app/{vmbackup,vmrestore}: add vmbackup and vmrestore tools for creating backups on s3 or gcs from instant snapshots

Updates https://github.com/VictoriaMetrics/VictoriaMetrics/issues/203 Updates https://github.com/VictoriaMetrics/VictoriaMetrics/issues/38
2024-11-21 14:44:00 +00:00 · 2019-11-07 21:05:39 +02:00 · 2019-11-07 21:05:39 +02:00 · 1e46961d68
commit 1e46961d68
parent 72756ab8c7
928 changed files with 333074 additions and 17 deletions
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@ -34,6 +34,7 @@ jobs:
            make victoria-metrics-pure
            make victoria-metrics-arm
            make victoria-metrics-arm64
            make vmutils
            GOOS=freebsd go build -mod=vendor ./app/victoria-metrics
            GOOS=darwin go build -mod=vendor ./app/victoria-metrics
      - name: Publish coverage
--- a/29
+++ b/29
@ -19,13 +19,32 @@ include deployment/*/Makefile
 clean:
 	rm -rf bin/*
-publish: publish-victoria-metrics
+publish: \
 	publish-victoria-metrics \
 	publish-vmbackup \
 	publish-vmrestore
-package: package-victoria-metrics
+package: \
 	package-victoria-metrics \
 	package-vmbackup \
 	package-vmrestore
-release: victoria-metrics-prod
+vmutils: \
 	vmbackup \
 	vmrestore
 release: \
 	release-victoria-metrics \
 	release-vmutils
 release-victoria-metrics: victoria-metrics-prod
 	cd bin && tar czf victoria-metrics-$(PKG_TAG).tar.gz victoria-metrics-prod
 release-vmutils: \
 	vmbackup-prod \
 	vmrestore-prod
 	cd bin && tar czf vmutils-$(PKG_TAG).tar.gz vmbackup-prod vmrestore-prod
 pprof-cpu:
 	go tool pprof -trim_path=github.com/VictoriaMetrics/VictoriaMetrics@ $(PPROF_FILE)
@ -42,13 +61,15 @@ lint: install-golint
 	golint app/...
 install-golint:
-	which golint || GO111MODULE=off go get -u github.com/golang/lint/golint
+	which golint || GO111MODULE=off go get -u golang.org/x/lint/golint
 errcheck: install-errcheck
 	errcheck -exclude=errcheck_excludes.txt ./lib/...
 	errcheck -exclude=errcheck_excludes.txt ./app/vminsert/...
 	errcheck -exclude=errcheck_excludes.txt ./app/vmselect/...
 	errcheck -exclude=errcheck_excludes.txt ./app/vmstorage/...
 	errcheck -exclude=errcheck_excludes.txt ./app/vmbackup/...
 	errcheck -exclude=errcheck_excludes.txt ./app/vmrestore/...
 install-errcheck:
 	which errcheck || GO111MODULE=off go get -u github.com/kisielk/errcheck
--- a/README.md
+++ b/README.md
@ -36,7 +36,8 @@ Cluster version is available [here](https://github.com/VictoriaMetrics/VictoriaM
  * VictoriaMetrics consists of a single executable without external dependencies.
  * All the configuration is done via explicit command-line flags with reasonable defaults.
  * All the data is stored in a single directory pointed by `-storageDataPath` flag.
-  * Easy backups from [instant snapshots](https://medium.com/@valyala/how-victoriametrics-makes-instant-snapshots-for-multi-terabyte-time-series-data-e1f3fb0e0282).
+  * Easy and fast backups from [instant snapshots](https://medium.com/@valyala/how-victoriametrics-makes-instant-snapshots-for-multi-terabyte-time-series-data-e1f3fb0e0282)
  with [vmbackup](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmbackup/README.md) / [vmrestore](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmrestore/README.md).
 * Storage is protected from corruption on unclean shutdown (i.e. hardware reset or `kill -9`) thanks to [the storage architecture](https://medium.com/@valyala/how-victoriametrics-makes-instant-snapshots-for-multi-terabyte-time-series-data-e1f3fb0e0282).
