IETF Logo Mail Archive

Re: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri

Mike Ounsworth <Mike.Ounsworth@entrust.com> Tue, 30 January 2024 17:49 UTC

Return-Path: <Mike.Ounsworth@entrust.com>
X-Original-To: spasm@ietfa.amsl.com
Delivered-To: spasm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0928CC14F6BF for <spasm@ietfa.amsl.com>; Tue, 30 Jan 2024 09:49:00 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.704
X-Spam-Level:
X-Spam-Status: No, score=-2.704 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_FONT_LOW_CONTRAST=0.001, HTML_MESSAGE=0.001, HTTPS_HTTP_MISMATCH=0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=entrust.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V1JdPlOOE3j7 for <spasm@ietfa.amsl.com>; Tue, 30 Jan 2024 09:48:55 -0800 (PST)
Received: from mx07-0015a003.pphosted.com (mx07-0015a003.pphosted.com [185.132.183.227]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2D36CC14F710 for <spasm@ietf.org>; Tue, 30 Jan 2024 09:48:49 -0800 (PST)
Received: from pps.filterd (m0242864.ppops.net [127.0.0.1]) by mx08-0015a003.pphosted.com (8.17.1.24/8.17.1.24) with ESMTP id 40UDNw8N022429; Tue, 30 Jan 2024 11:48:47 -0600
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=entrust.com; h= from:to:cc:subject:date:message-id:references:in-reply-to :content-type:mime-version; s=mail1; bh=4OCb5dkImfJH55536J85Z3kj xJImbdQ8Jc2uZJ/pZ9E=; b=MwtUKppOGKYoUk6ZvdAe+1L3TWWHZdYm3MoibcWA Ko+61BNjT6eVMUKjau5rCZScDovNva2Wf/L33LKeNSaxERmNqNTI5iCFpDmN61Tk ioYT1ErV5fKrJLnG5UxjaS8ABbu6foJEP5IVTh5S3QOhobpiZ1Cnd7Zky2oFLtSf LvEtGRLYM9dzcwARxrYZ2G7Glg4ozje+7iTFNc90EUTBib5T7pRtWcO0ojYLxnKt kNdNQxq5TaKVJ+cyOEopMahVp8c1Uxqr/daGZgJB1MG/zAxsWiiaYLmjYOZyOoT4 yUzzafTvEipVhEjQ7zSGM9aCtcZGuKgeZEn4PfuZpqYzGA==
Received: from nam11-bn8-obe.outbound.protection.outlook.com (mail-bn8nam11lp2168.outbound.protection.outlook.com [104.47.58.168]) by mx08-0015a003.pphosted.com (PPS) with ESMTPS id 3vwc4j8jaf-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 30 Jan 2024 11:48:46 -0600 (CST)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XRG0+Okfiaf+4pDHiX0g7c4Nsmcw/5Z7nj1iEG3pqz1ONMDbbYqGMGJGqbMG2IsCTauVJ7i7KWPY3qu1mEdRrqn+DcRXps1CWWzM2TA90zRoGpX8pX0gXAlWPJfc4imYRS1BPFB8NCzyPECakqiSytdfhRIR7W7LdVtSDkljcyK/j7IC1BdKwCCSedWhxuQ5AAu82kJ/jH9ux2ymq20tDYSYLa9vHahr0mXYHUhQGhuroTg67vYcAgrrF2swHcxiwxnM9QkR4zBwb/hXVyFEzn93MqTol/BGaF5HjHoHf8dErsj2ifGAK2bsb9yEtGA2zpBCjIs8M7fLnwMLm51X0A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=8ejbq9pcDdRO+F9kllA5TF1yJGqzlfmwfIoGzyA2kl8=; b=ATAEc6QtnOPLsFv20qq1/XxKSfoHzYEz6tJUQn1EkLqbq3I3TgdWcVFshadNVgKudr0Om0w05Q46g8hsOM6cDUMgStD4jCBqt1NAjpgPf6advEsuoLoExbfy1sPqRqJDjFkhrcxjge6jF3QmBglKDq7eYtYqkukX5mXkwJ1exTVPLqoe8Fsg+A9OVMiDPXuAJcnoHOenjfxvApcz/4kYc9PayA4vlGlu2yh+1BS/9ovnnkAdqUWq53gLtSjoT7xdQyU06zxvRjrwhV+FmUglJ2DPT9iQ/NoFssHuLStdXu4stmdaDy+oy+BBkPKvGgAmL0JyFnFBYLRJ/rPY+lRrEw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=entrust.com; dmarc=pass action=none header.from=entrust.com; dkim=pass header.d=entrust.com; arc=none
