></code></td>
+<td>The path for the optional rotating log file (default ``)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_age <int></code></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_size <int></code></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
+</tr>
+<tr>
+<td><code>--log_target <stringArray></code></td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
</tbody>
</table>
@@ -81,173 +104,135 @@ <h2 id="pilot-agent proxy">pilot-agent proxy</h2>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
<td><code>--availabilityZone <string></code></td>
-<td></td>
<td>Availability zone (default ``)</td>
</tr>
<tr>
<td><code>--binaryPath <string></code></td>
-<td></td>
<td>Path to the proxy binary (default `/usr/local/bin/envoy`)</td>
</tr>
<tr>
<td><code>--bootstrapv2</code></td>
-<td></td>
<td>Use bootstrap v2 </td>
</tr>
<tr>
<td><code>--concurrency <int></code></td>
-<td></td>
<td>number of worker threads to run (default `0`)</td>
</tr>
<tr>
<td><code>--configPath <string></code></td>
-<td></td>
<td>Path to the generated configuration file directory (default `/etc/istio/proxy`)</td>
</tr>
<tr>
<td><code>--connectTimeout <duration></code></td>
-<td></td>
<td>Connection timeout used by Envoy for supporting services (default `1s`)</td>
</tr>
<tr>
<td><code>--controlPlaneAuthPolicy <string></code></td>
-<td></td>
<td>Control Plane Authentication Policy (default `NONE`)</td>
</tr>
<tr>
<td><code>--customConfigFile <string></code></td>
-<td></td>
-<td>Path to the generated configuration file directory (default ``)</td>
+<td>Path to the custom configuration file (default ``)</td>
+</tr>
+<tr>
+<td><code>--disableInternalTelemetry</code></td>
+<td>Disable internal telemetry </td>
</tr>
<tr>
<td><code>--discoveryAddress <string></code></td>
-<td></td>
-<td>Address of the discovery service exposing xDS (e.g. istio-pilot:8080) (default `istio-pilot:15003`)</td>
+<td>Address of the discovery service exposing xDS (e.g. istio-pilot:8080) (default `istio-pilot:15007`)</td>
</tr>
<tr>
<td><code>--discoveryRefreshDelay <duration></code></td>
-<td></td>
<td>Polling interval for service discovery (used by EDS, CDS, LDS, but not RDS) (default `1s`)</td>
</tr>
<tr>
<td><code>--domain <string></code></td>
-<td></td>
<td>DNS domain suffix. If not provided uses ${POD_NAMESPACE}.svc.cluster.local (default ``)</td>
</tr>
<tr>
<td><code>--drainDuration <duration></code></td>
-<td></td>
<td>The time in seconds that Envoy will drain connections during a hot restart (default `2s`)</td>
</tr>
<tr>
<td><code>--id <string></code></td>
-<td></td>
<td>Proxy unique ID. If not provided uses ${POD_NAME}.${POD_NAMESPACE} from environment variables (default ``)</td>
</tr>
<tr>
<td><code>--ip <string></code></td>
-<td></td>
<td>Proxy IP address. If not provided uses ${INSTANCE_IP} environment variable. (default ``)</td>
</tr>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
<td><code>--parentShutdownDuration <duration></code></td>
-<td></td>
<td>The time in seconds that Envoy will wait before shutting down the parent process during a hot restart (default `3s`)</td>
</tr>
<tr>
<td><code>--proxyAdminPort <int></code></td>
-<td></td>
<td>Port on which Envoy should listen for administrative commands (default `15000`)</td>
</tr>
<tr>
<td><code>--proxyLogLevel <string></code></td>
-<td></td>
<td>The log level used to start the Envoy proxy (choose from {trace, debug, info, warn, err, critical, off}) (default `info`)</td>
</tr>
<tr>
<td><code>--serviceCluster <string></code></td>
-<td></td>
<td>Service cluster (default `istio-proxy`)</td>
</tr>
<tr>
<td><code>--serviceregistry <string></code></td>
-<td></td>
-<td>Select the platform for service registry, options are {Kubernetes, Consul, Eureka} (default `Kubernetes`)</td>
+<td>Select the platform for service registry, options are {Kubernetes, Consul, Eureka, CloudFoundry, Mock} (default `Kubernetes`)</td>
</tr>
<tr>
<td><code>--statsdUdpAddress <string></code></td>
-<td></td>
<td>IP Address and Port of a statsd UDP listener (e.g. 10.75.241.127:9125) (default ``)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td><code>--templateFile <string></code></td>
+<td>Go template bootstrap config (default ``)</td>
</tr>
<tr>
<td><code>--zipkinAddress <string></code></td>
-<td></td>
<td>Address of the Zipkin service (e.g. zipkin:9411) (default ``)</td>
</tr>
</tbody>
@@ -269,19 +254,14 @@ <h2 id="pilot-agent version">pilot-agent version</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -306,7 +286,7 @@ <h2 id="pilot-agent version">pilot-agent version</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -318,15 +298,5 @@ <h2 id="pilot-agent version">pilot-agent version</h2>
<td><code>-s</code></td>
<td>Displays a short form of the version information </td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
diff --git a/_docs/reference/commands/pilot-discovery.html b/_docs/reference/commands/pilot-discovery.html
index 45795848d78e6..597d1f1e96f97 100644
--- a/_docs/reference/commands/pilot-discovery.html
+++ b/_docs/reference/commands/pilot-discovery.html
@@ -1,115 +1,113 @@
---
title: pilot-discovery
-overview: Istio Pilot
+description: Istio Pilot
layout: pkg-collateral-docs
-number_of_entries: 4
+number_of_entries: 5
---
<p>Istio Pilot provides fleet-wide traffic management capabilities in the Istio Service Mesh.</p>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
-<h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
-<p>Start Istio proxy discovery service</p>
-<pre class="language-bash"><code>pilot-discovery discovery [flags]
+<h2 id="pilot-discovery debug">pilot-discovery debug</h2>
+<p>Retrieve the configuration for the specified proxy</p>
+<pre class="language-bash"><code>pilot-discovery debug <proxyID> <configuration-type> [flags]
</code></pre>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
-<td><code>--admission-registration-delay <duration></code></td>
-<td></td>
-<td>Time to delay webhook registration after starting webhook server (default `0s`)</td>
+<td><code>--log_as_json</code></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--admission-secret <string></code></td>
-<td></td>
-<td>Name of k8s secret for pilot webhook certs (default `pilot-webhook`)</td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
-<td><code>--admission-service <string></code></td>
-<td></td>
-<td>Service name the admission controller uses during registration (default `istio-pilot`)</td>
+<td><code>--log_output_level <string></code></td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
-<td><code>--admission-service-port <int></code></td>
-<td></td>
-<td>HTTPS port of the admission service. Must be 443 if service has more than one port (default `443`)</td>
+<td><code>--log_rotate <string></code></td>
+<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
-<td><code>--admission-webhook-name <string></code></td>
-<td></td>
-<td>Webhook name for Pilot admission controller (default `pilot-webhook.istio.io`)</td>
+<td><code>--log_rotate_max_age <int></code></td>
+<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_backups <int></code></td>
+<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
+</tr>
+<tr>
+<td><code>--log_rotate_max_size <int></code></td>
+<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
+</tr>
+<tr>
+<td><code>--log_stacktrace_level <string></code></td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
+</tr>
+<tr>
+<td><code>--log_target <stringArray></code></td>
+<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
+</tbody>
+</table>
+<h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
+<p>Start Istio proxy discovery service</p>
+<pre class="language-bash"><code>pilot-discovery discovery [flags]
+</code></pre>
+<table class="command-flags">
+<thead>
+<th>Flags</th>
+<th>Shorthand</th>
+<th>Description</th>
+</thead>
+<tbody>
<tr>
<td><code>--appNamespace <string></code></td>
<td><code>-a</code></td>
@@ -121,29 +119,19 @@ <h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
<td>Cloud Foundry config file (default ``)</td>
</tr>
<tr>
-<td><code>--clusterRegistriesDir <string></code></td>
-<td></td>
-<td>Directory for a file-based cluster config store (default ``)</td>
-</tr>
-<tr>
-<td><code>--configDir <string></code></td>
-<td></td>
-<td>Directory to watch for updates to config yaml files. If specified, the files will be used as the source of config, rather than a CRD client. (default ``)</td>
-</tr>
-<tr>
-<td><code>--consulconfig <string></code></td>
+<td><code>--clusterRegistriesConfigMap <string></code></td>
<td></td>
-<td>Consul Config file for discovery (default ``)</td>
+<td>ConfigMap map for clusters config store (default ``)</td>
</tr>
<tr>
-<td><code>--consulserverInterval <duration></code></td>
+<td><code>--clusterRegistriesNamespace <string></code></td>
<td></td>
-<td>Interval (in seconds) for polling the Consul service registry (default `2s`)</td>
+<td>Namespace for ConfigMap which stores clusters configs (default `istio-system`)</td>
</tr>
<tr>
-<td><code>--consulserverURL <string></code></td>
+<td><code>--configDir <string></code></td>
<td></td>
-<td>URL for the Consul server (default ``)</td>
+<td>Directory to watch for updates to config yaml files. If specified, the files will be used as the source of config, rather than a CRD client. (default ``)</td>
</tr>
<tr>
<td><code>--discovery_cache</code></td>
@@ -156,14 +144,9 @@ <h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
<td>DNS domain suffix (default `cluster.local`)</td>
</tr>
<tr>
-<td><code>--eurekaserverInterval <duration></code></td>
+<td><code>--grpcAddr <string></code></td>
<td></td>
-<td>Interval (in seconds) for polling the Eureka service registry (default `2s`)</td>
-</tr>
-<tr>
-<td><code>--eurekaserverURL <string></code></td>
-<td></td>
-<td>URL for the Eureka server (default ``)</td>
+<td>Discovery service grpc address (default `:15010`)</td>
</tr>
<tr>
<td><code>--kubeconfig <string></code></td>
@@ -176,19 +159,14 @@ <h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -213,7 +191,7 @@ <h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -256,19 +234,14 @@ <h2 id="pilot-discovery discovery">pilot-discovery discovery</h2>
<td>Controller resync interval (default `1m0s`)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
+<td><code>--secureGrpcAddr <string></code></td>
<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td>Discovery service grpc address, with https (default `:15012`)</td>
</tr>
<tr>
<td><code>--webhookEndpoint <string></code></td>
<td></td>
-<td>Webhook API endpoint (supports DNS, IP, and unix domain socket. (default ``)</td>
+<td>Webhook API endpoint (supports http://sockethost, and unix:///absolute/path/to/socket (default ``)</td>
</tr>
</tbody>
</table>
@@ -289,19 +262,14 @@ <h2 id="pilot-discovery version">pilot-discovery version</h2>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -326,7 +294,7 @@ <h2 id="pilot-discovery version">pilot-discovery version</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -338,15 +306,5 @@ <h2 id="pilot-discovery version">pilot-discovery version</h2>
<td><code>-s</code></td>
<td>Displays a short form of the version information </td>
</tr>
-<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
-</tr>
-<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
-</tr>
</tbody>
</table>
diff --git a/_docs/reference/commands/sidecar-injector.html b/_docs/reference/commands/sidecar-injector.html
index 078ce7a076c50..bc1a2c3fee243 100644
--- a/_docs/reference/commands/sidecar-injector.html
+++ b/_docs/reference/commands/sidecar-injector.html
@@ -1,6 +1,6 @@
---
title: sidecar-injector
-overview: Kubernetes webhook for automatic Istio sidecar injection
+description: Kubernetes webhook for automatic Istio sidecar injection
layout: pkg-collateral-docs
number_of_entries: 4
---
@@ -10,104 +10,88 @@
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
+<td><code>--caCertFile <string></code></td>
+<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/root-cert.pem`)</td>
+</tr>
+<tr>
<td><code>--healthCheckFile <string></code></td>
-<td></td>
<td>File that should be periodically updated if health checking is enabled (default ``)</td>
</tr>
<tr>
<td><code>--healthCheckInterval <duration></code></td>
-<td></td>
-<td>Configure how frequently the health check file specified by --healhCheckFile should be updated (default `0s`)</td>
+<td>Configure how frequently the health check file specified by --healthCheckFile should be updated (default `0s`)</td>
</tr>
<tr>
<td><code>--injectConfig <string></code></td>
-<td></td>
<td>File containing the Istio sidecar injection configuration and template (default `/etc/istio/inject/config`)</td>
</tr>
<tr>
-<td><code>--log_as_json</code></td>
-<td></td>
-<td>Whether to format output as JSON or in plain console-friendly format </td>
+<td><code>--kubeconfig <string></code></td>
+<td>Specifies path to kubeconfig file. This must be specified when not running inside a Kubernetes pod. (default ``)</td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
+<td><code>--log_as_json</code></td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
<td><code>--meshConfig <string></code></td>
-<td></td>
<td>File containing the Istio mesh configuration (default `/etc/istio/config/mesh`)</td>
</tr>
<tr>
<td><code>--port <int></code></td>
-<td></td>
<td>Webhook port (default `443`)</td>
</tr>
<tr>
<td><code>--tlsCertFile <string></code></td>
-<td></td>
-<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/cert.pem`)</td>
+<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/cert-chain.pem`)</td>
</tr>
<tr>
<td><code>--tlsKeyFile <string></code></td>
-<td></td>
<td>File containing the x509 private key matching --tlsCertFile. (default `/etc/istio/certs/key.pem`)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
+<td><code>--webhookConfigName <string></code></td>
+<td>Name of the mutatingwebhookconfiguration resource in Kubernetes. (default `istio-sidecar-injector`)</td>
</tr>
<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td><code>--webhookName <string></code></td>
+<td>Name of the webhook entry in the webhook config. (default `sidecar-injector.istio.io`)</td>
</tr>
</tbody>
</table>
@@ -118,114 +102,96 @@ <h2 id="sidecar-injector probe">sidecar-injector probe</h2>
<table class="command-flags">
<thead>
<th>Flags</th>
-<th>Shorthand</th>
<th>Description</th>
</thead>
<tbody>
<tr>
+<td><code>--caCertFile <string></code></td>
+<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/root-cert.pem`)</td>
+</tr>
+<tr>
<td><code>--healthCheckFile <string></code></td>
-<td></td>
<td>File that should be periodically updated if health checking is enabled (default ``)</td>
</tr>
<tr>
<td><code>--healthCheckInterval <duration></code></td>
-<td></td>
-<td>Configure how frequently the health check file specified by --healhCheckFile should be updated (default `0s`)</td>
+<td>Configure how frequently the health check file specified by --healthCheckFile should be updated (default `0s`)</td>
</tr>
<tr>
<td><code>--injectConfig <string></code></td>
-<td></td>
<td>File containing the Istio sidecar injection configuration and template (default `/etc/istio/inject/config`)</td>
</tr>
<tr>
<td><code>--interval <duration></code></td>
-<td></td>
<td>Duration used for checking the target file's last modified time. (default `0s`)</td>
</tr>
<tr>
+<td><code>--kubeconfig <string></code></td>
+<td>Specifies path to kubeconfig file. This must be specified when not running inside a Kubernetes pod. (default ``)</td>
+</tr>
+<tr>
<td><code>--log_as_json</code></td>
-<td></td>
<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
-<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
-</tr>
-<tr>
-<td><code>--log_callers</code></td>
-<td></td>
-<td>Include caller information, useful for debugging </td>
+<td><code>--log_caller <string></code></td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
-<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
-<td></td>
<td>The path for the optional rotating log file (default ``)</td>
</tr>
<tr>
<td><code>--log_rotate_max_age <int></code></td>
-<td></td>
<td>The maximum age in days of a log file beyond which the file is rotated (0 indicates no limit) (default `30`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_backups <int></code></td>
-<td></td>
<td>The maximum number of log file backups to keep before older files are deleted (0 indicates no limit) (default `1000`)</td>
</tr>
<tr>
<td><code>--log_rotate_max_size <int></code></td>
-<td></td>
<td>The maximum size in megabytes of a log file beyond which the file is rotated (default `104857600`)</td>
</tr>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
-<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
-<td></td>
<td>The set of paths where to output the log. This can be any path as well as the special values stdout and stderr (default `[stdout]`)</td>
</tr>
<tr>
<td><code>--meshConfig <string></code></td>
-<td></td>
<td>File containing the Istio mesh configuration (default `/etc/istio/config/mesh`)</td>
</tr>
<tr>
<td><code>--port <int></code></td>
-<td></td>
<td>Webhook port (default `443`)</td>
</tr>
<tr>
<td><code>--probe-path <string></code></td>
-<td></td>
<td>Path of the file for checking the availability. (default ``)</td>
</tr>
<tr>
<td><code>--tlsCertFile <string></code></td>
-<td></td>
-<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/cert.pem`)</td>
+<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/cert-chain.pem`)</td>
</tr>
<tr>
<td><code>--tlsKeyFile <string></code></td>
-<td></td>
<td>File containing the x509 private key matching --tlsCertFile. (default `/etc/istio/certs/key.pem`)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
+<td><code>--webhookConfigName <string></code></td>
+<td>Name of the mutatingwebhookconfiguration resource in Kubernetes. (default `istio-sidecar-injector`)</td>
</tr>
<tr>
-<td><code>--vmodule <moduleSpec></code></td>
-<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td><code>--webhookName <string></code></td>
+<td>Name of the webhook entry in the webhook config. (default `sidecar-injector.istio.io`)</td>
</tr>
</tbody>
</table>
@@ -241,6 +207,11 @@ <h2 id="sidecar-injector version">sidecar-injector version</h2>
</thead>
<tbody>
<tr>
+<td><code>--caCertFile <string></code></td>
+<td></td>
+<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/root-cert.pem`)</td>
+</tr>
+<tr>
<td><code>--healthCheckFile <string></code></td>
<td></td>
<td>File that should be periodically updated if health checking is enabled (default ``)</td>
@@ -248,7 +219,7 @@ <h2 id="sidecar-injector version">sidecar-injector version</h2>
<tr>
<td><code>--healthCheckInterval <duration></code></td>
<td></td>
-<td>Configure how frequently the health check file specified by --healhCheckFile should be updated (default `0s`)</td>
+<td>Configure how frequently the health check file specified by --healthCheckFile should be updated (default `0s`)</td>
</tr>
<tr>
<td><code>--injectConfig <string></code></td>
@@ -256,24 +227,24 @@ <h2 id="sidecar-injector version">sidecar-injector version</h2>
<td>File containing the Istio sidecar injection configuration and template (default `/etc/istio/inject/config`)</td>
</tr>
<tr>
-<td><code>--log_as_json</code></td>
+<td><code>--kubeconfig <string></code></td>
<td></td>
-<td>Whether to format output as JSON or in plain console-friendly format </td>
+<td>Specifies path to kubeconfig file. This must be specified when not running inside a Kubernetes pod. (default ``)</td>
</tr>
<tr>
-<td><code>--log_backtrace_at <traceLocation></code></td>
+<td><code>--log_as_json</code></td>
<td></td>
-<td>when logging hits line file:N, emit a stack trace (default `:0`)</td>
+<td>Whether to format output as JSON or in plain console-friendly format </td>
</tr>
<tr>
-<td><code>--log_callers</code></td>
+<td><code>--log_caller <string></code></td>
<td></td>
-<td>Include caller information, useful for debugging </td>
+<td>Comma-separated list of scopes for which to include called information, scopes can be any of [default] (default ``)</td>
</tr>
<tr>
<td><code>--log_output_level <string></code></td>
<td></td>
-<td>The minimum logging level of messages to output, can be one of "debug", "info", "warn", "error", or "none" (default `info`)</td>
+<td>The minimum logging level of messages to output, can be one of [debug, info, warn, error, none] (default `default:info`)</td>
</tr>
<tr>
<td><code>--log_rotate <string></code></td>
@@ -298,7 +269,7 @@ <h2 id="sidecar-injector version">sidecar-injector version</h2>
<tr>
<td><code>--log_stacktrace_level <string></code></td>
<td></td>
-<td>The minimum logging level at which stack traces are captured, can be one of "debug", "info", "warn", "error", or "none" (default `none`)</td>
+<td>The minimum logging level at which stack traces are captured, can be one of [debug, info, warn, error, none] (default `default:none`)</td>
</tr>
<tr>
<td><code>--log_target <stringArray></code></td>
@@ -323,7 +294,7 @@ <h2 id="sidecar-injector version">sidecar-injector version</h2>
<tr>
<td><code>--tlsCertFile <string></code></td>
<td></td>
-<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/cert.pem`)</td>
+<td>File containing the x509 Certificate for HTTPS. (default `/etc/istio/certs/cert-chain.pem`)</td>
</tr>
<tr>
<td><code>--tlsKeyFile <string></code></td>
@@ -331,14 +302,14 @@ <h2 id="sidecar-injector version">sidecar-injector version</h2>
<td>File containing the x509 private key matching --tlsCertFile. (default `/etc/istio/certs/key.pem`)</td>
</tr>
<tr>
-<td><code>--v <Level></code></td>
-<td><code>-v</code></td>
-<td>log level for V logs (default `0`)</td>
+<td><code>--webhookConfigName <string></code></td>
+<td></td>
+<td>Name of the mutatingwebhookconfiguration resource in Kubernetes. (default `istio-sidecar-injector`)</td>
</tr>
<tr>
-<td><code>--vmodule <moduleSpec></code></td>
+<td><code>--webhookName <string></code></td>
<td></td>
-<td>comma-separated list of pattern=N settings for file-filtered logging (default ``)</td>
+<td>Name of the webhook entry in the webhook config. (default `sidecar-injector.istio.io`)</td>
</tr>
</tbody>
</table>
diff --git a/_docs/reference/config/adapters/circonus.html b/_docs/reference/config/adapters/circonus.html
index 668e389d2ca0a..5b7425ed23fd0 100644
--- a/_docs/reference/config/adapters/circonus.html
+++ b/_docs/reference/config/adapters/circonus.html
@@ -1,6 +1,6 @@
---
title: Circonus
-overview: Adapter for circonus.com's monitoring solution.
+description: Adapter for circonus.com's monitoring solution.
location: https://istio.io/docs/reference/config/adapters/circonus.html
layout: protoc-gen-docs
number_of_entries: 3
@@ -10,7 +10,7 @@
<h2 id="Params">Params</h2>
<section>
-<p>Cnofiguration format for the Circonus adapter.</p>
+<p>Configuration format for the Circonus adapter.</p>
<table class="message-fields">
<thead>
diff --git a/_docs/reference/config/adapters/cloudwatch.html b/_docs/reference/config/adapters/cloudwatch.html
new file mode 100644
index 0000000000000..ec1ca6082969d
--- /dev/null
+++ b/_docs/reference/config/adapters/cloudwatch.html
@@ -0,0 +1,226 @@
+---
+title: CloudWatch
+description: Adapter for cloudwatch metrics.
+location: https://istio.io/docs/reference/config/adapters/cloudwatch.html
+layout: protoc-gen-docs
+number_of_entries: 3
+---
+<p>The CloudWatch adapter enables Istio to deliver metrics to
+<a href="https://aws.amazon.com/cloudwatch/">Amazon CloudWatch</a>.</p>
+
+<p>To push metrics to CloudWatch using this adapter you need create an IAM user
+that has permissions to call cloudwatch APIs. The credentials for the user
+need to be available on the instance the adapter is running on
+(see <a href="https://docs.aws.amazon.com/sdk-for-java/v1/developer-guide/setup-credentials.html">AWS docs</a>).</p>
+
+<p>To activate the CloudWatch adapter, operators need to provide configuration for the
+<a href="{{site.baseurl}}/docs/reference/config/adapters/cloudwatch.html">cloudwatch adapter</a>.</p>
+
+<p>The handler configuration must contain the same metrics as the instance configuration.
+The metrics specified in both instance and handler configurations will be sent to CloudWatch.</p>
+
+<h2 id="Params">Params</h2>
+<section>
+<p>Configuration for the <code>cloudwatch</code> adapter.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.namespace">
+<td><code>namespace</code></td>
+<td><code>string</code></td>
+<td>
+<p>CloudWatch metric namespace.</p>
+
+</td>
+</tr>
+<tr id="Params.metric_info">
+<td><code>metricInfo</code></td>
+<td><code>map<string, <a href="#Params.MetricDatum">Params.MetricDatum</a>></code></td>
+<td>
+<p>A map of Istio metric name to CloudWatch metric info.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Params.MetricDatum">Params.MetricDatum</h2>
+<section>
+<p>CloudWatch metric format.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.MetricDatum.unit">
+<td><code>unit</code></td>
+<td><code><a href="#Params.MetricDatum.Unit">Params.MetricDatum.Unit</a></code></td>
+<td>
+<p>The unit of the metric. Must be valid cloudwatch unit value.
+<a href="https://docs.aws.amazon.com/AmazonCloudWatch/latest/APIReference/API_MetricDatum.html">CloudWatch docs</a></p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Params.MetricDatum.Unit">Params.MetricDatum.Unit</h2>
+<section>
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.MetricDatum.Unit.None">
+<td><code>None</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Seconds">
+<td><code>Seconds</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Microseconds">
+<td><code>Microseconds</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Milliseconds">
+<td><code>Milliseconds</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Count">
+<td><code>Count</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Bytes">
+<td><code>Bytes</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Kilobytes">
+<td><code>Kilobytes</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Megabytes">
+<td><code>Megabytes</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Gigabytes">
+<td><code>Gigabytes</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Terabytes">
+<td><code>Terabytes</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Bits">
+<td><code>Bits</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Kilobits">
+<td><code>Kilobits</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Megabits">
+<td><code>Megabits</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Gigabits">
+<td><code>Gigabits</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Terabits">
+<td><code>Terabits</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Percent">
+<td><code>Percent</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Bytes_Second">
+<td><code>Bytes_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Kilobytes_Second">
+<td><code>Kilobytes_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Megabytes_Second">
+<td><code>Megabytes_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Gigabytes_Second">
+<td><code>Gigabytes_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Terabytes_Second">
+<td><code>Terabytes_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Bits_Second">
+<td><code>Bits_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Kilobits_Second">
+<td><code>Kilobits_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Megabits_Second">
+<td><code>Megabits_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Gigabits_Second">
+<td><code>Gigabits_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Terabits_Second">
+<td><code>Terabits_Second</code></td>
+<td>
+</td>
+</tr>
+<tr id="Params.MetricDatum.Unit.Count_Second">
+<td><code>Count_Second</code></td>
+<td>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
diff --git a/_docs/reference/config/adapters/datadog.html b/_docs/reference/config/adapters/datadog.html
new file mode 100644
index 0000000000000..ba773ec25600c
--- /dev/null
+++ b/_docs/reference/config/adapters/datadog.html
@@ -0,0 +1,167 @@
+---
+title: Datadog
+description: Adapter to deliver metrics to a dogstatsd agent for delivery to DataDog
+location: https://istio.io/docs/reference/config/adapters/datadog.html
+layout: protoc-gen-docs
+number_of_entries: 3
+---
+<p>The <code>dogstatsd</code> adapter is designed to deliver Istio metric instances to a
+listening <a href="https://www.datadoghq.com/">DataDog</a> agent.</p>
+
+<h2 id="Params">Params</h2>
+<section>
+<p>Configuration parameter for the DataDog adapter. These params control how Mixer telemetry is transformed and sent to a dogstatsd agent.</p>
+
+<p>The adapter assumes that a dogstatsd agent is running as a sidecar or at some other endpoint that the Mixer can reach.
+Any dimension that is a part of the metric is converted to a tag automatically. The configuration of the DataDog agent/daemon is outside the scope of the adapter.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.address">
+<td><code>address</code></td>
+<td><code>string</code></td>
+<td>
+<p>Address of the dogstatsd server.
+Default: localhost:8125</p>
+
+</td>
+</tr>
+<tr id="Params.prefix">
+<td><code>prefix</code></td>
+<td><code>string</code></td>
+<td>
+<p>Prefix to prepend to all metrics handled by the adapter. Metric “bar” with prefix “foo.” becomes “foo.bar” in DataDog. In order to make sure the metrics get populated into Datadog properly and avoid any billing issues, it’s important to leave the metric prefix to its default value of ‘istio.’
+Default: “istio.”</p>
+
+</td>
+</tr>
+<tr id="Params.buffer_length">
+<td><code>bufferLength</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Number of individual metrics to buffer before flushing metrics to the network. When buffered, metrics are flushed every 100ms or when the buffer is filled.
+When buffer is 0, metrics are not buffered.
+Default: 0</p>
+
+</td>
+</tr>
+<tr id="Params.global_tags">
+<td><code>globalTags</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>Tags to add to every metric. “global”: “tag” becomes “global:tag” in DataDog
+Default: []</p>
+
+</td>
+</tr>
+<tr id="Params.sample_rate">
+<td><code>sampleRate</code></td>
+<td><code>double</code></td>
+<td>
+<p>Chance that any particular metric is sampled when emitted; can take the range [0, 1].
+Default: 1</p>
+
+</td>
+</tr>
+<tr id="Params.metrics">
+<td><code>metrics</code></td>
+<td><code>map<string, <a href="#Params.MetricInfo">Params.MetricInfo</a>></code></td>
+<td>
+<p>Map of a specific metric instance name -> info. If a metric’s instance name is not in the map then the metric will not be exported to DataDog.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Params.MetricInfo">Params.MetricInfo</h2>
+<section>
+<p>Describes how to represent this metric in DataDog</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.MetricInfo.name">
+<td><code>name</code></td>
+<td><code>string</code></td>
+<td>
+<p>Name of the metric in DataDog</p>
+
+</td>
+</tr>
+<tr id="Params.MetricInfo.type">
+<td><code>type</code></td>
+<td><code><a href="#Params.MetricInfo.Type">Params.MetricInfo.Type</a></code></td>
+<td>
+<p>The type of metric</p>
+
+</td>
+</tr>
+<tr id="Params.MetricInfo.tags">
+<td><code>tags</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>Tags to add to the metric in addition to the dimensions. “tag”: “val” becomes “tag:val” in DataDog
+Default: []</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Params.MetricInfo.Type">Params.MetricInfo.Type</h2>
+<section>
+<p>Describes the type of metric</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.MetricInfo.Type.UNKNOWN_TYPE">
+<td><code>UNKNOWN_TYPE</code></td>
+<td>
+<p>Default Unknown Type</p>
+
+</td>
+</tr>
+<tr id="Params.MetricInfo.Type.COUNTER">
+<td><code>COUNTER</code></td>
+<td>
+<p>Increments a DataDog counter</p>
+
+</td>
+</tr>
+<tr id="Params.MetricInfo.Type.GAUGE">
+<td><code>GAUGE</code></td>
+<td>
+<p>Sets the new value of a DataDog gauge</p>
+
+</td>
+</tr>
+<tr id="Params.MetricInfo.Type.DISTRIBUTION">
+<td><code>DISTRIBUTION</code></td>
+<td>
+<p>DISTRIBUTION is converted to a Timing Histogram for metrics with a time unit and a Histogram for all other units</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
diff --git a/_docs/reference/config/adapters/denier.html b/_docs/reference/config/adapters/denier.html
index f2fed94d27983..0ce5cb1d9371b 100644
--- a/_docs/reference/config/adapters/denier.html
+++ b/_docs/reference/config/adapters/denier.html
@@ -1,6 +1,6 @@
---
title: Denier
-overview: Adapter that always returns a precondition denial.
+description: Adapter that always returns a precondition denial.
location: https://istio.io/docs/reference/config/adapters/denier.html
layout: protoc-gen-docs
number_of_entries: 2
@@ -10,7 +10,7 @@
<h2 id="Params">Params</h2>
<section>
-<p>Cnofiguration format for the Denier adapter.</p>
+<p>Configuration format for the Denier adapter.</p>
<table class="message-fields">
<thead>
diff --git a/_docs/reference/config/adapters/fluentd.html b/_docs/reference/config/adapters/fluentd.html
index a43929170ef21..cbefeeef51042 100644
--- a/_docs/reference/config/adapters/fluentd.html
+++ b/_docs/reference/config/adapters/fluentd.html
@@ -1,6 +1,6 @@
---
title: Fluentd
-overview: Adapter that delivers logs to a fluentd daemon.
+description: Adapter that delivers logs to a fluentd daemon.
location: https://istio.io/docs/reference/config/adapters/fluentd.html
layout: protoc-gen-docs
number_of_entries: 1
diff --git a/_docs/reference/config/adapters/index.md b/_docs/reference/config/adapters/index.md
index a1f045029f0da..685b15ecee529 100644
--- a/_docs/reference/config/adapters/index.md
+++ b/_docs/reference/config/adapters/index.md
@@ -1,15 +1,13 @@
---
title: Adapters
-overview: Generated documentation for Mixer's adapters.
+description: Documentation for Mixer's adapters.
-order: 40
+weight: 40
-layout: docs
-type: markdown
toc: false
---
{% include section-index.html docs=site.docs %}
-To implement a new adapter for Mixer, please refer to the [Adapter Developer's Guide](https://github.com/istio/istio/blob/master/mixer/doc/adapters.md).
-
+To implement a new adapter for Mixer, please refer to the
+[Adapter Developer's Guide](https://github.com/istio/istio/wiki/Mixer-Adapter-Dev-Guide).
diff --git a/_docs/reference/config/adapters/kubernetesenv.html b/_docs/reference/config/adapters/kubernetesenv.html
index 9103b413e78ee..ebbbfc4088b45 100644
--- a/_docs/reference/config/adapters/kubernetesenv.html
+++ b/_docs/reference/config/adapters/kubernetesenv.html
@@ -1,6 +1,6 @@
---
title: Kubernetes Env
-overview: Adapter that extracts information from a Kubernetes environment.
+description: Adapter that extracts information from a Kubernetes environment.
location: https://istio.io/docs/reference/config/adapters/kubernetesenv.html
layout: protoc-gen-docs
number_of_entries: 1
diff --git a/_docs/reference/config/adapters/list.html b/_docs/reference/config/adapters/list.html
index 0ed11f451e5bf..74983a295a9a6 100644
--- a/_docs/reference/config/adapters/list.html
+++ b/_docs/reference/config/adapters/list.html
@@ -1,6 +1,6 @@
---
title: List
-overview: Adapter that performs whitelist or blacklist checks
+description: Adapter that performs whitelist or blacklist checks
location: https://istio.io/docs/reference/config/adapters/list.html
layout: protoc-gen-docs
number_of_entries: 2
@@ -132,7 +132,7 @@ <h2 id="Params.ListEntryType">Params.ListEntryType</h2>
<tr id="Params.ListEntryType.REGEX">
<td><code>REGEX</code></td>
<td>
-<p>List entries are treated as re2 regexp. See https://github.com/google/re2/wiki/Syntax for syntax.</p>
+<p>List entries are treated as re2 regexp. See <a href="https://github.com/google/re2/wiki/Syntax">here</a> for the supported syntax.</p>
</td>
</tr>
diff --git a/_docs/reference/config/adapters/memquota.html b/_docs/reference/config/adapters/memquota.html
index e3e4435a2d866..18e9686af3110 100644
--- a/_docs/reference/config/adapters/memquota.html
+++ b/_docs/reference/config/adapters/memquota.html
@@ -1,6 +1,6 @@
---
title: Memory quota
-overview: Adapter for a simple in-memory quota management system.
+description: Adapter for a simple in-memory quota management system.
location: https://istio.io/docs/reference/config/adapters/memquota.html
layout: protoc-gen-docs
number_of_entries: 3
diff --git a/_docs/reference/config/adapters/opa.html b/_docs/reference/config/adapters/opa.html
index 851addeb2bbad..c7d5c15f81962 100644
--- a/_docs/reference/config/adapters/opa.html
+++ b/_docs/reference/config/adapters/opa.html
@@ -1,6 +1,6 @@
---
title: OPA
-overview: Adapter that implements an Open Policy Agent engine
+description: Adapter that implements an Open Policy Agent engine
location: https://istio.io/docs/reference/config/adapters/opa.html
layout: protoc-gen-docs
number_of_entries: 1
diff --git a/_docs/reference/config/adapters/prometheus.html b/_docs/reference/config/adapters/prometheus.html
index 52aabbb7dfb91..b597d4acb10bc 100644
--- a/_docs/reference/config/adapters/prometheus.html
+++ b/_docs/reference/config/adapters/prometheus.html
@@ -1,6 +1,6 @@
---
title: Prometheus
-overview: Adapter that exposes Istio metrics for ingestion by a Prometheus harvester.
+description: Adapter that exposes Istio metrics for ingestion by a Prometheus harvester.
location: https://istio.io/docs/reference/config/adapters/prometheus.html
layout: protoc-gen-docs
number_of_entries: 7
@@ -46,6 +46,21 @@ <h2 id="Params.MetricInfo">Params.MetricInfo</h2>
</tr>
</thead>
<tbody>
+<tr id="Params.MetricInfo.namespace">
+<td><code>namespace</code></td>
+<td><code>string</code></td>
+<td>
+<p>Optional. The namespace is used as a prefix on the metric names.
+An example: for a metric named “request<em>count” with a namespace of “istio”,
+the full metric name becomes “istio</em>request_count”.
+NOTE: The specificed namespace should be a prometheus-safe name. If not, the adapter
+will attempt to convert the namespace to a prometheus-safe name.
+NOTE: Changing the value for this will potentially impact downstream integrations
+and should be used with caution.<br />
+Default value: “istio”.</p>
+
+</td>
+</tr>
<tr id="Params.MetricInfo.name">
<td><code>name</code></td>
<td><code>string</code></td>
diff --git a/_docs/reference/config/adapters/rbac.html b/_docs/reference/config/adapters/rbac.html
index 0aeffc3d960d5..9f5897903f620 100644
--- a/_docs/reference/config/adapters/rbac.html
+++ b/_docs/reference/config/adapters/rbac.html
@@ -1,6 +1,6 @@
---
title: RBAC
-overview: Adapter that exposes Istio's Role-Based Access Control model.
+description: Adapter that exposes Istio's Role-Based Access Control model.
location: https://istio.io/docs/reference/config/adapters/rbac.html
layout: protoc-gen-docs
number_of_entries: 1
diff --git a/_docs/reference/config/adapters/redisquota.html b/_docs/reference/config/adapters/redisquota.html
index e8b274e935fe8..d45ea817863ea 100644
--- a/_docs/reference/config/adapters/redisquota.html
+++ b/_docs/reference/config/adapters/redisquota.html
@@ -1,6 +1,6 @@
---
title: Redis Quota
-overview: Adapter for a Redis-based quota management system.
+description: Adapter for a Redis-based quota management system.
location: https://istio.io/docs/reference/config/adapters/redisquota.html
layout: protoc-gen-docs
number_of_entries: 4
diff --git a/_docs/reference/config/adapters/servicecontrol.html b/_docs/reference/config/adapters/servicecontrol.html
index fe904191eeeb0..37d979423c9a7 100644
--- a/_docs/reference/config/adapters/servicecontrol.html
+++ b/_docs/reference/config/adapters/servicecontrol.html
@@ -1,6 +1,6 @@
---
title: Service Control
-overview: Adapter that delivers logs and metrics to Google Service Control
+description: Adapter that delivers logs and metrics to Google Service Control
location: https://istio.io/docs/reference/config/adapters/servicecontrol.html
layout: protoc-gen-docs
number_of_entries: 4
diff --git a/_docs/reference/config/adapters/solarwinds.html b/_docs/reference/config/adapters/solarwinds.html
index d68af8492a95e..9c5d2d6f575ef 100644
--- a/_docs/reference/config/adapters/solarwinds.html
+++ b/_docs/reference/config/adapters/solarwinds.html
@@ -1,12 +1,12 @@
---
title: SolarWinds
-overview: Adapter to deliver logs and metrics to Papertrail and AppOptics backends
+description: Adapter to deliver logs and metrics to Papertrail and AppOptics backends
location: https://istio.io/docs/reference/config/adapters/solarwinds.html
layout: protoc-gen-docs
number_of_entries: 3
---
<p>The <code>solarwinds</code> adapter enables Istio to deliver log and metric data to the
-<a href="https://www.papertrailapp.com">Papertrail</a> logging backendu and the
+<a href="https://www.papertrailapp.com">Papertrail</a> logging backend and the
<a href="https://www.appoptics.com">AppOptics</a> monitoring backend.</p>
<h2 id="Params">Params</h2>
diff --git a/_docs/reference/config/adapters/stackdriver.html b/_docs/reference/config/adapters/stackdriver.html
index 427a1dbd5a333..e3abd4b6e0e41 100644
--- a/_docs/reference/config/adapters/stackdriver.html
+++ b/_docs/reference/config/adapters/stackdriver.html
@@ -1,9 +1,9 @@
---
title: Stackdriver
-overview: Adapter to deliver logs and metrics to Stackdriver
+description: Adapter to deliver logs and metrics to Stackdriver
location: https://istio.io/docs/reference/config/adapters/stackdriver.html
layout: protoc-gen-docs
-number_of_entries: 10
+number_of_entries: 11
---
<p>The <code>stackdriver</code> adapter enables Istio to deliver log and metric data to the
<a href="https://cloud.google.com/stackdriver/">Stackdriver</a> logging and monitoring backend.</p>
@@ -133,6 +133,14 @@ <h2 id="Params.LogInfo">Params.LogInfo</h2>
<p>If an HttpRequestMapping is provided, a HttpRequest object will be filled out for this log entry using the
variables named in the mapping to populate the fields of the request struct from the instance’s variables.</p>
+</td>
+</tr>
+<tr id="Params.LogInfo.sink_info">
+<td><code>sinkInfo</code></td>
+<td><code><a href="#Params.LogInfo.SinkInfo">Params.LogInfo.SinkInfo</a></code></td>
+<td>
+<p>If SinkInfo is provided, Stackriver logs would be exported to that sink.</p>
+
</td>
</tr>
</tbody>
@@ -198,6 +206,53 @@ <h2 id="Params.LogInfo.HttpRequestMapping">Params.LogInfo.HttpRequestMapping</h2
<td>
<p>template variable name to map into HTTPRequest.RemoteIP</p>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Params.LogInfo.SinkInfo">Params.LogInfo.SinkInfo</h2>
+<section>
+<p>Contains information about sink to export Stackdriver logs to.
+See https://godoc.org/cloud.google.com/go/logging/logadmin#Sink.
+Ex: If you want to export it to a GCS bucket, id would be a unique idetifier you want for the sink,
+destination would be the storage be name of GCS Storage bucket and filter would be user defined condition for
+filtering logs. See below for a sample config:
+ id: ‘info-errors-to-gcs’
+ destination: ‘storage.googleapis.com/<bucket_name>’
+ filter: ‘severity >= Default’</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Params.LogInfo.SinkInfo.id">
+<td><code>id</code></td>
+<td><code>string</code></td>
+<td>
+<p>Client assigned sink identifier.</p>
+
+</td>
+</tr>
+<tr id="Params.LogInfo.SinkInfo.destination">
+<td><code>destination</code></td>
+<td><code>string</code></td>
+<td>
+<p>Export Destination.</p>
+
+</td>
+</tr>
+<tr id="Params.LogInfo.SinkInfo.filter">
+<td><code>filter</code></td>
+<td><code>string</code></td>
+<td>
+<p>Filter that specifies any filtering to be done on logs.</p>
+
</td>
</tr>
</tbody>
@@ -238,6 +293,17 @@ <h2 id="Params.MetricInfo">Params.MetricInfo</h2>
This field must be provided for metrics declared to be of type DISTRIBUTION.
This field will be ignored for non-distribution metric kinds.</p>
+</td>
+</tr>
+<tr id="Params.MetricInfo.metric_type">
+<td><code>metricType</code></td>
+<td><code>string</code></td>
+<td>
+<p>Stackdriver metric type name, e.g.
+istio.io/service/server/request_count. If this is not provided, a
+concantenation of custom metric prefix (custom.googleapis.com/) and
+Istio metric name will be used.</p>
+
</td>
</tr>
</tbody>
diff --git a/_docs/reference/config/adapters/statsd.html b/_docs/reference/config/adapters/statsd.html
index fc1754acc971e..530f9807ffb08 100644
--- a/_docs/reference/config/adapters/statsd.html
+++ b/_docs/reference/config/adapters/statsd.html
@@ -1,6 +1,6 @@
---
title: StatsD
-overview: Adapter to deliver metrics to a StatsD backend
+description: Adapter to deliver metrics to a StatsD backend
location: https://istio.io/docs/reference/config/adapters/statsd.html
layout: protoc-gen-docs
number_of_entries: 3
diff --git a/_docs/reference/config/adapters/stdio.html b/_docs/reference/config/adapters/stdio.html
index 9fff59a1040bc..100abeb3ef99c 100644
--- a/_docs/reference/config/adapters/stdio.html
+++ b/_docs/reference/config/adapters/stdio.html
@@ -1,6 +1,6 @@
---
title: Stdio
-overview: Adapter for outputting logs and metrics locally.
+description: Adapter for outputting logs and metrics locally.
location: https://istio.io/docs/reference/config/adapters/stdio.html
layout: protoc-gen-docs
number_of_entries: 3
diff --git a/_docs/reference/config/index.md b/_docs/reference/config/index.md
index a31ddc4d902cb..41e416737fc36 100644
--- a/_docs/reference/config/index.md
+++ b/_docs/reference/config/index.md
@@ -1,11 +1,9 @@
---
title: Configuration
-overview: Detailed information on configuration options.
+description: Detailed information on configuration options.
-order: 20
+weight: 20
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/reference/config/istio.mesh.v1alpha1.html b/_docs/reference/config/istio.mesh.v1alpha1.html
index 62d75e831368d..f9310906e09fd 100644
--- a/_docs/reference/config/istio.mesh.v1alpha1.html
+++ b/_docs/reference/config/istio.mesh.v1alpha1.html
@@ -1,10 +1,10 @@
---
title: Service Mesh
-overview: Configuration affecting the service mesh as a whole
+description: Configuration affecting the service mesh as a whole
location: https://istio.io/docs/reference/config/istio.mesh.v1alpha1.html
layout: protoc-gen-docs
redirect_from: /docs/reference/config/service-mesh.html
-number_of_entries: 6
+number_of_entries: 8
---
<h2 id="AuthenticationPolicy">AuthenticationPolicy</h2>
<section>
@@ -51,6 +51,13 @@ <h2 id="MeshConfig">MeshConfig</h2>
<p>MeshConfig defines mesh-wide variables shared by all Envoy instances in the
Istio service mesh.</p>
+<p>NOTE: This configuration type should be used for the low-level global
+configuration, such as component addresses and port numbers. It should not
+be used for the features of the mesh that can be scoped by service or by
+namespace. Some of the fields in the mesh config are going to be deprecated
+and replaced with several individual configuration types (for example,
+tracing configuration).</p>
+
<table class="message-fields">
<thead>
<tr>
@@ -64,7 +71,14 @@ <h2 id="MeshConfig">MeshConfig</h2>
<td><code>mixerCheckServer</code></td>
<td><code>string</code></td>
<td>
-<p>Deprecated, use mixer_check instead.</p>
+<p>Address of the server that will be used by the proxies for policy
+check calls. By using different names for mixerCheckServer and
+mixerReportServer, it is possible to have one set of mixer servers handle
+policy check calls while another set of mixer servers handle telemetry
+calls.</p>
+
+<p>NOTE: Omitting mixerCheckServer while specifying mixerReportServer is
+equivalent to setting disablePolicyChecks to true.</p>
</td>
</tr>
@@ -72,7 +86,8 @@ <h2 id="MeshConfig">MeshConfig</h2>
<td><code>mixerReportServer</code></td>
<td><code>string</code></td>
<td>
-<p>Deprecated, use mixer_report instead.</p>
+<p>Address of the server that will be used by the proxies for policy report
+calls.</p>
</td>
</tr>
@@ -206,26 +221,16 @@ <h2 id="MeshConfig">MeshConfig</h2>
</td>
</tr>
-<tr id="MeshConfig.mixer_check">
-<td><code>mixerCheck</code></td>
-<td><code><a href="#ServerAddress">ServerAddress</a></code></td>
+<tr id="MeshConfig.outbound_traffic_policy">
+<td><code>outboundTrafficPolicy</code></td>
+<td><code><a href="#MeshConfig.OutboundTrafficPolicy">MeshConfig.OutboundTrafficPolicy</a></code></td>
<td>
-<p>Address of the server that will be used by the proxies for policy
-check calls. By using different names for mixerCheck and mixerReport, it
-is possible to have one set of mixer servers handle policy check calls,
-while another set of mixer servers handle telemetry calls.</p>
-
-<p>NOTE: Omitting mixerCheck while specifying mixerReport is
-equivalent to setting disablePolicyChecks to true.</p>
-
-</td>
-</tr>
-<tr id="MeshConfig.mixer_report">
-<td><code>mixerReport</code></td>
-<td><code><a href="#ServerAddress">ServerAddress</a></code></td>
-<td>
-<p>Address of the server that will be used by the proxies for policy report
-calls.</p>
+<p>Set the default behavior of the sidecar for handling outbound traffic from the application.
+While the default mode should work out of the box, if your application uses one or more external services that
+are not known apriori, setting the policy to ALLOW<em>ANY will cause the sidecars to route traffic to the any
+requested destination.
+Users are strongly encouraged to use ServiceEntries to explicitly declare any external dependencies,
+instead of using allow</em>any.</p>
</td>
</tr>
@@ -298,6 +303,61 @@ <h2 id="MeshConfig.IngressControllerMode">MeshConfig.IngressControllerMode</h2>
a secondary ingress controller (e.g., in addition to a
cloud-provided ingress controller).</p>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="MeshConfig.OutboundTrafficPolicy">MeshConfig.OutboundTrafficPolicy</h2>
+<section>
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="MeshConfig.OutboundTrafficPolicy.mode">
+<td><code>mode</code></td>
+<td><code><a href="#MeshConfig.OutboundTrafficPolicy.Mode">MeshConfig.OutboundTrafficPolicy.Mode</a></code></td>
+<td>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="MeshConfig.OutboundTrafficPolicy.Mode">MeshConfig.OutboundTrafficPolicy.Mode</h2>
+<section>
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="MeshConfig.OutboundTrafficPolicy.Mode.REGISTRY_ONLY">
+<td><code>REGISTRY_ONLY</code></td>
+<td>
+<p>outbound traffic will be restricted to services defined in the service registry as well as those defined
+through ServiceEntries</p>
+
+</td>
+</tr>
+<tr id="MeshConfig.OutboundTrafficPolicy.Mode.ALLOW_ANY">
+<td><code>ALLOW_ANY</code></td>
+<td>
+<p>outbound traffic to unknown destinations will be allowed</p>
+
+</td>
+</tr>
+<tr id="MeshConfig.OutboundTrafficPolicy.Mode.VIRTUAL_SERVICE_ONLY">
+<td><code>VIRTUAL_SERVICE_ONLY</code></td>
+<td>
+<p>not implemented. outbound traffic will be restricted to destinations defined in VirtualServices only</p>
+
</td>
</tr>
</tbody>
@@ -376,7 +436,7 @@ <h2 id="ProxyConfig">ProxyConfig</h2>
<td><code>discoveryAddress</code></td>
<td><code>string</code></td>
<td>
-<p>Deprecated, use server_address instead.</p>
+<p>Address of the discovery service exposing xDS with mTLS connection.</p>
</td>
</tr>
@@ -468,44 +528,54 @@ <h2 id="ProxyConfig">ProxyConfig</h2>
</td>
</tr>
-<tr id="ProxyConfig.pilot">
-<td><code>pilot</code></td>
-<td><code><a href="#ServerAddress">ServerAddress</a></code></td>
+<tr id="ProxyConfig.proxy_bootstrap_template_path">
+<td><code>proxyBootstrapTemplatePath</code></td>
+<td><code>string</code></td>
<td>
-<p>Address of the discovery service exposing xDS.</p>
+<p>Path to the proxy bootstrap template file</p>
+
+</td>
+</tr>
+<tr id="ProxyConfig.interception_mode">
+<td><code>interceptionMode</code></td>
+<td><code><a href="#ProxyConfig.InboundInterceptionMode">ProxyConfig.InboundInterceptionMode</a></code></td>
+<td>
+<p>The mode used to redirect inbound traffic to Envoy.</p>
</td>
</tr>
</tbody>
</table>
</section>
-<h2 id="ServerAddress">ServerAddress</h2>
+<h2 id="ProxyConfig.InboundInterceptionMode">ProxyConfig.InboundInterceptionMode</h2>
<section>
-<p>ServerAddress specifies the address of Istio components like mixer, pilot, etc.
-At least one of the field needs to be specified.</p>
+<p>The mode used to redirect inbound traffic to Envoy.
+This setting has no effect on outbound traffic: iptables REDIRECT is always used for
+outbound connections.</p>
-<table class="message-fields">
+<table class="enum-values">
<thead>
<tr>
-<th>Field</th>
-<th>Type</th>
+<th>Name</th>
<th>Description</th>
</tr>
</thead>
<tbody>
-<tr id="ServerAddress.mutual_tls">
-<td><code>mutualTls</code></td>
-<td><code>string</code></td>
+<tr id="ProxyConfig.InboundInterceptionMode.REDIRECT">
+<td><code>REDIRECT</code></td>
<td>
-<p>The address for mTLS server, e.g., (<em>istio-pilot:15003</em>)</p>
+<p>The REDIRECT mode uses iptables REDIRECT to NAT and redirect to Envoy. This mode loses
+source IP addresses during redirection.</p>
</td>
</tr>
-<tr id="ServerAddress.plain_text">
-<td><code>plainText</code></td>
-<td><code>string</code></td>
+<tr id="ProxyConfig.InboundInterceptionMode.TPROXY">
+<td><code>TPROXY</code></td>
<td>
-<p>The address for plain text server, e.g., (<em>istio-pilot:15005</em>)</p>
+<p>The TPROXY mode uses iptables TPROXY to redirect to Envoy. This mode preserves both the
+source and destination IP addresses and ports, so that they can be used for advanced
+filtering and manipulation. This mode also configures the sidecar to run with the
+CAP<em>NET</em>ADMIN capability, which is required to use TPROXY.</p>
</td>
</tr>
diff --git a/_docs/reference/config/istio.mixer.v1.config.client.html b/_docs/reference/config/istio.mixer.v1.config.client.html
deleted file mode 100644
index 5cc3f20e37fc4..0000000000000
--- a/_docs/reference/config/istio.mixer.v1.config.client.html
+++ /dev/null
@@ -1,1281 +0,0 @@
----
-title: Mixer Client
-overview: Configuration state for the Mixer client library
-location: https://istio.io/docs/reference/config/istio.mixer.v1.config.client.html
-layout: protoc-gen-docs
-number_of_entries: 24
----
-<h2 id="APIKey">APIKey</h2>
-<section>
-<p>APIKey defines the explicit configuration for generating the
-<code>request.api_key</code> attribute from HTTP requests.</p>
-
-<p>See https://swagger.io/docs/specification/authentication/api-keys
-for a general overview of API keys as defined by OpenAPI.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="APIKey.query" class="oneof oneof-start">
-<td><code>query</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>API Key is sent as a query parameter. <code>query</code> represents the
-query string parameter name.</p>
-
-<p>For example, <code>query=api_key</code> should be used with the
-following request:</p>
-
-<pre><code>GET /something?api_key=abcdef12345
-</code></pre>
-
-</td>
-</tr>
-<tr id="APIKey.header" class="oneof">
-<td><code>header</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>API key is sent in a request header. <code>header</code> represents the
-header name.</p>
-
-<p>For example, <code>header=X-API-KEY</code> should be used with the
-following request:</p>
-
-<pre><code>GET /something HTTP/1.1
-X-API-Key: abcdef12345
-</code></pre>
-
-</td>
-</tr>
-<tr id="APIKey.cookie" class="oneof">
-<td><code>cookie</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>API key is sent in a
-<a href="https://swagger.io/docs/specification/authentication/cookie-authentication">cookie</a>,</p>
-
-<p>For example, <code>cookie=X-API-KEY</code> should be used for the
-following request:</p>
-
-<pre><code>GET /something HTTP/1.1
-Cookie: X-API-KEY=abcdef12345
-</code></pre>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="AttributeMatch">AttributeMatch</h2>
-<section>
-<p>Specifies a match clause to match Istio attributes</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="AttributeMatch.clause">
-<td><code>clause</code></td>
-<td><code>map<string,<a href="#StringMatch">StringMatch</a>></code></td>
-<td>
-<p>Map of attribute names to StringMatch type.
-Each map element specifies one condition to match.</p>
-
-<p>Example:</p>
-
-<p>clause:
- source.uid:
- exact: SOURCE<em>UID
- request.http</em>method:
- exact: POST</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="EndUserAuthenticationPolicySpec">EndUserAuthenticationPolicySpec</h2>
-<section>
-<p>Determines how to apply auth policies for individual requests.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="EndUserAuthenticationPolicySpec.jwts">
-<td><code>jwts</code></td>
-<td><code><a href="#JWT">JWT[]</a></code></td>
-<td>
-<p>List of JWT rules to valide.</p>
-
-<p>If the request includes a JWT it must match one of the JWT listed
-here matched by the issuer. If validation is successfull the
-follow attributes are included in requests to the mixer:</p>
-
-<pre><code>request.auth.principal - The string of the issuer (`iss`) and
-subject (`sub`) claims within a JWT concatenated with “/”
-with a percent-encoded subject value
-
-request.auth.audiences - This should reflect the audience
-(`aud`) claim within matched JWT.
-
-request.auth.presenter - The authorized presenter of the
-credential. This value should reflect the optional Authorized
-Presenter (`azp`) claim within a JWT
-</code></pre>
-
-<p>If no match is found the request is rejected with HTTP status
-code 401.</p>
-
-<p>JWT validation is skipped if the user’s traffic request does not
-include a JWT.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="EndUserAuthenticationPolicySpecBinding">EndUserAuthenticationPolicySpecBinding</h2>
-<section>
-<p>EndUserAuthenticationPolicySpecBinding defines the binding between
-EndUserAuthenticationPolicySpecs and one or more IstioService.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="EndUserAuthenticationPolicySpecBinding.services">
-<td><code>services</code></td>
-<td><code><a href="#IstioService">IstioService[]</a></code></td>
-<td>
-<p>REQUIRED. One or more services to map the listed
-EndUserAuthenticationPolicySpecs onto.</p>
-
-</td>
-</tr>
-<tr id="EndUserAuthenticationPolicySpecBinding.policies">
-<td><code>policies</code></td>
-<td><code><a href="#EndUserAuthenticationPolicySpecReference">EndUserAuthenticationPolicySpecReference[]</a></code></td>
-<td>
-<p>REQUIRED. One or more EndUserAuthenticationPolicySpecReference
-that should be mapped to the specified service(s).</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="EndUserAuthenticationPolicySpecReference">EndUserAuthenticationPolicySpecReference</h2>
-<section>
-<p>EndUserAuthenticationPolicySpecReference identifies a
-EndUserAuthenticationPolicySpec that is bound to a set of services.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="EndUserAuthenticationPolicySpecReference.name">
-<td><code>name</code></td>
-<td><code>string</code></td>
-<td>
-<p>REQUIRED. The short name of the
-EndUserAuthenticationPolicySpec. This is the resource name
-defined by the metadata name field.</p>
-
-</td>
-</tr>
-<tr id="EndUserAuthenticationPolicySpecReference.namespace">
-<td><code>namespace</code></td>
-<td><code>string</code></td>
-<td>
-<p>Optional namespace of the
-EndUserAuthenticationPolicySpec. Defaults to the value of the
-metadata namespace field.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="HTTPAPISpec">HTTPAPISpec</h2>
-<section>
-<p>HTTPAPISpec defines the canonical configuration for generating
-API-related attributes from HTTP requests based on the method and
-uri templated path matches. It is sufficient for defining the API
-surface of a service for the purposes of API attribute
-generation. It is not intended to represent auth, quota,
-documentation, or other information commonly found in other API
-specifications, e.g. OpenAPI.</p>
-
-<p>Existing standards that define operations (or methods) in terms of
-HTTP methods and paths can be normalized to this format for use in
-Istio. For example, a simple petstore API described by OpenAPIv2
-<a href="https://github.com/googleapis/gnostic/blob/master/examples/v2.0/yaml/petstore-simple.yaml">here</a>
-can be represented with the following HTTPAPISpec.</p>
-
-<pre><code>apiVersion: config.istio.io/v1alpha2
-kind: HTTPAPISpec
-metadata:
- name: petstore
- namespace: default
-spec:
- attributes:
- api.service: petstore.swagger.io
- api.version: 1.0.0
- patterns:
- - attributes:
- api.operation: findPets
- httpMethod: GET
- uriTemplate: /api/pets
- - attributes:
- api.operation: addPet
- httpMethod: POST
- uriTemplate: /api/pets
- - attributes:
- api.operation: findPetById
- httpMethod: GET
- uriTemplate: /api/pets/{id}
- - attributes:
- api.operation: deletePet
- httpMethod: DELETE
- uriTemplate: /api/pets/{id}
- api_keys:
- - query: api-key
-</code></pre>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="HTTPAPISpec.attributes">
-<td><code>attributes</code></td>
-<td><code><a href="#istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</a></code></td>
-<td>
-<p>List of attributes that are generated when <em>any</em> of the HTTP
-patterns match. This list typically includes the “api.service”
-and “api.version” attributes.</p>
-
-</td>
-</tr>
-<tr id="HTTPAPISpec.patterns">
-<td><code>patterns</code></td>
-<td><code><a href="#HTTPAPISpecPattern">HTTPAPISpecPattern[]</a></code></td>
-<td>
-<p>List of HTTP patterns to match.</p>
-
-</td>
-</tr>
-<tr id="HTTPAPISpec.api_keys">
-<td><code>apiKeys</code></td>
-<td><code><a href="#APIKey">APIKey[]</a></code></td>
-<td>
-<p>List of APIKey that describes how to extract an API-KEY from an
-HTTP request. The first API-Key match found in the list is used,
-i.e. ‘OR’ semantics.</p>
-
-<p>The following default policies are used to generate the
-<code>request.api_key</code> attribute if no explicit APIKey is defined.</p>
-
-<pre><code>`query: key, `query: api_key`, and then `header: x-api-key`
-</code></pre>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="HTTPAPISpecBinding">HTTPAPISpecBinding</h2>
-<section>
-<p>HTTPAPISpecBinding defines the binding between HTTPAPISpecs and one or more
-IstioService. For example, the following establishes a binding
-between the HTTPAPISpec <code>petstore</code> and service <code>foo</code> in namespace <code>bar</code>.</p>
-
-<pre><code>apiVersion: config.istio.io/v1alpha2
-kind: HTTPAPISpecBinding
-metadata:
- name: my-binding
- namespace: default
-spec:
- services:
- - name: foo
- namespace: bar
- api_specs:
- - name: petstore
- namespace: default
-</code></pre>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="HTTPAPISpecBinding.services">
-<td><code>services</code></td>
-<td><code><a href="#IstioService">IstioService[]</a></code></td>
-<td>
-<p>REQUIRED. One or more services to map the listed HTTPAPISpec onto.</p>
-
-</td>
-</tr>
-<tr id="HTTPAPISpecBinding.api_specs">
-<td><code>apiSpecs</code></td>
-<td><code><a href="#HTTPAPISpecReference">HTTPAPISpecReference[]</a></code></td>
-<td>
-<p>REQUIRED. One or more HTTPAPISpec references that should be mapped to
-the specified service(s). The aggregate collection of match
-conditions defined in the HTTPAPISpecs should not overlap.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="HTTPAPISpecPattern">HTTPAPISpecPattern</h2>
-<section>
-<p>HTTPAPISpecPattern defines a single pattern to match against
-incoming HTTP requests. The per-pattern list of attributes is
-generated if both the http<em>method and uri</em>template match. In
-addition, the top-level list of attributes in the HTTPAPISpec is also
-generated.</p>
-
-<pre><code>pattern:
-- attributes
- api.operation: doFooBar
- httpMethod: GET
- uriTemplate: /foo/bar
-</code></pre>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="HTTPAPISpecPattern.attributes">
-<td><code>attributes</code></td>
-<td><code><a href="#istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</a></code></td>
-<td>
-<p>List of attributes that are generated if the HTTP request matches
-the specified http<em>method and uri</em>template. This typically
-includes the “api.operation” attribute.</p>
-
-</td>
-</tr>
-<tr id="HTTPAPISpecPattern.http_method">
-<td><code>httpMethod</code></td>
-<td><code>string</code></td>
-<td>
-<p>HTTP request method to match against as defined by
-<a href="https://tools.ietf.org/html/rfc7231#page-21">rfc7231</a>. For
-example: GET, HEAD, POST, PUT, DELETE.</p>
-
-</td>
-</tr>
-<tr id="HTTPAPISpecPattern.uri_template" class="oneof oneof-start">
-<td><code>uriTemplate</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>URI template to match against as defined by
-<a href="https://tools.ietf.org/html/rfc6570">rfc6570</a>. For example, the
-following are valid URI templates:</p>
-
-<pre><code>/pets
-/pets/{id}
-/dictionary/{term:1}/{term}
-/search{?q*,lang}
-</code></pre>
-
-</td>
-</tr>
-<tr id="HTTPAPISpecPattern.regex" class="oneof">
-<td><code>regex</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>EXPERIMENTAL:</p>
-
-<p>ecmascript style regex-based match as defined by
-<a href="http://en.cppreference.com/w/cpp/regex/ecmascript">EDCA-262</a>. For
-example,</p>
-
-<pre><code>"^/pets/(.*?)?"
-</code></pre>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="HTTPAPISpecReference">HTTPAPISpecReference</h2>
-<section>
-<p>HTTPAPISpecReference defines a reference to an HTTPAPISpec. This is
-typically used for establishing bindings between an HTTPAPISpec and an
-IstioService. For example, the following defines an
-HTTPAPISpecReference for service <code>foo</code> in namespace <code>bar</code>.</p>
-
-<pre><code>- name: foo
- namespace: bar
-</code></pre>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="HTTPAPISpecReference.name">
-<td><code>name</code></td>
-<td><code>string</code></td>
-<td>
-<p>REQUIRED. The short name of the HTTPAPISpec. This is the resource
-name defined by the metadata name field.</p>
-
-</td>
-</tr>
-<tr id="HTTPAPISpecReference.namespace">
-<td><code>namespace</code></td>
-<td><code>string</code></td>
-<td>
-<p>Optional namespace of the HTTPAPISpec. Defaults to the encompassing
-HTTPAPISpecBinding’s metadata namespace field.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="HttpClientConfig">HttpClientConfig</h2>
-<section>
-<p>Defines the client config for HTTP.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="HttpClientConfig.transport">
-<td><code>transport</code></td>
-<td><code><a href="#TransportConfig">TransportConfig</a></code></td>
-<td>
-<p>The transport config.</p>
-
-</td>
-</tr>
-<tr id="HttpClientConfig.service_configs">
-<td><code>serviceConfigs</code></td>
-<td><code>map<string,<a href="#ServiceConfig">ServiceConfig</a>></code></td>
-<td>
-<p>Map of control configuration indexed by destination.service. This
-is used to support per-service configuration for cases where a
-mixerclient serves multiple services.</p>
-
-</td>
-</tr>
-<tr id="HttpClientConfig.default_destination_service">
-<td><code>defaultDestinationService</code></td>
-<td><code>string</code></td>
-<td>
-<p>Default destination service name if none was specified in the
-client request.</p>
-
-</td>
-</tr>
-<tr id="HttpClientConfig.mixer_attributes">
-<td><code>mixerAttributes</code></td>
-<td><code><a href="#istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</a></code></td>
-<td>
-<p>Default attributes to send to Mixer in both Check and
-Report. This typically includes “destination.ip” and
-“destination.uid” attributes.</p>
-
-</td>
-</tr>
-<tr id="HttpClientConfig.forward_attributes">
-<td><code>forwardAttributes</code></td>
-<td><code><a href="#istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</a></code></td>
-<td>
-<p>Default attributes to forward to upstream. This typically
-includes the “source.ip” and “source.uid” attributes.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="IstioService">IstioService</h2>
-<section>
-<p>IstioService identifies a service and optionally service version.
-The FQDN of the service is composed from the name, namespace, and implementation-specific domain suffix
-(e.g. on Kubernetes, “reviews” + “default” + “svc.cluster.local” -> “reviews.default.svc.cluster.local”).</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="IstioService.name">
-<td><code>name</code></td>
-<td><code>string</code></td>
-<td>
-<p>The short name of the service such as “foo”.</p>
-
-</td>
-</tr>
-<tr id="IstioService.namespace">
-<td><code>namespace</code></td>
-<td><code>string</code></td>
-<td>
-<p>Optional namespace of the service. Defaults to value of metadata namespace field.</p>
-
-</td>
-</tr>
-<tr id="IstioService.domain">
-<td><code>domain</code></td>
-<td><code>string</code></td>
-<td>
-<p>Domain suffix used to construct the service FQDN in implementations that support such specification.</p>
-
-</td>
-</tr>
-<tr id="IstioService.service">
-<td><code>service</code></td>
-<td><code>string</code></td>
-<td>
-<p>The service FQDN.</p>
-
-</td>
-</tr>
-<tr id="IstioService.labels">
-<td><code>labels</code></td>
-<td><code>map<string,string></code></td>
-<td>
-<p>Optional one or more labels that uniquely identify the service version.</p>
-
-<p><em>Note:</em> When used for a RouteRule destination, labels MUST be empty.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="JWT">JWT</h2>
-<section>
-<p>JSON Web Token (JWT) token format for authentication as defined by
-https://tools.ietf.org/html/rfc7519. See <a href="https://tools.ietf.org/html/rfc6749">OAuth
-2.0</a> and <a href="http://openid.net/connect">OIDC
-1.0</a> for how this is used in the whole
-authentication flow.</p>
-
-<p>Example,</p>
-
-<pre><code>issuer: https://example.com
-audiences:
-- bookstore_android.apps.googleusercontent.com
- bookstore_web.apps.googleusercontent.com
-jwks_uri: https://example.com/.well-known/jwks.json
-</code></pre>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="JWT.issuer">
-<td><code>issuer</code></td>
-<td><code>string</code></td>
-<td>
-<p>Identifies the principal that issued the JWT. See
-https://tools.ietf.org/html/rfc7519#section-4.1.1
-Usually a URL or an email address.</p>
-
-<p>Example: https://securetoken.google.com
-Example: 1234567-compute@developer.gserviceaccount.com</p>
-
-</td>
-</tr>
-<tr id="JWT.audiences">
-<td><code>audiences</code></td>
-<td><code>string[]</code></td>
-<td>
-<p>The list of JWT
-<a href="https://tools.ietf.org/html/rfc7519#section-4.1.3">audiences</a>.
-that are allowed to access. A JWT containing any of these
-audiences will be accepted.</p>
-
-<p>The service name will be accepted if audiences is empty.</p>
-
-<p>Example:</p>
-
-<pre><code>audiences:
-- bookstore_android.apps.googleusercontent.com
- bookstore_web.apps.googleusercontent.com
-</code></pre>
-
-</td>
-</tr>
-<tr id="JWT.jwks_uri">
-<td><code>jwksUri</code></td>
-<td><code>string</code></td>
-<td>
-<p>URL of the provider’s public key set to validate signature of the
-JWT. See <a href="https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata">OpenID Discovery</a>.</p>
-
-<p>Optional if the key set document can either (a) be retrieved from
-<a href="https://openid.net/specs/openid-connect-discovery-1_0.html">OpenID Discovery</a>
-of the issuer or (b) inferred from the email domain of the issuer
-(e.g. a Google service account).</p>
-
-<p>Example: https://www.googleapis.com/oauth2/v1/certs</p>
-
-</td>
-</tr>
-<tr id="JWT.forward_jwt">
-<td><code>forwardJwt</code></td>
-<td><code>bool</code></td>
-<td>
-<p>If true, forward the entire base64 encoded JWT in the HTTP request.
-If false, remove the JWT from the HTTP request and do not forward to the application.</p>
-
-</td>
-</tr>
-<tr id="JWT.public_key_cache_duration">
-<td><code>publicKeyCacheDuration</code></td>
-<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
-<td>
-<p>Duration after which the cached public key should be expired. The
-system wide default is applied if no duration is explicitly
-specified.</p>
-
-</td>
-</tr>
-<tr id="JWT.locations">
-<td><code>locations</code></td>
-<td><code><a href="#JWT.Location">JWT.Location[]</a></code></td>
-<td>
-<p>Zero or more locations to search for JWT in an HTTP request.</p>
-
-</td>
-</tr>
-<tr id="JWT.jwks_uri_envoy_cluster">
-<td><code>jwksUriEnvoyCluster</code></td>
-<td><code>string</code></td>
-<td>
-<p>This field is specific for Envoy proxy implementation.
-It is the cluster name in the Envoy config for the jwks_uri.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="JWT.Location">JWT.Location</h2>
-<section>
-<p>Defines where to extract the JWT from an HTTP request.</p>
-
-<p>If no explicit location is specified the following default
-locations are tried in order:</p>
-
-<pre><code>1) The Authorization header using the Bearer schema,
- e.g. Authorization: Bearer <token>. (see
- https://tools.ietf.org/html/rfc6750#section-2.1)
-
-2) `access_token` query parameter (see
-https://tools.ietf.org/html/rfc6750#section-2.3)
-</code></pre>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="JWT.Location.header" class="oneof oneof-start">
-<td><code>header</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>JWT is sent in a request header. <code>header</code> represents the
-header name.</p>
-
-<p>For example, if <code>header=x-goog-iap-jwt-assertion</code>, the header
-format will be x-goog-iap-jwt-assertion: <JWT>.</p>
-
-</td>
-</tr>
-<tr id="JWT.Location.query" class="oneof">
-<td><code>query</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>JWT is sent in a query parameter. <code>query</code> represents the
-query parameter name.</p>
-
-<p>For example, <code>query=jwt_token</code>.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="Quota">Quota</h2>
-<section>
-<p>Specifies a quota to use with quota name and amount.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="Quota.quota">
-<td><code>quota</code></td>
-<td><code>string</code></td>
-<td>
-<p>The quota name to charge</p>
-
-</td>
-</tr>
-<tr id="Quota.charge">
-<td><code>charge</code></td>
-<td><code>int64</code></td>
-<td>
-<p>The quota amount to charge</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="QuotaRule">QuotaRule</h2>
-<section>
-<p>Specifies a rule with list of matches and list of quotas.
-If any clause matched, the list of quotas will be used.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="QuotaRule.match">
-<td><code>match</code></td>
-<td><code><a href="#AttributeMatch">AttributeMatch[]</a></code></td>
-<td>
-<p>If empty, match all request.
-If any of match is true, it is matched.</p>
-
-</td>
-</tr>
-<tr id="QuotaRule.quotas">
-<td><code>quotas</code></td>
-<td><code><a href="#Quota">Quota[]</a></code></td>
-<td>
-<p>The list of quotas to charge.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="QuotaSpec">QuotaSpec</h2>
-<section>
-<p>Determines the quotas used for individual requests.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="QuotaSpec.rules">
-<td><code>rules</code></td>
-<td><code><a href="#QuotaRule">QuotaRule[]</a></code></td>
-<td>
-<p>A list of Quota rules.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="QuotaSpecBinding">QuotaSpecBinding</h2>
-<section>
-<p>QuotaSpecBinding defines the binding between QuotaSpecs and one or more
-IstioService.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="QuotaSpecBinding.services">
-<td><code>services</code></td>
-<td><code><a href="#IstioService">IstioService[]</a></code></td>
-<td>
-<p>REQUIRED. One or more services to map the listed QuotaSpec onto.</p>
-
-</td>
-</tr>
-<tr id="QuotaSpecBinding.quota_specs">
-<td><code>quotaSpecs</code></td>
-<td><code><a href="#QuotaSpecBinding.QuotaSpecReference">QuotaSpecBinding.QuotaSpecReference[]</a></code></td>
-<td>
-<p>REQUIRED. One or more QuotaSpec references that should be mapped to
-the specified service(s). The aggregate collection of match
-conditions defined in the QuotaSpecs should not overlap.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="QuotaSpecBinding.QuotaSpecReference">QuotaSpecBinding.QuotaSpecReference</h2>
-<section>
-<p>QuotaSpecReference uniquely identifies the QuotaSpec used in the
-Binding.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="QuotaSpecBinding.QuotaSpecReference.name">
-<td><code>name</code></td>
-<td><code>string</code></td>
-<td>
-<p>REQUIRED. The short name of the QuotaSpec. This is the resource
-name defined by the metadata name field.</p>
-
-</td>
-</tr>
-<tr id="QuotaSpecBinding.QuotaSpecReference.namespace">
-<td><code>namespace</code></td>
-<td><code>string</code></td>
-<td>
-<p>Optional namespace of the QuotaSpec. Defaults to the value of the
-metadata namespace field.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="ServiceConfig">ServiceConfig</h2>
-<section>
-<p>Defines the per-service client configuration.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="ServiceConfig.disable_check_calls">
-<td><code>disableCheckCalls</code></td>
-<td><code>bool</code></td>
-<td>
-<p>If true, do not call Mixer Check.</p>
-
-</td>
-</tr>
-<tr id="ServiceConfig.disable_report_calls">
-<td><code>disableReportCalls</code></td>
-<td><code>bool</code></td>
-<td>
-<p>If true, do not call Mixer Report.</p>
-
-</td>
-</tr>
-<tr id="ServiceConfig.mixer_attributes">
-<td><code>mixerAttributes</code></td>
-<td><code><a href="#istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</a></code></td>
-<td>
-<p>Send these attributes to Mixer in both Check and Report. This
-typically includes the “destination.service” attribute.</p>
-
-</td>
-</tr>
-<tr id="ServiceConfig.http_api_spec">
-<td><code>httpApiSpec</code></td>
-<td><code><a href="#HTTPAPISpec">HTTPAPISpec[]</a></code></td>
-<td>
-<p>HTTP API specifications to generate API attributes.</p>
-
-</td>
-</tr>
-<tr id="ServiceConfig.quota_spec">
-<td><code>quotaSpec</code></td>
-<td><code><a href="#QuotaSpec">QuotaSpec[]</a></code></td>
-<td>
-<p>Quota specifications to generate quota requirements.</p>
-
-</td>
-</tr>
-<tr id="ServiceConfig.end_user_authn_spec">
-<td><code>endUserAuthnSpec</code></td>
-<td><code><a href="#EndUserAuthenticationPolicySpec">EndUserAuthenticationPolicySpec</a></code></td>
-<td>
-<p>End user authentication policy.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="StringMatch">StringMatch</h2>
-<section>
-<p>Describes how to match a given string in HTTP headers. Match is
-case-sensitive.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="StringMatch.exact" class="oneof oneof-start">
-<td><code>exact</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>exact string match</p>
-
-</td>
-</tr>
-<tr id="StringMatch.prefix" class="oneof">
-<td><code>prefix</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>prefix-based match</p>
-
-</td>
-</tr>
-<tr id="StringMatch.regex" class="oneof">
-<td><code>regex</code></td>
-<td><code>string (oneof)</code></td>
-<td>
-<p>ECMAscript style regex-based match</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="TcpClientConfig">TcpClientConfig</h2>
-<section>
-<p>Defines the client config for TCP.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="TcpClientConfig.transport">
-<td><code>transport</code></td>
-<td><code><a href="#TransportConfig">TransportConfig</a></code></td>
-<td>
-<p>The transport config.</p>
-
-</td>
-</tr>
-<tr id="TcpClientConfig.mixer_attributes">
-<td><code>mixerAttributes</code></td>
-<td><code><a href="#istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</a></code></td>
-<td>
-<p>Default attributes to send to Mixer in both Check and
-Report. This typically includes “destination.ip” and
-“destination.uid” attributes.</p>
-
-</td>
-</tr>
-<tr id="TcpClientConfig.disable_check_calls">
-<td><code>disableCheckCalls</code></td>
-<td><code>bool</code></td>
-<td>
-<p>If set to true, disables mixer check calls.</p>
-
-</td>
-</tr>
-<tr id="TcpClientConfig.disable_report_calls">
-<td><code>disableReportCalls</code></td>
-<td><code>bool</code></td>
-<td>
-<p>If set to true, disables mixer check calls.</p>
-
-</td>
-</tr>
-<tr id="TcpClientConfig.connection_quota_spec">
-<td><code>connectionQuotaSpec</code></td>
-<td><code><a href="#QuotaSpec">QuotaSpec</a></code></td>
-<td>
-<p>Quota specifications to generate quota requirements.