 * Supports metrics' ingestion and [backfilling](#backfilling) via the following protocols:
  * [Prometheus remote write API](https://prometheus.io/docs/prometheus/latest/configuration/configuration/#remote_write)
@ -461,8 +462,8 @@ The page will return the following JSON response:
 ```
 Snapshots are created under `<-storageDataPath>/snapshots` directory, where `<-storageDataPath>`
-is the command-line flag value. Snapshots can be archived to backup storage via `cp -L`, `rsync -L`, `scp -r`
+is the command-line flag value. Snapshots can be archived to backup storage at any time
-or any similar tool that follows symlinks during copying.
+with [vmbackup](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmbackup/README.md).
 The `http://<victoriametrics-addr>:8428/snapshot/list` page contains the list of available snapshots.
@ -474,7 +475,8 @@ Navigate to `http://<victoriametrics-addr>:8428/snapshot/delete_all` in order to
 Steps for restoring from a snapshot:
 1. Stop VictoriaMetrics with `kill -INT`.
 2. Remove the entire contents of the directory pointed by `-storageDataPath` command-line flag.
-3. Copy snapshot contents to the directory pointed by `-storageDataPath`.
+3. Restore snapshot contents from backup with [vmrestore](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmrestore/README.md)
   to the directory pointed by `-storageDataPath`.
 4. Start VictoriaMetrics.
--- a/app/vmbackup/Makefile
+++ b/app/vmbackup/Makefile
@ -0,0 +1,37 @@
 # All these commands must run from repository root.
 vmbackup:
 	APP_NAME=vmbackup $(MAKE) app-local
 vmbackup-prod:
 	APP_NAME=vmbackup $(MAKE) app-via-docker
 package-vmbackup:
 	APP_NAME=vmbackup $(MAKE) package-via-docker
 publish-vmbackup:
 	APP_NAME=vmbackup $(MAKE) publish-via-docker
 vmbackup-arm:
 	CGO_ENABLED=0 GOOS=linux GOARCH=arm GO111MODULE=on go build -mod=vendor -ldflags "$(GO_BUILDINFO)" -o bin/vmbackup-arm ./app/vmbackup
 vmbackup-arm-prod:
 	APP_NAME=vmbackup APP_SUFFIX='-arm' DOCKER_OPTS='--env CGO_ENABLED=0 --env GOARCH=arm' $(MAKE) app-via-docker
 vmbackup-arm64:
 	CGO_ENABLED=0 GOOS=linux GOARCH=arm64 GO111MODULE=on go build -mod=vendor -ldflags "$(GO_BUILDINFO)" -o bin/vmbackup-arm64 ./app/vmbackup
 vmbackup-arm64-prod:
 	APP_NAME=vmbackup APP_SUFFIX='-arm64' DOCKER_OPTS='--env CGO_ENABLED=0 --env GOARCH=arm64' $(MAKE) app-via-docker
 vmbackup-386:
 	CGO_ENABLED=0 GOOS=linux GOARCH=386 GO111MODULE=on go build -mod=vendor -ldflags "$(GO_BUILDINFO)" -o bin/vmbackup-386 ./app/vmbackup
 vmbackup-386-prod:
 	APP_NAME=vmbackup APP_SUFFIX='-386' DOCKER_OPTS='--env CGO_ENABLED=0 --env GOARCH=386' $(MAKE) app-via-docker
 vmbackup-pure:
 	APP_NAME=vmbackup $(MAKE) app-local-pure
 vmbackup-pure-prod:
 	APP_NAME=vmbackup APP_SUFFIX='-pure' DOCKER_OPTS='--env CGO_ENABLED=0' $(MAKE) app-via-docker
--- a/app/vmbackup/README.md
+++ b/app/vmbackup/README.md
@ -0,0 +1,171 @@
 ## vmbackup
 `vmbackup` creates VictoriaMetrics data backups from [instant snapshots](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/README.md#how-to-work-with-snapshots).