Received: from CH0PR11MB5739.namprd11.prod.outlook.com (2603:10b6:610:100::20) by DM4PR11MB6068.namprd11.prod.outlook.com (2603:10b6:8:64::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7228.34; Tue, 30 Jan 2024 17:48:42 +0000
Received: from CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::ac39:9027:cfbc:7830]) by CH0PR11MB5739.namprd11.prod.outlook.com ([fe80::ac39:9027:cfbc:7830%5]) with mapi id 15.20.7228.029; Tue, 30 Jan 2024 17:48:42 +0000
From: Mike Ounsworth <Mike.Ounsworth@entrust.com>
To: Daniel Van Geest <daniel.vangeest.ietf@gmail.com>, Carl Wallace <carl@redhoundsoftware.com>, Russ Housley <housley@vigilsec.com>
CC: LAMPS <spasm@ietf.org>
Thread-Topic: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri
Thread-Index: AQHaU5yw4fbkUE609k6eH5PnpedZxrDyluIAgAAAxYCAAAnR0A==
Date: Tue, 30 Jan 2024 17:48:42 +0000
Message-ID: <CH0PR11MB5739D9146BA41EA8C4D05FCD9F7D2@CH0PR11MB5739.namprd11.prod.outlook.com>
References: <10d001da4275$84783c10$8d68b430$@gmail.com> <27CC12F8-4D7D-4C65-9587-C54C9E017E40@vigilsec.com> <35E24FD1-8C52-4204-89B1-822ACAD1AF5D@redhoundsoftware.com> <VI1PR08MB35343612CE9F8F2165596E18AF7D2@VI1PR08MB3534.eurprd08.prod.outlook.com> <VI1PR08MB3534BCC1AE87C27BF6890859AF7D2@VI1PR08MB3534.eurprd08.prod.outlook.com>
In-Reply-To: <VI1PR08MB3534BCC1AE87C27BF6890859AF7D2@VI1PR08MB3534.eurprd08.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: yes
X-MS-TNEF-Correlator:
x-ms-publictraffictype: Email
x-ms-traffictypediagnostic: CH0PR11MB5739:EE_|DM4PR11MB6068:EE_
x-ms-office365-filtering-correlation-id: a68164a6-d707-4a68-c65f-08dc21bbb2d2
x-ms-exchange-senderadcheck: 1
x-ms-exchange-antispam-relay: 0
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 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
x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH0PR11MB5739.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230031)(396003)(366004)(39860400002)(346002)(376002)(136003)(230173577357003)(230273577357003)(230922051799003)(1800799012)(451199024)(64100799003)(186009)(55016003)(38070700009)(66899024)(41300700001)(66476007)(8936002)(86362001)(33656002)(76116006)(166002)(99936003)(38100700002)(110136005)(122000001)(83380400001)(26005)(9686003)(66556008)(478600001)(966005)(64756008)(66446008)(45080400002)(66946007)(71200400001)(316002)(6506007)(8676002)(53546011)(7696005)(4326008)(2906002)(52536014)(5660300002); DIR:OUT; SFP:1102;
x-ms-exchange-antispam-messagedata-chunkcount: 1
x-ms-exchange-antispam-messagedata-0: LkV7TBcehV9HAGAaPubJfpN8ODXbVjQ31HsQFdJYwhaEQ6Fi5bJszAEXFZ2rGC1dBze4/KghQ0oGci6/LCYUt8XTHSUcCcX0Kf+YMbe6vACb4EPDPFQQYyeduBOSmFXSA5EKwj42ryMISLFp6llxsMI7hDhwzQz/4Sm6EeITV1Ixzjjnlt+Iw+TUGbMbx2RYanwEE3oobfqA+Be0MXV0jNt+Zexu1REBGMDMIuVkFNhzPU9+rgx11GX3QCM1/luAGJc0fYwWTZ3Q8qsqwP89aHt/iF3+Ytc+VQ3n2bS5O3utl6ORC4xCvclSqq00v0jbAvK/SPaSw7uf9N9AOUJZDCCK7DJlh06s+anbUZTTIGE1YoOqxr6z9YPkeN9d+zimA7VIFUMLnsYHGspPE/gNvenn6e0on0sakQnYKo8EM+l1iw73ao83rBWbdPArHRgMlXQGiR6ezjGenGJ35eY7m6ErED7XsdFjoylDHtEN2/uKYbMuco9cvFfBikGQpaDCemYrEumAHyzj1z2N0OgbX91uN57MythIzdYGMzygiJhna3Ns7YDGe+PvDzyQ4eMVhiwjI7C9xBaK/B/ELEBGC5auU13VzQ9r4WVPdJ0l1QkVT3g+VUHmGUBxlFFP2Xn+r3mP5tHXspqTxHMMOUv1uRFv2Pir90oDJnC0Hkwsy/FdqEOHb/R4du2/mgBAH4InS5x1rSVFyP4/8aqpRdIrW3vhZg2BXoXNyYybz4fwHTjU6vwKaLT5TVTuv+4TYAF/vWclGf+W1pGcO9e/HkzlN2adM2hOyjD7Ar7gRmooaneKu2SkVgg1uQN72mTgPy1EWqx4UhAeT/SgCi3KUu8SBRKFFz7pKEzRUH/E/vYNFbU2uKvTLPCid6zIMJLXUYrCukeIQtjBAnRin4DtkSr3KFBeSJS3FaTdcMwK4pekP7MxYRcV1ziXbL2wIvOrWuRCjAPmAgGt8rCCQIK0tAmhp3Y5oUhf7q8JyZfK7kdzknrbL48wMJf8VH7PRZrXwiMSiO2zloAtQQadAZGmdurio/YVYErLsf4T7juVsF/1RyT01yHE41r8qZAr28uFoD95/8QPORq6JWcEa6sYUMjjxXyge4GNiMDCqDxLykP1IeNEbECMzVSuwSXtFmFCznpbVClQXLRHlIXGOEeBkEYF0H9nWbls/ASBKhCCGGy9VMjgBFCrFoYp5YOTICS7oQOqIb5mT4uYvPWYYZDL0So74upY4+ggk3NQPcNCSX7m4rfO7ugPtEuJe2wl9fg1l8A7j8X/UXpvFiStCYYmptocNSYDRcExw/t5AFZK1F30G8/MHyxCV2yV0CnDl+bK5ipDR477JFglgqrqOpiO6Dw1w5rzMUQKOYMwnd6Q4BlbWmSITwbEKCzrAXMA4xJW3ES09SPNW8wbEKwGlBleyrINp0Ddf6qpWVvB/EyecI1CtRG0tOHFUPcH5CY1F6jtMyFpmTbYV0eawhs32MtUzjrplgPVLfLxh82Z643j30aRFNsbFvcHpsNzGReUozUuB+CQ7/lXFCPBusV+4rrnaa6iPXe0pMXV/dsE4iFojXgUHQIAd8jLK6lzWwwuF8azlPCd
Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg="SHA1"; boundary="----=_NextPart_000_021E_01DA5372.44DF8F50"
MIME-Version: 1.0
X-OriginatorOrg: entrust.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-AuthSource: CH0PR11MB5739.namprd11.prod.outlook.com
X-MS-Exchange-CrossTenant-Network-Message-Id: a68164a6-d707-4a68-c65f-08dc21bbb2d2
X-MS-Exchange-CrossTenant-originalarrivaltime: 30 Jan 2024 17:48:42.2364 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: f46cf439-27ef-4acf-a800-15072bb7ddc1
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: +/nv3ksKB8dp9V6nPTqcunuqdkKZ5z3Oed6G0OfN5ivJZk6R7d/RiOiuMDX2hP6nvnZs8bbMBX/d1jNfrfjDLdxJm8V11U8tdCynvDw2Xd4=
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DM4PR11MB6068
X-Proofpoint-ORIG-GUID: dWLgtLbiwm1xB6xf-4mZRRhQ_CPepvxX
X-Proofpoint-GUID: dWLgtLbiwm1xB6xf-4mZRRhQ_CPepvxX
X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1011,Hydra:6.0.619,FMLib:17.11.176.26 definitions=2024-01-30_09,2024-01-30_01,2023-05-22_02
X-Proofpoint-Spam-Details: rule=outbound_notspam policy=outbound score=0 mlxlogscore=999 adultscore=0 clxscore=1011 mlxscore=0 lowpriorityscore=0 malwarescore=0 suspectscore=0 priorityscore=1501 phishscore=0 bulkscore=0 impostorscore=0 spamscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.19.0-2401190000 definitions=main-2401300132
Archived-At: <https://mailarchive.ietf.org/arch/msg/spasm/1AfZmhwkFV2sHw1Enod1llXpKiw>
Subject: Re: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri
X-BeenThere: spasm@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: This is the mail list for the LAMPS Working Group <spasm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/spasm>, <mailto:spasm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/spasm/>
List-Post: <mailto:spasm@ietf.org>
List-Help: <mailto:spasm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/spasm>, <mailto:spasm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 30 Jan 2024 17:49:00 -0000