-It applies on the new TCP connections.</p>
-
-</td>
-</tr>
-<tr id="TcpClientConfig.report_interval">
-<td><code>reportInterval</code></td>
-<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
-<td>
-<p>Specify report interval to send periodical reports for long TCP
-connections. If not specified, the interval is 10 seconds. This interval
-should not be less than 1 second, otherwise it will be reset to 1 second.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="TransportConfig">TransportConfig</h2>
-<section>
-<p>Defines the transport config on how to call Mixer.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="TransportConfig.disable_check_cache">
-<td><code>disableCheckCache</code></td>
-<td><code>bool</code></td>
-<td>
-<p>The flag to disable check cache.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.disable_quota_cache">
-<td><code>disableQuotaCache</code></td>
-<td><code>bool</code></td>
-<td>
-<p>The flag to disable quota cache.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.disable_report_batch">
-<td><code>disableReportBatch</code></td>
-<td><code>bool</code></td>
-<td>
-<p>The flag to disable report batch.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.network_fail_policy">
-<td><code>networkFailPolicy</code></td>
-<td><code><a href="#TransportConfig.NetworkFailPolicy">TransportConfig.NetworkFailPolicy</a></code></td>
-<td>
-<p>Specifies the policy when failed to connect to Mixer server.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.stats_update_interval">
-<td><code>statsUpdateInterval</code></td>
-<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
-<td>
-<p>Specify refresh interval to write mixer client statistics to Envoy share
-memory. If not specified, the interval is 10 seconds.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.check_cluster">
-<td><code>checkCluster</code></td>
-<td><code>string</code></td>
-<td>
-<p>Name of the cluster that will forward check calls to a pool of mixer
-servers. Defaults to “mixer_server”. By using different names for
-checkCluster and reportCluster, it is possible to have one set of
-mixer servers handle check calls, while another set of mixer servers
-handle report calls.</p>
-
-<p>NOTE: Any value other than the default “mixer_server” will require the
-Istio Grafana dashboards to be reconfigured to use the new name.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.report_cluster">
-<td><code>reportCluster</code></td>
-<td><code>string</code></td>
-<td>
-<p>Name of the cluster that will forward report calls to a pool of mixer
-servers. Defaults to “mixer_server”. By using different names for
-checkCluster and reportCluster, it is possible to have one set of
-mixer servers handle check calls, while another set of mixer servers
-handle report calls.</p>
-
-<p>NOTE: Any value other than the default “mixer_server” will require the
-Istio Grafana dashboards to be reconfigured to use the new name.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="TransportConfig.NetworkFailPolicy">TransportConfig.NetworkFailPolicy</h2>
-<section>
-<p>NetworkFailPolicy defines behavior when network connection
-failure occurs.</p>
-
-<table class="enum-values">
-<thead>
-<tr>
-<th>Name</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="TransportConfig.NetworkFailPolicy.FAIL_OPEN">
-<td><code>FAIL_OPEN</code></td>
-<td>
-<p>If network fails, request is passed to the backend.</p>
-
-</td>
-</tr>
-<tr id="TransportConfig.NetworkFailPolicy.FAIL_CLOSE">
-<td><code>FAIL_CLOSE</code></td>
-<td>
-<p>If network fails, request is rejected.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="istio.mixer.v1.Attributes">istio.mixer.v1.Attributes</h2>
-<section>
-<p>Attributes represents a set of typed name/value pairs. Many of Mixer’s
-API either consume and/or return attributes.</p>
-
-<p>Istio uses attributes to control the runtime behavior of services running in the service mesh.
-Attributes are named and typed pieces of metadata describing ingress and egress traffic and the
-environment this traffic occurs in. An Istio attribute carries a specific piece
-of information such as the error code of an API request, the latency of an API request, or the
-original IP address of a TCP connection. For example:</p>
-
-<pre><code>request.path: xyz/abc
-request.size: 234
-request.time: 12:34:56.789 04/17/2017
-source.ip: 192.168.0.1
-target.service: example
-</code></pre>
-
-<p>A given Istio deployment has a fixed vocabulary of attributes that it understands.
-The specific vocabulary is determined by the set of attribute producers being used
-in the deployment. The primary attribute producer in Istio is Envoy, although
-specialized Mixer adapters and services can also generate attributes.</p>
-
-<p>The common baseline set of attributes available in most Istio deployments is defined
-<a href="{{site.baseurl}}/docs/reference/config/mixer/attribute-vocabulary.html">here</a>.</p>
-
-<p>Attributes are strongly typed. The supported attribute types are defined by
-<a href="https://github.com/istio/api/blob/master/mixer/v1/config/descriptor/value_type.proto">ValueType</a>.
-Each type of value is encoded into one of the so-called transport types present
-in this message.</p>
-
-<p>Defines a map of attributes in uncompressed format.
-Following places may use this message:
-1) Configure Istio/Proxy with static per-proxy attributes, such as source.uid.
-2) Service IDL definition to extract api attributes for active requests.
-3) Forward attributes from client proxy to server proxy for HTTP requests.</p>
-
-<table class="message-fields">
-<thead>
-<tr>
-<th>Field</th>
-<th>Type</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="istio.mixer.v1.Attributes.attributes">
-<td><code>attributes</code></td>
-<td><code>map<string,<a href="#istio.mixer.v1.Attributes.AttributeValue">istio.mixer.v1.Attributes.AttributeValue</a>></code></td>
-<td>
-<p>A map of attribute name to its value.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
diff --git a/_docs/reference/config/istio.networking.v1alpha3.html b/_docs/reference/config/istio.networking.v1alpha3.html
new file mode 100644
index 0000000000000..f0b4aba88f52c
--- /dev/null
+++ b/_docs/reference/config/istio.networking.v1alpha3.html
@@ -0,0 +1,3013 @@
+---
+title: Route Rules v1alpha3
+description: Configuration affecting traffic routing
+location: https://istio.io/docs/reference/config/istio.networking.v1alpha3.html
+layout: protoc-gen-docs
+number_of_entries: 39
+---
+<p>Configuration affecting traffic routing. Here are a few terms useful to define
+in the context of traffic routing.</p>
+
+<p><code>Service</code> a unit of application behavior bound to a unique name in a
+service registry. Services consist of multiple network <em>endpoints</em>
+implemented by workload instances running on pods, containers, VMs etc.</p>
+
+<p><code>Service versions (a.k.a. subsets)</code> - In a continuous deployment
+scenario, for a given service, there can be distinct subsets of
+instances running different variants of the application binary. These
+variants are not necessarily different API versions. They could be
+iterative changes to the same service, deployed in different
+environments (prod, staging, dev, etc.). Common scenarios where this
+occurs include A/B testing, canary rollouts, etc. The choice of a
+particular version can be decided based on various criterion (headers,
+url, etc.) and/or by weights assigned to each version. Each service has
+a default version consisting of all its instances.</p>
+
+<p><code>Source</code> - A downstream client calling a service.</p>
+
+<p><code>Host</code> - The address used by a client when attempting to connect to a
+service.</p>
+
+<p><code>Access model</code> - Applications address only the destination service
+(Host) without knowledge of individual service versions (subsets). The
+actual choice of the version is determined by the proxy/sidecar, enabling the
+application code to decouple itself from the evolution of dependent
+services.</p>
+
+<h2 id="ConnectionPoolSettings">ConnectionPoolSettings</h2>
+<section>
+<p>Connection pool settings for an upstream host. The settings apply to
+each individual host in the upstream service. See Envoy’s <a href="https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overview/circuit_breaking">circuit
+breaker</a>
+for more details. Connection pool settings can be applied at the TCP
+level as well as at HTTP level.</p>
+
+<p>For example, the following rule sets a limit of 100 connections to redis
+service called myredissrv with a connect timeout of 30ms</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-redis
+spec:
+ host: myredissrv.prod.svc.cluster.local
+ trafficPolicy:
+ connectionPool:
+ tcp:
+ maxConnections: 100
+ connectTimeout: 30ms
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ConnectionPoolSettings.tcp">
+<td><code>tcp</code></td>
+<td><code><a href="#ConnectionPoolSettings.TCPSettings">ConnectionPoolSettings.TCPSettings</a></code></td>
+<td>
+<p>Settings common to both HTTP and TCP upstream connections.</p>
+
+</td>
+</tr>
+<tr id="ConnectionPoolSettings.http">
+<td><code>http</code></td>
+<td><code><a href="#ConnectionPoolSettings.HTTPSettings">ConnectionPoolSettings.HTTPSettings</a></code></td>
+<td>
+<p>HTTP connection pool settings.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ConnectionPoolSettings.HTTPSettings">ConnectionPoolSettings.HTTPSettings</h2>
+<section>
+<p>Settings applicable to HTTP1.1/HTTP2/GRPC connections.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ConnectionPoolSettings.HTTPSettings.http1_max_pending_requests">
+<td><code>http1MaxPendingRequests</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Maximum number of pending HTTP requests to a destination. Default 1024.</p>
+
+</td>
+</tr>
+<tr id="ConnectionPoolSettings.HTTPSettings.http2_max_requests">
+<td><code>http2MaxRequests</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Maximum number of requests to a backend. Default 1024.</p>
+
+</td>
+</tr>
+<tr id="ConnectionPoolSettings.HTTPSettings.max_requests_per_connection">
+<td><code>maxRequestsPerConnection</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Maximum number of requests per connection to a backend. Setting this
+parameter to 1 disables keep alive.</p>
+
+</td>
+</tr>
+<tr id="ConnectionPoolSettings.HTTPSettings.max_retries">
+<td><code>maxRetries</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Maximum number of retries that can be outstanding to all hosts in a
+cluster at a given time. Defaults to 3.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ConnectionPoolSettings.TCPSettings">ConnectionPoolSettings.TCPSettings</h2>
+<section>
+<p>Settings common to both HTTP and TCP upstream connections.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ConnectionPoolSettings.TCPSettings.max_connections">
+<td><code>maxConnections</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Maximum number of HTTP1 /TCP connections to a destination host.</p>
+
+</td>
+</tr>
+<tr id="ConnectionPoolSettings.TCPSettings.connect_timeout">
+<td><code>connectTimeout</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
+<td>
+<p>TCP connection timeout.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="CorsPolicy">CorsPolicy</h2>
+<section>
+<p>Describes the Cross-Origin Resource Sharing (CORS) policy, for a given
+service. Refer to
+https://developer.mozilla.org/en-US/docs/Web/HTTP/Access<em>control</em>CORS
+for further details about cross origin resource sharing. For example,
+the following rule restricts cross origin requests to those originating
+from example.com domain using HTTP POST/GET, and sets the
+Access-Control-Allow-Credentials header to false. In addition, it only
+exposes X-Foo-bar header and sets an expiry period of 1 day.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: ratings-route
+spec:
+ hosts:
+ - ratings.prod.svc.cluster.local
+ http:
+ - route:
+ - destination:
+ host: ratings.prod.svc.cluster.local
+ subset: v1
+ corsPolicy:
+ allowOrigin:
+ - example.com
+ allowMethods:
+ - POST
+ - GET
+ allowCredentials: false
+ allowHeaders:
+ - X-Foo-Bar
+ maxAge: "1d"
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="CorsPolicy.allow_origin">
+<td><code>allowOrigin</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>The list of origins that are allowed to perform CORS requests. The
+content will be serialized into the Access-Control-Allow-Origin
+header. Wildcard * will allow all origins.</p>
+
+</td>
+</tr>
+<tr id="CorsPolicy.allow_methods">
+<td><code>allowMethods</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>List of HTTP methods allowed to access the resource. The content will
+be serialized into the Access-Control-Allow-Methods header.</p>
+
+</td>
+</tr>
+<tr id="CorsPolicy.allow_headers">
+<td><code>allowHeaders</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>List of HTTP headers that can be used when requesting the
+resource. Serialized to Access-Control-Allow-Methods header.</p>
+
+</td>
+</tr>
+<tr id="CorsPolicy.expose_headers">
+<td><code>exposeHeaders</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>A white list of HTTP headers that the browsers are allowed to
+access. Serialized into Access-Control-Expose-Headers header.</p>
+
+</td>
+</tr>
+<tr id="CorsPolicy.max_age">
+<td><code>maxAge</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
+<td>
+<p>Specifies how long the the results of a preflight request can be
+cached. Translates to the Access-Control-Max-Age header.</p>
+
+</td>
+</tr>
+<tr id="CorsPolicy.allow_credentials">
+<td><code>allowCredentials</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#boolvalue">google.protobuf.BoolValue</a></code></td>
+<td>
+<p>Indicates whether the caller is allowed to send the actual request
+(not the preflight) using credentials. Translates to
+Access-Control-Allow-Credentials header.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Destination">Destination</h2>
+<section>
+<p>Destination indicates the network addressable service to which the
+request/connection will be sent after processing a routing rule. The
+destination.host should unambiguously refer to a service in the service
+registry. Istio’s service registry is composed of all the services found
+in the platform’s service registry (e.g., Kubernetes services, Consul
+services), as well as services declared through the
+<a href="#ServiceEntry">ServiceEntry</a> resource.</p>
+
+<p><em>Note for Kubernetes users</em>: When short names are used (e.g. “reviews”
+instead of “reviews.default.svc.cluster.local”), Istio will interpret
+the short name based on the namespace of the rule, not the service. A
+rule in the “default” namespace containing a host “reviews will be
+interpreted as “reviews.default.svc.cluster.local”, irrespective of the
+actual namespace associated with the reviews service. <em>To avoid potential
+misconfigurations, it is recommended to always use fully qualified
+domain names over short names.</em></p>
+
+<p>The following Kubernetes example routes all traffic by default to pods
+of the reviews service with label “version: v1” (i.e., subset v1), and
+some to subset v2, in a kubernetes environment.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: reviews-route
+ namespace: foo
+spec:
+ hosts:
+ - reviews # interpreted as reviews.foo.svc.cluster.local
+ http:
+ - match:
+ - uri:
+ prefix: "/wpcatalog"
+ - uri:
+ prefix: "/consumercatalog"
+ rewrite:
+ uri: "/newcatalog"
+ route:
+ - destination:
+ host: reviews # interpreted as reviews.foo.svc.cluster.local
+ subset: v2
+ - route:
+ - destination:
+ host: reviews # interpreted as reviews.foo.svc.cluster.local
+ subset: v1
+</code></pre>
+
+<p>And the associated DestinationRule</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: reviews-destination
+ namespace: foo
+spec:
+ host: reviews # interpreted as reviews.foo.svc.cluster.local
+ subsets:
+ - name: v1
+ labels:
+ version: v1
+ - name: v2
+ labels:
+ version: v2
+</code></pre>
+
+<p>The following VirtualService sets a timeout of 5s for all calls to
+productpage.prod.svc.cluster.local service in Kubernetes. Notice that
+there are no subsets defined in this rule. Istio will fetch all
+instances of productpage.prod.svc.cluster.local service from the service
+registry and populate the sidecar’s load balancing pool. Also, notice
+that this rule is set in the istio-system namespace but uses the fully
+qualified domain name of the productpage service,
+productpage.prod.svc.cluster.local. Therefore the rule’s namespace does
+not have an impact in resolving the name of the productpage service.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: my-productpage-rule
+ namespace: istio-system
+spec:
+ hosts:
+ - productpage.prod.svc.cluster.local # ignores rule namespace
+ http:
+ - timeout: 5s
+ route:
+ - destination:
+ host: productpage.prod.svc.cluster.local
+</code></pre>
+
+<p>To control routing for traffic bound to services outside the mesh, external
+services must first be added to Istio’s internal service registry using the
+ServiceEntry resource. VirtualServices can then be defined to control traffic
+bound to these external services. For example, the following rules define a
+Service for wikipedia.org and set a timeout of 5s for http requests.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: ServiceEntry
+metadata:
+ name: external-svc-wikipedia
+spec:
+ hosts:
+ - wikipedia.org
+ location: MESH_EXTERNAL
+ ports:
+ - number: 80
+ name: example-http
+ protocol: HTTP
+ resolution: DNS
+
+apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: my-wiki-rule
+spec:
+ hosts:
+ - wikipedia.org
+ http:
+ - timeout: 5s
+ route:
+ - destination:
+ host: wikipedia.org
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Destination.host">
+<td><code>host</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED. The name of a service from the service registry. Service
+names are looked up from the platform’s service registry (e.g.,
+Kubernetes services, Consul services, etc.) and from the hosts
+declared by <a href="#ServiceEntry">ServiceEntry</a>. Traffic forwarded to
+destinations that are not found in either of the two, will be dropped.</p>
+
+<p><em>Note for Kubernetes users</em>: When short names are used (e.g. “reviews”
+instead of “reviews.default.svc.cluster.local”), Istio will interpret
+the short name based on the namespace of the rule, not the service. A
+rule in the “default” namespace containing a host “reviews will be
+interpreted as “reviews.default.svc.cluster.local”, irrespective of
+the actual namespace associated with the reviews service. <em>To avoid
+potential misconfigurations, it is recommended to always use fully
+qualified domain names over short names.</em></p>
+
+</td>
+</tr>
+<tr id="Destination.subset">
+<td><code>subset</code></td>
+<td><code>string</code></td>
+<td>
+<p>The name of a subset within the service. Applicable only to services
+within the mesh. The subset must be defined in a corresponding
+DestinationRule.</p>
+
+</td>
+</tr>
+<tr id="Destination.port">
+<td><code>port</code></td>
+<td><code><a href="#PortSelector">PortSelector</a></code></td>
+<td>
+<p>Specifies the port on the host that is being addressed. Many services
+only expose a single port or label ports with the protocols they support,
+in these cases it is not required to explicitly select the port. Note that
+selection priority is to first match by name and then match by number.</p>
+
+<p>Names must comply with DNS label syntax (rfc1035) and therefore cannot
+collide with numbers. If there are multiple ports on a service with
+the same protocol the names should be of the form <protocol-name>-<DNS
+label>.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="DestinationRule">DestinationRule</h2>
+<section>
+<p><code>DestinationRule</code> defines policies that apply to traffic intended for a
+service after routing has occurred. These rules specify configuration
+for load balancing, connection pool size from the sidecar, and outlier
+detection settings to detect and evict unhealthy hosts from the load
+balancing pool. For example, a simple load balancing policy for the
+ratings service would look as follows:</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-ratings
+spec:
+ host: ratings.prod.svc.cluster.local
+ trafficPolicy:
+ loadBalancer:
+ simple: LEAST_CONN
+</code></pre>
+
+<p>Version specific policies can be specified by defining a named
+<code>subset</code> and overriding the settings specified at the service level. The
+following rule uses a round robin load balancing policy for all traffic
+going to a subset named testversion that is composed of endpoints (e.g.,
+pods) with labels (version:v3).</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-ratings
+spec:
+ host: ratings.prod.svc.cluster.local
+ trafficPolicy:
+ loadBalancer:
+ simple: LEAST_CONN
+ subsets:
+ - name: testversion
+ labels:
+ version: v3
+ trafficPolicy:
+ loadBalancer:
+ simple: ROUND_ROBIN
+</code></pre>
+
+<p><strong>Note:</strong> Policies specified for subsets will not take effect until
+a route rule explicitly sends traffic to this subset.</p>
+
+<p>Traffic policies can be customized to specific ports as well. The
+following rule uses the least connection load balancing policy for all
+traffic to port 80, while uses a round robin load balancing setting for
+traffic to the port 9080.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-ratings-port
+spec:
+ host: ratings.prod.svc.cluster.local
+ trafficPolicy: # Apply to all ports
+ portLevelSettings:
+ - port:
+ number: 80
+ loadBalancer:
+ simple: LEAST_CONN
+ - port:
+ number: 9080
+ loadBalancer:
+ simple: ROUND_ROBIN
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="DestinationRule.host">
+<td><code>host</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED. The name of a service from the service registry. Service
+names are looked up from the platform’s service registry (e.g.,
+Kubernetes services, Consul services, etc.) and from the hosts
+declared by <a href="#ServiceEntry">ServiceEntries</a>. Rules defined for
+services that do not exist in the service registry will be ignored.</p>
+
+<p><em>Note for Kubernetes users</em>: When short names are used (e.g. “reviews”
+instead of “reviews.default.svc.cluster.local”), Istio will interpret
+the short name based on the namespace of the rule, not the service. A
+rule in the “default” namespace containing a host “reviews will be
+interpreted as “reviews.default.svc.cluster.local”, irrespective of
+the actual namespace associated with the reviews service. <em>To avoid
+potential misconfigurations, it is recommended to always use fully
+qualified domain names over short names.</em></p>
+
+<p>Note that the host field applies to both HTTP and TCP services.</p>
+
+</td>
+</tr>
+<tr id="DestinationRule.traffic_policy">
+<td><code>trafficPolicy</code></td>
+<td><code><a href="#TrafficPolicy">TrafficPolicy</a></code></td>
+<td>
+<p>Traffic policies to apply (load balancing policy, connection pool
+sizes, outlier detection).</p>
+
+</td>
+</tr>
+<tr id="DestinationRule.subsets">
+<td><code>subsets</code></td>
+<td><code><a href="#Subset">Subset[]</a></code></td>
+<td>
+<p>One or more named sets that represent individual versions of a
+service. Traffic policies can be overridden at subset level.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="DestinationWeight">DestinationWeight</h2>
+<section>
+<p>Each routing rule is associated with one or more service versions (see
+glossary in beginning of document). Weights associated with the version
+determine the proportion of traffic it receives. For example, the
+following rule will route 25% of traffic for the “reviews” service to
+instances with the “v2” tag and the remaining traffic (i.e., 75%) to
+“v1”.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: reviews-route
+spec:
+ hosts:
+ - reviews.prod.svc.cluster.local
+ http:
+ - route:
+ - destination:
+ host: reviews.prod.svc.cluster.local
+ subset: v2
+ weight: 25
+ - destination:
+ host: reviews.prod.svc.cluster.local
+ subset: v1
+ weight: 75
+</code></pre>
+
+<p>And the associated DestinationRule</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: reviews-destination
+spec:
+ host: reviews.prod.svc.cluster.local
+ subsets:
+ - name: v1
+ labels:
+ version: v1
+ - name: v2
+ labels:
+ version: v2
+</code></pre>
+
+<p>Traffic can also be split across two entirely different services without
+having to define new subsets. For example, the following rule forwards 25% of
+traffic to reviews.com to dev.reviews.com</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: reviews-route-two-domains
+spec:
+ hosts:
+ - reviews.com
+ http:
+ - route:
+ - destination:
+ host: dev.reviews.com
+ weight: 25
+ - destination:
+ host: reviews.com
+ weight: 75
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="DestinationWeight.destination">
+<td><code>destination</code></td>
+<td><code><a href="#Destination">Destination</a></code></td>
+<td>
+<p>REQUIRED. Destination uniquely identifies the instances of a service
+to which the request/connection should be forwarded to.</p>
+
+</td>
+</tr>
+<tr id="DestinationWeight.weight">
+<td><code>weight</code></td>
+<td><code>int32</code></td>
+<td>
+<p>REQUIRED. The proportion of traffic to be forwarded to the service
+version. (0-100). Sum of weights across destinations SHOULD BE == 100.
+If there is only destination in a rule, the weight value is assumed to
+be 100.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Gateway">Gateway</h2>
+<section>
+<p><code>Gateway</code> describes a load balancer operating at the edge of the mesh
+receiving incoming or outgoing HTTP/TCP connections. The specification
+describes a set of ports that should be exposed, the type of protocol to
+use, SNI configuration for the load balancer, etc.</p>
+
+<p>For example, the following Gateway configuration sets up a proxy to act
+as a load balancer exposing port 80 and 9080 (http), 443 (https), and
+port 2379 (TCP) for ingress. The gateway will be applied to the proxy
+running on a pod with labels <code>app: my-gateway-controller</code>. While Istio
+will configure the proxy to listen on these ports, it is the
+responsibility of the user to ensure that external traffic to these
+ports are allowed into the mesh.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: Gateway
+metadata:
+ name: my-gateway
+spec:
+ selector:
+ app: my-gatweway-controller
+ servers:
+ - port:
+ number: 80
+ name: http
+ protocol: HTTP
+ hosts:
+ - uk.bookinfo.com
+ - eu.bookinfo.com
+ tls:
+ httpsRedirect: true # sends 302 redirect for http requests
+ - port:
+ number: 443
+ name: https
+ protocol: HTTPS
+ hosts:
+ - uk.bookinfo.com
+ - eu.bookinfo.com
+ tls:
+ mode: SIMPLE #enables HTTPS on this port
+ serverCertificate: /etc/certs/servercert.pem
+ privateKey: /etc/certs/privatekey.pem
+ - port:
+ number: 9080
+ name: http-wildcard
+ protocol: HTTP
+ # no hosts implies wildcard match
+ - port:
+ number: 2379 #to expose internal service via external port 2379
+ name: mongo
+ protocol: MONGO
+</code></pre>
+
+<p>The Gateway specification above describes the L4-L6 properties of a load
+balancer. A <code>VirtualService</code> can then be bound to a gateway to control
+the forwarding of traffic arriving at a particular host or gateway port.</p>
+
+<p>For example, the following VirtualService splits traffic for
+“https://uk.bookinfo.com/reviews”, “https://eu.bookinfo.com/reviews”,
+“http://uk.bookinfo.com:9080/reviews”,
+“http://eu.bookinfo.com:9080/reviews” into two versions (prod and qa) of
+an internal reviews service on port 9080. In addition, requests
+containing the cookie “user: dev-123” will be sent to special port 7777
+in the qa version. The same rule is also applicable inside the mesh for
+requests to the r”eviews.prod.svc.cluster.local” service. This rule is
+applicable across ports 443, 9080. Note that “http://uk.bookinfo.com”
+gets redirected to “https://uk.bookinfo.com” (i.e. 80 redirects to 443).</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: bookinfo-rule
+spec:
+ hosts:
+ - reviews.prod.svc.cluster.local
+ - uk.bookinfo.com
+ - eu.bookinfo.com
+ gateways:
+ - my-gateway
+ - mesh # applies to all the sidecars in the mesh
+ http:
+ - match:
+ - headers:
+ cookie:
+ user: dev-123
+ route:
+ - destination:
+ port:
+ number: 7777
+ name: reviews.qa.svc.cluster.local
+ - match:
+ uri:
+ prefix: /reviews/
+ route:
+ - destination:
+ port:
+ number: 9080 # can be omitted if its the only port for reviews
+ name: reviews.prod.svc.cluster.local
+ weight: 80
+ - destination:
+ name: reviews.qa.svc.cluster.local
+ weight: 20
+</code></pre>
+
+<p>The following VirtualService forwards traffic arriving at (external)
+port 27017 from “172.17.16.0/24” subnet to internal Mongo server on port
+5555. This rule is not applicable internally in the mesh as the gateway
+list omits the reserved name <code>mesh</code>.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: bookinfo-Mongo
+spec:
+ hosts:
+ - mongosvr.prod.svc.cluster.local #name of internal Mongo service
+ gateways:
+ - my-gateway
+ tcp:
+ - match:
+ - port:
+ number: 27017
+ sourceSubnet: "172.17.16.0/24"
+ route:
+ - destination:
+ name: mongo.prod.svc.cluster.local
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Gateway.servers">
+<td><code>servers</code></td>
+<td><code><a href="#Server">Server[]</a></code></td>
+<td>
+<p>REQUIRED: A list of server specifications.</p>
+
+</td>
+</tr>
+<tr id="Gateway.selector">
+<td><code>selector</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>One or more labels that indicate a specific set of pods/VMs
+on which this gateway configuration should be applied.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPFaultInjection">HTTPFaultInjection</h2>
+<section>
+<p>HTTPFaultInjection can be used to specify one or more faults to inject
+while forwarding http requests to the destination specified in a route.
+Fault specification is part of a VirtualService rule. Faults include
+aborting the Http request from downstream service, and/or delaying
+proxying of requests. A fault rule MUST HAVE delay or abort or both.</p>
+
+<p><em>Note:</em> Delay and abort faults are independent of one another, even if
+both are specified simultaneously.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPFaultInjection.delay">
+<td><code>delay</code></td>
+<td><code><a href="#HTTPFaultInjection.Delay">HTTPFaultInjection.Delay</a></code></td>
+<td>
+<p>Delay requests before forwarding, emulating various failures such as
+network issues, overloaded upstream service, etc.</p>
+
+</td>
+</tr>
+<tr id="HTTPFaultInjection.abort">
+<td><code>abort</code></td>
+<td><code><a href="#HTTPFaultInjection.Abort">HTTPFaultInjection.Abort</a></code></td>
+<td>
+<p>Abort Http request attempts and return error codes back to downstream
+service, giving the impression that the upstream service is faulty.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPFaultInjection.Abort">HTTPFaultInjection.Abort</h2>
+<section>
+<p>Abort specification is used to prematurely abort a request with a
+pre-specified error code. The following example will return an HTTP
+400 error code for 10% of the requests to the “ratings” service “v1”.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: ratings-route
+spec:
+ hosts:
+ - ratings.prod.svc.cluster.local
+ http:
+ - route:
+ - destination:
+ host: ratings.prod.svc.cluster.local
+ subset: v1
+ fault:
+ abort:
+ percent: 10
+ httpStatus: 400
+</code></pre>
+
+<p>The <em>httpStatus</em> field is used to indicate the HTTP status code to
+return to the caller. The optional <em>percent</em> field, a value between 0
+and 100, is used to only abort a certain percentage of requests. If
+not specified, all requests are aborted.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPFaultInjection.Abort.percent">
+<td><code>percent</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Percentage of requests to be aborted with the error code provided (0-100).</p>
+
+</td>
+</tr>
+<tr id="HTTPFaultInjection.Abort.http_status" class="oneof oneof-start">
+<td><code>httpStatus</code></td>
+<td><code>int32 (oneof)</code></td>
+<td>
+<p>REQUIRED. HTTP status code to use to abort the Http request.</p>
+
+</td>
+</tr>
+<tr id="HTTPFaultInjection.Abort.grpc_status" class="oneof">
+<td><code>grpcStatus</code></td>
+<td><code>string (oneof)</code></td>
+<td>
+<p>(– NOT IMPLEMENTED –)</p>
+
+</td>
+</tr>
+<tr id="HTTPFaultInjection.Abort.http2_error" class="oneof">
+<td><code>http2Error</code></td>
+<td><code>string (oneof)</code></td>
+<td>
+<p>(– NOT IMPLEMENTED –)</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPFaultInjection.Delay">HTTPFaultInjection.Delay</h2>
+<section>
+<p>Delay specification is used to inject latency into the request
+forwarding path. The following example will introduce a 5 second delay
+in 10% of the requests to the “v1” version of the “reviews”
+service from all pods with label env: prod</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: reviews-route
+spec:
+ hosts:
+ - reviews.prod.svc.cluster.local
+ http:
+ - match:
+ - sourceLabels:
+ env: prod
+ route:
+ - destination:
+ host: reviews.prod.svc.cluster.local
+ subset: v1
+ fault:
+ delay:
+ percent: 10
+ fixedDelay: 5s
+</code></pre>
+
+<p>The <em>fixedDelay</em> field is used to indicate the amount of delay in
+seconds. An optional <em>percent</em> field, a value between 0 and 100, can
+be used to only delay a certain percentage of requests. If left
+unspecified, all request will be delayed.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPFaultInjection.Delay.percent">
+<td><code>percent</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Percentage of requests on which the delay will be injected (0-100).</p>
+
+</td>
+</tr>
+<tr id="HTTPFaultInjection.Delay.fixed_delay" class="oneof oneof-start">
+<td><code>fixedDelay</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration (oneof)</a></code></td>
+<td>
+<p>REQUIRED. Add a fixed delay before forwarding the request. Format:
+1h/1m/1s/1ms. MUST be >=1ms.</p>
+
+</td>
+</tr>
+<tr id="HTTPFaultInjection.Delay.exponential_delay" class="oneof">
+<td><code>exponentialDelay</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration (oneof)</a></code></td>
+<td>
+<p>(– Add a delay (based on an exponential function) before forwarding
+the request. mean delay needed to derive the exponential delay
+values –)</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPMatchRequest">HTTPMatchRequest</h2>
+<section>
+<p>HttpMatchRequest specifies a set of criterion to be met in order for the
+rule to be applied to the HTTP request. For example, the following
+restricts the rule to match only requests where the URL path
+starts with /ratings/v2/ and the request contains a <code>cookie</code> with value
+<code>user=jason</code>.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: ratings-route
+spec:
+ hosts:
+ - ratings.prod.svc.cluster.local
+ http:
+ - match:
+ - headers:
+ cookie:
+ regex: "^(.*?;)?(user=jason)(;.*)?"
+ uri:
+ prefix: "/ratings/v2/"
+ route:
+ - destination:
+ host: ratings.prod.svc.cluster.local
+</code></pre>
+
+<p>HTTPMatchRequest CANNOT be empty.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPMatchRequest.uri">
+<td><code>uri</code></td>
+<td><code><a href="#StringMatch">StringMatch</a></code></td>
+<td>
+<p>URI to match
+values are case-sensitive and formatted as follows:</p>
+
+<ul>
+<li><p><code>exact: "value"</code> for exact string match</p></li>
+
+<li><p><code>prefix: "value"</code> for prefix-based match</p></li>
+
+<li><p><code>regex: "value"</code> for ECMAscript style regex-based match</p></li>
+</ul>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.scheme">
+<td><code>scheme</code></td>
+<td><code><a href="#StringMatch">StringMatch</a></code></td>
+<td>
+<p>URI Scheme
+values are case-sensitive and formatted as follows:</p>
+
+<ul>
+<li><p><code>exact: "value"</code> for exact string match</p></li>
+
+<li><p><code>prefix: "value"</code> for prefix-based match</p></li>
+
+<li><p><code>regex: "value"</code> for ECMAscript style regex-based match</p></li>
+</ul>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.method">
+<td><code>method</code></td>
+<td><code><a href="#StringMatch">StringMatch</a></code></td>
+<td>
+<p>HTTP Method
+values are case-sensitive and formatted as follows:</p>
+
+<ul>
+<li><p><code>exact: "value"</code> for exact string match</p></li>
+
+<li><p><code>prefix: "value"</code> for prefix-based match</p></li>
+
+<li><p><code>regex: "value"</code> for ECMAscript style regex-based match</p></li>
+</ul>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.authority">
+<td><code>authority</code></td>
+<td><code><a href="#StringMatch">StringMatch</a></code></td>
+<td>
+<p>HTTP Authority
+values are case-sensitive and formatted as follows:</p>
+
+<ul>
+<li><p><code>exact: "value"</code> for exact string match</p></li>
+
+<li><p><code>prefix: "value"</code> for prefix-based match</p></li>
+
+<li><p><code>regex: "value"</code> for ECMAscript style regex-based match</p></li>
+</ul>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.headers">
+<td><code>headers</code></td>
+<td><code>map<string, <a href="#StringMatch">StringMatch</a>></code></td>
+<td>
+<p>The header keys must be lowercase and use hyphen as the separator,
+e.g. <em>x-request-id</em>.</p>
+
+<p>Header values are case-sensitive and formatted as follows:</p>
+
+<ul>
+<li><p><code>exact: "value"</code> for exact string match</p></li>
+
+<li><p><code>prefix: "value"</code> for prefix-based match</p></li>
+
+<li><p><code>regex: "value"</code> for ECMAscript style regex-based match</p></li>
+</ul>
+
+<p><strong>Note:</strong> The keys <code>uri</code>, <code>scheme</code>, <code>method</code>, and <code>authority</code> will be ignored.</p>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.port">
+<td><code>port</code></td>
+<td><code>uint32</code></td>
+<td>
+<p>Specifies the ports on the host that is being addressed. Many services
+only expose a single port or label ports with the protocols they support,
+in these cases it is not required to explicitly select the port.</p>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.source_labels">
+<td><code>sourceLabels</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>One or more labels that constrain the applicability of a rule to
+workloads with the given labels. If the VirtualService has a list of
+gateways specified at the top, it should include the reserved gateway
+<code>mesh</code> in order for this field to be applicable.</p>
+
+</td>
+</tr>
+<tr id="HTTPMatchRequest.gateways">
+<td><code>gateways</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>Names of gateways where the rule should be applied to. Gateway names
+at the top of the VirtualService (if any) are overridden. The gateway match is
+independent of sourceLabels.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPRedirect">HTTPRedirect</h2>
+<section>
+<p>HTTPRedirect can be used to send a 302 redirect response to the caller,
+where the Authority/Host and the URI in the response can be swapped with
+the specified values. For example, the following rule redirects
+requests for /v1/getProductRatings API on the ratings service to
+/v1/bookRatings provided by the bookratings service.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: ratings-route
+spec:
+ hosts:
+ - ratings.prod.svc.cluster.local
+ http:
+ - match:
+ - uri:
+ exact: /v1/getProductRatings
+ redirect:
+ uri: /v1/bookRatings
+ authority: newratings.default.svc.cluster.local
+ ...
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPRedirect.uri">
+<td><code>uri</code></td>
+<td><code>string</code></td>
+<td>
+<p>On a redirect, overwrite the Path portion of the URL with this
+value. Note that the entire path will be replaced, irrespective of the
+request URI being matched as an exact path or prefix.</p>
+
+</td>
+</tr>
+<tr id="HTTPRedirect.authority">
+<td><code>authority</code></td>
+<td><code>string</code></td>
+<td>
+<p>On a redirect, overwrite the Authority/Host portion of the URL with
+this value.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPRetry">HTTPRetry</h2>
+<section>
+<p>Describes the retry policy to use when a HTTP request fails. For
+example, the following rule sets the maximum number of retries to 3 when
+calling ratings:v1 service, with a 2s timeout per retry attempt.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: ratings-route
+spec:
+ hosts:
+ - ratings.prod.svc.cluster.local
+ http:
+ - route:
+ - destination:
+ host: ratings.prod.svc.cluster.local
+ subset: v1
+ retries:
+ attempts: 3
+ perTryTimeout: 2s
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPRetry.attempts">
+<td><code>attempts</code></td>
+<td><code>int32</code></td>
+<td>
+<p>REQUIRED. Number of retries for a given request. The interval
+between retries will be determined automatically (25ms+). Actual
+number of retries attempted depends on the httpReqTimeout.</p>
+
+</td>
+</tr>
+<tr id="HTTPRetry.per_try_timeout">
+<td><code>perTryTimeout</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
+<td>
+<p>Timeout per retry attempt for a given request. format: 1h/1m/1s/1ms. MUST BE >=1ms.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPRewrite">HTTPRewrite</h2>
+<section>
+<p>HTTPRewrite can be used to rewrite specific parts of a HTTP request
+before forwarding the request to the destination. Rewrite primitive can
+be used only with the DestinationWeights. The following example
+demonstrates how to rewrite the URL prefix for api call (/ratings) to
+ratings service before making the actual API call.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: ratings-route
+spec:
+ hosts:
+ - ratings.prod.svc.cluster.local
+ http:
+ - match:
+ - uri:
+ prefix: /ratings
+ rewrite:
+ uri: /v1/bookRatings
+ route:
+ - destination:
+ host: ratings.prod.svc.cluster.local
+ subset: v1
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPRewrite.uri">
+<td><code>uri</code></td>
+<td><code>string</code></td>
+<td>
+<p>rewrite the path (or the prefix) portion of the URI with this
+value. If the original URI was matched based on prefix, the value
+provided in this field will replace the corresponding matched prefix.</p>
+
+</td>
+</tr>
+<tr id="HTTPRewrite.authority">
+<td><code>authority</code></td>
+<td><code>string</code></td>
+<td>
+<p>rewrite the Authority/Host header with this value.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="HTTPRoute">HTTPRoute</h2>
+<section>
+<p>Describes match conditions and actions for routing HTTP/1.1, HTTP2, and
+gRPC traffic. See VirtualService for usage examples.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="HTTPRoute.match">
+<td><code>match</code></td>
+<td><code><a href="#HTTPMatchRequest">HTTPMatchRequest[]</a></code></td>
+<td>
+<p>Match conditions to be satisfied for the rule to be
+activated. All conditions inside a single match block have AND
+semantics, while the list of match blocks have OR semantics. The rule
+is matched if any one of the match blocks succeed.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.route">
+<td><code>route</code></td>
+<td><code><a href="#DestinationWeight">DestinationWeight[]</a></code></td>
+<td>
+<p>A http rule can either redirect or forward (default) traffic. The
+forwarding target can be one of several versions of a service (see
+glossary in beginning of document). Weights associated with the
+service version determine the proportion of traffic it receives.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.redirect">
+<td><code>redirect</code></td>
+<td><code><a href="#HTTPRedirect">HTTPRedirect</a></code></td>
+<td>
+<p>A http rule can either redirect or forward (default) traffic. If
+traffic passthrough option is specified in the rule,
+route/redirect will be ignored. The redirect primitive can be used to
+send a HTTP 302 redirect to a different URI or Authority.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.rewrite">
+<td><code>rewrite</code></td>
+<td><code><a href="#HTTPRewrite">HTTPRewrite</a></code></td>
+<td>
+<p>Rewrite HTTP URIs and Authority headers. Rewrite cannot be used with
+Redirect primitive. Rewrite will be performed before forwarding.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.websocket_upgrade">
+<td><code>websocketUpgrade</code></td>
+<td><code>bool</code></td>
+<td>
+<p>Indicates that a HTTP/1.1 client connection to this particular route
+should be allowed (and expected) to upgrade to a WebSocket connection.
+The default is false. Istio’s reference sidecar implementation (Envoy)
+expects the first request to this route to contain the WebSocket
+upgrade headers. Otherwise, the request will be rejected. Note that
+Websocket allows secondary protocol negotiation which may then be
+subject to further routing rules based on the protocol selected.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.timeout">
+<td><code>timeout</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
+<td>
+<p>Timeout for HTTP requests.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.retries">
+<td><code>retries</code></td>
+<td><code><a href="#HTTPRetry">HTTPRetry</a></code></td>
+<td>
+<p>Retry policy for HTTP requests.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.fault">
+<td><code>fault</code></td>
+<td><code><a href="#HTTPFaultInjection">HTTPFaultInjection</a></code></td>
+<td>
+<p>Fault injection policy to apply on HTTP traffic.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.mirror">
+<td><code>mirror</code></td>
+<td><code><a href="#Destination">Destination</a></code></td>
+<td>
+<p>Mirror HTTP traffic to a another destination in addition to forwarding
+the requests to the intended destination. Mirrored traffic is on a
+best effort basis where the sidecar/gateway will not wait for the
+mirrored cluster to respond before returning the response from the
+original destination. Statistics will be generated for the mirrored
+destination.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.cors_policy">
+<td><code>corsPolicy</code></td>
+<td><code><a href="#CorsPolicy">CorsPolicy</a></code></td>
+<td>
+<p>Cross-Origin Resource Sharing policy (CORS). Refer to
+https://developer.mozilla.org/en-US/docs/Web/HTTP/Access<em>control</em>CORS
+for further details about cross origin resource sharing.</p>
+
+</td>
+</tr>
+<tr id="HTTPRoute.append_headers">
+<td><code>appendHeaders</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>Additional HTTP headers to add before forwarding a request to the
+destination service.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="L4MatchAttributes">L4MatchAttributes</h2>
+<section>
+<p>L4 connection match attributes. Note that L4 connection matching support
+is incomplete.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="L4MatchAttributes.destination_subnet">
+<td><code>destinationSubnet</code></td>
+<td><code>string</code></td>
+<td>
+<p>IPv4 or IPv6 ip address of destination with optional subnet. E.g.,
+a.b.c.d/xx form or just a.b.c.d. This is only valid when the
+destination service has several IPs and the application explicitly
+specifies a particular IP.</p>
+
+</td>
+</tr>
+<tr id="L4MatchAttributes.port">
+<td><code>port</code></td>
+<td><code>uint32</code></td>
+<td>
+<p>Specifies the port on the host that is being addressed. Many services
+only expose a single port or label ports with the protocols they support,
+in these cases it is not required to explicitly select the port.</p>
+
+</td>
+</tr>
+<tr id="L4MatchAttributes.source_subnet">
+<td><code>sourceSubnet</code></td>
+<td><code>string</code></td>
+<td>
+<p>IPv4 or IPv6 ip address of source with optional subnet. E.g., a.b.c.d/xx
+form or just a.b.c.d</p>
+
+</td>
+</tr>
+<tr id="L4MatchAttributes.source_labels">
+<td><code>sourceLabels</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>One or more labels that constrain the applicability of a rule to
+workloads with the given labels. If the VirtualService has a list of
+gateways specified at the top, it should include the reserved gateway
+<code>mesh</code> in order for this field to be applicable.</p>
+
+</td>
+</tr>
+<tr id="L4MatchAttributes.gateways">
+<td><code>gateways</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>Names of gateways where the rule should be applied to. Gateway names
+at the top of the VirtualService (if any) are overridden. The gateway match is
+independent of sourceLabels.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="LoadBalancerSettings">LoadBalancerSettings</h2>
+<section>
+<p>Load balancing policies to apply for a specific destination. See Envoy’s
+load balancing
+<a href="https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overview/load_balancing.html">documentation</a>
+for more details.</p>
+
+<p>For example, the following rule uses a round robin load balancing policy
+for all traffic going to the ratings service.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-ratings
+spec:
+ host: ratings.prod.svc.cluster.local
+ trafficPolicy:
+ loadBalancer:
+ simple: ROUND_ROBIN
+</code></pre>
+
+<p>The following example uses the consistent hashing based load balancer
+for the same ratings service using the Cookie header as the hash key.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-ratings
+spec:
+ host: ratings.prod.svc.cluster.local
+ trafficPolicy:
+ loadBalancer:
+ consistentHash:
+ http_header: Cookie
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="LoadBalancerSettings.simple" class="oneof oneof-start">
+<td><code>simple</code></td>
+<td><code><a href="#LoadBalancerSettings.SimpleLB">LoadBalancerSettings.SimpleLB (oneof)</a></code></td>
+<td>
+</td>
+</tr>
+<tr id="LoadBalancerSettings.consistent_hash" class="oneof">
+<td><code>consistentHash</code></td>
+<td><code><a href="#LoadBalancerSettings.ConsistentHashLB">LoadBalancerSettings.ConsistentHashLB (oneof)</a></code></td>
+<td>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="LoadBalancerSettings.ConsistentHashLB">LoadBalancerSettings.ConsistentHashLB</h2>
+<section>
+<p>Consistent hashing (ketama hash) based load balancer for even load
+distribution/redistribution when the connection pool changes. This
+load balancing policy is applicable only for HTTP-based
+connections. A user specified HTTP header is used as the key with
+<a href="http://cyan4973.github.io/xxHash">xxHash</a> hashing.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="LoadBalancerSettings.ConsistentHashLB.http_header">
+<td><code>httpHeader</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED. The name of the HTTP request header that will be used to
+obtain the hash key. If the request header is not present, the load
+balancer will use a random number as the hash, effectively making
+the load balancing policy random.</p>
+
+</td>
+</tr>
+<tr id="LoadBalancerSettings.ConsistentHashLB.minimum_ring_size">
+<td><code>minimumRingSize</code></td>
+<td><code>uint32</code></td>
+<td>
+<p>The minimum number of virtual nodes to use for the hash
+ring. Defaults to 1024. Larger ring sizes result in more granular
+load distributions. If the number of hosts in the load balancing
+pool is larger than the ring size, each host will be assigned a
+single virtual node.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="LoadBalancerSettings.SimpleLB">LoadBalancerSettings.SimpleLB</h2>
+<section>
+<p>Standard load balancing algorithms that require no tuning.</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="LoadBalancerSettings.SimpleLB.ROUND_ROBIN">
+<td><code>ROUND_ROBIN</code></td>
+<td>
+<p>Round Robin policy. Default</p>
+
+</td>
+</tr>
+<tr id="LoadBalancerSettings.SimpleLB.LEAST_CONN">
+<td><code>LEAST_CONN</code></td>
+<td>
+<p>The least request load balancer uses an O(1) algorithm which selects
+two random healthy hosts and picks the host which has fewer active
+requests.</p>
+
+</td>
+</tr>
+<tr id="LoadBalancerSettings.SimpleLB.RANDOM">
+<td><code>RANDOM</code></td>
+<td>
+<p>The random load balancer selects a random healthy host. The random
+load balancer generally performs better than round robin if no health
+checking policy is configured.</p>
+
+</td>
+</tr>
+<tr id="LoadBalancerSettings.SimpleLB.PASSTHROUGH">
+<td><code>PASSTHROUGH</code></td>
+<td>
+<p>This option will forward the connection to the original IP address
+requested by the caller without doing any form of load
+balancing. This option must be used with care. It is meant for
+advanced use cases. Refer to Original Destination load balancer in
+Envoy for further details.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="OutlierDetection">OutlierDetection</h2>
+<section>
+<p>A Circuit breaker implementation that tracks the status of each
+individual host in the upstream service. While currently applicable to
+only HTTP services, future versions will support opaque TCP services as
+well. For HTTP services, hosts that continually return errors for API
+calls are ejected from the pool for a pre-defined period of time. See
+Envoy’s <a href="https://www.envoyproxy.io/docs/envoy/latest/intro/arch_overview/outlier">outlier
+detection</a>
+for more details.</p>
+
+<p>The following rule sets a connection pool size of 100 connections and
+1000 concurrent HTTP2 requests, with no more than 10 req/connection to
+“reviews” service. In addition, it configures upstream hosts to be
+scanned every 5 mins, such that any host that fails 7 consecutive times
+with 5XX error code will be ejected for 15 minutes.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: reviews-cb-policy
+spec:
+ host: reviews.prod.svc.cluster.local
+ trafficPolicy:
+ connectionPool:
+ tcp:
+ maxConnections: 100
+ http:
+ http2MaxRequests: 1000
+ maxRequestsPerConnection: 10
+ outlierDetection:
+ http:
+ consecutiveErrors: 7
+ interval: 5m
+ baseEjectionTime: 15m
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="OutlierDetection.http">
+<td><code>http</code></td>
+<td><code><a href="#OutlierDetection.HTTPSettings">OutlierDetection.HTTPSettings</a></code></td>
+<td>
+<p>Settings for HTTP1.1/HTTP2/GRPC connections.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="OutlierDetection.HTTPSettings">OutlierDetection.HTTPSettings</h2>
+<section>
+<p>Outlier detection settings for HTTP1.1/HTTP2/GRPC connections.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="OutlierDetection.HTTPSettings.consecutive_errors">
+<td><code>consecutiveErrors</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Number of 5XX errors before a host is ejected from the connection
+pool. Defaults to 5.</p>
+
+</td>
+</tr>
+<tr id="OutlierDetection.HTTPSettings.interval">
+<td><code>interval</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
+<td>
+<p>Time interval between ejection sweep analysis. format:
+1h/1m/1s/1ms. MUST BE >=1ms. Default is 10s.</p>
+
+</td>
+</tr>
+<tr id="OutlierDetection.HTTPSettings.base_ejection_time">
+<td><code>baseEjectionTime</code></td>
+<td><code><a href="https://developers.google.com/protocol-buffers/docs/reference/google.protobuf#duration">google.protobuf.Duration</a></code></td>
+<td>
+<p>Minimum ejection duration. A host will remain ejected for a period
+equal to the product of minimum ejection duration and the number of
+times the host has been ejected. This technique allows the system to
+automatically increase the ejection period for unhealthy upstream
+servers. format: 1h/1m/1s/1ms. MUST BE >=1ms. Default is 30s.</p>
+
+</td>
+</tr>
+<tr id="OutlierDetection.HTTPSettings.max_ejection_percent">
+<td><code>maxEjectionPercent</code></td>
+<td><code>int32</code></td>
+<td>
+<p>Maximum % of hosts in the load balancing pool for the upstream
+service that can be ejected. Defaults to 10%.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Port">Port</h2>
+<section>
+<p>Port describes the properties of a specific port of a service.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Port.number">
+<td><code>number</code></td>
+<td><code>uint32</code></td>
+<td>
+<p>REQUIRED: A valid non-negative integer port number.</p>
+
+</td>
+</tr>
+<tr id="Port.protocol">
+<td><code>protocol</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED: The protocol exposed on the port.
+MUST BE one of HTTP|HTTPS|GRPC|HTTP2|MONGO|TCP|TCP-TLS.
+TCP-TLS is used to indicate secure connections to non HTTP services.</p>
+
+</td>
+</tr>
+<tr id="Port.name">
+<td><code>name</code></td>
+<td><code>string</code></td>
+<td>
+<p>Label assigned to the port.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="PortSelector">PortSelector</h2>
+<section>
+<p>PortSelector specifies the name or number of a port to be used for
+matching or selection for final routing.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="PortSelector.number" class="oneof oneof-start">
+<td><code>number</code></td>
+<td><code>uint32 (oneof)</code></td>
+<td>
+<p>Valid port number</p>
+
+</td>
+</tr>
+<tr id="PortSelector.name" class="oneof">
+<td><code>name</code></td>
+<td><code>string (oneof)</code></td>
+<td>
+<p>Port name</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Server">Server</h2>
+<section>
+<p><code>Server</code> describes the properties of the proxy on a given load balancer
+port. For example,</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: Gateway
+metadata:
+ name: my-ingress
+spec:
+ selector:
+ app: my-ingress-gateway
+ servers:
+ - port:
+ number: 80
+ name: http2
+ protocol: HTTP2
+</code></pre>
+
+<p>Another example</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: Gateway
+metadata:
+ name: my-tcp-ingress
+spec:
+ selector:
+ app: my-tcp-ingress-gateway
+ servers:
+ - port:
+ number: 27018
+ name: mongo
+ protocol: MONGO
+</code></pre>
+
+<p>The following is an example of TLS configuration for port 443</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: Gateway
+metadata:
+ name: my-tls-ingress
+spec:
+ selector:
+ app: my-tls-ingress-gateway
+ servers:
+ - port:
+ number: 443
+ name: https
+ protocol: HTTPS
+ tls:
+ mode: SIMPLE
+ serverCertificate: /etc/certs/server.pem
+ privateKey: /etc/certs/privatekey.pem
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Server.port">
+<td><code>port</code></td>
+<td><code><a href="#Port">Port</a></code></td>
+<td>
+<p>REQUIRED: The Port on which the proxy should listen for incoming
+connections</p>
+
+</td>
+</tr>
+<tr id="Server.hosts">
+<td><code>hosts</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>A list of hosts exposed by this gateway. While typically applicable to
+HTTP services, it can also be used for TCP services using TLS with
+SNI. Standard DNS wildcard prefix syntax is permitted.</p>
+
+<p><strong>Note</strong>: A <code>VirtualService</code> that is bound to a gateway must have one
+or more hosts that match the hosts specified in a server. The match
+could be an exact match or a suffix match with the server’s hosts. For
+example, if the server’s hosts specifies “*.example.com”,
+VirtualServices with hosts dev.example.com, prod.example.com will
+match. However, VirtualServices with hosts example.com or
+newexample.com will not match.</p>
+
+</td>
+</tr>
+<tr id="Server.tls">
+<td><code>tls</code></td>
+<td><code><a href="#Server.TLSOptions">Server.TLSOptions</a></code></td>
+<td>
+<p>Set of TLS related options that govern the server’s behavior. Use
+these options to control if all http requests should be redirected to
+https, and the TLS modes to use.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Server.TLSOptions">Server.TLSOptions</h2>
+<section>
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Server.TLSOptions.https_redirect">
+<td><code>httpsRedirect</code></td>
+<td><code>bool</code></td>
+<td>
+<p>If set to true, the load balancer will send a 302 redirect for all
+http connections, asking the clients to use HTTPS.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.mode">
+<td><code>mode</code></td>
+<td><code><a href="#Server.TLSOptions.TLSmode">Server.TLSOptions.TLSmode</a></code></td>
+<td>
+<p>Optional: Indicates whether connections to this port should be
+secured using TLS. The value of this field determines how TLS is
+enforced.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.server_certificate">
+<td><code>serverCertificate</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED if mode is <code>SIMPLE</code> or <code>MUTUAL</code>. The path to the file
+holding the server-side TLS certificate to use.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.private_key">
+<td><code>privateKey</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED if mode is <code>SIMPLE</code> or <code>MUTUAL</code>. The path to the file
+holding the server’s private key.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.ca_certificates">
+<td><code>caCertificates</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED if mode is <code>MUTUAL</code>. The path to a file containing
+certificate authority certificates to use in verifying a presented
+client side certificate.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.subject_alt_names">
+<td><code>subjectAltNames</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>A list of alternate names to verify the subject identity in the
+certificate presented by the client.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Server.TLSOptions.TLSmode">Server.TLSOptions.TLSmode</h2>
+<section>
+<p>TLS modes enforced by the proxy</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Server.TLSOptions.TLSmode.PASSTHROUGH">
+<td><code>PASSTHROUGH</code></td>
+<td>
+<p>Forward the connection to the upstream server selected based on
+the SNI string presented by the client.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.TLSmode.SIMPLE">
+<td><code>SIMPLE</code></td>
+<td>
+<p>Secure connections with standard TLS semantics.</p>
+
+</td>
+</tr>
+<tr id="Server.TLSOptions.TLSmode.MUTUAL">
+<td><code>MUTUAL</code></td>
+<td>
+<p>Secure connections to the upstream using mutual TLS by presenting
+client certificates for authentication.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ServiceEntry">ServiceEntry</h2>
+<section>
+<p><code>ServiceEntry</code> enables adding additional entries into Istio’s internal
+service registry, so that auto-discovered services in the mesh can
+access/route to these manually specified services. A service entry
+describes the properties of a service (DNS name, VIPs ,ports, protocols,
+endpoints). These services could be external to the mesh (e.g., web
+APIs) or mesh-internal services that are not part of the platform’s
+service registry (e.g., a set of VMs talking to services in Kubernetes).</p>
+
+<p>The following configuration adds a set of MongoDB instances running on
+unmanaged VMs to Istio’s registry, so that these services can be treated
+as any other service in the mesh. The associated DestinationRule is used
+to initiate mTLS connections to the database instances.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: ServiceEntry
+metadata:
+ name: external-svc-mongocluster
+spec:
+ hosts:
+ - mymongodb.somedomain # not used
+ addresses:
+ - 192.192.192.192/24 # VIPs
+ ports:
+ - number: 27018
+ name: mongodb
+ protocol: MONGO
+ location: MESH_INTERNAL
+ resolution: STATIC
+ endpoints:
+ - address: 2.2.2.2
+ - address: 3.3.3.3
+</code></pre>
+
+<p>and the associated DestinationRule</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: mtls-mongocluster
+spec:
+ host: mymongodb.somedomain
+ trafficPolicy:
+ tls:
+ mode: MUTUAL
+ clientCertificate: /etc/certs/myclientcert.pem
+ privateKey: /etc/certs/client_private_key.pem
+ caCertificates: /etc/certs/rootcacerts.pem
+</code></pre>
+
+<p>The following example demonstrates the use of wildcards in the hosts for
+external services. If the connection has to be routed to the IP address
+requested by the application (i.e. application resolves DNS and attempts
+to connect to a specific IP), the discovery mode must be set to <code>NONE</code>.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: ServiceEntry
+metadata:
+ name: external-svc-wildcard-example
+spec:
+ hosts:
+ - "*.bar.com"
+ location: MESH_EXTERNAL
+ ports:
+ - number: 80
+ name: http
+ protocol: HTTP
+ resolution: NONE
+</code></pre>
+
+<p>For HTTP based services, it is possible to create a VirtualService
+backed by multiple DNS addressable endpoints. In such a scenario, the
+application can use the HTTP_PROXY environment variable to transparently
+reroute API calls for the VirtualService to a chosen backend. For
+example, the following configuration creates a non-existent external
+service called foo.bar.com backed by three domains: us.foo.bar.com:8443,
+uk.foo.bar.com:9443, and in.foo.bar.com:7443</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: ServiceEntry
+metadata:
+ name: external-svc-dns
+spec:
+ hosts:
+ - foo.bar.com
+ location: MESH_EXTERNAL
+ ports:
+ - number: 443
+ name: https
+ protocol: HTTP
+ resolution: DNS
+ endpoints:
+ - address: us.foo.bar.com
+ ports:
+ https: 8443
+ - address: uk.foo.bar.com
+ ports:
+ https: 9443
+ - address: in.foo.bar.com
+ ports:
+ https: 7443
+</code></pre>
+
+<p>and a DestinationRule to initiate TLS connections to the ServiceEntry.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: tls-foobar
+spec:
+ host: foo.bar.com
+ trafficPolicy:
+ tls:
+ mode: SIMPLE # initiates HTTPS
+</code></pre>
+
+<p>With HTTP_PROXY=http://localhost:443, calls from the application to
+http://foo.bar.com will be upgraded to HTTPS and load balanced across
+the three domains specified above. In other words, a call to
+http://foo.bar.com/baz would be translated to
+https://uk.foo.bar.com/baz.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ServiceEntry.hosts">
+<td><code>hosts</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>REQUIRED. The hosts associated with the ServiceEntry. Could be a DNS
+name with wildcard prefix (external services only). DNS names in hosts
+will be ignored if the application accesses the service over non-HTTP
+protocols such as mongo/opaque TCP/even HTTPS. In such scenarios, the
+IP addresses specified in the Addresses field or the port will be used
+to uniquely identify the destination.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.addresses">
+<td><code>addresses</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>The virtual IP addresses associated with the service. Could be CIDR
+prefix. For HTTP services, the addresses field will be ignored and
+the destination will be identified based on the HTTP Host/Authority
+header. For non-HTTP protocols such as mongo/opaque TCP/even HTTPS,
+the hosts will be ignored. If one or more IP addresses are specified,
+the incoming traffic will be idenfified as belonging to this service
+if the destination IP matches the IP/CIDRs specified in the addresses
+field. If the Addresses field is empty, traffic will be identified
+solely based on the destination port. In such scenarios, the port on
+which the service is being accessed must not be shared by any other
+service in the mesh. In other words, the sidecar will behave as a
+simple TCP proxy, forwarding incoming traffic on a specified port to
+the specified destination endpoint IP/host.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.ports">
+<td><code>ports</code></td>
+<td><code><a href="#Port">Port[]</a></code></td>
+<td>
+<p>REQUIRED. The ports associated with the external service.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.location">
+<td><code>location</code></td>
+<td><code><a href="#ServiceEntry.Location">ServiceEntry.Location</a></code></td>
+<td>
+<p>Specify whether the service should be considered external to the mesh
+or part of the mesh.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.resolution">
+<td><code>resolution</code></td>
+<td><code><a href="#ServiceEntry.Resolution">ServiceEntry.Resolution</a></code></td>
+<td>
+<p>Service discovery mode for the hosts. If not set, Istio will attempt
+to infer the discovery mode based on the value of hosts and endpoints.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.endpoints">
+<td><code>endpoints</code></td>
+<td><code><a href="#ServiceEntry.Endpoint">ServiceEntry.Endpoint[]</a></code></td>
+<td>
+<p>One or more endpoints associated with the service.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ServiceEntry.Endpoint">ServiceEntry.Endpoint</h2>
+<section>
+<p>Endpoint defines a network address (IP or hostname) associated with
+the mesh service.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ServiceEntry.Endpoint.address">
+<td><code>address</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED: Address associated with the network endpoint without the
+port ( IP or fully qualified domain name without wildcards). Domain
+names can be used if and only if the resolution is set to DNS.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.Endpoint.ports">
+<td><code>ports</code></td>
+<td><code>map<string, uint32></code></td>
+<td>
+<p>Set of ports associated with the endpoint. The ports must be
+associated with a port name that was declared as part of the
+service.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.Endpoint.labels">
+<td><code>labels</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>One or more labels associated with the endpoint.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ServiceEntry.Location">ServiceEntry.Location</h2>
+<section>
+<p>Location specifies whether the service is part of Istio mesh or
+outside the mesh. Location determines the behavior of several
+features, such as service-to-service mTLS authentication, policy
+enforcement, etc. When communicating with services outside the mesh,
+Istio’s mTLS authentication is disabled, and policy enforcement is
+performed on the client-side as opposed to server-side.</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ServiceEntry.Location.MESH_EXTERNAL">
+<td><code>MESH_EXTERNAL</code></td>
+<td>
+<p>Signifies that the service is external to the mesh. Typically used
+to indicate external services consumed through APIs.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.Location.MESH_INTERNAL">
+<td><code>MESH_INTERNAL</code></td>
+<td>
+<p>Signifies that the service is part of the mesh. Typically used to
+indicate services added explicitly as part of expanding the service
+mesh to include unmanaged infrastructure (e.g., VMs added to a
+Kubernetes based service mesh).</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ServiceEntry.Resolution">ServiceEntry.Resolution</h2>
+<section>
+<p>Resolution determines how the proxy will resolve the IP addresses of
+the network endpoints associated with the service, so that it can
+route to one of them. The resolution mode specified here has no impact
+on how the application resolves the IP address associated with the
+service. The application may still have to use DNS to resolve the
+service to an IP so that the outbound traffic can be captured by the
+Proxy. Alternatively, for HTTP services, the application could
+directly communicate with the proxy (e.g., by setting HTTP_PROXY) to
+talk to these services.</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ServiceEntry.Resolution.NONE">
+<td><code>NONE</code></td>
+<td>
+<p>Assume that incoming connections have already been resolved (to a
+specific destination IP address). Such connections are typically
+routed via the proxy using mechanisms such as IP table REDIRECT/
+eBPF. After performing any routing related transformations, the
+proxy will forward the connection to the IP address to which the
+connection was bound.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.Resolution.STATIC">
+<td><code>STATIC</code></td>
+<td>
+<p>Use the static IP addresses specified in endpoints (see below) as the
+backing instances associated with the service.</p>
+
+</td>
+</tr>
+<tr id="ServiceEntry.Resolution.DNS">
+<td><code>DNS</code></td>
+<td>
+<p>Attempt to resolve the IP address by querying the ambient DNS,
+during request processing. If no endpoints are specified, the proxy
+will resolve the DNS address specified in the hosts field, if
+wildcards are not used. If endpoints are specified, the DNS
+addresses specified in the endpoints will be resolved to determine
+the destination IP address.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="StringMatch">StringMatch</h2>
+<section>
+<p>Describes how to match a given string in HTTP headers. Match is
+case-sensitive.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="StringMatch.exact" class="oneof oneof-start">
+<td><code>exact</code></td>
+<td><code>string (oneof)</code></td>
+<td>
+<p>exact string match</p>
+
+</td>
+</tr>
+<tr id="StringMatch.prefix" class="oneof">
+<td><code>prefix</code></td>
+<td><code>string (oneof)</code></td>
+<td>
+<p>prefix-based match</p>
+
+</td>
+</tr>
+<tr id="StringMatch.regex" class="oneof">
+<td><code>regex</code></td>
+<td><code>string (oneof)</code></td>
+<td>
+<p>ECMAscript style regex-based match</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Subset">Subset</h2>
+<section>
+<p>A subset of endpoints of a service. Subsets can be used for scenarios
+like A/B testing, or routing to a specific version of a service. Refer
+to <a href="#VirtualService">VirtualService</a> documentation for examples of using
+subsets in these scenarios. In addition, traffic policies defined at the
+service-level can be overridden at a subset-level. The following rule
+uses a round robin load balancing policy for all traffic going to a
+subset named testversion that is composed of endpoints (e.g., pods) with
+labels (version:v3).</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: bookinfo-ratings
+spec:
+ host: ratings.prod.svc.cluster.local
+ trafficPolicy:
+ loadBalancer:
+ simple: LEAST_CONN
+ subsets:
+ - name: testversion
+ labels:
+ version: v3
+ trafficPolicy:
+ loadBalancer:
+ simple: ROUND_ROBIN
+</code></pre>
+
+<p><strong>Note:</strong> Policies specified for subsets will not take effect until
+a route rule explicitly sends traffic to this subset.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Subset.name">
+<td><code>name</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED. Name of the subset. The service name and the subset name can
+be used for traffic splitting in a route rule.</p>
+
+</td>
+</tr>
+<tr id="Subset.labels">
+<td><code>labels</code></td>
+<td><code>map<string, string></code></td>
+<td>
+<p>REQUIRED. Labels apply a filter over the endpoints of a service in the
+service registry. See route rules for examples of usage.</p>
+
+</td>
+</tr>
+<tr id="Subset.traffic_policy">
+<td><code>trafficPolicy</code></td>
+<td><code><a href="#TrafficPolicy">TrafficPolicy</a></code></td>
+<td>
+<p>Traffic policies that apply to this subset. Subsets inherit the
+traffic policies specified at the DestinationRule level. Settings
+specified at the subset level will override the corresponding settings
+specified at the DestinationRule level.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="TCPRoute">TCPRoute</h2>
+<section>
+<p>Describes match conditions and actions for routing TCP traffic. The
+following routing rule forwards traffic arriving at port 27017 for
+mongo.prod.svc.cluster.local from 172.17.16.* subnet to another Mongo
+server on port 5555.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: bookinfo-Mongo
+spec:
+ hosts:
+ - mongo.prod.svc.cluster.local
+ tcp:
+ - match:
+ - port: 27017
+ sourceSubnet: "172.17.16.0/24"
+ route:
+ - destination:
+ host: mongo.backup.svc.cluster.local
+ port:
+ number: 5555
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="TCPRoute.match">
+<td><code>match</code></td>
+<td><code><a href="#L4MatchAttributes">L4MatchAttributes[]</a></code></td>
+<td>
+<p>Match conditions to be satisfied for the rule to be
+activated. All conditions inside a single match block have AND
+semantics, while the list of match blocks have OR semantics. The rule
+is matched if any one of the match blocks succeed.</p>
+
+</td>
+</tr>
+<tr id="TCPRoute.route">
+<td><code>route</code></td>
+<td><code><a href="#DestinationWeight">DestinationWeight[]</a></code></td>
+<td>
+<p>The destination to which the connection should be forwarded to.
+Currently, only one destination is allowed for TCP services. When TCP
+weighted routing support is introduced in Envoy, multiple destinations
+with weights can be specified.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="TLSSettings">TLSSettings</h2>
+<section>
+<p>SSL/TLS related settings for upstream connections. See Envoy’s <a href="https://www.envoyproxy.io/docs/envoy/latest/api-v1/cluster_manager/cluster_ssl.html#config-cluster-manager-cluster-ssl">TLS
+context</a>
+for more details. These settings are common to both HTTP and TCP upstreams.</p>
+
+<p>For example, the following rule configures a client to use mutual TLS
+for connections to upstream database cluster.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: db-mtls
+spec:
+ host: mydbserver.prod.svc.cluster.local
+ trafficPolicy:
+ tls:
+ mode: MUTUAL
+ clientCertificate: /etc/certs/myclientcert.pem
+ privateKey: /etc/certs/client_private_key.pem
+ caCertificates: /etc/certs/rootcacerts.pem
+</code></pre>
+
+<p>The following rule configures a client to use TLS when talking to a
+foreign service whose domain matches *.foo.com.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: tls-foo
+spec:
+ host: "*.foo.com"
+ trafficPolicy:
+ tls:
+ mode: SIMPLE
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="TLSSettings.mode">
+<td><code>mode</code></td>
+<td><code><a href="#TLSSettings.TLSmode">TLSSettings.TLSmode</a></code></td>
+<td>
+<p>REQUIRED: Indicates whether connections to this port should be secured
+using TLS. The value of this field determines how TLS is enforced.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.client_certificate">
+<td><code>clientCertificate</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED if mode is <code>MUTUAL</code>. The path to the file holding the
+client-side TLS certificate to use.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.private_key">
+<td><code>privateKey</code></td>
+<td><code>string</code></td>
+<td>
+<p>REQUIRED if mode is <code>MUTUAL</code>. The path to the file holding the
+client’s private key.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.ca_certificates">
+<td><code>caCertificates</code></td>
+<td><code>string</code></td>
+<td>
+<p>OPTIONAL: The path to the file containing certificate authority
+certificates to use in verifying a presented server certificate. If
+omitted, the proxy will not verify the server’s certificate.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.subject_alt_names">
+<td><code>subjectAltNames</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>A list of alternate names to verify the subject identity in the
+certificate. If specified, the proxy will verify that the server
+certificate’s subject alt name matches one of the specified values.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.sni">
+<td><code>sni</code></td>
+<td><code>string</code></td>
+<td>
+<p>SNI string to present to the server during TLS handshake.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="TLSSettings.TLSmode">TLSSettings.TLSmode</h2>
+<section>
+<p>TLS connection mode</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="TLSSettings.TLSmode.DISABLE">
+<td><code>DISABLE</code></td>
+<td>
+<p>Do not setup a TLS connection to the upstream endpoint.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.TLSmode.SIMPLE">
+<td><code>SIMPLE</code></td>
+<td>
+<p>Originate a TLS connection to the upstream endpoint.</p>
+
+</td>
+</tr>
+<tr id="TLSSettings.TLSmode.MUTUAL">
+<td><code>MUTUAL</code></td>
+<td>
+<p>Secure connections to the upstream using mutual TLS by presenting
+client certificates for authentication.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="TrafficPolicy">TrafficPolicy</h2>
+<section>
+<p>Traffic policies to apply for a specific destination, across all
+destination ports. See DestinationRule for examples.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="TrafficPolicy.load_balancer">
+<td><code>loadBalancer</code></td>
+<td><code><a href="#LoadBalancerSettings">LoadBalancerSettings</a></code></td>
+<td>
+<p>Settings controlling the load balancer algorithms.</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.connection_pool">
+<td><code>connectionPool</code></td>
+<td><code><a href="#ConnectionPoolSettings">ConnectionPoolSettings</a></code></td>
+<td>
+<p>Settings controlling the volume of connections to an upstream service</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.outlier_detection">
+<td><code>outlierDetection</code></td>
+<td><code><a href="#OutlierDetection">OutlierDetection</a></code></td>
+<td>
+<p>Settings controlling eviction of unhealthy hosts from the load balancing pool</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.tls">
+<td><code>tls</code></td>
+<td><code><a href="#TLSSettings">TLSSettings</a></code></td>
+<td>
+<p>TLS related settings for connections to the upstream service.</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.port_level_settings">
+<td><code>portLevelSettings</code></td>
+<td><code><a href="#TrafficPolicy.PortTrafficPolicy">TrafficPolicy.PortTrafficPolicy[]</a></code></td>
+<td>
+<p>Traffic policies specific to individual ports. Note that port level
+settings will override the destination-level settings. Traffic
+settings specified at the destination-level will not be inherited when
+overridden by port-level settings, i.e. default values will be applied
+to fields omitted in port-level traffic policies.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="TrafficPolicy.PortTrafficPolicy">TrafficPolicy.PortTrafficPolicy</h2>
+<section>
+<p>Traffic policies that apply to specific ports of the service</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="TrafficPolicy.PortTrafficPolicy.port">
+<td><code>port</code></td>
+<td><code><a href="#PortSelector">PortSelector</a></code></td>
+<td>
+<p>Specifies the port name or number of a port on the destination service
+on which this policy is being applied.</p>
+
+<p>Names must comply with DNS label syntax (rfc1035) and therefore cannot
+collide with numbers. If there are multiple ports on a service with
+the same protocol the names should be of the form <protocol-name>-<DNS
+label>.</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.PortTrafficPolicy.load_balancer">
+<td><code>loadBalancer</code></td>
+<td><code><a href="#LoadBalancerSettings">LoadBalancerSettings</a></code></td>
+<td>
+<p>Settings controlling the load balancer algorithms.</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.PortTrafficPolicy.connection_pool">
+<td><code>connectionPool</code></td>
+<td><code><a href="#ConnectionPoolSettings">ConnectionPoolSettings</a></code></td>
+<td>
+<p>Settings controlling the volume of connections to an upstream service</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.PortTrafficPolicy.outlier_detection">
+<td><code>outlierDetection</code></td>
+<td><code><a href="#OutlierDetection">OutlierDetection</a></code></td>
+<td>
+<p>Settings controlling eviction of unhealthy hosts from the load balancing pool</p>
+
+</td>
+</tr>
+<tr id="TrafficPolicy.PortTrafficPolicy.tls">
+<td><code>tls</code></td>
+<td><code><a href="#TLSSettings">TLSSettings</a></code></td>
+<td>
+<p>TLS related settings for connections to the upstream service.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="VirtualService">VirtualService</h2>
+<section>
+<p>A <code>VirtualService</code> defines a set of traffic routing rules to apply when a host is
+addressed. Each routing rule defines matching criteria for traffic of a specific
+protocol. If the traffic is matched, then it is sent to a named destination service
+(or subset/version of it) defined in the registry.</p>
+
+<p>The source of traffic can also be matched in a routing rule. This allows routing
+to be customized for specific client contexts.</p>
+
+<p>The following example on Kubernetes, routes all HTTP traffic by default to
+pods of the reviews service with label “version: v1”. In addition,
+HTTP requests containing /wpcatalog/, /consumercatalog/ url prefixes will
+be rewritten to /newcatalog and sent to pods with label “version: v2”.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: VirtualService
+metadata:
+ name: reviews-route
+spec:
+ hosts:
+ - reviews.prod.svc.cluster.local
+ http:
+ - match:
+ - uri:
+ prefix: "/wpcatalog"
+ - uri:
+ prefix: "/consumercatalog"
+ rewrite:
+ uri: "/newcatalog"
+ route:
+ - destination:
+ host: reviews.prod.svc.cluster.local
+ subset: v2
+ - route:
+ - destination:
+ host: reviews.prod.svc.cluster.local
+ subset: v1
+</code></pre>
+
+<p>A subset/version of a route destination is identified with a reference
+to a named service subset which must be declared in a corresponding
+<code>DestinationRule</code>.</p>
+
+<pre><code>apiVersion: networking.istio.io/v1alpha3
+kind: DestinationRule
+metadata:
+ name: reviews-destination
+spec:
+ host: reviews.prod.svc.cluster.local
+ subsets:
+ - name: v1
+ labels:
+ version: v1
+ - name: v2
+ labels:
+ version: v2
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="VirtualService.hosts">
+<td><code>hosts</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>REQUIRED. The destination hosts to which traffic is being sent. Could
+be a DNS name with wildcard prefix or an IP address. Depending on the
+platform, short-names can also be used instead of a FQDN (i.e. has no
+dots in the name). In such a scenario, the FQDN of the host would be
+derived based on the underlying platform.</p>
+
+<p><strong>A host name can be defined by only one VirtualService</strong>. A single
+VirtualService can be used to describe traffic properties for multiple
+HTTP and TCP ports.</p>
+
+<p><em>Note for Kubernetes users</em>: When short names are used (e.g. “reviews”
+instead of “reviews.default.svc.cluster.local”), Istio will interpret
+the short name based on the namespace of the rule, not the service. A
+rule in the “default” namespace containing a host “reviews will be
+interpreted as “reviews.default.svc.cluster.local”, irrespective of
+the actual namespace associated with the reviews service. <em>To avoid
+potential misconfigurations, it is recommended to always use fully
+qualified domain names over short names.</em></p>
+
+<p>The hosts field applies to both HTTP and TCP services. Service inside
+the mesh, i.e., those found in the service registry, must always be
+referred to using their alphanumeric names. IP addresses are allowed
+only for services defined via the Gateway.</p>
+
+</td>
+</tr>
+<tr id="VirtualService.gateways">
+<td><code>gateways</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>The names of gateways and sidecars that should apply these routes. A
+single VirtualService is used for sidecars inside the mesh as well
+as for one or more gateways. The selection condition imposed by this field
+can be overridden using the source field in the match conditions of HTTP/TCP
+routes. The reserved word <code>mesh</code> is used to imply all the sidecars in
+the mesh. When this field is omitted, the default gateway (<code>mesh</code>)
+will be used, which would apply the rule to all sidecars in the
+mesh. If a list of gateway names is provided, the rules will apply
+only to the gateways. To apply the rules to both gateways and sidecars,
+specify <code>mesh</code> as one of the gateway names.</p>
+
+</td>
+</tr>
+<tr id="VirtualService.http">
+<td><code>http</code></td>
+<td><code><a href="#HTTPRoute">HTTPRoute[]</a></code></td>
+<td>
+<p>An ordered list of route rules for HTTP traffic.