 Supported storage systems for backups:
 * [GCS](https://cloud.google.com/storage/). Example: `gcs://<bucket>/<path/to/backup>`
 * [S3](https://aws.amazon.com/s3/). Example: `s3://<bucket>/<path/to/backup>`
 * Local filesystem. Example: `fs://</absolute/path/to/backup>`
 Incremental backups and full backups are supported. Incremental backups are created automatically if the destination path already contains data from the previous backup.
 Full backups can be sped up with `-origin` pointing to already existing backup on the same remote storage. In this case `vmbackup` makes server-side copy for the shared
 data between the existing backup and new backup. This saves time and costs on data transfer.
 Backup process can be interrupted at any time. It is automatically resumed from the interruption point when restarting `vmbackup` with the same args.
 Backed up data can be restored with [vmrestore](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmrestore/README.md).
 ### Use cases
 #### Regular backups
 Regular backup can be performed with the following command:
 ```
 vmbackup -storageDataPath=</path/to/victoria-metrics-data> -snapshotName=<local-snapshot> -dst=gcs://<bucket>/<path/to/new/backup>
 ```
 * `</path/to/victoria-metrics-data>` - path to VictoriaMetrics data pointed by `-storageDataPath` command-line flag in single-node VictoriaMetrics or in cluster `vmstorage`.
  There is no need to stop VictoriaMetrics for creating backups, since they are performed from immutable [instant snapshots](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/README.md#how-to-work-with-snapshots).
 * `<local-snapshot>` is the snapshot to backup. See [how to create instant snapshots](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/README.md#how-to-work-with-snapshots).
 * `<bucket>` is already existing name for [GCS bucket](https://cloud.google.com/storage/docs/creating-buckets).
 * `<path/to/new/backup>` is the destination path where new backup will be placed.
 #### Regular backups with server-side copy from existing backup
 If the destination GCS bucket already contains the previous backup at `-origin` path, then new backup can be sped up
 with the following command:
 ```
 vmbackup -storageDataPath=</path/to/victoria-metrics-data> -snapshotName=<local-snapshot> -dst=gcs://<bucket>/<path/to/new/backup> -origin=gcs://<bucket>/<path/to/existing/backup>
 ```
 This saves time and network bandwidth costs by performing server-side copy for the shared data from the `-origin` to `-dst`.
 #### Incremental backups
 Incremental backups are performed if `-dst` points to already existing backup. In this case only new data is uploaded to remote storage.
 This saves time and network bandwidth costs when working with big backups:
 ```
 vmbackup -storageDataPath=</path/to/victoria-metrics-data> -snapshotName=<local-snapshot> -dst=gcs://<bucket>/<path/to/existing/backup>
 ```
 #### Smart backups
 Smart backups mean storing full daily backups into `YYYYMMDD` folders and creating incremental hourly backup into `latest` folder:
 * Run the following command every hour:
 ```
 vmbackup -snapshotName=<latest-snapshot> -dst=gcs://<bucket>/latest
 ```
 Where `<latest-snapshot>` is the latest [snapshot](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/README.md#how-to-work-with-snapshots).
 The command will upload only changed data to `gcs://<bucket>/latest`.
 * Run the following command once a day:
 ```
 vmbackup -snapshotName=<daily-snapshot> -dst=gcs://<bucket>/<YYYYMMDD> -origin=gcs://<bucket>/latest
 ```
 Where `<daily-snapshot>` is the snapshot for the last day `<YYYYMMDD>`.
 This apporach saves network bandwidth costs on hourly backups (since they are incremental) and allows recovering data from either the last hour (`latest` backup)
 or from any day (`YYYYMMDD` backups). Note that hourly backup shouldn't run when creating daily backup.
 Do not forget removing old snapshots and backups when they are no longer needed for saving storage costs.
