h ddlZddlZddlZddlZddlZddlZddlZddlZddlm Z ddl m Z ddl m Z mZddlmZddlmZmZmZmZmZmZmZmZmZmZmZddlmZmZm Z m!Z!ddl"m#Z#m$Z$m%Z%ejLe'Z(d Z)d Z*d Z+d Z,gd Z-dZ.dZ/dZ0dZ1GddZ2Gdde2Z3Gdde2Z4Gdde2Z5Gdde2Z6Gdde6Z7Gdde7Z8Gd d!e8Z9Gd"d#e8Z:Gd$d%e6Z;Gd&d'e;Z<Gd(d)e6Z=Gd*d+e2Z>Gd,d-e>Z?Gd.d/e>Z@Gd0d1e3ZAd2ZBd3ZCe4e5e5e>e?e@e=e8e:e9eAd4 ZDerdd5lEmFZFeDjeFneDje6e;e7eN)Mapping formatdate)sha1sha256) itemgetter) HAS_CRT MD5_AVAILABLE HTTPHeaders encodebytesensure_unicodeget_current_datetimeparse_qsquoteunquoteurlsplit urlunsplit)NoAuthTokenErrorNoCredentialsErrorUnknownSignatureVersionError UnsupportedSignatureVersionError)is_valid_ipv6_endpoint_urlnormalize_url_pathpercent_encode_sequence@e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855iz%Y-%m-%dT%H:%M:%SZz%Y%m%dT%H%M%SZ)expectztransfer-encodingz user-agentzx-amzn-trace-idzUNSIGNED-PAYLOADz"STREAMING-UNSIGNED-PAYLOAD-TRAILERct|}|j}t|rd|d}ddd}|j9|j|j |j k7r|d|j}|S)N[]Pi)httphttps:)rhostnamerportgetscheme)url url_partshost default_portss i/home/developers/rajanand/mypropertyqr-fmb-refixing-v2/venv/lib/python3.12/site-packages/botocore/auth.py_host_from_urlr-Js}  I   D!#&4&{M~~! >>]..y/?/?@ @V1Y^^,-D Kc|j}t|tr&tj|j d}|St|t rtj|}|SNutf-8)data isinstancebytesjsonloadsdecodestr)requestr2s r,_get_body_as_dictr:]sT <zBaseSigner.add_authns !*--r.N)__name__ __module__ __qualname__REQUIRES_REGIONREQUIRES_TOKENr>r.r,r<r<jsON.r.r<ceZdZdZ dZy) TokenSignerTc||_yN) auth_token)rArLs r,__init__zTokenSigner.__init__xs $r.N)rBrCrDrFrMrGr.r,rIrIrsN%r.rIc"eZdZdZdZdZdZy) SigV2Authz+ Sign a request with Signature V2. c||_yrK credentialsrArRs r,rMzSigV2Auth.__init__ &r.cPtjdt|j}|j}t |dk(rd}|j d|jd|d}tj|jjjdt}g}t|D]d}|dk(r t||} t!|jdd } t!| jdd } |j#| d | fd j%|} || z }tjd ||j'|jdt)j*|j-j/j1d} | | fS)Nz$Calculating signature using v2 auth.r/ r1 digestmod Signaturesafez-_~=&zString to sign: %s)loggerdebugrr(pathlenmethodnetlochmacnewrR secret_keyencodersortedr8rappendjoinupdatebase64 b64encodedigeststripr7)rAr9paramssplitrbstring_to_signlhmacpairskeyvalue quoted_key quoted_valueqsb64s r,calc_signaturezSigV2Auth.calc_signaturesj ;<%zz t9>D#NN+2ell^2dV2F    ' ' . .w 76 &> 9Ck!s $Eszz'2: ^**734u||~.446==gFCyr.c|j t|jr |j}n |j}|jj|d<d|d<d|d<t j tt j|d<|jjr|jj|d<|j||\}}||d<|S) NAWSAccessKeyId2SignatureVersion HmacSHA256SignatureMethod Timestamp SecurityTokenrZ) rRrr2rr access_keytimestrftimeISO8601gmtimetokenr})rAr9rrr{ signatures r,r>zSigV2Auth.add_auths    #$& & <<\\F^^F#'#3#3#>#> %(!"