+The first rule matching an incoming request is used.</p>
+
+</td>
+</tr>
+<tr id="VirtualService.tcp">
+<td><code>tcp</code></td>
+<td><code><a href="#TCPRoute">TCPRoute[]</a></code></td>
+<td>
+<p>An ordered list of route rules for TCP traffic.
+The first rule matching an incoming request is used.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
diff --git a/_docs/reference/config/istio.mixer.v1.config.html b/_docs/reference/config/istio.policy.v1beta1.html
similarity index 70%
rename from _docs/reference/config/istio.mixer.v1.config.html
rename to _docs/reference/config/istio.policy.v1beta1.html
index 3067dae281d11..b90047b7848eb 100644
--- a/_docs/reference/config/istio.mixer.v1.config.html
+++ b/_docs/reference/config/istio.policy.v1beta1.html
@@ -1,17 +1,18 @@
---
title: Policy and Telemetry Rules
-overview: Describes the rules used to configure Mixer's policy and telemetry features.
-location: https://istio.io/docs/reference/config/istio.mixer.v1.config.html
+description: Describes the rules used to configure Mixer's policy and telemetry features.
+location: https://istio.io/docs/reference/config/istio.policy.v1beta1.html
layout: protoc-gen-docs
-redirect_from: /docs/reference/config/mixer/policy-and-telemetry-rules.html
-number_of_entries: 7
+number_of_entries: 9
---
+<p>Describes the rules used to configure Mixer’s policy and telemetry features.</p>
+
<h2 id="Action">Action</h2>
<section>
<p>Action describes which <a href="#Handler">Handler</a> to invoke and what data to pass to it for processing.</p>
<p>The following example instructs Mixer to invoke ‘prometheus-handler’ handler and pass it the object
-constructed using the instance ‘RequestCountByService’</p>
+constructed using the instance ‘RequestCountByService’.</p>
<pre><code class="language-yaml"> handler: prometheus-handler
instances:
@@ -84,7 +85,7 @@ <h2 id="AttributeManifest">AttributeManifest</h2>
</tr>
<tr id="AttributeManifest.attributes">
<td><code>attributes</code></td>
-<td><code>map<string,<a href="#AttributeManifest.AttributeInfo">AttributeManifest.AttributeInfo</a>></code></td>
+<td><code>map<string, <a href="#AttributeManifest.AttributeInfo">AttributeManifest.AttributeInfo</a>></code></td>
<td>
<p>The set of attributes this Istio component will be responsible for producing at runtime.
We map from attribute name to the attribute’s specification. The name of an attribute,
@@ -99,7 +100,7 @@ <h2 id="AttributeManifest">AttributeManifest</h2>
<p>Attribute names must be unique within a single Istio deployment. The set of canonical
attributes are described at https://istio.io/docs/reference/attribute-vocabulary.html.
Attributes not in that list should be named with a component-specific suffix such as
-request.count-my.component</p>
+request.count-my.component.</p>
</td>
</tr>
@@ -169,10 +170,35 @@ <h4 id="http-mapping">HTTP Mapping</h4>
</tr>
<tr id="AttributeManifest.AttributeInfo.value_type">
<td><code>valueType</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.config.descriptor.html#ValueType">istio.mixer.v1.config.descriptor.ValueType</a></code></td>
+<td><code><a href="#ValueType">ValueType</a></code></td>
<td>
<p>Required. The type of data carried by this attribute.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="Connection">Connection</h2>
+<section>
+<p>Connection allows the operator to specify the endpoint for out-of-process infrastructure backend.
+Connection is part of the handler custom resource and is specified alongside adapter specific configuration.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="Connection.address">
+<td><code>address</code></td>
+<td><code>string</code></td>
+<td>
+<p>The address of the backend.</p>
+
</td>
</tr>
</tbody>
@@ -183,12 +209,52 @@ <h2 id="Handler">Handler</h2>
<p>Handler allows the operator to configure a specific adapter implementation.
Each adapter implementation defines its own <code>params</code> proto.</p>
-<p>In the following example we define a <code>metrics</code> handler using the Mixer’s prepackaged
-prometheus adapter. This handler doesn’t require any parameters.</p>
-
-<pre><code class="language-yaml">name: prometheus-handler
-adapter: prometheus
-params:
+<p>In the following example we define a <code>metrics</code> handler for the <code>prometheus</code> adapter.
+The example is in the form of a kubernetes resource:
+* The <code>metadata.name</code> is the name of the handler
+* The <code>kind</code> refers to the adapter name
+* The <code>spec</code> block represents adapter-specific configuration as well as the connection information</p>
+
+<pre><code class="language-yaml">### Sample-1: No connection specified (for compiled in adapters)
+### Note: if connection information is not specified, the adapter configuration is directly inside
+### `spec` block. This is going to be DEPRECATED in favor of Sample-2
+apiVersion: "config.istio.io/v1alpha2"
+kind: prometheus
+metadata:
+ name: handler
+ namespace: istio-system
+spec:
+ metrics:
+ - name: request_count
+ instance_name: requestcount.metric.istio-system
+ kind: COUNTER
+ label_names:
+ - source_service
+ - source_version
+ - destination_service
+ - destination_version
+---
+### Sample-2: With connection information (for out-of-process adapters)
+### Note: Unlike sample-1, the adapter configuration is parallel to `connection` and is nested inside `param` block.
+apiVersion: "config.istio.io/v1alpha2"
+kind: prometheus
+metadata:
+ name: handler
+ namespace: istio-system
+spec:
+ param:
+ metrics:
+ - name: request_count
+ instance_name: requestcount.metric.istio-system
+ kind: COUNTER
+ label_names:
+ - source_service
+ - source_version
+ - destination_service
+ - destination_version
+ connection:
+ address: localhost:8090
+---
</code></pre>
<table class="message-fields">
@@ -225,6 +291,15 @@ <h2 id="Handler">Handler</h2>
<p>Optional. Depends on adapter implementation. Struct representation of a
proto defined by the adapter implementation; this varies depending on the value of field <code>adapter</code>.</p>
+</td>
+</tr>
+<tr id="Handler.connection">
+<td><code>connection</code></td>
+<td><code><a href="#Connection">Connection</a></code></td>
+<td>
+<p>Optional. Information on how to connect to the out-of-process adapter.
+This is used if the adapter is not compiled into Mixer binary and is running as a separate process.</p>
+
</td>
</tr>
</tbody>
@@ -241,7 +316,7 @@ <h2 id="Instance">Instance</h2>
<p>The following example instructs Mixer to construct an instance associated with template
‘istio.mixer.adapter.metric.Metric’. It provides a mapping from the template’s fields to expressions.
Instances produced with this instance can be referenced by <a href="#Action">Actions</a> using name
-‘RequestCountByService’.</p>
+‘RequestCountByService’</p>
<pre><code class="language-yaml">- name: RequestCountByService
template: istio.mixer.adapter.metric.Metric
@@ -343,6 +418,108 @@ <h2 id="Rule">Rule</h2>
<td>
<p>Optional. The actions that will be executed when match evaluates to <code>true</code>.</p>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="ValueType">ValueType</h2>
+<section>
+<p>ValueType describes the types that values in the Istio system can take. These
+are used to describe the type of Attributes at run time, describe the type of
+the result of evaluating an expression, and to describe the runtime type of
+fields of other descriptors.</p>
+
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="ValueType.VALUE_TYPE_UNSPECIFIED">
+<td><code>VALUE_TYPE_UNSPECIFIED</code></td>
+<td>
+<p>Invalid, default value.</p>
+
+</td>
+</tr>
+<tr id="ValueType.STRING">
+<td><code>STRING</code></td>
+<td>
+<p>An undiscriminated variable-length string.</p>
+
+</td>
+</tr>
+<tr id="ValueType.INT64">
+<td><code>INT64</code></td>
+<td>
+<p>An undiscriminated 64-bit signed integer.</p>
+
+</td>
+</tr>
+<tr id="ValueType.DOUBLE">
+<td><code>DOUBLE</code></td>
+<td>
+<p>An undiscriminated 64-bit floating-point value.</p>
+
+</td>
+</tr>
+<tr id="ValueType.BOOL">
+<td><code>BOOL</code></td>
+<td>
+<p>An undiscriminated boolean value.</p>
+
+</td>
+</tr>
+<tr id="ValueType.TIMESTAMP">
+<td><code>TIMESTAMP</code></td>
+<td>
+<p>A point in time.</p>
+
+</td>
+</tr>
+<tr id="ValueType.IP_ADDRESS">
+<td><code>IP_ADDRESS</code></td>
+<td>
+<p>An IP address.</p>
+
+</td>
+</tr>
+<tr id="ValueType.EMAIL_ADDRESS">
+<td><code>EMAIL_ADDRESS</code></td>
+<td>
+<p>An email address.</p>
+
+</td>
+</tr>
+<tr id="ValueType.URI">
+<td><code>URI</code></td>
+<td>
+<p>A URI.</p>
+
+</td>
+</tr>
+<tr id="ValueType.DNS_NAME">
+<td><code>DNS_NAME</code></td>
+<td>
+<p>A DNS name.</p>
+
+</td>
+</tr>
+<tr id="ValueType.DURATION">
+<td><code>DURATION</code></td>
+<td>
+<p>A span between two points in time.</p>
+
+</td>
+</tr>
+<tr id="ValueType.STRING_MAP">
+<td><code>STRING_MAP</code></td>
+<td>
+<p>A map string -> string, typically used by headers.</p>
+
</td>
</tr>
</tbody>
@@ -370,7 +547,7 @@ <h2 id="google.protobuf.Struct">google.protobuf.Struct</h2>
<tbody>
<tr id="google.protobuf.Struct.fields">
<td><code>fields</code></td>
-<td><code>map<string,<a href="#google.protobuf.Value">google.protobuf.Value</a>></code></td>
+<td><code>map<string, <a href="#google.protobuf.Value">google.protobuf.Value</a>></code></td>
<td>
<p>Unordered map of dynamically typed values.</p>
diff --git a/_docs/reference/config/istio.rbac.v1alpha1.html b/_docs/reference/config/istio.rbac.v1alpha1.html
index 83cfbed8bbaed..c9e431518fd05 100644
--- a/_docs/reference/config/istio.rbac.v1alpha1.html
+++ b/_docs/reference/config/istio.rbac.v1alpha1.html
@@ -1,9 +1,9 @@
---
title: RBAC
-overview: Configuration affecting resource-based access control
+description: Configuration for Role Based Access Control
location: https://istio.io/docs/reference/config/istio.rbac.v1alpha1.html
layout: protoc-gen-docs
-number_of_entries: 6
+number_of_entries: 9
---
<p>Istio RBAC (Role Based Access Control) defines ServiceRole and ServiceRoleBinding
objects.</p>
@@ -11,9 +11,9 @@
<p>A ServiceRole specification includes a list of rules (permissions). Each rule has
the following standard fields:
* services: a list of services.
-* methods: HTTP methods or gRPC methods. Note that gRPC methods should be
- presented in the form of “packageName.serviceName/methodName”.
-* paths: HTTP paths. It is ignored in gRPC case.</p>
+* methods: HTTP methods. In the case of gRPC, this field is ignored because the value is always “POST”.
+* paths: HTTP paths or gRPC methods. Note that gRPC methods should be
+ presented in the form of “packageName.serviceName/methodName”.</p>
<p>In addition to the standard fields, operators can use custom fields in the “constraints”
section. The name of a custom field must match one of the “properties” in the “action” part
@@ -28,8 +28,8 @@
namespace: istio-system
spec:
subject:
- user: request.auth.principal | ""
- groups: request.auth.principal | ""
+ user: source.user | ""
+ groups: ""
properties:
service: source.service | ""
namespace: source.namespace | ""
@@ -119,7 +119,9 @@ <h2 id="AccessRule">AccessRule</h2>
<td><code>paths</code></td>
<td><code>string[]</code></td>
<td>
-<p>Optional. A list of HTTP paths.
+<p>Optional. A list of HTTP paths or gRPC methods.
+gRPC methods must be presented as fully-qualified name in the form of
+packageName.serviceName/methodName.
Exact match, prefix match, and suffix match are supported for paths.
For example, the path “/books/review” matches
“/books/review” (exact match), or “/books/<em>” (prefix match),
@@ -132,10 +134,9 @@ <h2 id="AccessRule">AccessRule</h2>
<td><code>methods</code></td>
<td><code>string[]</code></td>
<td>
-<p>Required. A list of HTTP methods (e.g., “GET”, “POST”) or gRPC methods.
-gRPC methods must be presented as fully-qualified name in the form of
-packageName.serviceName/methodName.
-If set to [“*”], it applies to any method.</p>
+<p>Optional. A list of HTTP methods (e.g., “GET”, “POST”).
+It is ignored in gRPC case because the value is always “POST”.
+If set to [“*”] or not specified, it applies to any method.</p>
</td>
</tr>
@@ -184,6 +185,142 @@ <h2 id="AccessRule.Constraint">AccessRule.Constraint</h2>
“v1alpha2” (exact match), or “v1<em>” (prefix match),
or “</em>alpha2” (suffix match).</p>
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="RbacConfig">RbacConfig</h2>
+<section>
+<p>RbacConfig defines the global config to control Istio RBAC behavior.
+This Custom Resource is a singleton where only one Custom Resource should be created globally in
+the mesh and the namespace should be the same to other Istio components, which usually is istio-system.
+Note: This is enforced in both istioctl and server side, new Custom Resource will be rejected if found any
+existing one, the user should either delete the existing one or change the existing one directly.</p>
+
+<p>Below is an example of RbacConfig object “istio-rbac-config” which enables Istio RBAC for all
+services in the default namespace.</p>
+
+<pre><code>apiVersion: "config.istio.io/v1alpha1"
+kind: RbacConfig
+metadata:
+ name: istio-rbac-config
+ namespace: istio-system
+spec:
+ mode: ON_WITH_INCLUSION
+ inclusion:
+ namespaces: [ "default" ]
+</code></pre>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="RbacConfig.mode">
+<td><code>mode</code></td>
+<td><code><a href="#RbacConfig.Mode">RbacConfig.Mode</a></code></td>
+<td>
+<p>Istio RBAC mode.</p>
+
+</td>
+</tr>
+<tr id="RbacConfig.inclusion">
+<td><code>inclusion</code></td>
+<td><code><a href="#RbacConfig.Target">RbacConfig.Target</a></code></td>
+<td>
+<p>A list of services or namespaces that should be enforced by Istio RBAC policies. Note: This field have
+effect only when mode is ON<em>WITH</em>INCLUSION and will be ignored for any other modes.</p>
+
+</td>
+</tr>
+<tr id="RbacConfig.exclusion">
+<td><code>exclusion</code></td>
+<td><code><a href="#RbacConfig.Target">RbacConfig.Target</a></code></td>
+<td>
+<p>A list of services or namespaces that should not be enforced by Istio RBAC policies. Note: This field have
+effect only when mode is ON<em>WITH</em>EXCLUSION and will be ignored for any other modes.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="RbacConfig.Mode">RbacConfig.Mode</h2>
+<section>
+<table class="enum-values">
+<thead>
+<tr>
+<th>Name</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="RbacConfig.Mode.OFF">
+<td><code>OFF</code></td>
+<td>
+<p>Disable Istio RBAC completely, any other config in RbacConfig will be ignored and Istio RBAC policies
+will not be enforced.</p>
+
+</td>
+</tr>
+<tr id="RbacConfig.Mode.ON">
+<td><code>ON</code></td>
+<td>
+<p>Enable Istio RBAC for all services and namespaces.</p>
+
+</td>
+</tr>
+<tr id="RbacConfig.Mode.ON_WITH_INCLUSION">
+<td><code>ON_WITH_INCLUSION</code></td>
+<td>
+<p>Enable Istio RBAC only for services and namespaces specified in the inclusion field. Any other
+services and namespaces not in the inclusion field will not be enforced by Istio RBAC policies.</p>
+
+</td>
+</tr>
+<tr id="RbacConfig.Mode.ON_WITH_EXCLUSION">
+<td><code>ON_WITH_EXCLUSION</code></td>
+<td>
+<p>Enable Istio RBAC for all services and namespaces except those specified in the exclusion field. Any other
+services and namespaces not in the exclusion field will be enforced by Istio RBAC policies.</p>
+
+</td>
+</tr>
+</tbody>
+</table>
+</section>
+<h2 id="RbacConfig.Target">RbacConfig.Target</h2>
+<section>
+<p>Target defines a list of services or namespaces.</p>
+
+<table class="message-fields">
+<thead>
+<tr>
+<th>Field</th>
+<th>Type</th>
+<th>Description</th>
+</tr>
+</thead>
+<tbody>
+<tr id="RbacConfig.Target.services">
+<td><code>services</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>A list of services.</p>
+
+</td>
+</tr>
+<tr id="RbacConfig.Target.namespaces">
+<td><code>namespaces</code></td>
+<td><code>string[]</code></td>
+<td>
+<p>A list of namespaces.</p>
+
</td>
</tr>
</tbody>
@@ -319,7 +456,7 @@ <h2 id="Subject">Subject</h2>
</tr>
<tr id="Subject.properties">
<td><code>properties</code></td>
-<td><code>map<string,string></code></td>
+<td><code>map<string, string></code></td>
<td>
<p>Optional. The set of properties that identify the subject.
In the above ServiceRoleBinding example, the second subject has two properties:
diff --git a/_docs/reference/config/istio.routing.v1alpha1.html b/_docs/reference/config/istio.routing.v1alpha1.html
index e1d4f685cbcd7..cfb2b0bd10876 100644
--- a/_docs/reference/config/istio.routing.v1alpha1.html
+++ b/_docs/reference/config/istio.routing.v1alpha1.html
@@ -1,6 +1,6 @@
---
-title: Route Rules Alpha 1
-overview: Configuration affecting traffic routing
+title: Route Rules v1alpha1
+description: Configuration affecting traffic routing
location: https://istio.io/docs/reference/config/istio.routing.v1alpha1.html
layout: protoc-gen-docs
redirect_from: /docs/reference/config/traffic-rules/routing-rules.html
@@ -456,7 +456,7 @@ <h2 id="DestinationWeight">DestinationWeight</h2>
</tr>
<tr id="DestinationWeight.labels">
<td><code>labels</code></td>
-<td><code>map<string,string></code></td>
+<td><code>map<string, string></code></td>
<td>
<p>Sometimes required. Service version identifier for the destination service.
(– N.B. The map is used instead of pstruct due to lack of serialization support
@@ -1213,7 +1213,7 @@ <h2 id="IstioService">IstioService</h2>
</tr>
<tr id="IstioService.labels">
<td><code>labels</code></td>
-<td><code>map<string,string></code></td>
+<td><code>map<string, string></code></td>
<td>
<p>Optional one or more labels that uniquely identify the service version.</p>
@@ -1581,7 +1581,7 @@ <h2 id="MatchRequest">MatchRequest</h2>
<tbody>
<tr id="MatchRequest.headers">
<td><code>headers</code></td>
-<td><code>map<string,<a href="#StringMatch">StringMatch</a>></code></td>
+<td><code>map<string, <a href="#StringMatch">StringMatch</a>></code></td>
<td>
<p>Set of HTTP match conditions based on HTTP/1.1, HTTP/2, GRPC request
metadata, such as <em>uri</em>, <em>scheme</em>, <em>authority</em>. The header keys must be
@@ -1780,7 +1780,7 @@ <h2 id="RouteRule">RouteRule</h2>
</tr>
<tr id="RouteRule.append_headers">
<td><code>appendHeaders</code></td>
-<td><code>map<string,string></code></td>
+<td><code>map<string, string></code></td>
<td>
<p>Additional HTTP headers to add before forwarding a request to the
destnation service.</p>
diff --git a/_docs/reference/config/mixer/attribute-vocabulary.md b/_docs/reference/config/mixer/attribute-vocabulary.md
index b13d49c7e9270..6fe325890e424 100644
--- a/_docs/reference/config/mixer/attribute-vocabulary.md
+++ b/_docs/reference/config/mixer/attribute-vocabulary.md
@@ -1,11 +1,9 @@
---
title: Attribute Vocabulary
-overview: Describes the base attribute vocabulary used for policy and control.
+description: Describes the base attribute vocabulary used for policy and control.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -28,7 +26,8 @@ deployments will have agents (Envoy or Mixer adapters) that produce these attrib
| source.domain | string | The domain suffix part of the source service, excluding the name and the namespace. | svc.cluster.local |
| source.uid | string | Platform-specific unique identifier for the client instance of the source service. | kubernetes://redis-master-2353460263-1ecey.my-namespace |
| source.labels | map[string, string] | A map of key-value pairs attached to the client instance. | version => v1 |
-| source.user | string | The identity of the immediate sender of the request, authenticated by mTLS. | service-account-foo |
+| source.user | string | To be deprecated, please refer to the attribute `source.principal`. | service-account-foo |
+| source.principal | string | The identity of the immediate sender of the request, authenticated by mTLS. | service-account-foo |
| destination.ip | ip_address | Server IP address. | 10.0.0.104 |
| destination.port | int64 | The recipient port on the server IP address. | 8080 |
| destination.service | string | The fully qualified name of the service that the server belongs to. | my-svc.my-namespace.svc.cluster.local |
@@ -47,14 +46,17 @@ deployments will have agents (Envoy or Mixer adapters) that produce these attrib
| request.referer | string | The HTTP referer header. | |
| request.scheme | string | URI Scheme of the request | |
| request.size | int64 | Size of the request in bytes. For HTTP requests this is equivalent to the Content-Length header. | |
+| `request.total_size` | int64 | Total size of HTTP request in bytes, including request headers, body and trailers. | |
| request.time | timestamp | The timestamp when the destination receives the request. This should be equivalent to Firebase "now". | |
| request.useragent | string | The HTTP User-Agent header. | |
| response.headers | map[string, string] | HTTP response headers. | |
| response.size | int64 | Size of the response body in bytes | |
+| `response.total_size` | int64 | Total size of HTTP response in bytes, including response headers and body. | |
| response.time | timestamp | The timestamp when the destination produced the response. | |
| response.duration | duration | The amount of time the response took to generate. | |
| response.code | int64 | The response's HTTP status code. | |
| connection.id | string | An ID for a TCP connection with statistically low probability of collision. | |
+| `connection.event` | string | Status of a TCP connection, its value is one of "open", "continue" and "close". | |
| connection.received.bytes | int64 | Number of bytes received by a destination service on a connection since the last Report() for a connection. | |
| connection.received.bytes_total | int64 | Total number of bytes received by a destination service during the lifetime of a connection. | |
| connection.sent.bytes | int64 | Number of bytes sent by a destination service on a connection since the last Report() for a connection. | |
@@ -66,9 +68,12 @@ deployments will have agents (Envoy or Mixer adapters) that produce these attrib
| api.version | string | The API version. | v1alpha1 |
| api.operation | string | Unique string used to identify the operation. The id is unique among all operations described in a specific <service, version>. | getPetsById |
| api.protocol | string | The protocol type of the API call. Mainly for monitoring/analytics. Note that this is the frontend protocol exposed to the client, not the protocol implemented by the backend service. | "http", “https”, or "grpc" |
-| request.auth.principal | string | The authenticated principal of the request. This is a string of the issuer (`iss`) and subject (`sub`) claims within a JWT concatenated with “/” with a percent-encoded subject value. | accounts.my-svc.com/104958560606 |
+| request.auth.principal | string | The authenticated principal of the request. This is a string of the issuer (`iss`) and subject (`sub`) claims within a JWT concatenated with “/” with a percent-encoded subject value. This attribute may come from the peer or the origin in the Istio authentication policy, depending on the binding rule defined in the Istio authentication policy. | accounts.my-svc.com/104958560606 |
| request.auth.audiences | string | The intended audience(s) for this authentication information. This should reflect the audience (`aud`) claim within a JWT. | ['my-svc.com', 'scopes/read'] |
| request.auth.presenter | string | The authorized presenter of the credential. This value should reflect the optional Authorized Presenter (`azp`) claim within a JWT or the OAuth2 client id. | 123456789012.my-svc.com |
+| request.auth.claims | map[string, string] | all raw string claims from the `origin` JWT | `iss`: `issuer@foo.com`, `sub`: `sub@foo.com`, `aud`: `aud1` |
| request.api_key | string | The API key used for the request. | abcde12345 |
| check.error_code | int64 | The error [code](https://github.com/google/protobuf/blob/master/src/google/protobuf/stubs/status.h#L44) for Mixer Check call. | 5 |
| check.error_message | string | The error message for Mixer Check call. | Could not find the resource |
+| `check.cache_hit` | boolean | Indicates whether Mixer check call hits local cache. | |
+| `quota.cache_hit` | boolean | Indicates whether Mixer quota call hits local cache. | |
diff --git a/_docs/reference/config/mixer/expression-language.md b/_docs/reference/config/mixer/expression-language.md
index 616b1760a4c1b..d265c642ac39f 100644
--- a/_docs/reference/config/mixer/expression-language.md
+++ b/_docs/reference/config/mixer/expression-language.md
@@ -1,21 +1,22 @@
---
title: Expression Language
-overview: Mixer config expression language reference.
+description: Mixer config expression language reference.
-order: 20
+weight: 20
-layout: docs
-type: markdown
---
+{% include home.html %}
+
{% capture mixerConfig %}{{home}}/docs/concepts/policy-and-control/mixer-config.html{% endcapture %}
This page describes how to use the Mixer config expression language (CEXL).
## Background
-Mixer configuration uses an expression language (CEXL) to specify match expressions and [mapping expressions]({{mixerConfig}}#attribute-expressions). CEXL expressions map a set of typed [attributes]({{home}}/docs/concepts/policy-and-control/attributes.html) and constants to a typed [value](https://github.com/istio/api/blob/master/mixer/v1/config/descriptor/value_type.proto#L23).
-
+Mixer configuration uses an expression language (CEXL) to specify match expressions and [mapping expressions]({{mixerConfig}}#attribute-expressions). CEXL expressions map a set of typed [attributes]({{home}}/docs/concepts/policy-and-control/attributes.html) and constants to a typed
+[value](https://github.com/istio/api/blob/master/policy/v1beta1/value_type.proto).
+
## Syntax
CEXL accepts a subset of **[Go expressions](https://golang.org/ref/spec#Expressions)**, which defines the syntax. CEXL implements a subset of the Go operators that constrains the set of accepted Go expressions. CEXL also supports arbitrary parenthesization.
@@ -26,32 +27,34 @@ CEXL supports the following functions.
|Operator/Function |Definition |Example | Description
|-----------------------------------------
-|`==` |Equals |`request.size == 200`
+|`==` |Equals |`request.size == 200`
|`!=` |Not Equals |`request.auth.principal != "admin"`
-|`||` |Logical OR | `(request.size == 200) || (request.auth.principal == "admin")`
-|`&&` |Logical AND | `(request.size == 200) && (request.auth.principal == "admin")`
+|`||` |Logical OR | `(request.size == 200) || (request.auth.principal == "admin")`
+|`&&` |Logical AND | `(request.size == 200) && (request.auth.principal == "admin")`
|`[ ]` |Map Access | `request.headers["x-id"]`
|`|` |First non empty | `source.labels["app"] | source.labels["svc"] | "unknown"`
|`match` | Glob match |`match(destination.service, "*.ns1.svc.cluster.local")` | Matches prefix or suffix based on the location of `*`
+|`email` | Convert a textual e-mail into the `EMAIL_ADDRESS` type | `email("awesome@istio.io")` | Use the `email` function to create an `EMAIL_ADDRESS` literal.
+|`dnsName` | Convert a textual DNS name into the `DNS_NAME` type | `dnsName("www.istio.io")` | Use the `dnsName` function to create a `DNS_NAME` literal.
|`ip` | Convert a textual IPv4 address into the `IP_ADDRESS` type | `source.ip == ip("10.11.12.13")` | Use the `ip` function to create an `IP_ADDRESS` literal.
-|`timestamp` | Convert a textual timestamp in RFC 3339 format into the `TIMESTAMP` type |`timestamp("2015-01-02T15:04:35Z")` | Use the `timestamp` function to create a `TIMESTAMP` literal.
-|`.matches` | Regular expression match | `"svc.*".matches(destination.service)` | Matches `destination.service` against regular expression pattern `"svc.*"`.
-|`.startsWith` | string prefix match | `destination.service.startsWith("acme")` | Checks whether `destination.service` starts with `"acme"`.
+|`timestamp` | Convert a textual timestamp in RFC 3339 format into the `TIMESTAMP` type | `timestamp("2015-01-02T15:04:35Z")` | Use the `timestamp` function to create a `TIMESTAMP` literal.
+|`uri` | Convert a textual URI into the `URI` type | `uri("http://istio.io")` | Use the `uri` function to create a `URI` literal.
+|`.matches` | Regular expression match | `"svc.*".matches(destination.service)` | Matches `destination.service` against regular expression pattern `"svc.*"`.
+|`.startsWith` | string prefix match | `destination.service.startsWith("acme")` | Checks whether `destination.service` starts with `"acme"`.
|`.endsWith` | string postfix match | `destination.service.endsWith("acme")` | Checks whether `destination.service` ends with `"acme"`.
-
## Type checking
CEXL variables are attributes from the typed [attribute vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html), constants are implicitly typed and, functions are explicitly typed.
Mixer validates a CEXL expression and resolves it to a type during config validation.
-Selectors must resolve to a boolean value and mapping expressions must resolve to the type they are mapping into. Config validation fails if a selector fails to resolve to a boolean or if a mapping expression resolves to an incorrect type.
+Selectors must resolve to a boolean value and mapping expressions must resolve to the type they are mapping into. Config validation fails if a selector fails to resolve to a boolean or if a mapping expression resolves to an incorrect type.
For example, if an operator specifies a *string* label as `request.size | 200`, validation fails because the expression resolves to an integer.
## Missing attributes
-If an expression uses an attribute that is not available during request processing, the expression evaluation fails. Use the `|` operator to provide a default value if an attribute may be missing.
+If an expression uses an attribute that is not available during request processing, the expression evaluation fails. Use the `|` operator to provide a default value if an attribute may be missing.
For example, the expression `request.auth.principal == "user1"` fails evaluation if the `request.auth.principal` attribute is missing. The `|` (OR) operator addresses the problem: `(request.auth.principal | "nobody" ) == "user1"`.
@@ -60,7 +63,7 @@ For example, the expression `request.auth.principal == "user1"` fails evaluation
|Expression |Return Type |Description
|------------------------------------
|`request.size| 200` | **int** | `request.size` if available, otherwise 200.
-|`request.headers["X-FORWARDED-HOST"] == "myhost"`| **boolean**
+|`request.headers["X-FORWARDED-HOST"] == "myhost"`| **boolean**
|`(request.headers["x-user-group"] == "admin") || (request.auth.principal == "admin")`| **boolean**| True if the user is admin or in the admin group.
|`(request.auth.principal | "nobody" ) == "user1"` | **boolean** | True if `request.auth.principal` is "user1", The expression will not error out if `request.auth.principal` is missing.
|`source.labels["app"]=="reviews" && source.labels["version"]=="v3"`| **boolean** | True if app label is reviews and version label is v3, false otherwise.
diff --git a/_docs/reference/config/mixer/index.md b/_docs/reference/config/mixer/index.md
index f51d6d1f3edac..53bb514d6f3ec 100644
--- a/_docs/reference/config/mixer/index.md
+++ b/_docs/reference/config/mixer/index.md
@@ -1,11 +1,9 @@
---
title: Mixer
-overview: Detailed information on configuration and API exposed by Mixer.
+description: Detailed information on configuration and API exposed by Mixer.
-order: 30
+weight: 30
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/reference/config/mixer/istio.mixer.adapter.model.v1beta1.html b/_docs/reference/config/mixer/istio.mixer.adapter.model.v1beta1.html
deleted file mode 100644
index ecd9c9eb80d47..0000000000000
--- a/_docs/reference/config/mixer/istio.mixer.adapter.model.v1beta1.html
+++ /dev/null
@@ -1,91 +0,0 @@
----
-title: Mixer Adapter Model
-overview: Definitions used when creating Mixer templates
-location: https://istio.io/docs/reference/config/mixer/istio.mixer.adapter.model.v1beta1.html
-layout: protoc-gen-docs
-number_of_entries: 8
----
-<p>This package defines the types that are used when creating Mixer templates. <code>ValueType</code> defined in this pacakge
-is also used by adapters to know the underlying datatype of the instance fields.</p>
-
-<h2 id="DNSName">DNSName</h2>
-<section>
-<p>DNSName is used inside templates for fields that are of ValueType “DNS_NAME”</p>
-
-</section>
-<h2 id="Duration">Duration</h2>
-<section>
-<p>Duration is used inside templates for fields that are of ValueType “DURATION”</p>
-
-</section>
-<h2 id="EmailAddress">EmailAddress</h2>
-<section>
-<p>EmailAddress is used inside templates for fields that are of ValueType “EMAIL_ADDRESS”
-DO NOT USE !! Under Development</p>
-
-</section>
-<h2 id="IPAddress">IPAddress</h2>
-<section>
-<p>IPAddress is used inside templates for fields that are of ValueType “IP_ADDRESS”</p>
-
-</section>
-<h2 id="TemplateVariety">TemplateVariety</h2>
-<section>
-<p>The available varieties of templates, controlling the semantics of what an adapter does with each instance.</p>
-
-<table class="enum-values">
-<thead>
-<tr>
-<th>Name</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_CHECK">
-<td><code>TEMPLATE_VARIETY_CHECK</code></td>
-<td>
-<p>Makes the template applicable for Mixer’s check calls.</p>
-
-</td>
-</tr>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_REPORT">
-<td><code>TEMPLATE_VARIETY_REPORT</code></td>
-<td>
-<p>Makes the template applicable for Mixer’s report calls.</p>
-
-</td>
-</tr>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_QUOTA">
-<td><code>TEMPLATE_VARIETY_QUOTA</code></td>
-<td>
-<p>Makes the template applicable for Mixer’s quota calls.</p>
-
-</td>
-</tr>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_ATTRIBUTE_GENERATOR">
-<td><code>TEMPLATE_VARIETY_ATTRIBUTE_GENERATOR</code></td>
-<td>
-<p>Makes the template applicable for Mixer’s quota calls.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="TimeStamp">TimeStamp</h2>
-<section>
-<p>TimeStamp is used inside templates for fields that are of ValueType “TIMESTAMP”</p>
-
-</section>
-<h2 id="Uri">Uri</h2>
-<section>
-<p>Uri is used inside templates for fields that are of ValueType “URI”
-DO NOT USE ! Under Development</p>
-
-</section>
-<h2 id="Value">Value</h2>
-<section>
-<p>Value is used inside templates for fields that have dynamic types. The actual datatype
-of the field depends on the datatype of the expression used in the operator configuration.</p>
-
-</section>
diff --git a/_docs/reference/config/mixer/istio.mixer.v1.config.descriptor.html b/_docs/reference/config/mixer/istio.mixer.v1.config.descriptor.html
deleted file mode 100644
index 3a3f8afb09b00..0000000000000
--- a/_docs/reference/config/mixer/istio.mixer.v1.config.descriptor.html
+++ /dev/null
@@ -1,109 +0,0 @@
----
-title: Value Type
-overview: Value types used with templates
-location: https://istio.io/docs/reference/config/mixer/istio.mixer.v1.config.descriptor.html
-layout: protoc-gen-docs
-number_of_entries: 1
----
-<h2 id="ValueType">ValueType</h2>
-<section>
-<p>ValueType describes the types that values in the Istio system can take. These
-are used to describe the type of Attributes at run time, describe the type of
-the result of evaluating an expression, and to describe the runtime type of
-fields of other descriptors.</p>
-
-<table class="enum-values">
-<thead>
-<tr>
-<th>Name</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="ValueType.VALUE_TYPE_UNSPECIFIED">
-<td><code>VALUE_TYPE_UNSPECIFIED</code></td>
-<td>
-<p>Invalid, default value.</p>
-
-</td>
-</tr>
-<tr id="ValueType.STRING">
-<td><code>STRING</code></td>
-<td>
-<p>An undiscriminated variable-length string.</p>
-
-</td>
-</tr>
-<tr id="ValueType.INT64">
-<td><code>INT64</code></td>
-<td>
-<p>An undiscriminated 64-bit signed integer.</p>
-
-</td>
-</tr>
-<tr id="ValueType.DOUBLE">
-<td><code>DOUBLE</code></td>
-<td>
-<p>An undiscriminated 64-bit floating-point value.</p>
-
-</td>
-</tr>
-<tr id="ValueType.BOOL">
-<td><code>BOOL</code></td>
-<td>
-<p>An undiscriminated boolean value.</p>
-
-</td>
-</tr>
-<tr id="ValueType.TIMESTAMP">
-<td><code>TIMESTAMP</code></td>
-<td>
-<p>A point in time.</p>
-
-</td>
-</tr>
-<tr id="ValueType.IP_ADDRESS">
-<td><code>IP_ADDRESS</code></td>
-<td>
-<p>An IP address.</p>
-
-</td>
-</tr>
-<tr id="ValueType.EMAIL_ADDRESS">
-<td><code>EMAIL_ADDRESS</code></td>
-<td>
-<p>An email address.</p>
-
-</td>
-</tr>
-<tr id="ValueType.URI">
-<td><code>URI</code></td>
-<td>
-<p>A URI.</p>
-
-</td>
-</tr>
-<tr id="ValueType.DNS_NAME">
-<td><code>DNS_NAME</code></td>
-<td>
-<p>A DNS name.</p>
-
-</td>
-</tr>
-<tr id="ValueType.DURATION">
-<td><code>DURATION</code></td>
-<td>
-<p>A span between two points in time.</p>
-
-</td>
-</tr>
-<tr id="ValueType.STRING_MAP">
-<td><code>STRING_MAP</code></td>
-<td>
-<p>A map string -> string, typically used by headers.</p>
-
-</td>
-</tr>
-</tbody>
-</table>
-</section>
diff --git a/_docs/reference/config/mixer/istio.mixer.v1.template.html b/_docs/reference/config/mixer/istio.mixer.v1.template.html
deleted file mode 100644
index e9ad08d35a285..0000000000000
--- a/_docs/reference/config/mixer/istio.mixer.v1.template.html
+++ /dev/null
@@ -1,83 +0,0 @@
----
-title: Template Metadata
-overview: Definitions used when creating Mixer templates
-location: https://istio.io/docs/reference/config/mixer/istio.mixer.v1.template.html
-layout: protoc-gen-docs
-number_of_entries: 8
----
-<p>This proto describes the types that can be used inside Mixer templates. These message types are used to specify
-field datatype to express the equivalent ValueType for the expressions the field can be mapped to.</p>
-
-<h2 id="DNSName">DNSName</h2>
-<section>
-<p>DNSName is used inside templates for fields that are of ValueType “DNS_NAME”</p>
-
-</section>
-<h2 id="Duration">Duration</h2>
-<section>
-<p>Duration is used inside templates for fields that are of ValueType “DURATION”</p>
-
-</section>
-<h2 id="EmailAddress">EmailAddress</h2>
-<section>
-<p>EmailAddress is used inside templates for fields that are of ValueType “EMAIL_ADDRESS”
-DO NOT USE !! Under Development</p>
-
-</section>
-<h2 id="IPAddress">IPAddress</h2>
-<section>
-<p>IPAddress is used inside templates for fields that are of ValueType “IP_ADDRESS”</p>
-
-</section>
-<h2 id="TemplateVariety">TemplateVariety</h2>
-<section>
-<p>Specifies the varity of the the Template.</p>
-
-<table class="enum-values">
-<thead>
-<tr>
-<th>Name</th>
-<th>Description</th>
-</tr>
-</thead>
-<tbody>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_CHECK">
-<td><code>TEMPLATE_VARIETY_CHECK</code></td>
-<td>
-</td>
-</tr>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_REPORT">
-<td><code>TEMPLATE_VARIETY_REPORT</code></td>
-<td>
-</td>
-</tr>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_QUOTA">
-<td><code>TEMPLATE_VARIETY_QUOTA</code></td>
-<td>
-</td>
-</tr>
-<tr id="TemplateVariety.TEMPLATE_VARIETY_ATTRIBUTE_GENERATOR">
-<td><code>TEMPLATE_VARIETY_ATTRIBUTE_GENERATOR</code></td>
-<td>
-</td>
-</tr>
-</tbody>
-</table>
-</section>
-<h2 id="TimeStamp">TimeStamp</h2>
-<section>
-<p>TimeStamp is used inside templates for fields that are of ValueType “TIMESTAMP”</p>
-
-</section>
-<h2 id="Uri">Uri</h2>
-<section>
-<p>Uri is used inside templates for fields that are of ValueType “URI”
-DO NOT USE ! Under Development</p>
-
-</section>
-<h2 id="Value">Value</h2>
-<section>
-<p>Value is used inside templates for fields that have dynamic types. The actual datatype
-of the field depends on the datatype of the expression used in the operator configuration.</p>
-
-</section>
diff --git a/_docs/reference/config/template/apikey.html b/_docs/reference/config/template/apikey.html
index d406e1d405995..7de4d585ad98d 100644
--- a/_docs/reference/config/template/apikey.html
+++ b/_docs/reference/config/template/apikey.html
@@ -1,9 +1,9 @@
---
title: API Key
-overview: A template that represents a single API key.
+description: A template that represents a single API key.
location: https://istio.io/docs/reference/config/template/apikey.html
layout: protoc-gen-docs
-number_of_entries: 1
+number_of_entries: 2
---
<p>The <code>apikey</code> template represents a single API key, which is used for authorization checks.</p>
@@ -69,7 +69,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.timestamp">
<td><code>timestamp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#TimeStamp">istio.mixer.v1.template.TimeStamp</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</a></code></td>
<td>
<p>Timestamp of API call.</p>
@@ -78,3 +78,8 @@ <h2 id="Template">Template</h2>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</h2>
+<section>
+<p>TimeStamp is used inside templates for fields that are of ValueType “TIMESTAMP”</p>
+
+</section>
diff --git a/_docs/reference/config/template/authorization.html b/_docs/reference/config/template/authorization.html
index 32a8110c1cf64..656fd18373b91 100644
--- a/_docs/reference/config/template/authorization.html
+++ b/_docs/reference/config/template/authorization.html
@@ -1,9 +1,9 @@
---
title: Authorization
-overview: A template used to represent an access control query.
+description: A template used to represent an access control query.
location: https://istio.io/docs/reference/config/template/authorization.html
layout: protoc-gen-docs
-number_of_entries: 3
+number_of_entries: 4
---
<p>The <code>authorization</code> template defines parameters for performing policy
enforcement within Istio. It is primarily concerned with enabling Mixer</p>
@@ -55,7 +55,7 @@ <h2 id="Action">Action</h2>
</tr>
<tr id="Action.properties">
<td><code>properties</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>Additional data about the action for use in policy.</p>
@@ -99,7 +99,7 @@ <h2 id="Subject">Subject</h2>
</tr>
<tr id="Subject.properties">
<td><code>properties</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>Additional attributes about the subject.</p>
@@ -132,8 +132,8 @@ <h2 id="Template">Template</h2>
properties:
iss: request.auth.token["iss"]
action:
- namespace: target.namespace | "default"
- service: target.service | ""
+ namespace: destination.namespace | "default"
+ service: destination.service | ""
path: request.path | "/"
method: request.method | "post"
properties:
@@ -169,3 +169,9 @@ <h2 id="Template">Template</h2>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</h2>
+<section>
+<p>Value is used inside templates for fields that have dynamic types. The actual datatype
+of the field depends on the datatype of the expression used in the operator configuration.</p>
+
+</section>
diff --git a/_docs/reference/config/template/checknothing.html b/_docs/reference/config/template/checknothing.html
index 6d47092d71bc0..86c67016402bb 100644
--- a/_docs/reference/config/template/checknothing.html
+++ b/_docs/reference/config/template/checknothing.html
@@ -1,6 +1,6 @@
---
title: Check Nothing
-overview: A template that carries no data, useful for testing.
+description: A template that carries no data, useful for testing.
location: https://istio.io/docs/reference/config/template/checknothing.html
layout: protoc-gen-docs
number_of_entries: 1
diff --git a/_docs/reference/config/template/index.md b/_docs/reference/config/template/index.md
index 1abe621f4f8b4..3d4d326c6475f 100644
--- a/_docs/reference/config/template/index.md
+++ b/_docs/reference/config/template/index.md
@@ -1,11 +1,9 @@
---
title: Templates
-overview: Generated documentation for Mixer's Templates.
+description: Generated documentation for Mixer's Templates.
-order: 50
+weight: 50
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/reference/config/template/kubernetes.html b/_docs/reference/config/template/kubernetes.html
index 733102c27d9e6..831ab7fd9e020 100644
--- a/_docs/reference/config/template/kubernetes.html
+++ b/_docs/reference/config/template/kubernetes.html
@@ -1,9 +1,9 @@
---
title: Kubernetes
-overview: A template that is used to control the production of Kubernetes-specific attributes.
+description: A template that is used to control the production of Kubernetes-specific attributes.
location: https://istio.io/docs/reference/config/template/kubernetes.html
layout: protoc-gen-docs
-number_of_entries: 2
+number_of_entries: 3
---
<p>The <code>kubernetes</code> template holds data that controls the production of Kubernetes-specific
attributes.</p>
@@ -24,7 +24,7 @@ <h2 id="OutputTemplate">OutputTemplate</h2>
<tbody>
<tr id="OutputTemplate.source_pod_ip">
<td><code>sourcePodIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Refers to source pod ip address. attribute<em>bindings can refer to this field using $out.source</em>pod_ip</p>
@@ -72,7 +72,7 @@ <h2 id="OutputTemplate">OutputTemplate</h2>
</tr>
<tr id="OutputTemplate.source_host_ip">
<td><code>sourceHostIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Refers to source pod host ip address. attribute<em>bindings can refer to this field using $out.source</em>host_ip</p>
@@ -80,7 +80,7 @@ <h2 id="OutputTemplate">OutputTemplate</h2>
</tr>
<tr id="OutputTemplate.destination_pod_ip">
<td><code>destinationPodIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Refers to destination pod ip address. attribute<em>bindings can refer to this field using $out.destination</em>pod_ip</p>
@@ -128,7 +128,7 @@ <h2 id="OutputTemplate">OutputTemplate</h2>
</tr>
<tr id="OutputTemplate.destination_host_ip">
<td><code>destinationHostIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Refers to destination pod host ip address. attribute<em>bindings can refer to this field using $out.destination</em>host_ip</p>
@@ -136,7 +136,7 @@ <h2 id="OutputTemplate">OutputTemplate</h2>
</tr>
<tr id="OutputTemplate.origin_pod_ip">
<td><code>originPodIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Refers to origin pod ip address. attribute<em>bindings can refer to this field using $out.origin</em>pod_ip</p>
@@ -184,7 +184,7 @@ <h2 id="OutputTemplate">OutputTemplate</h2>
</tr>
<tr id="OutputTemplate.origin_host_ip">
<td><code>originHostIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Refers to origin pod host ip address. attribute<em>bindings can refer to this field using $out.origin</em>host_ip</p>
@@ -247,7 +247,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.source_ip">
<td><code>sourceIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Source pod’s ip.</p>
@@ -263,7 +263,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.destination_ip">
<td><code>destinationIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Destination pod’s ip.</p>
@@ -279,7 +279,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.origin_ip">
<td><code>originIp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#IPAddress">istio.mixer.v1.template.IPAddress</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</a></code></td>
<td>
<p>Origin pod’s ip.</p>
@@ -288,3 +288,8 @@ <h2 id="Template">Template</h2>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.IPAddress">istio.mixer.adapter.model.v1beta1.IPAddress</h2>
+<section>
+<p>IPAddress is used inside templates for fields that are of ValueType “IP_ADDRESS”</p>
+
+</section>
diff --git a/_docs/reference/config/template/listentry.html b/_docs/reference/config/template/listentry.html
index 7de9093137999..b72ddc7b545eb 100644
--- a/_docs/reference/config/template/listentry.html
+++ b/_docs/reference/config/template/listentry.html
@@ -1,6 +1,6 @@
---
title: List Entry
-overview: A template designed to let you perform list checking operations.
+description: A template designed to let you perform list checking operations.
location: https://istio.io/docs/reference/config/template/listentry.html
layout: protoc-gen-docs
number_of_entries: 1
@@ -14,7 +14,7 @@ <h2 id="Template">Template</h2>
within a list.</p>
<p>When writing the configuration, the value for the fields associated with this template can either be a
-literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.v1.template.Value,
+literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.adapter.model.v1beta1.Value,
then the expression’s <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html#type-checking">inferred type</a> must match the datatype of the field.</p>
<p>Example config:</p>
diff --git a/_docs/reference/config/template/logentry.html b/_docs/reference/config/template/logentry.html
index 9c27d985a6f56..4944624e7df42 100644
--- a/_docs/reference/config/template/logentry.html
+++ b/_docs/reference/config/template/logentry.html
@@ -1,9 +1,9 @@
---
title: Log Entry
-overview: A template that represents a single runtime log entry.
+description: A template that represents a single runtime log entry.
location: https://istio.io/docs/reference/config/template/logentry.html
layout: protoc-gen-docs
-number_of_entries: 1
+number_of_entries: 3
---
<p>The <code>logentry</code> template represents an individual entry within a log.</p>
@@ -12,7 +12,7 @@ <h2 id="Template">Template</h2>
<p>The <code>logentry</code> template represents an individual entry within a log.</p>
<p>When writing the configuration, the value for the fields associated with this template can either be a
-literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.v1.template.Value,
+literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.adapter.model.v1beta1.Value,
then the expression’s <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html#type-checking">inferred type</a> must match the datatype of the field.</p>
<p>Example config:</p>
@@ -50,7 +50,7 @@ <h2 id="Template">Template</h2>
<tbody>
<tr id="Template.variables">
<td><code>variables</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>Variables that are delivered for each log entry.</p>
@@ -58,7 +58,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.timestamp">
<td><code>timestamp</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#TimeStamp">istio.mixer.v1.template.TimeStamp</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</a></code></td>
<td>
<p>Timestamp is the time value for the log entry</p>
@@ -84,7 +84,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.monitored_resource_dimensions">
<td><code>monitoredResourceDimensions</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>Optional. A set of expressions that will form the dimensions of the monitored resource this log entry is being
recorded on. If the logging backend supports monitored resources, these fields are used to populate that resource.
@@ -95,3 +95,14 @@ <h2 id="Template">Template</h2>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</h2>
+<section>
+<p>TimeStamp is used inside templates for fields that are of ValueType “TIMESTAMP”</p>
+
+</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</h2>
+<section>
+<p>Value is used inside templates for fields that have dynamic types. The actual datatype
+of the field depends on the datatype of the expression used in the operator configuration.</p>
+
+</section>
diff --git a/_docs/reference/config/template/metric.html b/_docs/reference/config/template/metric.html
index ab04ba3217774..e98bcbf5525b9 100644
--- a/_docs/reference/config/template/metric.html
+++ b/_docs/reference/config/template/metric.html
@@ -1,9 +1,9 @@
---
title: Metric
-overview: A template that represents a single runtime metric.
+description: A template that represents a single runtime metric.
location: https://istio.io/docs/reference/config/template/metric.html
layout: protoc-gen-docs
-number_of_entries: 1
+number_of_entries: 2
---
<p>The <code>metric</code> template is designed to let you describe runtime metric to dispatch to
monitoring backends.</p>
@@ -13,7 +13,7 @@ <h2 id="Template">Template</h2>
<p>The <code>metric</code> template represents a single piece of data to report.</p>
<p>When writing the configuration, the value for the fields associated with this template can either be a
-literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.v1.template.Value,
+literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.adapter.model.v1beta1.Value,
then the expression’s <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html#type-checking">inferred type</a> must match the datatype of the field.</p>
<p>Example config:</p>
@@ -45,7 +45,7 @@ <h2 id="Template">Template</h2>
<tbody>
<tr id="Template.value">
<td><code>value</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a></code></td>
<td>
<p>The value being reported.</p>
@@ -53,7 +53,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.dimensions">
<td><code>dimensions</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>The unique identity of the particular metric to report.</p>
@@ -71,7 +71,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.monitored_resource_dimensions">
<td><code>monitoredResourceDimensions</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>Optional. A set of expressions that will form the dimensions of the monitored resource this metric is being reported on.
If the metric backend supports monitored resources, these fields are used to populate that resource. Otherwise
@@ -82,3 +82,9 @@ <h2 id="Template">Template</h2>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</h2>
+<section>
+<p>Value is used inside templates for fields that have dynamic types. The actual datatype
+of the field depends on the datatype of the expression used in the operator configuration.</p>
+
+</section>
diff --git a/_docs/reference/config/template/quota.html b/_docs/reference/config/template/quota.html
index 326dfc9e82703..a0992056703e7 100644
--- a/_docs/reference/config/template/quota.html
+++ b/_docs/reference/config/template/quota.html
@@ -1,9 +1,9 @@
---
title: Quota
-overview: A template that represents a quota allocation request
+description: A template that represents a quota allocation request
location: https://istio.io/docs/reference/config/template/quota.html
layout: protoc-gen-docs
-number_of_entries: 1
+number_of_entries: 2
---
<p>The <code>quota</code> template represents an item for which to check quota.</p>
@@ -12,7 +12,7 @@ <h2 id="Template">Template</h2>
<p>The <code>quota</code> template represents a piece of data to check Quota for.</p>
<p>When writing the configuration, the value for the fields associated with this template can either be a
-literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.v1.template.Value,
+literal or an <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html">expression</a>. Please note that if the datatype of a field is not istio.mixer.adapter.model.v1beta1.Value,
then the expression’s <a href="{{site.baseurl}}/docs/reference/config/mixer/expression-language.html#type-checking">inferred type</a> must match the datatype of the field.</p>
<p>Example config:</p>
@@ -41,7 +41,7 @@ <h2 id="Template">Template</h2>
<tbody>
<tr id="Template.dimensions">
<td><code>dimensions</code></td>
-<td><code>map<string, <a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Value">istio.mixer.v1.template.Value</a>></code></td>
+<td><code>map<string, <a href="#istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</a>></code></td>
<td>
<p>The unique identity of the particular quota to manipulate.</p>
@@ -50,3 +50,9 @@ <h2 id="Template">Template</h2>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.Value">istio.mixer.adapter.model.v1beta1.Value</h2>
+<section>
+<p>Value is used inside templates for fields that have dynamic types. The actual datatype
+of the field depends on the datatype of the expression used in the operator configuration.</p>
+
+</section>
diff --git a/_docs/reference/config/template/reportnothing.html b/_docs/reference/config/template/reportnothing.html
index 867758f96e9f9..cde494b04ea10 100644
--- a/_docs/reference/config/template/reportnothing.html
+++ b/_docs/reference/config/template/reportnothing.html
@@ -1,6 +1,6 @@
---
title: Report Nothing
-overview: A template that carries no data, useful for testing.
+description: A template that carries no data, useful for testing.
location: https://istio.io/docs/reference/config/template/reportnothing.html
layout: protoc-gen-docs
number_of_entries: 1
diff --git a/_docs/reference/config/template/servicecontrolreport.html b/_docs/reference/config/template/servicecontrolreport.html
index 0e345f60c4cad..ccd238154e1a8 100644
--- a/_docs/reference/config/template/servicecontrolreport.html
+++ b/_docs/reference/config/template/servicecontrolreport.html
@@ -1,9 +1,9 @@
---
title: Service Control Report
-overview: A template used by the Google Service Control adapter.
+description: A template used by the Google Service Control adapter.
location: https://istio.io/docs/reference/config/template/servicecontrolreport.html
layout: protoc-gen-docs
-number_of_entries: 1
+number_of_entries: 3
---
<p>The <code>servicecontrolreport</code> template is used by the <a href="{{site.baseurl}}/docs/reference/config/adapters/servicecontrol.html">Google Service Control</a>
adapter.</p>
@@ -78,7 +78,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.request_time">
<td><code>requestTime</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#TimeStamp">istio.mixer.v1.template.TimeStamp</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</a></code></td>
<td>
</td>
</tr>
@@ -102,7 +102,7 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.response_time">
<td><code>responseTime</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#TimeStamp">istio.mixer.v1.template.TimeStamp</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</a></code></td>
<td>
</td>
</tr>
@@ -120,10 +120,20 @@ <h2 id="Template">Template</h2>
</tr>
<tr id="Template.response_latency">
<td><code>responseLatency</code></td>
-<td><code><a href="{{site.baseurl}}/docs/reference/config/mixer/istio.mixer.v1.template.html#Duration">istio.mixer.v1.template.Duration</a></code></td>
+<td><code><a href="#istio.mixer.adapter.model.v1beta1.Duration">istio.mixer.adapter.model.v1beta1.Duration</a></code></td>
<td>
</td>
</tr>
</tbody>
</table>
</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.Duration">istio.mixer.adapter.model.v1beta1.Duration</h2>
+<section>
+<p>Duration is used inside templates for fields that are of ValueType “DURATION”</p>
+
+</section>
+<h2 id="istio.mixer.adapter.model.v1beta1.TimeStamp">istio.mixer.adapter.model.v1beta1.TimeStamp</h2>
+<section>
+<p>TimeStamp is used inside templates for fields that are of ValueType “TIMESTAMP”</p>
+
+</section>
diff --git a/_docs/reference/index.md b/_docs/reference/index.md
index 6001dfc271da8..24ffc2e4d7f49 100644
--- a/_docs/reference/index.md
+++ b/_docs/reference/index.md
@@ -1,12 +1,10 @@
---
title: Reference
-overview: The Reference section contains detailed authoritative reference material such as command-line options, configuration options, and API calling parameters.
+description: The Reference section contains detailed authoritative reference material such as command-line options, configuration options, and API calling parameters.
index: true
-order: 60
+weight: 60
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/reference/writing-config.md b/_docs/reference/writing-config.md
deleted file mode 100644
index 00bd14a69e0b9..0000000000000
--- a/_docs/reference/writing-config.md
+++ /dev/null
@@ -1,235 +0,0 @@
----
-title: Writing Configuration
-overview: How to write Istio config YAML content.
-
-order: 70
-
-layout: docs
-type: markdown
----
-
-This page describes how to write configuration that conforms to Istio's schemas. All configuration schemas in Istio are defined as [protobuf messages](https://developers.google.com/protocol-buffers/docs/proto3). When in doubt, search for the protos.
-
-## Translating to YAML
-
-There's an implicit mapping from protobuf to YAML using [protobuf's mapping to JSON](https://developers.google.com/protocol-buffers/docs/proto3#json). Below are a few examples showing common mappings you'll encounter writing configuration in Istio.
-
-**Important things to note:**
-- YAML fields are implicitly strings
-- Proto `repeated` fields map to YAML lists; each element in a YAML list is prefixed by a dash (`-`)
-- Proto `message`s map to objects; in YAML objects are field names all at the same indentation level
-- YAML is whitespace sensitive and must use spaces; tabs are never allowed
-
-### `map` and `message` fields
-
-<table>
- <tbody>
- <tr>
- <th>Proto</th>
- <th>YAML</th>
- </tr>
- <tr>
- <td>
-<pre>
-message Metric {
- string descriptor_name = 1;
- string value = 2;
- map<string, string> labels = 3;
-}
-</pre>
- </td>
- <td>
-<pre>
-descriptorName: request_count
-value: "1"
-labels:
- source: origin.ip
- destination: destination.service
-</pre>
- </td>
- </tr>
-</tbody>
-</table>
-
-*Note that when numeric literals are used as strings (like `value` above) they must be enclosed in quotes. Quotation marks (`"`) are optional for normal strings.*
-
-### `repeated` fields
-
-<table>
- <tbody>
- <tr>
- <th>Proto</th>
- <th>YAML</th>
- </tr>
- <tr>
- <td>
-<pre>
-message Metric {
- string descriptor_name = 1;
- string value = 2;
- map<string, string> labels = 3;
-}
-
-message MetricsParams {
- repeated Metric metrics = 1;
-}
-</pre>
- </td>
- <td>
-<pre>
-metrics:
-- descriptorName: request_count
- value: "1"
- labels:
- source: origin.ip
- destination: destination.service
-- descriptorName: request_latency
- value: response.duration
- labels:
- source: origin.ip
- destination: destination.service
-</pre>
- </td>
- </tr>
-</tbody>
-</table>
-
-### `enum` fields
-
-<table>
- <tbody>
- <tr>
- <th>Proto</th>
- <th>YAML</th>
- </tr>
- <tr>
- <td>
-<pre>
-enum ValueType {
- STRING = 1;
- INT64 = 2;
- DOUBLE = 3;
- // more values omitted
-}
-
-message AttributeDescriptor {
- string name = 1;
- string description = 2;
- ValueType value_type = 3;
-}
-</pre>
- </td>
- <td>
-<pre>
-name: request.duration
-value_type: INT64
-</pre>
-
-or
-
-<pre>
-name: request.duration
-valueType: INT64
-</pre>
- </td>
- </tr>
- </tbody>
-</table>
-
-*Note that YAML parsing will handle both `snake_case` and `lowerCamelCase` field names. `lowerCamelCase` is the canonical version in YAML.*
-
-### Nested `message` fields
-
-<table>
- <tbody>
- <tr>
- <th>Proto</th>
- <th>YAML</th>
- </tr>
- <tr>
- <td>
-<pre>
-enum ValueType {
- STRING = 1;
- INT64 = 2;
- DOUBLE = 3;
- // more values omitted
-}
-
-message LabelDescriptor {
- string name = 1;
- string description = 2;
- ValueType value_type = 3;
-}
-
-message MonitoredResourceDescriptor {
- string name = 1;
- string description = 2;
- repeated LabelDescriptor labels = 3;
-}
-</pre>
- </td>
- <td>
-<pre>
-name: My Monitored Resource
-labels:
-- name: label one
- valueType: STRING
-- name: second label
- valueType: DOUBLE
-</pre>
- </td>
- </tr>
- </tbody>
-</table>
-
-### `Timestamp`, `Duration`, and 64 bit integer fields
-
-The protobuf spec special cases the JSON/YAML representations of a few well-known protobuf messages. 64 bit integer types are also special due to the fact that JSON numbers are implicitly doubles, which cannot represent all valid 64 bit integer values.
-
-<table>
- <tbody>
- <tr>
- <th>Proto</th>
- <th>YAML</th>
- </tr>
- <tr>
- <td>
-<pre>
-message Quota {
- string descriptor_name = 1;
- map<string, string> labels = 2;
- int64 max_amount = 3;
- google.protobuf.Duration expiration = 4;
-}
-</pre>
- </td>
- <td>
-<pre>
-descriptorName: RequestCount
-labels:
- label one: STRING
- second label: DOUBLE
-maxAmount: "7"
-expiration: 1.000340012s
-</pre>
- </td>
- </tr>
- </tbody>
-</table>
-
-Specifically, the [protobuf spec declares](https://developers.google.com/protocol-buffers/docs/proto3#json):
-
-| Proto | JSON/YAML | Example | Notes |
-| --- | --- | --- | --- |
-| Timestamp | string | "1972-01-01T10:00:20.021Z" | Uses RFC 3339, where generated output will always be Z-normalized and uses 0, 3, 6 or 9 fractional digits. |
-| Duration | string | "1.000340012s", "1s" | Generated output always contains 0, 3, 6, or 9 fractional digits, depending on required precision. Accepted are any fractional digits (also none) as long as they fit into nano-seconds precision. |
-| int64, fixed64, uint64 | string | "1", "-10" | JSON value will be a decimal string. Either numbers or strings are accepted.|
-
-
-
-
-## What's next
-* TODO: link to overall mixer config concept guide (how the config pieces fit together)
-
-
diff --git a/_docs/setup/cloudfoundry/index.md b/_docs/setup/cloudfoundry/index.md
index 6543c4ae919b5..9c8ea47d470fb 100644
--- a/_docs/setup/cloudfoundry/index.md
+++ b/_docs/setup/cloudfoundry/index.md
@@ -1,11 +1,9 @@
---
title: Cloud Foundry
-overview: Instructions for installing the Istio control plane in Cloud Foundry.
+description: Instructions for installing the Istio control plane in Cloud Foundry.
-order: 40
+weight: 40
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/setup/cloudfoundry/install.md b/_docs/setup/cloudfoundry/install.md
index 86838a54ea4a4..740d239c8dc19 100644
--- a/_docs/setup/cloudfoundry/install.md
+++ b/_docs/setup/cloudfoundry/install.md
@@ -1,11 +1,9 @@
---
title: Installation
-overview: Instructions for installing the Istio control plane in Cloud Foundry.
+description: Instructions for installing the Istio control plane in Cloud Foundry.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
We are working with the Cloud Foundry developers to integrate Istio
diff --git a/_docs/setup/consul/index.md b/_docs/setup/consul/index.md
index 0e8cdd166a5c2..b2eef23d2b5a4 100644
--- a/_docs/setup/consul/index.md
+++ b/_docs/setup/consul/index.md
@@ -1,11 +1,9 @@
---
title: Nomad & Consul
-overview: Instructions for installing the Istio control plane in a Consul based environment, with or without Nomad.
+description: Instructions for installing the Istio control plane in a Consul based environment, with or without Nomad.
-order: 20
+weight: 20
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/setup/consul/install.md b/_docs/setup/consul/install.md
index 64a72c13704d0..b848de243e15a 100644
--- a/_docs/setup/consul/install.md
+++ b/_docs/setup/consul/install.md
@@ -1,24 +1,22 @@
---
title: Installation
-overview: Instructions for installing the Istio control plane in a Consul based environment, with or without Nomad.
+description: Instructions for installing the Istio control plane in a Consul based environment, with or without Nomad.
-order: 30
+weight: 30
-layout: docs
-type: markdown
---
-> Note: Setup on Nomad has not been tested.
+> Setup on Nomad has not been tested.
-Using Istio in a non-kubernetes environment involves a few key tasks:
+Using Istio in a non-Kubernetes environment involves a few key tasks:
1. Setting up the Istio control plane with the Istio API server
-2. Adding the Istio sidecar to every instance of a service
-3. Ensuring requests are routed through the sidecars
+1. Adding the Istio sidecar to every instance of a service
+1. Ensuring requests are routed through the sidecars
## Setting up the Control Plane
-Istio control plane consists of four main services: Pilot, Mixer, CA, and
+Istio control plane consists of four main services: Pilot, Mixer, Citadel, and
the API server.
### API Server
@@ -27,10 +25,8 @@ Istio's API server (based on Kubernetes' API server) provides key functions
such as configuration management and Role-Based Access Control. The API
server requires an
[etcd cluster](https://kubernetes.io/docs/getting-started-guides/scratch/#etcd)
-as a persistent store. Detailed instructions for setting up the API server can
-be found
-[here](https://kubernetes.io/docs/getting-started-guides/scratch/#apiserver-controller-manager-and-scheduler).
-Documentation on set of startup options for the Kubernetes API server can be found [here](https://kubernetes.io/docs/admin/kube-apiserver/)
+as a persistent store. See the
+[instructions for setting up the API server](https://kubernetes.io/docs/getting-started-guides/scratch/#apiserver-controller-manager-and-scheduler).
#### Local Install
@@ -71,21 +67,20 @@ services:
environment:
- SERVICE_IGNORE=1
command: [
- "kube-apiserver", "--etcd-servers", "http://etcd:2379",
- "--service-cluster-ip-range", "10.99.0.0/16",
- "--insecure-port", "8080",
- "-v", "2",
+ "kube-apiserver", "--etcd-servers", "http://etcd:2379",
+ "--service-cluster-ip-range", "10.99.0.0/16",
+ "--insecure-port", "8080",
+ "-v", "2",
"--insecure-bind-address", "0.0.0.0"
]
```
-
### Other Istio Components
-Debian packages for Istio Pilot, Mixer, and CA are available through the
+Debian packages for Istio Pilot, Mixer, and Citadel are available through the
Istio release. Alternatively, these components can be run as Docker
containers (docker.io/istio/pilot, docker.io/istio/mixer,
-docker.io/istio/istio-ca). Note that these components are stateless and can
+docker.io/istio/citadel). Note that these components are stateless and can
be scaled horizontally. Each of these components depends on the Istio API
server, which in turn depends on the etcd cluster for persistence. To
achieve high availability, each control plane service could be run as a
@@ -94,7 +89,6 @@ Nomad, where the
[service stanza](https://www.nomadproject.io/docs/job-specification/service.html)
can be used to describe the desired properties of the control plane services.
-
## Adding Sidecars to Service Instances
Each instance of a service in an application must be accompanied by the
@@ -122,7 +116,7 @@ Part of the sidecar installation should involve setting up appropriate IP
Table rules to transparently route application's network traffic through
the Istio sidecars. The IP table script to setup such forwarding can be
found in the
-[here](https://github.com/istio/istio/blob/master/pilot/docker/prepare_proxy.sh).
+[here](https://raw.githubusercontent.com/istio/istio/master/tools/deb/istio-iptables.sh).
-> Note: This script must be executed before starting the application or
-> the sidecar process.
+> This script must be executed before starting the application or
+> the sidecar process.
diff --git a/_docs/setup/consul/quick-start.md b/_docs/setup/consul/quick-start.md
index 85e1822020c40..adfbe2ec70dec 100644
--- a/_docs/setup/consul/quick-start.md
+++ b/_docs/setup/consul/quick-start.md
@@ -1,18 +1,15 @@
---
title: Quick Start on Docker
-overview: Quick Start instructions to setup the Istio service mesh with Docker Compose.
+description: Quick Start instructions to setup the Istio service mesh with Docker Compose.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
Quick Start instructions to install and configure Istio in a Docker Compose setup.
-
## Prerequisites
* [Docker](https://docs.docker.com/engine/installation/#cloud)
@@ -23,49 +20,51 @@ Quick Start instructions to install and configure Istio in a Docker Compose setu
1. Go to the [Istio release](https://github.com/istio/istio/releases) page to download the
installation file corresponding to your OS. If you are using a MacOS or Linux system, you can also
run the following command to download and extract the latest release automatically:
- ```bash
- curl -L https://git.io/getLatestIstio | sh -
+
+ ```command
+ $ curl -L https://git.io/getLatestIstio | sh -
```
1. Extract the installation file and change the directory to the file location. The
- installation directory contains:
- * Sample applications in `samples/`
- * The `istioctl` client binary in the `bin/` directory. `istioctl` is used for creating routing rules and policies.
- * The `istio.VERSION` configuration file
+installation directory contains:
+
+ * Sample applications in `samples/`
+ * The `istioctl` client binary in the `bin/` directory. `istioctl` is used for creating routing rules and policies.
+ * The `istio.VERSION` configuration file
1. Add the `istioctl` client to your PATH.
- For example, run the following command on a MacOS or Linux system:
+For example, run the following command on a MacOS or Linux system:
- ```bash
- export PATH=$PWD/bin:$PATH
+ ```command
+ $ export PATH=$PWD/bin:$PATH
```
1. For Linux users, configure the `DOCKER_GATEWAY` environment variable
- ```bash
- export DOCKER_GATEWAY=172.28.0.1:
+ ```command
+ $ export DOCKER_GATEWAY=172.28.0.1:
```
1. Change directory to the root of the Istio installation directory.
1. Bring up the Istio control plane containers:
- ```bash
- docker-compose -f install/consul/istio.yaml up -d
+ ```command
+ $ docker-compose -f install/consul/istio.yaml up -d
```
1. Confirm that all docker containers are running:
- ```bash
- docker ps -a
+ ```command
+ $ docker ps -a
```
> If the Istio Pilot container terminates, ensure that you run the `istioctl context-create` command and re-run the command from the previous step.
-
+
1. Configure `istioctl` to use mapped local port for the Istio API server:
- ```bash
- istioctl context-create --api-server http://localhost:8080
+ ```command
+ $ istioctl context-create --api-server http://localhost:8080
```
## Deploy your application
@@ -73,24 +72,24 @@ Quick Start instructions to install and configure Istio in a Docker Compose setu
You can now deploy your own application or one of the sample applications provided with the
installation like [Bookinfo]({{home}}/docs/guides/bookinfo.html).
-> Note 1: Since there is no concept of pods in a Docker setup, the Istio
-> sidecar runs in the same container as the application. We will use
-> [Registrator](http://gliderlabs.github.io/registrator/latest/) to
+> Since there is no concept of pods in a Docker setup, the Istio
+> sidecar runs in the same container as the application. We will
+> use [Registrator](https://gliderlabs.github.io/registrator/latest/) to
> automatically register instances of services in the Consul service
> registry.
+>
+> The application must use HTTP/1.1 or HTTP/2.0 protocol for all its HTTP traffic because HTTP/1.0 is not supported.
-> Note 2: the application must use HTTP/1.1 or HTTP/2.0 protocol for all its HTTP traffic because HTTP/1.0 is not supported.
-
-```bash
-docker-compose -f <your-app-spec>.yaml up -d
+```command
+$ docker-compose -f <your-app-spec>.yaml up -d
```
## Uninstalling
-1. Uninstall Istio core components by removing the docker containers:
+Uninstall Istio core components by removing the docker containers:
-```bash
-docker-compose -f install/consul/istio.yaml down
+```command
+$ docker-compose -f install/consul/istio.yaml down
```
## What's next
diff --git a/_docs/setup/eureka/index.md b/_docs/setup/eureka/index.md
index 14ad5fe21fec5..51cacef1ebb0a 100644
--- a/_docs/setup/eureka/index.md
+++ b/_docs/setup/eureka/index.md
@@ -1,11 +1,9 @@
---
title: Eureka
-overview: Instructions for installing the Istio control plane in a Eureka based environment.
+description: Instructions for installing the Istio control plane in a Eureka based environment.
-order: 30
+weight: 30
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/setup/eureka/install.md b/_docs/setup/eureka/install.md
index 6cb1a0276be15..6c56dadf813e4 100644
--- a/_docs/setup/eureka/install.md
+++ b/_docs/setup/eureka/install.md
@@ -1,22 +1,20 @@
---
title: Installation
-overview: Instructions for installing the Istio control plane in an Eureka based environment.
+description: Instructions for installing the Istio control plane in an Eureka based environment.
-order: 30
+weight: 30
-layout: docs
-type: markdown
---
-Using Istio in a non-kubernetes environment involves a few key tasks:
+Using Istio in a non-Kubernetes environment involves a few key tasks:
1. Setting up the Istio control plane with the Istio API server
-2. Adding the Istio sidecar to every instance of a service
-3. Ensuring requests are routed through the sidecars
+1. Adding the Istio sidecar to every instance of a service
+1. Ensuring requests are routed through the sidecars
## Setting up the control plane
-Istio control plane consists of four main services: Pilot, Mixer, CA, and
+Istio control plane consists of four main services: Pilot, Mixer, Citadel, and
the API server.
### API server
@@ -27,9 +25,7 @@ server requires an
[etcd cluster](https://kubernetes.io/docs/getting-started-guides/scratch/#etcd)
as a persistent store. Detailed instructions for setting up the API server can
be found
-[here](https://kubernetes.io/docs/getting-started-guides/scratch/#apiserver-controller-manager-and-scheduler).
-Documentation on set of startup options for the Kubernetes API server can be found
-[here](https://kubernetes.io/docs/admin/kube-apiserver/)
+[here](https://kubernetes.io/docs/getting-started-guides/scratch/#apiserver-controller-manager-and-scheduler).
#### Local install
@@ -69,25 +65,23 @@ services:
environment:
- SERVICE_IGNORE=1
command: [
- "kube-apiserver", "--etcd-servers", "http://etcd:2379",
- "--service-cluster-ip-range", "10.99.0.0/16",
- "--insecure-port", "8080",
- "-v", "2",
+ "kube-apiserver", "--etcd-servers", "http://etcd:2379",
+ "--service-cluster-ip-range", "10.99.0.0/16",
+ "--insecure-port", "8080",
+ "-v", "2",
"--insecure-bind-address", "0.0.0.0"
]
```
-
### Other Istio components
-Debian packages for Istio Pilot, Mixer, and CA are available through the
+Debian packages for Istio Pilot, Mixer, and Citadel are available through the
Istio release. Alternatively, these components can be run as Docker
containers (docker.io/istio/pilot, docker.io/istio/mixer,
-docker.io/istio/istio-ca). Note that these components are stateless and can
+docker.io/istio/citadel). Note that these components are stateless and can
be scaled horizontally. Each of these components depends on the Istio API
server, which in turn depends on the etcd cluster for persistence.
-
## Adding sidecars to service instances
Each instance of a service in an application must be accompanied by the
@@ -97,12 +91,12 @@ into these components. For example, if your infrastructure uses VMs, the
Istio sidecar process must be run on each VM that needs to be part of the
service mesh.
-## Routing traffic through Istio Sidecar
+## Routing traffic through the Istio sidecar
Part of the sidecar installation should involve setting up appropriate IP
Table rules to transparently route application's network traffic through
the Istio sidecars. The IP table script to setup such forwarding can be
-found [here](https://github.com/istio/istio/blob/master/pilot/docker/prepare_proxy.sh).
+found [here](https://raw.githubusercontent.com/istio/istio/master/tools/deb/istio-iptables.sh).
-> Note: This script must be executed before starting the application or
-> the sidecar process.
+> This script must be executed before starting the application or
+> the sidecar process.
diff --git a/_docs/setup/eureka/quick-start.md b/_docs/setup/eureka/quick-start.md
index 3be8cc2b36a9a..1b15ccf7fa4c1 100644
--- a/_docs/setup/eureka/quick-start.md
+++ b/_docs/setup/eureka/quick-start.md
@@ -1,18 +1,15 @@
---
title: Quick Start on Docker
-overview: Quick Start instructions to setup the Istio service mesh with Docker Compose.
+description: Quick Start instructions to setup the Istio service mesh with Docker Compose.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
Quick Start instructions to install and configure Istio in a Docker Compose setup.
-
## Prerequisites
* [Docker](https://docs.docker.com/engine/installation/#cloud)
@@ -21,44 +18,47 @@ Quick Start instructions to install and configure Istio in a Docker Compose setu
## Installation steps
1. Go to the [Istio release](https://github.com/istio/istio/releases) page to download the
- installation file corresponding to your OS. If you are using a MacOS or Linux system, you can also
- run the following command to download and extract the latest release automatically:
- ```bash
- curl -L https://git.io/getLatestIstio | sh -
+installation file corresponding to your OS. If you are using a MacOS or Linux system, you can also
+run the following command to download and extract the latest release automatically:
+
+ ```command
+ $ curl -L https://git.io/getLatestIstio | sh -
```
1. Extract the installation file and change the directory to the file location. The
- installation directory contains:
- * Sample applications in `samples/`
- * The `istioctl` client binary in the `bin/` directory. `istioctl` is used for creating routing rules and policies.
- * The `istio.VERSION` configuration file
+installation directory contains:
+
+ * Sample applications in `samples/`
+ * The `istioctl` client binary in the `bin/` directory. `istioctl` is used for creating routing rules and policies.