 ### How does it work?
 The backup algorithm is the following:
 1. Collect information about files in the `-snapshotName`, in the `-dst` and in the `-origin`.
 2. Determine files in `-dst`, which are missing in `-snapshotName`, and delete them. These are usually small files, which are already merged into bigger files in the snapshot.
 3. Determine files from `-snapshotName`, which are missing in `-dst`. These are usually small new files and bigger merged files.
 4. Determine files from step 3, which exist in the `-origin`, and perform server-side copy of these files from `-origin` to `-dst`.
   This are usually the biggest and the oldest files, which are shared between backups.
 5. Upload the remaining files from setp 3 from `-snapshotName` to `-dst`.
 The algorithm splits source files into 100MB chunks in the backup. Each chunk is stored as a separate file in the backup.
 Such splitting minimizes the amounts of data to re-transfer after temporary errors.
 `vmbackup` relies on [instant snapshot](https://medium.com/@valyala/how-victoriametrics-makes-instant-snapshots-for-multi-terabyte-time-series-data-e1f3fb0e0282) properties:
 - All the files in the snapshot are immutable.
 - Old files are periodically merged into new files.
 - Smaller files have higher probability to be merged.
 - Consecutive snapshots share many identical files.
 These properties allow performing fast and cheap incremental backups and server-side copying from `-origin` paths.
 `vmbackup` can work improperly or slowly when these properties are violated.
 ### Troubleshooting
 * If the backup is slow, then try setting higher value for `-concurrency` flag. This will increase the number of concurrent workers that upload data to backup storage.
 * If `vmbackup` eats all the network bandwidth, then set `-concurrency` to 1. This should reduce network bandwidth usage.
 * If `vmbackup` has been interrupted due to temporary error, then just restart it with the same args. It will resume the backup process.
 ### Advanced usage
 Run `vmbackup -help` in order to see all the available options:
 ```
  -concurrency int
    	The number of concurrent workers. Higher concurrency may reduce backup duration (default 10)
  -configFilePath string
    	Path to file with S3 configs. Configs are loaded from default location if not set.
    	See https://docs.aws.amazon.com/general/latest/gr/aws-security-credentials.html
  -credsFilePath string
    	Path to file with GCS or S3 credentials. Credentials are loaded from default locations if not set.
    	See https://cloud.google.com/iam/docs/creating-managing-service-account-keys and https://docs.aws.amazon.com/general/latest/gr/aws-security-credentials.html
  -dst string
    	Where to put the backup on the remote storage. Example: gcs://bucket/path/to/backup/dir, s3://bucket/path/to/backup/dir or fs:///path/to/local/backup/dir
    	-dst can point to the previous backup. In this case incremental backup is performed, i.e. only changed data is uploaded
  -loggerLevel string
    	Minimum level of errors to log. Possible values: INFO, ERROR, FATAL, PANIC (default "INFO")
  -memory.allowedPercent float
    	Allowed percent of system memory VictoriaMetrics caches may occupy (default 60)
  -origin string
    	Optional origin directory on the remote storage with old backup for server-side copying when performing full backup. This speeds up full backups
  -snapshotName string
    	Name for the snapshot to backup. See https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/README.md#how-to-work-with-snapshots
  -storageDataPath string
    	Path to VictoriaMetrics data. Must match -storageDataPath from VictoriaMetrics or vmstorage (default "victoria-metrics-data")
  -version
    	Show VictoriaMetrics version
 ```
 ### How to build from sources
 It is recommended using [binary releases](https://github.com/VictoriaMetrics/VictoriaMetrics/releases) - see `vmutils-*` archives there.
 #### Development build
 1. [Install Go](https://golang.org/doc/install). The minimum supported version is Go 1.12.
 2. Run `make vmbackup` from the root folder of the repository.
   It builds `vmbackup` binary and puts it into the `bin` folder.
 #### Production build
 1. [Install docker](https://docs.docker.com/install/).
 2. Run `make vmbackup-prod` from the root folder of the repository.
   It builds `vmbackup-prod` binary and puts it into the `bin` folder.