$0 !"mmGT[[]C{    ! !&*&6&6&<&rGr.r,rOrO|s'8r.rOceZdZdZdZy) SigV3Authc||_yrKrQrSs r,rMzSigV3Auth.__init__rTr.c|j td|jvr |jd=td|jd<|jjr>d|jvr |jd=|jj|jd<t j |jjjdt}|j|jdjdt|jj}d|jjd|jd}d |jvr |jd =||jd <y) NDateTusegmtX-Amz-Security-Tokenr1rXzAWS3-HTTPS AWSAccessKeyId=z ,Algorithm=HmacSHA256,Signature=zX-Amzn-Authorization)rRrheadersrrrfrgrhrirrmr rprqrr7)rAr9new_hmacencoded_signaturers r,r>zSigV3Auth.add_authsL    #$& & W__ $'",D"9    ! !%8OO$:;6:6F6F6L6LGOO2 388    ' ' . .w 76  /66w?@'(9:@@B()9)9)D)D(EF..?.F.Fw.O-P R  "W__ 4 672;./r.N)rBrCrDrMr>rGr.r,rrs '>66w~~F F33HW[[4IJ Jr.c :g}t|tr|j}|D]7\}}|jt |dt t |df9g}t |D]\}}|j|d|dj|}|S)Nz-_.~r\r^r_)r3rrrkrr8rjrl)rArr key_val_pairsrwrxsorted_key_valsrs r,rz(SigV4Auth._canonical_query_string_paramss fg &\\^F  JC  s(%E *HI  !/ 5JC  " "cU!E7#3 4 5!$/!:%%r.c.d}|jrg}|jjdD]*}|jd\}}}|j||f,g}t |D]\}}|j|d|dj |}|S)Nr[r_r^)queryrs partitionrkrjrl) rApartsrrpairrw_rxrs r,rz%SigV4Auth._canonical_query_string_urls!# ;;M ))#. 3 $s 3 Q$$c5\2 3!O%]3 9 U&&#aw'78 9%(XXo%> "%%r.cg}tt|}|D]J}djfd|j|D}|j |dt |Ldj|S)a  Return the headers that need to be included in the StringToSign in their canonical form by converting all header keys to lower case, sorting them in alphabetical order and then joining them into a string, separated by newlines. ,c3@K|]}j|ywrK) _header_value).0vrAs r, z.SigV4Auth.canonical_headers..0s!*+""1%sr#rW)rjsetrlget_allrkr )rArrsorted_header_namesrwrxs` r,canonical_headerszSigV4Auth.canonical_headers&s$S%9:& =CHH/>/F/Fs/KE NNcU!N5$9#:; <  = yy!!r.c@dj|jS)N )rlrs)rArxs r,rzSigV4Auth._header_value6s xx &&r.cZtdt|D}dj|S)Nc3XK|]"}|jj$ywrK)rrq)rns r,rz+SigV4Auth.signed_headers..?sIq*Is(*;)rjrrl)rArrs r,signed_headerszSigV4Auth.signed_headers>s&IC4HIIxx  r.c|jjdi}|jd}t|txr|jddk(S)Nchecksumrequest_algorithmintrailer)contextr&r3dict)rAr9checksum_context algorithms r,_is_streaming_checksum_payloadz(SigV4Auth._is_streaming_checksum_payloadBsJ"??..z2>$(()<= )T*Oy}}T/Bi/OOr.c|j|rtS|j|stS|j}|rt |dr|j }tj|jt}t}t|dD]}|j||j}|j||S|rt|jSt S)Nseekr.)r"STREAMING_UNSIGNED_PAYLOAD_TRAILER_should_sha256_sign_payloadUNSIGNED_PAYLOADbodyhasattrtell functoolspartialreadPAYLOAD_BUFFERriterrmrrEMPTY_SHA256_HASH)rAr9 request_bodypositionread_chunksizerchunk hex_checksums r,payloadzSigV4Auth.payloadGs  . .w 75 511':$ #|| GL&9#((*H&..!!