+ * The `istio.VERSION` configuration file
1. Add the `istioctl` client to your PATH.
- For example, run the following command on a MacOS or Linux system:
+For example, run the following command on a MacOS or Linux system:
- ```bash
- export PATH=$PWD/bin:$PATH
+ ```command
+ $ export PATH=$PWD/bin:$PATH
```
1. Change directory to the root of the Istio installation directory.
1. Bring up the Istio control plane containers:
- ```bash
- docker-compose -f install/eureka/istio.yaml up -d
+ ```command
+ $ docker-compose -f install/eureka/istio.yaml up -d
```
1. Confirm that all docker containers are running:
- ```bash
- docker ps -a
+ ```command
+ $ docker ps -a
```
- > If the Istio Pilot container terminates, ensure that you run the `istioctl context-create` comamnd and re-run the command from the previous step.
-
+
+ > If the Istio Pilot container terminates, ensure that you run the `istioctl context-create` command and re-run the command from the previous step.
+
1. Configure `istioctl` to use mapped local port for the Istio API server:
- ```bash
- istioctl context-create --context istio-local --api-server http://localhost:8080
+ ```command
+ $ istioctl context-create --context istio-local --api-server http://localhost:8080
```
## Deploy your application
@@ -66,24 +66,24 @@ Quick Start instructions to install and configure Istio in a Docker Compose setu
You can now deploy your own application or one of the sample applications provided with the
installation like [Bookinfo]({{home}}/docs/guides/bookinfo.html).
-> Note 1: Since there is no concept of pods in a Docker setup, the Istio
-> sidecar runs in the same container as the application. We will use
-> [Registrator](http://gliderlabs.github.io/registrator/latest/) to
-> automatically register instances of services in the Consul service
+> Since there is no concept of pods in a Docker setup, the Istio
+> sidecar runs in the same container as the application. We will
+> use [Registrator](https://gliderlabs.github.io/registrator/latest/) to
+> automatically register instances of services in the Eureka service
> registry.
+>
+> The application must use HTTP/1.1 or HTTP/2.0 protocol for all its HTTP traffic because HTTP/1.0 is not supported.
-> Note 2: the application must use HTTP/1.1 or HTTP/2.0 protocol for all its HTTP traffic because HTTP/1.0 is not supported.
-
-```bash
-docker-compose -f <your-app-spec>.yaml up -d
+```command
+$ docker-compose -f <your-app-spec>.yaml up -d
```
## Uninstalling
-1. Uninstall Istio core components by removing the docker containers:
+Uninstall Istio core components by removing the docker containers:
-```bash
-docker-compose -f install/eureka/istio.yaml down
+```command
+$ docker-compose -f install/eureka/istio.yaml down
```
## What's next
diff --git a/_docs/setup/index.md b/_docs/setup/index.md
index 2fbb1e459a25f..84b81bdfde555 100644
--- a/_docs/setup/index.md
+++ b/_docs/setup/index.md
@@ -1,11 +1,9 @@
---
title: Setup
-overview: Setup contains instructions for installing the Istio control plane in various environments (e.g., Kubernetes, Consul, etc.), as well as instructions for installing the sidecar in the application deployment.
+description: Setup contains instructions for installing the Istio control plane in various environments (e.g., Kubernetes, Consul, etc.), as well as instructions for installing the sidecar in the application deployment.
-order: 15
+weight: 15
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/setup/kubernetes/advanced-install.md b/_docs/setup/kubernetes/advanced-install.md
index 62e2084d6262c..902a89112b29d 100644
--- a/_docs/setup/kubernetes/advanced-install.md
+++ b/_docs/setup/kubernetes/advanced-install.md
@@ -1,11 +1,9 @@
---
title: Advanced Install Options
-overview: Instructions for customizing the Istio installation.
+description: Instructions for customizing the Istio installation.
-order: 20
+weight: 20
draft: true
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -20,7 +18,6 @@ L7 routing capabilities such as version-aware routing, header based
routing, gRPC/HTTP2 proxying, tracing, etc. Deploy Istio Pilot only and
disable other components. Do not deploy the Istio initializer.
-
## Ingress Controller with Telemetry & Policies
By deploying Istio Pilot and Mixer, the Ingress controller configuration
diff --git a/_docs/setup/kubernetes/ansible-install.md b/_docs/setup/kubernetes/ansible-install.md
index 1933c9f4186d2..cc6c720c14900 100644
--- a/_docs/setup/kubernetes/ansible-install.md
+++ b/_docs/setup/kubernetes/ansible-install.md
@@ -1,124 +1,107 @@
---
-title: Installing with Ansible
-overview: Instructions on using the included Ansible playbook to perform installation.
+title: Installation with Ansible
+description: Install Istio with the included Ansible playbook.
-order: 40
+weight: 40
-layout: docs
-type: markdown
---
-{% include home.html %}
-The Ansible scenario defined within this project will allow you to :
+{% include home.html %}
-- Deploy Istio on Kubernetes or Openshift by specifying different parameters (version, enable auth, deploy bookinfo, ...)
-- Specify the addons to be deployed such as `Grafana`, `Prometheus`, `Servicegraph`, `Zipkin` or `Jaeger`
+Instructions for the installation and configuration of Istio using Ansible.
## Prerequisites
-- [Ansible 2.4](http://docs.ansible.com/ansible/latest/intro_installation.html)
+The following instructions require [Ansible 2.4](https://docs.ansible.com/ansible/latest/intro_installation.html). Additionally Kubernetes **1.7.3 or newer** is required.
-Refer to the Ansible Installation Doc on how to install Ansible on your machine.
-To use [Minishift](https://docs.openshift.org/latest/minishift/command-ref/minishift_start.html) or [Minikube](https://kubernetes.io/docs/getting-started-guides/minikube/) for local clusters, please refer to their respective documentation.
+The following prerequisites must be met if using OpenShift.
-Furthermore, the following requirements must be met for the respective clusters
-* Kubernetes:
- - Minimum Version: `1.7.2`
- - `kubectl` configured to be able to access the cluster
-* Openshift
- - Minimum Version: `3.7.0`
- - `oc` configured to be able to access the cluster
- - User has logged in to the cluster
- - User has `admin` role on the Openshift platform
+* Minimum Version: **3.7.0**
+* **oc** configured to be able to access the cluster
+* User has logged in to the cluster
+* User has `admin` role on OpenShift
-## Execution
+## Deploy with Ansible
-**Important**: All invocations of the Ansible playbooks need to take place at the `install/ansible` path of the project.
-Failing to do so will result in unexpected errors
+**Important**: All execution of the Ansible playbooks must take place in the `install/ansible` path of Istio.
-The simplest execution command looks like the following:
-
-```bash
-ansible-playbook main.yml
-```
+This playbook will download and install Istio locally on your machine. To deploy the default settings of
+Istio on OpenShift, the following command may be used:
-Remarks:
-- This Ansible playbook is idempotent. If you find examples of lacking idempotency please file a bug.
-- The default parameters that apply to this role can be found in `istio/defaults/main.yml`.
-
-The full list of configurable parameters is as follows:
-
-| Parameter | Description | Values |
-| --- | --- | --- |
-| `cluster_flavour` | Defines whether the target cluster is a Kubernetes or an Openshift cluster. | Valid values are `k8s` and `ocp` (default) |
-| `github_api_token` | The API token used for authentication when calling the GitHub API | Any valid GitHub API token or empty (default) |
-| `cmd_path` | Can be used when the user does not have the `oc` or `kubectl` binary on the PATH | Defaults to expecting the binary is on the path |
-| `istio.release_tag_name` | Should be a valid Istio release version. If left empty, the latest Istio release will be installed | `0.2.12`, `0.3.0`, `0.4.0`, `0.5.0`, `0.5.1` |
-| `istio.dest` | The directory of the target machine where Istio will be installed | `~/.istio` (default) |
-| `istio.auth` | Boolean value to install Istio using MUTUAL_TLS | `true` and `false` (default) |
-| `istio.namespace` | The namespace where Istio will be installed | `istio-system` (default) |
-| `istio.addon` | Which Istio addons should be installed as well | This field is an array field, which by default contains `grafana`, `prometheus`, `zipkin` and `servicegraph` |
-| `istio.jaeger` | Whether or not Jaeger tracing should also be installed | `true` and `false` (default)|
-| `istio.delete_resources` | Boolean value to delete resources created under the Istio namespace | `true` and `false` (default)|
-| `istio.samples` | Array containing the names of the samples that should be installed | Valid names are: `bookinfo`, `helloworld`, `httpbin`, `sleep`
-
-
-An example of an invocation where we want to deploy Jaeger instead of Zipkin would be:
-```bash
-ansible-playbook main.yml -e '{"istio": {"jaeger": true}}'
+```command
+$ ansible-playbook main.yml
```
+## Customization with Ansible
-This playbook will take care of downloading and installing Istio locally on your machine, before deploying the necessary Kubernetes / Openshift
-pods, services etc. on to the cluster.
-
-### Note on istio.delete_resources
+The Ansible playbook ships with reasonable defaults.
-Activating the `istio.delete_resources` flag will result in any Istio related resources being deleted from the cluster before Istio is reinstalled.
+The currently exposed options are:
-In order to avoid any inconsistency issues, this flag should only be used to reinstall the same version of Istio on a cluster. If a new version
-of Istio need to be reinstalled, then it is advisable to delete the `istio-system` namespace before executing the playbook (in which case the
-`istio.delete_resources` flag does not need to be activated)
+| Parameter | Description | Values | Default |
+| --- | --- | --- | --- |
+| `cluster_flavour` | Define the target cluster type | `k8s` or `ocp` | `ocp` |
+| `github_api_token` | A valid GitHub API authentication token used for authenticating with GitHub | A valid GitHub API token | empty |
+| `cmd_path` | Override the path to `kubectl` or `oc` | A valid path to a `kubectl` or `oc` binary | `$PATH/oc` |
+| `istio.release_tag_name` | Istio release version to install | Any valid Istio release version | the latest Istio release version |
+| `istio.dest` | The directory of the target machine where Istio will be installed | Any directory with read+write permissions | `~/.istio` |
+| `istio.auth` | Install with mutual TLS | `true` or `false` | `false` |
+| `istio.namespace` | Kubernetes namespace where Istio will be installed | any namespace may be specified | `istio-system` |
+| `istio.addon` | Istio addons to install | array containing any of `grafana`, `prometheus`, `zipkin`, `jaeger`, or `servicegraph` | all addons are enabled by default |
+| `istio.delete_resources` | Delete resources created under Istio namespace | `true` or `false` | false |
+| `istio.samples` | Array containing the names of the samples that should be installed | `bookinfo`, `helloworld`, `httpbin`, `sleep` | none |
-## Typical use cases
+## Default installation
-The following commands are some examples of how a user could install Istio using this Ansible role:
+Operator installs Istio using all defaults on OpenShift:
-- User executes installs Istio accepting all defaults
-```bash
-ansible-playbook main.yml
+```command
+$ ansible-playbook main.yml
```
-- User installs Istio on to a Kubernetes cluster
-```bash
-ansible-playbook main.yml -e '{"cluster_flavour": "k8s"}'
+## Operational overrides
+
+There may be circumstances in which defaults require overrides.
+
+The following commands describe how an operator could use overrides with this Ansible playbook:
+
+Operator installs Istio on Kubernetes:
+
+```command
+$ ansible-playbook main.yml -e '{"cluster_flavour": "k8s"}'
```
-- User installs Istio on to a Kubernetes cluster and the path to `kubectl` is expicitly set (perhaps it's not on the PATH)
-```bash
-ansible-playbook main.yml -e '{"cluster_flavour": "k8s", "cmd_path": "~/kubectl"}'
+Operator installs Istio on Kubernetes and the path to `kubectl` is explicitly set:
+
+```command
+$ ansible-playbook main.yml -e '{"cluster_flavour": "k8s", "cmd_path": "~/kubectl"}'
```
-- User wants to install Istio on Openshift with settings other than the default
-```bash
-ansible-playbook main.yml -e '{"istio": {"release_tag_name": "0.4.0", "auth": true, "jaeger": true, "delete_resources": true}}'
+Operator installs Istio on OpenShift with settings other than the default:
+
+```command
+$ ansible-playbook main.yml -e '{"istio": {"release_tag_name": "0.6.0", "auth": true, "delete_resources": true}}'
```
-- User wants to install Istio on Openshift but with custom add-on settings
-```bash
-ansible-playbook main.yml -e '{"istio": {"delete_resources": true, "addon": ["grafana", "prometheus"]}}'
+Operator installs Istio on OpenShift with customized addons:
+
+```command
+$ ansible-playbook main.yml -e '{"istio": {"delete_resources": true, "addon": ["grafana", "prometheus", "jaeger"]}}'
```
-- User wants to install Istio on Openshift and additionally wants to deploy some of the samples
-```bash
-ansible-playbook main.yml -e '{"istio": {"samples": ["helloworld", "bookinfo"]}}'
+Operator installs Istio on OpenShift and additionally wants to deploy some of the samples:
+
+```command
+$ ansible-playbook main.yml -e '{"istio": {"samples": ["helloworld", "bookinfo"]}}'
```
-The list of available addons can be found at `istio/vars.main.yml` under the name `istio_all_addons`.
-Jaeger is not installed using the `addons` property, but can be installed by enabling `"jaeger": true` like in one of the previous examples.
-It should be noted that when Jaeger is enabled, Zipkin is disabled whether or not it's been selected in the addons section.
+> When Jaeger is enabled, Zipkin is disabled even when Zipkin is selected in the addons.
+
+## Uninstalling
+
+If a different version of Istio is desired, delete the `istio-system` namespace before executing the playbook.
+In this case, the `istio.delete_resources` flag does not need to be set.
-## Adding istioctl to PATH
+Setting `istio.delete_resources` to true will delete the Istio control plane from the cluster.
-After executing the playbook if it is desired that the `istioctl` command line tool be added to the PATH,
-search for `Add Istio to PATH` in the output and execute the commands that are outputted
\ No newline at end of file
+> In order to avoid any inconsistencies, this flag should only be used to reinstall the same version of Istio on a cluster.
diff --git a/_docs/setup/kubernetes/helm-install.md b/_docs/setup/kubernetes/helm-install.md
new file mode 100644
index 0000000000000..de8048d3f1c47
--- /dev/null
+++ b/_docs/setup/kubernetes/helm-install.md
@@ -0,0 +1,114 @@
+---
+title: Installation with Helm
+description: Install Istio with the included Helm chart.
+
+weight: 30
+
+redirect_from: /docs/setup/kubernetes/helm.html
+
+---
+
+{% include home.html %}
+
+Quick start instructions for the setup and configuration of Istio using the Helm package manager.
+
+<img src="{{home}}/img/exclamation-mark.svg" alt="Warning" title="Warning" style="width: 32px; display:inline" />
+Installation of Istio prior to version 0.8.0 with Helm is unstable and not recommended.
+
+## Prerequisites
+
+* Kubernetes **1.7.3 or newer** is required.
+* Helm **2.7.2 or newer** is required.
+* If you want to manage Istio releases with [Tiller](https://github.com/kubernetes/helm#helm-in-a-handbasket),
+the capability to install service accounts is required.
+* Using [automatic sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection) describes Kubernetes environmental requirements.
+
+## Deploy Istio using Helm
+
+There are two techniques for using Helm to deploy Istio. The first
+technique is to use `helm template` to render a manifest and use `kubectl`
+to create it.
+
+The second technique uses Helm's Tiller service to manage the lifecycle
+of Istio.
+
+### Render Kubernetes manifest with Helm and deploy with kubectl
+
+This is the most heavily tested method of deploying Istio. During the
+continuous integration automated testing and release process, the
+`helm` binary in `template` mode is used to render the various manifests
+produced for Istio.
+
+1. Create an `istio.yaml` Kubernetes manifest:
+ ```command
+ $ helm template install/kubernetes/helm/istio --name istio --namespace istio-system --set prometheus.enabled=true > $HOME/istio.yaml
+ ```
+
+1. Create the Istio control plane from `istio.yaml` manifest:
+ ```command
+ $ kubectl create ns istio-system
+ $ kubectl create -f $HOME/istio.yaml
+ ```
+
+### Alternatively, use Helm and Tiller to manage the Istio deployment
+
+<img src="{{home}}/img/exclamation-mark.svg" alt="Warning" title="Warning" style="width: 32px; display:inline" />
+Upgrading Istio using Helm is not validated.
+
+1. If a service account has not already been installed for Helm, please install one:
+ ```command
+ $ kubectl create -f install/kubernetes/helm/helm-service-account.yaml
+ ```
+
+1. Initialize Helm:
+ ```command
+ $ helm init --service-account tiller
+ ```
+
+1. Create the Helm chart:
+ ```command
+ $ helm install install/kubernetes/helm/istio --name istio --namespace istio-system
+ ```
+
+## Customization with Helm
+
+The Helm chart ships with reasonable defaults. There may be circumstances in which defaults require overrides.
+To override Helm values, use `--set key=value` argument during the `helm install` command. Multiple `--set` operations
+may be used in the same Helm operation.
+
+Helm charts expose configuration options which are currently in alpha. The currently exposed options are explained in the
+following table:
+
+| Parameter | Description | Values | Default |
+| --- | --- | --- | --- |
+| `global.hub` | Specifies the HUB for most images used by Istio | registry/namespace | `docker.io/istionightly` |
+| `global.tag` | Specifies the TAG for most images used by Istio | valid image tag | `circleci-nightly` |
+| `global.proxy.image` | Specifies the proxy image name | valid proxy name | `proxy` |
+| `global.imagePullPolicy` | Specifies the image pull policy | valid image pull policy | `IfNotPresent` |
+| `global.securityEnabled` | Specifies whether Istio CA should be installed | true/false | `true` |
+| `global.controlPlaneSecurityEnabled` | Specifies whether control plane mTLS is enabled | true/false | `false` |
+| `global.mtls.enabled` | Specifies whether mTLS is enabled by default between services | true/false | `false` |
+| `global.mtls.mtlsExcludedServices` | List of FQDNs to exclude from mTLS | a list of FQDNs | `- kubernetes.default.svc.cluster.local` |
+| `global.rbacEnabled` | Specifies whether to create Istio RBAC rules or not | true/false | `true` |
+| `global.refreshInterval` | Specifies the mesh discovery refresh interval | integer followed by s | `10s` |
+| `global.arch.amd64` | Specifies the scheduling policy for `amd64` architectures | 0 = never, 1 = least preferred, 2 = no preference, 3 = most preferred | `2` |
+| `global.arch.s390x` | Specifies the scheduling policy for `s390x` architectures | 0 = never, 1 = least preferred, 2 = no preference, 3 = most preferred | `2` |
+| `global.arch.ppc64le` | Specifies the scheduling policy for `ppc64le` architectures | 0 = never, 1 = least preferred, 2 = no preference, 3 = most preferred | `2` |
+| `galley.enabled` | Specifies whether Galley should be installed for server-side config validation. Requires k8s >= 1.9 | true/false | `false` |
+
+> The Helm chart also offers significant customization options per individual
+service. Customize these per-service options at your own risk.
+The per-service options are exposed via the
+[`values.yaml` file](https://raw.githubusercontent.com/istio/istio/master/install/kubernetes/helm/istio/values.yaml).
+
+## Uninstall Istio
+
+* Uninstall using kubectl:
+```command
+$ kubectl delete -f $HOME/istio.yaml
+```
+
+* Uninstall using Helm:
+```command
+$ helm delete --purge istio
+```
diff --git a/_docs/setup/kubernetes/helm.md b/_docs/setup/kubernetes/helm.md
deleted file mode 100644
index 88babbccd6791..0000000000000
--- a/_docs/setup/kubernetes/helm.md
+++ /dev/null
@@ -1,76 +0,0 @@
----
-title: Istio Helm Chart Instructions
-overview: Instructions for the setup and configuration of Istio using the Helm package manager.
-
-order: 30
-
-layout: docs
-type: markdown
----
-
-{% include home.html %}
-
-Quick Start instructions for the setup and configuration of Istio using the Helm package manager.
-
-<span style="color:red">**Warning: Helm charts are currently broken in 0.5.0**</span>
-
-## Prerequisites
-
-The following instructions require you have access to Helm **2.7.2 or newer** in your Kubernetes environment or
-alternately the ability to modify RBAC rules required to install Helm. Additionally Kubernetes **1.7.3 or newer**
-is also required. Finally this Helm chart **does not** yet implement automatic sidecar injection.
-
-## Deploy with Helm
-
-1. If a service account has not already been installed for Helm, please install one:
- ```bash
- kubectl create -f install/kubernetes/helm/helm-service-account.yaml
- ```
-
-1. Initialize Helm:
- ```bash
- helm init --service-account tiller
- ```
-
-1. Create the Helm chart:
- ```bash
- helm install install/kubernetes/helm/istio --name istio
- ```
-
-## Customization with Helm
-
-The Helm chart ships with reasonable defaults. There may be circumstances in which defaults require overrides.
-To override Helm values, use `--set key=value` argument during the `helm install` command. Multiple `--set` operations
-may be used in the same Helm operation.
-
-Helm charts expose configuration options which are currently in alpha. The currently exposed options are explained in the
-following table:
-
-| Helm Variable | Possible Values | Default Value | Purpose of Key |
-|------------------------------|--------------------|----------------------------|------------------------------------------------|
-| global.namespace | any Kubernetes ns | istio-system | Specifies the namespace for Istio |
-| global.initializer.enabled | true/false | true | Specifies whether to use the Initializer |
-| global.proxy.hub | registry+namespace | release registry/namespace | Specifies the HUB for the proxy image |
-| global.proxy.tag | image tag | release unique hash | Specifies the TAG for the proxy image |
-| global.proxy.debug | true/false | false | Specifies whether proxy is run in debug mode |
-| global.pilot.hub | registry+namespace | release registry/namespace | Specifies the HUB for the pilot image |
-| global.pilot.tag | image tag | release unique hash | Specifies the TAG for the pilot image |
-| global.pilot.enabled | true/false | true | Specifies whether pilot is enabled/disabled |
-| global.security.hub | registry+namespace | release registry/namespace | Specifies the HUB for the ca image |
-| global.security.tag | image tag | release unique hash | Specifies the TAG for the ca image |
-| global.security.enabled | true/false | false | Specifies whether security is enabled/disabled |
-| global.mixer.hub | registry+namespace | release registry/namespace | Specifies the HUB for the mixer image |
-| global.mixer.tag | image tag | release unique hash | Specifies the TAG for the mixer image |
-| global.mixer.enabled | true/false | true | Specifies whether mixer is enabled/disabled |
-| global.hyperkube.hub | registry+namesapce | quay.io/coreos/hyperkube | Specifies the HUB for the hyperkube image |
-| global.hyperkube.tag | image tag | v1.7.6_coreos.0 | Specifies the TAG for the hyperkube image |
-| global.ingress.use_nodeport | true/false | false | Specifies whether to use nodeport or LB |
-| global.ingress.nodeport_port | 32000-32767 | 32000 | If nodeport is used, specifies its port |
-
-## Uninstalling
-
-* Uninstall Istio:
-
- ```bash
- helm delete --purge istio
- ```
diff --git a/_docs/setup/kubernetes/img/dm_gcp_iam.png b/_docs/setup/kubernetes/img/dm_gcp_iam.png
index 394520e4fcdbc..48826f38c5905 100644
Binary files a/_docs/setup/kubernetes/img/dm_gcp_iam.png and b/_docs/setup/kubernetes/img/dm_gcp_iam.png differ
diff --git a/_docs/setup/kubernetes/img/dm_gcp_iam_role.png b/_docs/setup/kubernetes/img/dm_gcp_iam_role.png
new file mode 100644
index 0000000000000..33517381eb9a7
Binary files /dev/null and b/_docs/setup/kubernetes/img/dm_gcp_iam_role.png differ
diff --git a/_docs/setup/kubernetes/index.md b/_docs/setup/kubernetes/index.md
index 64059bbd11ebb..71ca6e948a97f 100644
--- a/_docs/setup/kubernetes/index.md
+++ b/_docs/setup/kubernetes/index.md
@@ -1,11 +1,9 @@
---
title: Kubernetes
-overview: Instructions for installing the Istio control plane on Kubernetes and adding VMs into the mesh.
+description: Instructions for installing the Istio control plane on Kubernetes and adding VMs into the mesh.
-order: 10
+weight: 10
-layout: docs
-type: markdown
redirect_from: "/docs/tasks/installing-istio.html"
toc: false
---
diff --git a/_docs/setup/kubernetes/mesh-expansion.md b/_docs/setup/kubernetes/mesh-expansion.md
index a5e978135b026..6c6a6729b6077 100644
--- a/_docs/setup/kubernetes/mesh-expansion.md
+++ b/_docs/setup/kubernetes/mesh-expansion.md
@@ -1,11 +1,9 @@
---
-title: Istio Mesh Expansion
-overview: Instructions for integrating VMs and bare metal hosts into an Istio mesh deployed on Kubernetes.
+title: Mesh Expansion
+description: Instructions for integrating VMs and bare metal hosts into an Istio mesh deployed on Kubernetes.
-order: 60
+weight: 60
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -21,7 +19,7 @@ typically requires a VPC or a VPN, as well as a container network that
provides direct (without NAT or firewall deny) routing to the endpoints. The machine
is not required to have access to the cluster IP addresses assigned by Kubernetes.
-* The Istio control plane services (Pilot, Mixer, CA) and Kubernetes DNS server must be accessible
+* The Istio control plane services (Pilot, Mixer, Citadel) and Kubernetes DNS server must be accessible
from the VMs. This is typically done using an [Internal Load
Balancer](https://kubernetes.io/docs/concepts/services-networking/service/#internal-load-balancer).
You can also use NodePort, run Istio components on VMs, or use custom network configurations,
@@ -39,85 +37,76 @@ You should customize it based on your provisioning tools and DNS requirements.
### Preparing the Kubernetes cluster for expansion
-* Setup Internal Load Balancers (ILBs) for Kube DNS, Pilot, Mixer and CA. This step is specific to
+* Setup Internal Load Balancers (ILBs) for Kube DNS, Pilot, Mixer and Citadel. This step is specific to
each cloud provider, so you may need to edit annotations.
-```
-kubectl apply -f install/kubernetes/mesh-expansion.yaml
-```
+ ```command
+ $ kubectl apply -f install/kubernetes/mesh-expansion.yaml
+ ```
* Generate the Istio 'cluster.env' configuration to be deployed in the VMs. This file contains
the cluster IP address ranges to intercept.
-```bash
-export GCP_OPTS="--zone MY_ZONE --project MY_PROJECT"
-```
-```bash
-install/tools/setupMeshEx.sh generateClusterEnv MY_CLUSTER_NAME
-```
+ ```command
+ $ export GCP_OPTS="--zone MY_ZONE --project MY_PROJECT"
+ $ install/tools/setupMeshEx.sh generateClusterEnv MY_CLUSTER_NAME
+ ```
-Example generated file:
+ Here's an example generated file
-```bash
-cat cluster.env
-```
-```
-ISTIO_SERVICE_CIDR=10.63.240.0/20
-```
+ ```command
+ $ cat cluster.env
+ ISTIO_SERVICE_CIDR=10.63.240.0/20
+ ```
* Generate DNS configuration file to be used in the VMs. This will allow apps on the VM to resolve
cluster service names, which will be intercepted by the sidecar and forwarded.
-```bash
-# Make sure your kubectl context is set to your cluster
-install/tools/setupMeshEx.sh generateDnsmasq
-```
+ ```command
+ $ install/tools/setupMeshEx.sh generateDnsmasq
+ ```
-Example generated file:
+ Here's an example generated file
-```bash
-cat kubedns
-```
-```
-server=/svc.cluster.local/10.150.0.7
-address=/istio-mixer/10.150.0.8
-address=/istio-pilot/10.150.0.6
-address=/istio-ca/10.150.0.9
-address=/istio-mixer.istio-system/10.150.0.8
-address=/istio-pilot.istio-system/10.150.0.6
-address=/istio-ca.istio-system/10.150.0.9
-```
+ ```command
+ $ cat kubedns
+ server=/svc.cluster.local/10.150.0.7
+ address=/istio-mixer/10.150.0.8
+ address=/istio-pilot/10.150.0.6
+ address=/istio-citadel/10.150.0.9
+ address=/istio-mixer.istio-system/10.150.0.8
+ address=/istio-pilot.istio-system/10.150.0.6
+ address=/istio-citadel.istio-system/10.150.0.9
+ ```
### Setting up the machines
As an example, you can use the following "all inclusive" script to copy
and install the setup:
-```bash
-# Check what the script does to see that it meets your needs.
-export GCP_OPTS="--zone MY_ZONE --project MY_PROJECT"
-# change to the namespace you wish to use for VMs but 'vm' is what the bookinfo guide assumes
-export SERVICE_NAMESPACE=vm
+```command
+$ export GCP_OPTS="--zone MY_ZONE --project MY_PROJECT"
+$ export SERVICE_NAMESPACE=vm
```
If you are running on a GCE VM, run
-```bash
-install/tools/setupMeshEx.sh gceMachineSetup VM_NAME
+```command
+$ install/tools/setupMeshEx.sh gceMachineSetup VM_NAME
```
Otherwise, run
-```bash
-install/tools/setupMeshEx.sh machineSetup VM_NAME
+
+```command
+$ install/tools/setupMeshEx.sh machineSetup VM_NAME
```
GCE provides better user experience since node agent can always relies on
-GCE metadata instance document to authenticate to Istio CA. For everything
+GCE metadata instance document to authenticate to Citadel. For everything
else, e.g., on-prem or raw VM, we have to bootstrap a key/cert as credential,
which typically has a limited lifetime. And when the cert expires, you have to
rerun the above command.
-
Or the equivalent manual steps:
------ Manual setup steps begin ------
@@ -129,88 +118,93 @@ Save the files as `/etc/dnsmasq.d/kubedns` and `/var/lib/istio/envoy/cluster.env
adding it to `/etc/resolv.conf` directly or via DHCP scripts. To verify, check that the VM can resolve
names and connect to pilot, for example:
-On the VM/external host:
-```bash
-host istio-pilot.istio-system
-```
-Example generated message:
-```
-# Verify you get the same address as shown as "EXTERNAL-IP" in 'kubectl get svc -n istio-system istio-pilot-ilb'
-istio-pilot.istio-system has address 10.150.0.6
-```
-Check that you can resolve cluster IPs. The actual address will depend on your deployment.
-```bash
-host istio-pilot.istio-system.svc.cluster.local.
-```
-Example generated message:
-```
-istio-pilot.istio-system.svc.cluster.local has address 10.63.247.248
-```
-Check istio-ingress similarly:
-```bash
-host istio-ingress.istio-system.svc.cluster.local.
-```
-Example generated message:
-```
-istio-ingress.istio-system.svc.cluster.local has address 10.63.243.30
-```
+ On the VM/external host:
+
+ ```command
+ $ host istio-pilot.istio-system
+ ```
+
+ Example generated message:
+
+ ```plain
+ $ istio-pilot.istio-system has address 10.150.0.6
+ ```
+
+ Check that you can resolve cluster IPs. The actual address will depend on your deployment.
+
+ ```command
+ $ host istio-pilot.istio-system.svc.cluster.local.
+ ```
+
+ Example generated message:
+
+ ```plain
+ istio-pilot.istio-system.svc.cluster.local has address 10.63.247.248
+ ```
+
+ Check istio-ingress similarly:
+
+ ```command
+ $ host istio-ingress.istio-system.svc.cluster.local.
+ ```
+
+ Example generated message:
+
+ ```plain
+ istio-ingress.istio-system.svc.cluster.local has address 10.63.243.30
+ ```
* Verify connectivity by checking whether the VM can connect to Pilot and to an endpoint.
-```bash
-curl 'http://istio-pilot.istio-system:8080/v1/registration/istio-pilot.istio-system.svc.cluster.local|http-discovery'
-```
-```
-{
- "hosts": [
+ ```command
+ $ curl 'http://istio-pilot.istio-system:8080/v1/registration/istio-pilot.istio-system.svc.cluster.local|http-discovery'
+ ```
+
+ ```json
{
- "ip_address": "10.60.1.4",
- "port": 8080
+ "hosts": [
+ {
+ "ip_address": "10.60.1.4",
+ "port": 8080
+ }
+ ]
}
- ]
-}
-```
-```bash
-# On the VM, use the address above. It will directly connect to the pod running istio-pilot.
-curl 'http://10.60.1.4:8080/v1/registration/istio-pilot.istio-system.svc.cluster.local|http-discovery'
-```
+ ```
+
+ On the VM, use the address above. It will directly connect to the pod running istio-pilot.
+ ```command
+ $ curl 'http://10.60.1.4:8080/v1/registration/istio-pilot.istio-system.svc.cluster.local|http-discovery'
+ ```
* Extract the initial Istio authentication secrets and copy them to the machine. The default
-installation of Istio includes Istio CA and will generate Istio secrets even if
+installation of Istio includes Citadel and will generate Istio secrets even if
the automatic 'mTLS'
setting is disabled (it creates secret for each service account, and the secret
is named as `istio.<serviceaccount>`). It is recommended that you perform this
step to make it easy to enable mTLS in the future and to upgrade to a future version
that will have mTLS enabled by default.
-```bash
-# ACCOUNT defaults to 'default', or SERVICE_ACCOUNT environment variable
-# NAMESPACE defaults to current namespace, or SERVICE_NAMESPACE environment variable
-# (this step is done by machineSetup)
-# On a mac either brew install base64 or set BASE64_DECODE="/usr/bin/base64 -D"
-install/tools/setupMeshEx.sh machineCerts ACCOUNT NAMESPACE
-```
-
-The generated files (`key.pem`, `root-cert.pem`, `cert-chain.pem`) must be copied to /etc/certs on each machine, readable by istio-proxy.
-
-* Install Istio Debian files and start 'istio' and 'istio-auth-node-agent' services.
-Get the debian packages from [github releases](https://github.com/istio/istio/releases) or:
-
- ```bash
- # Note: This will be replaced with an 'apt-get' command once the repositories are setup.
+ `ACCOUNT` defaults to 'default', or `SERVICE_ACCOUNT` environment variable
+ `NAMESPACE` defaults to current namespace, or `SERVICE_NAMESPACE` environment variable
+ (this step is done by machineSetup)
+ On a Mac either `brew install base64` or `set BASE64_DECODE="/usr/bin/base64 -D"`
- source istio.VERSION # defines version and URLs env var
- curl -L ${PILOT_DEBIAN_URL}/istio-agent.deb > ${ISTIO_STAGING}/istio-agent.deb
- curl -L ${AUTH_DEBIAN_URL}/istio-auth-node-agent.deb > ${ISTIO_STAGING}/istio-auth-node-agent.deb
- curl -L ${PROXY_DEBIAN_URL}/istio-proxy.deb > ${ISTIO_STAGING}/istio-proxy.deb
+ ```command
+ install/tools/setupMeshEx.sh machineCerts ACCOUNT NAMESPACE
+ ```
- dpkg -i istio-proxy-envoy.deb
- dpkg -i istio-agent.deb
- dpkg -i istio-auth-node-agent.deb
+ The generated files (`key.pem`, `root-cert.pem`, `cert-chain.pem`) must be copied to /etc/certs on each machine, readable by istio-proxy.
- systemctl start istio
- systemctl start istio-auth-node-agent
+* Install Istio Debian files and start 'istio' and 'istio-auth-node-agent' services.
+Get the debian packages from [GitHub releases](https://github.com/istio/istio/releases) or:
+
+ ```command
+ $ source istio.VERSION # defines version and URLs env var
+ $ curl -L ${PILOT_DEBIAN_URL}/istio-sidecar.deb > istio-sidecar.deb
+ $ dpkg -i istio-sidecar.deb
+ $ systemctl start istio
+ $ systemctl start istio-auth-node-agent
```
------ Manual setup steps end ------
@@ -218,29 +212,27 @@ Get the debian packages from [github releases](https://github.com/istio/istio/re
After setup, the machine should be able to access services running in the Kubernetes cluster
or other mesh expansion machines.
-```bash
-# Assuming you install bookinfo in 'bookinfo' namespace
-curl productpage.bookinfo.svc.cluster.local:9080
-```
+```command
+$ curl productpage.bookinfo.svc.cluster.local:9080
```
+```plain
... html content ...
```
Check that the processes are running:
-```bash
-ps aux |grep istio
-```
-```
+
+```command
+$ ps aux |grep istio
root 6941 0.0 0.2 75392 16820 ? Ssl 21:32 0:00 /usr/local/istio/bin/node_agent --logtostderr
root 6955 0.0 0.0 49344 3048 ? Ss 21:32 0:00 su -s /bin/bash -c INSTANCE_IP=10.150.0.5 POD_NAME=demo-vm-1 POD_NAMESPACE=default exec /usr/local/bin/pilot-agent proxy > /var/log/istio/istio.log istio-proxy
istio-p+ 7016 0.0 0.1 215172 12096 ? Ssl 21:32 0:00 /usr/local/bin/pilot-agent proxy
istio-p+ 7094 4.0 0.3 69540 24800 ? Sl 21:32 0:37 /usr/local/bin/envoy -c /etc/istio/proxy/envoy-rev1.json --restart-epoch 1 --drain-time-s 2 --parent-shutdown-time-s 3 --service-cluster istio-proxy --service-node sidecar~10.150.0.5~demo-vm-1.default~default.svc.cluster.local
```
+
Istio auth node agent is healthy:
-```bash
-sudo systemctl status istio-auth-node-agent
-```
-```
+
+```command
+$ sudo systemctl status istio-auth-node-agent
● istio-auth-node-agent.service - istio-auth-node-agent: The Istio auth node agent
Loaded: loaded (/lib/systemd/system/istio-auth-node-agent.service; disabled; vendor preset: enabled)
Active: active (running) since Fri 2017-10-13 21:32:29 UTC; 9s ago
@@ -264,26 +256,26 @@ Oct 13 21:32:29 demo-vm-1 node_agent[6941]: I1013 21:32:29.862575 6941 nodeag
* Configure the sidecar to intercept the port. This is configured in ``/var/lib/istio/envoy/sidecar.env`,
using the ISTIO_INBOUND_PORTS environment variable.
- Example (on the VM running the service):
+ Example (on the VM running the service):
-```bash
-echo "ISTIO_INBOUND_PORTS=27017,3306,8080" > /var/lib/istio/envoy/sidecar.env
-systemctl restart istio
-```
+ ```command
+ $ echo "ISTIO_INBOUND_PORTS=27017,3306,8080" > /var/lib/istio/envoy/sidecar.env
+ $ systemctl restart istio
+ ```
* Manually configure a selector-less service and endpoints. The 'selector-less' service is used for
services that are not backed by Kubernetes pods.
Example, on a machine with permissions to modify Kubernetes services:
-```bash
-# istioctl register servicename machine-ip portname:port
-istioctl -n onprem register mysql 1.2.3.4 3306
-istioctl -n onprem register svc1 1.2.3.4 http:7000
-```
+
+ ```command
+ $ istioctl -n onprem register mysql 1.2.3.4 3306
+ $ istioctl -n onprem register svc1 1.2.3.4 http:7000
+ ```
After the setup, Kubernetes pods and other mesh expansions should be able to access the
services running on the machine.
-## Putting it all together
+## What's next
-See the [Bookinfo Mesh Expansion]({{home}}/docs/guides/integrating-vms.html) guide.
+* See the [Bookinfo Mesh Expansion]({{home}}/docs/guides/integrating-vms.html) guide.
diff --git a/_docs/setup/kubernetes/multicluster-install.md b/_docs/setup/kubernetes/multicluster-install.md
new file mode 100644
index 0000000000000..9071e61c27bd8
--- /dev/null
+++ b/_docs/setup/kubernetes/multicluster-install.md
@@ -0,0 +1,210 @@
+---
+title: Istio Multicluster
+description: Install Istio with multicluster support.
+
+weight: 65
+
+---
+
+{% include home.html %}
+
+Instructions for the installation of Istio multicluster.
+
+## Prerequisites
+
+* Two or more Kubernetes clusters with **1.7.3 or newer**.
+
+* The ability to deploy the [Istio control plane]({{home}}/docs/setup/kubernetes/quick-start.html)
+on **one** Kubernetes cluster.
+
+* The usage of an RFC1918 network, VPN, or alternative more advanced network techniques
+to meet the following requirements:
+
+ * Individual cluster Pod CIDR ranges and service CIDR ranges must be unique
+across the multicluster environment and may not overlap.
+
+ * All pod CIDRs in every cluster must be routable to each other.
+
+ * All Kubernetes control plane API servers must be routable to each other.
+
+* Helm **2.7.2 or newer**. The use of Tiller is optional.
+
+* Currently only [manual sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar-injection)
+has been validated with multicluster.
+
+## Caveats and known problems
+
+<img src="{{home}}/img/exclamation-mark.svg" alt="Warning" title="Warning" style="width: 32px; display:inline" />
+All known caveats and known problems with multicluster for the 0.8 release are [tracked here](https://github.com/istio/istio/issues/4822).
+
+## Overview
+
+Multicluster functions by enabling Kubernetes control planes running
+a remote configuration to connect to **one** Istio control plane.
+Once one or more remote Kubernetes clusters are connected to the
+Istio control plane, Envoy can then communicate with the **single**
+Istio control plane and form a mesh network across multiple Kubernetes
+clusters.
+
+## Deploy all Kubernetes clusters to be used in the mesh
+
+After deployment of remote clusters, each one will have a
+credentials file associated with the admin context typically
+located in `$HOME/.kube/config`.
+
+## Gather credential files from remote
+
+> `${CLUSTER_NAME}` here is defined as the name of the remote
+cluster used and must be unique across the mesh. Some Kubernetes
+installers do not set this value uniquely. In this case, manual
+modification of the `${CLUSTER_NAME}` fields must be done.
+
+For each remote cluster, execute the following steps:
+
+1. Determine a name for the remote cluster that is unique across
+all clusters in the mesh. Substitute the chosen name for the
+remaining steps in `${CLUSTER_NAME}`.
+
+1. Copy the credentials file form the remote Kubernetes cluster
+to the local Istio control plane cluster directory
+`$HOME/multicluster/${CLUSTER_NAME}`. The `${CLUSTER_NAME}` must
+be unique per remote.
+
+1. Modify the name of the remote cluster's credential file field
+`clusters.cluster.name` to match `${CLUSTER_NAME}`.
+
+1. Modify the name of the remote cluster's credential file field
+`contexts.context.cluster` to match `${CLUSTER_NAME}`.
+
+## Instantiate the credentials for each remote cluster
+
+> Execute this work on the cluster intended to run the Istio control
+plane.
+
+> Istio can be installed in a different namespace other than
+istio-system.
+
+Create a namespace for instantiating the secrets:
+
+```command
+$ kubectl create ns istio-system
+```
+
+> Ordering currently matters. Secrets must be created prior to
+the deployment of the Istio control plane. Creating secrets
+after Istio is started will not register the secrets with Istio
+properly.
+
+> The local cluster running the Istio control plane does not need
+it's secrets stored and labeled. The local node is always aware of
+it's Kubernetes credentials, but the local node is not aware of
+the remote nodes' credentials.
+
+Create a secret and label it properly for each remote cluster:
+
+```command
+$ pushd $HOME/multicluster
+$ kubectl create secret generic ${CLUSTER_NAME} --from-file ${CLUSTER_NAME} -n istio-system
+$ kubectl label secret ${CLUSTER_NAME} istio/multiCluster=true -n istio-system
+$ popd
+```
+
+## Deploy the local Istio control plane
+
+Install the [Istio control plane]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps)
+on **one** Kubernetes cluster.
+
+## Install the Istio remote on every remote cluster
+
+The istio-remote component must be deployed to each remote Kubernetes
+cluster. There are two approaches to installing the remote. The remote
+can be installed and managed entirely by Helm and Tiller, or via Helm and
+kubectl.
+
+### Set environment variables for Pod IPs from Istio control plane needed by remote
+
+> Please wait for the Istio control plane to finish initializing
+before proceeding to steps in this section.
+
+> These operations must be run on the Istio control plane cluster
+to capture the Pilot, Policy, and Statsd Pod IP endpoints.
+
+> If Helm is used with Tiller on each remote, copy the environment
+variables to each node before using Helm to connect the remote
+cluster to the Istio control plane.
+
+```command
+$ export PILOT_POD_IP=$(kubectl -n istio-system get pod -l istio=pilot -o jsonpath='{.items[0].status.podIP}')
+$ export POLICY_POD_IP=$(kubectl -n istio-system get pod -l istio=mixer -o jsonpath='{.items[0].status.podIP}')
+$ export STATSD_POD_IP=$(kubectl -n istio-system get pod -l istio=statsd-prom-bridge -o jsonpath='{.items[0].status.podIP}')
+```
+
+### Use kubectl with Helm to connect the remote cluster to the local
+
+1. Use the helm template command on a remote to specify the Istio control plane service endpoints:
+
+ ```command
+ $ helm template install/kubernetes/helm/istio-remote --namespace istio-system --name istio-remote --set global.pilotEndpoint=${PILOT_POD_IP} --set global.policyEndpoint=${POLICY_POD_IP} --set global.statsdEndpoint=${STATSD_POD_IP} > $HOME/istio-remote.yaml
+ ```
+
+1. Create a namespace for remote Istio.
+ ```command
+ $ kubectl create ns istio-system
+ ```
+1. Instantiate the remote cluster's connection to the Istio control plane:
+
+ ```command
+ $ kubectl create -f $HOME/istio-remote.yaml
+ ```
+
+### Alternatively use Helm and Tiller to connect the remote cluster to the local
+
+1. If a service account has not already been installed for Helm, please
+install one:
+
+ ```command
+ $ kubectl create -f install/kubernetes/helm/helm-service-account.yaml
+ ```
+
+1. Initialize Helm:
+
+ ```command
+ $ helm init --service-account tiller
+ ```
+
+1. Install the Helm chart:
+
+ ```command
+ $ helm install install/kubernetes/helm/istio-remote --name istio-remote --set global.pilotEndpoint=${PILOT_POD_IP} --set global.policyEndpoint=${POLICY_POD_IP} --set global.statsdEndpoint=${STATSD_POD_IP} --namespace istio-system
+ ```
+
+### Helm configuration parameters
+
+> The `pilotEndpoint`, `policyEndpoint`, `statsdEndpoint` need to be resolvable via Kubernetes.
+The simplest approach to enabling resolution for these variables is to specify the Pod IP of
+the various services. One problem with this is Pod IP's change during the lifetime of the
+service.
+
+The `isito-remote` Helm chart requires the three specific variables to be configured as defined in the following table:
+
+| Helm Variable | Accepted Values | Default | Purpose of Value |
+| --- | --- | --- | --- |
+| `global.pilotEndpoint` | A valid IP address | istio-pilot.istio-system | Specifies the Istio control plane's pilot Pod IP address |
+| `global.policyEndpoint` | A valid IP address | istio-policy.istio-system | Specifies the Istio control plane's policy Pod IP address |
+| `global.statsdEndpoint` | A valid IP address | istio-statsd-prom-bridge.istio-system | Specifies the Istio control plane's statsd Pod IP address |
+
+## Uninstalling
+
+> The uninstall method must match the installation method (`Helm and kubectl` or `Helm and Tiller` based).
+
+### Use kubectl to uninstall istio-remote
+
+```command
+$ kubectl delete -f $HOME/istio-remote.yaml
+```
+
+### Alternatively use Helm and Tiller to uninstall istio-remote
+
+```command
+$ helm delete --purge istio-remote
+```
diff --git a/_docs/setup/kubernetes/quick-start-gke-dm.md b/_docs/setup/kubernetes/quick-start-gke-dm.md
index 1adf248374159..3942c0d79bd01 100644
--- a/_docs/setup/kubernetes/quick-start-gke-dm.md
+++ b/_docs/setup/kubernetes/quick-start-gke-dm.md
@@ -1,22 +1,18 @@
---
title: Quick Start with Google Kubernetes Engine
-overview: Quick Start instructions to setup the Istio service using Google Kubernetes Engine (GKE)
+description: Quick Start instructions to setup the Istio service using Google Kubernetes Engine (GKE)
-order: 11
+weight: 11
-layout: docs
-type: markdown
---
{% include home.html %}
-
Quick Start instructions to install and run Istio in [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/) (GKE) using [Google Cloud Deployment Manager](https://cloud.google.com/deployment-manager/).
This Quick Start creates a new GKE [zonal cluster](https://cloud.google.com/kubernetes-engine/versioning-and-upgrades#versions_available_for_new_cluster_masters), installs Istio and then deploys the [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample
application. It uses Deployment Manager to automate the steps detailed in the [Istio on Kubernetes setup guide]({{home}}/docs/setup/kubernetes/quick-start.html) for Kubernetes Engine
-
## Prerequisites
- This sample requires a valid Google Cloud Platform project with billing enabled. If you are not an existing GCP user, you may be able to enroll for a $300 US [Free Trial](https://cloud.google.com/free/) credit.
@@ -31,11 +27,16 @@ application. It uses Deployment Manager to automate the steps detailed in the [
To set this, navigate to the **IAM** section of the [Cloud Console](https://console.cloud.google.com/iam-admin/iam/project) as shown below and find your default GCE/GKE service account in the following form: `projectNumber-compute@developer.gserviceaccount.com`: by default it should just have the **Editor** role. Then in the **Roles** drop-down list for that account, find the **Kubernetes Engine** group and select the role **Kubernetes Engine Admin**. The **Roles** listing for your account will change to **Multiple**.
- {% include figure.html width="100%" ratio="30%"
- img='./img/dm_gcp_iam.png'
- alt='GCP-IAM Permissions'
- title='GCP-IAM Permissions'
- caption='GKE-IAM Permissions'
+ {% include image.html width="100%" ratio="30%"
+ link="./img/dm_gcp_iam.png"
+ caption="GKE-IAM Service"
+ %}
+
+Then add the ```Kubernetes Engine Admin``` Role
+
+ {% include image.html width="100%" ratio="37%"
+ link="./img/dm_gcp_iam_role.png"
+ caption="GKE-IAM Role"
%}
## Setup
@@ -44,24 +45,22 @@ application. It uses Deployment Manager to automate the steps detailed in the [
1. Once you have an account and project enabled, click the following link to open the Deployment Manager.
- - [Istio GKE Deployment Manager](https://accounts.google.com/signin/v2/identifier?service=cloudconsole&continue=https://console.cloud.google.com/launcher/config?templateurl=https://raw.githubusercontent.com/istio/istio/master/install/gcp/deployment_manager/istio-cluster.jinja&followup=https://console.cloud.google.com/launcher/config?templateurl=https://raw.githubusercontent.com/istio/istio/master/install/gcp/deployment_manager/istio-cluster.jinja&flowName=GlifWebSignIn&flowEntry=ServiceLogin)
+ [Istio GKE Deployment Manager](https://accounts.google.com/signin/v2/identifier?service=cloudconsole&continue=https://console.cloud.google.com/launcher/config?templateurl=https://raw.githubusercontent.com/istio/istio/master/install/gcp/deployment_manager/istio-cluster.jinja&followup=https://console.cloud.google.com/launcher/config?templateurl=https://raw.githubusercontent.com/istio/istio/master/install/gcp/deployment_manager/istio-cluster.jinja&flowName=GlifWebSignIn&flowEntry=ServiceLogin)
- We recommend that you leave the default settings as the rest of this tutorial shows how to access the installed features. By default the tool creates a
+ We recommend that you leave the default settings as the rest of this tutorial shows how to access the installed features. By default the tool creates a
GKE alpha cluster with the specified settings, then installs the Istio [control plane]({{home}}/docs/concepts/what-is-istio/overview.html#architecture), the
[Bookinfo]({{home}}/docs/guides/bookinfo.html) sample app,
[Grafana]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html) with
[Prometheus]({{home}}/docs/tasks/telemetry/querying-metrics.html),
[ServiceGraph]({{home}}/docs/tasks/telemetry/servicegraph.html),
and [Zipkin]({{home}}/docs/tasks/telemetry/distributed-tracing.html#zipkin).
- You'll find out more about how to access all of these below. This script will enable istio auto-injection on the ```default``` namespace only.
+ You'll find out more about how to access all of these below. This script will enable Istio auto-injection on the ```default``` namespace only.
-2. Click **Deploy**:
+1. Click **Deploy**:
- {% include figure.html width="100%" ratio="67.17%"
- img='./img/dm_launcher.png'
- alt='GKE-Istio Launcher'
- title='GKE-Istio Launcher'
- caption='GKE-Istio Launcher'
+ {% include image.html width="100%" ratio="67.17%"
+ link="./img/dm_launcher.png"
+ caption="GKE-Istio Launcher"
%}
Wait until Istio is fully deployed. Note that this can take up to five minutes.
@@ -70,37 +69,32 @@ application. It uses Deployment Manager to automate the steps detailed in the [
Once deployment is complete, do the following on the workstation where you've installed `gcloud`:
-1. Bootstrap kubectl for the cluster you just created and confirm the cluster is
- running and istio is enabled
-
- ```
- gcloud container clusters list
- ```
+1. Bootstrap `kubectl` for the cluster you just created and confirm the cluster is
+running and Istio is enabled
- ```
+ ```command
+ $ gcloud container clusters list
NAME ZONE MASTER_VERSION MASTER_IP MACHINE_TYPE NODE_VERSION NUM_NODES STATUS
istio-cluster us-central1-a v1.9.2-gke.1 130.211.216.64 n1-standard-2 v1.9.2-gke.1 3 RUNNING
```
In this case, the cluster name is ```istio-cluster```
-2. Now acquire the credentials for this cluster
+1. Now acquire the credentials for this cluster
- ```
- gcloud container clusters get-credentials istio-cluster --zone=us-central1-a
+ ```command
+ $ gcloud container clusters get-credentials istio-cluster --zone=us-central1-a
```
## Verify installation
Verify Istio is installed in its own namespace
-```bash
-kubectl get deployments,ing -n istio-system
-```
-```
+```command
+$kubectl get deployments,ing -n istio-system
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
deploy/grafana 1 1 1 1 3m
-deploy/istio-ca 1 1 1 1 3m
+deploy/istio-citadel 1 1 1 1 3m
deploy/istio-ingress 1 1 1 1 3m
deploy/istio-initializer 1 1 1 1 3m
deploy/istio-mixer 1 1 1 1 3m
@@ -110,14 +104,10 @@ deploy/servicegraph 1 1 1 1 3m
deploy/zipkin 1 1 1 1 3m
```
-
Now confirm that the Bookinfo sample application is also installed:
-
-```bash
-kubectl get deployments,ing
-```
-```
+```command
+$ kubectl get deployments,ing
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
deploy/details-v1 1 1 1 1 3m
deploy/productpage-v1 1 1 1 1 3m
@@ -134,86 +124,75 @@ Note down the IP and Port assigned to Bookinfo product page. (in the example abo
You can also view the installation using the ***Kubernetes Engine -> Workloads** section on the [Cloud Console](https://console.cloud.google.com/kubernetes/workload):
-{% include figure.html width="100%" ratio="65.37%"
- img='./img/dm_kubernetes_workloads.png'
- alt='GKE-Workloads'
- title='GKE-Workloads'
- caption='GKE-Workloads'
+{% include image.html width="100%" ratio="65.37%"
+ link="./img/dm_kubernetes_workloads.png"
+ caption="GKE-Workloads"
%}
### Access the Bookinfo sample
1. Set up an environment variable for Bookinfo's external IP address:
- ```bash
- kubectl get ingress -o wide
- ```
- ```bash
- export GATEWAY_URL=35.202.120.89
+ ```command
+ $ kubectl get ingress -o wide
+ $ export GATEWAY_URL=35.202.120.89
```
-2. Verify you can access the Bookinfo ```http://${GATEWAY_URL}/productpage```:
+1. Verify you can access the Bookinfo ```http://${GATEWAY_URL}/productpage```:
- {% include figure.html width="100%" ratio="45.04%"
- img='./img/dm_bookinfo.png'
- alt='Bookinfo'
- title='Bookinfo'
- caption='Bookinfo'
+ {% include image.html width="100%" ratio="45.04%"
+ link="./img/dm_bookinfo.png"
+ caption="Bookinfo"
%}
-3. Now send some traffic to it:
- ```bash
- for i in {1..100}; do curl -o /dev/null -s -w "%{http_code}\n" http://${GATEWAY_URL}/productpage; done
+1. Now send some traffic to it:
+ ```command
+ $ for i in {1..100}; do curl -o /dev/null -s -w "%{http_code}\n" http://${GATEWAY_URL}/productpage; done
```
## Verify installed Istio plugins
Once you have verified that the Istio control plane and sample application are working, try accessing the installed Istio plugins.
-If you are using Cloud Shell rather than the installed `gcloud` client, you can port forward and proxy using its [Web Preview](https://cloud.google.com/shell/docs/using-web-preview#previewing_the_application) feature. For example, to access Grafana from Cloud Shell, change the kubectl port mapping from 3000:3000 to 8080:3000. You can simultaneously preview four other consoles via Web Preview proxied on ranges 8080 to 8084.
+If you are using Cloud Shell rather than the installed `gcloud` client, you can port forward and proxy using its [Web Preview](https://cloud.google.com/shell/docs/using-web-preview#previewing_the_application) feature. For example, to access Grafana from Cloud Shell, change the `kubectl` port mapping from 3000:3000 to 8080:3000. You can simultaneously preview four other consoles via Web Preview proxied on ranges 8080 to 8084.
### Grafana
Set up a tunnel to Grafana:
-```bash
-kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=grafana -o jsonpath='{.items[0].metadata.name}') 3000:3000 &
+```command
+$ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=grafana -o jsonpath='{.items[0].metadata.name}') 3000:3000 &
```
then
-```
+```plain
http://localhost:3000/dashboard/db/istio-dashboard
```
You should see some statistics for the requests you sent earlier.
-{% include figure.html width="100%" ratio="48.49%"
- img='./img/dm_grafana.png'
- alt='Grafana'
- title='Grafana'
- caption='Grafana'
+{% include image.html width="100%" ratio="48.49%"
+ link="./img/dm_grafana.png"
+ caption="Grafana"
%}
For more details about using Grafana, see [About the Grafana Add-on]({{home}}/docs/tasks/telemetry/using-istio-dashboard.html#about-the-grafana-add-on).
-
### Prometheus
Prometheus is installed with Grafana. You can view Istio and application metrics using the console as follows:
-```bash
-kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
+```command
+$ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
```
View the console at:
-```
+```plain
http://localhost:9090/graph
```
-{% include figure.html width="100%" ratio="43.88%"
- img='./img/dm_prometheus.png'
- alt='Prometheus'
- title='Prometheus'
- caption='Prometheus'
+{% include image.html width="100%" ratio="43.88%"
+ link="./img/dm_prometheus.png"
+ caption="Prometheus"
%}
For more details, see [About the Prometheus Add-on]({{home}}/docs/tasks/telemetry/querying-metrics.html#about-the-prometheus-add-on).
@@ -222,20 +201,19 @@ For more details, see [About the Prometheus Add-on]({{home}}/docs/tasks/telemetr
Set up a tunnel to ServiceGraph:
-```bash
-kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=servicegraph -o jsonpath='{.items[0].metadata.name}') 8088:8088 &
+```command
+$ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=servicegraph -o jsonpath='{.items[0].metadata.name}') 8088:8088 &
```
+
You should see the Bookinfo service topology at
-```
+```plain
http://localhost:8088/dotviz
```
-{% include figure.html width="100%" ratio="53.33%"
- img='./img/dm_servicegraph.png'
- alt='ServiceGraph'
- title='ServiceGraph'
- caption='ServiceGraph'
+{% include image.html width="100%" ratio="53.33%"
+ link="./img/dm_servicegraph.png"
+ caption="ServiceGraph"
%}
For more details, see [About the ServiceGraph Add-on]({{home}}/docs/tasks/telemetry/servicegraph.html#about-the-servicegraph-add-on).
@@ -244,21 +222,19 @@ For more details, see [About the ServiceGraph Add-on]({{home}}/docs/tasks/teleme
Set up a tunnel to Zipkin:
-```bash
-kubectl port-forward -n istio-system $(kubectl get pod -n istio-system -l app=zipkin -o jsonpath='{.items[0].metadata.name}') 9411:9411 &
+```command
+$ kubectl port-forward -n istio-system $(kubectl get pod -n istio-system -l app=zipkin -o jsonpath='{.items[0].metadata.name}') 9411:9411 &
```
You should see the trace statistics sent earlier:
-```
+```plain
http://localhost:9411
```
-{% include figure.html width="100%" ratio="57.00%"
- img='./img/dm_zipkin.png'
- alt='Zipkin'
- title='Zipkin'
- caption='Zipkin'
+{% include image.html width="100%" ratio="57.00%"
+ link="./img/dm_zipkin.png"
+ caption="Zipkin"
%}
For more details on tracing see [Understanding what happened]({{home}}/docs/tasks/telemetry/distributed-tracing.html#understanding-what-happened).
@@ -274,6 +250,7 @@ on our workstation or within Cloud Shell.
1. Navigate to the Deployments section of the Cloud Console at [https://console.cloud.google.com/deployments](https://console.cloud.google.com/deployments)
-2. Select the deployment and click **Delete**.
+1. Select the deployment and click **Delete**.
-3. Deployment Manager will remove all the deployed GKE artifacts - however, items such as Ingress and LoadBalancers will remain. You can delete those artifacts by again going to the cloud console under [**Network Services** -> **LoadBalancers**](https://console.cloud.google.com/net-services/loadbalancing/loadBalancers/list)
+1. Deployment Manager will remove all the deployed GKE artifacts - however, items such as Ingress and LoadBalancers will remain. You can delete those artifacts
+by again going to the cloud console under [**Network Services** -> **LoadBalancers**](https://console.cloud.google.com/net-services/loadbalancing/loadBalancers/list)
diff --git a/_docs/setup/kubernetes/quick-start.md b/_docs/setup/kubernetes/quick-start.md
index 64e48548b6b83..5997e91f66244 100644
--- a/_docs/setup/kubernetes/quick-start.md
+++ b/_docs/setup/kubernetes/quick-start.md
@@ -1,24 +1,23 @@
---
title: Quick Start
-overview: Quick Start instructions to setup the Istio service mesh in a Kubernetes cluster.
+description: Quick start instructions to setup the Istio service mesh in a Kubernetes cluster.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
-Quick Start instructions to install and configure Istio in a Kubernetes cluster.
-
+Quick start instructions to install and configure Istio in a Kubernetes cluster.
## Prerequisites
The following instructions require you have access to a Kubernetes **1.7.3 or newer** cluster
-with [RBAC (Role-Based Access Control)](https://kubernetes.io/docs/admin/authorization/rbac/) enabled. You will also need `kubectl` **1.7.3 or newer** installed. If you wish to enable [automatic sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection), you need Kubernetes version 1.9 or greater.
+with [RBAC (Role-Based Access Control)](https://kubernetes.io/docs/admin/authorization/rbac/) enabled. You will also need `kubectl` **1.7.3 or newer** installed.
+
+If you wish to enable [automatic sidecar injection]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection) or server-side configuration validation, you need Kubernetes version 1.9 or greater.
- > Note: If you installed Istio 0.1.x,
+ > If you installed Istio 0.1.x,
> [uninstall](https://archive.istio.io/v0.1/docs/tasks/installing-istio.html#uninstalling)
> it completely before installing the newer version (including the Istio sidecar
> for all Istio enabled application pods).
@@ -28,49 +27,185 @@ with [RBAC (Role-Based Access Control)](https://kubernetes.io/docs/admin/authori
match the version supported by your cluster (version 1.7 or later for CRD
support).
-* Depending on your Kubernetes provider:
+### [Minikube](https://github.com/kubernetes/minikube/releases)
- * To install Istio locally, install the latest version of
-[Minikube](https://kubernetes.io/docs/getting-started-guides/minikube/) (version 0.22.1 or later).
+To install Istio locally, install the latest version of
+[Minikube](https://kubernetes.io/docs/getting-started-guides/minikube/) (version 0.25.0 or later).
- * [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/)
+```command
+$ minikube start \
+ --extra-config=controller-manager.ClusterSigningCertFile="/var/lib/localkube/certs/ca.crt" \
+ --extra-config=controller-manager.ClusterSigningKeyFile="/var/lib/localkube/certs/ca.key" \
+ --extra-config=apiserver.Admission.PluginNames=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,DefaultTolerationSeconds,MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota \
+ --kubernetes-version=v1.9.0
+```
- * Retrieve your credentials for kubectl (replace `<cluster-name>` with the name of the cluster you want to use,
- and `<zone>` with the zone where that cluster is located):
- ```bash
- gcloud container clusters get-credentials <cluster-name> --zone <zone> --project <project-name>
- ```
+### [Google Kubernetes Engine](https://cloud.google.com/kubernetes-engine/)
- * Grant cluster admin permissions to the current user (admin permissions are required to create the necessary RBAC rules for Istio):
- ```bash
- kubectl create clusterrolebinding cluster-admin-binding --clusterrole=cluster-admin --user=$(gcloud config get-value core/account)
- ```
+Create a new cluster.
- * [IBM Cloud Container Service](https://www.ibm.com/cloud-computing/bluemix/containers)
+```command
+$ gcloud container clusters create <cluster-name> \
+ --cluster-version=1.9.4-gke.1 \
+ --zone <zone> \
+ --project <project-name>
+```
- * Retrieve your credentials for kubectl (replace `<cluster-name>` with the name of the cluster you want to use):
- ```bash
- $(bx cs cluster-config <cluster-name>|grep "export KUBECONFIG")
- ```
+Retrieve your credentials for `kubectl`.
- * [IBM Cloud Private](https://www.ibm.com/cloud-computing/products/ibm-cloud-private/) version 2.1 or later
+```command
+$ gcloud container clusters get-credentials <cluster-name> \
+ --zone <zone> \
+ --project <project-name>
+```
+
+Grant cluster admin permissions to the current user (admin permissions are required to create the necessary RBAC rules for Istio).
- * Config `kubectl` CLI based on steps [here](https://www.ibm.com/support/knowledgecenter/SSBS6K_2.1.0/manage_cluster/cfc_cli.html) for how to access the IBM Cloud Private Cluster.
+```command
+$ kubectl create clusterrolebinding cluster-admin-binding \
+ --clusterrole=cluster-admin \
+ --user=$(gcloud config get-value core/account)
+```
- * [Openshift Origin](https://www.openshift.org) version 3.7 or later
+### [IBM Cloud Container Service (IKS)](https://www.ibm.com/cloud/container-service)
- * Openshift by default does not allow containers running with UID 0. Enable containers running
+Kubernetes 1.9 is generally available on IBM Cloud Container Service (IKS).
+
+At the time of writing it is not the default version, so to create a new lite cluster:
+
+```command
+$ bx cs cluster-create --name <cluster-name> --kube-version 1.9.3
+```
+
+Or create a new paid cluster:
+
+```command
+$ bx cs cluster-create --location location --machine-type u2c.2x4 --name <cluster-name> --kube-version 1.9.3
+```
+
+Retrieve your credentials for `kubectl` (replace `<cluster-name>` with the name of the cluster you want to use):
+
+```bash
+$(bx cs cluster-config <cluster-name>|grep "export KUBECONFIG")
+```
+
+### [IBM Cloud Private](https://www.ibm.com/us-en/marketplace/ibm-cloud-private) (version 2.1 or later)
+
+Configure `kubectl` CLI based on steps [here](https://www.ibm.com/support/knowledgecenter/SSBS6K_2.1.0/manage_cluster/cfc_cli.html) for how to access the IBM Cloud Private Cluster.
+
+### [OpenShift Origin](https://www.openshift.org) (version 3.7 or later)
+
+OpenShift by default does not allow containers running with UID 0. Enable containers running
with UID 0 for Istio's service accounts for ingress as well the Prometheus and Grafana addons:
- ```bash
- oc adm policy add-scc-to-user anyuid -z istio-ingress-service-account -n istio-system
- oc adm policy add-scc-to-user anyuid -z istio-grafana-service-account -n istio-system
- oc adm policy add-scc-to-user anyuid -z istio-prometheus-service-account -n istio-system
- ```
- * Service account that runs application pods need privileged security context constraints as part of sidecar injection.
- ```bash
- oc adm policy add-scc-to-user privileged -z default -n <target-namespace>
- ```
+```command
+$ oc adm policy add-scc-to-user anyuid -z istio-ingress-service-account -n istio-system
+$ oc adm policy add-scc-to-user anyuid -z grafana -n istio-system
+$ oc adm policy add-scc-to-user anyuid -z prometheus -n istio-system
+```
+
+Service account that runs application pods need privileged security context constraints as part of sidecar injection.
+
+```command
+$ oc adm policy add-scc-to-user privileged -z default -n <target-namespace>
+```
+
+### AWS (w/Kops)
+
+When you install a new cluster with Kubernetes version 1.9, prerequisite for `admissionregistration.k8s.io/v1beta1` enabled is covered.
+
+Nevertheless the list of admission controllers needs to be updated.
+
+```command
+$ kops edit cluster $YOURCLUSTER
+```
+
+Add following in the configuration file just opened:
+
+```yaml
+kubeAPIServer:
+ admissionControl:
+ - NamespaceLifecycle
+ - LimitRanger
+ - ServiceAccount
+ - PersistentVolumeLabel
+ - DefaultStorageClass
+ - DefaultTolerationSeconds
+ - MutatingAdmissionWebhook
+ - ValidatingAdmissionWebhook
+ - ResourceQuota
+ - NodeRestriction
+ - Priority
+```
+
+Perform the update
+
+```command
+$ kops update cluster
+$ kops update cluster --yes
+```
+
+Launch the rolling update
+
+```command
+$ kops rolling-update cluster
+$ kops rolling-update cluster --yes
+```
+
+Validate with `kubectl` client on kube-api pod, you should see new admission controller:
+
+```command
+$ for i in `kubectl get pods -nkube-system | grep api | awk '{print $1}'` ; do kubectl describe pods -nkube-system $i | grep "/usr/local/bin/kube-apiserver" ; done
+```
+
+Output should be:
+
+```plain
+[...] --admission-control=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,DefaultTolerationSeconds,MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota,NodeRestriction,Priority [...]
+```
+
+### Azure
+
+You need to use `ACS-Engine` to deploy you cluster. After following [these instructions](https://github.com/Azure/acs-engine/blob/master/docs/acsengine.md#install) to get and install the `acs-engine` binary, use the following command to download Istio `api model definition`:
+
+```command
+$ wget https://raw.githubusercontent.com/Azure/acs-engine/master/examples/service-mesh/istio.json
+```
+
+Use the following command to deploy your cluster using the `istio.json` template. You can find references to the parameters in the [official docs](https://github.com/Azure/acs-engine/blob/master/docs/kubernetes/deploy.md#step-3-edit-your-cluster-definition).
+
+| Parameter | Expected value |
+|-------------------------------------|----------------------------|
+| `subscription_id` | Azure Subscription Id |
+| `dns_prefix` | Cluster DNS Prefix |
+| `location` | Cluster Location |
+
+```command
+$ acs-engine deploy --subscription-id <subscription_id> --dns-prefix <dns_prefix> --location <location> --auto-suffix --api-model istio.json
+```
+
+After a few minutes you should find your cluster on your Azure subscription in a resource group called `<dns_prefix>-<id>`. Let's say my `dns-prefix` is `myclustername`, a valid resource group and unique cluster id would be `mycluster-5adfba82`. Using this `<dns_prefix>-<id>` cluster id you can copy your `kubeconfig` file to your machine from the `_output` folder generated by `acs-engine`:
+
+```command
+$ cp _output/<dns_prefix>-<id>/kubeconfig/kubeconfig.<location>.json ~/.kube/config
+```
+
+For example:
+
+```command
+$ cp _output/mycluster-5adfba82/kubeconfig/kubeconfig.westus2.json ~/.kube/config
+```
+
+To check if the right Istio flags were deployed, use:
+```command
+$ kubectl describe pod --namespace kube-system $(kubectl get pods --namespace kube-system | grep api | cut -d ' ' -f 1) | grep admission-control
+```
+
+You should see `MutatingAdmissionWebhook` and `ValidatingAdmissionWebhook` flags:
+
+```plain
+ --admission-control=...,MutatingAdmissionWebhook,...,ValidatingAdmissionWebhook,...
+```
## Installation steps
@@ -80,84 +215,96 @@ namespace, and can manage services from all other namespaces.
1. Go to the [Istio release](https://github.com/istio/istio/releases) page to download the
installation file corresponding to your OS. If you are using a MacOS or Linux system, you can also
run the following command to download and extract the latest release automatically:
-```bash
-curl -L https://git.io/getLatestIstio | sh -
-```
+
+ ```command
+ $ curl -L https://git.io/getLatestIstio | sh -
+ ```
1. Extract the installation file and change the directory to the file location. The
- installation directory contains:
- * Installation `.yaml` files for Kubernetes in `install/`
- * Sample applications in `samples/`
- * The `istioctl` client binary in the `bin/` directory. `istioctl` is used when manually injecting Envoy as a sidecar proxy and for creating routing rules and policies.
- * The `istio.VERSION` configuration file
+installation directory contains:
+ * Installation `.yaml` files for Kubernetes in `install/`
+ * Sample applications in `samples/`
+ * The `istioctl` client binary in the `bin/` directory. `istioctl` is used when manually injecting Envoy as a sidecar proxy and for creating routing rules and policies.
+ * The `istio.VERSION` configuration file
-1. Change directory to istio package. For example, if the package is istio-{{ site.data.istio.version }}
-```bash
-cd istio-{{ site.data.istio.version }}
-```
+1. Change directory to istio package. For example, if the package is istio-{{site.data.istio.version}}
+
+ ```command
+ $ cd istio-{{site.data.istio.version}}
+ ```
1. Add the `istioctl` client to your PATH.
- For example, run the following command on a MacOS or Linux system:
-```bash
-export PATH=$PWD/bin:$PATH
-```
+For example, run the following command on a MacOS or Linux system:
+
+ ```command
+ $ export PATH=$PWD/bin:$PATH
+ ```
1. Install Istio's core components. Choose one of the two _**mutually exclusive**_ options below or alternately install
- with the [Helm Chart]({{home}}/docs/setup/kubernetes/helm.html):
+with the [Helm Chart]({{home}}/docs/setup/kubernetes/helm-install.html):
- a) Install Istio without enabling [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) between sidecars.
- Choose this option for clusters with existing applications, applications where services with an
- Istio sidecar need to be able to communicate with other non-Istio Kubernetes services, and
- applications that use [liveliness and readiness probes](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/),
- headless services, or StatefulSets.
-```bash
-kubectl apply -f install/kubernetes/istio.yaml
-```
+ a) Install Istio without enabling [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) between sidecars.
+ Choose this option for clusters with existing applications, applications where services with an
+ Istio sidecar need to be able to communicate with other non-Istio Kubernetes services, and
+ applications that use [liveness and readiness probes](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/),
+ headless services, or StatefulSets.
- _**OR**_
+ ```command
+ $ kubectl apply -f install/kubernetes/istio.yaml
+ ```
- b) Install Istio and enable [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) between sidecars.:
-```bash
-kubectl apply -f install/kubernetes/istio-auth.yaml
-```
+ _**OR**_
+
+ b) Install Istio and enable [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) between sidecars. This option is mostly for new clusters, i.e., all applications have sidecars injected during their deployment. For existing applications, please choose the above option and enable mutual TLS using [authentication policy]({{home}}/docs/tasks/security/authn-policy.html):
+
+ ```command
+ $ kubectl apply -f install/kubernetes/istio-auth.yaml
+ ```
- Both options create the `istio-system` namespace along with the required RBAC permissions,
- and deploy Istio-Pilot, Istio-Mixer, Istio-Ingress, and Istio-CA (Certificate Authority).
+ Both options create the `istio-system` namespace along with the required RBAC permissions,
+ and deploy Istio-Pilot, Istio-Mixer, Istio-Ingress, and Istio-CA (Certificate Authority).
1. *Optional:* If your cluster has Kubernetes version 1.9 or greater, and you wish to enable automatic proxy injection,
install the [sidecar injector webhook]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection).
## Verifying the installation
-1. Ensure the following Kubernetes services are deployed: `istio-pilot`, `istio-mixer`,
- `istio-ingress`.
-```bash
-kubectl get svc -n istio-system
-```
-```bash
-NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
-istio-ingress 10.83.245.171 35.184.245.62 80:32730/TCP,443:30574/TCP 5h
-istio-pilot 10.83.251.173 <none> 8080/TCP,8081/TCP 5h
-istio-mixer 10.83.244.253 <none> 9091/TCP,9094/TCP,42422/TCP 5h
-```
-
- Note: If your cluster is running in an environment that does not support an external load balancer
+1. Ensure the following Kubernetes services are deployed: `istio-pilot`, `istio-ingress`,
+`istio-policy`, `istio-telemetry`, `prometheus`.
+
+ ```command
+ $ kubectl get svc -n istio-system
+ NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE
+ citadel-ilb LoadBalancer 10.35.251.104 10.138.0.43 8060:32031/TCP 47m
+ istio-citadel ClusterIP 10.35.253.23 <none> 8060/TCP,9093/TCP 47m
+ istio-ingress LoadBalancer 10.35.245.4 35.203.191.37 80:32765/TCP,443:32304/TCP 47m
+ istio-pilot ClusterIP 10.35.255.168 <none> 15003/TCP,15005/TCP,15007/TCP,15010/TCP,15011/TCP,8080/TCP,9093/TCP 47m
+ istio-pilot-ilb LoadBalancer 10.35.252.183 10.138.0.40 15005:30035/TCP,8080:30494/TCP 47m
+ istio-policy ClusterIP 10.35.247.90 <none> 9091/TCP,15004/TCP,9093/TCP 47m
+ istio-statsd-prom-bridge ClusterIP 10.35.243.13 <none> 9102/TCP,9125/UDP 47m
+ istio-telemetry ClusterIP 10.35.248.71 <none> 9091/TCP,15004/TCP,9093/TCP,42422/TCP 47m
+ mixer-ilb LoadBalancer 10.35.240.250 10.138.0.42 15004:30427/TCP 47m
+ prometheus ClusterIP 10.35.255.10 <none> 9090/TCP 47m
+ ```
+
+ > If your cluster is running in an environment that does not support an external load balancer
(e.g., minikube), the `EXTERNAL-IP` of `istio-ingress` says `<pending>`. You must access the
application using the service NodePort, or use port-forwarding instead.
-2. Ensure the corresponding Kubernetes pods are deployed and all containers are up and running:
- `istio-pilot-*`, `istio-mixer-*`, `istio-ingress-*`, `istio-ca-*`,
- and, optionally, `istio-sidecar-injector-*`.
-```bash
-kubectl get pods -n istio-system
-```
-```bash
-istio-ca-3657790228-j21b9 1/1 Running 0 5h
-istio-ingress-1842462111-j3vcs 1/1 Running 0 5h
-istio-sidecar-injector-184129454-zdgf5 1/1 Running 0 5h
-istio-pilot-2275554717-93c43 1/1 Running 0 5h
-istio-mixer-2104784889-20rm8 2/2 Running 0 5h
-```
+1. Ensure the corresponding Kubernetes pods are deployed and all containers are up and running:
+`istio-pilot-*`, `istio-mixer-*`, `istio-ingress-*`, `istio-citadel-*`,
+and, optionally, `istio-sidecar-injector-*`.