 #### Building docker images
 Run `make package-vmbackup`. It builds `victoriametrics/vmbackup:<PKG_TAG>` docker image locally.
 `<PKG_TAG>` is auto-generated image tag, which depends on source code in the repository.
 The `<PKG_TAG>` may be manually set via `PKG_TAG=foobar make package-vmbackup`.
--- a/app/vmbackup/deployment/Dockerfile
+++ b/app/vmbackup/deployment/Dockerfile
@ -0,0 +1,5 @@
 FROM scratch
 COPY --from=local/certs:1.0.2 /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
 COPY bin/vmbackup-prod .
 EXPOSE 8428
 ENTRYPOINT ["/vmbackup-prod"]
--- a/app/vmbackup/main.go
+++ b/app/vmbackup/main.go
@ -0,0 +1,109 @@
 package main
 import (
 	"flag"
 	"fmt"
 	"os"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/actions"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fslocal"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/buildinfo"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 var (
 	storageDataPath = flag.String("storageDataPath", "victoria-metrics-data", "Path to VictoriaMetrics data. Must match -storageDataPath from VictoriaMetrics or vmstorage")
 	snapshotName    = flag.String("snapshotName", "", "Name for the snapshot to backup. See https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/README.md#how-to-work-with-snapshots")
 	dst             = flag.String("dst", "", "Where to put the backup on the remote storage. "+
 		"Example: gcs://bucket/path/to/backup/dir, s3://bucket/path/to/backup/dir or fs:///path/to/local/backup/dir\n"+
 		"-dst can point to the previous backup. In this case incremental backup is performed, i.e. only changed data is uploaded")
 	origin      = flag.String("origin", "", "Optional origin directory on the remote storage with old backup for server-side copying when performing full backup. This speeds up full backups")
 	concurrency = flag.Int("concurrency", 10, "The number of concurrent workers. Higher concurrency may reduce backup duration")
 )
 func main() {
 	flag.Usage = usage
 	flag.Parse()
 	buildinfo.Init()
 	srcFS, err := newSrcFS()
 	if err != nil {
 		logger.Fatalf("%s", err)
 	}
 	dstFS, err := newDstFS()
 	if err != nil {
 		logger.Fatalf("%s", err)
 	}
 	originFS, err := newOriginFS()
 	if err != nil {
 		logger.Fatalf("%s", err)
 	}
 	a := &actions.Backup{
 		Concurrency: *concurrency,
 		Src:         srcFS,
 		Dst:         dstFS,
 		Origin:      originFS,
 	}
 	if err := a.Run(); err != nil {
 		logger.Fatalf("cannot create backup: %s", err)
 	}
 }
 func usage() {
 	const s = `
 vmbackup performs backups for VictoriaMetrics data from instant snapshots to gcs, s3
 or local filesystem. Backed up data can be restored with vmrestore.
 See the docs at https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmbackup/README.md .
 `
 	f := flag.CommandLine.Output()
 	fmt.Fprintf(f, "%s\n", s)
 	flag.PrintDefaults()
 }
 func newSrcFS() (*fslocal.FS, error) {
 	if len(*snapshotName) == 0 {
 		return nil, fmt.Errorf("`-snapshotName` cannot be empty")
 	}
 	snapshotPath := *storageDataPath + "/snapshots/" + *snapshotName
 	// Verify the snapshot exists.