>NxHnc2 '& '#--/L   h '  ,'113 3$ $r.cr|jjdsy|jjddS)Nr"Tpayload_signing_enabled)r( startswithrr&r@s r,rz%SigV4Auth._should_sha256_sign_payloadas1{{%%g. ""#>r.c|j tt}|jt|j d<|j ||j|}tjdtjd||j||}tjd||j||}tjd||j||y)Nrz$Calculating signature using v4 auth.zCanonicalRequest: %sStringToSign: %sz Signature: %s) rRrrrSIGV4_TIMESTAMPr_modify_request_before_signingrr`rartr_inject_signature_to_request)rAr9 datetime_nowrrtrs r,r>zSigV4Auth.add_auths    #$& &+- '3'<'<_'M $ ++G4 227; ;< ,.?@,,W6GH (.9NN>7;  %y1 ))'9=r.cd|j|g}|j|}|jd|j||jd|dj ||j d<|S)NzAWS4-HMAC-SHA256 Credential=zSignedHeaders=z Signature=, Authorization)rrrkrrlr)rAr9rauth_strrs r,rz&SigV4Auth._inject_signature_to_requests~24::g3F2GHI..w7T00AB C  *YK01+/99X+>(r.cd|jvr |jd=|j||jjr>d|jvr |jd=|jj|jd<|jj dds/d|jvr |jd=t |jd<yy)NrrrTr)r_set_necessary_date_headersrRrrr&rr@s r,r z(SigV4Auth._modify_request_before_signings goo -0 ((1    ! !%8OO$:;6:6F6F6L6LGOO2 3""#rr rrGr.r,rrsO* K&"& " '!P %4D  ?>$ GIr.rc.eZdZfdZfdZdZxZS) S3SigV4Authct||d|jvr |jd=|j||jd<y)Nr)superr rrrAr9 __class__s r,r z*S3SigV4Auth._modify_request_before_signingsA .w7 !W__ 4 6726,,w2G./r.c|jjd}t|dd}|i}|jdd}||Sd}|jjdi}|jd}t|tr|jddk(r|d }|j j d r||jvry |jjd d ry t|%|S)N client_configs3rz Content-MD5rrrheaderrr"Thas_streaming_inputF) rr&getattrr3rr(rrr"r) rAr9r& s3_config sign_payloadchecksum_headerrrr$s r,rz'S3SigV4Auth._should_sha256_sign_payloads ++O< M46   I!}}%>E  #  ("??..z2>$(()<= i &9==+>(+J'/O &&w/goo5 ??  4e <w27;;r.c|SrKrGrArbs r,rzS3SigV4Auth._normalize_url_path r.)rBrCrDr rr __classcell__r$s@r,r r sH'r#s r,r>zS3ExpressAuth.add_auth!s !r.ct||d|jvr#|jj|jd<d|jvr|jd=yy)Nzx-amz-s3session-tokenr)r"r rrRrr#s r,r z,S3ExpressAuth._modify_request_before_signing$sU .w7 "'// 97;7G7G7M7MGOO3 4 !W__ 4 67 5r.)rBrCrDREQUIRES_IDENTITY_CACHErMr>r r1r2s@r,r4r4s". "88r.r4ceZdZdZdZy)S3ExpressPostAuthTct}|jt|jd<i}|jj dd|jd}i}g}|jj dd&|jd}|j dd|d}||d<d|d<|j ||d<|jd|d<|j ddi|j d|j |i|j d|jdi|jj@|jj|d <|j d |jjitjtj|jd jd |d <|j|d ||d <||jd<||jd<y) Nrs3-presign-post-fieldss3-presign-post-policy conditionsrx-amz-algorithmx-amz-credential x-amz-dateX-Amz-S3session-Tokenr1policyx-amz-signaturerrr rr&rrkrRrrnror5dumpsrir7rrAr9rfieldsrEr@s r,r>zS3ExpressPostAuth.add_auth0s+- '3'<'<_'M $ ??  7 > J__%=>F ??  7 > J__%=>Fzz,-9#L1 )|$6 !%)ZZ%8!"&{;|,.@AB-tzz'/BCD<)EFG    ! ! -.2.>.>.D.DF* +   ($*:*:*@*@A  "++ JJv  % %g . &/ x%)NN6(3CW$M !4:014:01r.N)rBrCrDr:r>rGr.r,r<r<-s "';r.r<cDeZdZdZdZedfd ZdZdZdZdZ xZ S) S3ExpressQueryAuthi,T)expiresc:t|||||||_y)N)r7r"rM_expires)rArRrrr7rMr$s r,rMzS3ExpressQueryAuth.