+
+ ```command
+ $ kubectl get pods -n istio-system
+ istio-citadel-b454d647d-92jrv 1/1 Running 0 46m
+ istio-ingress-768b9fb68b-jdxfk 1/1 Running 0 46m
+ istio-pilot-b87b8c56b-kggmk 2/2 Running 0 46m
+ istio-policy-58f9bfc796-8vlq4 2/2 Running 0 46m
+ istio-statsd-prom-bridge-6dbb7dcc7f-gzlq7 1/1 Running 0 46m
+ istio-telemetry-55b8c8b44f-fwb69 2/2 Running 0 46m
+ prometheus-586d95b8d9-grk6j 1/1 Running 0 46m
+ ```
## Deploy your application
@@ -166,49 +313,53 @@ installation like [Bookinfo]({{home}}/docs/guides/bookinfo.html).
Note: the application must use HTTP/1.1 or HTTP/2.0 protocol for all its HTTP traffic because HTTP/1.0 is not supported.
If you started the [Istio-sidecar-injector]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection),
-as shown above, you can deploy the application directly using `kubectl create`.
+as shown above, you can deploy the application directly using `kubectl create`.
The Istio-Sidecar-injector will automatically inject Envoy containers into your application pods assuming running in namespaces labeled with `istio-injection=enabled`
-```bash
-kubectl label namespace <namespace> istio-injection=enabled
-kubectl create -n <namspace> -f <your-app-spec>.yaml
+```command
+$ kubectl label namespace <namespace> istio-injection=enabled
+$ kubectl create -n <namespace> -f <your-app-spec>.yaml
```
If you do not have the Istio-sidecar-injector installed, you must
use [istioctl kube-inject]({{home}}/docs/reference/commands/istioctl.html#istioctl kube-inject) to
-manuallly inject Envoy containers in your application pods before deploying them:
-```bash
-kubectl create -f <(istioctl kube-inject -f <your-app-spec>.yaml)
+manually inject Envoy containers in your application pods before deploying them:
+
+```command
+$ kubectl create -f <(istioctl kube-inject -f <your-app-spec>.yaml)
```
## Uninstalling
* Uninstall Istio sidecar injector:
- If you installed Istio with sidecar injector enabled, uninstall it:
-```bash
-kubectl delete -f install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml
-```
+ If you installed Istio with sidecar injector enabled, uninstall it:
-* Uninstall Istio core components. For the {{ site.data.istio.version }} release, the uninstall
- deletes the RBAC permissions, the `istio-system` namespace, and hierarchically all resources under it.
- It is safe to ignore errors for non-existent resources because they may have been deleted hierarchically.
+ ```command
+ $ kubectl delete -f install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml
+ ```
- a) If you installed Istio with mutual TLS authentication disabled:
-```bash
-kubectl delete -f install/kubernetes/istio.yaml
-```
+* Uninstall Istio core components. For the {{site.data.istio.version}} release, the uninstall
+deletes the RBAC permissions, the `istio-system` namespace, and hierarchically all resources under it.
+It is safe to ignore errors for non-existent resources because they may have been deleted hierarchically.
- _**OR**_
+ a) If you installed Istio with mutual TLS authentication disabled:
- b) If you installed Istio with mutual TLS authentication enabled:
-```bash
-kubectl delete -f install/kubernetes/istio-auth.yaml
-```
+ ```command
+ $ kubectl delete -f install/kubernetes/istio.yaml
+ ```
+
+ _**OR**_
+
+ b) If you installed Istio with mutual TLS authentication enabled:
+
+ ```command
+ $ kubectl delete -f install/kubernetes/istio-auth.yaml
+ ```
## What's next
* See the sample [Bookinfo]({{home}}/docs/guides/bookinfo.html) application.
-* See how to [test Istio mutual TLS Authentication]({{home}}/docs/tasks/security/mutual-tls.html).
+* See how to [test mutual TLS authentication]({{home}}/docs/tasks/security/mutual-tls.html).
diff --git a/_docs/setup/kubernetes/sidecar-injection.md b/_docs/setup/kubernetes/sidecar-injection.md
index 0ab7dd6eee0f9..c3cb65f71c907 100644
--- a/_docs/setup/kubernetes/sidecar-injection.md
+++ b/_docs/setup/kubernetes/sidecar-injection.md
@@ -1,19 +1,23 @@
---
-title: Installing Istio Sidecar
-overview: Instructions for installing the Istio sidecar in application pods automatically using the sidecar injector webhook or manually using istioctl CLI.
+title: Installing the Istio Sidecar
+description: Instructions for installing the Istio sidecar in application pods automatically using the sidecar injector webhook or manually using istioctl CLI.
-order: 50
+weight: 50
-layout: docs
-type: markdown
---
{% include home.html %}
-_NOTE_: The following requires Istio 0.5.0 or greater. See [https://archive.istio.io/v0.4/docs/setup/kubernetes/sidecar-injection](https://archive.istio.io/v0.4/docs/setup/kubernetes/sidecar-injection) for Istio versions 0.4.0 or older.
+> The following requires Istio 0.5 or greater. See
+> [https://archive.istio.io/v0.4/docs/setup/kubernetes/sidecar-injection](https://archive.istio.io/v0.4/docs/setup/kubernetes/sidecar-injection)
+> for Istio 0.4 or prior.
+>
+> In previous releases, the Kubernetes initializer feature was used for automatic proxy injection. This was an Alpha feature, subject to change/removal,
+> and not enabled by default in Kubernetes. Starting in Kubernetes 1.9 it was replaced by a beta feature called
+> [mutating webhooks](https://kubernetes.io/docs/admin/admission-controllers/#mutatingadmissionwebhook-beta-in-19), which is now enabled by default in
+> Kubernetes 1.9 and beyond. Starting with Istio 0.5.0 the automatic proxy injection uses mutating webhooks, and support for injection by initializer has been
+> removed. Users who cannot upgrade to Kubernetes 1.9 should use manual injection.
-_NOTE_: In previous releases, the Kubernetes initializer feature was used for automatic proxy injection. This was an Alpha feature, subject to change/removal, and not enabled by default in Kubernetes. Starting in Kubernetes 1.9 it was replaced by a beta feature called [mutating webhooks](https://kubernetes.io/docs/admin/admission-controllers/#mutatingadmissionwebhook-beta-in-19), which is now enabled by default in Kubernetes 1.9 and beyond. Starting in Istio 0.5.0 the automatic proxy injection uses mutating webhooks, and support for injection by initializer has been removed. Users who cannot uprade to Kubernetes 1.9 should use manual injection.
-
-# Pod Spec Requirements
+## Pod spec requirements
In order to be a part of the service mesh, each pod in the Kubernetes
cluster must satisfy the following requirements:
@@ -43,55 +47,45 @@ cluster must satisfy the following requirements:
ways of injecting the Istio sidecar into a pod: manually using `istioctl`
CLI tool or automatically using the Istio Initializer. Note that the
sidecar is not involved in traffic between containers in the same pod.
-
-# Injection
-Manual injection modifies the controller configuration, e.g. deployment. It
+## Injection
+
+Manual injection modifies the controller configuration, e.g. deployment. It
does this by modifying the pod template spec such that *all* pods for that
deployment are created with the injected sidecar. Adding/Updating/Removing
the sidecar requires modifying the entire deployment.
-Automatic injection injects at pod creation time. The controller resource is
+Automatic injection injects at pod creation time. The controller resource is
unmodified. Sidecars can be updated selectively by manually deleting a pods or
systematically with a deployment rolling update.
-Manual and automatic injection use the same templated configuration. Automatic
-injection loads the configuration from the `istio-inject` ConfigMap in the
-`istio-system` namespace. Manual injection can load from a local file or from
+Manual and automatic injection use the same templated configuration. Automatic
+injection loads the configuration from the `istio-sidecar-injector` ConfigMap in the
+`istio-system` namespace. Manual injection can load from a local file or from
the ConfigMap.
-Two variants of the injection configuration are provided with the default
-install: `istio-sidecar-injector-configmap-release.yaml`
-and `istio-sidecar-injector-configmap-debug.yaml`. The injection configmap includes
-the default injection policy and sidecar injection template. The debug version
-includes debug proxy images and additional logging and core dump functionality using
-for debugging the sidecar proxy.
-
-## Manual sidecar injection
+### Manual sidecar injection
-Use the built-in defaults template and dynamically fetch the mesh
+Use the built-in defaults template and dynamically fetch the mesh
configuration from the `istio` ConfigMap. Additional parameter overrides
are available via flags (see `istioctl kube-inject --help`).
-```bash
-kubectl apply -f <(~istioctl kube-inject -f samples/sleep/sleep.yaml)
+```command
+$ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
```
`kube-inject` can also be run without access to a running Kubernetes
cluster. Create local copies of the injection and mesh configmap.
-```bash
-kubectl create -f install/kubernetes/istio-sidecar-injector-configmap-release.yaml \
- --dry-run \
- -o=jsonpath='{.data.config}' > inject-config.yaml
-
-kubectl -n istio-system get configmap istio -o=jsonpath='{.data.mesh}' > mesh-config.yaml
+```command
+$ istioctl kube-inject --emitTemplate > inject-config.yaml
+$ kubectl -n istio-system get configmap istio -o=jsonpath='{.data.mesh}' > mesh-config.yaml
```
- `
+
Run `kube-inject` over the input file.
-```bash
-istioctl kube-inject \
+```command
+$ istioctl kube-inject \
--injectConfigFile inject-config.yaml \
--meshConfigFile mesh-config.yaml \
--filename samples/sleep/sleep.yaml \
@@ -100,256 +94,105 @@ istioctl kube-inject \
Deploy the injected YAML file.
-```bash
-kubectl apply -f sleep-injected.yaml
+```command
+$ kubectl apply -f sleep-injected.yaml
```
Verify that the sidecar has been injected into the deployment.
-```bash
-kubectl get deployment sleep -o wide
-```
-```
+```command
+$ kubectl get deployment sleep -o wide
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE CONTAINERS IMAGES SELECTOR
sleep 1 1 1 1 2h sleep,istio-proxy tutum/curl,unknown/proxy:unknown app=sleep
```
-## Automatic sidecar injection
+### Automatic sidecar injection
-Sidecars can be automatically added to applicable Kubernetes pods using a
-[mutating webhook admission controller](https://kubernetes.io/docs/admin/admission-controllers/#validatingadmissionwebhook-alpha-in-18-beta-in-19), available in Kubernetes 1.9 and above. Specifically, verify that the kube-apiserver process has the `admission-control` flag set with the `MutatingAdmissionWebhook` and `ValidatingAdmissionWebhook` admission controllers added and listed in the correct order.
+Sidecars can be automatically added to applicable Kubernetes pods using a
+[mutating webhook admission controller](https://kubernetes.io/docs/admin/admission-controllers/#validatingadmissionwebhook-alpha-in-18-beta-in-19). This feature requires Kubernetes 1.9 or later. Verify that the kube-apiserver process has the `admission-control` flag set with the `MutatingAdmissionWebhook` and `ValidatingAdmissionWebhook` admission controllers added and listed in the correct order and the admissionregistration API is enabled.
-### Prerequisites
-
-A Kubernetes 1.9 cluster is required, with the `admissionregistration.k8s.io/v1beta1` API enabled. This is enabled by default on most instllations. If you want to check, you can grep:
-
-```bash
-kubectl api-versions | grep admissionregistration
-```
-
-You should see
-```
+```command
+$ kubectl api-versions | grep admissionregistration
admissionregistration.k8s.io/v1beta1
+admissionregistration.k8s.io/v2beta2
```
-#### Google Kubernetes Engine (GKE)
-
-Kubernetes 1.9 is generally available on Google Kubernetes Engine (GKE). At the time of writing it is not the default version, so to create a cluster:
-
-```bash
-gcloud container clusters create <cluster-name> \
- --cluster-version=1.9.2-gke.1
- --zone <zone>
- --project <project-name>
-```
-```bash
-gcloud container clusters get-credentials <cluster-name> \
- --zone <zone> \
- --project <project-name>
-```
-```bash
-kubectl create clusterrolebinding cluster-admin-binding \
- --clusterrole=cluster-admin \
- --user=$(gcloud config get-value core/account)
-```
-
-#### minikube
-
-Minikube version v0.25.0 or later is required for Kubernetes v1.9. Get the latest version from [https://github.com/kubernetes/minikube/releases](https://github.com/kubernetes/minikube/releases).
-
-```bash
-minikube start \
- --extra-config=controller-manager.ClusterSigningCertFile="/var/lib/localkube/certs/ca.crt" \
- --extra-config=controller-manager.ClusterSigningKeyFile="/var/lib/localkube/certs/ca.key" \
- --extra-config=apiserver.Admission.PluginNames=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,DefaultTolerationSeconds,MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota \
- --kubernetes-version=v1.9.0
-```
-
-### AWS (with Kops)
-
-When you install a new cluster with Kubernetes version 1.9, prerequisite for `admissionregistration.k8s.io/v1beta1` enabled is covered.
-
-Nevertheless the list of admission controllers needs to be updated.
-
-```bash
-kops edit cluster $YOURCLUSTER
-```
-
-Add following in the configuration file just openned:
-
-```bash
-kubeAPIServer:
- admissionControl:
- - NamespaceLifecycle
- - LimitRanger
- - ServiceAccount
- - PersistentVolumeLabel
- - DefaultStorageClass
- - DefaultTolerationSeconds
- - MutatingAdmissionWebhook
- - ValidatingAdmissionWebhook
- - ResourceQuota
- - Initializers
- - NodeRestriction
- - Priority
-```
-
-Perform the update
-
-```bash
-kops update cluster
-kops update cluster --yes
-```
-
-Launch the rolling update
-
-```bash
-kops rolling-update cluster
-kops rolling-update cluster --yes
-```
-
-Validate with a `ps` on master node, you should see new admission controller
-
-```bash
-/bin/sh -c /usr/local/bin/kube-apiserver --address=127.0.0.1 --admission-control=NamespaceLifecycle,LimitRanger,ServiceAccount,PersistentVolumeLabel,DefaultStorageClass,DefaultTolerationSeconds,MutatingAdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota,Initializers,NodeRestriction,Priority [...]
-```
-
-
-### Installing the Webhook
-
-_NOTE_: The [0.5.0](https://github.com/istio/istio/releases/tag/0.5.0) and [0.5.1](https://github.com/istio/istio/releases/tag/0.5.1) releases are missing scripts to provision webhook certificates. Download the missing files from [here](https://raw.githubusercontent.com/istio/istio/master/install/kubernetes/webhook-create-signed-cert.sh) and [here](https://raw.githubusercontent.com/istio/istio/master/install/kubernetes/webhook-patch-ca-bundle.sh). Subsqeuent releases (> 0.5.1) should include these missing files.
-
-Install base Istio.
-
-```bash
-kubectl apply -f install/kubernetes/istio.yaml
-```
-
-Webhooks requires a signed cert/key pair. Use `install/kubernetes/webhook-create-signed-cert.sh` to generate
-a cert/key pair signed by the Kubernetes' CA. The resulting cert/key file is stored as a Kubernetes
-secret for the sidecar injector webhook to consume.
-
-_Note_: Kubernetes CA approval requires permissions to create and approve CSR. See
-[https://kubernetes.io/docs/tasks/tls/managing-tls-in-a-cluster ](https://kubernetes.io/docs/tasks/tls/managing-tls-in-a-cluster) and
-[install/kubernetes/webhook-create-signed-cert.sh](https://raw.githubusercontent.com/istio/istio/master/install/kubernetes/webhook-create-signed-cert.sh) for more information.
-
-```bash
-./install/kubernetes/webhook-create-signed-cert.sh \
- --service istio-sidecar-injector \
- --namespace istio-system \
- --secret sidecar-injector-certs
-```
-
-Install the sidecar injection configmap.
+See the Kubernetes [quick start]({{home}}/docs/setup/kubernetes/quick-start.html) guide for instructions on installing Kubernetes version >= 1.9.
-```bash
-kubectl apply -f install/kubernetes/istio-sidecar-injector-configmap-release.yaml
-```
-
-Set the `caBundle` in the webhook install YAML that the Kubernetes api-server
-uses to invoke the webhook.
+Note that unlike manual injection, automatic injection occurs at the pod-level. You won't see any change to the deployment itself. Instead you'll want to check individual pods (via `kubectl describe`) to see the injected proxy.
-```bash
-cat install/kubernetes/istio-sidecar-injector.yaml | \
- ./install/kubernetes/webhook-patch-ca-bundle.sh > \
- install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml
-```
+#### Installing the webhook
-Install the sidecar injector webhook.
+To enable the sidecar injection webhook, you can use [Helm]({{home}}/docs/setup/kubernetes/helm-install.html)
+to install Istio with the option sidecar-injector.enabled set to true. E.g.
-```bash
-kubectl apply -f install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml
+```command
+$ helm install --namespace=istio-system --set sidecar-injector.enabled=true install/kubernetes/helm/istio
```
-The sidecar injector webhook should now be running.
+Alternatively, you can also use Helm to generate the yaml file and install it manually. E.g.
-```bash
-kubectl -n istio-system get deployment -listio=sidecar-injector
+```command
+$ helm template --namespace=istio-system --set sidecar-injector.enabled=true install/kubernetes/helm/istio > istio.yaml
+$ kubectl create ns istio-system
+$ kubectl apply -f istio.yaml
```
-```
-NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
-istio-sidecar-injector 1 1 1 1 1d
-```
-
-NamespaceSelector decides whether to run the webhook on an object based on whether the namespace for that object matches the selector (see https://kubernetes.io/docs/concepts/overview/working-with-objects/labels/#label-selectors). The default webhook configuration uses `istio-injection=enabled`.
-View namespaces showing `istio-injection` label and verify the `default` namespace is not labeled.
-
-```bash
-kubectl get namespace -L istio-injection
-```
-```
-NAME STATUS AGE ISTIO-INJECTION
-default Active 1h
-istio-system Active 1h
-kube-public Active 1h
-kube-system Active 1h
-```
+In addition, there are some other configuration parameters defined for sidecar
+injector webhook service in `values.yaml`. You can override the default
+values to customize the installation.
#### Deploying an app
Deploy sleep app. Verify both deployment and pod have a single container.
-```bash
-kubectl apply -f samples/sleep/sleep.yaml
-```
-```bash
-kubectl get deployment -o wide
-```
-```
+```command
+$ kubectl apply -f samples/sleep/sleep.yaml
+$ kubectl get deployment -o wide
NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE CONTAINERS IMAGES SELECTOR
sleep 1 1 1 1 12m sleep tutum/curl app=sleep
```
-```bash
-kubectl get pod
-```
-```
+
+```command
+$ kubectl get pod
NAME READY STATUS RESTARTS AGE
sleep-776b7bcdcd-7hpnk 1/1 Running 0 4
```
Label the `default` namespace with `istio-injection=enabled`
-```bash
-kubectl label namespace default istio-injection=enabled
-```
-```bash
-kubectl get namespace -L istio-injection
-```
-```
+```command
+$ kubectl label namespace default istio-injection=enabled
+$ kubectl get namespace -L istio-injection
NAME STATUS AGE ISTIO-INJECTION
default Active 1h enabled
-istio-system Active 1h
-kube-public Active 1h
-kube-system Active 1h
+istio-system Active 1h
+kube-public Active 1h
+kube-system Active 1h
```
Injection occurs at pod creation time. Kill the running pod and verify a new pod is created with the injected sidecar. The original pod has 1/1 READY containers and the pod with injected sidecar has 2/2 READY containers.
-```bash
-kubectl delete pod sleep-776b7bcdcd-7hpnk
-```
-```bash
-kubectl get pod
-```
-```
+```command
+$ kubectl delete pod sleep-776b7bcdcd-7hpnk
+$ kubectl get pod
NAME READY STATUS RESTARTS AGE
sleep-776b7bcdcd-7hpnk 1/1 Terminating 0 1m
sleep-776b7bcdcd-bhn9m 2/2 Running 0 7s
```
-Disable injection for the `default` namespace and verify new pods are created without the sidecar.
+View detailed state of the injected pod. You should see the injected `istio-proxy` container and corresponding volumes. Be sure to substitute the correct name for the `Running` pod below.
-```bash
-kubectl label namespace default istio-injection-
-```
-```bash
-kubectl delete pod sleep-776b7bcdcd-bhn9m
-```
-```bash
-kubectl get pod
-```
+```command
+$ kubectl describe pod sleep-776b7bcdcd-bhn9m
```
+
+Disable injection for the `default` namespace and verify new pods are created without the sidecar.
+
+```command
+$ kubectl label namespace default istio-injection-
+$ kubectl delete pod sleep-776b7bcdcd-bhn9m
+$ kubectl get pod
NAME READY STATUS RESTARTS AGE
sleep-776b7bcdcd-bhn9m 2/2 Terminating 0 2m
sleep-776b7bcdcd-gmvnr 1/1 Running 0 2s
@@ -357,32 +200,51 @@ sleep-776b7bcdcd-gmvnr 1/1 Running 0 2s
#### Understanding what happened
-[admissionregistration.k8s.io/v1alpha1#MutatingWebhookConfiguration](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.9/#mutatingwebhookconfiguration-v1beta1-admissionregistration)
-configures when the webhook is invoked by Kubernetes. The default
-supplied with Istio selects pods in namespaces with label `istio-injection=enabled`.
+[admissionregistration.k8s.io/v1beta1#MutatingWebhookConfiguration](https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.10/#mutatingwebhookconfiguration-v1beta1-admissionregistration)
+configures when the webhook is invoked by Kubernetes. The default
+supplied with Istio selects pods in namespaces with label `istio-injection=enabled`.
This can be changed by modifying the MutatingWebhookConfiguration in
`install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml`.
-The `istio-inject` ConfigMap in the `istio-system` namespace the default
+The `istio-sidecar-injector` ConfigMap in the `istio-system` namespace has the default
injection policy and sidecar injection template.
##### _**policy**_
-
+
`disabled` - The sidecar injector will not inject the sidecar into
-pods by default. Add the `sidecar.istio.io/inject` annotation with
+pods by default. Add the `sidecar.istio.io/inject` annotation with
value `true` to the pod template spec to enable injection.
-
+
`enabled` - The sidecar injector will inject the sidecar into pods by
-default. Add the `sidecar.istio.io/inject` annotation with
+default. Add the `sidecar.istio.io/inject` annotation with
value `false` to the pod template spec to disable injection.
-
+
+The following example uses the `sidecar.istio.io/inject` annotation to disable sidecar injection.
+
+```yaml
+apiVersion: extensions/v1beta1
+kind: Deployment
+metadata:
+ name: ignored
+spec:
+ template:
+ metadata:
+ annotations:
+ sidecar.istio.io/inject: "false"
+ spec:
+ containers:
+ - name: ignored
+ image: tutum/curl
+ command: ["/bin/sleep","infinity"]
+```
+
##### _**template**_
-
-The sidecar injection template uses [https://golang.org/pkg/text/template](https://golang.org/pkg/text/template) which,
-when parsed and exectuted, is decoded to the following
-struct containing the list of containers and volumes to inject into the pod.
-
-```golang
+
+The sidecar injection template uses [https://golang.org/pkg/text/template](https://golang.org/pkg/text/template) which,
+when parsed and executed, is decoded to the following
+struct containing the list of containers and volumes to inject into the pod.
+
+```go
type SidecarInjectionSpec struct {
InitContainers []v1.Container `yaml:"initContainers"`
Containers []v1.Container `yaml:"containers"`
@@ -390,20 +252,20 @@ type SidecarInjectionSpec struct {
}
```
-The template is applied to the following data structure at runtime.
-
-```golang
+The template is applied to the following data structure at runtime.
+
+```go
type SidecarTemplateData struct {
- ObjectMeta *metav1.ObjectMeta
- Spec *v1.PodSpec
+ ObjectMeta *metav1.ObjectMeta
+ Spec *v1.PodSpec
ProxyConfig *meshconfig.ProxyConfig // Defined by https://istio.io/docs/reference/config/service-mesh.html#proxyconfig
- MeshConfig *meshconfig.MeshConfig // Defined by https://istio.io/docs/reference/config/service-mesh.html#meshconfig
+ MeshConfig *meshconfig.MeshConfig // Defined by https://istio.io/docs/reference/config/service-mesh.html#meshconfig
}
```
-`ObjectMeta` and `Spec` are from the pod. `ProxyConfig` and `MeshConfig`
-are from the `istio` ConfigMap in the `istio-system` namespace. Templates can conditional
-define injected containers and volumes with this data.
+`ObjectMeta` and `Spec` are from the pod. `ProxyConfig` and `MeshConfig`
+are from the `istio` ConfigMap in the `istio-system` namespace. Templates can conditional
+define injected containers and volumes with this data.
For example, the following template snippet from `install/kubernetes/istio-sidecar-injector-configmap-release.yaml`
@@ -428,7 +290,7 @@ containers:
```
{% endraw %}
-expands to
+expands to
```yaml
containers:
@@ -444,13 +306,13 @@ containers:
- --serviceCluster
- sleep
```
-
+
when applied over a pod defined by the pod template spec in [samples/sleep/sleep.yaml](https://raw.githubusercontent.com/istio/istio/master/samples/sleep/sleep.yaml).
-### Uninstalling the webhook
+#### Uninstalling the webhook
-```bash
-kubectl delete -f install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml
+```command
+$ kubectl delete -f install/kubernetes/istio-sidecar-injector-with-ca-bundle.yaml
```
The above command will not remove the injected sidecars from
@@ -459,8 +321,8 @@ the deployment to create them is required.
Optionally, if may be also be desirable to clean-up other resources that were created in this task. This includes the secret holding the cert/key and CSR used to sign them, as well as any namespace that was labeled for injection.
-```bash
-kubectl -n istio-system delete secret sidecar-injector-certs
-kubectl delete csr istio-sidecar-injector.istio-system
-kubectl label namespace default istio-injection-
+```command
+$ kubectl -n istio-system delete secret sidecar-injector-certs
+$ kubectl delete csr istio-sidecar-injector.istio-system
+$ kubectl label namespace default istio-injection-
```
diff --git a/_docs/setup/kubernetes/upgrading-istio.md b/_docs/setup/kubernetes/upgrading-istio.md
new file mode 100644
index 0000000000000..6cd1ea9ff1a06
--- /dev/null
+++ b/_docs/setup/kubernetes/upgrading-istio.md
@@ -0,0 +1,77 @@
+---
+title: Upgrading Istio
+description: This guide demonstrates how to upgrade the Istio control plane and data plane independently.
+
+weight: 70
+
+---
+{% include home.html %}
+
+This guide demonstrates how to upgrade the Istio control plane and data plane
+for the Kubernetes environment.
+
+## Overview
+
+This guide describes how to upgrade an existing Istio deployment (including
+both control plane and sidecar proxy) to a new release of Istio. The upgrade
+process could involve new binaries as well as other changes like configuration
+and API schemas. The upgrade process may involve some service downtime.
+
+## Application setup
+
+In the following steps, we assume that the Istio components are installed and
+upgraded in the same namespace ISTIO\_NAMESPACE.
+
+## Tasks
+
+### Control plane upgrade
+
+The Istio control plane components include: Citadel, Ingress, Pilot, Mixer, and
+Sidecar injector. We can use Kubernetes’ rolling update mechanism to upgrade the
+control plane components. It can be done by simply applying the new version
+yaml file directly, e.g.
+
+```command
+$ kubectl apply -f istio.yaml (or istio-auth.yaml)
+```
+
+> If you have used [Helm](https://istio.io/docs/setup/kubernetes/helm.html)
+to generate a customized Istio deployment, please use the customized yaml files
+generated by Helm instead of the standard installation yamls.
+
+The rolling update process will upgrade all deployments and configmaps to the
+new version. If there is any issue with the new control plane, you can rollback
+the changes either by applying the old version yaml files.
+
+### Sidecar upgrade
+
+After the control plane is upgraded, you will need to re-inject the new version
+of sidecar proxy. There are two cases: Manual injection and Automatic injection.
+
+1. Manual injection:
+
+ If automatic sidecar injection is not enabled, you can upgrade the
+ sidecar manually by running the following command:
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -i $ISTIO_NAMESPACE -f $ORIGINAL_DEPLOYMENT_YAML)
+ ```
+
+ If the sidecar was previously injected with some customized inject config
+ files, you will need to change the version tag in the config files to the new
+ version and reinject the sidecar as follows:
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject \
+ --injectConfigFile inject-config.yaml \
+ --filename $ORIGINAL_DEPLOYMENT_YAML)
+ ```
+
+1. Automatic injection:
+
+ If automatic sidecar injection is enabled, you can upgrade the sidecar
+ by doing a rolling update for all the pods, so that the new version of
+ sidecar will be automatically re-injected
+
+ There are some tricks to reload all pods. E.g. There is a [bash script](https://gist.github.com/jmound/ff6fa539385d1a057c82fa9fa739492e)
+ which triggers the rolling update by patching the grace termination period.
diff --git a/_docs/setup/mesos/index.md b/_docs/setup/mesos/index.md
index ecdf36323e486..e8ebb9ddcc35d 100644
--- a/_docs/setup/mesos/index.md
+++ b/_docs/setup/mesos/index.md
@@ -1,11 +1,9 @@
---
title: Mesos
-overview: Instructions for installing the Istio control plane in Apache Mesos.
+description: Instructions for installing the Istio control plane in Apache Mesos.
-order: 50
+weight: 50
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/setup/mesos/install.md b/_docs/setup/mesos/install.md
index ea50e3b7538d9..2a1e5af34ffad 100644
--- a/_docs/setup/mesos/install.md
+++ b/_docs/setup/mesos/install.md
@@ -1,11 +1,9 @@
---
title: Installation
-overview: Instructions for installing the Istio control plane in Apache Mesos.
+description: Instructions for installing the Istio control plane in Apache Mesos.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
diff --git a/_docs/tasks/index.md b/_docs/tasks/index.md
index 3325699459149..29b54b3d2f6fb 100644
--- a/_docs/tasks/index.md
+++ b/_docs/tasks/index.md
@@ -1,11 +1,9 @@
---
title: Tasks
-overview: Tasks show you how to do a single specific targeted activity with the Istio system.
+description: Tasks show you how to do a single specific targeted activity with the Istio system.
-order: 20
+weight: 20
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/tasks/policy-enforcement/index.md b/_docs/tasks/policy-enforcement/index.md
index 1559ef3736b20..74222de2f1af1 100644
--- a/_docs/tasks/policy-enforcement/index.md
+++ b/_docs/tasks/policy-enforcement/index.md
@@ -1,11 +1,9 @@
---
title: Policy Enforcement
-overview: Describes tasks that demonstrate policy enforcement features.
+description: Describes tasks that demonstrate policy enforcement features.
-order: 20
+weight: 20
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/tasks/policy-enforcement/rate-limiting.md b/_docs/tasks/policy-enforcement/rate-limiting.md
index dd8266e57d372..bc3c797c967a9 100644
--- a/_docs/tasks/policy-enforcement/rate-limiting.md
+++ b/_docs/tasks/policy-enforcement/rate-limiting.md
@@ -1,11 +1,10 @@
---
title: Enabling Rate Limits
-overview: This task shows you how to use Istio to dynamically limit the traffic to a service.
-
-order: 10
+description: This task shows you how to use Istio to dynamically limit the traffic to a service.
-layout: docs
-type: markdown
+weight: 10
+
+redirect_from: /docs/tasks/rate-limiting.html
---
{% include home.html %}
@@ -21,31 +20,31 @@ This task shows you how to use Istio to dynamically limit the traffic to a servi
* Initialize the application version routing to direct `reviews` service requests from
test user "jason" to version v2 and requests from any other user to v3.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
- istioctl create -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ $ istioctl create -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
```
-
- > Note: if you have conflicting rule that you set in previous tasks,
- use `istioctl replace` instead of `istioctl create`.
+
+> If you have conflicting rule that you set in previous tasks,
+use `istioctl replace` instead of `istioctl create`.
## Rate limits
Istio enables users to rate limit traffic to a service.
-
+
Consider `ratings` as an external paid service like Rotten Tomatoes® with `1qps` free quota.
-Using Istio we can ensure that `1qps` is not breached.
+Using Istio we can ensure that `1qps` is not breached.
1. Point your browser at the Bookinfo `productpage` (http://$GATEWAY_URL/productpage).
If you log in as user "jason", you should see black ratings stars with each review,
indicating that the `ratings` service is being called by the "v2" version of the `reviews` service.
-
+
If you log in as any other user (or logout) you should see red ratings stars with each review,
indicating that the `ratings` service is being called by the "v3" version of the `reviews` service.
-1. Configure a `memquota` adapter with rate limits.
-
+1. Configure a `memquota` adapter with rate limits.
+
Save the following YAML snippet as `ratelimit-handler.yaml`.
```yaml
@@ -75,14 +74,14 @@ Using Istio we can ensure that `1qps` is not breached.
and then run the following command:
- ```bash
- istioctl create -f ratelimit-handler.yaml
+ ```command
+ $ istioctl create -f ratelimit-handler.yaml
```
-
+
This configuration specifies a default 5000 qps rate limit. Traffic reaching the ratings service via
reviews-v2 is subject to a 1qps rate limit. In our example user "jason" is routed via reviews-v2 and is therefore subject
to the 1qps rate limit.
-
+
1. Configure rate limit instance and rule
Create a quota instance named `requestcount` that maps incoming attributes to quota dimensions,
@@ -115,19 +114,19 @@ Using Istio we can ensure that `1qps` is not breached.
Save the configuration as `ratelimit-rule.yaml` and run the following command:
- ```bash
- istioctl create -f ratelimit-rule.yaml
+ ```command
+ $ istioctl create -f ratelimit-rule.yaml
```
1. Generate load on the `productpage` with the following command:
- ```bash
- while true; do curl -s -o /dev/null http://$GATEWAY_URL/productpage; done
+ ```command
+ $ while true; do curl -s -o /dev/null http://$GATEWAY_URL/productpage; done
```
1. Refresh the `productpage` in your browser.
- If you log in as user "jason" while the load generator is running (i.e., generating more than 1 req/s),
+ If you log in as user "jason" while the load generator is running (i.e., generating more than 1 req/s),
the traffic generated by your browser will be rate limited to 1qps.
The reviews-v2 service is unable to access the ratings service and you stop seeing stars.
For all other users the default 5000qps rate limit will apply and you will continue seeing red stars.
@@ -164,31 +163,31 @@ In the preceding examples we saw how Mixer applies rate limits to requests that
Every named quota instance like `requestcount` represents a set of counters.
The set is defined by a Cartesian product of all quota dimensions.
If the number of requests in the last `expiration` duration exceed `maxAmount`, Mixer returns a `RESOURCE_EXHAUSTED`
-message to the proxy. The proxy in turn returns status `HTTP 429` to the caller.
+message to the proxy. The proxy in turn returns status `HTTP 429` to the caller.
-The `memquota` adapter uses a sliding window of sub second resolution to enforce rate limits.
+The `memquota` adapter uses a sliding window of sub second resolution to enforce rate limits.
The `maxAmount` in the adapter configuration sets the default limit for all counters associated with a quota instance.
This default limit applies if a quota override does not match the request. Memquota selects the first override that matches a request.
An override need not specify all quota dimensions. In the ratelimit-handler.yaml example, the `1qps` override is
-selected by matching only three out of four quota dimensions.
+selected by matching only three out of four quota dimensions.
-If you would like the above policies enforced for a given namespace instead of the entire Istio mesh, you can replace all occurrences of istio-system with the given namespace.
+If you would like the above policies enforced for a given namespace instead of the entire Istio mesh, you can replace all occurrences of istio-system with the given namespace.
## Cleanup
* Remove the rate limit configuration:
- ```bash
- istioctl delete -f ratelimit-handler.yaml
- istioctl delete -f ratelimit-rule.yaml
+ ```command
+ $ istioctl delete -f ratelimit-handler.yaml
+ $ istioctl delete -f ratelimit-rule.yaml
```
* Remove the application routing rules:
- ```
- istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
- istioctl delete -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
@@ -200,5 +199,3 @@ If you would like the above policies enforced for a given namespace instead of t
* Learn more about [Mixer]({{home}}/docs/concepts/policy-and-control/mixer.html) and [Mixer Config]({{home}}/docs/concepts/policy-and-control/mixer-config.html).
* Discover the full [Attribute Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
-
-* Read the reference guide to [Writing Config]({{home}}/docs/reference/writing-config.html).
diff --git a/_docs/tasks/security/authn-policy.md b/_docs/tasks/security/authn-policy.md
new file mode 100644
index 0000000000000..128e460566ff8
--- /dev/null
+++ b/_docs/tasks/security/authn-policy.md
@@ -0,0 +1,265 @@
+---
+title: Basic Authentication Policy
+description: Shows you how to use Istio authentication policy to setup mutual TLS and basic end-user authentication.
+
+weight: 10
+
+---
+{% include home.html %}
+
+Through this task, you will learn how to:
+
+* Use authentication policy to setup mutual TLS.
+
+* Use authentication policy to do end-user authentication.
+
+## Before you begin
+
+* Understand Istio [authentication policy]({{home}}/docs/concepts/security/authn-policy.html) and related [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) concepts.
+
+* Know how to verify mTLS setup (recommend to walk through [testing Istio mutual TLS authentication]({{home}}/docs/tasks/security/mutual-tls.html))
+
+* Have a Kubernetes cluster with Istio installed, without mTLS. See [the Istio installation task]({{home}}/docs/setup/kubernetes/quick-start.html) and follow step 5.
+
+* For demo, create two namespaces `foo` and `bar`, and deploy [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) and [sleep](https://github.com/istio/istio/tree/master/samples/sleep) with sidecar on both of them. Also, run another sleep app without sidecar (to keep it separate, run it in `legacy` namespace)
+
+ ```command
+ $ kubectl create ns foo
+ $ kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml) -n foo
+ $ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml) -n foo
+ $ kubectl create ns bar
+ $ kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml) -n bar
+ $ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml) -n bar
+ $ kubectl create ns legacy
+ $ kubectl apply -f samples/sleep/sleep.yaml -n legacy
+ ```
+
+* Verifying setup by sending an http request (using curl command) from any sleep pod (among those in namespace `foo`, `bar` or `legacy`) to either `httpbin.foo` or `httpbin.bar`. All requests should success with HTTP code 200.
+
+ For example, here is a command to check `sleep.bar` to `httpbin.foo` reachability:
+
+ ```command
+ $ kubectl exec $(kubectl get pod -l app=sleep -n bar -o jsonpath={.items..metadata.name}) -c sleep -n bar -- curl http://httpbin.foo:8000/ip -s -o /dev/null -w "%{http_code}\n"
+ 200
+ ```
+
+ Conveniently, this one-liner command iterates through all combinations:
+
+ ```command
+ $ for from in "foo" "bar" "legacy"; do for to in "foo" "bar"; do kubectl exec $(kubectl get pod -l app=sleep -n ${from} -o jsonpath={.items..metadata.name}) -c sleep -n ${from} -- curl http://httpbin.${to}:8000/ip -s -o /dev/null -w "sleep.${from} to httpbin.${to}: %{http_code}\n"; done; done
+ sleep.foo to httpbin.foo: 200
+ sleep.foo to httpbin.bar: 200
+ sleep.bar to httpbin.foo: 200
+ sleep.bar to httpbin.bar: 200
+ sleep.legacy to httpbin.foo: 200
+ sleep.legacy to httpbin.bar: 200
+ ```
+
+* Also verify that there are no authentication policy in the system
+
+ ```command
+ $ kubectl get policies.authentication.istio.io -n foo
+ $ kubectl get policies.authentication.istio.io -n bar
+ No resources found.
+ ```
+
+## Enable mTLS for all services in namespace `foo`
+
+Run this command to set namespace-level policy for namespace `foo`.
+
+```bash
+cat <<EOF | istioctl create -f -
+apiVersion: "authentication.istio.io/v1alpha1"
+kind: "Policy"
+metadata:
+ name: "enable-mtls"
+ namespace: "foo"
+spec:
+ peers:
+ - mtls:
+EOF
+```
+
+And verify the policy was added:
+```command
+$ kubectl get policies.authentication.istio.io -n foo
+NAME AGE
+enable-mtls 1m
+```
+
+Run the same testing command above. We should see request from `sleep.legacy` to `httpbin.foo` start to fail, as the result of enabling mTLS for `httpbin.foo` but `sleep.legacy` doesn't have sidecar to support it. On the other hand, for clients with sidecar (`sleep.foo` and `sleep.bar`), Istio automatically configures them to using mTLS where talking to `http.foo`, so they continue to work. Also, requests to `httpbin.bar` are not affected as the policy is effective on the `foo` namespace only.
+
+```command
+$ for from in "foo" "bar" "legacy"; do for to in "foo" "bar"; do kubectl exec $(kubectl get pod -l app=sleep -n ${from} -o jsonpath={.items..metadata.name}) -c sleep -n ${from} -- curl http://httpbin.${to}:8000/ip -s -o /dev/null -w "sleep.${from} to httpbin.${to}: %{http_code}\n"; done; done
+sleep.foo to httpbin.foo: 200
+sleep.foo to httpbin.bar: 200
+sleep.bar to httpbin.foo: 200
+sleep.bar to httpbin.bar: 200
+sleep.legacy to httpbin.foo: 000
+command terminated with exit code 56
+sleep.legacy to httpbin.bar: 200
+```
+
+## Enable mTLS for single service `httpbin.bar`
+
+Run this command to set another policy only for `httpbin.bar` service. Note in this example, we do **not** specify namespace in metadata but put it in the command line (`-n bar`). They should work the same.
+
+```bash
+cat <<EOF | istioctl create -n bar -f -
+apiVersion: "authentication.istio.io/v1alpha1"
+kind: "Policy"
+metadata:
+ name: "enable-mtls"
+spec:
+ targets:
+ - name: httpbin
+ peers:
+ - mtls:
+EOF
+```
+
+Again, run the probing command. As expected, request from `sleep.legacy` to `httpbin.bar` starts failing with the same reasons.
+
+```plain
+...
+sleep.legacy to httpbin.bar: 000
+command terminated with exit code 56
+```
+
+If we have more services in namespace `bar`, we should see traffic to them won't be affected. Instead of adding more services to demonstrate this behavior, we edit the policy slightly:
+
+```bash
+cat <<EOF | istioctl replace -n bar -f -
+apiVersion: "authentication.istio.io/v1alpha1"
+kind: "Policy"
+metadata:
+ name: "enable-mtls"
+spec:
+ targets:
+ - name: httpbin
+ ports:
+ - number: 1234
+ peers:
+ - mtls:
+EOF
+```
+
+This new policy will apply only to the `httpbin` service on port `1234`. As a result, mTLS is disabled (again) on port `8000` and requests from `sleep.legacy` will resume working.
+
+```command
+$ kubectl exec $(kubectl get pod -l app=sleep -n legacy -o jsonpath={.items..metadata.name}) -c sleep -n legacy -- curl http://httpbin.bar:8000/ip -s -o /dev/null -w "%{http_code}\n"
+200
+```
+
+## Having both namespace-level and service-level policies
+
+Assuming we already added the namespace-level policy that enables mTLS for all services in namespace `foo` and observe that request from `sleep.legacy` to `httpbin.foo` are failing (see above). Now add another policy that disables mTLS (peers section is empty) specifically for the `httpbin` service:
+
+```bash
+cat <<EOF | istioctl create -n foo -f -
+apiVersion: "authentication.istio.io/v1alpha1"
+kind: "Policy"
+metadata:
+ name: "httpbin"
+spec:
+ targets:
+ - name: httpbin
+EOF
+```
+
+Re-run the request from `sleep.legacy`, we should see a success return code again (200), confirming service-level policy overrules the namespace-level policy.
+
+```command
+$ kubectl exec $(kubectl get pod -l app=sleep -n legacy -o jsonpath={.items..metadata.name}) -c sleep -n legacy -- curl http://httpbin.foo:8000/ip -s -o /dev/null -w "%{http_code}\n"
+200
+```
+
+## Setup end-user authentication
+
+You will need a valid JWT (corresponding to the JWKS endpoint you want to use for the demo). Please follow the instructions [here](https://github.com/istio/istio/tree/master/security/tools/jwt) to create one. You can also use your own JWT/JWKS endpoint for the demo. Once you have that, export to some environment variables.
+
+```command
+$ export JWKS=https://www.googleapis.com/service_accounts/v1/jwk/<YOUR-SVC-ACCOUNT>
+$ export TOKEN=<YOUR-TOKEN>
+```
+
+Also, for convenience, expose `httpbin.foo` via ingress (for more details, see [ingress task]({{home}}/docs/tasks/traffic-management/ingress.html)).
+
+```bash
+cat <<EOF | kubectl apply -f -
+apiVersion: extensions/v1beta1
+kind: Ingress
+metadata:
+ name: httpbin-ingress
+ namespace: foo
+ annotations:
+ kubernetes.io/ingress.class: istio
+spec:
+ rules:
+ - http:
+ paths:
+ - path: /headers
+ backend:
+ serviceName: httpbin
+ servicePort: 8000
+EOF
+```
+
+Get ingress IP
+```command
+export INGRESS_HOST=$(kubectl get ing -n foo -o=jsonpath='{.items[0].status.loadBalancer.ingress[0].ip}')
+```
+
+And run a test query
+```command-output-as-json
+$ curl $INGRESS_HOST/headers -s -o /dev/null -w "%{http_code}\n"
+{
+ "headers": {
+ "Accept": "*/*",
+ "Content-Length": "0",
+ "Host": "35.230.123.105",
+ "User-Agent": "curl/7.58.0",
+ "X-B3-Sampled": "1",
+ "X-B3-Spanid": "d729acfa46c072ba",
+ "X-B3-Traceid": "d729acfa46c072ba",
+ "X-Envoy-Internal": "true",
+ "X-Ot-Span-Context": "d729acfa46c072ba;d729acfa46c072ba;0000000000000000",
+ "X-Request-Id": "8f232322-7c73-9470-8481-5ab64233adf9"
+ }
+}
+```
+
+Now, let's add a policy that requires end-user JWT for `httpbin.foo`. The next command assumes policy with name "httpbin" already exists (which should be if you follow previous sections). You can run `kubectl get policies.authentication.istio.io -n foo` to confirm, and use `istio create` (instead of `istio replace`) if resource is not found. Also note in this policy, peer authentication (mTLS) is also set, though it can be removed without affecting origin authentication settings.
+
+```bash
+cat <<EOF | istioctl replace -n foo -f -
+apiVersion: "authentication.istio.io/v1alpha1"
+kind: "Policy"
+metadata:
+ name: "httpbin"
+spec:
+ targets:
+ - name: httpbin
+ peers:
+ - mtls:
+ origins:
+ - jwt:
+ issuer: "YOUR_SERVICE_ACCOUNT_EMAIL"
+ jwksUri: $JWKS
+ principalBinding: USE_ORIGIN
+EOF
+```
+
+The same curl command from before will return with 401 error code, as a result of server is expecting JWT but none was provided:
+```command
+$ curl $INGRESS_HOST/headers -s -o /dev/null -w "%{http_code}\n"
+401
+```
+
+Attaching the valid token generated above returns success:
+
+```command
+$ curl --header "Authorization: Bearer $TOKEN" $INGRESS_HOST/headers -s -o /dev/null -w "%{http_code}\n"
+```
+
+You may want to try to modify token or policy (e.g change issuer, audiences, expiry date etc) to observe other aspects of JWT validation.
diff --git a/_docs/tasks/security/basic-access-control.md b/_docs/tasks/security/basic-access-control.md
index 5c35413375b32..b95a34bb9f31a 100644
--- a/_docs/tasks/security/basic-access-control.md
+++ b/_docs/tasks/security/basic-access-control.md
@@ -1,11 +1,9 @@
---
-title: Setting up Basic Access Control
-overview: This task shows how to control access to a service using the Kubernetes labels.
+title: Basic Access Control
+description: Shows how to control access to a service using the Kubernetes labels.
-order: 20
+weight: 20
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -21,18 +19,18 @@ This task shows how to control access to a service using the Kubernetes labels.
* Initialize the application version routing to direct `reviews` service requests from
test user "jason" to version v2 and requests from any other user to v3.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
- istioctl create -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ $ istioctl create -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
```
-
- > Note: if you have conflicting rules that you set in previous tasks,
- use `istioctl replace` instead of `istioctl create`.
- > Note: if you are using a namespace other than `default`,
- use `istioctl -n namespace ...` to specify the namespace.
+ > If you have conflicting rules that you set in previous tasks,
+ > use `istioctl replace` instead of `istioctl create`.
+ >
+ > If you are using a namespace other than `default`,
+ > use `istioctl -n namespace ...` to specify the namespace.
-## Access control using _denials_
+## Access control using _denials_
Using Istio you can control access to a service based on any attributes that are available within Mixer.
This simple form of access control is based on conditionally denying requests using Mixer selectors.
@@ -44,33 +42,34 @@ of the `reviews` service. We would like to cut off access to version `v3` of the
If you log in as user "jason", you should see black rating stars with each review,
indicating that the `ratings` service is being called by the "v2" version of the `reviews` service.
-
+
If you log in as any other user (or logout) you should see red rating stars with each review,
indicating that the `ratings` service is being called by the "v3" version of the `reviews` service.
1. Explicitly deny access to version `v3` of the `reviews` service.
Run the following command to set up the deny rule along with a handler and an instance.
- ```bash
- istioctl create -f samples/bookinfo/kube/mixer-rule-deny-label.yaml
- ```
- You can expect to see the output similar to the following:
- ```bash
+
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/mixer-rule-deny-label.yaml
Created config denier/default/denyreviewsv3handler at revision 2882105
Created config checknothing/default/denyreviewsv3request at revision 2882106
Created config rule/default/denyreviewsv3 at revision 2882107
```
+
Notice the following in the `denyreviewsv3` rule:
- ```
+
+ ```plain
match: destination.labels["app"] == "ratings" && source.labels["app"]=="reviews" && source.labels["version"] == "v3"
```
+
It matches requests coming from the service `reviews` with label `v3` to the service `ratings`.
This rule uses the `denier` adapter to deny requests coming from version `v3` of the reviews service.
- The adapter always denies requests with a pre-configured status code and message.
+ The adapter always denies requests with a preconfigured status code and message.
The status code and the message is specified in the [denier]({{home}}/docs/reference/config/adapters/denier.html)
adapter configuration.
-
+
1. Refresh the `productpage` in your browser.
If you are logged out or logged in as any user other than "jason" you will no longer see red ratings stars because
@@ -78,14 +77,15 @@ of the `reviews` service. We would like to cut off access to version `v3` of the
In contrast, if you log in as user "jason" (the `reviews:v2` user) you continue to see
the black ratings stars.
-## Access control using _whitelists_
+## Access control using _whitelists_
Istio also supports attribute-based whitelists and blacklists. The following whitelist configuration is equivalent to the
`denier` configuration in the previous section. The rule effectively rejects requests from version `v3` of the `reviews` service.
1. Remove the denier configuration that you added in the previous section.
- ```bash
- istioctl delete -f samples/bookinfo/kube/mixer-rule-deny-label.yaml
+
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/mixer-rule-deny-label.yaml
```
1. Verify that when you access the Bookinfo `productpage` (http://$GATEWAY_URL/productpage) without logging in, you see red stars.
@@ -106,10 +106,11 @@ Istio also supports attribute-based whitelists and blacklists. The following whi
overrides: ["v1", "v2"] # overrides provide a static list
blacklist: false
```
- and then run the following command:
- ```bash
- istioctl create -f whitelist-handler.yaml
+ and then run the following command:
+
+ ```command
+ $ istioctl create -f whitelist-handler.yaml
```
1. Extract the version label by creating an instance of the [`listentry`]({{home}}/docs/reference/config/template/listentry.html) template.
@@ -123,16 +124,16 @@ Save the following YAML snippet as `appversion-instance.yaml`:
spec:
value: source.labels["version"]
```
- and then run the following command:
- ```bash
- istioctl create -f appversion-instance.yaml
+ and then run the following command:
+
+ ```command
+ $ istioctl create -f appversion-instance.yaml
```
1. Enable `whitelist` checking for the ratings service.
Save the following YAML snippet as `checkversion-rule.yaml`:
-
```yaml
apiVersion: config.istio.io/v1alpha2
kind: rule
@@ -145,10 +146,11 @@ Save the following YAML snippet as `checkversion-rule.yaml`:
instances:
- appversion.listentry
```
- and then run the following command:
- ```bash
- istioctl create -f checkversion-rule.yaml
+ and then run the following command:
+
+ ```command
+ $ istioctl create -f checkversion-rule.yaml
```
1. Verify that when you access the Bookinfo `productpage` (http://$GATEWAY_URL/productpage) without logging in, you see **no** stars.
@@ -158,17 +160,17 @@ Verify that after logging in as "jason" you see black stars.
* Remove the mixer configuration:
- ```bash
- istioctl delete -f checkversion-rule.yaml
- istioctl delete -f appversion-instance.yaml
- istioctl delete -f whitelist-handler.yaml
+ ```command
+ $ istioctl delete -f checkversion-rule.yaml
+ $ istioctl delete -f appversion-instance.yaml
+ $ istioctl delete -f whitelist-handler.yaml
```
* Remove the application routing rules:
- ```
- istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
- istioctl delete -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
@@ -183,8 +185,6 @@ Verify that after logging in as "jason" you see black stars.
* Discover the full [Attribute Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
-* Read the reference guide to [Writing Config]({{home}}/docs/reference/writing-config.html).
-
* Understand the differences between Kubernetes network policies and Istio
- access control policies from this
- [blog]({{home}}/blog/using-network-policy-in-concert-with-istio.html).
+access control policies from this
+[blog]({{home}}/blog/using-network-policy-in-concert-with-istio.html).
diff --git a/_docs/tasks/security/health-check.md b/_docs/tasks/security/health-check.md
new file mode 100644
index 0000000000000..5a4da27638363
--- /dev/null
+++ b/_docs/tasks/security/health-check.md
@@ -0,0 +1,141 @@
+---
+title: Citadel health checking
+description: Shows how to enable Citadel health checking with Kubernetes.
+
+weight: 70
+
+---
+{% include home.html %}
+
+This task shows how to enable Kubernetes health checking for Citadel. Note this is an Alpha feature.
+
+Since Istio 0.6, Citadel has a health checking feature that can be optionally enabled.
+By default, the normal Istio deployment process does not enable this feature.
+Currently, the health checking feature is able to detect the failures of Citadel CSR signing service,
+by periodically sending CSRs to the API. More health checking features are coming shortly.
+
+Citadel contains a _prober client_ module that periodically checks Citadel's status (currently only the health
+status of the gRPC server).
+If Citadel is healthy, the _prober client_ updates the _modification time_ of the _health status file_
+(the file is always empty). Otherwise, it does nothing. Citadel relies on a
+[K8s liveness and readiness probe](https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-probes/)
+with command line to check the _modification time_ of the _health status file_ on the pod.
+If the file is not updated for a period, the probe will be triggered and Kubelet will restart the Citadel container.
+
+Note: because Citadel health checking currently only monitors the health status of CSR service API,
+this feature is not needed if the production setup is not using the
+[Istio Mesh Expansion]({{home}}/docs/setup/kubernetes/mesh-expansion.html) (which requires the CSR service API).
+
+## Before you begin
+
+* Set up Istio by following the instructions in the
+ [quick start]({{home}}/docs/setup/kubernetes/quick-start.html).
+ Note that authentication should be enabled at step 5 in the
+ [installation steps]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps).
+
+## Deploying Citadel with health checking
+
+Deploy Citadel with health checking enabled.
+
+```command
+$ kubectl apply -f install/kubernetes/istio-citadel-with-health-check.yaml
+```
+
+Deploy the `istio-citadel` service so that the CSR service can be found by the health checker.
+
+```bash
+cat <<EOF | kubectl create -f -
+apiVersion: v1
+kind: Service
+metadata:
+ name: istio-citadel
+ namespace: istio-system
+ labels:
+ istio: citadel
+spec:
+ ports:
+ - port: 8060
+ selector:
+ istio: citadel
+EOF
+```
+
+## Verifying the health checker is working
+
+Citadel will log the health checking results. Run the following in command line:
+
+```command
+$ kubectl logs `kubectl get po -n istio-system | grep istio-citadel | awk '{print $1}'` -n istio-system
+```
+
+You will see the output similar to:
+```plain
+...
+2018-02-27T04:29:56.128081Z info CSR successfully signed.
+...
+2018-02-27T04:30:11.081791Z info CSR successfully signed.
+...
+2018-02-27T04:30:25.485315Z info CSR successfully signed.
+...
+```
+
+The log above indicates the periodic health checking is working.
+Observe that the health checking interval is about 15 seconds, which is the default health checking interval.
+
+## (Optional) Configuring the health checking
+
+Optionally, adjust the health checking configuration to meet your own needs. Open the file
+`install/kubernetes/istio-citadel-with-health-check.yaml`, and locate the following lines.
+
+```plain
+...
+ - --liveness-probe-path=/tmp/ca.liveness # path to the liveness health checking status file
+ - --liveness-probe-interval=60s # interval for health checking file update
+ - --probe-check-interval=15s # interval for health status check
+ - --logtostderr
+ - --stderrthreshold
+ - INFO
+livenessProbe:
+ exec:
+ command:
+ - /usr/local/bin/istio_ca
+ - probe
+ - --probe-path=/tmp/ca.liveness # path to the liveness health checking status file
+ - --interval=125s # the maximum time gap allowed between the file mtime and the current sys clock.
+ initialDelaySeconds: 60
+ periodSeconds: 60
+...
+```
+
+The `liveness-probe-path` and `probe-path` are the path to the health status file, configured at Citadel and the
+prober;
+the `liveness-probe-interval` is the interval to update the health status file, if Citadel is healthy;
+the `probe-check-interval` is the interval for Citadel health checking.
+The `interval` is the maximum time elapsed since the last update of the health status file, for the prober to consider
+Citadel as healthy.
+`initialDelaySeconds` and `periodSeconds` are the initial delay and the probe running period.
+
+Prolonging `probe-check-interval` will reduce the health checking overhead, but there will be a greater lagging for the
+prober to get notified on the unhealthy status.
+To avoid the prober restarting Citadel due to temporary unavailability, the `interval` on the prober can be
+configured to be more than `N` times of the `liveness-probe-interval`. This will allow the prober to tolerate `N-1`
+continuously failed health checks.
+
+## Cleanup
+
+* To disable health checking on Citadel:
+ ```command
+ kubectl apply -f install/kubernetes/istio-auth.yaml
+ kubectl delete svc istio-citadel -n istio-system
+ ```
+
+* To remove Citadel:
+
+ ```command
+ $ kubectl delete -f install/kubernetes/istio-citadel-with-health-check.yaml
+ $ kubectl delete svc istio-citadel -n istio-system
+ ```
+
+## What's next
+
+* Read more about [Citadel (codename is istio\_ca) arguments]({{home}}/docs/reference/commands/istio_ca.html).
diff --git a/_docs/tasks/security/https-overlay.md b/_docs/tasks/security/https-overlay.md
new file mode 100644
index 0000000000000..007a0e455051c
--- /dev/null
+++ b/_docs/tasks/security/https-overlay.md
@@ -0,0 +1,217 @@
+---
+title: Mutual TLS over HTTPS
+description: Shows how to enable mTLS on HTTPS services.
+
+weight: 80
+
+---
+{% include home.html %}
+
+This task shows how Istio Mutual TLS works with HTTPS services. It includes: 1)
+Deploy an HTTPS service without Istio sidecar; 2) Deploy an HTTPS service with
+Istio with mTLS disabled; 3) Deploy an HTTPS service with mTLS enabled. For each
+deployment, connect to this service and verify it works.
+
+When the Istio sidecar is deployed with an HTTPS service, the proxy automatically downgrades
+from L7 to L4 (no matter mTLS is enabled or not), which means it does not terminate the
+original HTTPS traffic. And this is the reason Istio can work on HTTPS services.
+
+## Before you begin
+
+Set up Istio by following the instructions in the
+[quick start]({{home}}/docs/setup/kubernetes/quick-start.html).
+Note that authentication should be **disabled** at step 5 in the
+[installation steps]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps).
+
+### Generate certificates and configmap
+
+You need to have openssl installed to run this command
+
+```command
+$ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /tmp/nginx.key -out /tmp/nginx.crt -subj "/CN=my-nginx/O=my-nginx"
+```
+
+```command
+$ kubectl create secret tls nginxsecret --key /tmp/nginx.key --cert /tmp/nginx.crt
+$ secret "nginxsecret" created
+```
+
+Create a configmap used for the HTTPS service
+
+```command
+$ kubectl create configmap nginxconfigmap --from-file=samples/https/default.conf
+$ configmap "nginxconfigmap" created
+```
+
+## Deploy an HTTPS service without Istio sidecar
+
+This section creates a NGINX-based HTTPS service.
+
+```command
+$ kubectl apply -f samples/https/nginx-app.yaml
+service "my-nginx" created
+replicationcontroller "my-nginx" created
+```
+
+Then, create another pod to call this service.
+
+```command
+$ kubectl apply -f <(bin/istioctl kube-inject --debug -f samples/sleep/sleep.yaml)
+```
+
+Get the pods
+
+```command
+$ kubectl get pod
+NAME READY STATUS RESTARTS AGE
+my-nginx-jwwck 2/2 Running 0 1h
+sleep-847544bbfc-d27jg 2/2 Running 0 18h
+```
+
+Ssh into the istio-proxy container of sleep pod.
+
+```command
+$ kubectl exec -it sleep-847544bbfc-d27jg -c istio-proxy /bin/bash
+```
+
+Call my-nginx
+
+```command
+$ curl https://my-nginx -k
+...
+<h1>Welcome to nginx!</h1>
+...
+```
+
+You can actually combine the above three command into one:
+
+```command
+$ kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c istio-proxy -- curl https://my-nginx -k
+...
+<h1>Welcome to nginx!</h1>
+...
+```
+
+### Create an HTTPS service with the Istio sidecar and mTLS disabled
+
+In "Before you begin" section, the Istio control plane is deployed with mTLS
+disabled. So you only need to redeploy the NGINX HTTPS service with sidecar.
+
+Delete the HTTPS service.
+
+```command
+$ kubectl delete -f nginx-app.yaml
+```
+
+Deploy it with a sidecar
+
+```command
+$ kubectl apply -f <(bin/istioctl kube-inject --debug -f samples/https/nginx-app.yaml)
+```
+
+Make sure the pod is up and running
+
+```command
+$ kubectl get pod
+NAME READY STATUS RESTARTS AGE
+my-nginx-6svcc 2/2 Running 0 1h
+sleep-847544bbfc-d27jg 2/2 Running 0 18h
+```
+
+And run
+
+```command
+$ kubectl exec sleep-847544bbfc-d27jg -c sleep -- curl https://my-nginx -k
+...
+<h1>Welcome to nginx!</h1>
+...
+```
+
+If you run from istio-proxy container, it should work as well
+
+```command
+$ kubectl exec sleep-847544bbfc-d27jg -c istio-proxy -- curl https://my-nginx -k
+...
+<h1>Welcome to nginx!</h1>
+...
+```
+
+> This example is borrowed from [kubernetes examples](https://github.com/kubernetes/examples/blob/master/staging/https-nginx/README.md).
+
+### Create an HTTPS service with Istio sidecar with mTLS enabled
+
+You need to deploy Istio control plane with mTLS enabled. If you have istio
+control plane with mTLS disabled installed, please delete it:
+
+```command
+$ kubectl delete -f install/kubernetes/istio.yaml
+```
+
+And wait for everything is down, i.e., there is no pod in control plane namespace (istio-system).
+
+```command
+$ kubectl get pod -n istio-system
+No resources found.
+```
+
+Then deploy the Istio control plane with mTLS enabled:
+
+```command
+$ kubectl apply -f install/kubernetes/istio-auth.yaml
+```
+
+Make sure everything is up and running:
+
+```command
+$ kubectl get po -n istio-system
+NAME READY STATUS RESTARTS AGE
+istio-citadel-58c5856966-k6nm4 1/1 Running 0 2m
+istio-ingress-5789d889bc-xzdg2 1/1 Running 0 2m
+istio-mixer-65c55bc5bf-8n95w 3/3 Running 0 2m
+istio-pilot-6954dcd96d-phh5z 2/2 Running 0 2m
+```
+
+Then redeploy the HTTPS service and sleep service
+
+```command
+$ kubectl delete -f <(bin/istioctl kube-inject --debug -f samples/sleep/sleep.yaml)
+$ kubectl apply -f <(bin/istioctl kube-inject --debug -f samples/sleep/sleep.yaml)
+$ kubectl delete -f <(bin/istioctl kube-inject --debug -f samples/https/nginx-app.yaml)
+$ kubectl apply -f <(bin/istioctl kube-inject --debug -f samples/https/nginx-app.yaml)
+```
+
+Make sure the pod is up and running
+
+```command
+$ kubectl get pod
+NAME READY STATUS RESTARTS AGE
+my-nginx-9dvet 2/2 Running 0 1h
+sleep-77f457bfdd-hdknx 2/2 Running 0 18h
+```
+
+And run
+
+```command
+$ kubectl exec sleep-77f457bfdd-hdknx -c sleep -- curl https://my-nginx -k
+...
+<h1>Welcome to nginx!</h1>
+...
+```
+
+The reason is that for the workflow "sleep -> sleep-proxy -> nginx-proxy -> nginx",
+the whole flow is L7 traffic, and there is a L4 mTLS encryption between sleep-proxy
+and nginx-proxy. In this case, everything works fine.
+
+However, if you run this command from istio-proxy container, it will not work.
+
+```command
+$ kubectl exec sleep-77f457bfdd-hdknx -c istio-proxy -- curl https://my-nginx -k
+curl: (35) gnutls_handshake() failed: Handshake failed
+command terminated with exit code 35
+```
+
+The reason is that for the workflow "sleep-proxy -> nginx-proxy -> nginx",
+nginx-proxy is expected mTLS traffic from sleep-proxy. In the command above,
+sleep-proxy does not provide client cert. As a result, it won't work. Moreover,
+even sleep-proxy provides client cert in above command, it won't work either
+since the traffic will be downgraded to http from nginx-proxy to nginx.
diff --git a/_docs/tasks/security/index.md b/_docs/tasks/security/index.md
index 9ab74e597d65d..74cdd67fb7abc 100644
--- a/_docs/tasks/security/index.md
+++ b/_docs/tasks/security/index.md
@@ -1,12 +1,11 @@
---
title: Security
-overview: Describes tasks that help securing the service mesh traffic.
+description: Describes tasks that help securing the service mesh traffic.
-order: 40
+weight: 40
-layout: docs
-type: markdown
toc: false
+redirect_from: /docs/tasks/istio-auth.html
---
{% include section-index.html docs=site.docs %}
diff --git a/_docs/tasks/security/mutual-tls.md b/_docs/tasks/security/mutual-tls.md
index e26ef99431356..25003e75cac1e 100644
--- a/_docs/tasks/security/mutual-tls.md
+++ b/_docs/tasks/security/mutual-tls.md
@@ -1,11 +1,9 @@
---
-title: Testing Istio mutual TLS authentication
-overview: This task shows you how to verify and test Istio's automatic mutual TLS authentication.
+title: Testing mutual TLS
+description: Shows you how to verify and test Istio's automatic mutual TLS authentication.
-order: 10
+weight: 10
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -24,32 +22,31 @@ This task assumes you have a Kubernetes cluster:
Note to choose "enable Istio mutual TLS Authentication feature" at step 5 in
"[Installation steps]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps)".
+> Starting with Istio 0.7, you can use [authentication policy]({{home}}/docs/concepts/security/authn-policy.html) to config mTLS for all/selected services in a namespace (repeated for all namespaces to get global setting). See [authentication policy task]({{home}}/docs/tasks/security/authn-policy.html)
+
## Verifying Istio's mutual TLS authentication setup
The following commands assume the services are deployed in the default namespace.
Use the parameter *-n yournamespace* to specify a namespace other than the default one.
-### Verifying Istio CA
-
-Verify the cluster-level CA is running:
+### Verifying Citadel
-```bash
-kubectl get deploy -l istio=istio-ca -n istio-system
-```
+Verify the cluster-level Citadel is running:
-```bash
-NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
-istio-ca 1 1 1 1 1m
+```command
+$ kubectl get deploy -l istio=istio-citadel -n istio-system
+NAME DESIRED CURRENT UP-TO-DATE AVAILABLE AGE
+istio-citadel 1 1 1 1 1m
```
-Istio CA is up if the "AVAILABLE" column is 1.
+Citadel is up if the "AVAILABLE" column is 1.
### Verifying service configuration
1. Verify AuthPolicy setting in ConfigMap.
- ```bash
- kubectl get configmap istio -o yaml -n istio-system | grep authPolicy | head -1
+ ```command
+ $ kubectl get configmap istio -o yaml -n istio-system | grep authPolicy | head -1
```
Istio mutual TLS authentication is enabled if the line `authPolicy: MUTUAL_TLS` is uncommented (doesn't have a `#`).
@@ -57,44 +54,56 @@ Istio CA is up if the "AVAILABLE" column is 1.
## Testing the authentication setup
When running Istio with mutual TLS authentication turned on, you can use curl in one service's
-envoy to send request to other services.
+Envoy to send request to other services.
For example, after starting the [Bookinfo]({{home}}/docs/guides/bookinfo.html)
-sample application you can ssh into the envoy container of `productpage` service,
-and send request to other services by curl.
+sample application you can ssh into the Envoy container of `productpage` service,
+and send request to other services by curl.
There are several steps:
-
+
1. get the productpage pod name
- ```bash
- kubectl get pods -l app=productpage
- ```
- ```bash
+ ```command
+ $ kubectl get pods -l app=productpage
NAME READY STATUS RESTARTS AGE
productpage-v1-4184313719-5mxjc 2/2 Running 0 23h
```
Make sure the pod is "Running".
-1. ssh into the envoy container
- ```bash
- kubectl exec -it productpage-v1-4184313719-5mxjc -c istio-proxy /bin/bash
+1. ssh into the Envoy container
+ ```command
+ $ kubectl exec -it productpage-v1-4184313719-5mxjc -c istio-proxy /bin/bash
```
1. make sure the key/cert is in /etc/certs/ directory
- ```bash
- ls /etc/certs/
- ```
- ```bash
+ ```command
+ $ ls /etc/certs/
cert-chain.pem key.pem root-cert.pem
- ```
-
- Note that cert-chain.pem is envoy's cert that needs to present to the other side. key.pem is envoy's private key paired with cert-chain.pem. root-cert.pem is the root cert to verify the other side's cert. Currently we only have one CA, so all envoys have the same root-cert.pem.
-
-1. send requests to another service, for example, details.
- ```bash
- curl https://details:9080/details/0 -v --key /etc/certs/key.pem --cert /etc/certs/cert-chain.pem --cacert /etc/certs/root-cert.pem -k
```
- ```bash
+
+ > `cert-chain.pem` is Envoy's cert that needs to present to the other side. `key.pem` is Envoy's private key
+ paired with Envoy's cert in `cert-chain.pem`. `root-cert.pem` is the root cert to verify the peer's cert.
+ In this example, we only have one Citadel in a cluster, so all Envoys have the same `root-cert.pem`.
+
+1. make sure 'curl' is installed by
+ ```command
+ $ curl
+ ```
+ If curl is installed, you should see something like
+ ```plain
+ curl: try 'curl --help' or 'curl --manual' for more information
+ ```
+
+ Otherwise run the command below to start over
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject --debug -f samples/bookinfo/kube/bookinfo.yaml)
+ ```
+
+ > Istio proxy image does not have curl installed while the debug image does. The "--debug" flag in above command redeploys the service with debug image.
+
+1. send requests to another service, for example, details.
+ ```command
+ $ curl https://details:9080/details/0 -v --key /etc/certs/key.pem --cert /etc/certs/cert-chain.pem --cacert /etc/certs/root-cert.pem -k
...
error fetching CN from cert:The requested data were not available.
...
@@ -106,17 +115,17 @@ There are several steps:
< x-envoy-upstream-service-time: 2
...
```
-
+
The service name and port are defined [here](https://github.com/istio/istio/blob/master/samples/bookinfo/kube/bookinfo.yaml).
-
-Note that Istio uses [Kubernetes service account](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/)
-as service identity, which offers stronger security than service name
-(refer [here]({{home}}/docs/concepts/security/mutual-tls.html#identity) for more information).
-Thus the certificates used in Istio do not have service name, which is the information that curl needs to verify
-server identity. As a result, we use curl option '-k' to prevent the curl client from aborting when failing to
-find and verify the server name (i.e., productpage.ns.svc.cluster.local) in the certificate provided by the server.
-
-Please check secure naming [here]({{home}}/docs/concepts/security/mutual-tls.html#workflow) for more information
+
+Note that Istio uses [Kubernetes service accounts](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/)
+as service identity, which offers stronger security than service name
+(refer [here]({{home}}/docs/concepts/security/mutual-tls.html#identity) for more information).
+Thus the certificates used in Istio do not have service names, which is the information that `curl` needs to verify
+server identity. As a result, we use `curl` option `-k` to prevent the `curl` client from aborting when failing to
+find and verify the server name (i.e., productpage.ns.svc.cluster.local) in the certificate provided by the server.
+
+Please check [secure naming]({{home}}/docs/concepts/security/mutual-tls.html#workflow) for more information
about how the client verifies the server's identity in Istio.
What we are demonstrating and verifying above is that the server accepts the connection from the client. Try not giving the client `--key` and `--cert` and observe you are not allowed to connect and you do not get an HTTP 200.
diff --git a/_docs/tasks/security/per-service-mtls.md b/_docs/tasks/security/per-service-mtls.md
index f8c86e7851002..91424a2fffbf7 100644
--- a/_docs/tasks/security/per-service-mtls.md
+++ b/_docs/tasks/security/per-service-mtls.md
@@ -1,24 +1,24 @@
---
-title: Per-service mutual TLS authentication enablement
-overview: This task shows how to change mutual TLS authentication for a single service.
+title: Per-service mutual TLS authentication control
+description: Shows how to change mutual TLS authentication for a single service.
-order: 40
+weight: 50
-layout: docs
-type: markdown
---
{% include home.html %}
+> This feature will soon be deprecated. If you are using Istio 0.7 or later, please refer to [authentication policy task]({{home}}/docs/tasks/security/authn-policy.html) for the recommended approach moving forward.
+
In the [Installation guide]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps), we show how to enable [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) between sidecars. The settings will be applied to all sidecars in the mesh.
-In this tutorial, you will learn:
+In this task, you will learn:
* Annotate Kubernetes service to disable (or enable) mutual TLS authentication for a selective service(s).
* Modify Istio mesh config to exclude mutual TLS authentication for control services.
## Before you begin
-* Understand Isio [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) concepts.
+* Understand Istio [mutual TLS authentication]({{home}}/docs/concepts/security/mutual-tls.html) concepts and [authentication policy]({{home}}/docs/concepts/security/authn-policy.html)
* Familiar with [testing Istio mutual TLS authentication]({{home}}/docs/tasks/security/mutual-tls.html).
@@ -26,39 +26,32 @@ In this tutorial, you will learn:
* Start [httpbin demo](https://github.com/istio/istio/tree/master/samples/httpbin) with Istio sidecar. Also, for testing purpose, run two instances of [sleep](https://github.com/istio/istio/tree/master/samples/sleep), one with sidecar and one without (in different namespace). Below are commands to help you start these services.
-```bash
-kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml)
-kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
-
-kubectl create ns legacy && kubectl apply -f samples/sleep/sleep.yaml -n legacy
+```command
+$ kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml)
+$ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
+$ kubectl create ns legacy && kubectl apply -f samples/sleep/sleep.yaml -n legacy
```
In this initial setup, we expect the sleep instance in default namespace can talk to httpbin service, but the one in legacy namespace cannot, as it doesn't have sidecar to facilitate mTLS.
-```bash
-kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c sleep -- curl http://httpbin.default:8000/ip -s
-```
-
-```bash
+```command-output-as-json
+$ kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c sleep -- curl http://httpbin.default:8000/ip -s
{
"origin": "127.0.0.1"
}
```
-```bash
-kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name} -n legacy) -n legacy -- curl http://httpbin.default:8000/ip -s
-```
-
-```bash
+```command
+$ kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name} -n legacy) -n legacy -- curl http://httpbin.default:8000/ip -s
command terminated with exit code 56
```
-## Disable mutual TLS authentication for "httpbin" service.
+## Disable mutual TLS authentication for httpbin
If we want to disable mTLS only for httpbin (on port 8000), without changing the mesh authentication settings,
we can do that by adding this annotations to the httpbin service definition.
-```bash
+```plain
annotations:
auth.istio.io/8000: NONE
```
@@ -72,7 +65,7 @@ Note:
* Annotations can also be used for a (server) service that *does not have sidecar*, to instruct Istio do not apply mTLS for the client when making a call to that service. In fact, if a system has some services that are not managed by Istio (i.e without sidecar), this is a recommended solution to fix communication problem with those services.
-## Disable mutual TLS authentication for control services.
+## Disable mutual TLS authentication for control services
As we cannot annotate control services, such as API server, in Istio 0.3, we introduced [mtls_excluded_services](https://github.com/istio/api/blob/master/mesh/v1alpha1/config.proto#L200:19) to the mesh configuration to specify the list of services for which mTLS should not be used. If your application needs to communicate to any control service, it's fully-qualified domain name should be listed there.
@@ -80,21 +73,15 @@ In the part of the demo, we will show the impact of this field.
By default (0.3 or later), this list contains `kubernetes.default.svc.cluster.local` (which is the name of the API server service in common setup). You can verify it by running this command:
-```bash
-kubectl get configmap -n istio-system istio -o yaml | grep mtlsExcludedServices
-```
-
-```bash
+```command
+$ kubectl get configmap -n istio-system istio -o yaml | grep mtlsExcludedServices
mtlsExcludedServices: ["kubernetes.default.svc.cluster.local"]
```
It's then expected that request to kubernetes.default service should be possible:
-```bash
-kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c sleep -- curl https://kubernetes.default:443/api/ -k -s
-```
-
-```bash
+```command-output-as-json
+$ kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c sleep -- curl https://kubernetes.default:443/api/ -k -s
{
"kind": "APIVersions",
"versions": [
@@ -109,18 +96,15 @@ kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name})
}
```
-Now, run `kubectl edit configmap istio -n istio-system` and clear mtlsExcludedServices and restart pilot after done:
+Now, run `kubectl edit configmap istio -n istio-system` and clear `mtlsExcludedServices` and restart Pilot after done:
-```bash
-kubectl get pod $(kubectl get pod -l istio=pilot -n istio-system -o jsonpath={.items..metadata.name}) -n istio-system -o yaml | kubectl replace --force -f -
+```command
+$ kubectl get pod $(kubectl get pod -l istio=pilot -n istio-system -o jsonpath={.items..metadata.name}) -n istio-system -o yaml | kubectl replace --force -f -
```
The same test request above now fail with code 35, as sleep's sidecar starts using mTLS again:
-```bash
-kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c sleep -- curl https://kubernetes.default:443/api/ -k -s
-```
-
-```bash
+```command
+$ kubectl exec $(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name}) -c sleep -- curl https://kubernetes.default:443/api/ -k -s
command terminated with exit code 35
```
diff --git a/_docs/tasks/security/plugin-ca-cert.md b/_docs/tasks/security/plugin-ca-cert.md
index 1b7e4eceb5d53..11d09e354af45 100644
--- a/_docs/tasks/security/plugin-ca-cert.md
+++ b/_docs/tasks/security/plugin-ca-cert.md
@@ -1,69 +1,62 @@
---
-title: Plugging in CA certificate and key
-overview: This task shows how operators can plug existing certificate and key into Istio CA.
+title: Plugging in external CA key and certificate
+description: Shows how operators can configure Citadel with existing root certificate, signing certificate and key.
-order: 40
+weight: 60
-layout: docs
-type: markdown
---
{% include home.html %}
-This task shows how operators can plug existing certificate and key into Istio CA.