I agree with Daniel.

 

draft-ietf-lamps-cms-kyber has not yet been updated to reflect the existence of KEMRI – it’s the “too many drafts, not enough hours” problem. If Daniel is offering to do some work on it, I fully support and welcome that.

 

---

Mike Ounsworth

 

From: Daniel Van Geest <daniel.vangeest.ietf@gmail.com> 
Sent: Tuesday, January 30, 2024 11:12 AM
To: Carl Wallace <carl@redhoundsoftware.com>; Russ Housley <housley@vigilsec.com>; Mike Ounsworth <Mike.Ounsworth@entrust.com>
Cc: LAMPS <spasm@ietf.org>
Subject: [EXTERNAL] Re: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri

 

Apologies. . . Previous message was sent too early. Continued. . . - specify required KDF (and wrap), similar to 5990bis, and allow for others (also similar) - security considerations. That's about it, a lot of the new draft will be pointing at 



Apologies... Previous message was sent too early.  

 

Continued...

- specify required KDF (and wrap), similar to 5990bis, and allow for others (also similar)

- security considerations. 

 

That's about it, a lot of the new draft will be pointing at other documents where OID/etc are already defined. 

 

Thanks,

Daniel 

 

Get Outlook for Android <https://urldefense.com/v3/__https:/aka.ms/AAb9ysg__;!!FJ-Y8qCqXTj2!dfmryflLrGq3J5Eaono2fRdPrLBBhjRih1AK-8UFXltMXvZifUf1D3bwlA4epNzVyJC6qhD3i6UGNLFRQQzpXowII3LmUcc$> 

  _____  

From: Daniel Van Geest <daniel.vangeest.ietf@gmail.com <mailto:daniel.vangeest.ietf@gmail.com> >
Sent: Tuesday, January 30, 2024 5:09:16 PM
To: Carl Wallace <carl@redhoundsoftware.com <mailto:carl@redhoundsoftware.com> >; Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com> >; Mike Ounsworth <Mike.Ounsworth@entrust.com <mailto:Mike.Ounsworth@entrust.com> >
Cc: LAMPS <spasm@ietf.org <mailto:spasm@ietf.org> >
Subject: Re: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri 

 

draft-ietf-lamps-cms-kyber-01 is out of date, it doesn't take KemRecipientInfo into consideration well enough (or at all?). I've spoken to my colleague Julien about taking over the draft since I've been implementing kemri anyways, I just need to find the time for both. I envision the draft being simplified, and following the model of rfc5990bis:

- discuss KEMs and ML-KEM in (very) brief. There seem to be many draft repeating the same info where it would be better to refer to the NIST specs (or a CFRG doc covering them). 