__init__^s,    )    r.cN|jjd}d}||k(r |jd=|j|j|}d|j ||j d|j |d}|jj|jj|d<t|j}t|jd}|jD cic] \}} || d  } }} |jr"| j|ji|_d } |j r!| jt#|d |_| rt%| d z} | t%|} |} | d | d | d | | df}t'||_ ycc} }w)N content-type0application/x-www-form-urlencoded; charset=utf-8rrzX-Amz-AlgorithmzX-Amz-Credentialrz X-Amz-ExpireszX-Amz-SignedHeadersrDTkeep_blank_valuesrr[r_rr&rrrrrPrRrrr(rrrrrrmr2r:rr)rAr9 content_typeblocklisted_content_typer auth_paramsr)query_string_partskr query_dictoperation_paramsnew_query_stringp new_url_partss r,r z1S3ExpressQueryAuth._modify_request_before_signingos**>: > ! 3 3/ ,,T-A-A'-JK 2 $ 7 3!//+6!]]#1      ! ! -373C3C3I3IK/ 0W[[) &iooN*<*B*B*DE$!Qa1gE E >>   gnn -GN <<   /8 9GL 6zBSH  !8!E F G  1qtQqT+;QqTB  / AF,F!c4|xjd|z c_yNz&X-Amz-Signature=r(rAr9rs r,rz/S3ExpressQueryAuth._inject_signature_to_request  *9+66 r.c|SrKrGr/s r,rz&S3ExpressQueryAuth._normalize_url_pathr0r.ctSrKrr@s r,rzS3ExpressQueryAuth.payload  r.) rBrCrDDEFAULT_EXPIRESr:rMr rrrr1r2s@r,rLrLZs-O"  "?0B7  r.rLc2eZdZdZeffd ZdZdZxZS)SigV4QueryAuthc6t||||||_yrKrO)rArRrrrMr$s r,rMzSigV4QueryAuth.__init__s lK@ r.cN|jjd}d}||k(r |jd=|j|j|}d|j ||j d|j |d}|jj|jj|d<t|j}t|jd}|jD cic] \}} || d  } }} |jr"| j|ji|_d } |j r!| jt#|d |_| rt%| d z} | t%|} |} | d | d | d | | df}t'||_ ycc} }w)NrRrSrrrTrTrUrr[r_rWrXrYrZ)rAr9r[blacklisted_content_typerr]r)r^r_rr`rarbrcrds r,r z-SigV4QueryAuth._modify_request_before_signings**>: > ! 3 3/ ,,T-A-A'-JK 2 $ 7 3!//+6!]]#1      ! ! -262B2B2H2HK. /W[[) &iooN*<*B*B*DE$!Qa1gE E >>   gnn -GN <<   /8 9GL 6zBSH  !8!E F G  1qtQqT+;QqTB  / AFrec4|xjd|z c_yrgrhris r,rz+SigV4QueryAuth._inject_signature_to_request rjr.)rBrCrDrorMr rr1r2s@r,rqrqsO?N ?0B7r.rqceZdZdZdZdZy)S3SigV4QueryAuthaS3 SigV4 auth using query parameters. This signer will sign a request using query parameters and signature version 4, i.e a "presigned url" signer. Based off of: http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-query-string-auth.html c|SrKrGr/s r,rz$S3SigV4QueryAuth._normalize_url_pathr0r.ctSrKrmr@s r,rzS3SigV4QueryAuth.payload#rnr.N)rBrCrDrrrrGr.r,rxrxs  r.rxceZdZdZdZy)S3SigV4PostAuthz Presigns a s3 post Implementation doc here: http://docs.aws.amazon.com/AmazonS3/latest/API/sigv4-UsingHTTPPOST.html ct}|jt|jd<i}|jj dd|jd}i}g}|jj dd&|jd}|j dd|d}||d<d|d<|j ||d<|jd|d<|j ddi|j d|j |i|j d|jdi|jj@|jj|d <|j d |jjitjtj|jd jd |d <|j|d ||d <||jd<||jd<y) Nrr>r?r@rrArBrCx-amz-security-tokenr1rErFrGrIs r,r>zS3SigV4PostAuth.add_auth3s+- '3'<'<_'M $ ??  7 > J__%=>F ??  