+This task shows how operators can configure Citadel with existing root certificate, signing certificate and key.
-By default, the Istio CA generates self-signed CA certificate and key and uses them to sign the workload certificates.
-The Istio CA can also use the operator-specified certificate and key to sign workload certificates.
-This task demonstrates an example to plug certificate and key into the Istio CA.
+By default, Citadel generates self-signed root certificate and key, and uses them to sign the workload certificates.
+Citadel can also use the operator-specified certificate and key to sign workload certificates, with
+operator-specified root certificate. This task demonstrates an example to plug certificates and key into Citadel.
## Before you begin
-* Set up Istio on auth-enabled Kubernetes by following the instructions in the
+* Set up Istio by following the instructions in the
[quick start]({{home}}/docs/setup/kubernetes/quick-start.html).
- Note that authentication should be enabled at step 4 in the
+ Note that authentication should be enabled at step 5 in the
[installation steps]({{home}}/docs/setup/kubernetes/quick-start.html#installation-steps).
## Plugging in the existing certificate and key
-Suppose we want to have Istio CA use the existing certificate `ca-cert.pem` and key `ca-key.pem`.
-Furthermore, the certificate `ca-cert.pem` is signed by the root certificate `root-cert.pem`,
-and we would like to use `root-cert.pem` as the root certificate for Istio workloads.
+Suppose we want to have Citadel use the existing signing (CA) certificate `ca-cert.pem` and key `ca-key.pem`.
+Furthermore, the certificate `ca-cert.pem` is signed by the root certificate `root-cert.pem`.
+We would like to use `root-cert.pem` as the root certificate for Istio workloads.
-In this example, because the Istio CA certificate (`ca-cert.pem`) is not set as the workloads' root certificate (`root-cert.pem`),
-the workload cannot validate the workload certificates directly from the root certificate.
+In the following example,
+Citadel's signing (CA) certificate (`ca-cert.pem`) is different from root certificate (`root-cert.pem`),
+so the workload cannot validate the workload certificates directly from the root certificate.
The workload needs a `cert-chain.pem` file to specify the chain of trust,
which should include the certificates of all the intermediate CAs between the workloads and the root CA.
-In this example, it only contains the Istio CA certificate, so `cert-chain.pem` is the same as `ca-cert.pem`.
-Note that if your `ca-cert.pem` is the same as `root-cert.pem`, you can have an empty `cert-chain.pem` file.
-
- Download the example files:
- ```bash
- rm /tmp/ca-cert.pem /tmp/ca-key.pem /tmp/root-cert.pem /tmp/cert-chain.pem
- wget -P /tmp https://raw.githubusercontent.com/istio/istio/master/security/samples/plugin_ca_certs/ca-cert.pem
- wget -P /tmp https://raw.githubusercontent.com/istio/istio/master/security/samples/plugin_ca_certs/ca-key.pem
- wget -P /tmp https://raw.githubusercontent.com/istio/istio/master/security/samples/plugin_ca_certs/root-cert.pem
- wget -P /tmp https://raw.githubusercontent.com/istio/istio/master/security/samples/plugin_ca_certs/cert-chain.pem
- ```
+In our example, it contains Citadel's signing certificate, so `cert-chain.pem` is the same as `ca-cert.pem`.
+Note that if your `ca-cert.pem` is the same as `root-cert.pem`, the `cert-chain.pem` file should be empty.
+
+These files are ready to use in the `samples/certs/` directory.
-The following steps enable plugging in the certificate and key into the Istio CA:
+The following steps enable plugging in the certificates and key into Citadel:
1. Create a secret `cacert` including all the input files `ca-cert.pem`, `ca-key.pem`, `root-cert.pem` and `cert-chain.pem`:
- ```bash
- kubectl create secret generic cacerts -n istio-system --from-file=/tmp/ca-cert.pem --from-file=/tmp/ca-key.pem \
- --from-file=/tmp/root-cert.pem --from-file=/tmp/cert-chain.pem
+ ```command
+ $ kubectl create secret generic cacerts -n istio-system --from-file=samples/certs/ca-cert.pem \
+ --from-file=samples/certs/ca-key.pem --from-file=samples/certs/root-cert.pem \
+ --from-file=samples/certs/cert-chain.pem
```
-1. Redeploy the Istio CA, which reads the certificates and key from the secret-mount files:
- ```bash
- kubectl apply -f install/kubernetes/istio-ca-plugin-certs.yaml
+1. Redeploy Citadel, which reads the certificates and key from the secret-mount files:
+ ```command
+ $ kubectl apply -f install/kubernetes/istio-citadel-plugin-certs.yaml
```
+ > Note: if you are using different certificate/key file or secret names,
+ you need to change corresponding volume mounts and arguments in `istio-citadel-plugin-certs.yaml`.
1. To make sure the workloads obtain the new certificates promptly,
- delete the secrets generated by Istio CA (named as istio.\*).
- In this example, `istio.default`. The Istio CA will issue new certificates for the workloads.
- ```bash
- kubectl delete secret istio.default
+ delete the secrets generated by Citadel (named as istio.\*).
+ In this example, `istio.default`. Citadel will issue new certificates for the workloads.
+ ```command
+ $ kubectl delete secret istio.default
```
-Note that if you are using different certificate/key file or secret names,
-you need to change corresponding arguments in `istio-ca-plugin-certs.yaml`.
## Verifying the new certificates
@@ -73,59 +66,49 @@ This requires you have `openssl` installed on your machine.
1. Deploy the bookinfo application following the [instructions]({{home}}/docs/guides/bookinfo.html).
1. Retrieve the mounted certificates.
+ In the following, we take the ratings pod as an example, and verify the certificates mounted on the pod.
- Get the pods:
- ```bash
- kubectl get pods
+ Set the pod name to `RATINGSPOD`:
+ ```command
+ $ RATINGSPOD=`kubectl get pods -l app=ratings -o jsonpath='{.items[0].metadata.name}'`
```
- which produces:
- ```bash
- NAME READY STATUS RESTARTS AGE
- details-v1-1520924117-48z17 2/2 Running 0 6m
- productpage-v1-560495357-jk1lz 2/2 Running 0 6m
- ratings-v1-734492171-rnr5l 2/2 Running 0 6m
- reviews-v1-874083890-f0qf0 2/2 Running 0 6m
- reviews-v2-1343845940-b34q5 2/2 Running 0 6m
- reviews-v3-1813607990-8ch52 2/2 Running 0 6m
- ```
-
- In the following, we take the pod `ratings-v1-734492171-rnr5l` as an example, and verify the mounted certificates.
Run the following commands to retrieve the certificates mounted on the proxy:
- ```bash
- kubectl exec -it ratings-v1-734492171-rnr5l -c istio-proxy -- /bin/cat /etc/certs/root-cert.pem > /tmp/pod-root-cert.pem
+ ```command
+ $ kubectl exec -it $RATINGSPOD -c istio-proxy -- /bin/cat /etc/certs/root-cert.pem > /tmp/pod-root-cert.pem
```
- The file `/tmp/pod-root-cert.pem` should contain the root certificate specified by the operator.
+ The file `/tmp/pod-root-cert.pem` contains the root certificate propagated to the pod.
- ```bash
- kubectl exec -it ratings-v1-734492171-rnr5l -c istio-proxy -- /bin/cat /etc/certs/cert-chain.pem > /tmp/pod-cert-chain.pem
+ ```command
+ $ kubectl exec -it $RATINGSPOD -c istio-proxy -- /bin/cat /etc/certs/cert-chain.pem > /tmp/pod-cert-chain.pem
```
- The file `/tmp/pod-cert-chain.pem` should contain the workload certificate and the CA certificate.
+ The file `/tmp/pod-cert-chain.pem` contains the workload certificate and the CA certificate propagated to the pod.
1. Verify the root certificate is the same as the one specified by operator:
- ```bash
- openssl x509 -in /tmp/root-cert.pem -text -noout > /tmp/root-cert.crt.txt
+ ```command
+ openssl x509 -in samples/certs/root-cert.pem -text -noout > /tmp/root-cert.crt.txt
openssl x509 -in /tmp/pod-root-cert.pem -text -noout > /tmp/pod-root-cert.crt.txt
diff /tmp/root-cert.crt.txt /tmp/pod-root-cert.crt.txt
```
-
-1. Verify that the CA certificate is the same as the one specified by operator:
- ```bash
- tail /tmp/pod-cert-chain.pem -n 22 > /tmp/pod-cert-chain-ca.pem
- openssl x509 -in /tmp/ca-cert.pem -text -noout > /tmp/ca-cert.crt.txt
- openssl x509 -in /tmp/pod-cert-chain-ca.pem -text -noout > /tmp/pod-cert-chain-ca.crt.txt
- diff /tmp/ca-cert.crt.txt /tmp/pod-cert-chain-ca.crt.txt
+ Expect the output to be empty.
+
+1. Verify the CA certificate is the same as the one specified by operator:
+ ```command
+ $ tail -n 22 /tmp/pod-cert-chain.pem > /tmp/pod-cert-chain-ca.pem
+ $ openssl x509 -in samples/certs/ca-cert.pem -text -noout > /tmp/ca-cert.crt.txt
+ $ openssl x509 -in /tmp/pod-cert-chain-ca.pem -text -noout > /tmp/pod-cert-chain-ca.crt.txt
+ $ diff /tmp/ca-cert.crt.txt /tmp/pod-cert-chain-ca.crt.txt
```
- Expect that the output to be empty.
+ Expect the output to be empty.
1. Verify the certificate chain from the root certificate to the workload certificate:
- ```bash
- head /tmp/pod-cert-chain.pem -n 18 > /tmp/pod-cert-chain-workload.pem
- openssl verify -CAfile <(cat /tmp/ca-cert.pem /tmp/root-cert.pem) /tmp/pod-cert-chain-workload.pem
+ ```command
+ $ head -n 21 /tmp/pod-cert-chain.pem > /tmp/pod-cert-chain-workload.pem
+ $ openssl verify -CAfile <(cat samples/certs/ca-cert.pem samples/certs/root-cert.pem) /tmp/pod-cert-chain-workload.pem
```
Expect the following output:
- ```bash
+ ```command
/tmp/pod-cert-chain-workload.pem: OK
```
@@ -133,16 +116,16 @@ This requires you have `openssl` installed on your machine.
* To remove the secret `cacerts`:
- ```bash
- kubectl delete secret cacerts -n istio-system
+ ```command
+ $ kubectl delete secret cacerts -n istio-system
```
* To remove the Istio components:
- ```bash
- kubectl delete -f install/kubernetes/istio-auth.yaml
+ ```command
+ $ kubectl delete -f install/kubernetes/istio-auth.yaml
```
## What's next
-* Read the [Istio CA arguments](https://github.com/istio/istio/blob/master/security/cmd/istio_ca/main.go).
+* Read more about [Citadel (codename is istio\_ca) arguments]({{home}}/docs/reference/commands/istio_ca.html).
* Read [how the sample certificates and keys are generated](https://github.com/istio/istio/blob/master/security/samples/plugin_ca_certs).
diff --git a/_docs/tasks/security/role-based-access-control.md b/_docs/tasks/security/role-based-access-control.md
index 34d09cf2f0513..f39df187f4ef7 100644
--- a/_docs/tasks/security/role-based-access-control.md
+++ b/_docs/tasks/security/role-based-access-control.md
@@ -1,11 +1,9 @@
---
-title: Setting up Istio Role-Based Access Control
-overview: This task shows how to set up role-based access control for services in Istio mesh.
+title: Role-Based Access Control
+description: Shows how to set up role-based access control for services in Istio mesh.
-order: 30
+weight: 40
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -21,11 +19,11 @@ RBAC from [Istio RBAC concept page]({{home}}/docs/concepts/security/rbac.html).
* Deploy the [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application.
- *> Note: Some sample configurations we use below are not in the current Istio release yet. So before you continue, you
- need to copy the following configuration files from https://github.com/istio/istio/tree/master/samples/bookinfo/kube to
- "samples/bookinfo/kube" directory under where you installed Istio. The files include `bookinfo-add-serviceaccount.yaml`
- (replace the original one), `istio-rbac-enable.yaml`, `istio-rbac-namespace.yaml`, `istio-rbac-productpage.yaml`,
- `istio-rbac-details-reviews.yaml`, `istio-rbac-ratings.yaml`.*
+> The current Istio release may not have the up-to-date Istio RBAC samples. So before you continue, you
+need to copy the following configuration files from <https://github.com/istio/istio/tree/master/samples/bookinfo/kube> to
+`samples/bookinfo/kube` directory under where you installed Istio, and replace the original ones. The files include
+`bookinfo-add-serviceaccount.yaml`, `istio-rbac-enable.yaml`, `istio-rbac-namespace.yaml`, `istio-rbac-productpage.yaml`,
+`istio-rbac-details-reviews.yaml`, `istio-rbac-ratings.yaml`.
* In this task, we will enable access control based on Service Accounts, which are cryptographically authenticated in the Istio mesh.
In order to give different microservices different access privileges, we will create some service accounts and redeploy Bookinfo
@@ -36,12 +34,8 @@ microservices running under them.
* Create service account `bookinfo-reviews`, and redeploy the services `reviews` (deployments `reviews-v2` and `reviews-v3`)
with the service account.
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-add-serviceaccount.yaml)
- ```
-
- You can expect to see the output similar to the following:
- ```bash
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-add-serviceaccount.yaml)
serviceaccount "bookinfo-productpage" created
deployment "productpage-v1" configured
serviceaccount "bookinfo-reviews" created
@@ -49,9 +43,7 @@ microservices running under them.
deployment "reviews-v3" configured
```
-
- > Note: if you are using a namespace other than `default`,
- use `istioctl -n namespace ...` to specify the namespace.
+> If you are using a namespace other than `default`, use `istioctl -n namespace ...` to specify the namespace.
Point your browser at the Bookinfo `productpage` (http://$GATEWAY_URL/productpage). You should see:
* "Book Details" section in the lower left part of the page, including type, pages, publisher, etc.
@@ -59,12 +51,18 @@ Point your browser at the Bookinfo `productpage` (http://$GATEWAY_URL/productpag
## Enabling Istio RBAC
-Run the following command to enable Istio RBAC.
+Run the following command to enable Istio RBAC for "default" namespace.
-```bash
-kubectl apply -f samples/bookinfo/kube/istio-rbac-enable.yaml
+> If you are using a namespace other than `default`, edit the file `samples/bookinfo/kube/istio-rbac-enable.yaml`,
+and specify the namespace, say `"your-namespace"`, in the `match` statement in `rule` spec
+`"match: destination.namespace == "your-namespace"`.
+
+```command
+$ istioctl create -f samples/bookinfo/kube/istio-rbac-enable.yaml
```
+> If you have conflicting rules that you set in previous tasks, use `istioctl replace` instead of `istioctl create`.
+
It also defines "requestcontext", which is an instance of the
[authorization template](https://github.com/istio/istio/blob/master/mixer/template/authorization/template.proto).
"requestcontext" defines the input to the RBAC engine at runtime.
@@ -73,7 +71,7 @@ Point your browser at the Bookinfo `productpage` (http://$GATEWAY_URL/productpag
`"PERMISSION_DENIED:handler.rbac.istio-system:RBAC: permission denied."` This is because Istio RBAC is "deny by default",
which means that you need to explicitly define access control policy to grant access to any service.
- > Note: There may be delay due to caching on browser and Istio proxy.
+> There may be delay due to caching on browser and Istio proxy.
## Namespace-level access control
@@ -81,19 +79,21 @@ Using Istio RBAC, you can easily setup namespace-level access control by specify
in a namespace are accessible by services from another namespace.
In our Bookinfo sample, the "productpage", "reviews", "details", "ratings" services are deployed in "default" namespace.
-The Istio components like "ingress" service are deployed in "istio-system" namespace. We can define a policy that all
-services in "default" namespace are accessible by services in the same namespace (i.e., "default" namespace) and
-services in "istio-system" namespace.
+The Istio components like "ingress" service are deployed in "istio-system" namespace. We can define a policy that
+any service in "default" namespace that has "app" label set to one of the values in ["productpage", "details", "reviews", "ratings"]
+is accessible by services in the same namespace (i.e., "default" namespace) and services in "istio-system" namespace.
Run the following command to create a namespace-level access control policy.
-```bash
-kubectl apply -f samples/bookinfo/kube/istio-rbac-namespace.yaml
+```command
+$ istioctl create -f samples/bookinfo/kube/istio-rbac-namespace.yaml
```
The policy does the following:
-* Creates a ServiceRole "service-viewer" which allows read access to any services in "default" namespace.
+* Creates a `ServiceRole` "service-viewer" which allows read access to any service in "default" namespace that has "app" label
+set to one of the values in ["productpage", "details", "reviews", "ratings"]. Note that there is a "constraint" specifying that
+the services must have one of the listed "app" labels.
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRole
metadata:
@@ -103,11 +103,14 @@ The policy does the following:
rules:
- services: ["*"]
methods: ["GET"]
+ constraints:
+ - key: "app"
+ values: ["productpage", "details", "reviews", "ratings"]
```
-* Creates a ServiceRoleBinding that assign the "service-viewer" role to all services in "istio-system" and "default" namespaces.
+* Creates a `ServiceRoleBinding` that assign the "service-viewer" role to all services in "istio-system" and "default" namespaces.
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRoleBinding
metadata:
@@ -124,9 +127,9 @@ The policy does the following:
name: "service-viewer"
```
-You can expect to see the output similar to the following:
+You can expect to see output similar to the following:
-```bash
+```plain
servicerole "service-viewer" created
servicerolebinding "bind-service-viewer" created
```
@@ -134,14 +137,14 @@ servicerolebinding "bind-service-viewer" created
Now if you point your browser at Bookinfo `productpage` (http://$GATEWAY_URL/productpage). You should see "Bookinfo Sample" page,
with "Book Details" section in the lower left part and "Book Reviews" section in the lower right part.
- > Note: There may be delay due to caching on browser and Istio proxy.
+ > There may be delay due to caching on browser and Istio proxy.
### Cleanup namespace-level access control
Remove the following configuration before you proceed to the next task:
-```bash
-kubectl delete -f samples/bookinfo/kube/istio-rbac-namespace.yaml
+```command
+$ istioctl delete -f samples/bookinfo/kube/istio-rbac-namespace.yaml
```
## Service-level access control
@@ -159,14 +162,14 @@ access to the services in Bookinfo sample.
In this step, we will create a policy that allows external requests to view `productpage` service via Ingress.
Run the following command:
-```bash
-kubectl apply -f samples/bookinfo/kube/istio-rbac-productpage.yaml
+```command
+$ istioctl create -f samples/bookinfo/kube/istio-rbac-productpage.yaml
```
The policy does the following:
-* Creates a ServiceRole "productpage-viewer" which allows read access to "productpage" service.
+* Creates a `ServiceRole` "productpage-viewer" which allows read access to "productpage" service.
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRole
metadata:
@@ -178,9 +181,9 @@ The policy does the following:
methods: ["GET"]
```
-* Creates a ServiceRoleBinding "bind-productpager-viewer" which assigns "productpage-viewer" role to services from "istio-system" namespace.
+* Creates a `ServiceRoleBinding` "bind-productpager-viewer" which assigns "productpage-viewer" role to all users/services.
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRoleBinding
metadata:
@@ -188,8 +191,7 @@ The policy does the following:
namespace: default
spec:
subjects:
- - properties:
- namespace: "istio-system"
+ - user: "*"
roleRef:
kind: ServiceRole
name: "productpage-viewer"
@@ -200,7 +202,7 @@ page. But there are errors `"Error fetching product details"` and `"Error fetchi
are expected because we have not granted "productpage" service to access "details" and "reviews" services. We will fix the errors
in the following steps.
- > Note: There may be delay due to caching on browser and Istio proxy.
+ > There may be delay due to caching on browser and Istio proxy.
### Step 2. allowing "productpage" service to access "details" and "reviews" services
@@ -209,17 +211,14 @@ We will create a policy to allow "productpage" service to read "details" and "re
"bookinfo-productpage" service account is the authenticated identify for "productpage" service.
Run the following command:
-```bash
-kubectl apply -f samples/bookinfo/kube/istio-rbac-details-reviews.yaml
+```command
+$ istioctl create -f samples/bookinfo/kube/istio-rbac-details-reviews.yaml
```
The policy does the following:
-* Creates a ServiceRole "details-reviews-viewer" which allows
- * Read access to "details" service, and
- * Read access to "reviews" services at versions "v2" and "v3". Note that there is a "constraint" specifying that "version" must be
- "v2" or "v3".
+* Creates a `ServiceRole` "details-reviews-viewer" which allows read access to "details" and "reviews" services.
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRole
metadata:
@@ -227,19 +226,14 @@ The policy does the following:
namespace: default
spec:
rules:
- - services: ["details.default.svc.cluster.local"]
- methods: ["GET"]
- - services: ["reviews.default.svc.cluster.local"]
+ - services: ["details.default.svc.cluster.local", "reviews.default.svc.cluster.local"]
methods: ["GET"]
- constraints:
- - key: "version"
- values: ["v2", "v3"]
```
-* Creates a ServiceRoleBinding "bind-details-reviews" which assigns "details-reviews-viewer" role to service
+* Creates a `ServiceRoleBinding` "bind-details-reviews" which assigns "details-reviews-viewer" role to service
account "cluster.local/ns/default/sa/bookinfo-productpage" (representing the "productpage" service).
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRoleBinding
metadata:
@@ -255,30 +249,11 @@ account "cluster.local/ns/default/sa/bookinfo-productpage" (representing the "pr
Point your browser at the Bookinfo `productpage` (http://$GATEWAY_URL/productpage). Now you should see "Bookinfo Sample"
page with "Book Details" on the lower left part, and "Book Reviews" on the lower right part. However, in "Book Reviews" section,
-you see one of the following two errors:
-1. `"Error featching product reviews"`. This is because "productpage" service is only allowed to access "reviews" service with versions
-"v2" or "v3". The error occurs when "productpage" service is routed to "reviews" service at version "v1".
-2. "Book Reviews" section is shown on the lower right part of the page. But there is an error `"Ratings service currently unavailable"`. This
-is because "reviews" service does not have permission to access "ratings" service.
+there is an error `"Ratings service currently unavailable"`. This is because "reviews" service does not have permission to access
+"ratings" service. To fix this issue, you need to grant "reviews" service read access to "ratings" service.
+We will show how to do that in the next step.
- > Note: There may be delay due to caching on browser and Istio proxy.
-
-To fix the first error, you need to remove the "version" constraint, so that the "details-reviews-viewer" role look like the following:
-```bash
-apiVersion: "config.istio.io/v1alpha2"
-kind: ServiceRole
-metadata:
- name: details-reviews-viewer
- namespace: default
-spec:
- rules:
- - services: ["details.default.svc.cluster.local"]
- methods: ["GET"]
- - services: ["reviews.default.svc.cluster.local"]
- methods: ["GET"]
-```
-
-To fix the second issue, you need to grant "reviews" service read access to "ratings" service. We will show how to do that in the next step.
+> There may be delay due to caching on browser and Istio proxy.
### Step 3. allowing "reviews" service to access "ratings" service
@@ -288,14 +263,15 @@ We will create a policy to allow "reviews" service to read "ratings" service. No
Run the following command to create a policy that allows "reviews" service to read "ratings" service.
-```bash
-kubectl apply -f samples/bookinfo/kube/istio-rbac-ratings.yaml
+```command
+$ istioctl create -f samples/bookinfo/kube/istio-rbac-ratings.yaml
```
The policy does the following:
-* Creates a ServiceRole "ratings-viewer" which allows read access to "ratings" service.
- ```bash
+* Creates a `ServiceRole` "ratings-viewer" which allows read access to "ratings" service.
+
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRole
metadata:
@@ -307,10 +283,10 @@ The policy does the following:
methods: ["GET"]
```
-* Creates a ServiceRoleBinding "bind-ratings" which assigns "ratings-viewer" role to service
+* Creates a `ServiceRoleBinding` "bind-ratings" which assigns "ratings-viewer" role to service
account "cluster.local/ns/default/sa/bookinfo-reviews", which represents the "reviews" services.
- ```bash
+ ```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRoleBinding
metadata:
@@ -327,12 +303,12 @@ account "cluster.local/ns/default/sa/bookinfo-reviews", which represents the "re
Point your browser at the Bookinfo `productpage` (http://$GATEWAY_URL/productpage). Now you should see
the "black" and "red" ratings in "Book Reviews" section.
- > Note: There may be delay due to caching on browser and Istio proxy.
+ > There may be delay due to caching on browser and Istio proxy.
If you would like to only see "red" ratings in "Book Reviews" section, you can do that by specifying that only "reviews"
service at version "v3" can access "ratings" service.
-```bash
+```yaml
apiVersion: "config.istio.io/v1alpha2"
kind: ServiceRoleBinding
metadata:
@@ -352,25 +328,25 @@ spec:
* Remove Istio RBAC policy configuration:
- ```bash
- kubectl delete -f samples/bookinfo/kube/istio-rbac-ratings.yaml
- kubectl delete -f samples/bookinfo/kube/istio-rbac-details-reviews.yaml
- kubectl delete -f samples/bookinfo/kube/istio-rbac-productpage.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/istio-rbac-ratings.yaml
+ $ istioctl delete -f samples/bookinfo/kube/istio-rbac-details-reviews.yaml
+ $ istioctl delete -f samples/bookinfo/kube/istio-rbac-productpage.yaml
```
- Alternatively, you can delete all ServiceRole and ServiceRoleBinding objects by running the following commands:
+ Alternatively, you can delete all `ServiceRole` and `ServiceRoleBinding` resources by running the following commands:
- ```bash
- kubectl delete servicerole --all
- kubectl delete servicerolebinding --all
+ ```command
+ $ kubectl delete servicerole --all
+ $ kubectl delete servicerolebinding --all
```
* Disable Istio RBAC:
- ```bash
- kubectl delete -f samples/bookinfo/kube/istio-rbac-enable.ymal
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/istio-rbac-enable.yaml
```
## What's next
-* Learn more about [Istio RBAC]({{home}}/docs/concepts/security/rbac.html).
\ No newline at end of file
+* Learn more about [Istio RBAC]({{home}}/docs/concepts/security/rbac.html).
diff --git a/_docs/tasks/security/secure-access-control.md b/_docs/tasks/security/secure-access-control.md
index 15502904e7188..1e718146200a1 100644
--- a/_docs/tasks/security/secure-access-control.md
+++ b/_docs/tasks/security/secure-access-control.md
@@ -1,11 +1,9 @@
---
-title: Setting up Secure Access Control
-overview: This task shows how to securely control access to a service using service accounts.
+title: Secure Access Control
+description: Shows how to securely control access to a service using service accounts.
-order: 30
+weight: 30
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -29,19 +27,13 @@ For the format of the service account in Istio, please refer to the
* Run the following command to create service account `bookinfo-productpage`,
and redeploy the service `productpage` with the service account.
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-add-serviceaccount.yaml)
- ```
-
- You can expect to see the output similar to the following:
- ```bash
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-add-serviceaccount.yaml)
serviceaccount "bookinfo-productpage" created
deployment "productpage-v1" configured
```
-
-
- > Note: if you are using a namespace other than `default`,
- use `istioctl -n namespace ...` to specify the namespace.
+> If you are using a namespace other than `default`,
+use `istioctl -n namespace ...` to specify the namespace.
## Access control using _denials_
@@ -57,25 +49,23 @@ the `productpage` service.
1. Explicitly deny the requests from `productpage` to `details`.
Run the following command to set up the deny rule along with a handler and an instance.
- ```bash
- istioctl create -f samples/bookinfo/kube/mixer-rule-deny-serviceaccount.yaml
- ```
- You can expect to see the output similar to the following:
- ```bash
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/mixer-rule-deny-serviceaccount.yaml
Created config denier/default/denyproductpagehandler at revision 2877836
Created config checknothing/default/denyproductpagerequest at revision 2877837
Created config rule/default/denyproductpage at revision 2877838
```
Notice the following in the `denyproductpage` rule:
- ```
+ ```plain
match: destination.labels["app"] == "details" && source.user == "cluster.local/ns/default/sa/bookinfo-productpage"
```
- It matches requests coming from the serivce account
+ It matches requests coming from the service account
"_cluster.local/ns/default/sa/bookinfo-productpage_" on the `details` service.
- > Note: If you are using a namespace other than `default`, replace the `default` with your namespace in the value of `source.user`.
+
+ > If you are using a namespace other than `default`, replace the `default` with your namespace in the value of `source.user`.
This rule uses the `denier` adapter to deny these requests.
- The adapter always denies requests with a pre-configured status code and message.
+ The adapter always denies requests with a preconfigured status code and message.
The status code and message are specified in the [denier]({{home}}/docs/reference/config/adapters/denier.html)
adapter configuration.
@@ -91,8 +81,8 @@ the `productpage` service.
* Remove the mixer configuration:
- ```bash
- istioctl delete -f samples/bookinfo/kube/mixer-rule-deny-serviceaccount.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/mixer-rule-deny-serviceaccount.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
@@ -105,8 +95,6 @@ the `productpage` service.
* Discover the full [Attribute Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
-* Read the reference guide to [Writing Config]({{home}}/docs/reference/writing-config.html).
-
* Understand the differences between Kubernetes network policies and Istio
access control policies from this
[blog]({{home}}/blog/using-network-policy-in-concert-with-istio.html).
diff --git a/_docs/tasks/telemetry/distributed-tracing.md b/_docs/tasks/telemetry/distributed-tracing.md
index 3412327ab984e..d1a6d9ec6c6f3 100644
--- a/_docs/tasks/telemetry/distributed-tracing.md
+++ b/_docs/tasks/telemetry/distributed-tracing.md
@@ -1,16 +1,15 @@
---
title: Distributed Tracing
-overview: How to configure the proxies to send tracing requests to Zipkin or Jaeger
+description: How to configure the proxies to send tracing requests to Zipkin or Jaeger
-order: 10
+weight: 10
-layout: docs
-type: markdown
+redirect_from: /docs/tasks/zipkin-tracing.html
---
{% include home.html %}
-This task shows you how Istio-enabled applications
-can be configured to collect trace spans using [Zipkin](http://zipkin.io) or [Jaeger](https://jaeger.readthedocs.io).
+This task shows you how Istio-enabled applications
+can be configured to collect trace spans using [Zipkin](https://zipkin.io) or [Jaeger](https://jaeger.readthedocs.io).
After completing this task, you should understand all of the assumptions about your
application and how to have it participate in tracing, regardless of what
language/framework/platform you use to build your application.
@@ -18,35 +17,35 @@ language/framework/platform you use to build your application.
The [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample is used as the
example application for this task.
-
## Before you begin
* Setup Istio by following the instructions in the [Installation guide]({{home}}/docs/setup/).
If you didn't start the Zipkin or Jaeger addon during installation,
- you can run the following command to start it now:
-
- ```bash
- kubectl apply -f install/kubernetes/addons/zipkin.yaml
+ you can run the following command to start it now.
+
+ For Zipkin:
+
+ ```command
+ $ kubectl apply -f install/kubernetes/addons/zipkin.yaml
```
- for Zipkin, or
- ```bash
- kubectl apply -n istio-system -f https://raw.githubusercontent.com/jaegertracing/jaeger-kubernetes/master/all-in-one/jaeger-all-in-one-template.yml
+ For Jaeger:
+
+ ```command
+ $ kubectl apply -n istio-system -f https://raw.githubusercontent.com/jaegertracing/jaeger-kubernetes/master/all-in-one/jaeger-all-in-one-template.yml
```
- for Jaeger.
* Deploy the [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application.
-
## Accessing the dashboard
### Zipkin
Setup access to the Zipkin dashboard URL using port-forwarding:
-```bash
-kubectl port-forward -n istio-system $(kubectl get pod -n istio-system -l app=zipkin -o jsonpath='{.items[0].metadata.name}') 9411:9411 &
+```command
+$ kubectl port-forward -n istio-system $(kubectl get pod -n istio-system -l app=zipkin -o jsonpath='{.items[0].metadata.name}') 9411:9411 &
```
Then open your browser at [http://localhost:9411](http://localhost:9411)
@@ -55,13 +54,12 @@ Then open your browser at [http://localhost:9411](http://localhost:9411)
Setup access to the Jaeger dashboard URL using port-forwarding:
-```bash
-kubectl port-forward -n istio-system $(kubectl get pod -n istio-system -l app=jaeger -o jsonpath='{.items[0].metadata.name}') 16686:16686 &
+```command
+$ kubectl port-forward -n istio-system $(kubectl get pod -n istio-system -l app=jaeger -o jsonpath='{.items[0].metadata.name}') 16686:16686 &
```
Then open your browser at [http://localhost:16686](http://localhost:16686)
-
## Generating traces using the Bookinfo sample
With the Bookinfo application up and running, generate trace information by accessing
@@ -69,36 +67,28 @@ With the Bookinfo application up and running, generate trace information by acce
If you now look at the dashboard, you should see something similar to the following:
-{% include figure.html width='100%' ratio='44.28%'
- img='./img/zipkin_dashboard.png'
- alt='Zipkin Dashboard'
- title='Zipkin Dashboard'
- caption='Zipkin Dashboard'
+{% include image.html width="100%" ratio="44.28%"
+ link="./img/zipkin_dashboard.png"
+ caption="Zipkin Dashboard"
%}
-{% include figure.html width='100%' ratio='42.35%'
- img='./img/jaeger_dashboard.png'
- alt='Jaeger Dashboard'
- title='Jaeger Dashboard'
- caption='Jaeger Dashboard'
+{% include image.html width="100%" ratio="42.35%"
+ link="./img/jaeger_dashboard.png"
+ caption="Jaeger Dashboard"
%}
If you click on the top (most recent) trace, you should see the details corresponding to your
latest refresh of the `/productpage`.
The page should look something like this:
-{% include figure.html width='100%' ratio='19.70%'
- img='./img/zipkin_span.png'
- alt='Zipkin Trace View'
- title='Zipkin Trace View'
- caption='Zipkin Trace View'
+{% include image.html width="100%" ratio="19.70%"
+ link="./img/zipkin_span.png"
+ caption="Zipkin Trace View"
%}
-{% include figure.html width='100%' ratio='26.99%'
- img='./img/jaeger_trace.png'
- alt='Jaeger Trace View'
- title='Jaeger Trace View'
- caption='Jaeger Trace View'
+{% include image.html width="100%" ratio="26.99%"
+ link="./img/jaeger_trace.png"
+ caption="Jaeger Trace View"
%}
As you can see, the trace is comprised of spans,
@@ -158,7 +148,7 @@ def getForwardHeaders(request):
```
The reviews application (Java) does something similar:
-
+
```java
@GET
@Path("/reviews")
@@ -175,25 +165,24 @@ public Response bookReviews(@CookieParam("user") Cookie user,
if(ratings_enabled){
JsonObject ratings = getRatings(user, xreq, xtraceid, xspanid, xparentspanid, xsampled, xflags, xotspan);
-```
+```
When you make downstream calls in your applications, make sure to include these headers.
## Cleanup
-
* Remove the addon tracing configuration:
- If you are running with Zipkin, run the followign command to cleanup:
+ If you are running with Zipkin, run the following command to cleanup:
- ```bash
- kubectl delete -f install/kubernetes/addons/zipkin.yaml
+ ```command
+ $ kubectl delete -f install/kubernetes/addons/zipkin.yaml
```
- If you are running with Jaeger, run the followign command to cleanup:
+ If you are running with Jaeger, run the following command to cleanup:
- ```bash
- kubectl delete -f https://raw.githubusercontent.com/jaegertracing/jaeger-kubernetes/master/all-in-one/jaeger-all-in-one-template.yml
+ ```command
+ $ kubectl delete -f https://raw.githubusercontent.com/jaegertracing/jaeger-kubernetes/master/all-in-one/jaeger-all-in-one-template.yml
```
* If you are not planning to explore any follow-on tasks, refer to the
diff --git a/_docs/tasks/telemetry/fluentd.md b/_docs/tasks/telemetry/fluentd.md
index c2e488d76248a..62d3c82fd1af6 100644
--- a/_docs/tasks/telemetry/fluentd.md
+++ b/_docs/tasks/telemetry/fluentd.md
@@ -1,12 +1,10 @@
---
title: Logging with Fluentd
-overview: This task shows you how to configure Istio to log to a Fluentd daemon
+description: This task shows you how to configure Istio to log to a Fluentd daemon
-order: 60
+weight: 60
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -24,6 +22,7 @@ The [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application is used
as the example application throughout this task.
## Before you begin
+
* [Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
application. This task assumes that Mixer is setup in a default configuration
(`--configDefaultNamespace=istio-system`). If you use a different
@@ -48,7 +47,7 @@ connect to a running Fluentd daemon, you may need to add a
for Fluentd. The Fluentd configuration to listen for forwarded logs
is:
-```
+```xml
<source>
type forward
</source>
@@ -71,7 +70,7 @@ called `logging`.
Save the following as `logging-stack.yaml`.
-```
+```yaml
# Logging Namespace. All below are a part of this namespace.
apiVersion: v1
kind: Namespace
@@ -279,13 +278,8 @@ spec:
Create the resources:
-```bash
-kubectl apply -f logging-stack.yaml
-```
-
-You should see the following:
-
-```
+```command
+$ kubectl apply -f logging-stack.yaml
namespace "logging" created
service "elasticsearch" created
deployment "elasticsearch" created
@@ -305,7 +299,7 @@ Istio will generate and collect automatically.
Save the following as `fluentd-istio.yaml`:
-```
+```yaml
# Configuration for logentry instances
apiVersion: "config.istio.io/v1alpha2"
kind: logentry
@@ -350,12 +344,8 @@ spec:
Create the resources:
-```bash
-istioctl create -f fluentd-istio.yaml
-```
-
-The expected output is similar to:
-```
+```command
+$ istioctl create -f fluentd-istio.yaml
Created config logentry/istio-system/newlog at revision 22374
Created config fluentd/istio-system/handler at revision 22375
Created config rule/istio-system/newlogtofluentd at revision 22376
@@ -374,18 +364,18 @@ example stack.
sample, visit `http://$GATEWAY_URL/productpage` in your web browser
or issue the following command:
- ```bash
- curl http://$GATEWAY_URL/productpage
+ ```command
+ $ curl http://$GATEWAY_URL/productpage
```
1. In a Kubernetes environment, setup port-forwarding for Kibana by
executing the following command:
- ```bash
- kubectl -n logging port-forward $(kubectl -n logging get pod -l app=kibana -o jsonpath='{.items[0].metadata.name}') 5601:5601
+ ```command
+ $ kubectl -n logging port-forward $(kubectl -n logging get pod -l app=kibana -o jsonpath='{.items[0].metadata.name}') 5601:5601
```
- Leave the command running. Press Ctrl-C to exit when done accessing the Kibana UI.
+ Leave the command running. Press Ctrl-C to exit when done accessing the Kibana UI.
1. Navigate to the [Kibana UI](http://localhost:5601/) and click the "Set up index patterns" in the top right.
@@ -393,20 +383,20 @@ example stack.
1. Select `@timestamp` as the Time Filter field name, and click "Create index pattern."
-1. Now click "Discover" on the left menu, and start exploring the logs generated
+1. Now click "Discover" on the left menu, and start exploring the logs generated
## Cleanup
* Remove the new telemetry configuration:
- ```bash
- istioctl delete -f fluentd-istio.yaml
+ ```command
+ $ istioctl delete -f fluentd-istio.yaml
```
* Remove the example Fluentd, Elasticsearch, Kibana stack:
- ```bash
- kubectl delete -f logging-stack.yaml
+ ```command
+ $ kubectl delete -f logging-stack.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
@@ -422,5 +412,3 @@ example stack.
and [Mixer Config]({{home}}/docs/concepts/policy-and-control/mixer-config.html).
* Discover the full [Attribute Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
-
-* Read the reference guide to [Writing Config]({{home}}/docs/reference/writing-config.html).
diff --git a/_docs/tasks/telemetry/img/istio-tcp-attribute-flow.svg b/_docs/tasks/telemetry/img/istio-tcp-attribute-flow.svg
index f18a68aaafe69..ea5609b96d9d6 100644
--- a/_docs/tasks/telemetry/img/istio-tcp-attribute-flow.svg
+++ b/_docs/tasks/telemetry/img/istio-tcp-attribute-flow.svg
@@ -1,4 +1,5 @@
-<?xml version="1.0" encoding="utf-8" standalone="no"?><!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 20010904//EN" "http://www.w3.org/TR/2001/REC-SVG-20010904/DTD/svg10.dtd"><svg xmlns="http://www.w3.org/2000/svg" width="800" height="1540" xmlns:xlink="http://www.w3.org/1999/xlink"><source><![CDATA[participant Source\nService as S [fillcolor="white"]
+<svg width="800" height="1540" xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink">
+ <![CDATA[participant Source\nService as S [fillcolor="white"]
participant Destination\nEnvoy Proxy as P [fillcolor="#cfe2f3"]
participant Mixer as M [fillcolor="#cfe2f3"]
participant Destination\nService as D [fillcolor="white"]
@@ -13,6 +14,9 @@ P->M: Check(CheckRequest)
Note right of P: Attributes (values):\n context.protocol ("tcp")\n connection.id\n source.ip\n source.port\n source.user\n destination.uid\n destination.service\n request.time [fillcolor="#cfe2f3"]
M-->P: CheckResponse
+
+Note over P: Proxy starts periodical report [fillcolor="white"]
+
P->D: connect() [fillcolor="white"]
D-->P: accept() [fillcolor="white"]
P-->S: accept() [fillcolor="white"]
@@ -35,4 +39,267 @@ P->>M: Report(ReportRequest)
Note right of P: Attributes (values):\n connection.duration\n connection.id\n connection.received.bytes\n connection.received.bytes_total\n connection.sent.bytes\n connection.sent.bytes_total\n context.protocol ("tcp")\n context.time\n source.ip\n source.port\n source.user\n destination.ip\n destination.port\n destination.uid\n destination.service\n request.time [fillcolor="#cfe2f3"]
-M-->P: ReportResponse]]></source><desc style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Created with Raphaël 2.2.0</desc><defs style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><path stroke-linecap="round" d="M5,0 0,2.5 5,5z" id="raphael-marker-block" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><marker id="raphael-marker-endblock55-objuivef" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objlacct" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objy1mdp" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objtg3s6" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objjumy3" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objyqhnp" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objvmh3h" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objiovjl" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-obj64i43" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objajm7i" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objr4x5a" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-obji2rks" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objw0z89" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objssggg" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><path stroke-linecap="round" d="M6,1 1,3.5 6,6" id="raphael-marker-open" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><marker id="raphael-marker-endopen77-objniepu" markerHeight="7" markerWidth="7" orient="auto" refX="4" refY="3.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-open" transform="rotate(180 3.5 3.5) scale(1,1)" stroke-width="1.0000" fill="none" stroke="#000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker><marker id="raphael-marker-endblock55-objl3b9p" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"><use xmlns:xlink="http://www.w3.org/1999/xlink" xlink:href="#raphael-marker-block" transform="rotate(180 2.5 2.5) scale(1,1)" stroke-width="1.0000" fill="#000" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></use></marker></defs><rect x="62.609375" y="20" width="87.609375" height="57.1875" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="72.796875" y="30" width="67.609375" height="37.1875" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="106.4140625" y="48.59375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Source</tspan><tspan dy="19.2" x="106.4140625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Service</tspan></text><rect x="62.609375" y="1463.546875" width="87.609375" height="57.1875" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="72.796875" y="1473.546875" width="67.609375" height="37.1875" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="106.4140625" y="1492.140625" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Source</tspan><tspan dy="19.2" x="106.4140625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Service</tspan></text><path fill="none" stroke="#000000" d="M106.4140625,77.1875L106.4140625,1463.546875" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="170.21875" y="20" width="126.015625" height="57.1875" rx="0" ry="0" fill="#cfe2f3" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="180.40625" y="30" width="106.015625" height="37.1875" rx="0" ry="0" fill="#cfe2f3" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="233.2265625" y="48.59375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Destination</tspan><tspan dy="19.2" x="233.2265625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Envoy Proxy</tspan></text><rect x="170.21875" y="1463.546875" width="126.015625" height="57.1875" rx="0" ry="0" fill="#cfe2f3" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="180.40625" y="1473.546875" width="106.015625" height="37.1875" rx="0" ry="0" fill="#cfe2f3" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="233.2265625" y="1492.140625" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Destination</tspan><tspan dy="19.2" x="233.2265625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Envoy Proxy</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,77.1875L233.2265625,1463.546875" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="556.2734375" y="20" width="68.40625" height="57.1875" rx="0" ry="0" fill="#cfe2f3" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="566.46875" y="39.59375" width="48.40625" height="18" rx="0" ry="0" fill="#cfe2f3" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="590.4765625" y="48.59375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Mixer</tspan></text><rect x="556.2734375" y="1463.546875" width="68.40625" height="57.1875" rx="0" ry="0" fill="#cfe2f3" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="566.46875" y="1483.140625" width="48.40625" height="18" rx="0" ry="0" fill="#cfe2f3" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="590.4765625" y="1492.140625" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Mixer</tspan></text><path fill="none" stroke="#000000" d="M590.4765625,77.1875L590.4765625,1463.546875" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="644.6796875" y="20" width="125.609375" height="57.1875" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="654.671875" y="30" width="105.609375" height="37.1875" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="707.484375" y="48.59375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Destination</tspan><tspan dy="19.2" x="707.484375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Service</tspan></text><rect x="644.6796875" y="1463.546875" width="125.609375" height="57.1875" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="654.671875" y="1473.546875" width="105.609375" height="37.1875" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="707.484375" y="1492.140625" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Destination</tspan><tspan dy="19.2" x="707.484375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Service</tspan></text><path fill="none" stroke="#000000" d="M707.484375,77.1875L707.484375,1463.546875" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="126.609375" y="93.1875" width="86.40625" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="169.8203125" y="102.1875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">connect()</tspan></text><path fill="none" stroke="#000000" d="M106.4140625,115.1875C106.4140625,115.1875,204.7550246603787,115.1875,228.2358500980863,115.1875" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objuivef)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="137.015625" y="135.1875" width="192.421875" height="47.1875" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="142" y="140.1875" width="182.421875" height="37.1875" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="233.2265625" y="158.78125" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-3.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Proxy must confirm </tspan><tspan dy="19.2" x="233.2265625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection allowed</tspan></text><rect x="320.625" y="198.375" width="182.421875" height="18" rx="0" ry="0" fill="none" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="411.8515625" y="207.375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Check(CheckRequest)</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,220.375C233.2265625,220.375,542.2477786429226,220.375,585.477553264479,220.375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objlacct)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="253.2265625" y="240.375" width="250.03125" height="181.59375" rx="0" ry="0" fill="#cfe2f3" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="258.21875" y="245.375" width="240.03125" height="171.59375" rx="0" ry="0" fill="#cfe2f3" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="378.2421875" y="331.171875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-70.796875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Attributes (values):</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> context.protocol ("tcp")</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.id</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> source.ip</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> source.port</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> source.user</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> destination.uid</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> destination.service</tspan><tspan dy="19.2" x="378.2421875" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> request.time</tspan></text><rect x="349.4375" y="437.96875" width="125.21875" height="18" rx="0" ry="0" fill="none" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="411.8515625" y="446.96875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">CheckResponse</tspan></text><path fill="none" stroke="#000000" d="M590.4765625,459.96875C590.4765625,459.96875,281.45534635707736,459.96875,238.22557173552104,459.96875" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objy1mdp)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="427.140625" y="475.96875" width="86.40625" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="470.35546875" y="484.96875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">connect()</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,497.96875C233.2265625,497.96875,651.7933111488819,497.96875,702.4791283680825,497.96875" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objtg3s6)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="431.9375" y="513.96875" width="76.8125" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="470.35546875" y="522.96875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">accept()</tspan></text><path fill="none" stroke="#000000" d="M707.484375,535.96875C707.484375,535.96875,288.9176263511181,535.96875,238.23180913191754,535.96875" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objjumy3)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="131.40625" y="551.96875" width="76.8125" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="169.8203125" y="560.96875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">accept()</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,573.96875C233.2265625,573.96875,134.8856003396213,573.96875,111.4047749019137,573.96875" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objyqhnp)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="10" y="593.96875" width="192.828125" height="66.390625" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="15.1875" y="598.96875" width="182.828125" height="56.390625" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="106.4140625" y="627.1640625" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-13.1953125" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">With connection</tspan><tspan dy="19.2" x="106.4140625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> established,</tspan><tspan dy="19.2" x="106.4140625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> start sending data</tspan></text><rect x="141.015625" y="676.359375" width="57.609375" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="169.8203125" y="685.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">send()</tspan></text><path fill="none" stroke="#000000" d="M106.4140625,698.359375C106.4140625,698.359375,204.7550246603787,698.359375,228.2358500980863,698.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objvmh3h)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="441.546875" y="714.359375" width="57.609375" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="470.35546875" y="723.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">send()</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,736.359375C233.2265625,736.359375,651.7933111488819,736.359375,702.4791283680825,736.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objiovjl)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="441.546875" y="752.359375" width="57.609375" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="470.35546875" y="761.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">recv()</tspan></text><path fill="none" stroke="#000000" d="M707.484375,774.359375C707.484375,774.359375,288.9176263511181,774.359375,238.23180913191754,774.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-obj64i43)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="141.015625" y="790.359375" width="57.609375" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="169.8203125" y="799.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">recv()</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,812.359375C233.2265625,812.359375,134.8856003396213,812.359375,111.4047749019137,812.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objajm7i)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="87.015625" y="832.359375" width="38.796875" height="28" rx="0" ry="0" fill="#ffffff" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="92" y="837.359375" width="28.796875" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="106.4140625" y="846.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">...</tspan></text><rect x="136.203125" y="876.359375" width="67.203125" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="169.8203125" y="885.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">close()</tspan></text><path fill="none" stroke="#000000" d="M106.4140625,898.359375C106.4140625,898.359375,204.7550246603787,898.359375,228.2358500980863,898.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objr4x5a)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="436.75" y="914.359375" width="67.203125" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="470.35546875" y="923.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">close()</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,936.359375C233.2265625,936.359375,651.7933111488819,936.359375,702.4791283680825,936.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-obji2rks)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="436.75" y="952.359375" width="67.203125" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="470.35546875" y="961.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">close()</tspan></text><path fill="none" stroke="#000000" d="M707.484375,974.359375C707.484375,974.359375,288.9176263511181,974.359375,238.23180913191754,974.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objw0z89)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="136.203125" y="990.359375" width="67.203125" height="18" rx="0" ry="0" fill="#ffffff" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="169.8203125" y="999.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">close()</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,1012.359375C233.2265625,1012.359375,134.8856003396213,1012.359375,111.4047749019137,1012.359375" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objssggg)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="311.03125" y="1028.359375" width="201.625" height="18" rx="0" ry="0" fill="none" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="411.8515625" y="1037.359375" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Report(ReportRequest)</tspan></text><path fill="none" stroke="#000000" d="M233.2265625,1050.359375C233.2265625,1050.359375,559.7675545215607,1050.359375,588.4674463984556,1050.359375" stroke-width="2" marker-end="url(#raphael-marker-endopen77-objniepu)" stroke-dasharray="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path><rect x="253.2265625" y="1070.359375" width="317.25" height="335.1875" rx="0" ry="0" fill="#cfe2f3" stroke="#000000" stroke-width="2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><rect x="258.21875" y="1075.359375" width="307.25" height="325.1875" rx="0" ry="0" fill="#cfe2f3" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="411.8515625" y="1237.953125" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="-147.59375" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">Attributes (values):</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.duration</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.id</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.received.bytes</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.received.bytes_total</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.sent.bytes</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> connection.sent.bytes_total</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> context.protocol ("tcp")</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> context.time</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> source.ip</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> source.port</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> source.user</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> destination.ip</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> destination.port</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> destination.uid</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> destination.service</tspan><tspan dy="19.2" x="411.8515625" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"> request.time</tspan></text><rect x="344.640625" y="1421.546875" width="134.8125" height="18" rx="0" ry="0" fill="none" stroke="none" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></rect><text x="411.8515625" y="1430.546875" text-anchor="middle" font-family="Andale Mono, monospace" font-size="16px" stroke="none" fill="#000000" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0); text-anchor: middle; font-family: "Andale Mono", monospace; font-size: 16px;"><tspan dy="6" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);">ReportResponse</tspan></text><path fill="none" stroke="#000000" d="M590.4765625,1443.546875C590.4765625,1443.546875,281.45534635707736,1443.546875,238.22557173552104,1443.546875" stroke-width="2" marker-end="url(#raphael-marker-endblock55-objl3b9p)" stroke-dasharray="6,2" style="-webkit-tap-highlight-color: rgba(0, 0, 0, 0);"></path></svg>
\ No newline at end of file
+M-->P: ReportResponse]]>
+ <desc>Created with Raphaël 2.2.0</desc>
+ <defs>
+ <path stroke-linecap="round" d="m5,0l-5,2.5l5,2.5l0,-5z" id="raphael-marker-block"/>
+ <marker id="raphael-marker-endblock55-objuivef" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_1" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objlacct" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_2" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objy1mdp" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_3" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objtg3s6" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_4" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objjumy3" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_5" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objyqhnp" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_6" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objvmh3h" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_7" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objiovjl" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_8" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-obj64i43" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_9" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objajm7i" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_10" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objr4x5a" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_11" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-obji2rks" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_12" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objw0z89" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_13" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objssggg" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_14" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <path stroke-linecap="round" d="m6,1l-5,2.5l5,2.5" id="raphael-marker-open"/>
+ <marker id="raphael-marker-endopen77-objniepu" markerHeight="7" markerWidth="7" orient="auto" refX="4" refY="3.5">
+ <use xlink:href="#raphael-marker-open" transform="rotate(180 3.5,3.5) scale(1) " fill="none" stroke="#000" id="svg_15" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ <marker id="raphael-marker-endblock55-objl3b9p" markerHeight="5" markerWidth="5" orient="auto" refX="2.5" refY="2.5">
+ <use xlink:href="#raphael-marker-block" transform="rotate(180 2.5,2.5) scale(1) " fill="#000" id="svg_16" xmlns:xlink="http://www.w3.org/1999/xlink"/>
+ </marker>
+ </defs>
+ <g>
+ <title>background
+
+
+
+ Layer 1
+
+
+
+ Source
+ Service
+
+
+
+
+ Source
+ Service
+
+
+
+
+
+ Destination
+ Envoy Proxy
+
+
+
+
+ Destination
+ Envoy Proxy
+
+
+
+
+
+ Mixer
+
+
+
+
+ Mixer
+
+
+
+
+
+ Destination
+ Service
+
+
+
+
+ Destination
+ Service
+
+
+
+
+ connect()
+
+
+
+
+
+ Proxy must confirm
+ connection allowed
+
+
+
+ Check(CheckRequest)
+
+
+
+
+
+ Attributes (values):
+ context.protocol ("tcp")
+ connection.id
+ source.ip
+ source.port
+ source.user
+ destination.uid
+ destination.service
+ request.time
+
+
+
+ CheckResponse
+
+
+
+
+
+
+
+
+ accept()
+
+
+
+
+
+ With connection
+ established,
+ start sending data
+
+
+
+ send()
+
+
+
+
+ send()
+
+
+
+
+ recv()
+
+
+
+
+ recv()
+
+
+
+
+
+ ...
+
+
+
+ close()
+
+
+
+
+ close()
+
+
+
+
+ close()
+
+
+
+
+ close()
+
+
+
+
+ Report(ReportRequest)
+
+
+
+
+
+ Attributes (values):
+ connection.duration
+ connection.id
+ connection.received.bytes
+ connection.received.bytes_total
+ connection.sent.bytes
+ connection.sent.bytes_total
+ context.protocol ("tcp")
+ context.time
+ source.ip
+ source.port
+ source.user
+ destination.ip
+ destination.port
+ destination.uid
+ destination.service
+ request.time
+
+
+
+ ReportResponse
+
+
+ accept()
+
+ connect()
+
+
+ Proxy starts
+
+ PReport(ReportRequest)
+
+ Report(ReportRequest)
+
+
+ Report(ReportRequest)
+
+ Periodical Report(ReportRequest)
+
+ Periodical Report(ReportRequest)
+ periodical report
+
+
+
+ ReportResponse
+
+
+ ReportResponse
+
+
+
\ No newline at end of file
diff --git a/_docs/tasks/telemetry/img/servicegraph-example.png b/_docs/tasks/telemetry/img/servicegraph-example.png
index 26636f399643d..b6de9991730dc 100644
Binary files a/_docs/tasks/telemetry/img/servicegraph-example.png and b/_docs/tasks/telemetry/img/servicegraph-example.png differ
diff --git a/_docs/tasks/telemetry/index.md b/_docs/tasks/telemetry/index.md
index 93d7938e00797..2e7f3f70c5a96 100644
--- a/_docs/tasks/telemetry/index.md
+++ b/_docs/tasks/telemetry/index.md
@@ -1,11 +1,9 @@
---
title: Metrics, Logs, and Traces
-overview: Describes tasks that demonstrate how to collect telemetry information from the service mesh.
+description: Describes tasks that demonstrate how to collect telemetry information from the service mesh.
-order: 30
+weight: 30
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/tasks/telemetry/metrics-logs.md b/_docs/tasks/telemetry/metrics-logs.md
index 83f9ddd48c322..0663422128ef9 100644
--- a/_docs/tasks/telemetry/metrics-logs.md
+++ b/_docs/tasks/telemetry/metrics-logs.md
@@ -1,12 +1,10 @@
---
title: Collecting Metrics and Logs
-overview: This task shows you how to configure Istio to collect metrics and logs.
+description: This task shows you how to configure Istio to collect metrics and logs.
-order: 20
+weight: 20
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -18,24 +16,19 @@ The [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application is used
as the example application throughout this task.
## Before you begin
+
* [Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
application. This task assumes that Mixer is setup in a default configuration
(`--configDefaultNamespace=istio-system`). If you use a different
value, update the configuration and commands in this task to match the value.
-* Install the Prometheus add-on. Prometheus
- will be used to verify task success.
- ```bash
- kubectl apply -f install/kubernetes/addons/prometheus.yaml
- ```
- See [Prometheus](https://prometheus.io) for details.
-
## Collecting new telemetry data
1. Create a new YAML file to hold configuration for the new metric and log
stream that Istio will generate and collect automatically.
Save the following as `new_telemetry.yaml`:
+
```yaml
# Configuration for metric instances
apiVersion: "config.istio.io/v1alpha2"
@@ -125,12 +118,8 @@ as the example application throughout this task.
1. Push the new configuration.
- ```bash
- istioctl create -f new_telemetry.yaml
- ```
-
- The expected output is similar to:
- ```
+ ```command
+ $ istioctl create -f new_telemetry.yaml
Created config metric/istio-system/doublerequestcount at revision 1973035
Created config prometheus/istio-system/doublehandler at revision 1973036
Created config rule/istio-system/doubleprom at revision 1973037
@@ -144,8 +133,8 @@ as the example application throughout this task.
For the Bookinfo sample, visit `http://$GATEWAY_URL/productpage` in your web
browser or issue the following command:
- ```bash
- curl http://$GATEWAY_URL/productpage
+ ```command
+ $ curl http://$GATEWAY_URL/productpage
```
1. Verify that the new metric values are being generated and collected.
@@ -153,21 +142,21 @@ as the example application throughout this task.
In a Kubernetes environment, setup port-forwarding for Prometheus by
executing the following command:
- ```bash
- kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
+ ```command
+ $ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
```
View values for the new metric via the [Prometheus UI](http://localhost:9090/graph#%5B%7B%22range_input%22%3A%221h%22%2C%22expr%22%3A%22istio_double_request_count%22%2C%22tab%22%3A1%7D%5D).
-
+
The provided link opens the Prometheus UI and executes a query for values of
the `istio_double_request_count` metric. The table displayed in the
**Console** tab includes entries similar to:
- ```
- istio_double_request_count{destination="details.default.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="productpage.default.svc.cluster.local"} 2
- istio_double_request_count{destination="ingress.istio-system.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="unknown"} 2
- istio_double_request_count{destination="productpage.default.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="ingress.istio-system.svc.cluster.local"} 2
- istio_double_request_count{destination="reviews.default.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="productpage.default.svc.cluster.local"} 2
+ ```plain
+ istio_double_request_count{destination="details.default.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="productpage.default.svc.cluster.local"} 2
+ istio_double_request_count{destination="ingress.istio-system.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="unknown"} 2
+ istio_double_request_count{destination="productpage.default.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="ingress.istio-system.svc.cluster.local"} 2
+ istio_double_request_count{destination="reviews.default.svc.cluster.local",instance="istio-mixer.istio-system:42422",job="istio-mesh",message="twice the fun!",source="productpage.default.svc.cluster.local"} 2
```
For more on querying Prometheus for metric values, see the [Querying Istio
@@ -179,13 +168,8 @@ as the example application throughout this task.
In a Kubernetes environment, search through the logs for the Mixer pod as
follows:
- ```bash
- kubectl -n istio-system logs $(kubectl -n istio-system get pods -l istio=mixer -o jsonpath='{.items[0].metadata.name}') mixer | grep \"instance\":\"newlog.logentry.istio-system\"
- ```
-
- The expected output is similar to:
-
- ```json
+ ```command-output-as-json
+ $ kubectl -n istio-system logs $(kubectl -n istio-system get pods -l istio=mixer -o jsonpath='{.items[0].metadata.name}') mixer | grep \"instance\":\"newlog.logentry.istio-system\"
{"level":"warn","ts":"2017-09-21T04:33:31.249Z","instance":"newlog.logentry.istio-system","destination":"details","latency":"6.848ms","responseCode":200,"responseSize":178,"source":"productpage","user":"unknown"}
{"level":"warn","ts":"2017-09-21T04:33:31.291Z","instance":"newlog.logentry.istio-system","destination":"ratings","latency":"6.753ms","responseCode":200,"responseSize":48,"source":"reviews","user":"unknown"}
{"level":"warn","ts":"2017-09-21T04:33:31.263Z","instance":"newlog.logentry.istio-system","destination":"reviews","latency":"39.848ms","responseCode":200,"responseSize":379,"source":"productpage","user":"unknown"}
@@ -200,10 +184,13 @@ automatically generate and report a new metric and a new log stream for all
traffic within the mesh.
The added configuration controlled three pieces of Mixer functionality:
+
1. Generation of *instances* (in this example, metric values and log entries)
from Istio attributes
+
1. Creation of *handlers* (configured Mixer adapters) capable of processing
generated *instances*
+
1. Dispatch of *instances* to *handlers* according to a set of *rules*
### Understanding the metrics configuration
@@ -241,7 +228,7 @@ translates received metric instances into prometheus-formatted values that can
be processed by a Prometheus backend. This configuration specified a new
Prometheus metric named `double_request_count`. The Prometheus adapter prepends
the `istio_` namespace to all metric names, therefore this metric will show up
-in Promethus as `istio_double_request_count`. The metric has three labels
+in Prometheus as `istio_double_request_count`. The metric has three labels
matching the dimensions configured for `doublerequestcount.metric` instances.
For `kind: prometheus` handlers, Mixer instances are matched to Prometheus
@@ -249,10 +236,10 @@ metrics via the `instance_name` parameter. The `instance_name` values must be
the fully-qualified name for Mixer instances (example:
`doublerequestcount.metric.istio-system`).
-The `kind: rule` stanza of config defines a new *rule* named `doubleprom`. The
+The `kind: rule` stanza of config defines a new *rule* named `doubleprom`. The
rule directs Mixer to send all `doublerequestcount.metric` instances to the
-`doublehandler.prometheus` handler. Because there is no `match` clause in the
-rule, and because the rule is in the configured default configuration namespace
+`doublehandler.prometheus` handler. Because there is no `match` clause in the
+rule, and because the rule is in the configured default configuration namespace
(`istio-system`), the rule is executed for all requests in the mesh.
### Understanding the logs configuration
@@ -303,8 +290,8 @@ here to illustrate how to use `match` expressions to control rule execution.
* Remove the new telemetry configuration:
- ```bash
- istioctl delete -f new_telemetry.yaml
+ ```command
+ $ istioctl delete -f new_telemetry.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
@@ -320,7 +307,4 @@ here to illustrate how to use `match` expressions to control rule execution.
* Discover the full [Attribute
Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
-* Read the reference guide to [Writing
- Config]({{home}}/docs/reference/writing-config.html).
-
* Refer to the [In-Depth Telemetry]({{home}}/docs/guides/telemetry.html) guide.
diff --git a/_docs/tasks/telemetry/querying-metrics.md b/_docs/tasks/telemetry/querying-metrics.md
index 7c8339268e34b..f66c1909f4934 100644
--- a/_docs/tasks/telemetry/querying-metrics.md
+++ b/_docs/tasks/telemetry/querying-metrics.md
@@ -1,47 +1,33 @@
---
title: Querying Metrics from Prometheus
-overview: This task shows you how to query for Istio Metrics using Prometheus.
+description: This task shows you how to query for Istio Metrics using Prometheus.
-order: 30
+weight: 30
-layout: docs
-type: markdown
---
{% include home.html %}
This task shows you how to query for Istio Metrics using Prometheus. As part of
-this task, you will install the Prometheus Istio addon and use the web-based
-interface for querying metric values.
+this task, you will use the web-based interface for querying metric values.
The [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application is used as
the example application throughout this task.
## Before you begin
-* [Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
- application.
-## Querying Istio Metrics
-
-1. To query the metrics provided by Mixer, first install the Prometheus add-on.
-
- In Kubernetes environments, execute the following command:
+[Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
+application.
- ```bash
- kubectl apply -f install/kubernetes/addons/prometheus.yaml
- ```
+## Querying Istio Metrics
-1. Verify that the service is running in your cluster.
+1. Verify that the prometheus service is running in your cluster (since 0.8 the
+ prometheus setup is included in istio.yaml and istio-auth.yaml by default)
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system get svc prometheus
- ```
-
- The output will be similar to:
-
- ```
+ ```command
+ $ kubectl -n istio-system get svc prometheus
NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
prometheus 10.59.241.54 9090/TCP 2m
```
@@ -51,35 +37,32 @@ the example application throughout this task.
For the Bookinfo sample, visit `http://$GATEWAY_URL/productpage` in your web
browser or issue the following command:
- ```bash
- curl http://$GATEWAY_URL/productpage
+ ```command
+ $ curl http://$GATEWAY_URL/productpage
```
- Note: `$GATEWAY_URL` is the value set in the
- [Bookinfo]({{home}}/docs/guides/bookinfo.html) guide.
+ > `$GATEWAY_URL` is the value set in the [Bookinfo]({{home}}/docs/guides/bookinfo.html) guide.
1. Open the Prometheus UI.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
+ ```command
+ $ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
```
Visit [http://localhost:9090/graph](http://localhost:9090/graph) in your web browser.
1. Execute a Prometheus query.
- In the "Expression" input box at the top of the web page, enter the text:
- `istio_request_count`. Then, click the **Execute** button.
+ In the "Expression" input box at the top of the web page, enter the text:
+ `istio_request_count`. Then, click the **Execute** button.
- The results will be similar to:
+ The results will be similar to:
-{% include figure.html width='100%' ratio='39.36%'
- img='./img/prometheus_query_result.png'
- alt='Prometheus Query Result'
- title='Prometheus Query Result'
- caption='Prometheus Query Result'
+{% include image.html width="100%" ratio="39.36%"
+ link="./img/prometheus_query_result.png"
+ caption="Prometheus Query Result"
%}
Other queries to try:
@@ -95,7 +78,7 @@ the example application throughout this task.
```
istio_request_count{destination_service="reviews.default.svc.cluster.local", destination_version="v3"}
```
-
+
This query returns the current total count of all requests to the v3 of the reviews service.
- Rate of requests over the past 5 minutes to all `productpage` services:
@@ -104,13 +87,13 @@ the example application throughout this task.
rate(istio_request_count{destination_service=~"productpage.*", response_code="200"}[5m])
```
-### About the Prometheus Add-on
+### About the Prometheus add-on
Mixer comes with a built-in [Prometheus](https://prometheus.io) adapter that
exposes an endpoint serving generated metric values. The Prometheus add-on is a
-Prometheus server that comes pre-configured to scrape Mixer endpoints to collect
+Prometheus server that comes preconfigured to scrape Mixer endpoints to collect
the exposed metrics. It provides a mechanism for persistent storage and querying
-of Istio metrics.
+of Istio metrics.
The configured Prometheus add-on scrapes three endpoints:
1. *istio-mesh* (`istio-mixer.istio-system:42422`): all Mixer-generated mesh
@@ -125,18 +108,11 @@ docs](https://prometheus.io/docs/querying/basics/).
## Cleanup
-* In Kubernetes environments, execute the following command to remove the
- Prometheus add-on:
-
- ```bash
- kubectl delete -f install/kubernetes/addons/prometheus.yaml
- ```
-
* Remove any `kubectl port-forward` processes that may still be running:
- ```bash
- killall kubectl
- ```
+ ```command
+ $ killall kubectl
+ ```
* If you are not planning to explore any follow-on tasks, refer to the
[Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
diff --git a/_docs/tasks/telemetry/servicegraph.md b/_docs/tasks/telemetry/servicegraph.md
index 86c3329548ac3..fb80b067fefd1 100644
--- a/_docs/tasks/telemetry/servicegraph.md
+++ b/_docs/tasks/telemetry/servicegraph.md
@@ -1,12 +1,10 @@
---
title: Generating a Service Graph
-overview: This task shows you how to generate a graph of services within an Istio mesh.
+description: This task shows you how to generate a graph of services within an Istio mesh.
-order: 50
+weight: 50
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -22,12 +20,6 @@ the example application throughout this task.
* [Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
application.
-* Install the Prometheus add-on. Directions for install of this add-on are
- supplied as part of the [Querying
- Metrics]({{home}}/docs/tasks/telemetry/querying-metrics.html) Task.
-
- Use of the Prometheus add-on is _required_ for the service graph.
-
## Generating a Service Graph
1. To view a graphical representation of your service mesh, install the
@@ -35,21 +27,16 @@ the example application throughout this task.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl apply -f install/kubernetes/addons/servicegraph.yaml
+ ```command
+ $ kubectl apply -f install/kubernetes/addons/servicegraph.yaml
```
1. Verify that the service is running in your cluster.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system get svc servicegraph
- ```
-
- The output will be similar to:
-
- ```
+ ```command
+ $ kubectl -n istio-system get svc servicegraph
NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
servicegraph 10.59.253.165 8088/TCP 30s
```
@@ -59,63 +46,84 @@ the example application throughout this task.
For the Bookinfo sample, visit `http://$GATEWAY_URL/productpage` in your web
browser or issue the following command:
- ```bash
- curl http://$GATEWAY_URL/productpage
+ ```command
+ $ curl http://$GATEWAY_URL/productpage
```
Refresh the page a few times (or send the command a few times) to generate a
small amount of traffic.
- Note: `$GATEWAY_URL` is the value set in the
- [Bookinfo]({{home}}/docs/guides/bookinfo.html) guide.
+ > `$GATEWAY_URL` is the value set in the [Bookinfo]({{home}}/docs/guides/bookinfo.html) guide.
1. Open the Servicegraph UI.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=servicegraph -o jsonpath='{.items[0].metadata.name}') 8088:8088 &
+ ```command
+ $ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=servicegraph -o jsonpath='{.items[0].metadata.name}') 8088:8088 &
```
- Visit [http://localhost:8088/dotviz](http://localhost:8088/dotviz) in your web browser.
+ Visit [http://localhost:8088/force/forcegraph.html](http://localhost:8088/force/forcegraph.html)
+ in your web browser. Try clicking on a service to see details on
+ the service. Real time traffic data is shown in a panel below.
The results will look similar to:
- {% include figure.html width='100%' ratio='63.16%'
- img='./img/servicegraph-example.png'
- alt='Example Servicegraph'
- title='Example Servicegraph'
- caption='Example Servicegraph'
+ {% include image.html width="75%" ratio="107.7%"
+ link="./img/servicegraph-example.png"
+ caption="Example Servicegraph"
%}
+1. Experiment with Query Parameters
+
+ Visit
+ [http://localhost:8088/force/forcegraph.html?time_horizon=15s&filter_empty=true](http://localhost:8088/force/forcegraph.html?time_horizon=15s&filter_empty=true)
+ in your web browser. Note the query parameters provided.
+
+ `filter_empty=true` will only show services that are currently receiving traffic within the time horizon.
+
+ `time_horizon=15s` affects the filter above, and also affects the
+ reported traffic information when clicking on a service. The
+ traffic information will be aggregated over the specified time
+ horizon.
+
+ The default behavior is to not filter empty services, and use a
+ time horizon of 5 minutes.
+
### About the Servicegraph Add-on
-The Servicegraph service is an example service that provides endpoints for
-generating and visualizing a graph of services within a mesh. It exposes the
-following endpoints:
+The [Servicegraph](https://github.com/istio/istio/tree/master/addons/servicegraph)
+service provides endpoints for generating and visualizing a graph of
+services within a mesh. It exposes the following endpoints:
+
+* `/force/forcegraph.html` As explored above, this is an interactive
+ [D3.js](https://d3js.org/) visualization.
-- `/graph` which provides a JSON serialization of the servicegraph
-- `/dotgraph` which provides a dot serialization of the servicegraph
-- `/dotviz` which provides a visual representation of the servicegraph
+* `/dotviz` is a static [Graphviz](https://www.graphviz.org/)
+ visualization.
-All endpoints take an optional argument of `time_horizon`, which controls the
-timespan to consider for graph generation.
+* `/dotgraph` provides a
+ [DOT](https://en.wikipedia.org/wiki/DOT_(graph_description_language))
+ serialization.
-All endpoints also take an optional argument of `filter_empty=true`, which will
-restrict the nodes and edges shown to only those that reflect non-zero traffic
-levels during the specified `time_horizon`.
+* `/d3graph` provides a JSON serialization for D3 visualization.
-The Servicegraph example is built on top of Prometheus queries.
+* `/graph` provides a generic JSON serialization.
+
+All endpoints take the query parameters explored above.
+
+The Servicegraph example is built on top of Prometheus queries and
+depends on the standard Istio metric configuration.
## Cleanup
* In Kubernetes environments, execute the following command to remove the
- Servicegraph add-on:
+Servicegraph add-on:
- ```bash
- kubectl delete -f install/kubernetes/addons/servicegraph.yaml
- ```
+ ```command
+ $ kubectl delete -f install/kubernetes/addons/servicegraph.yaml
+ ```
* If you are not planning to explore any follow-on tasks, refer to the
- [Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
- to shutdown the application.
+[Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
+to shutdown the application.
diff --git a/_docs/tasks/telemetry/tcp-metrics.md b/_docs/tasks/telemetry/tcp-metrics.md
index e3adf5ee9ae9e..3c2a5cdc2c044 100644
--- a/_docs/tasks/telemetry/tcp-metrics.md
+++ b/_docs/tasks/telemetry/tcp-metrics.md
@@ -1,12 +1,10 @@
---
title: Collecting Metrics for TCP services
-overview: This task shows you how to configure Istio to collect metrics for TCP services.
+description: This task shows you how to configure Istio to collect metrics for TCP services.
-order: 25
+weight: 25
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -19,24 +17,18 @@ The [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application is used
as the example application throughout this task.
## Before you begin
+
* [Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
- application.
+application.
* This task assumes that the Bookinfo sample will be deployed in the `default`
- namespace. If you use a different namespace, you will need to update the
- example configuration and commands.
-
-* Install the Prometheus add-on. Prometheus
- will be used to verify task success.
- ```bash
- kubectl apply -f install/kubernetes/addons/prometheus.yaml
- ```
- See [Prometheus](https://prometheus.io) for details.
+namespace. If you use a different namespace, you will need to update the
+example configuration and commands.
## Collecting new telemetry data
1. Create a new YAML file to hold configuration for the new metrics that Istio
- will generate and collect automatically.
+will generate and collect automatically.
Save the following as `tcp_telemetry.yaml`:
@@ -112,12 +104,8 @@ as the example application throughout this task.
1. Push the new configuration.
- ```bash
- istioctl create -f tcp_telemetry.yaml
- ```
-
- The expected output is similar to:
- ```
+ ```command
+ $ istioctl create -f tcp_telemetry.yaml
Created config metric/default/mongosentbytes at revision 3852843
Created config metric/default/mongoreceivedbytes at revision 3852844
Created config prometheus/default/mongohandler at revision 3852845
@@ -131,19 +119,14 @@ as the example application throughout this task.
If you are using a cluster with automatic sidecar injection enabled,
simply deploy the services using `kubectl`:
- ```
- kubectl apply -f samples/bookinfo/kube/bookinfo-ratings-v2.yaml
+ ```command
+ $ kubectl apply -f samples/bookinfo/kube/bookinfo-ratings-v2.yaml
```
If you are using manual sidecar injection, use the following command instead:
- ```
- kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-ratings-v2.yaml)
- ```
-
- Expected output:
-
- ```
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-ratings-v2.yaml)
deployment "ratings-v2" configured
```
@@ -152,32 +135,22 @@ as the example application throughout this task.
If you are using a cluster with automatic sidecar injection enabled,
simply deploy the services using `kubectl`:
- ```
- kubectl apply -f samples/bookinfo/kube/bookinfo-db.yaml
+ ```command
+ $ kubectl apply -f samples/bookinfo/kube/bookinfo-db.yaml
```
If you are using manual sidecar injection, use the following command instead:
- ```
- kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-db.yaml)
- ```
-
- Expected output:
-
- ```
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/bookinfo/kube/bookinfo-db.yaml)
service "mongodb" configured
deployment "mongodb-v1" configured
```
1. Add routing rules to send traffic to `v2` of the `ratings` service:
- ```
- istioctl create -f samples/bookinfo/kube/route-rule-ratings-db.yaml
- ```
-
- Expected output:
-
- ```
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-ratings-db.yaml
Created config route-rule//ratings-test-v2 at revision 7216403
Created config route-rule//reviews-test-ratings-v2 at revision 7216404
```
@@ -187,8 +160,8 @@ as the example application throughout this task.
For the Bookinfo sample, visit `http://$GATEWAY_URL/productpage` in your web
browser or issue the following command:
- ```bash
- curl http://$GATEWAY_URL/productpage
+ ```command
+ $ curl http://$GATEWAY_URL/productpage
```
1. Verify that the new metric values are being generated and collected.
@@ -196,26 +169,26 @@ as the example application throughout this task.
In a Kubernetes environment, setup port-forwarding for Prometheus by
executing the following command:
- ```bash
- kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
+ ```command
+ $ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
```
View values for the new metric via the [Prometheus UI](http://localhost:9090/graph#%5B%7B%22range_input%22%3A%221h%22%2C%22expr%22%3A%22istio_mongo_received_bytes%22%2C%22tab%22%3A1%7D%5D).
-
+
The provided link opens the Prometheus UI and executes a query for values of
the `istio_mongo_received_bytes` metric. The table displayed in the
**Console** tab includes entries similar to:
- ```
- istio_mongo_received_bytes{destination_version="v1",instance="istio-mixer.istio-system:42422",job="istio-mesh",source_service="ratings.default.svc.cluster.local",source_version="v2"} 2317
+ ```plain
+ istio_mongo_received_bytes{destination_version="v1",instance="istio-mixer.istio-system:42422",job="istio-mesh",source_service="ratings.default.svc.cluster.local",source_version="v2"} 2317
```
- NOTE: Istio also collects protocol-specific statistics for MongoDB. For
- example, the value of total OP_QUERY messages sent from the `ratings` service
- is collected in the following metric:
- `envoy_mongo_mongo_collection_ratings_query_total` (click
- [here](http://localhost:9090/graph#%5B%7B%22range_input%22%3A%221h%22%2C%22expr%22%3A%22envoy_mongo_mongo_collection_ratings_query_total%22%2C%22tab%22%3A1%7D%5D)
- to execute the query).