- specify OIDs for ML-KEM in CMS (again pointing to other drafts)

 

Get Outlook for Android <https://urldefense.com/v3/__https:/aka.ms/AAb9ysg__;!!FJ-Y8qCqXTj2!dfmryflLrGq3J5Eaono2fRdPrLBBhjRih1AK-8UFXltMXvZifUf1D3bwlA4epNzVyJC6qhD3i6UGNLFRQQzpXowII3LmUcc$> 

  _____  

From: Carl Wallace <carl@redhoundsoftware.com <mailto:carl@redhoundsoftware.com> >
Sent: Tuesday, January 30, 2024 4:52:12 PM
To: Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com> >; Daniel Van Geest <daniel.vangeest.ietf@gmail.com <mailto:daniel.vangeest.ietf@gmail.com> >; Mike Ounsworth <Mike.Ounsworth@entrust.com <mailto:Mike.Ounsworth@entrust.com> >
Cc: LAMPS <spasm@ietf.org <mailto:spasm@ietf.org> >
Subject: Re: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri 

 

Russ and Mike,

 

Section 5.2.1 of draft-ietf-lamps-cms-kyber-01 states the following:

 

“If the session key obtained from the KEM algorithm is long enough to fit into the WRAP algorithm, then the KDF could be equal to the identity function.”

 

Given this, should the kdf and kekLength fields be OPTIONAL in KEMRecipientInfo?

 

Carl

 

From: Spasm <spasm-bounces@ietf.org <mailto:spasm-bounces@ietf.org> > on behalf of Russ Housley <housley@vigilsec.com <mailto:housley@vigilsec.com> >
Date: Monday, January 8, 2024 at 4:02 PM
To: Daniel Van Geest <daniel.vangeest.ietf@gmail.com <mailto:daniel.vangeest.ietf@gmail.com> >
Cc: LAMPS <spasm@ietf.org <mailto:spasm@ietf.org> >
Subject: Re: [lamps] Key Derivation in draft-ietf-lamps-cms-kemri

 

Daniel:

 

It can use an KDF, but I expect that most implementers will want to use the same KDF that was used internal to the KEM algorithm to keep the implementation small.

 

Russ

 

On Jan 8, 2024, at 3:59 PM, Daniel Van Geest <daniel.vangeest.ietf@gmail.com <mailto:daniel.vangeest.ietf@gmail.com> > wrote:

 

I’m implementing draft-ietf-lamps-cms-kemri and have a question about the ` kdf KeyDerivationAlgorithmIdentifier` field in KEMRecipientInfo.

 

Is it intended that any (IKM, L, info) KDF can be thrown there (respecting Security Considerations), or should the KEM-instantiating documents specify which KDFs to use with which KEMs.  e.g. draft-ietf-lamps-cms-kyber should specify to use id-alg-hkdf-with-sha256 with Kyber512, id-alg-hkdf-with-sha384 with Kyber768 and id-alg-hkdf-with-sha512 with Kyber1024?

 

If they should do this, should the kdf field for KEMRecipientInfo be parameterized by allowed KDF ids (or whatever the right ANS.1 terminology is)?

 

    KEMRecipientInfo ::= SEQUENCE {

        …

        kdf KeyDerivationAlgorithmIdentifier{KEY-DERIVATION, KEMRIKeyDevAlgs},

        …

    }

 

    KEMRIKeyDevAlgs KEY-DERIVATION ::= {kda-hkdf-with-sha256, kda-hkdf-with-sha384, kda-hkdf-with-sha512, …}

 

And KEM instantiating docs can add to KeyDevAlgs if needed.

 

Thanks,

Daniel

 

_______________________________________________
Spasm mailing list
 <mailto:Spasm@ietf.org> Spasm@ietf.org
 <https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/spasm__;!!FJ-Y8qCqXTj2!dfmryflLrGq3J5Eaono2fRdPrLBBhjRih1AK-8UFXltMXvZifUf1D3bwlA4epNzVyJC6qhD3i6UGNLFRQQzpXowInU-lNac$> https://www.ietf.org/mailman/listinfo/spasm

 

_______________________________________________ Spasm mailing list Spasm@ietf.org <mailto:Spasm@ietf.org>  https://www.ietf.org/mailman/listinfo/spasm <https://urldefense.com/v3/__https:/www.ietf.org/mailman/listinfo/spasm__;!!FJ-Y8qCqXTj2!dfmryflLrGq3J5Eaono2fRdPrLBBhjRih1AK-8UFXltMXvZifUf1D3bwlA4epNzVyJC6qhD3i6UGNLFRQQzpXowInU-lNac$>

v2.23.0 | Report a Bug | By Email