7 > J__%=>Fzz,-9#L1 )|$6 !%)ZZ%8!"&{;|,.@AB-tzz'/BCD<)EFG    ! ! --1-=-=-C-CF) *   5t7G7G7M7MN O"++ JJv  % %g . &/ x%)NN6(3CW$M !4:014:01r.NrBrCrDrr>rGr.r,r|r|+s %;r.r|cbeZdZgdZddZdZdZdZdZddZ dd Z dd Z d Z d Z d Zy) HmacV1Auth)$ accelerateaclcorsdefaultObjectAcllocationlogging partNumberrErequestPaymenttorrent versioning versionIdversionswebsiteuploadsuploadIdzresponse-content-typezresponse-content-languagezresponse-expireszresponse-cache-controlzresponse-content-dispositionzresponse-content-encodingdelete lifecycletaggingrestore storageClass notification replicationr analyticsmetrics inventoryselectz select-typez object-lockNc||_yrKrQrs r,rMzHmacV1Auth.__init__rTr.c*tj|jjj dt }|j |j dt|jjjdS)Nr1rX) rfrgrRrhrirrmr rprqr7)rArtrs r, sign_stringzHmacV1Auth.sign_stringsk88    ' ' . .w 74  --g678??,-335<.s2&' 2sr#rW)rrrlrrjkeysrk)rArrcustom_headersrwrsorted_header_keyss r,canonical_custom_headersz#HmacV1Auth.canonical_custom_headerss CBs|'==*),2+2??3+?2*N2&  $N$7$7$9:% 7C JJ#as 345 6 7yy~r.cHt|dk(r|S|dt|dfS)z( TODO: Do we need this? rWr)rcr)rAnvs r, unquote_vzHmacV1Auth.unquote_vs+ r7a<IqE72a5>* *r.c||}n |j}|jr|jjd}|Dcgc]}|jdd}}|Dcgc]%}|d|jvs|j |'}}t |dkDrR|j td|Dcgc]}dj|}}|dz }|dj|z }|Scc}wcc}wcc}w)Nr_r^rWr)rw?) rbrrs QSAOfInterestrrcsortrrl)rArs auth_pathbufqsaas r,canonical_resourcezHmacV1Auth.canonical_resources  C**C ;;++##C(C,/0q1773?0C0+.&'!A$$:L:L2Lq!C3x!|Z]+,/0qsxx{00s sxx}$ 1 1sC*C/3C/5C4c|jdz}||j|dzz }|j|}|r||dzz }||j||z }|S)NrWr)rrrr)rArdrsrrMrcsrs r,canonical_stringzHmacV1Auth.canonical_stringso\\^d " d--g6==66w?  .4' 'B d%%ey%AA r.c|jjr|d=|jj|d<|j||||}tj d||j |S)Nr~rr )rRrrr`rar)rArdrsrrMrrts r, get_signaturezHmacV1Auth.get_signaturess    ! !./.2.>.>.D.DG* +.. E7i/   (.9//r.cF|jttjdt |j }tjd|j |j|j ||j|j}|j||y)Nz(Calculating signature using hmacv1 auth.zHTTP request method: %sr) rRrr`rarr(rdrrr_inject_signature)rAr9rsrs r,r>zHmacV1Auth.add_auths    #$ $ ?@% .?&& NNE7??g>O>O'  w 2r.ctdS)NTrrrAs r,rzHmacV1Auth._get_dates &&r.cd|jvr |jd=d|jjd|}||jd<y)NrzAWS r#)rrRr)rAr9r auth_headers r,rzHmacV1Auth._inject_signaturesI goo -0T--8899+F +6(r.)NNrK)rBrCrDrrMrrrrrrrr>rrrGr.r,rr[sN%MN'F" +6?C ?C 0 3' 7r.rc*eZdZdZdZefdZdZdZy)HmacV1QueryAuthz Generates a presigned request for s3. Spec from this document: http://docs.aws.amazon.com/AmazonS3/latest/dev/RESTAuthentication.html #RESTAuthenticationQueryStringAuth rrc ||_||_yrK)rRrP)rArRrMs r,rMzHmacV1QueryAuth.