 	f, err := os.Open(snapshotPath)
 	if err != nil {
 		return nil, fmt.Errorf("cannot open snapshot at %q: %s", snapshotPath, err)
 	}
 	fi, err := f.Stat()
 	_ = f.Close()
 	if err != nil {
 		return nil, fmt.Errorf("cannot stat %q: %s", snapshotPath, err)
 	}
 	if !fi.IsDir() {
 		return nil, fmt.Errorf("snapshot %q must be a directory", snapshotPath)
 	}
 	fs := &fslocal.FS{
 		Dir: snapshotPath,
 	}
 	return fs, nil
 }
 func newDstFS() (common.RemoteFS, error) {
 	fs, err := actions.NewRemoteFS(*dst)
 	if err != nil {
 		return nil, fmt.Errorf("cannot parse `-dst`=%q: %s", *dst, err)
 	}
 	return fs, nil
 }
 func newOriginFS() (common.RemoteFS, error) {
 	if len(*origin) == 0 {
 		return nil, nil
 	}
 	fs, err := actions.NewRemoteFS(*origin)
 	if err != nil {
 		return nil, fmt.Errorf("cannot parse `-origin`=%q: %s", *origin, err)
 	}
 	return fs, nil
 }
--- a/app/vmrestore/Makefile
+++ b/app/vmrestore/Makefile
@ -0,0 +1,37 @@
 # All these commands must run from repository root.
 vmrestore:
 	APP_NAME=vmrestore $(MAKE) app-local
 vmrestore-prod:
 	APP_NAME=vmrestore $(MAKE) app-via-docker
 package-vmrestore:
 	APP_NAME=vmrestore $(MAKE) package-via-docker
 publish-vmrestore:
 	APP_NAME=vmrestore $(MAKE) publish-via-docker
 vmrestore-arm:
 	CGO_ENABLED=0 GOOS=linux GOARCH=arm GO111MODULE=on go build -mod=vendor -ldflags "$(GO_BUILDINFO)" -o bin/vmrestore-arm ./app/vmrestore
 vmrestore-arm-prod:
 	APP_NAME=vmrestore APP_SUFFIX='-arm' DOCKER_OPTS='--env CGO_ENABLED=0 --env GOARCH=arm' $(MAKE) app-via-docker
 vmrestore-arm64:
 	CGO_ENABLED=0 GOOS=linux GOARCH=arm64 GO111MODULE=on go build -mod=vendor -ldflags "$(GO_BUILDINFO)" -o bin/vmrestore-arm64 ./app/vmrestore
 vmrestore-arm64-prod:
 	APP_NAME=vmrestore APP_SUFFIX='-arm64' DOCKER_OPTS='--env CGO_ENABLED=0 --env GOARCH=arm64' $(MAKE) app-via-docker
 vmrestore-386:
 	CGO_ENABLED=0 GOOS=linux GOARCH=386 GO111MODULE=on go build -mod=vendor -ldflags "$(GO_BUILDINFO)" -o bin/vmrestore-386 ./app/vmrestore
 vmrestore-386-prod:
 	APP_NAME=vmrestore APP_SUFFIX='-386' DOCKER_OPTS='--env CGO_ENABLED=0 --env GOARCH=386' $(MAKE) app-via-docker
 vmrestore-pure:
 	APP_NAME=vmrestore $(MAKE) app-local-pure
 vmrestore-pure-prod:
 	APP_NAME=vmrestore APP_SUFFIX='-pure' DOCKER_OPTS='--env CGO_ENABLED=0' $(MAKE) app-via-docker
--- a/app/vmrestore/README.md
+++ b/app/vmrestore/README.md
@ -0,0 +1,78 @@
 ## vmrestore
 `vmrestore` restores data from backups created by [vmbackup](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmbackup/README.md).
 VictoriaMetrics `v1.28.4` and newer versions must be used for working with the restored data.
 Restore process can be interrupted at any time. It is automatically resumed from the inerruption point
 when restarting `vmrestore` with the same args.
 ### Usage
 VictoriaMetrics must be stopped during the restore process.
 ```
 vmrestore -src=gcs://<bucket>/<path/to/backup> -storageDataPath=<local/path/to/restore>
 ```
 * `<bucket>` is [GCS bucket](https://cloud.google.com/storage/docs/creating-buckets) name.
 * `<path/to/backup>` is the path to backup made with [vmbackup](https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmbackup/README.md) on GCS bucket.
 * `<local/path/to/restore>` is the path to folder where data will be restored. This folder must be passed
  to VictoriaMetrics in `-storageDataPath` command-line flag after the restore process is complete.