+ > Istio also collects protocol-specific statistics for MongoDB. For
+ > example, the value of total OP_QUERY messages sent from the `ratings` service
+ > is collected in the following metric:
+ > `envoy_mongo_mongo_collection_ratings_query_total` (click
+ > (click [here](http://localhost:9090/graph#%5B%7B%22range_input%22%3A%221h%22%2C%22expr%22%3A%22envoy_mongo_mongo_collection_ratings_query_total%22%2C%22tab%22%3A1%7D%5D)
+ > to execute the query).
## Understanding TCP telemetry collection
@@ -229,36 +202,33 @@ configuration consisted of _instances_, a _handler_, and a _rule_. Please see
that Task for a complete description of the components of metric collection.
Metrics collection for TCP services differs only in the limited set of
-attributes that are available for use in _instances_.
+attributes that are available for use in _instances_.
### TCP Attributes
Several TCP-specific attributes enable TCP policy and control within Istio.
-These attributes are generated by server-side Envoy proxies and forwarded to
-Mixer at both connection establishment and connection close. Additionally,
-context attributes provide the ability to distinguish between `http` and `tcp`
+These attributes are generated by server-side Envoy proxies. They are forwarded to Mixer at connection establishment, and forwarded periodically when connection is alive (periodical report), and forwarded at connection close (final report). The default interval for periodical report is 10 seconds, and it should be at least 1 second. Additionally, context attributes provide the ability to distinguish between `http` and `tcp`
protocols within policies.
-{% include figure.html width='100%' ratio='192.50%'
- img='./img/istio-tcp-attribute-flow.svg'
- alt='Attribute Generation Flow for TCP Services in an Istio Mesh.'
- title='TCP Attribute Flow'
- caption='TCP Attribute Flow'
+{% include image.html width="100%" ratio="192.50%"
+ link="./img/istio-tcp-attribute-flow.svg"
+ alt="Attribute Generation Flow for TCP Services in an Istio Mesh."
+ caption="TCP Attribute Flow"
%}
## Cleanup
* Remove the new telemetry configuration:
- ```bash
- istioctl delete -f tcp_telemetry.yaml
- ```
+ ```command
+ $ istioctl delete -f tcp_telemetry.yaml
+ ```
* Remove the `port-forward` process:
- ```bash
- killall kubectl
- ```
+ ```command
+ $ killall kubectl
+ ```
* If you are not planning to explore any follow-on tasks, refer to the
[Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
@@ -267,20 +237,15 @@ protocols within policies.
## What's next
* Learn more about [Mixer]({{home}}/docs/concepts/policy-and-control/mixer.html)
- and [Mixer
- Config]({{home}}/docs/concepts/policy-and-control/mixer-config.html).
+and [Mixer Config]({{home}}/docs/concepts/policy-and-control/mixer-config.html).
* Discover the full [Attribute
- Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
-
-* Read the reference guide to [Writing
- Config]({{home}}/docs/reference/writing-config.html).
+Vocabulary]({{home}}/docs/reference/config/mixer/attribute-vocabulary.html).
* Refer to the [In-Depth Telemetry]({{home}}/docs/guides/telemetry.html) guide.
* Learn more about [Querying Istio
- Metrics]({{home}}/docs/tasks/telemetry/querying-metrics.html).
+Metrics]({{home}}/docs/tasks/telemetry/querying-metrics.html).
* Learn more about the [MongoDB-specific statistics generated by
- Envoy](https://www.envoyproxy.io/docs/envoy/latest/configuration/network_filters/mongo_proxy_filter#statistics).
-
+Envoy](https://www.envoyproxy.io/docs/envoy/latest/configuration/network_filters/mongo_proxy_filter#statistics).
diff --git a/_docs/tasks/telemetry/using-istio-dashboard.md b/_docs/tasks/telemetry/using-istio-dashboard.md
index 1a1f322762c00..7dbbaecb70e5c 100644
--- a/_docs/tasks/telemetry/using-istio-dashboard.md
+++ b/_docs/tasks/telemetry/using-istio-dashboard.md
@@ -1,12 +1,10 @@
---
title: Visualizing Metrics with Grafana
-overview: This task shows you how to setup and use the Istio Dashboard to monitor mesh traffic.
+description: This task shows you how to setup and use the Istio Dashboard to monitor mesh traffic.
-order: 40
+weight: 40
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -18,38 +16,26 @@ The [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application is used as
the example application throughout this task.
## Before you begin
+
* [Install Istio]({{home}}/docs/setup/) in your cluster and deploy an
application.
-* Install the Prometheus add-on.
-
- ```bash
- kubectl apply -f install/kubernetes/addons/prometheus.yaml
- ```
-
- Use of the Prometheus add-on is _required_ for the Istio Dashboard.
-
## Viewing the Istio Dashboard
-1. To view Istio metrics in a graphical dashboard install the Grafana add-on.
+1. To view Istio metrics in a graphical dashboard install the Grafana add-on.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl apply -f install/kubernetes/addons/grafana.yaml
+ ```command
+ $ kubectl apply -f install/kubernetes/addons/grafana.yaml
```
1. Verify that the service is running in your cluster.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system get svc grafana
- ```
-
- The output will be similar to:
-
- ```
+ ```command
+ $ kubectl -n istio-system get svc grafana
NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
grafana 10.59.247.103 3000/TCP 2m
```
@@ -58,19 +44,17 @@ the example application throughout this task.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=grafana -o jsonpath='{.items[0].metadata.name}') 3000:3000 &
+ ```command
+ $ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=grafana -o jsonpath='{.items[0].metadata.name}') 3000:3000 &
```
Visit [http://localhost:3000/dashboard/db/istio-dashboard](http://localhost:3000/dashboard/db/istio-dashboard) in your web browser.
The Istio Dashboard will look similar to:
- {% include figure.html width='100%' ratio='56.57%'
- img='./img/grafana-istio-dashboard.png'
- alt='Istio Dashboard'
- title='Istio Dashboard'
- caption='Istio Dashboard'
+ {% include image.html width="100%" ratio="56.57%"
+ link="./img/grafana-istio-dashboard.png"
+ caption="Istio Dashboard"
%}
1. Send traffic to the mesh.
@@ -78,8 +62,8 @@ the example application throughout this task.
For the Bookinfo sample, visit `http://$GATEWAY_URL/productpage` in your web
browser or issue the following command:
- ```bash
- curl http://$GATEWAY_URL/productpage
+ ```command
+ $ curl http://$GATEWAY_URL/productpage
```
Refresh the page a few times (or send the command a few times) to generate a
@@ -88,19 +72,16 @@ the example application throughout this task.
Look at the Istio Dashboard again. It should reflect the traffic that was
generated. It will look similar to:
- {% include figure.html width='100%' ratio='56.57%'
- img='./img/dashboard-with-traffic.png'
- alt='Istio Dashboard With Traffic'
- title='Istio Dashboard With Traffic'
- caption='Istio Dashboard With Traffic'
+ {% include image.html width="100%" ratio="56.57%"
+ link="./img/dashboard-with-traffic.png"
+ caption="Istio Dashboard With Traffic"
%}
- Note: `$GATEWAY_URL` is the value set in the
- [Bookinfo]({{home}}/docs/guides/bookinfo.html) guide.
+ > `$GATEWAY_URL` is the value set in the [Bookinfo]({{home}}/docs/guides/bookinfo.html) guide.
### About the Grafana add-on
-The Grafana add-on is a pre-configured instance of Grafana. The base image
+The Grafana add-on is a preconfigured instance of Grafana. The base image
([`grafana/grafana:4.1.2`](https://hub.docker.com/r/grafana/grafana/)) has been
modified to start with both a Prometheus data source and the Istio Dashboard
installed. The base install files for Istio, and Mixer in particular, ship with
@@ -117,23 +98,23 @@ The Istio Dashboard consists of three main sections:
responses for each individual service within the mesh (HTTP and TCP).
For more on how to create, configure, and edit dashboards, please see the
-[Grafana documentation](http://docs.grafana.org/).
+[Grafana documentation](https://docs.grafana.org/).
## Cleanup
* In Kubernetes environments, execute the following command to remove the Grafana
- add-on:
+add-on:
- ```bash
- kubectl delete -f install/kubernetes/addons/grafana.yaml
- ```
+ ```command
+ $ kubectl delete -f install/kubernetes/addons/grafana.yaml
+ ```
* Remove any `kubectl port-forward` processes that may be running:
- ```bash
- killall kubectl
- ```
+ ```command
+ $ killall kubectl
+ ```
* If you are not planning to explore any follow-on tasks, refer to the
- [Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
- to shutdown the application.
+[Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
+to shutdown the application.
diff --git a/_docs/tasks/traffic-management-v1alpha3/circuit-breaking.md b/_docs/tasks/traffic-management-v1alpha3/circuit-breaking.md
new file mode 100644
index 0000000000000..04a9a80ecddb2
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/circuit-breaking.md
@@ -0,0 +1,240 @@
+---
+title: Circuit Breaking
+description: This task demonstrates the circuit-breaking capability for resilient applications
+
+weight: 50
+
+---
+{% include home.html %}
+
+This task demonstrates the circuit-breaking capability for resilient applications. Circuit breaking allows developers to write applications that limit the impact of failures, latency spikes, and other undesirable effects of network peculiarities. This task will show how to configure circuit breaking for connections, requests, and outlier detection.
+
+## Before you begin
+
+* Setup Istio by following the instructions in the
+ [Installation guide]({{home}}/docs/setup/).
+
+* Start the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) sample
+ which will be used as the backend service for our task
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject --debug -f samples/httpbin/httpbin.yaml)
+ ```
+
+## Circuit breaker
+
+Let's set up a scenario to demonstrate the circuit-breaking capabilities of Istio. We should have the `httpbin` service running from the previous section.
+
+1. Create a [destination rule]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#DestinationRule) to specify our circuit breaking settings when calling the `httpbin` service:
+
+ ```bash
+ cat <2 procs, for 5s: http://httpbin:8000/get
+Starting at max qps with 2 thread(s) [gomax 2] for exactly 20 calls (10 per thread + 0)
+23:51:10 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+Ended after 106.474079ms : 20 calls. qps=187.84
+Aggregated Function Time : count 20 avg 0.010215375 +/- 0.003604 min 0.005172024 max 0.019434859 sum 0.204307492
+# range, mid point, percentile, count
+>= 0.00517202 <= 0.006 , 0.00558601 , 5.00, 1
+> 0.006 <= 0.007 , 0.0065 , 20.00, 3
+> 0.007 <= 0.008 , 0.0075 , 30.00, 2
+> 0.008 <= 0.009 , 0.0085 , 40.00, 2
+> 0.009 <= 0.01 , 0.0095 , 60.00, 4
+> 0.01 <= 0.011 , 0.0105 , 70.00, 2
+> 0.011 <= 0.012 , 0.0115 , 75.00, 1
+> 0.012 <= 0.014 , 0.013 , 90.00, 3
+> 0.016 <= 0.018 , 0.017 , 95.00, 1
+> 0.018 <= 0.0194349 , 0.0187174 , 100.00, 1
+# target 50% 0.0095
+# target 75% 0.012
+# target 99% 0.0191479
+# target 99.9% 0.0194062
+Code 200 : 19 (95.0 %)
+Code 503 : 1 (5.0 %)
+Response Header Sizes : count 20 avg 218.85 +/- 50.21 min 0 max 231 sum 4377
+Response Body/Total Sizes : count 20 avg 652.45 +/- 99.9 min 217 max 676 sum 13049
+All done 20 calls (plus 0 warmup) 10.215 ms avg, 187.8 qps
+```
+
+We see almost all requests made it through!
+
+```plain
+Code 200 : 19 (95.0 %)
+Code 503 : 1 (5.0 %)
+```
+
+The istio-proxy does allow for some leeway. Let's bring the number of concurrent connections up to 3:
+
+```command
+$ kubectl exec -it $FORTIO_POD -c fortio /usr/local/bin/fortio -- load -c 3 -qps 0 -n 20 -loglevel Warning http://httpbin:8000/get
+Fortio 0.6.2 running at 0 queries per second, 2->2 procs, for 5s: http://httpbin:8000/get
+Starting at max qps with 3 thread(s) [gomax 2] for exactly 30 calls (10 per thread + 0)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
+Ended after 71.05365ms : 30 calls. qps=422.22
+Aggregated Function Time : count 30 avg 0.0053360199 +/- 0.004219 min 0.000487853 max 0.018906468 sum 0.160080597
+# range, mid point, percentile, count
+>= 0.000487853 <= 0.001 , 0.000743926 , 10.00, 3
+> 0.001 <= 0.002 , 0.0015 , 30.00, 6
+> 0.002 <= 0.003 , 0.0025 , 33.33, 1
+> 0.003 <= 0.004 , 0.0035 , 40.00, 2
+> 0.004 <= 0.005 , 0.0045 , 46.67, 2
+> 0.005 <= 0.006 , 0.0055 , 60.00, 4
+> 0.006 <= 0.007 , 0.0065 , 73.33, 4
+> 0.007 <= 0.008 , 0.0075 , 80.00, 2
+> 0.008 <= 0.009 , 0.0085 , 86.67, 2
+> 0.009 <= 0.01 , 0.0095 , 93.33, 2
+> 0.014 <= 0.016 , 0.015 , 96.67, 1
+> 0.018 <= 0.0189065 , 0.0184532 , 100.00, 1
+# target 50% 0.00525
+# target 75% 0.00725
+# target 99% 0.0186345
+# target 99.9% 0.0188793
+Code 200 : 19 (63.3 %)
+Code 503 : 11 (36.7 %)
+Response Header Sizes : count 30 avg 145.73333 +/- 110.9 min 0 max 231 sum 4372
+Response Body/Total Sizes : count 30 avg 507.13333 +/- 220.8 min 217 max 676 sum 15214
+All done 30 calls (plus 0 warmup) 5.336 ms avg, 422.2 qps
+```
+
+Now we start to see the circuit breaking behavior we expect.
+
+```plain
+Code 200 : 19 (63.3 %)
+Code 503 : 11 (36.7 %)
+```
+
+Only 63.3% of the requests made it through and the rest were trapped by circuit breaking. We can query the istio-proxy stats to see more:
+
+```command
+$ kubectl exec -it $FORTIO_POD -c istio-proxy -- sh -c 'curl localhost:15000/stats' | grep httpbin | grep pending
+cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_active: 0
+cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_failure_eject: 0
+cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_overflow: 12
+cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_total: 39
+```
+
+We see `12` for the `upstream_rq_pending_overflow` value which means `12` calls so far have been flagged for circuit breaking.
+
+## Cleaning up
+
+1. Remove the rules.
+
+ ```command
+ $ istioctl delete destinationrule httpbin
+ ```
+
+1. Shutdown the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) service and client.
+
+ ```command
+ $ kubectl delete deploy httpbin fortio-deploy
+ $ kubectl delete svc httpbin
+ ```
+
+## What's next
+
+Check out the [destination rule]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#DestinationRule) reference section for more circuit breaker settings.
diff --git a/_docs/tasks/traffic-management-v1alpha3/egress-tcp.md b/_docs/tasks/traffic-management-v1alpha3/egress-tcp.md
new file mode 100644
index 0000000000000..ae27c6c090585
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/egress-tcp.md
@@ -0,0 +1,108 @@
+---
+title: Control Egress TCP Traffic
+description: Describes how to configure Istio to route TCP traffic from services in the mesh to external services.
+
+weight: 41
+
+---
+{% include home.html %}
+
+The [Control Egress Traffic]({{home}}/docs/tasks/traffic-management-v1alpha3/egress.html) task demonstrated how external (outside the Kubernetes cluster) HTTP and HTTPS services can be accessed from applications inside the mesh. A quick reminder: by default, Istio-enabled applications are unable to access URLs outside the cluster. To enable such access, an [external service]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#ServiceEntry) must be defined, or, alternatively, [direct access to external services]({{home}}/docs/tasks/traffic-management-v1alpha3/egress.html#calling-external-services-directly) must be configured.
+
+This task describes how to configure Istio to expose external TCP services to applications inside the Istio service mesh.
+
+## Before you begin
+
+* Setup Istio by following the instructions in the
+ [Installation guide]({{home}}/docs/setup/).
+
+* Start the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) sample application which will be used as a test source for external calls.
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
+ ```
+
+ **Note**: any pod that you can execute `curl` from is good enough.
+
+## Using Istio external services for external TCP traffic
+
+In this task we access `wikipedia.org` by HTTPS originated by the application. This task demonstrates the use case where an application cannot use HTTP with TLS origination by the sidecar proxy. Using HTTP with TLS origination by the sidecar proxy is described in the [Control Egress Traffic]({{home}}/docs/tasks/traffic-management-v1alpha3/egress.html) task. In that task, `https://google.com` was accessed by issuing HTTP requests to `http://www.google.com:443`.
+
+The HTTPS traffic originated by the application will be treated by Istio as _opaque_ TCP. To enable such traffic, we define a TCP external service on port 443. In TCP external services, as opposed to HTTP-based external services, the destinations are specified by IPs or by blocks of IPs in [CIDR notation](https://tools.ietf.org/html/rfc2317).
+
+Let's assume for the sake of this example that we want to access `wikipedia.org` by the domain name. This means that we have to specify all the IPs of `wikipedia.org` in our TCP external service. Fortunately, the IPs of `wikipedia.org` are published [here]( https://www.mediawiki.org/wiki/Wikipedia_Zero/IP_Addresses). It is a list of IP blocks in [CIDR notation](https://tools.ietf.org/html/rfc2317): `91.198.174.192/27`, `103.102.166.224/27`, and more.
+
+## Creating an external service
+
+Let's create an external service to enable TCP access to `wikipedia.org`:
+
+```bash
+cat <5,563,121 articles in English
+ ```
+
+ This means there were 5,563,121 articles in Wikipedia in English when this task was written.
+
+## Cleanup
+
+1. Remove the external service we created.
+
+ ```command
+ $ istioctl delete serviceentry wikipedia-ext
+ ```
+
+1. Shutdown the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) application.
+
+ ```command
+ $ kubectl delete -f samples/sleep/sleep.yaml
+ ```
+
+## What's next
+
+* The [ServiceEntry]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#ServiceEntry) reference.
+
+* The [Control Egress Traffic]({{home}}/docs/tasks/traffic-management-v1alpha3/egress.html) task, for HTTP and HTTPS.
diff --git a/_docs/tasks/traffic-management-v1alpha3/egress.md b/_docs/tasks/traffic-management-v1alpha3/egress.md
new file mode 100644
index 0000000000000..49f800627c41a
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/egress.md
@@ -0,0 +1,284 @@
+---
+title: Control Egress Traffic
+description: Describes how to configure Istio to route traffic from services in the mesh to external services.
+
+weight: 40
+
+---
+{% include home.html %}
+
+By default, Istio-enabled services are unable to access URLs outside of the cluster because
+iptables is used in the pod to transparently redirect all outbound traffic to the sidecar proxy,
+which only handles intra-cluster destinations.
+
+This task describes how to configure Istio to expose external services to Istio-enabled clients.
+You'll learn how to enable access to external services by defining `ServiceEntry` configurations,
+or alternatively, to simply bypass the Istio proxy for a specific range of IPs.
+
+## Before you begin
+
+* Setup Istio by following the instructions in the
+ [Installation guide]({{home}}/docs/setup/).
+
+* Start the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) sample
+ which will be used as a test source for external calls.
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
+ ```
+
+ Note that any pod that you can `exec` and `curl` from would do.
+
+## Configuring Istio external services
+
+Using Istio `ServiceEntry` configurations, you can access any publicly accessible service
+from within your Istio cluster. In this task we will use
+[httpbin.org](http://httpbin.org) and [www.google.com](http://www.google.com) as examples.
+
+### Configuring the external services
+
+1. Create an `ServiceEntry` to allow access to an external HTTP service:
+
+ ```bash
+ cat < Notice that we are restricting the failure impact to user "jason" only. If you login
+> as any other user, you would not experience any delays.
+
+**Fixing the bug:** At this point we would normally fix the problem by either increasing the
+productpage timeout or decreasing the reviews to ratings service timeout,
+terminate and restart the fixed microservice, and then confirm that the `productpage`
+returns its response without any errors.
+
+However, we already have this fix running in v3 of the reviews service, so we can simply
+fix the problem by migrating all
+traffic to `reviews:v3` as described in the
+[traffic shifting]({{home}}/docs/tasks/traffic-management/traffic-shifting.html) task.
+
+(Left as an exercise for the reader - change the delay rule to
+use a 2.8 second delay and then run it against the v3 version of reviews.)
+
+## Fault injection using HTTP Abort
+
+As another test of resiliency, we will introduce an HTTP abort to the ratings microservices for the user "jason".
+We expect the page to load immediately unlike the delay example and display the "product ratings not available"
+message.
+
+1. Create a fault injection rule to send an HTTP abort for user "jason"
+
+ ```command
+ $ istioctl replace -f samples/bookinfo/routing/route-rule-ratings-test-abort.yaml
+ ```
+
+ Confirm the rule is created
+
+ ```command-output-as-yaml
+ $ istioctl get virtualservice ratings -o yaml
+ apiVersion: networking.istio.io/v1alpha3
+ kind: VirtualService
+ metadata:
+ name: ratings
+ ...
+ spec:
+ hosts:
+ - ratings
+ http:
+ - fault:
+ abort:
+ httpStatus: 500
+ percent: 100
+ match:
+ - headers:
+ cookie:
+ regex: ^(.*?;)?(user=jason)(;.*)?$
+ route:
+ - destination:
+ name: ratings
+ subset: v1
+ - route:
+ - destination:
+ name: ratings
+ subset: v1
+ ```
+
+1. Observe application behavior
+
+ Login as user "jason". If the rule propagated successfully to all pods, you should see the page load
+ immediately with the "product ratings not available" message. Logout from user "jason" and you should
+ see reviews with rating stars show up successfully on the productpage web page.
+
+## Cleanup
+
+* Remove the application routing rules:
+
+ ```command
+ $ istioctl delete -f samples/bookinfo/routing/route-rule-all-v1.yaml
+ ```
+
+* If you are not planning to explore any follow-on tasks, refer to the
+ [Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
+ to shutdown the application.
+
+## What's next
+
+* Learn more about [fault injection]({{home}}/docs/concepts/traffic-management/fault-injection.html).
diff --git a/_docs/tasks/traffic-management-v1alpha3/index.md b/_docs/tasks/traffic-management-v1alpha3/index.md
new file mode 100644
index 0000000000000..13b4dec06b8c1
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/index.md
@@ -0,0 +1,10 @@
+---
+title: Traffic Management (v1alpha3)
+description: WIP - Describes tasks that demonstrate traffic routing features of Istio service mesh.
+
+weight: 15
+
+toc: false
+---
+
+{% include section-index.html docs=site.docs %}
diff --git a/_docs/tasks/traffic-management-v1alpha3/ingress.md b/_docs/tasks/traffic-management-v1alpha3/ingress.md
new file mode 100644
index 0000000000000..ea445fcd894bb
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/ingress.md
@@ -0,0 +1,472 @@
+---
+title: Control Ingress Traffic
+description: Describes how to configure Istio to expose a service outside of the service mesh.
+
+weight: 30
+
+redirect_from: /docs/tasks/ingress.html
+---
+{% include home.html %}
+
+In a Kubernetes environment, the [Kubernetes Ingress Resource](https://kubernetes.io/docs/concepts/services-networking/ingress/)
+allows users to specify services that should be exposed outside the cluster.
+For traffic entering an Istio service mesh, however, an Istio-aware [ingress controller](https://kubernetes.io/docs/concepts/services-networking/ingress/#ingress-controllers)
+is needed to allow Istio features, for example, monitoring and route rules, to be applied to traffic entering the cluster.
+
+Istio provides an envoy-based ingress controller that implements very limited support for standard Kubernetes `Ingress` resources
+as well as full support for an alternative specification,
+[Istio Gateway]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#Gateway).
+Using a `Gateway` is the recommended approach for configuring ingress traffic for Istio services.
+It is significantly more functional, not to mention the only option for non-Kubernetes environments.
+
+This task describes how to configure Istio to expose a service outside of the service mesh using either specification.
+
+## Before you begin
+
+* Setup Istio by following the instructions in the
+ [Installation guide]({{home}}/docs/setup/).
+
+* Make sure your current directory is the `istio` directory.
+
+* Start the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) sample,
+ which will be used as the destination service to be exposed externally.
+
+ If you installed the [Istio-Initializer]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection), do
+
+ ```command
+ $ kubectl apply -f samples/httpbin/httpbin.yaml
+ ```
+
+ Without the Istio-Initializer:
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml)
+ ```
+
+* Generate a certificate and key that will be used to demonstrate a TLS-secured gateway
+
+ A private key and certificate can be created for testing using [OpenSSL](https://www.openssl.org/).
+
+ ```command
+ $ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /tmp/tls.key -out /tmp/tls.crt -subj "/CN=foo.bar.com"
+ ```
+
+## Configuring ingress using an Istio Gateway resource (recommended)
+
+An [Istio Gateway]({{home}}/docs/reference/config/istio.networking.v1alpha3.html#Gateway) is the preferred
+model for configuring ingress traffic in Istio.
+An ingress `Gateway` describes a load balancer operating at the edge of the mesh receiving incoming
+HTTP/TCP connections.
+It configures exposed ports, protocols, etc.,
+but, unlike [Kubernetes Ingress Resources](https://kubernetes.io/docs/concepts/services-networking/ingress/),
+does not include any traffic routing configuration. Traffic routing for ingress traffic is instead configured
+using Istio routing rules, exactly in the same was as for internal service requests.
+
+### Configuring a Gateway
+
+1. Create an Istio `Gateway`
+
+ ```bash
+ cat < 80:31486/TCP,443:32254/TCP 32m
+ ```
+
+ ```command
+ $ export INGRESS_HOST=169.47.243.100:31486
+ $ export SECURE_INGRESS_HOST=169.47.243.100:32254
+ ```
+
+1. Access the httpbin service with either HTTP or HTTPS using _curl_:
+
+ ```command
+ $ curl -I http://$INGRESS_HOST/status/200
+ HTTP/1.1 200 OK
+ server: envoy
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ content-type: text/html; charset=utf-8
+ access-control-allow-origin: *
+ access-control-allow-credentials: true
+ content-length: 0
+ x-envoy-upstream-service-time: 48
+ ```
+
+ ```command
+ $ curl -I -k https://$SECURE_INGRESS_HOST/status/200
+ HTTP/1.1 200 OK
+ server: envoy
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ content-type: text/html; charset=utf-8
+ access-control-allow-origin: *
+ access-control-allow-credentials: true
+ content-length: 0
+ x-envoy-upstream-service-time: 96
+ ```
+
+1. Access any other URL that has not been explicitly exposed. You should
+ see a HTTP 404 error:
+
+ ```command
+ $ curl -I http://$INGRESS_HOST/headers
+ HTTP/1.1 404 Not Found
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ server: envoy
+ content-length: 0
+ ```
+
+ ```command
+ $ curl -I https://$SECURE_INGRESS_HOST/headers
+ HTTP/1.1 404 Not Found
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ server: envoy
+ content-length: 0
+ ```
+
+## Configuring ingress using a Kubernetes Ingress resource
+
+An Istio `Ingress` specification is based on the standard [Kubernetes Ingress Resource](https://kubernetes.io/docs/concepts/services-networking/ingress/)
+specification, with the following differences:
+
+1. Istio `Ingress` specification contains a `kubernetes.io/ingress.class: istio` annotation.
+
+1. All other annotations are ignored.
+
+1. Path syntax is [c++11 regex format](http://en.cppreference.com/w/cpp/regex/ecmascript)
+
+Note that `Ingress` traffic is not affected by routing rules configured for a backend
+(i.e., an Istio `VirtualService` cannot be combined with an `Ingress` specification).
+Traffic splitting, fault injection, mirroring, header match, etc., will not work for ingress traffic.
+A `DestinationRule` associated with the backend service will, however, work as expected.
+
+The `servicePort` field in the `Ingress` specification can take a port number
+(integer) or a name. The port name must follow the Istio port naming
+conventions (e.g., `grpc-*`, `http2-*`, `http-*`, etc.) in order to
+function properly. The name used must match the port name in the backend
+service declaration.
+
+### Configuring simple Ingress
+
+1. Create a basic `Ingress` specification for the httpbin service
+
+ ```bash
+ cat < 80:31486/TCP,443:32254/TCP 32m
+ ```
+
+ ```command
+ $ export INGRESS_HOST=169.47.243.100:31486
+ ```
+
+1. Access the httpbin service using _curl_:
+
+ ```command
+ $ curl -I http://$INGRESS_HOST/status/200
+ HTTP/1.1 200 OK
+ server: envoy
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ content-type: text/html; charset=utf-8
+ access-control-allow-origin: *
+ access-control-allow-credentials: true
+ content-length: 0
+ x-envoy-upstream-service-time: 48
+ ```
+
+1. Access any other URL that has not been explicitly exposed. You should
+ see a HTTP 404 error
+
+ ```command
+ $ curl -I http://$INGRESS_HOST/headers
+ HTTP/1.1 404 Not Found
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ server: envoy
+ content-length: 0
+ ```
+
+### Configuring secure Ingress (HTTPS)
+
+1. Create a Kubernetes `Secret` to hold the key/cert
+
+ Create the secret `istio-ingress-certs` in namespace `istio-system` using `kubectl`. The Istio ingress controller
+ will automatically load the secret.
+
+ > The secret MUST be called `istio-ingress-certs` in the `istio-system` namespace, or it will not
+ be mounted and available to the Istio ingress controller.
+
+ ```command
+ $ kubectl create -n istio-system secret tls istio-ingress-certs --key /tmp/tls.key --cert /tmp/tls.crt
+ ```
+
+ Note that by default all service accounts in the `istio-system` namespace can access this ingress key/cert,
+ which risks leaking the key/cert. You can change the Role-Based Access Control (RBAC) rules to protect them.
+ See (Link TBD) for details.
+
+1. Create the `Ingress` specification for the httpbin service
+
+ ```bash
+ cat < Because SNI is not yet supported, Envoy currently only allows a single TLS secret in the ingress.
+ > That means the secretName field in ingress resource is not used.
+
+### Verifying secure Ingress
+
+1. Determine the ingress URL:
+
+ * If your cluster is running in an environment that supports external load balancers,
+ use the ingress' external address:
+
+ ```command
+ $ kubectl get ingress secure-ingress -o wide
+ NAME HOSTS ADDRESS PORTS AGE
+ secure-ingress * 130.211.10.121 80 1d
+ ```
+
+ ```command
+ $ export SECURE_INGRESS_HOST=130.211.10.121
+ ```
+
+ * If load balancers are not supported, use the ingress controller pod's hostIP:
+
+ ```command
+ $ kubectl -n istio-system get po -l istio=ingress -o jsonpath='{.items[0].status.hostIP}'
+ 169.47.243.100
+ ```
+
+ along with the istio-ingress service's nodePort for port 443:
+
+ ```command
+ $ kubectl -n istio-system get svc istio-ingress
+ NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
+ istio-ingress 10.10.10.155 80:31486/TCP,443:32254/TCP 32m
+ ```
+
+ ```command
+ $ export SECURE_INGRESS_HOST=169.47.243.100:32254
+ ```
+
+1. Access the httpbin service using _curl_:
+
+ ```command
+ $ curl -I -k https://$SECURE_INGRESS_HOST/status/200
+ HTTP/1.1 200 OK
+ server: envoy
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ content-type: text/html; charset=utf-8
+ access-control-allow-origin: *
+ access-control-allow-credentials: true
+ content-length: 0
+ x-envoy-upstream-service-time: 96
+ ```
+
+1. Access any other URL that has not been explicitly exposed. You should
+ see a HTTP 404 error
+
+ ```command
+ $ curl -I -k https://$SECURE_INGRESS_HOST/headers
+ HTTP/1.1 404 Not Found
+ date: Mon, 29 Jan 2018 04:45:49 GMT
+ server: envoy
+ content-length: 0
+ ```
+
+## Understanding what happened
+
+`Gateway` or `Ingress` configuration resources allow external traffic to enter the
+Istio service mesh and make the traffic management and policy features of Istio
+available for edge services.
+
+In the preceding steps we created a service inside the Istio service mesh
+and showed how to expose both HTTP and HTTPS endpoints of the service to
+external traffic. Using an Istio `Gateway` provides significantly more functionality
+and is recommended. Using a Kubernetes `Ingress`, however, is also supported
+and may be especially useful when moving existing Kubernetes applications to Istio.
+
+## Cleanup
+
+1. Remove the `Gateway` configuration.
+
+ ```command
+ $ kubectl delete gateway httpbin-gateway
+ ```
+
+1. Remove the `Ingress` configuration.
+
+ ```command
+ $ kubectl delete ingress simple-ingress secure-ingress
+ ```
+
+1. Remove the routing rule and secret.
+
+ ```command
+ $ istioctl delete virtualservice httpbin
+ $ kubectl delete -n istio-system secret istio-ingress-certs
+ ```
+
+1. Shutdown the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) service.
+
+ ```command
+ $ kubectl delete -f samples/httpbin/httpbin.yaml
+ ```
+
+## What's next
+
+* Learn more about [Ingress Control](https://kubernetes.io/docs/concepts/services-networking/ingress/).
+
+* Learn more about [Traffic Routing]({{home}}/docs/reference/config/istio.networking.v1alpha3.html).
diff --git a/_docs/tasks/traffic-management-v1alpha3/mirroring.md b/_docs/tasks/traffic-management-v1alpha3/mirroring.md
new file mode 100644
index 0000000000000..1b662f5b969e1
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/mirroring.md
@@ -0,0 +1,249 @@
+---
+title: Mirroring
+description: This task demonstrates the traffic shadowing/mirroring capabilities of Istio
+
+weight: 60
+
+---
+{% include home.html %}
+
+This task demonstrates the traffic shadowing/mirroring capabilities of Istio. Traffic mirroring is a powerful concept that allows feature teams to bring changes to production with as little risk as possible. Mirroring brings a copy of live traffic to a mirrored service and happens out of band of the critical request path for the primary service.
+
+## Before you begin
+
+* Setup Istio by following the instructions in the
+ [Installation guide]({{home}}/docs/setup/).
+
+* Start two versions of the `httpbin` service that have access logging enabled
+
+httpbin-v1:
+
+```bash
+cat <
+```
+
+1. Change the route rule to mirror traffic to v2
+
+```bash
+cat < This task assumes you don't have any routes set yet. If you've already created conflicting route rules for the sample,
+you'll need to use `replace` rather than `create` in the following command.
+
+1. Set the default version for all microservices to v1.
+
+ ```command
+ $ istioctl create -f samples/bookinfo/routing/route-rule-all-v1.yaml
+ ```
+
+ > In a Kubernetes deployment of Istio, you can replace `istioctl`
+ > with `kubectl` in the above, and for all other CLI commands.
+ > Note, however, that `kubectl` currently does not provide input validation.
+
+ You can display the routes that are defined with the following command:
+
+ ```command-output-as-yaml
+ $ istioctl get virtualservices -o yaml
+ apiVersion: networking.istio.io/v1alpha3
+ kind: VirtualService
+ metadata:
+ name: details
+ ...
+ spec:
+ hosts:
+ - details
+ http:
+ - route:
+ - destination:
+ name: details
+ subset: v1
+ ---
+ apiVersion: networking.istio.io/v1alpha3
+ kind: VirtualService
+ metadata:
+ name: productpage
+ ...
+ spec:
+ gateways:
+ - bookinfo-gateway
+ - mesh
+ hosts:
+ - productpage
+ http:
+ - route:
+ - destination:
+ name: productpage
+ subset: v1
+ ---
+ apiVersion: networking.istio.io/v1alpha3
+ kind: VirtualService
+ metadata:
+ name: ratings
+ ...
+ spec:
+ hosts:
+ - ratings
+ http:
+ - route:
+ - destination:
+ name: ratings
+ subset: v1
+ ---
+ apiVersion: networking.istio.io/v1alpha3
+ kind: VirtualService
+ metadata:
+ name: reviews
+ ...
+ spec:
+ hosts:
+ - reviews
+ http:
+ - route:
+ - destination:
+ name: reviews
+ subset: v1
+ ---
+ ```
+
+ > The corresponding `subset` definitions can be displayed using `istioctl get destinationrules -o yaml`.
+
+ Since rule propagation to the proxies is asynchronous, you should wait a few seconds for the rules
+ to propagate to all pods before attempting to access the application.
+
+1. Open the Bookinfo URL (http://$GATEWAY_URL/productpage) in your browser
+
+ You should see the Bookinfo application productpage displayed.
+ Notice that the `productpage` is displayed with no rating stars since `reviews:v1` does not access the ratings service.
+
+1. Route a specific user to `reviews:v2`
+
+ Lets enable the ratings service for test user "jason" by routing productpage traffic to
+ `reviews:v2` instances.
+
+ ```command
+ $ istioctl replace -f samples/bookinfo/routing/route-rule-reviews-test-v2.yaml
+ ```
+
+ Confirm the rule is created:
+
+ ```command-output-as-yaml
+ $ istioctl get virtualservice reviews -o yaml
+ apiVersion: networking.istio.io/v1alpha3
+ kind: VirtualService
+ metadata:
+ name: reviews
+ ...
+ spec:
+ hosts:
+ - reviews
+ http:
+ - match:
+ - headers:
+ cookie:
+ regex: ^(.*?;)?(user=jason)(;.*)?$
+ route:
+ - destination:
+ name: reviews
+ subset: v2
+ - route:
+ - destination:
+ name: reviews
+ subset: v1
+ ```
+
+1. Log in as user "jason" at the `productpage` web page.
+
+ You should now see ratings (1-5 stars) next to each review. Notice that if you log in as
+ any other user, you will continue to see `reviews:v1`.
+
+## Understanding what happened
+
+In this task, you used Istio to send 100% of the traffic to the v1 version of each of the Bookinfo
+services. You then set a rule to selectively send traffic to version v2 of the reviews service based
+on a header (i.e., a user cookie) in a request.
+
+Once the v2 version has been tested to our satisfaction, we could use Istio to send traffic from
+all users to v2, optionally in a gradual fashion. We'll explore this in a separate task.
+
+## Cleanup
+
+* Remove the application routing rules.
+
+ ```command
+ $ istioctl delete -f samples/bookinfo/routing/route-rule-all-v1.yaml
+ ```
+
+* If you are not planning to explore any follow-on tasks, refer to the
+ [Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
+ to shutdown the application.
+
+## What's next
+
+* Learn more about [request routing]({{home}}/docs/concepts/traffic-management/rules-configuration.html).
diff --git a/_docs/tasks/traffic-management-v1alpha3/request-timeouts.md b/_docs/tasks/traffic-management-v1alpha3/request-timeouts.md
new file mode 100644
index 0000000000000..b5c38dacca217
--- /dev/null
+++ b/_docs/tasks/traffic-management-v1alpha3/request-timeouts.md
@@ -0,0 +1,146 @@
+---
+title: Setting Request Timeouts
+description: This task shows you how to setup request timeouts in Envoy using Istio.
+
+weight: 28
+
+---
+{% include home.html %}
+
+This task shows you how to setup request timeouts in Envoy using Istio.
+
+## Before you begin
+
+* Setup Istio by following the instructions in the
+ [Installation guide]({{home}}/docs/setup/).
+
+* Deploy the [Bookinfo]({{home}}/docs/guides/bookinfo.html) sample application.
+
+* Initialize the application version routing by running the following command:
+
+ ```command
+ $ istioctl create -f samples/bookinfo/routing/route-rule-all-v1.yaml
+ ```
+
+## Request timeouts
+
+A timeout for http requests can be specified using the *httpReqTimeout* field of a routing rule.
+By default, the timeout is 15 seconds, but in this task we'll override the `reviews` service
+timeout to 1 second.
+To see its effect, however, we'll also introduce an artificial 2 second delay in calls
+to the `ratings` service.
+
+1. Route requests to v2 of the `reviews` service, i.e., a version that calls the `ratings` service
+
+ ```bash
+ cat < With the current Envoy sidecar implementation, you may need to refresh the `productpage` very many times
+ > to see the proper distribution. It may require 15 refreshes or more before you see any change. You can modify the rules to route 90% of the traffic to v3 to see red stars more often.
+
+1. When version v3 of the `reviews` microservice is considered stable, we can route 100% of the traffic to `reviews:v3`:
+
+ ```command
+ $ istioctl replace -f samples/bookinfo/routing/route-rule-reviews-v3.yaml
+ ```
+
+ You can now log into the `productpage` as any user and you should always see book reviews
+ with *red* colored star ratings for each review.
+
+## Understanding what happened
+
+In this task we migrated traffic from an old to new version of the `reviews` service using Istio's
+weighted routing feature. Note that this is very different than version migration using deployment features
+of container orchestration platforms, which use instance scaling to manage the traffic.
+With Istio, we can allow the two versions of the `reviews` service to scale up and down independently,
+without affecting the traffic distribution between them.
+For more about version routing with autoscaling, check out [Canary Deployments using Istio]({{home}}/blog/canary-deployments-using-istio.html).
+
+## Cleanup
+
+* Remove the application routing rules.
+
+ ```command
+ $ istioctl delete -f samples/bookinfo/routing/route-rule-all-v1.yaml
+ ```
+
+* If you are not planning to explore any follow-on tasks, refer to the
+ [Bookinfo cleanup]({{home}}/docs/guides/bookinfo.html#cleanup) instructions
+ to shutdown the application.
+
+## What's next
+
+* Learn more about [request routing]({{home}}/docs/concepts/traffic-management/request-routing.html).
diff --git a/_docs/tasks/traffic-management/circuit-breaking.md b/_docs/tasks/traffic-management/circuit-breaking.md
index 7a8f949b39ab7..1da7e6a7a4dd7 100644
--- a/_docs/tasks/traffic-management/circuit-breaking.md
+++ b/_docs/tasks/traffic-management/circuit-breaking.md
@@ -1,12 +1,11 @@
---
title: Circuit Breaking
-overview: This task demonstrates the circuit-breaking capability for resilient applications
+description: This task demonstrates the circuit-breaking capability for resilient applications
-order: 50
+weight: 50
-layout: docs
-type: markdown
---
+{% include home.html %}
This task demonstrates the circuit-breaking capability for resilient applications. Circuit breaking allows developers to write applications that limit the impact of failures, latency spikes, and other undesirable effects of network peculiarities. This task will show how to configure circuit breaking for connections, requests, and outlier detection.
@@ -14,13 +13,13 @@ This task demonstrates the circuit-breaking capability for resilient application
* Setup Istio by following the instructions in the
[Installation guide]({{home}}/docs/setup/).
-
+
* Start the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) sample
which will be used as the backend service for our task
-
- ```bash
- kubectl apply -f <(istioctl kube-inject --debug -f samples/httpbin/httpbin.yaml)
- ```
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject --debug -f samples/httpbin/httpbin.yaml)
+ ```
## Circuit breaker
@@ -31,60 +30,38 @@ Let's set up a scenario to demonstrate the circuit-breaking capabilities of Isti
1. Create a default route rule to route all traffic to `v1` of our `httpbin` service:
- ```bash
- istioctl create -f samples/httpbin/routerules/httpbin-v1.yaml
+ ```command
+ $ istioctl create -f samples/httpbin/routerules/httpbin-v1.yaml
```
-2. Create a [destination policy]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#CircuitBreaker) to specify our circuit breaking settings when calling `httpbin` service:
-
- ```bash
- cat <2 procs, for 5s: http://httpbin:8000/get
Starting at max qps with 2 thread(s) [gomax 2] for exactly 20 calls (10 per thread + 0)
23:51:10 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
@@ -147,20 +122,18 @@ Response Header Sizes : count 20 avg 218.85 +/- 50.21 min 0 max 231 sum 4377
Response Body/Total Sizes : count 20 avg 652.45 +/- 99.9 min 217 max 676 sum 13049
All done 20 calls (plus 0 warmup) 10.215 ms avg, 187.8 qps
```
-
-We see almost all requests made it through!
-```
+We see almost all requests made it through!
+
+```plain
Code 200 : 19 (95.0 %)
Code 503 : 1 (5.0 %)
```
The istio-proxy does allow for some leeway. Let's bring the number of concurrent connections up to 3:
-```bash
-kubectl exec -it $FORTIO_POD -c fortio /usr/local/bin/fortio -- load -c 3 -qps 0 -n 20 -loglevel Warning http://httpbin:8000/get
-```
-```
+```command
+$ kubectl exec -it $FORTIO_POD -c fortio /usr/local/bin/fortio -- load -c 3 -qps 0 -n 20 -loglevel Warning http://httpbin:8000/get
Fortio 0.6.2 running at 0 queries per second, 2->2 procs, for 5s: http://httpbin:8000/get
Starting at max qps with 3 thread(s) [gomax 2] for exactly 30 calls (10 per thread + 0)
23:51:51 W http.go:617> Parsed non ok code 503 (HTTP/1.1 503)
@@ -202,39 +175,37 @@ All done 30 calls (plus 0 warmup) 5.336 ms avg, 422.2 qps
Now we start to see the circuit breaking behavior we expect.
-```
+```plain
Code 200 : 19 (63.3 %)
Code 503 : 11 (36.7 %)
```
Only 63.3% of the requests made it through and the rest were trapped by circuit breaking. We can query the istio-proxy stats to see more:
-```bash
-kubectl exec -it $FORTIO_POD -c istio-proxy -- sh -c 'curl localhost:15000/stats' | grep httpbin | grep pending
-```
-```
+```command
+$ kubectl exec -it $FORTIO_POD -c istio-proxy -- sh -c 'curl localhost:15000/stats' | grep httpbin | grep pending
cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_active: 0
cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_failure_eject: 0
cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_overflow: 12
cluster.out.httpbin.springistio.svc.cluster.local|http|version=v1.upstream_rq_pending_total: 39
-```
-
-We see `12` for the `upstream_rq_pending_overflow` value which means `12` calls so far have been flagged for circuit breaking.
+```
+
+We see `12` for the `upstream_rq_pending_overflow` value which means `12` calls so far have been flagged for circuit breaking.
## Cleaning up
1. Remove the rules.
-
- ```bash
- istioctl delete routerule httpbin-default-v1
- istioctl delete destinationpolicy httpbin-circuit-breaker
+
+ ```command
+ $ istioctl delete routerule httpbin-default-v1
+ $ istioctl delete destinationpolicy httpbin-circuit-breaker
```
1. Shutdown the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) service and client.
- ```bash
- kubectl delete deploy httpbin fortio-deploy
- kubectl delete svc httpbin
+ ```command
+ $ kubectl delete deploy httpbin fortio-deploy
+ $ kubectl delete svc httpbin
```
## What's next
diff --git a/_docs/tasks/traffic-management/egress-tcp.md b/_docs/tasks/traffic-management/egress-tcp.md
index a9f3982a11508..dbf38b09d059a 100644
--- a/_docs/tasks/traffic-management/egress-tcp.md
+++ b/_docs/tasks/traffic-management/egress-tcp.md
@@ -1,11 +1,9 @@
---
title: Control Egress TCP Traffic
-overview: Describes how to configure Istio to route TCP traffic from services in the mesh to external services.
+description: Describes how to configure Istio to route TCP traffic from services in the mesh to external services.
-order: 41
+weight: 41
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -20,13 +18,14 @@ This task describes how to configure Istio to expose external TCP services to ap
* Start the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) sample application which will be used as a test source for external calls.
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
```
- **Note**: any pod that you can execute `curl` from is good enough.
+ > any pod that you can execute `curl` from is good enough.
## Using Istio egress rules for external TCP traffic
+
In this task we access `wikipedia.org` by HTTPS originated by the application. This task demonstrates the use case when the application cannot use HTTP with TLS origination by the sidecar proxy. Using HTTP with TLS origination by the sidecar proxy is described in the [Control Egress Traffic]({{home}}/docs/tasks/traffic-management/egress.html) task. In that task, `https://google.com` was accessed by issuing HTTP requests to `http://www.google.com:443`.
The HTTPS traffic originated by the application will be treated by Istio as _opaque_ TCP. To enable such traffic, we define a TCP egress rule on port 443.
@@ -38,7 +37,9 @@ Let's assume for the sake of the example that we want to access `wikipedia.org`
Alternatively, if we want to access `wikipedia.org` by an IP, just a single egress rule for that IP must be defined.
## Creating egress rules
+
Let's create egress rules to enable TCP access to `wikipedia.org`:
+
```bash
cat <5,563,121 articles in English
```
@@ -131,14 +127,14 @@ This command will create five egress rules, a rule per different block of IPs of
1. Remove the egress rules we created.
- ```bash
- istioctl delete egressrule wikipedia-range1 wikipedia-range2 wikipedia-range3 wikipedia-range4 wikipedia-range5 -n default
+ ```command
+ $ istioctl delete egressrule wikipedia-range1 wikipedia-range2 wikipedia-range3 wikipedia-range4 wikipedia-range5 -n default
```
1. Shutdown the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) application.
- ```bash
- kubectl delete -f samples/sleep/sleep.yaml
+ ```command
+ $ kubectl delete -f samples/sleep/sleep.yaml
```
## What's next
diff --git a/_docs/tasks/traffic-management/egress.md b/_docs/tasks/traffic-management/egress.md
index 8e4973abc6e9d..22bae2f86b717 100644
--- a/_docs/tasks/traffic-management/egress.md
+++ b/_docs/tasks/traffic-management/egress.md
@@ -1,18 +1,17 @@
---
title: Control Egress Traffic
-overview: Describes how to configure Istio to route traffic from services in the mesh to external services.
+description: Describes how to configure Istio to route traffic from services in the mesh to external services.
-order: 40
+weight: 40
-layout: docs
-type: markdown
+redirect_from: /docs/tasks/egress.html
---
{% include home.html %}
By default, Istio-enabled services are unable to access URLs outside of the cluster because
iptables is used in the pod to transparently redirect all outbound traffic to the sidecar proxy,
which only handles intra-cluster destinations.
-
+
This task describes how to configure Istio to expose external services to Istio-enabled clients.
You'll learn how to enable access to external services using egress rules,
or alternatively, to simply bypass the Istio proxy for a specific range of IPs.
@@ -24,9 +23,9 @@ or alternatively, to simply bypass the Istio proxy for a specific range of IPs.
* Start the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) sample
which will be used as a test source for external calls.
-
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
+
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml)
```
Note that any pod that you can `exec` and `curl` from would do.
@@ -34,8 +33,8 @@ or alternatively, to simply bypass the Istio proxy for a specific range of IPs.
## Using Istio egress rules
Using Istio egress rules, you can access any publicly accessible service
-from within your Istio cluster. In this task we will use
-[httpbin.org](http://httpbin.org) and [www.google.com](http://www.google.com) as examples.
+from within your Istio cluster. In this task we will use
+[httpbin.org](https://httpbin.org) and [www.google.com](https://www.google.com) as examples.
### Configuring the external services
@@ -56,7 +55,7 @@ from within your Istio cluster. In this task we will use
EOF
```
-2. Create an egress rule to allow access to an external HTTPS service:
+1. Create an egress rule to allow access to an external HTTPS service:
```bash
cat < --zone | grep -e clusterIpv4Cidr -e servicesIpv4Cidr
clusterIpv4Cidr: 10.4.0.0/14
servicesIpv4Cidr: 10.7.240.0/20
```
-```bash
-kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml --includeIPRanges=10.4.0.0/14,10.7.240.0/20)
+
+```command
+$ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml --includeIPRanges=10.4.0.0/14,10.7.240.0/20)
```
On Azure Container Service(ACS), use:
-```bash
-kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml --includeIPRanges=10.244.0.0/16,10.240.0.0/16)
+```command
+$ kubectl apply -f <(istioctl kube-inject -f samples/sleep/sleep.yaml --includeIPRanges=10.244.0.0/16,10.240.0.0/16)
```
-
After starting your service this way, the Istio sidecar will only intercept and manage internal requests
within the cluster. Any external request will simply bypass the sidecar and go straight to its intended
destination.
-```bash
-export SOURCE_POD=$(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name})
-kubectl exec -it $SOURCE_POD -c sleep curl http://httpbin.org/headers
+```command
+$ export SOURCE_POD=$(kubectl get pod -l app=sleep -o jsonpath={.items..metadata.name})
+$ kubectl exec -it $SOURCE_POD -c sleep curl http://httpbin.org/headers
```
-
## Understanding what happened
In this task we looked at two ways to call external services from within an Istio cluster:
1. Using an egress rule (recommended)
-2. Configuring the Istio sidecar to exclude external IPs from its remapped IP table
+1. Configuring the Istio sidecar to exclude external IPs from its remapped IP table
The first approach (egress rule) currently only supports HTTP(S) requests, but allows
-you to use all of the same Istio service mesh features for calls to services within or outside
+you to use all of the same Istio service mesh features for calls to services within or outside
of the cluster. We demonstrated this by setting a timeout rule for calls to an external service.
The second approach bypasses the Istio sidecar proxy, giving your services direct access to any
external URL. However, configuring the proxy this way does require
cloud provider specific knowledge and configuration.
-
## Cleanup
1. Remove the rules.
-
- ```bash
- istioctl delete egressrule httpbin-egress-rule google-egress-rule
- istioctl delete routerule httpbin-timeout-rule
+
+ ```command
+ $ istioctl delete egressrule httpbin-egress-rule google-egress-rule
+ $ istioctl delete routerule httpbin-timeout-rule
```
1. Shutdown the [sleep](https://github.com/istio/istio/tree/master/samples/sleep) service.
- ```bash
- kubectl delete -f samples/sleep/sleep.yaml
+ ```command
+ $ kubectl delete -f samples/sleep/sleep.yaml
```
## Egress Rules and Access Control
+
Note that Istio Egress Rules are **not a security feature**. They enable access to external (out of the service mesh) services. It is up to the user to deploy appropriate security mechanisms such as firewalls to prevent unauthorized access to the external services. We are working on adding access control support for the external services.
## What's next
diff --git a/_docs/tasks/traffic-management/fault-injection.md b/_docs/tasks/traffic-management/fault-injection.md
index 43e2dd0643369..545449f972d12 100644
--- a/_docs/tasks/traffic-management/fault-injection.md
+++ b/_docs/tasks/traffic-management/fault-injection.md
@@ -1,11 +1,9 @@
---
title: Fault Injection
-overview: This task shows how to inject delays and test the resiliency of your application.
+description: This task shows how to inject delays and test the resiliency of your application.
-order: 20
+weight: 20
-layout: docs
-type: markdown
---
{% include home.html %}
@@ -21,24 +19,25 @@ This task shows how to inject delays and test the resiliency of your application
* Initialize the application version routing by either first doing the
[request routing](./request-routing.html) task or by running following
commands:
-
- > Note: This assumes you don't have any routes set yet. If you've already created conflicting route rules for the sample, you'll need to use `replace` rather than `create` in one or both of the following commands.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
- istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ > This assumes you don't have any routes set yet. If you've already created conflicting route rules for the sample, you'll need to use `replace` rather than `create` in one or both of the following commands.
+
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ $ istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
```
-> Note: This task assumes you are deploying the application on Kubernetes.
- All of the example commands are using the Kubernetes version of the rule yaml files
- (e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
- task in a different environment, change `kube` to the directory that corresponds
- to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
- the Consul-based runtime).
+> This task assumes you are deploying the application on Kubernetes.
+All of the example commands are using the Kubernetes version of the rule yaml files
+(e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
+task in a different environment, change `kube` to the directory that corresponds
+to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
+the Consul-based runtime).
# Fault injection
## Fault injection using HTTP delay
+
To test our Bookinfo application microservices for resiliency, we will _inject a 7s delay_
between the reviews:v2 and ratings microservices, for user "jason". Since the _reviews:v2_ service has a
10s timeout for its calls to the ratings service, we expect the end-to-end flow to
@@ -46,16 +45,14 @@ continue without any errors.
1. Create a fault injection rule to delay traffic coming from user "jason" (our test user)
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-ratings-test-delay.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-ratings-test-delay.yaml
```
Confirm the rule is created:
- ```bash
- istioctl get routerule ratings-test-delay -o yaml
- ```
- ```yaml
+ ```command-output-as-yaml
+ $ istioctl get routerule ratings-test-delay -o yaml
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -118,28 +115,27 @@ continue without any errors.
use a 2.8 second delay and then run it against the v3 version of reviews.)
## Fault injection using HTTP Abort
+
As another test of resiliency, we will introduce an HTTP abort to the ratings microservices for the user "jason".
We expect the page to load immediately unlike the delay example and display the "product ratings not available"
message.
1. Remove the fault delay injection rule before attempting the fault abort rule
- ```bash
- istioctl delete -f samples/bookinfo/kube/route-rule-ratings-test-delay.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-ratings-test-delay.yaml
```
1. Create the fault injection rule to send an HTTP abort for user "jason"
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-ratings-test-abort.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-ratings-test-abort.yaml
```
Confirm the rule is created
- ```bash
- istioctl get routerules ratings-test-abort -o yaml
- ```
- ```yaml
+ ```command-output-as-yaml
+ $ istioctl get routerules ratings-test-abort -o yaml
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -174,11 +170,11 @@ message.
* Remove the application routing rules:
- ```bash
- istioctl delete -f samples/bookinfo/kube/route-rule-all-v1.yaml
- istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
- istioctl delete -f samples/bookinfo/kube/route-rule-ratings-test-delay.yaml
- istioctl delete -f samples/bookinfo/kube/route-rule-ratings-test-abort.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-ratings-test-delay.yaml
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-ratings-test-abort.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
diff --git a/_docs/tasks/traffic-management/index.md b/_docs/tasks/traffic-management/index.md
index f027de1ddfa96..ec908bbf6dcca 100644
--- a/_docs/tasks/traffic-management/index.md
+++ b/_docs/tasks/traffic-management/index.md
@@ -1,11 +1,9 @@
---
title: Traffic Management
-overview: Describes tasks that demonstrate traffic routing features of Istio service mesh.
+description: Describes tasks that demonstrate traffic routing features of Istio service mesh.
-order: 10
+weight: 10
-layout: docs
-type: markdown
toc: false
---
diff --git a/_docs/tasks/traffic-management/ingress.md b/_docs/tasks/traffic-management/ingress.md
index 761a43224ef2d..f96da33322356 100644
--- a/_docs/tasks/traffic-management/ingress.md
+++ b/_docs/tasks/traffic-management/ingress.md
@@ -1,51 +1,51 @@
---
title: Istio Ingress
-overview: Describes how to configure Istio Ingress on Kubernetes.
+description: Describes how to configure Istio Ingress on Kubernetes.
-order: 30
+weight: 30
-layout: docs
-type: markdown
+redirect_from: /docs/tasks/ingress.html
---
+{% include home.html %}
This task describes how to configure Istio to expose a service outside of the service mesh cluster.
In a Kubernetes environment, the [Kubernetes Ingress Resource](https://kubernetes.io/docs/concepts/services-networking/ingress/)
allows users to specify services that should be exposed outside the
cluster. It allows one to define a backend service per virtual host and path.
-Once the Istio Ingress specification is defined, the traffic entering the cluster is directed through the `istio-ingress` service. As a result, Istio features, for example, monitoring and route rules, can be applied to the traffic entering the cluster.
+Once the Istio Ingress specification is defined, traffic entering the cluster is directed through the `istio-ingress` service. As a result, Istio features, for example, monitoring and route rules, can be applied to the traffic entering the cluster.
The Istio Ingress specification is based on the standard [Kubernetes Ingress Resource](https://kubernetes.io/docs/concepts/services-networking/ingress/) specification, with the following differences:
1. Istio Ingress specification contains `kubernetes.io/ingress.class: istio` annotation.
-2. All other annotations are ignored.
+1. All other annotations are ignored.
The following are known limitations of Istio Ingress:
1. Regular expressions in paths are not supported.
-2. Fault injection at the Ingress is not supported.
+1. Fault injection at the Ingress is not supported.
## Before you begin
* Setup Istio by following the instructions in the
[Installation guide]({{home}}/docs/setup/).
-
+
* Make sure your current directory is the `istio` directory.
-
+
* Start the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) sample,
which will be used as the destination service to be exposed externally.
If you installed the [Istio-Initializer]({{home}}/docs/setup/kubernetes/sidecar-injection.html#automatic-sidecar-injection), do
- ```bash
- kubectl apply -f samples/httpbin/httpbin.yaml
+ ```command
+ $ kubectl apply -f samples/httpbin/httpbin.yaml
```
Without the Istio-Initializer:
- ```bash
- kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml)
+ ```command
+ $ kubectl apply -f <(istioctl kube-inject -f samples/httpbin/httpbin.yaml)
```
## Configuring ingress (HTTP)
@@ -74,64 +74,51 @@ The following are known limitations of Istio Ingress:
servicePort: 8000
EOF
```
-
+
`/.*` is a special Istio notation that is used to indicate a prefix
match, specifically a
[rule match configuration]({{home}}/docs/reference/config/istio.routing.v1alpha1.html#matchcondition)
of the form (`prefix: /`).
-
-### Verifying ingress
+
+### Verifying HTTP ingress
1. Determine the ingress URL:
- * If your cluster is running in an environment that supports external load balancers,
- use the ingress' external address:
+ * If your cluster is running in an environment that supports external load balancers, use the ingress' external address:
- ```bash
- kubectl get ingress simple-ingress -o wide
- ```
-
- ```bash
- NAME HOSTS ADDRESS PORTS AGE
- simple-ingress * 130.211.10.121 80 1d
- ```
+ ```command
+ $ kubectl get ingress simple-ingress -o wide
+ NAME HOSTS ADDRESS PORTS AGE
+ simple-ingress * 130.211.10.121 80 1d
+ ```
- ```bash
- export INGRESS_HOST=130.211.10.121
- ```
+ ```command
+ $ export INGRESS_HOST=130.211.10.121
+ ```
* If load balancers are not supported, use the ingress controller pod's hostIP:
-
- ```bash
- kubectl -n istio-system get po -l istio=ingress -o jsonpath='{.items[0].status.hostIP}'
- ```
- ```bash
- 169.47.243.100
- ```
+ ```command
+ $ kubectl -n istio-system get po -l istio=ingress -o jsonpath='{.items[0].status.hostIP}'
+ 169.47.243.100
+ ```
- along with the istio-ingress service's nodePort for port 80:
-
- ```bash
- kubectl -n istio-system get svc istio-ingress
- ```
-
- ```bash
- NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
- istio-ingress 10.10.10.155 80:31486/TCP,443:32254/TCP 32m
- ```
-
- ```bash
- export INGRESS_HOST=169.47.243.100:31486
- ```
-
-1. Access the httpbin service using _curl_:
+ along with the istio-ingress service's nodePort for port 80:
- ```bash
- curl -I http://$INGRESS_HOST/status/200
+ ```command
+ $ kubectl -n istio-system get svc istio-ingress
+ NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
+ istio-ingress 10.10.10.155 80:31486/TCP,443:32254/TCP 32m
```
+ ```command
+ $ export INGRESS_HOST=169.47.243.100:31486
```
+
+1. Access the httpbin service using _curl_:
+
+ ```command
+ $ curl -I http://$INGRESS_HOST/status/200
HTTP/1.1 200 OK
server: envoy
date: Mon, 29 Jan 2018 04:45:49 GMT
@@ -145,11 +132,8 @@ The following are known limitations of Istio Ingress:
1. Access any other URL that has not been explicitly exposed. You should
see a HTTP 404 error
- ```bash
- curl -I http://$INGRESS_HOST/headers
- ```
-
- ```
+ ```command
+ $ curl -I http://$INGRESS_HOST/headers
HTTP/1.1 404 Not Found
date: Mon, 29 Jan 2018 04:45:49 GMT
server: envoy
@@ -162,8 +146,8 @@ The following are known limitations of Istio Ingress:
A private key and certificate can be created for testing using [OpenSSL](https://www.openssl.org/).
- ```bash
- openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /tmp/tls.key -out /tmp/tls.crt -subj "/CN=foo.bar.com"
+ ```command
+ $ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout /tmp/tls.key -out /tmp/tls.crt -subj "/CN=foo.bar.com"
```
1. Create the secret
@@ -171,10 +155,10 @@ The following are known limitations of Istio Ingress:
Create the secret `istio-ingress-certs` in namespace `istio-system` using `kubectl`. The Istio Ingress will automatically
load the secret.
- > Note: the secret must be called `istio-ingress-certs` in `istio-system` namespace, for it to be mounted on Istio Ingress.
+ > The secret must be called `istio-ingress-certs` in `istio-system` namespace, for it to be mounted on Istio Ingress.
- ```bash
- kubectl create -n istio-system secret tls istio-ingress-certs --key /tmp/tls.key --cert /tmp/tls.crt
+ ```command
+ $ kubectl create -n istio-system secret tls istio-ingress-certs --key /tmp/tls.key --cert /tmp/tls.crt
```
1. Create the Ingress specification for the httpbin service
@@ -204,61 +188,49 @@ The following are known limitations of Istio Ingress:
EOF
```
- > Note: Because SNI is not yet supported, Envoy currently only allows a single TLS secret in the ingress.
+ > Because SNI is not yet supported, Envoy currently only allows a single TLS secret in the ingress.
> That means the secretName field in ingress resource is not used.
-### Verifying ingress
+### Verifying HTTPS ingress
1. Determine the ingress URL:
* If your cluster is running in an environment that supports external load balancers,
use the ingress' external address:
- ```bash
- kubectl get ingress secure-ingress -o wide
- ```
-
- ```bash
+ ```command
+ $ kubectl get ingress secure-ingress -o wide
NAME HOSTS ADDRESS PORTS AGE
secure-ingress * 130.211.10.121 80 1d
```
- ```bash
- export INGRESS_HOST=130.211.10.121
+ ```command
+ $ export INGRESS_HOST=130.211.10.121
```
* If load balancers are not supported, use the ingress controller pod's hostIP:
- ```bash
- kubectl -n istio-system get po -l istio=ingress -o jsonpath='{.items[0].status.hostIP}'
- ```
-
- ```bash
+ ```command
+ $ kubectl -n istio-system get po -l istio=ingress -o jsonpath='{.items[0].status.hostIP}'
169.47.243.100
```
- along with the istio-ingress service's nodePort for port 80:
-
- ```bash
- kubectl -n istio-system get svc istio-ingress
- ```
+ along with the istio-ingress service's nodePort for port 443:
- ```bash
+ ```command
+ $ kubectl -n istio-system get svc istio-ingress
NAME CLUSTER-IP EXTERNAL-IP PORT(S) AGE
istio-ingress 10.10.10.155 80:31486/TCP,443:32254/TCP 32m
```
- ```bash
- export INGRESS_HOST=169.47.243.100:31486
+ ```command
+ $ export INGRESS_HOST=169.47.243.100:32254
```
1. Access the httpbin service using _curl_:
- ```bash
- curl -I -k https://$INGRESS_HOST/status/200
- ```
-
- ```
+ ```command
+ $ curl -I -k https://$INGRESS_HOST/status/200
HTTP/1.1 200 OK
server: envoy
date: Mon, 29 Jan 2018 04:45:49 GMT
@@ -272,11 +244,8 @@ The following are known limitations of Istio Ingress:
1. Access any other URL that has not been explicitly exposed. You should
see a HTTP 404 error
- ```bash
- curl -I -k http://$INGRESS_HOST/headers
- ```
-
- ```
+ ```command
+ $ curl -I -k https://$INGRESS_HOST/headers
HTTP/1.1 404 Not Found
date: Mon, 29 Jan 2018 04:45:49 GMT
server: envoy
@@ -285,18 +254,15 @@ The following are known limitations of Istio Ingress:
1. Configuring RBAC for ingress key/cert
- There are service accounts which can access this ingress key/cert, and this leads to risks of
- leaking key/cert. We can set up Role-Based Access Control ("RBAC") to protect it.
- install/kubernetes/istio.yaml defines ClusterRoles and ClusterRoleBindings which allow service
- accounts in namespace istio-system to access all secret resources. We need to update or replace
+ There are service accounts which can access this ingress key/cert, and this leads to risks of
+ leaking key/cert. We can set up Role-Based Access Control ("RBAC") to protect it.
+ install/kubernetes/istio.yaml defines `ClusterRoles` and `ClusterRoleBindings` which allow service
+ accounts in namespace istio-system to access all secret resources. We need to update or replace
these RBAC set up to only allow istio-ingress-service-account to access ingress key/cert.
- We can use kubectl to list all secrets in namespace istio-system that we need to protect using RBAC.
- ```bash
- kubectl get secrets -n istio-system
- ```
- This produces the following output:
- ```bash
+ We can use `kubectl` to list all secrets in namespace istio-system that we need to protect using RBAC.
+ ```command
+ $ kubectl get secrets -n istio-system
NAME TYPE DATA AGE
istio-ingress-certs kubernetes.io/tls 2 7d
istio.istio-ingress-service-account istio.io/key-and-cert 3 7d
@@ -304,42 +270,42 @@ The following are known limitations of Istio Ingress:
```
1. Update RBAC set up for istio-pilot-service-account and istio-mixer-istio-service-account
-
- Record ClusterRole istio-mixer-istio-system and istio-pilot-istio-system. We will refer to
+
+ Record `ClusterRole` istio-mixer-istio-system and istio-pilot-istio-system. We will refer to
these copies when we redefine them to avoid breaking access permissions to other resources.
- ```bash
- kubectl describe ClusterRole istio-mixer-istio-system
- kubectl describe ClusterRole istio-pilot-istio-system
+ ```command
+ $ kubectl describe ClusterRole istio-mixer-istio-system
+ $ kubectl describe ClusterRole istio-pilot-istio-system
```
- Delete existing ClusterRoleBindings and ClusterRole.
+ Delete existing `ClusterRoleBindings` and `ClusterRole`.
- ```bash
- kubectl delete ClusterRoleBinding istio-pilot-admin-role-binding-istio-system
- kubectl delete ClusterRoleBinding istio-mixer-admin-role-binding-istio-system
- kubectl delete ClusterRole istio-mixer-istio-system
+ ```command
+ $ kubectl delete ClusterRoleBinding istio-pilot-admin-role-binding-istio-system
+ $ kubectl delete ClusterRoleBinding istio-mixer-admin-role-binding-istio-system
+ $ kubectl delete ClusterRole istio-mixer-istio-system
```
- As istio-pilot-istio-system is also bound to istio-ingress-service-account, we will delete
- istio-pilot-istio-system in next step.
-
- Create istio-mixer-istio-system.yaml, which allows istio-mixer-service-account to read
- istio.io/key-and-cert, and istio.io/ca-root types of secret instances. Refer to the recorded
- copy of istio-mixer-istio-system and add access permissions to other resources.
-
- ```bash
+ As istio-pilot-istio-system is also bound to istio-ingress-service-account, we will delete
+ istio-pilot-istio-system in next step.
+
+ Create istio-mixer-istio-system.yaml, which allows istio-mixer-service-account to read
+ istio.io/key-and-cert, and istio.io/ca-root types of secret instances. Refer to the recorded
+ copy of istio-mixer-istio-system and add access permissions to other resources.
+
+ ```yaml
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: istio-mixer-istio-system
- rules:
+ rules:
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio.istio-ca-service-account"]
+ resourceNames: ["istio.istio-citadel-service-account"]
verbs: ["get", "list", "watch"]
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio-ca-secret"]
+ resourceNames: ["istio-citadel-secret"]
verbs: ["get", "list", "watch"]
- ......
+ ......
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1beta1
@@ -354,39 +320,39 @@ The following are known limitations of Istio Ingress:
name: istio-mixer-istio-system
apiGroup: rbac.authorization.k8s.io
```
-
- ```bash
- kubectl apply -f istio-mixer-istio-system.yaml
+
+ ```command
+ $ kubectl apply -f istio-mixer-istio-system.yaml
```
1. Update RBAC set up for istio-pilot-service-account and istio-ingress-service-account
- Delete existing ClusterRoleBinding and ClusterRole.
-
- ```bash
- kubectl delete clusterrolebinding istio-ingress-admin-role-binding-istio-system
- kubectl delete ClusterRole istio-pilot-istio-system
+ Delete existing `ClusterRoleBinding` and `ClusterRole`.
+
+ ```command
+ $ kubectl delete clusterrolebinding istio-ingress-admin-role-binding-istio-system
+ $ kubectl delete ClusterRole istio-pilot-istio-system
```
-
- Create istio-pilot-istio-system.yaml, which allows istio-pilot-service-account to read
- istio.io/key-and-cert, and istio.io/ca-root types of secret instances. Refer to the recorded
- copy of istio-pilot-istio-system and add access permissions to other resources.
-
- ```bash
+
+ Create istio-pilot-istio-system.yaml, which allows istio-pilot-service-account to read
+ istio.io/key-and-cert, and istio.io/ca-root types of secret instances. Refer to the recorded
+ copy of istio-pilot-istio-system and add access permissions to other resources.
+
+ ```yaml
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1beta1
metadata:
name: istio-pilot-istio-system
- rules:
+ rules:
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio.istio-ca-service-account"]
+ resourceNames: ["istio.istio-citadel-service-account"]
verbs: ["get", "list", "watch"]
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio-ca-secret"]
+ resourceNames: ["istio-citadel-secret"]
verbs: ["get", "list", "watch"]
- ......
+ ......
---
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1beta1
@@ -401,28 +367,28 @@ The following are known limitations of Istio Ingress:
name: istio-pilot-istio-system
apiGroup: rbac.authorization.k8s.io
```
-
- ```bash
- kubectl apply -f istio-pilot-istio-system.yaml
- ```
-
- Create istio-ingress-istio-system.yaml which allows istio-ingress-service-account to read
- istio-ingress-certs as well as other secret instances. Refer to the recorded copy of
+
+ ```command
+ $ kubectl apply -f istio-pilot-istio-system.yaml
+ ```
+
+ Create istio-ingress-istio-system.yaml which allows istio-ingress-service-account to read
+ istio-ingress-certs as well as other secret instances. Refer to the recorded copy of
istio-pilot-istio-system and add access permissions to other resources.
-
- ```bash
+
+ ```yaml
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
metadata:
name: istio-ingress-istio-system
- rules:
+ rules:
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio.istio-ca-service-account"]
+ resourceNames: ["istio.istio-citadel-service-account"]
verbs: ["get", "list", "watch"]
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio-ca-secret"]
+ resourceNames: ["istio-citadel-secret"]
verbs: ["get", "list", "watch"]
......
- apiGroups: [""] # "" indicates the core API group
@@ -443,92 +409,82 @@ The following are known limitations of Istio Ingress:
name: istio-ingress-istio-system
apiGroup: rbac.authorization.k8s.io
```
-
- ```bash
- kubectl apply -f istio-ingress-istio-system.yaml
+
+ ```command
+ $ kubectl apply -f istio-ingress-istio-system.yaml
```
-
-1. Update RBAC set up for istio-ca-service-account
- Record ClusterRole istio-ca-istio-system.
- ```bash
- kubectl describe ClusterRole istio-ca-istio-system
+1. Update RBAC set up for istio-citadel-service-account
+
+ Record `ClusterRole` istio-citadel-istio-system.
+ ```command
+ $ kubectl describe ClusterRole istio-citadel-istio-system
```
-
- Create istio-ca-istio-system.yaml, which updates existing ClusterRole istio-ca-istio-system
- that allows istio-ca-service-account to read, create and modify all istio.io/key-and-cert, and
+
+ Create istio-citadel-istio-system.yaml, which updates existing `ClusterRole` istio-citadel-istio-system
+ that allows istio-citadel-service-account to read, create and modify all istio.io/key-and-cert, and
istio.io/ca-root types of secrets.
-
- ```bash
+
+ ```yaml
kind: ClusterRole
apiVersion: rbac.authorization.k8s.io/v1
metadata:
- name: istio-ca-istio-system
+ name: istio-citadel-istio-system
rules:
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio.istio-ca-service-account"]
+ resourceNames: ["istio.istio-citadel-service-account"]
verbs: ["get", "list", "watch", "create", "update"]
- apiGroups: [""] # "" indicates the core API group
resources: ["secrets"]
- resourceNames: ["istio-ca-secret"]
+ resourceNames: ["istio-citadel-secret"]
verbs: ["get", "list", "watch", "create", "update"]
......
kind: ClusterRoleBinding
apiVersion: rbac.authorization.k8s.io/v1
metadata:
- name: istio-ca-role-binding-istio-system
+ name: istio-citadel-role-binding-istio-system
subjects:
- kind: ServiceAccount
- name: istio-ca-service-account
+ name: istio-citadel-service-account
namespace: istio-system
roleRef:
kind: ClusterRole
- name: istio-ca-istio-system
+ name: istio-citadel-istio-system
apiGroup: rbac.authorization.k8s.io
```
- ```bash
- kubectl apply -f istio-ca-istio-system.yaml
- ```
-1. Verify that the new ClusterRoles work as expected
-
- ```bash
- kubectl auth can-i get secret/istio-ingress-certs --as system:serviceaccount:istio-system:istio-ingress-service-account -n istio-system
+ ```command
+ $ kubectl apply -f istio-citadel-istio-system.yaml
```
- whose output should be
- ```bash
+1. Verify that the new `ClusterRoles` work as expected
+
+ ```command
+ $ kubectl auth can-i get secret/istio-ingress-certs --as system:serviceaccount:istio-system:istio-ingress-service-account -n istio-system
yes
```
- In this command, we can replace verb "get" with "list" or "watch", and the output should always
+ In this command, we can replace verb "get" with "list" or "watch", and the output should always
be "yes". Now let us test with other service accounts.
-
- ```bash
- kubectl auth can-i get secret/istio-ingress-certs --as system:serviceaccount:istio-system:istio-pilot-service-account -n istio-system
- ```
- whose output should be
- ```bash
+
+ ```command
+ $ kubectl auth can-i get secret/istio-ingress-certs --as system:serviceaccount:istio-system:istio-pilot-service-account -n istio-system
no - Unknown user "system:serviceaccount:istio-system:istio-pilot-service-account"
```
- In this command, we can replace service account with istio-mixer-service-account, or
- istio-ca-service-account, we can also replace verb "get" with "watch" or "list", and the output
+ In this command, we can replace service account with istio-mixer-service-account, or
+ istio-citadel-service-account, we can also replace verb "get" with "watch" or "list", and the output
should look similarly.
- Accessibility to secret resources except istio-ingress-certs should remain the same for
- istio-ca-service-account, istio-ingress-service-account, istio-pilot-service-account and
+ Accessibility to secret resources except istio-ingress-certs should remain the same for
+ istio-citadel-service-account, istio-ingress-service-account, istio-pilot-service-account and
istio-mixer-service-account.
- ```bash
- kubectl auth can-i get secret/istio-ca-service-account-token-r14xm --as system:serviceaccount:istio-system:istio-ca-service-account -n istio-system
- ```
- whose output should be
- ```bash
+ ```command
+ $ kubectl auth can-i get secret/istio-citadel-service-account-token-r14xm --as system:serviceaccount:istio-system:istio-citadel-service-account -n istio-system
yes
```
-
+
1. Cleanup
- We can delete these newly defined ClusterRoles and ClusterRoleBindings, and restore original
- ClusterRoles and ClusterRoleBindings according to those recorded copies.
-
+ We can delete these newly defined `ClusterRoles` and `ClusterRoleBindings`, and restore original
+ `ClusterRoles` and `ClusterRoleBindings` according to those recorded copies.
## Using Istio Routing Rules with Ingress
@@ -572,13 +528,13 @@ instead of the expected 10s delay.