__init__s& r.cztttjt|jzSrK)r8rrrPrs r,rzHmacV1QueryAuth._get_dates&3tyy{S%77899r.ci}|jj|d<||d<|jD]R}|j}|dk(r|jd|d<+|j ds|dvsA|j|||<Tt |}t |j}|dr |dd|}|d |d |d ||d f}t||_y) NrrZrExpiresr)rrRr_rrWrXrY) rRrrrrrrr(r) rAr9rr` header_keyrrbrcrds r,rz!HmacV1QueryAuth._inject_signatures '+'7'7'B'B #$"+ ;!// 5J!!#BV#(/(? 9%x(B3-")!4 2 5 3:> W[[ ! Q4#$A$q)9(:; 1qtQqT+;QqTB  / r.N)rBrCrDrrorMrrrGr.r,rrs O,; :0r.rceZdZdZdZy)HmacV1PostAuthz Generates a presigned post for s3. Spec from this document: http://docs.aws.amazon.com/AmazonS3/latest/dev/UsingHTTPPOST.html ci}|jjdd|jd}i}g}|jjdd&|jd}|jdd|d}||d<|jj|d<|jj@|jj|d<|j d|jjit jtj|jdjd|d<|j|d|d<||jd<||jd<y) Nr>r?r@rr~r1rEr) rr&rRrrrkrnror5rHrir7r)rAr9rJrEr@s r,r>zHmacV1PostAuth.add_authBsX ??  7 > J__%=>F ??  7 > J__%=>Fzz,-9#L1 )|#'#3#3#>#>    ! ! --1-=-=-C-CF) *   5t7G7G7M7MN O"++ JJv  % %g . &/ x#..vh/?@{4:014:01r.NrrGr.r,rr9s ;r.rceZdZdZdZy) BearerAuthz Performs bearer token authorization by placing the bearer token in the Authorization header as specified by Section 2.1 of RFC 6750. https://datatracker.ietf.org/doc/html/rfc6750#section-2.1 c|j td|jj}d|jvr |jd=||jd<y)NzBearer r)rLrrr)rAr9rs r,r>zBearerAuth.add_authisR ?? ""$ $ 5 567 goo -0+6(r.NrrGr.r,rras 7r.rc|D];}|dk(r t|cS|tvrt|}|tvs-|cSt|t|)Nsmithy.api#noAuthsignature_version)AUTH_TYPE_TO_SIGNATURE_VERSIONAUTH_TYPE_MAPSrr) auth_trait auth_typers r,resolve_auth_typerssaL + +1)< < 8 8 >y I  N2((.K KL +Z HHr.c|Dcgc]}|jdd}}|Dcgc] }|tvr|}}|rtjd|||z}tj |Dcgc]}||vr| }}|D]3}|dk(r t|cStj |}|tvs1|cStdjt|cc}wcc}wcc}w)N#z/Unsupported auth schemes in preference list: %rnoAuthrr) rsAUTH_PREF_TO_SIGNATURE_VERSIONr`rarfromkeysr&rrrlrj)preference_list auth_optionsr'service_supported unsupportedcombinedprioritized_schemes sig_versions r,resolve_auth_scheme_preferencers=IJ6c*2.JJ&  7 7 K  ={ !22HmmH-  & &  & X 1&9 9488@ . (   +))F+<$=> 5KsCC- C") v2v3v3httpsr'zs3-queryzs3-presign-postzs3v4-presign-postz v4-s3expresszv4-s3express-queryzv4-s3express-presign-postbearer)CRT_AUTH_TYPE_MAPS)v4zv4-querys3v4z s3v4-queryrv4arnone)zaws.auth#sigv4zaws.auth#sigv4azsmithy.api#httpBearerAuthrrr)Lrnrrrrfr5rrcollections.abcr email.utilsrhashlibrroperatorrbotocore.compatr r r r r rrrrrrbotocore.exceptionsrrrrbotocore.utilsrrr getLoggerrBr`rrrr rrrr-r:r<rIrOrrr r4r<rLrqrxr|rrrrrrrbotocore.crt.authrrmrrrsr) auth_schemers00r,rs:  #"         8 $G  " &%I"& ..%*%: :z< <8JI JIZ3)3l8K8**; *;Ze e PN7YN7b ~ 0-;i-;`f7f7R20j20j%;Z%;P77$ IB   %(!,!2  4,-&*  !) "%C$H$H$J" [c2 +""s G