You can use other features of the route rules such as redirects, rewrites,
routing to multiple versions, regular expression based match in HTTP
-headers, websocket upgrades, timeouts, retries, etc. Please refer to the
+headers, WebSocket upgrades, timeouts, retries, etc. Please refer to the
[routing rules]({{home}}/docs/reference/config/istio.routing.v1alpha1.html)
for more details.
-> Note 1: Fault injection does not work at the Ingress
-
-> Note 2: When matching requests in the routing rule, use the same exact
+> Fault injection does not work at the Ingress
+>
+> When matching requests in the routing rule, use the same exact
> path or prefix as the one used in the Ingress specification.
## Understanding ingresses
@@ -587,7 +543,7 @@ Ingresses provide gateways for external traffic to enter the Istio service
mesh and make the traffic management and policy features of Istio available
for edge services.
-The servicePort field in the Ingress specification can take a port number
+The `servicePort` field in the Ingress specification can take a port number
(integer) or a name. The port name must follow the Istio port naming
conventions (e.g., `grpc-*`, `http2-*`, `http-*`, etc.) in order to
function properly. The name used must match the port name in the backend
@@ -601,19 +557,18 @@ an Istio route rule.
## Cleanup
1. Remove the secret and Ingress Resource definitions.
-
- ```bash
- kubectl delete ingress simple-ingress secure-ingress
- kubectl delete -n istio-system secret istio-ingress-certs
+
+ ```command
+ $ kubectl delete ingress simple-ingress secure-ingress
+ $ kubectl delete -n istio-system secret istio-ingress-certs
```
1. Shutdown the [httpbin](https://github.com/istio/istio/tree/master/samples/httpbin) service.
- ```bash
- kubectl delete -f samples/httpbin/httpbin.yaml
+ ```command
+ $ kubectl delete -f samples/httpbin/httpbin.yaml
```
-
## What's next
* Learn more about [Ingress Resources](https://kubernetes.io/docs/concepts/services-networking/ingress/).
diff --git a/_docs/tasks/traffic-management/mirroring.md b/_docs/tasks/traffic-management/mirroring.md
index 2aec571cdb0bb..265ef8c0df190 100644
--- a/_docs/tasks/traffic-management/mirroring.md
+++ b/_docs/tasks/traffic-management/mirroring.md
@@ -1,21 +1,20 @@
---
title: Mirroring
-overview: This task demonstrates the traffic shadowing/mirroring capabilities of Istio
+description: Demonstrates Istio's traffic shadowing/mirroring capabilities
-order: 60
+weight: 60
-layout: docs
-type: markdown
---
+{% include home.html %}
-This task demonstrates the traffic shadowing/mirroring capabilites of Istio. Traffic mirroring is a powerful concept that allows feature teams to bring changes to production with as little risk as possible. Mirroring brings a copy of live traffic to a mirrored service and happens out of band of the critical request path for the primary service.
-
+This task demonstrates Istio's traffic shadowing/mirroring capabilities. Traffic mirroring is a powerful concept that allows feature teams to bring
+changes to production with as little risk as possible. Mirroring brings a copy of live traffic to a mirrored service and happens out of band of the critical request path for the primary service.
## Before you begin
* Setup Istio by following the instructions in the
[Installation guide]({{home}}/docs/setup/).
-
+
* Start two versions of the `httpbin` service that have access logging enabled
httpbin-v1:
@@ -86,14 +85,12 @@ spec:
selector:
app: httpbin
EOF
-```
-
-
+```
* Start the `sleep` service so we can use `curl` to provide load
sleep service:
- ```bash
+```bash
cat < Note: This task assumes you are deploying the application on Kubernetes.
- All of the example commands are using the Kubernetes version of the rule yaml files
- (e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
- task in a different environment, change `kube` to the directory that corresponds
- to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
- the Consul-based runtime).
+> This task assumes you are deploying the application on Kubernetes.
+All of the example commands are using the Kubernetes version of the rule yaml files
+(e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
+task in a different environment, change `kube` to the directory that corresponds
+to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
+the Consul-based runtime).
## Content-based routing
@@ -34,25 +33,23 @@ star ratings.
This is because without an explicit default version set, Istio will
route requests to all available versions of a service in a random fashion.
-> Note: This task assumes you don't have any routes set yet. If you've already created conflicting route rules for the sample,
- you'll need to use `replace` rather than `create` in one or both of the following commands.
+> This task assumes you don't have any routes set yet. If you've already created conflicting route rules for the sample,
+you'll need to use `replace` rather than `create` in one or both of the following commands.
1. Set the default version for all microservices to v1.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
```
- > Note: In a Kubernetes deployment of Istio, you can replace `istioctl`
+ > In a Kubernetes deployment of Istio, you can replace `istioctl`
> with `kubectl` in the above, and for all other CLI commands.
> Note, however, that `kubectl` currently does not provide input validation.
You can display the routes that are defined with the following command:
- ```bash
- istioctl get routerules -o yaml
- ```
- ```yaml
+ ```command-output-as-yaml
+ $ istioctl get routerules -o yaml
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -124,16 +121,14 @@ route requests to all available versions of a service in a random fashion.
Lets enable the ratings service for test user "jason" by routing productpage traffic to
`reviews:v2` instances.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
```
Confirm the rule is created:
- ```bash
- istioctl get routerule reviews-test-v2 -o yaml
- ```
- ```yaml
+ ```command-output-as-yaml
+ $ istioctl get routerule reviews-test-v2 -o yaml
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -172,9 +167,9 @@ all users to v2, optionally in a gradual fashion. We'll explore this in a separa
* Remove the application routing rules.
- ```bash
- istioctl delete -f samples/bookinfo/kube/route-rule-all-v1.yaml
- istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-reviews-test-v2.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
diff --git a/_docs/tasks/traffic-management/request-timeouts.md b/_docs/tasks/traffic-management/request-timeouts.md
index c2a53883bb0ed..fca08844b098e 100644
--- a/_docs/tasks/traffic-management/request-timeouts.md
+++ b/_docs/tasks/traffic-management/request-timeouts.md
@@ -1,17 +1,14 @@
---
title: Setting Request Timeouts
-overview: This task shows you how to setup request timeouts in Envoy using Istio.
-
-order: 28
+description: This task shows you how to setup request timeouts in Envoy using Istio.
+
+weight: 28
-layout: docs
-type: markdown
---
{% include home.html %}
This task shows you how to setup request timeouts in Envoy using Istio.
-
## Before you begin
* Setup Istio by following the instructions in the
@@ -21,16 +18,16 @@ This task shows you how to setup request timeouts in Envoy using Istio.
* Initialize the application version routing by running the following command:
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
```
-> Note: This task assumes you are deploying the application on Kubernetes.
- All of the example commands are using the Kubernetes version of the rule yaml files
- (e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
- task in a different environment, change `kube` to the directory that corresponds
- to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
- the Consul-based runtime).
+> This task assumes you are deploying the application on Kubernetes.
+All of the example commands are using the Kubernetes version of the rule yaml files
+(e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
+task in a different environment, change `kube` to the directory that corresponds
+to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
+the Consul-based runtime).
## Request timeouts
@@ -39,7 +36,7 @@ By default, the timeout is 15 seconds, but in this task we'll override the `revi
timeout to 1 second.
To see its effect, however, we'll also introduce an artificial 2 second delay in calls
to the `ratings` service.
-
+
1. Route requests to v2 of the `reviews` service, i.e., a version that calls the `ratings` service
```bash
@@ -84,7 +81,7 @@ to the `ratings` service.
but there is a 2 second delay whenever you refresh the page.
1. Now add a 1 second request timeout for calls to the `reviews` service
-
+
```bash
cat < Note: This task assumes you are deploying the application on Kubernetes.
- All of the example commands are using the Kubernetes version of the rule yaml files
- (e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
- task in a different environment, change `kube` to the directory that corresponds
- to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
- the Consul-based runtime).
+> This task assumes you are deploying the application on Kubernetes.
+All of the example commands are using the Kubernetes version of the rule yaml files
+(e.g., `samples/bookinfo/kube/route-rule-all-v1.yaml`). If you are running this
+task in a different environment, change `kube` to the directory that corresponds
+to your runtime (e.g., `samples/bookinfo/consul/route-rule-all-v1.yaml` for
+the Consul-based runtime).
## Weight-based version routing
1. Set the default version for all microservices to v1.
- ```bash
- istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ ```command
+ $ istioctl create -f samples/bookinfo/kube/route-rule-all-v1.yaml
```
1. Confirm v1 is the active version of the `reviews` service by opening http://$GATEWAY_URL/productpage in your browser.
@@ -42,27 +40,25 @@ two steps: 50%, 100%.
You should see the Bookinfo application productpage displayed.
Notice that the `productpage` is displayed with no rating stars since `reviews:v1` does not access the ratings service.
- > Note: If you previously ran the [request routing](./request-routing.html) task, you may need to either log out
- as test user "jason" or delete the test rules that were created exclusively for him:
+ > If you previously ran the [request routing](./request-routing.html) task, you may need to either log out
+ as test user "jason" or delete the test rules that were created exclusively for him:
- ```bash
- istioctl delete routerule reviews-test-v2
+ ```command
+ $ istioctl delete routerule reviews-test-v2
```
1. First, transfer 50% of the traffic from `reviews:v1` to `reviews:v3` with the following command:
- ```bash
- istioctl replace -f samples/bookinfo/kube/route-rule-reviews-50-v3.yaml
+ ```command
+ $ istioctl replace -f samples/bookinfo/kube/route-rule-reviews-50-v3.yaml
```
Notice that we are using `istioctl replace` instead of `create`.
Confirm the rule was replaced:
- ```bash
- istioctl get routerule reviews-default -o yaml
- ```
- ```yaml
+ ```command-output-as-yaml
+ $ istioctl get routerule reviews-default -o yaml
apiVersion: config.istio.io/v1alpha2
kind: RouteRule
metadata:
@@ -83,13 +79,13 @@ two steps: 50%, 100%.
1. Refresh the `productpage` in your browser and you should now see *red* colored star ratings approximately 50% of the time.
- > Note: With the current Envoy sidecar implementation, you may need to refresh the `productpage` very many times
+ > With the current Envoy sidecar implementation, you may need to refresh the `productpage` very many times
> to see the proper distribution. It may require 15 refreshes or more before you see any change. You can modify the rules to route 90% of the traffic to v3 to see red stars more often.
1. When version v3 of the `reviews` microservice is considered stable, we can route 100% of the traffic to `reviews:v3`:
- ```bash
- istioctl replace -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
+ ```command
+ $ istioctl replace -f samples/bookinfo/kube/route-rule-reviews-v3.yaml
```
You can now log into the `productpage` as any user and you should always see book reviews
@@ -108,8 +104,8 @@ For more about version routing with autoscaling, check out [Canary Deployments u
* Remove the application routing rules.
- ```bash
- istioctl delete -f samples/bookinfo/kube/route-rule-all-v1.yaml
+ ```command
+ $ istioctl delete -f samples/bookinfo/kube/route-rule-all-v1.yaml
```
* If you are not planning to explore any follow-on tasks, refer to the
@@ -118,4 +114,4 @@ For more about version routing with autoscaling, check out [Canary Deployments u
## What's next
-* Learn more about [request routing]({{home}}/docs/concepts/traffic-management/rules-configuration.html).
+* Learn more about [request routing]({{home}}/docs/concepts/traffic-management/request-routing.html).
diff --git a/_faq/general/how-do-i-contribute.md b/_faq/general/how-do-i-contribute.md
index 046e6a1d3ca77..a8485b5bf97f8 100644
--- a/_faq/general/how-do-i-contribute.md
+++ b/_faq/general/how-do-i-contribute.md
@@ -1,7 +1,6 @@
---
title: How can I contribute?
-order: 70
-type: markdown
+weight: 70
---
{% include home.html %}
@@ -9,5 +8,5 @@ Contributions are highly welcome. We look forward to community feedback, additio
The code repositories are hosted on [GitHub](https://github.com/istio). Please see our[Contribution Guidelines](https://github.com/istio/community/blob/master/CONTRIBUTING.md) to learn how to contribute.
-In addition to the code, there are other ways to contribute to the Istio [community]({{home}}/community), including on
+In addition to the code, there are other ways to contribute to the Istio [community]({{home}}/community.html), including on
[Stack Overflow](https://stackoverflow.com/questions/tagged/istio), and the [mailing list](https://groups.google.com/forum/#!forum/istio-users).
diff --git a/_faq/general/how-do-i-get-started.md b/_faq/general/how-do-i-get-started.md
index 7172e10a85048..05889f3c9169b 100644
--- a/_faq/general/how-do-i-get-started.md
+++ b/_faq/general/how-do-i-get-started.md
@@ -1,7 +1,6 @@
---
title: How do I get started using Istio?
-order: 30
-type: markdown
+weight: 30
---
{% include home.html %}
diff --git a/_faq/general/how-was-istio-started.md b/_faq/general/how-was-istio-started.md
index c087c2f8ae393..1e1bd1efa993f 100644
--- a/_faq/general/how-was-istio-started.md
+++ b/_faq/general/how-was-istio-started.md
@@ -1,7 +1,6 @@
---
title: How was Istio started?
-order: 50
-type: markdown
+weight: 50
---
{% include home.html %}
diff --git a/_faq/general/istio-doesnt-work.md b/_faq/general/istio-doesnt-work.md
index b1ee18cc0766e..3abcb6bee0bfc 100644
--- a/_faq/general/istio-doesnt-work.md
+++ b/_faq/general/istio-doesnt-work.md
@@ -1,7 +1,6 @@
---
title: Istio doesn't work - what do I do?
-order: 90
-type: markdown
+weight: 90
---
{% include home.html %}
diff --git a/_faq/general/istio-partners-and-vendors.md b/_faq/general/istio-partners-and-vendors.md
index d9d775dd32779..8c50fd49bf5e4 100644
--- a/_faq/general/istio-partners-and-vendors.md
+++ b/_faq/general/istio-partners-and-vendors.md
@@ -1,12 +1,8 @@
---
title: How can I discover more about Partner and Vendor opportunities?
-order: 75
-type: markdown
+weight: 75
---
{% include home.html %}
-
If you'd like to speak to the Istio team about a potential integration
and/or a partnership opportunity, please complete this [form](https://goo.gl/forms/ax2SdpC6FpVh9Th02).
-
-
diff --git a/_faq/general/roadmap.md b/_faq/general/roadmap.md
index bf5f4fe99965d..c7f045460ca6a 100644
--- a/_faq/general/roadmap.md
+++ b/_faq/general/roadmap.md
@@ -1,7 +1,6 @@
---
title: What is Istio's roadmap?
-order: 140
-type: markdown
+weight: 140
---
{% include home.html %}
diff --git a/_faq/general/what-deployment-environment.md b/_faq/general/what-deployment-environment.md
index 1ed655e0ce9e6..1e42ae36361ba 100644
--- a/_faq/general/what-deployment-environment.md
+++ b/_faq/general/what-deployment-environment.md
@@ -1,11 +1,10 @@
---
title: What deployment environments are supported?
-order: 60
-type: markdown
+weight: 60
---
{% include home.html %}
-Istio is designed and built to be platform-independent. For our
-{{ site.data.istio.version }} release, Istio supports environments running
+Istio is designed and built to be platform-independent. For our
+{{site.data.istio.version}} release, Istio supports environments running
container orchestration platforms such as Kubernetes (v1.7.4 or greater)
and Nomad (with Consul).
diff --git a/_faq/general/what-does-istio-mean.md b/_faq/general/what-does-istio-mean.md
index 1585315cebf95..8f69f7c519546 100644
--- a/_faq/general/what-does-istio-mean.md
+++ b/_faq/general/what-does-istio-mean.md
@@ -1,7 +1,6 @@
---
title: What does the word 'Istio' mean?
-order: 160
-type: markdown
+weight: 160
---
{% include home.html %}
diff --git a/_faq/general/what-is-istio.md b/_faq/general/what-is-istio.md
index 1c5f8afcc68d3..7808a159faedd 100644
--- a/_faq/general/what-is-istio.md
+++ b/_faq/general/what-is-istio.md
@@ -1,7 +1,6 @@
---
title: What is Istio?
-order: 10
-type: markdown
+weight: 10
---
{% include home.html %}
@@ -9,7 +8,7 @@ Istio is an open platform-independent service mesh that provides traffic managem
*Open*: Istio is being developed and maintained as open-source software. We encourage contributions and feedback from the community at-large.
-*Platform-independent*: Istio is not targeted at any specific deployment environment. During the initial stages of development, Istio will support
+*Platform-independent*: Istio is not targeted at any specific deployment environment. During the initial stages of development, Istio will support
Kubernetes-based deployments. However, Istio is being built to enable rapid and easy adaptation to other environments.
*Service mesh*: Istio is designed to manage communications between microservices and applications. Without requiring changes to the underlying services, Istio provides automated baseline traffic resilience, service metrics collection, distributed tracing, traffic encryption, protocol upgrades, and advanced routing functionality for all service-to-service communication.
diff --git a/_faq/general/what-is-the-license.md b/_faq/general/what-is-the-license.md
index 6edf7f9a40c0a..b5024f35276cb 100644
--- a/_faq/general/what-is-the-license.md
+++ b/_faq/general/what-is-the-license.md
@@ -1,7 +1,6 @@
---
title: What is the license?
-order: 40
-type: markdown
+weight: 40
---
{% include home.html %}
diff --git a/_faq/general/where-is-the-documentation.md b/_faq/general/where-is-the-documentation.md
index 39dc0e175cc72..3d3d3ccdfe1b6 100644
--- a/_faq/general/where-is-the-documentation.md
+++ b/_faq/general/where-is-the-documentation.md
@@ -1,21 +1,13 @@
---
title: Where is the documentation?
-order: 80
-type: markdown
+weight: 80
---
{% include home.html %}
Check out the [documentation]({{home}}/docs/) right here on istio.io. The docs include
[concept overviews]({{home}}/docs/concepts/),
-[task guides]({{home}}/docs/tasks/),
+[task guides]({{home}}/docs/tasks/),
[guides]({{home}}/docs/guides/),
and the [complete reference documentation]({{home}}/docs/reference/).
-Detailed developer-level documentation is maintained for each component in GitHub, alongside the code. Please visit each repository for those docs:
-
-* [Envoy](https://envoyproxy.github.io/envoy/)
-
-* [Pilot](https://github.com/istio/istio/tree/master/pilot/doc)
-
-* [Mixer](https://github.com/istio/istio/tree/master/mixer/doc)
-
+Detailed developer-level documentation is maintained on our [Wiki](https://github.com/istio/istio/wiki)
diff --git a/_faq/general/why-use-istio.md b/_faq/general/why-use-istio.md
index 851fa23c69de6..6f21b6257f64a 100644
--- a/_faq/general/why-use-istio.md
+++ b/_faq/general/why-use-istio.md
@@ -1,7 +1,6 @@
---
title: Why would I want to use Istio?
-order: 20
-type: markdown
+weight: 20
---
{% include home.html %}
diff --git a/_faq/mixer/attribute-expressions.md b/_faq/mixer/attribute-expressions.md
index 6efda9280b690..e7a73c20b4a4e 100644
--- a/_faq/mixer/attribute-expressions.md
+++ b/_faq/mixer/attribute-expressions.md
@@ -1,7 +1,6 @@
---
title: What is the full set of attribute expressions Mixer supports?
-order: 20
-type: markdown
+weight: 20
---
{% include home.html %}
diff --git a/_faq/mixer/mixer-self-monitoring.md b/_faq/mixer/mixer-self-monitoring.md
index e5539eef51f24..d771d3a0db6a2 100644
--- a/_faq/mixer/mixer-self-monitoring.md
+++ b/_faq/mixer/mixer-self-monitoring.md
@@ -1,7 +1,6 @@
---
title: Does Mixer provide any self-monitoring?
-order: 30
-type: markdown
+weight: 30
---
{% include home.html %}
@@ -17,8 +16,8 @@ function:
Mixer logs can be accessed via a `kubectl logs` command, as follows:
-```bash
-kubectl -n istio-system logs $(kubectl -n istio-system get pods -listio=mixer -o jsonpath='{.items[0].metadata.name}') mixer
+```command
+$ kubectl -n istio-system logs $(kubectl -n istio-system get pods -listio=mixer -o jsonpath='{.items[0].metadata.name}') mixer
```
Mixer trace generation is controlled by the command-line flag `traceOutput`. If
the flag value is set to `STDOUT` or `STDERR` trace data will be written
diff --git a/_faq/mixer/seeing-mixer-config.md b/_faq/mixer/seeing-mixer-config.md
index a8bcfeea6d319..6a197d75ec090 100644
--- a/_faq/mixer/seeing-mixer-config.md
+++ b/_faq/mixer/seeing-mixer-config.md
@@ -1,26 +1,20 @@
---
-title: How do I see all of the configuration for Mixer?
-order: 10
-type: markdown
+title: How do I see all Mixer's configuration?
+weight: 10
---
{% include home.html %}
Configuration for *instances*, *handlers*, and *rules* is stored as Kubernetes
[Custom Resources](https://kubernetes.io/docs/concepts/api-extension/custom-resources/).
-Configuration may be accessed by using `kubectl` to query the Kubernetes [API
-server](https://kubernetes.io/docs/admin/kube-apiserver/) for the resources.
+Configuration may be accessed by using `kubectl` to query the Kubernetes
+API server for the resources.
-#### Rules
+## Rules
To see the list of all rules, execute the following:
-```bash
-kubectl get rules --all-namespaces
-```
-
-Output will be similar to:
-
-```
+```command
+$ kubectl get rules --all-namespaces
NAMESPACE NAME KIND
default mongoprom rule.v1alpha2.config.istio.io
istio-system promhttp rule.v1alpha2.config.istio.io
@@ -30,11 +24,11 @@ istio-system stdio rule.v1alpha2.config.istio.io
To see an individual rule configuration, execute the following:
-```bash
-kubectl -n get rules -o yaml
+```command
+$ kubectl -n get rules -o yaml
```
-#### Handlers
+## Handlers
Handlers are defined based on Kubernetes [Custom Resource
Definitions](https://kubernetes.io/docs/concepts/api-extension/custom-resources/#customresourcedefinitions)
@@ -42,13 +36,8 @@ for adapters.
First, identify the list of adapter kinds:
-```bash
-kubectl get crd -listio=mixer-adapter
-```
-
-The output will be similar to:
-
-```
+```command
+$ kubectl get crd -listio=mixer-adapter
NAME KIND
deniers.config.istio.io CustomResourceDefinition.v1beta1.apiextensions.k8s.io
listcheckers.config.istio.io CustomResourceDefinition.v1beta1.apiextensions.k8s.io
@@ -63,24 +52,24 @@ svcctrls.config.istio.io CustomResourceDefinition.v1beta1.apiextensions.k8
Then, for each adapter kind in that list, issue the following command:
-```bash
-kubectl get --all-namespaces
+```command
+$ kubectl get --all-namespaces
```
Output for `stdios` will be similar to:
-```
+```plain
NAMESPACE NAME KIND
istio-system handler stdio.v1alpha2.config.istio.io
```
To see an individual handler configuration, execute the following:
-```bash
-kubectl -n get -o yaml
+```command
+$ kubectl -n get -o yaml
```
-#### Instances
+## Instances
Instances are defined according to Kubernetes [Custom Resource
Definitions](https://kubernetes.io/docs/concepts/api-extension/custom-resources/#customresourcedefinitions)
@@ -88,13 +77,8 @@ for instances.
First, identify the list of instance kinds:
-```bash
-kubectl get crd -listio=mixer-instance
-```
-
-The output will be similar to:
-
-```
+```command
+$ kubectl get crd -listio=mixer-instance
NAME KIND
checknothings.config.istio.io CustomResourceDefinition.v1beta1.apiextensions.k8s.io
listentries.config.istio.io CustomResourceDefinition.v1beta1.apiextensions.k8s.io
@@ -106,13 +90,13 @@ reportnothings.config.istio.io CustomResourceDefinition.v1beta1.apiextensions.
Then, for each instance kind in that list, issue the following command:
-```bash
-kubectl get --all-namespaces
+```command
+$ kubectl get --all-namespaces
```
Output for `metrics` will be similar to:
-```
+```plain
NAMESPACE NAME KIND
default mongoreceivedbytes metric.v1alpha2.config.istio.io
default mongosentbytes metric.v1alpha2.config.istio.io
@@ -126,6 +110,6 @@ istio-system tcpbytesent metric.v1alpha2.config.istio.io
To see an individual instance configuration, execute the following:
-```bash
-kubectl -n get -o yaml
+```command
+$ kubectl -n get -o yaml
```
diff --git a/_faq/mixer/why-mixer.md b/_faq/mixer/why-mixer.md
index 0b61ac8788417..c056304b80d1a 100644
--- a/_faq/mixer/why-mixer.md
+++ b/_faq/mixer/why-mixer.md
@@ -1,7 +1,6 @@
---
title: Why does Istio need Mixer?
-order: 0
-type: markdown
+weight: 1
---
{% include home.html %}
@@ -18,7 +17,7 @@ requirements. Keeping the components separate enables independent component-appr
- *Resource Usage*.
Istio depends on being able to deploy many instances of its proxy, making it important to minimize the
-cost of each individual instance. Moving Mixer's complex logic into a distinct component makes it
+cost of each individual instance. Moving Mixer's complex logic into a distinct component makes it
possible for Envoy to remain svelte and agile.
- *Reliability*.
@@ -28,7 +27,7 @@ it creates distinct failure domains which enables Envoy to continue operating ev
fails, preventing outages.
- *Isolation*.
-Mixer provides a level of insulation between Istio and the infrastructure backends. Each Envoy instance can be configured to have a
+Mixer provides a level of insulation between Istio and the infrastructure backends. Each Envoy instance can be configured to have a
very narrow scope of interaction, limiting the impact of potential attacks.
- *Extensibility*.
diff --git a/_faq/mixer/writing-custom-adapters.md b/_faq/mixer/writing-custom-adapters.md
index 70ceb25826818..a0a4482cb89aa 100644
--- a/_faq/mixer/writing-custom-adapters.md
+++ b/_faq/mixer/writing-custom-adapters.md
@@ -1,9 +1,8 @@
---
title: How can I write a custom adapter for Mixer?
-order: 40
-type: markdown
+weight: 40
---
{% include home.html %}
Learn how to implement a new adapter for Mixer by consulting the
-[Adapter Developer's Guide](https://github.com/istio/istio/blob/master/mixer/doc/adapters.md).
+[Adapter Developer's Guide](https://github.com/istio/istio/wiki/Mixer-Adapter-Dev-Guide).
diff --git a/_faq/security/accessing-control-services.md b/_faq/security/accessing-control-services.md
index 9574ea2b31a65..0144fe1553eff 100644
--- a/_faq/security/accessing-control-services.md
+++ b/_faq/security/accessing-control-services.md
@@ -1,7 +1,6 @@
---
title: How to disable Auth on clients to access the Kubernetes API Server (or any control services that don't have Istio sidecar)?
-order: 60
-type: markdown
+weight: 60
---
Starting with release 0.3, edit the `mtlsExcludedServices` list in Istio config
@@ -11,11 +10,11 @@ already contains `kubernetes.default.svc.cluster.local`, which is the default
service name of the Kubernetes API server.
For a quick reference, here are commands to edit Istio configmap and to restart pilot.
-```bash
-kubectl edit configmap -n istio-system istio
-kubectl delete pods -n istio-system -l istio=pilot
+```command
+$ kubectl edit configmap -n istio-system istio
+$ kubectl delete pods -n istio-system -l istio=pilot
```
-> Note: DO NOT use this approach to disable mTLS for services that are managed
+> Do not use this approach to disable mTLS for services that are managed
by Istio (i.e. using Istio sidecar). Instead, use service-level annotations
to overwrite the authentication policy (see above).
diff --git a/_faq/security/auth-mix-and-match.md b/_faq/security/auth-mix-and-match.md
index 44b787aa9fcd0..a565619959d6b 100644
--- a/_faq/security/auth-mix-and-match.md
+++ b/_faq/security/auth-mix-and-match.md
@@ -1,9 +1,8 @@
---
title: Can I enable Istio Auth with some services while disable others in the same cluster?
-order: 30
-type: markdown
+weight: 30
---
-Starting with release 0.3, you can use service-level annotations to disable (or enable) Istio Auth for particular service-port.
+Starting with release 0.3, you can use service-level annotations to disable (or enable) Istio Auth for particular service-port.
The annotation key should be `auth.istio.io/{port_number}`, and the value should be `NONE` (to disable), or `MUTUAL_TLS` (to enable).
Example: disable Istio Auth on port 9080 for service `details`.
diff --git a/_faq/security/cert-lifetime-config.md b/_faq/security/cert-lifetime-config.md
new file mode 100644
index 0000000000000..98152ef4bbd0b
--- /dev/null
+++ b/_faq/security/cert-lifetime-config.md
@@ -0,0 +1,61 @@
+---
+title: How to configure the lifetime for Istio certificates?
+weight: 70
+---
+{% include home.html %}
+
+For the workloads running in Kubernetes, the lifetime of their Istio certificates is controlled by the
+`workload-cert-ttl` flag on Citadel. The default value is 19 hours. This value should be no greater than
+`max-workload-cert-ttl` of Citadel.
+
+Citadel uses a flag `max-workload-cert-ttl` to control the maximum lifetime for Istio certificates issued to
+workloads. The default value is 7 days. If `workload-cert-ttl` on Citadel or node agent is greater than
+`max-workload-cert-ttl`, Citadel will fail issuing the certificate.
+
+Modify the `istio-auth.yaml` file to customize the Citadel configuration.
+The following modification specifies that the Istio certificates for workloads running in Kubernetes
+has 1 hours lifetime. Besides that, the maximum allowed Istio certificate lifetime is 48 hours.
+
+```plain
+...
+kind: Deployment
+...
+metadata:
+ name: istio-citadel
+ namespace: istio-system
+spec:
+ ...
+ template:
+ ...
+ spec:
+ ...
+ containers:
+ - name: citadel
+ ...
+ args:
+ - --workload-cert-ttl=1h # Lifetime of certificates issued to workloads in Kubernetes.
+ - --max-workload-cert-ttl=48h # Maximum lifetime of certificates issued to workloads by Citadel.
+```
+
+For the workloads running on VMs and bare metal hosts, the lifetime of their Istio certificates is specified by the
+`workload-cert-ttl` flag on each node agent. The default value is also 19 hours. This value should be no greater than
+`max-workload-cert-ttl` of Citadel.
+
+To customize this configuration, the argument for the node agent service should be modified.
+After [setting up the machines]({{home}}/docs/setup/kubernetes/mesh-expansion.html#setting-up-the-machines) for Istio
+mesh expansion, modify the file `/lib/systemd/system/istio-auth-node-agent.service` on the VMs or bare metal hosts:
+
+```plain
+...
+[Service]
+ExecStart=/usr/local/bin/node_agent --workload-cert-ttl=24h # Specify certificate lifetime for workloads on this machine.
+Restart=always
+StartLimitInterval=0
+RestartSec=10
+...
+```
+
+The above configuration specifies that the Istio certificates for workloads running on this VM or bare metal host
+will have 24 hours lifetime.
+
+After configuring the service, restart the node agent by running `systemctl daemon-reload`.
diff --git a/_faq/security/does-istio-support-authorization.md b/_faq/security/does-istio-support-authorization.md
index 0be72b64ab1de..67a128ea9868b 100644
--- a/_faq/security/does-istio-support-authorization.md
+++ b/_faq/security/does-istio-support-authorization.md
@@ -1,7 +1,6 @@
---
title: Does Istio Auth support authorization?
-order: 110
-type: markdown
+weight: 110
---
{% include home.html %}
diff --git a/_faq/security/enabling-disabling-mtls.md b/_faq/security/enabling-disabling-mtls.md
index 927bc1babf384..0c5718b5306cc 100644
--- a/_faq/security/enabling-disabling-mtls.md
+++ b/_faq/security/enabling-disabling-mtls.md
@@ -1,7 +1,6 @@
---
title: How can I enable/disable mTLS encryption after I installed Istio?
-order: 10
-type: markdown
+weight: 10
---
{% include home.html %}
@@ -10,14 +9,14 @@ uninstalling and re-installing Istio.
If you are an advanced user and understand the risks you can also do the following:
-```bash
-kubectl edit configmap -n istio-system istio
+```command
+$ kubectl edit configmap -n istio-system istio
```
-comment out or uncomment out `authPolicy: MUTUAL_TLS` to toggle mTLS and then
+comment out or uncomment `authPolicy: MUTUAL_TLS` to toggle mTLS and then
-```bash
-kubectl delete pods -n istio-system -l istio=pilot
+```command
+$ kubectl delete pods -n istio-system -l istio=pilot
```
to restart Pilot, after a few seconds (depending on your `*RefreshDelay`) your
diff --git a/_faq/security/https-overlay.md b/_faq/security/https-overlay.md
new file mode 100644
index 0000000000000..cb3234e23273b
--- /dev/null
+++ b/_faq/security/https-overlay.md
@@ -0,0 +1,8 @@
+---
+title: Can I install Istio sidecar for HTTPS services?
+weight: 170
+---
+{% include home.html %}
+
+Yes, you can. It works both with mutual TLS enabled and disabled. Refer to
+[how Istio mTLS works with HTTPS services]({{home}}/docs/tasks/security/https-overlay.html) for more information.
diff --git a/_faq/security/istio-to-not-istio.md b/_faq/security/istio-to-not-istio.md
index f99183bf552a9..d1649695c68ca 100644
--- a/_faq/security/istio-to-not-istio.md
+++ b/_faq/security/istio-to-not-istio.md
@@ -1,6 +1,5 @@
---
-title: Can a service with Istio Auth enabled communicate with a service without Istio?
-order: 20
-type: markdown
+title: Can a service with Istio Auth enabled communicate with a service without Istio?
+weight: 20
---
This is not supported currently, but will be in the near future.
diff --git a/_faq/security/k8s-api-server.md b/_faq/security/k8s-api-server.md
index 3e58db79e3f3d..e21daa60cb5da 100644
--- a/_faq/security/k8s-api-server.md
+++ b/_faq/security/k8s-api-server.md
@@ -1,7 +1,6 @@
---
title: Can I access the Kubernetes API Server with Auth enabled?
-order: 50
-type: markdown
+weight: 50
---
The Kubernetes API server does not support mutual TLS authentication, so
strictly speaking: no. However, if you use version 0.3 or later, see next
diff --git a/_faq/security/k8s-health-checks.md b/_faq/security/k8s-health-checks.md
index c81d5a207d578..1999a40bd868f 100644
--- a/_faq/security/k8s-health-checks.md
+++ b/_faq/security/k8s-health-checks.md
@@ -1,7 +1,6 @@
---
title: How can I use Kubernetes liveness and readiness for service health check with Istio Auth enabled?
-order: 40
-type: markdown
+weight: 40
---
If Istio Auth is enabled, http and tcp health check from kubelet will not
work since they do not have Istio Auth issued certs. A workaround is to
diff --git a/_faq/security/secret-encryption.md b/_faq/security/secret-encryption.md
new file mode 100644
index 0000000000000..edcd7d63d20a2
--- /dev/null
+++ b/_faq/security/secret-encryption.md
@@ -0,0 +1,9 @@
+---
+title: Is the secret encrypted for workload key and cert?
+weight: 125
+---
+{% include home.html %}
+
+By default, they are base64 encoded but not encrypted. However, the [secret encryption feature](https://kubernetes.io/docs/tasks/administer-cluster/encrypt-data/) is supported in Kubernetes and you can do it by following the instruction.
+
+Notice that this feature is not enabled yet in Google Container Engine (GKE). While the data may not be encrypted inside the etcd running on the master node, the contents of the master node itself are encrypted, see [here](https://cloud.google.com/security/encryption-at-rest/default-encryption/#encryption_of_data_at_rest) for more info.
diff --git a/_faq/security/secure-ingress.md b/_faq/security/secure-ingress.md
index d3953f0654183..cdbd9c4a0b910 100644
--- a/_faq/security/secure-ingress.md
+++ b/_faq/security/secure-ingress.md
@@ -1,7 +1,6 @@
---
title: How to configure Istio Ingress to only accept TLS traffic?
-order: 130
-type: markdown
+weight: 130
---
{% include home.html %}
diff --git a/_faq/security/use-k8s-secrets.md b/_faq/security/use-k8s-secrets.md
index a8dfc145b1443..7bc09b6726b48 100644
--- a/_faq/security/use-k8s-secrets.md
+++ b/_faq/security/use-k8s-secrets.md
@@ -1,12 +1,12 @@
---
title: Does Istio Auth use Kubernetes secrets?
-order: 120
-type: markdown
+weight: 120
---
{% include home.html %}
Yes. The key and certificate distribution in Istio Auth is based on [Kubernetes secrets](https://kubernetes.io/docs/concepts/configuration/secret/).
-Secrets have known [security risks](https://kubernetes.io/docs/concepts/configuration/secret/#risks). The kubernetes team is working on [several features](https://docs.google.com/document/d/1T2y-9geg9EfHHtCDYTXptCa-F4kQ0RyiH-c_M1SyD0s) to improve
+Secrets have known [security risks](https://kubernetes.io/docs/concepts/configuration/secret/#risks). The Kubernetes team is working on
+[several features](https://docs.google.com/document/d/1T2y-9geg9EfHHtCDYTXptCa-F4kQ0RyiH-c_M1SyD0s) to improve
Kubernetes secret security, from secret encryption to node-level access control. And as of version 1.6, Kubernetes introduces
[RBAC authorization](https://kubernetes.io/docs/admin/authorization/rbac/), which can provide fine-grained secrets management.
diff --git a/_faq/setup/consul-app-not-working.md b/_faq/setup/consul-app-not-working.md
index 1a3e1be8adeb9..6cc0345243516 100644
--- a/_faq/setup/consul-app-not-working.md
+++ b/_faq/setup/consul-app-not-working.md
@@ -1,8 +1,7 @@
---
title: Consul - My application isn't working, where can I troubleshoot this?
-order: 40
-type: markdown
+weight: 40
---
{% include home.html %}
-Please ensure all required containers are running: etcd, istio-apiserver, consul, registrator, pilot. If one of them is not running, you may find the {containerID} using `docker ps -a` and then use `docker logs {containerID}` to read the logs.
+Please ensure all required containers are running: etcd, istio-apiserver, consul, registrator, pilot. If one of them is not running, you may find the {containerID} using `docker ps -a` and then use `docker logs {containerID}` to read the logs.
diff --git a/_faq/setup/consul-unset-context.md b/_faq/setup/consul-unset-context.md
index 718601a5a3fb9..f651daf9a5f22 100644
--- a/_faq/setup/consul-unset-context.md
+++ b/_faq/setup/consul-unset-context.md
@@ -1,7 +1,6 @@
---
title: Consul - How do I unset the context changed by istioctl at the end?
-order: 50
-type: markdown
+weight: 50
---
{% include home.html %}
diff --git a/_faq/setup/eureka-app-not-working.md b/_faq/setup/eureka-app-not-working.md
index 603f4d21aa6c6..445592587e2e8 100644
--- a/_faq/setup/eureka-app-not-working.md
+++ b/_faq/setup/eureka-app-not-working.md
@@ -1,8 +1,7 @@
---
title: Eureka - My application isn't working, where can I troubleshoot this?
-order: 60
-type: markdown
+weight: 60
---
{% include home.html %}
-Please ensure all required containers are running: etcd, istio-apiserver, consul, registrator, istio-pilot. If one of them is not running, you may find the {containerID} using `docker ps -a` and then use `docker logs {containerID}` to read the logs.
+Please ensure all required containers are running: etcd, istio-apiserver, consul, registrator, istio-pilot. If one of them is not running, you may find the {containerID} using `docker ps -a` and then use `docker logs {containerID}` to read the logs.
diff --git a/_faq/setup/eureka-unset-context.md b/_faq/setup/eureka-unset-context.md
index 25a1b40158ea2..9cdd3b1d4cb36 100644
--- a/_faq/setup/eureka-unset-context.md
+++ b/_faq/setup/eureka-unset-context.md
@@ -1,7 +1,6 @@
---
title: Eureka - How do I unset the context changed by `istioctl` at the end?
-order: 70
-type: markdown
+weight: 70
---
{% include home.html %}
diff --git a/_faq/setup/k8s-checking-cluster-alpha-features.md b/_faq/setup/k8s-checking-cluster-alpha-features.md
index 0c3a718585c62..68adbafacea81 100644
--- a/_faq/setup/k8s-checking-cluster-alpha-features.md
+++ b/_faq/setup/k8s-checking-cluster-alpha-features.md
@@ -1,7 +1,6 @@
---
title: Kubernetes - How do I check if my cluster has enabled the alpha features required for automatic sidecar injection?
-order: 10
-type: markdown
+weight: 10
---
{% include home.html %}
@@ -10,8 +9,8 @@ Automatic sidecar injection requires the
Run the following command to check if the initializer has been enabled
(empty output indicates that initializers are not enabled):
-```bash
-kubectl api-versions | grep admissionregistration
+```command
+$ kubectl api-versions | grep admissionregistration
```
In addition, the Kubernetes API server must be started with the Initializer plugin [enabled](https://kubernetes.io/docs/admin/extensible-admission-controllers/#enable-initializers-alpha-feature). Failure to enable the `Initializer` plugin will result in the following error when trying to create the initializer deployment.
diff --git a/_faq/setup/k8s-migrating.md b/_faq/setup/k8s-migrating.md
index 522da1f72beeb..b22425b3f9389 100644
--- a/_faq/setup/k8s-migrating.md
+++ b/_faq/setup/k8s-migrating.md
@@ -1,8 +1,7 @@
---
-title: Kubernetes - Can I migrate an existing installation from Istio v0.1.x to v0.2.x?
-order: 30
-type: markdown
+title: Kubernetes - Can I migrate an existing installation from Istio 0.1.x to 0.2.x?
+weight: 30
---
{% include home.html %}
-Upgrading from Istio 0.1.x to 0.2.x is not supported. You must uninstall Istio v0.1, _including pods with Istio sidecars_ and start with a fresh install of Istio v0.2.
+Upgrading from Istio 0.1.x to 0.2.x is not supported. You must uninstall Istio 0.1, _including pods with Istio sidecars_ and start with a fresh install of Istio 0.2.
diff --git a/_faq/setup/k8s-sidecar-injection-not-working.md b/_faq/setup/k8s-sidecar-injection-not-working.md
index e040ad50a29ab..73a23a4581098 100644
--- a/_faq/setup/k8s-sidecar-injection-not-working.md
+++ b/_faq/setup/k8s-sidecar-injection-not-working.md
@@ -1,7 +1,6 @@
---
title: Kubernetes - How can I debug problems with automatic sidecar injection?
-order: 20
-type: markdown
+weight: 20
---
{% include home.html %}
diff --git a/_faq/traffic-management/ingress-with-no-route-rules.md b/_faq/traffic-management/ingress-with-no-route-rules.md
index 9814d62225b40..f44190b3f55e1 100644
--- a/_faq/traffic-management/ingress-with-no-route-rules.md
+++ b/_faq/traffic-management/ingress-with-no-route-rules.md
@@ -1,7 +1,6 @@
---
title: Can I use standard Ingress specification without any route rules?
-order: 40
-type: markdown
+weight: 40
---
{% include home.html %}
diff --git a/_faq/traffic-management/unreachable-services.md b/_faq/traffic-management/unreachable-services.md
index 84e38321d5f36..a947440574181 100644
--- a/_faq/traffic-management/unreachable-services.md
+++ b/_faq/traffic-management/unreachable-services.md
@@ -1,9 +1,8 @@
---
title: How come some of my services are unreachable after creating route rules?
-order: 30
-type: markdown
+weight: 30
---
{% include home.html %}
-This is an known issue with the current Envoy sidecar implementation. After two seconds of creating the
+This is an known issue with the current Envoy sidecar implementation. After two seconds of creating the
rule, services should become available.
diff --git a/_faq/traffic-management/viewing-current-rules.md b/_faq/traffic-management/viewing-current-rules.md
index c19819e12ae88..add215237bad2 100644
--- a/_faq/traffic-management/viewing-current-rules.md
+++ b/_faq/traffic-management/viewing-current-rules.md
@@ -1,7 +1,6 @@
---
title: How can I view the current route rules I have configured with Istio?
-order: 10
-type: markdown
+weight: 10
---
{% include home.html %}
diff --git a/_faq/traffic-management/weighted-rules-not-working.md b/_faq/traffic-management/weighted-rules-not-working.md
index efd7080f576a7..ebe19fd12c628 100644
--- a/_faq/traffic-management/weighted-rules-not-working.md
+++ b/_faq/traffic-management/weighted-rules-not-working.md
@@ -1,7 +1,6 @@
---
title: Why is creating a weighted route rule to split traffic between two versions of a service not working as expected?
-order: 20
-type: markdown
+weight: 20
---
{% include home.html %}
diff --git a/_glossary/adapters.md b/_glossary/adapters.md
index 307f6f88cfb99..eb3b72be1b060 100644
--- a/_glossary/adapters.md
+++ b/_glossary/adapters.md
@@ -1,6 +1,5 @@
---
title: Adapters
-type: markdown
---
{% include home.html %}
@@ -10,4 +9,4 @@ monitoring, quotas, ACL checking, and more.
The exact set of adapters used at runtime is determined through configuration and can easily be
extended to target new or custom infrastructure backends.
-[Learn more about adapters]({{home}}/docs/concepts/policy-and-control/mixer.html#adapters).
\ No newline at end of file
+[Learn more about adapters]({{home}}/docs/concepts/policy-and-control/mixer.html#adapters).
diff --git a/_glossary/attribute.md b/_glossary/attribute.md
index 911e1b6af7df0..cfebd53d05a06 100644
--- a/_glossary/attribute.md
+++ b/_glossary/attribute.md
@@ -1,6 +1,5 @@
---
title: Attribute
-type: markdown
---
{% include home.html %}
diff --git a/_glossary/destination.md b/_glossary/destination.md
index a9174d8c657ff..56142dc9a1428 100644
--- a/_glossary/destination.md
+++ b/_glossary/destination.md
@@ -1,6 +1,5 @@
---
title: Destination
-type: markdown
---
The remote upstream service [Envoy](#envoy) is talking to on behalf of a [source](#source) [workload](#workload).
There can be one or more [service versions](#service-version) for a given [service](#service) and Envoy chooses the version based on
diff --git a/_glossary/envoy.md b/_glossary/envoy.md
index 8a2ea10f9da2c..50ddd26d1055c 100644
--- a/_glossary/envoy.md
+++ b/_glossary/envoy.md
@@ -1,6 +1,5 @@
---
title: Envoy
-type: markdown
---
The high-performance proxy that Istio uses to mediate inbound and outbound traffic for all [services](#service) in the
[service mesh](#service-mesh). [Learn more about Envoy](https://envoyproxy.github.io/envoy/).
diff --git a/_glossary/mixer-handler.md b/_glossary/mixer-handler.md
index 6863c25a56bb8..4d58d0b458a5b 100644
--- a/_glossary/mixer-handler.md
+++ b/_glossary/mixer-handler.md
@@ -1,6 +1,5 @@
---
title: Mixer Handler
-type: markdown
---
{% include home.html %}
diff --git a/_glossary/mixer-instance.md b/_glossary/mixer-instance.md
index 96665a8148208..5ee21759012ce 100644
--- a/_glossary/mixer-instance.md
+++ b/_glossary/mixer-instance.md
@@ -1,6 +1,5 @@
---
title: Mixer Instance
-type: markdown
---
{% include home.html %}
diff --git a/_glossary/mixer.md b/_glossary/mixer.md
index 44eba9f4744ab..793d311daa890 100644
--- a/_glossary/mixer.md
+++ b/_glossary/mixer.md
@@ -1,6 +1,5 @@
---
title: Mixer
-type: markdown
---
{% include home.html %}
diff --git a/_glossary/mutual-tls.md b/_glossary/mutual-tls.md
index 3ce556cac2774..819252016ec07 100644
--- a/_glossary/mutual-tls.md
+++ b/_glossary/mutual-tls.md
@@ -1,6 +1,5 @@
---
title: Mutual TLS Authentication
-type: markdown
---
{% include home.html %}
diff --git a/_glossary/pilot.md b/_glossary/pilot.md
index 593e35c0229af..061d4592c8d46 100644
--- a/_glossary/pilot.md
+++ b/_glossary/pilot.md
@@ -1,5 +1,4 @@
---
title: Pilot
-type: markdown
---
The Istio component that programs the [Envoy](#envoy) proxies, responsible for service discovery, load balancing, and routing.
diff --git a/_glossary/secure-naming.md b/_glossary/secure-naming.md
index d3031d272f750..bb87837dfb86d 100644
--- a/_glossary/secure-naming.md
+++ b/_glossary/secure-naming.md
@@ -1,6 +1,5 @@
---
title: Secure Naming
-type: markdown
---
Provides a mapping between a [service name](#service-name) and the [workload principals](#workload-principal) that are authorized to
run the [workloads](#workload) implementing a [service](#service).
diff --git a/_glossary/service-consumer.md b/_glossary/service-consumer.md
index 235eec4f124ba..d5a383b182876 100644
--- a/_glossary/service-consumer.md
+++ b/_glossary/service-consumer.md
@@ -1,5 +1,4 @@
---
title: Service Consumer
-type: markdown
---
The agent that is using a [service](#service).
diff --git a/_glossary/service-endpoint.md b/_glossary/service-endpoint.md
index 044f00261d08a..76a2dee5075e2 100644
--- a/_glossary/service-endpoint.md
+++ b/_glossary/service-endpoint.md
@@ -1,6 +1,5 @@
---
title: Service Endpoint
-type: markdown
---
The network-reachable manifestation of a [service](#service).
Service endpoints are exposed by [workloads](#workload). Not all services have service endpoints.
diff --git a/_glossary/service-mesh.md b/_glossary/service-mesh.md
index ff410e744c05c..b97452fa8cf2e 100644
--- a/_glossary/service-mesh.md
+++ b/_glossary/service-mesh.md
@@ -1,6 +1,5 @@
---
title: Service Mesh
-type: markdown
---
A shared set of names and identities that allows for common policy enforcement and telemetry collection.
[Service names](#service-name) and [workload principals](#workload-principal) are unique within a service mesh.
diff --git a/_glossary/service-name.md b/_glossary/service-name.md
index d3e70de519c7e..f30fc6c8b5258 100644
--- a/_glossary/service-name.md
+++ b/_glossary/service-name.md
@@ -1,6 +1,5 @@
---
title: Service Name
-type: markdown
---
A unique name for a [service](#service), identifying it within the [service mesh](#service-mesh).
A service may not be renamed and maintain its identity, each service name is unique.
diff --git a/_glossary/service-operator.md b/_glossary/service-operator.md
index 9f4e6d87a1cb1..d1e25b1892865 100644
--- a/_glossary/service-operator.md
+++ b/_glossary/service-operator.md
@@ -1,6 +1,5 @@
---
title: Service Operator
-type: markdown
---
The agent that manages a [service](#service) within a [service mesh](#service-mesh) by manipulating configuration state
and monitoring the service's health via a variety of dashboards.
diff --git a/_glossary/service-producer.md b/_glossary/service-producer.md
index 10cd4db92d84c..e59d092cf489c 100644
--- a/_glossary/service-producer.md
+++ b/_glossary/service-producer.md
@@ -1,5 +1,4 @@
---
title: Service Producer
-type: markdown
---
The agent that creates a [service](#service).
diff --git a/_glossary/service-version.md b/_glossary/service-version.md
index c70eda54582e8..862488cad9278 100644
--- a/_glossary/service-version.md
+++ b/_glossary/service-version.md
@@ -1,6 +1,5 @@
---
title: Service Version
-type: markdown
---
Distinct variants of a [service](#service), typically backed by a different versions of a [workload](#workload) binary.
Common scenarios where multiple [service versions](#service-version) may be used include A/B testing, canary rollouts, etc.
diff --git a/_glossary/service.md b/_glossary/service.md
index 650690421222a..c3cb7cc3e6016 100644
--- a/_glossary/service.md
+++ b/_glossary/service.md
@@ -1,6 +1,5 @@
---
title: Service
-type: markdown
---
A delineated group of related behaviors within a [service mesh](#service-mesh). Services are identified using a
[service name](#service-name),
diff --git a/_glossary/source.md b/_glossary/source.md
index 83b890faea8c8..9466770f093c2 100644
--- a/_glossary/source.md
+++ b/_glossary/source.md
@@ -1,8 +1,7 @@
---
title: Source
-type: markdown
---
The downstream client of the [Envoy](#envoy) proxy.
Within the [service mesh](#service-mesh) a source is typically a
-[workload](#workload), but the source for ingress traffic may include other clients such as a
+[workload](#workload), but the source for ingress traffic may include other clients such as a
browser or mobile app.
diff --git a/_glossary/workload-id.md b/_glossary/workload-id.md
index 7a19fad143f06..2e6af7eda36c7 100644
--- a/_glossary/workload-id.md
+++ b/_glossary/workload-id.md
@@ -1,6 +1,5 @@
---
title: Workload ID
-type: markdown
---
A unique identifier for an individual instance of a [workload](#workload).
Like [workload name](#workload-name), the workload ID is not a strongly verified property and should not be used
diff --git a/_glossary/workload-name.md b/_glossary/workload-name.md
index 9258d916f1fcc..d4c5387690345 100644
--- a/_glossary/workload-name.md
+++ b/_glossary/workload-name.md
@@ -1,6 +1,5 @@
---
title: Workload Name
-type: markdown
---
A unique name for a [workload](#workload), identifying it within the [service mesh](#service-mesh).
Unlike the [service name](#service-name) and the [workload principal], the workload name is not a
diff --git a/_glossary/workload-principal.md b/_glossary/workload-principal.md
index 059044f10890f..6a8d2e6ca22e3 100644
--- a/_glossary/workload-principal.md
+++ b/_glossary/workload-principal.md
@@ -1,10 +1,9 @@
---
title: Workload Principal
-type: markdown
---
Identifies the verifiable authority under which a [workload](#workload) runs.
Istio's service-to-service authentication is used to produce the workload principal.
By default workload principals are compliant with the SPIFFE ID format.
* Multiple [workloads](#workload) may share the same workload principal, but each workload has a single canonical workload
- principal
+ principal
* Workload principals are accessible in Istio configuration as the `source.user` and `destination.user` [attributes](#attribute).
diff --git a/_glossary/workload.md b/_glossary/workload.md
index 5500576b7a89c..06851d4afe7f1 100644
--- a/_glossary/workload.md
+++ b/_glossary/workload.md
@@ -1,8 +1,7 @@
---
title: Workload
-type: markdown
---
-A process/binary deployed by operators in Istio, typically represented by entities such as containers, pods, or VMs.
+A process/binary deployed by operators in Istio, typically represented by entities such as containers, pods, or VMs.
* A workload can expose zero or more [service endpoints](#service-endpoint).
* A workload can consume zero or more [services](#service).
* Each workload has a single canonical [service name](#service-name) associated with it, but
diff --git a/_help/bugs.md b/_help/bugs.md
index 0fcc3fbec193b..4747f76f0237d 100644
--- a/_help/bugs.md
+++ b/_help/bugs.md
@@ -1,17 +1,15 @@
---
title: Reporting Bugs
-overview: What to do about bugs
+description: What to do about bugs
-order: 35
+weight: 35
-layout: help
-type: markdown
redirect_from: /bugs
toc: false
---
{% include home.html %}
-Oh no! You found a bug?
+Oh no! You found a bug?
Search our [issue database](https://github.com/istio/issues/issues/) to see if we already know about
your problem and learn about when
diff --git a/_help/faq/general.html b/_help/faq/general.html
index 89c5df50d2f2d..4616e72aa1f55 100644
--- a/_help/faq/general.html
+++ b/_help/faq/general.html
@@ -1,8 +1,8 @@
---
title: General
-overview: General Q&A
+description: General Q&A
-order: 10
+weight: 10
layout: help
---
diff --git a/_help/faq/index.md b/_help/faq/index.md
index 0f1d3e54ac709..6630e01a97ac4 100644
--- a/_help/faq/index.md
+++ b/_help/faq/index.md
@@ -1,11 +1,9 @@
---
title: FAQ
-overview: Frequently Asked Questions about Istio.
+description: Frequently Asked Questions about Istio.
-order: 20
+weight: 20
-layout: help
-type: markdown
toc: false
redirect_from:
@@ -39,7 +37,7 @@ You've got questions? We've got answers!
{% if cat == qcat %}
{% assign name = q.path | downcase | split: '/' | last | remove: ".md" %}
- {{q.title}}
+ {{q.title}}
{% endif %}
{% endfor %}
diff --git a/_help/faq/mixer.html b/_help/faq/mixer.html
index abbc6e6c42783..5f754d07c0dcd 100644
--- a/_help/faq/mixer.html
+++ b/_help/faq/mixer.html
@@ -1,8 +1,8 @@
---
title: Mixer
-overview: Mixer Q&A
+description: Mixer Q&A
-order: 40
+weight: 40
layout: help
---
diff --git a/_help/faq/security.html b/_help/faq/security.html
index 58771291665c2..dab199124ffd6 100644
--- a/_help/faq/security.html
+++ b/_help/faq/security.html
@@ -1,8 +1,8 @@
---
title: Security
-overview: Security Q&A
+description: Security Q&A
-order: 30
+weight: 30
layout: help
---
diff --git a/_help/faq/setup.html b/_help/faq/setup.html
index 242be527b0e3a..4e13965cc0e77 100644
--- a/_help/faq/setup.html
+++ b/_help/faq/setup.html
@@ -1,8 +1,8 @@
---
title: Setup
-overview: Setup Q&A
+description: Setup Q&A
-order: 20
+weight: 20
layout: help
---
diff --git a/_help/faq/traffic-management.html b/_help/faq/traffic-management.html
index 11ae8c2f982ec..ed5f51599ab1a 100644
--- a/_help/faq/traffic-management.html
+++ b/_help/faq/traffic-management.html
@@ -1,8 +1,8 @@
---
title: Traffic Management
-overview: Traffic Management Q&A
+description: Traffic Management Q&A
-order: 50
+weight: 50
layout: help
---
diff --git a/_help/glossary.md b/_help/glossary.md
index f9b2f6527e4f7..f378632e9090f 100644
--- a/_help/glossary.md
+++ b/_help/glossary.md
@@ -1,11 +1,9 @@
---
title: Glossary
-overview: A glossary of common Istio terms.
+description: A glossary of common Istio terms.
-order: 30
+weight: 30
-layout: help
-type: markdown
redirect_from:
- "/glossary"
- "/docs/welcome/glossary.html"
diff --git a/_help/index.md b/_help/index.md
index e664e1cb55892..8f261e78586ac 100644
--- a/_help/index.md
+++ b/_help/index.md
@@ -1,15 +1,22 @@
---
title: Help!
-overview: A bunch of resources to help you deploy, configure and use Istio.
+description: A bunch of resources to help you deploy, configure and use Istio.
-order: 10
+weight: 10
-layout: help
-type: markdown
toc: false
---
+{% include home.html %}
-{% include section-index.html docs=site.help %}
+Here are some resources to help you deploy, configure and use Istio.
-And don't forget our vibrant [community]({{home}}/community) that's always ready to lend a hand
+- [Frequently Asked Questions]({{home}}/help/faq/). You ask 'em, we'll answer 'em.
+
+- [Glossary]({{home}}/help/glossary.html). A glossary of common Istio terms.
+
+- [Reporting Bugs]({{home}}/help/bugs.html). What to do when you find a bug.
+
+- [Troubleshooting Guide]({{home}}/help/troubleshooting.html). Practical advice on practical problems with Istio.
+
+And don't forget our vibrant [community]({{home}}/community.html) that's always ready to lend a hand
with thorny problems.
diff --git a/_help/troubleshooting.md b/_help/troubleshooting.md
index b7964a5ef3816..8e7ff35420392 100644
--- a/_help/troubleshooting.md
+++ b/_help/troubleshooting.md
@@ -1,18 +1,55 @@
---
title: Troubleshooting Guide
-overview: Practical advice on practical problems with Istio
+description: Practical advice on practical problems with Istio
-order: 40
+weight: 40
-layout: help
-type: markdown
redirect_from: /troubleshooting
+force_inline_toc: true
---
{% include home.html %}
Oh no! You're having trouble? Below is a list of solutions to common problems.
+## Verifying connectivity to Istio Pilot
+
+Verifying connectivity to Pilot is a useful troubleshooting step. Every proxy container in the service mesh should be able to communicate with Pilot. This can be accomplished in a few simple steps:
+
+1. Get the name of the Istio Ingress pod:
+
+```command
+$ INGRESS_POD_NAME=$(kubectl get po -n istio-system | grep ingress\- | awk '{print$1}')
+```
+
+1. Exec into the Istio Ingress pod:
+
+```command
+$ kubectl exec -it $INGRESS_POD_NAME -n istio-system /bin/bash
+```
+
+1. Unless you installed Istio using the debug proxy image (`istioctl kube-inject --debug=true`), you need to
+install curl.
+
+```command
+$ apt-get update && apt-get install -y curl
+```
+
+1. Test connectivity to Pilot using cURL. The following example cURL's the v1 registration API using default Pilot configuration parameters and mTLS enabled:
+
+```command
+$ curl -k --cert /etc/certs/cert-chain.pem --cacert /etc/certs/root-cert.pem --key /etc/certs/key.pem https://istio-pilot:15003/v1/registration
+```
+
+If mTLS is disabled:
+
+```command
+$ curl http://istio-pilot:15003/v1/registration
+```
+
+You should receive a response listing the "service-key" and "hosts" for each service in the mesh.
+
## No traces appearing in Zipkin when running Istio locally on Mac
+
Istio is installed and everything seems to be working except there are no traces showing up in Zipkin when there
should be.
@@ -22,10 +59,13 @@ when you select a very long date range in Zipkin you will see the traces appeari
You can also confirm this problem by comparing the date inside a docker container to outside:
-```bash
-docker run --entrypoint date gcr.io/istio-testing/ubuntu-16-04-slave:latest
+```command
+$ docker run --entrypoint date gcr.io/istio-testing/ubuntu-16-04-slave:latest
Sun Jun 11 11:44:18 UTC 2017
-date -u
+```
+
+```command
+$ date -u
Thu Jun 15 02:25:42 UTC 2017
```
@@ -33,11 +73,12 @@ To fix the problem, you'll need to shutdown and then restart Docker before reins
## Envoy won't connect to my HTTP/1.0 service
-Envoy requires HTTP/1.1 or HTTP/2 traffic for upstream services. For example, when using [NGINX](https://www.nginx.com/) for serving traffic behind Envoy, you will need to set the [proxy_http_version](http://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_http_version) directive in your NGINX config to be "1.1", since the NGINX default is 1.0
+Envoy requires HTTP/1.1 or HTTP/2 traffic for upstream services. For example, when using [NGINX](https://www.nginx.com/) for serving traffic behind Envoy, you
+will need to set the [proxy_http_version](https://nginx.org/en/docs/http/ngx_http_proxy_module.html#proxy_http_version) directive in your NGINX config to be "1.1", since the NGINX default is 1.0
Example config:
-```
+```plain
upstream http_backend {
server 127.0.0.1:8080;
@@ -56,7 +97,7 @@ server {
}
```
-## No grafana output when connecting from a local web client to Istio remotely hosted
+## No Grafana output when connecting from a local web client to Istio remotely hosted
Validate the client and server date and time match.
@@ -77,7 +118,7 @@ The expected flow of metrics is:
1. The instances are handed to Mixer adapters for processing and backend storage.
1. The backend storage systems record metrics data.
-The default installations of Mixer ship with a [Prometheus](http://prometheus.io/)
+The default installations of Mixer ship with a [Prometheus](https://prometheus.io/)
adapter, as well as configuration for generating a basic set of metric
values and sending them to the Prometheus adapter. The
[Prometheus add-on]({{home}}/docs/tasks/telemetry/querying-metrics.html#about-the-prometheus-add-on)
@@ -98,8 +139,8 @@ Check these metrics.
In Kubernetes environments, execute the following command:
- ```bash
- kubectl -n istio-system port-forward 9093 &
+ ```command
+ $ kubectl -n istio-system port-forward 9093 &
```
1. Verify successful report calls.
@@ -109,7 +150,7 @@ Check these metrics.
You should see something like:
- ```
+ ```plain
grpc_server_handled_total{grpc_code="OK",grpc_method="Report",grpc_service="istio.mixer.v1.Mixer",grpc_type="unary"} 68
```
@@ -126,13 +167,8 @@ or [manual]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar
In Kubernetes environments, issue the following command:
- ```bash
- kubectl get rules --all-namespaces
- ```
-
- With the default configuration, you should see something like:
-
- ```
+ ```command
+ $ kubectl get rules --all-namespaces
NAMESPACE NAME KIND
istio-system promhttp rule.v1alpha2.config.istio.io
istio-system promtcp rule.v1alpha2.config.istio.io
@@ -149,13 +185,8 @@ or [manual]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar
In Kubernetes environments, issue the following command:
- ```bash
- kubectl get prometheuses.config.istio.io --all-namespaces
- ```
-
- The expected output is:
-
- ```
+ ```command
+ $ kubectl get prometheuses.config.istio.io --all-namespaces
NAMESPACE NAME KIND
istio-system handler prometheus.v1alpha2.config.istio.io
```
@@ -168,13 +199,8 @@ or [manual]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar
In Kubernetes environments, issue the following command:
- ```bash
- kubectl get metrics.config.istio.io --all-namespaces
- ```
-
- The expected output is:
-
- ```
+ ```command
+ $ kubectl get metrics.config.istio.io --all-namespaces
NAMESPACE NAME KIND
istio-system requestcount metric.v1alpha2.config.istio.io
istio-system requestduration metric.v1alpha2.config.istio.io
@@ -204,7 +230,7 @@ or [manual]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar
You should find something like:
- ```
+ ```plain
mixer_config_resolve_count{error="false",target="details.default.svc.cluster.local"} 56
mixer_config_resolve_count{error="false",target="ingress.istio-system.svc.cluster.local"} 67
mixer_config_resolve_count{error="false",target="mongodb.default.svc.cluster.local"} 18
@@ -222,8 +248,8 @@ or [manual]({{home}}/docs/setup/kubernetes/sidecar-injection.html#manual-sidecar
In Kubernetes environments, retrieve the Mixer logs via:
- ```bash
- kubectl -n istio-system logs mixer
+ ```command
+ $ kubectl -n istio-system logs mixer
```
Look for errors related to your configuration or your service in the
@@ -243,7 +269,7 @@ More on viewing Mixer configuration can be found [here]({{home}}/help/faq/mixer.
You should find something like:
- ```
+ ```plain
mixer_adapter_dispatch_count{adapter="prometheus",error="false",handler="handler.prometheus.istio-system",meshFunction="metric",response_code="OK"} 114
mixer_adapter_dispatch_count{adapter="prometheus",error="true",handler="handler.prometheus.default",meshFunction="metric",response_code="INTERNAL"} 4
mixer_adapter_dispatch_count{adapter="stdio",error="false",handler="handler.stdio.istio-system",meshFunction="logentry",response_code="OK"} 104
@@ -262,8 +288,8 @@ More on viewing Mixer configuration can be found [here]({{home}}/help/faq/mixer.
In Kubernetes environment, check the Mixer logs via:
- ```bash
- kubectl -n istio-system logs mixer
+ ```command
+ $ kubectl -n istio-system logs mixer
```
Filter for lines including something like `Report 0 returned with: INTERNAL
@@ -277,8 +303,8 @@ More on viewing Mixer configuration can be found [here]({{home}}/help/faq/mixer.
In Kubernetes environments, setup port-forwarding as follows:
- ```bash
- kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
+ ```command
+ $ kubectl -n istio-system port-forward $(kubectl -n istio-system get pod -l app=prometheus -o jsonpath='{.items[0].metadata.name}') 9090:9090 &
```
1. Visit [http://localhost:9090/config](http://localhost:9090/config).
@@ -301,16 +327,41 @@ More on viewing Mixer configuration can be found [here]({{home}}/help/faq/mixer.
## How can I debug issues with the service mesh?
+### With [istioctl](https://istio.io/docs/reference/commands/istioctl.html#istioctl%20proxy-config)
+
+Istioctl allows you to inspect the current xDS of a given Envoy from its admin interface (locally) or from Pilot using the `proxy-config` or `pc` command.
+
+For example, to retrieve the configured clusters in an Envoy via the admin interface run the following command:
+
+```command
+istioctl proxy-config endpoint clusters
+```
+
+To retrieve endpoints for a given pod in the application namespace from Pilot run the following command:
+
+```command
+istioctl proxy-config pilot -n application eds
+```
+
+The `proxy-config` command also allows you to retrieve the state of the entire mesh from Pilot using the following command:
+
+```command
+istioctl proxy-config pilot mesh ads
+```
+
### With [GDB](https://www.gnu.org/software/gdb/)
To debug Istio with `gdb`, you will need to run the debug images of Envoy / Mixer / Pilot. A recent `gdb` and the golang extensions (for Mixer/Pilot or other golang components) is required.
-1. `kubectl exec -it PODNAME -c [proxy | mixer | pilot]`
-1. Find process ID: ps ax
-1. gdb -p PID binary
-1. For go: info goroutines, goroutine x bt
+1. `kubectl exec -it PODNAME -c [proxy | mixer | pilot]`
-### With [Tcpdump](http://www.tcpdump.org/tcpdump_man.html)
+1. Find process ID: ps ax
+
+1. gdb -p PID binary
+
+1. For go: info goroutines, goroutine x bt
+
+### With [Tcpdump](https://www.tcpdump.org/tcpdump_man.html)
Tcpdump doesn't work in the sidecar pod - the container doesn't run as root. However any other container in the same pod will see all the packets, since the network namespace is shared. `iptables` will also see the pod-wide config.
@@ -320,7 +371,7 @@ Communication between Envoy and the app happens on 127.0.0.1, and is not encrypt
Check your `ulimit -a`. Many systems have a 1024 open file descriptor limit by default which will cause Envoy to assert and crash with:
-```bash
+```plain
[2017-05-17 03:00:52.735][14236][critical][assert] assert failure: fd_ != -1: external/envoy/source/common/network/connection_impl.cc:58
```
@@ -328,30 +379,27 @@ Make sure to raise your ulimit. Example: `ulimit -n 16384`
## Headless TCP Services Losing Connection from Istiofied Containers
-If `istio-ca` is deployed, Envoy is restarted every 15 minutes to refresh certificates.
+If `istio-citadel` is deployed, Envoy is restarted every 15 minutes to refresh certificates.
This causes the disconnection of TCP streams or long-running connections between services.
You should build resilience into your application for this type of
disconnect, but if you still want to prevent the disconnects from
-happening, you will need to disable mTLS and the `istio-ca` deployment.
+happening, you will need to disable mTLS and the `istio-citadel` deployment.
First, edit your istio config to disable mTLS
-```
-# comment out or uncomment out authPolicy: MUTUAL_TLS to toggle mTLS and then
-kubectl edit configmap -n istio-system istio
-
-# restart pilot and wait a few minutes
-kubectl delete pods -n istio-system -l istio=pilot
+```command
+$ kubectl edit configmap -n istio-system istio
+$ kubectl delete pods -n istio-system -l istio=pilot
```
-Next, scale down the `istio-ca` deployment to disable Envoy restarts.
+Next, scale down the `istio-citadel` deployment to disable Envoy restarts.
-```
-kubectl scale --replicas=0 deploy/istio-ca -n istio-system
+```command
+$ kubectl scale --replicas=0 deploy/istio-citadel -n istio-system
```
-This should stop istio from restarting Envoy and disconnecting TCP connections.
+This should stop Istio from restarting Envoy and disconnecting TCP connections.
## Envoy Process High CPU Usage
@@ -361,13 +409,9 @@ CPU usage, even when Envoy isn't doing anything. In order to bring the
CPU usage down for larger deployments, increase the refresh interval for
Envoy to something higher, like 30 seconds.
-```
-# increase the field rdsRefreshDelay in the mesh and defaultConfig section
-# set the refresh interval to 30s
-kubectl edit configmap -n istio-system istio
-
-# restart pilot and wait a few minutes
-kubectl delete pods -n istio-system -l istio=pilot
+```command
+$ kubectl edit configmap -n istio-system istio
+$ kubectl delete pods -n istio-system -l istio=pilot
```
Also make sure to reinject the sidecar into all of your pods, as
@@ -376,11 +420,38 @@ their configuration needs to be updated as well.
Afterwards, you should see CPU usage fall back to 0-1% while idling.
Make sure to tune these values for your specific deployment.
-*Warning:*: Changes created by routing rules will take up to 2x refresh interval to propagate to the sidecars.
-While the larger refresh interval will reduce CPU usage, updates caused by routing rules may cause a period
-of HTTP 404s (upto 2x the refresh interval) until the Envoy sidecars get all relevant configuration.
+*Warning:*: Changes created by routing rules will take up to 2x refresh interval to propagate to the sidecars.
+While the larger refresh interval will reduce CPU usage, updates caused by routing rules may cause a period
+of HTTP 404s (up to 2x the refresh interval) until the Envoy sidecars get all relevant configuration.
## Kubernetes webhook setup script files are missing from 0.5 release package
-NOTE: The 0.5.0 and 0.5.1 releases are missing scripts to provision webhook certificates. Download the missing files from [here](https://raw.githubusercontent.com/istio/istio/master/install/kubernetes/webhook-create-signed-cert.sh) and [here](https://raw.githubusercontent.com/istio/istio/master/install/kubernetes/webhook-patch-ca-bundle.sh). Subsqeuent releases (> 0.5.1) should include these missing files.
+> The 0.5.0 and 0.5.1 releases are missing scripts to provision webhook certificates. Download the missing files
+from [here](https://raw.githubusercontent.com/istio/istio/release-0.7/install/kubernetes/webhook-create-signed-cert.sh) and [here](https://raw.githubusercontent.com/istio/istio/release-0.7/install/kubernetes/webhook-patch-ca-bundle.sh). Subsequent releases (> 0.5.1) include these files.
+
+## Automatic sidecar injection will fail if the kube-apiserver has proxy settings
+
+This was tested on 0.5.0 with the additional files required as referenced in the above issue. When the Kube-apiserver included
+proxy settings such as:
+
+```yaml
+env:
+ - name: http_proxy
+ value: http://proxy-wsa.esl.foo.com:80
+ - name: https_proxy
+ value: http://proxy-wsa.esl.foo.com:80
+ - name: no_proxy
+ value: 127.0.0.1,localhost,dockerhub.foo.com,devhub-docker.foo.com,10.84.100.125,10.84.100.126,10.84.100.127
+```
+The sidecar injection would fail. The only related failure logs was in the kube-apiserver log:
+
+```plain
+W0227 21:51:03.156818 1 admission.go:257] Failed calling webhook, failing open sidecar-injector.istio.io: failed calling admission webhook "sidecar-injector.istio.io": Post https://istio-sidecar-injector.istio-system.svc:443/inject: Service Unavailable
+```
+
+Make sure both pod and service CIDRs are not proxied according to *_proxy variables. Check the kube-apiserver files and logs to verify the configuration and whether any requests are being proxied.
+
+A workaround is to remove the proxy settings from the kube-apiserver manifest and restart the server or use a later version of kubernetes.
+An issue was filed in kubernetes related to this and has since been closed. [https://github.com/kubernetes/kubeadm/issues/666](https://github.com/kubernetes/kubeadm/issues/666)
+[https://github.com/kubernetes/kubernetes/pull/58698#discussion_r163879443](https://github.com/kubernetes/kubernetes/pull/58698#discussion_r163879443)
diff --git a/_includes/collection_nav.html b/_includes/collection_nav.html
new file mode 100644
index 0000000000000..84ed782b3af87
--- /dev/null
+++ b/_includes/collection_nav.html
@@ -0,0 +1,59 @@
+{% comment %}
+Assigns the next_page_url, next_page_title, next_page_description, prev_page_url, prev_page_title, and prev_page_description variables the
+URLs, titles and descriptions of the next and previous pages within the current collection, relative to the current page.
+{% endcomment %}
+
+{% comment %}
+ Find the current page in the sorted set of blog posts we generated for the sidebar
+{% endcomment %}
+
+{% assign index = 0 %}
+{% for u in urls %}
+ {% if u == page.url %}
+ {% assign index = forloop.index0 %}
+ {% break %}
+ {% endif %}
+{% endfor %}
+
+{% assign next_index = index %}
+{% for i in (0..10) %}
+ {% assign next_index = next_index | minus: 1 %}
+
+ {% if next_index < 0 %}
+ {% break %}
+ {% endif
+
+ {% assign YY = "THIS IS NEEDED, OTHERWISE THE URL ASSIGNMENT BELOW DOESN'T HAVE ANY EFFECT!" %}
+
+ {% assign url = urls[next_index] %}
+ {% assign components = url | split: "/" %}
+ {% assign name = components | last %}
+
+ {% if name != "index.html" %}
+ {% assign next_page_url = urls[next_index] %}
+ {% assign next_page_title = titles[next_index] %}
+ {% assign next_page_description = descriptions[next_index] %}
+ {% break %}
+ {% endif %}
+{% endfor %}
+
+{% assign max = urls | size %}
+{% assign prev_index = index %}
+{% for i in (0..10) %}
+ {% assign prev_index = prev_index | plus: 1 %}
+ {% if prev_index >= max %}
+ {% break %}
+ {% endif
+
+ {% assign YY = "THIS IS NEEDED, OTHERWISE THE URL ASSIGNMENT BELOW DOESN'T HAVE ANY EFFECT!" %}
+
+ {% assign url = urls[prev_index] %}
+ {% assign components = url | split: "/" %}
+ {% assign name = components | last %}
+ {% if name != "index.html" %}
+ {% assign prev_page_url = urls[prev_index] %}
+ {% assign prev_page_title = titles[prev_index] %}
+ {% assign prev_page_description = descriptions[prev_index] %}
+ {% break %}
+ {% endif %}
+{% endfor %}
diff --git a/_includes/faq.html b/_includes/faq.html
index ad6ef8741574b..491d0402932a8 100644
--- a/_includes/faq.html
+++ b/_includes/faq.html
@@ -1,5 +1,5 @@
-{% assign faqs = site.faq | sort: "order" %}
+{% assign faqs = site.faq | sort: "weight" %}
{% for q in faqs %}
{% assign comp = q.path | split: '/' %}
{% assign qcat = comp[1] %}
diff --git a/_includes/figure.html b/_includes/figure.html
deleted file mode 100644
index 55a03bce2be30..0000000000000
--- a/_includes/figure.html
+++ /dev/null
@@ -1,28 +0,0 @@
-{% comment %}
-Purpose:
- Inserts a figure into a page. The user of this template specifies the
- relative width of the figure in percentage, and an aspect ratio value in
- lieu of the Y coordinate. Through CSS trickery, these two values let us
- calculate the actual width and height of the image at render time in such
- a way that it avoids the typical 'shifting text' problem as images are
- loaded asynchronously.
-
-Usage:
- {% include figure.html width='%' ratio='%'
- img=''
- alt=''
- title=''
- caption=''
- %}
-{% endcomment %}
-
-
diff --git a/_includes/file-content.html b/_includes/file-content.html
new file mode 100644
index 0000000000000..cc82775c2b575
--- /dev/null
+++ b/_includes/file-content.html
@@ -0,0 +1,11 @@
+{% comment %}
+Purpose:
+ Inserts preformatted block whose content is sources from an external URL.
+
+Usage:
+ {% include file-content.html url='' %}
+{% endcomment %}
+
+
diff --git a/_includes/footer.html b/_includes/footer.html
index 0ceca9a33a070..6520638e63832 100644
--- a/_includes/footer.html
+++ b/_includes/footer.html
@@ -1,59 +1,112 @@
- | | 
+