 The original `-storageDataPath` directory may contain old files. They will be susbstituted by the files from backup.
 ### Advanced usage
 Run `vmrestore -help` in order to see all the available options:
 ```
 vmrestore restores VictoriaMetrics data from backups made by vmbackup.
 See the docs at https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmrestore/README.md .
  -concurrency int
    	The number of concurrent workers. Higher concurrency may reduce restore duration (default 10)
  -configFilePath string
    	Path to file with S3 configs. Configs are loaded from default location if not set.
    	See https://docs.aws.amazon.com/general/latest/gr/aws-security-credentials.html
  -credsFilePath string
    	Path to file with GCS or S3 credentials. Credentials are loaded from default locations if not set.
    	See https://cloud.google.com/iam/docs/creating-managing-service-account-keys and https://docs.aws.amazon.com/general/latest/gr/aws-security-credentials.html
  -loggerLevel string
    	Minimum level of errors to log. Possible values: INFO, ERROR, FATAL, PANIC (default "INFO")
  -memory.allowedPercent float
    	Allowed percent of system memory VictoriaMetrics caches may occupy (default 60)
  -src string
    	Source path with backup on the remote storage. Example: gcs://bucket/path/to/backup/dir, s3://bucket/path/to/backup/dir or fs:///path/to/local/backup/dir
  -storageDataPath string
    	Destination path where backup must be restored. VictoriaMetrics must be stopped when restoring from backup. -storageDataPath dir can be non-empty. In this case only missing data is downloaded from backup (default "victoria-metrics-data")
  -version
    	Show VictoriaMetrics version
 ```
 ### How to build from sources
 It is recommended using [binary releases](https://github.com/VictoriaMetrics/VictoriaMetrics/releases) - see `vmutils-*` archives there.
 #### Development build
 1. [Install Go](https://golang.org/doc/install). The minimum supported version is Go 1.12.
 2. Run `make vmrestore` from the root folder of the repository.
   It builds `vmrestore` binary and puts it into the `bin` folder.
 #### Production build
 1. [Install docker](https://docs.docker.com/install/).
 2. Run `make vmrestore-prod` from the root folder of the repository.
   It builds `vmrestore-prod` binary and puts it into the `bin` folder.
 #### Building docker images
 Run `make package-vmrestore`. It builds `victoriametrics/vmrestore:<PKG_TAG>` docker image locally.
 `<PKG_TAG>` is auto-generated image tag, which depends on source code in the repository.
 The `<PKG_TAG>` may be manually set via `PKG_TAG=foobar make package-vmrestore`.
--- a/app/vmrestore/deployment/Dockerfile
+++ b/app/vmrestore/deployment/Dockerfile
@ -0,0 +1,5 @@
 FROM scratch
 COPY --from=local/certs:1.0.2 /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/ca-certificates.crt
 COPY bin/vmrestore-prod .
 EXPOSE 8428
 ENTRYPOINT ["/vmrestore-prod"]
--- a/app/vmrestore/main.go
+++ b/app/vmrestore/main.go
@ -0,0 +1,73 @@
 package main
 import (
 	"flag"
 	"fmt"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/actions"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fslocal"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/buildinfo"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 var (
 	src = flag.String("src", "", "Source path with backup on the remote storage. "+
 		"Example: gcs://bucket/path/to/backup/dir, s3://bucket/path/to/backup/dir or fs:///path/to/local/backup/dir")
 	storageDataPath = flag.String("storageDataPath", "victoria-metrics-data", "Destination path where backup must be restored. "+
 		"VictoriaMetrics must be stopped when restoring from backup. -storageDataPath dir can be non-empty. In this case only missing data is downloaded from backup")
 	concurrency = flag.Int("concurrency", 10, "The number of concurrent workers. Higher concurrency may reduce restore duration")
 )
 func main() {
 	flag.Usage = usage
 	flag.Parse()
 	buildinfo.Init()
 	srcFS, err := newSrcFS()
 	if err != nil {
 		logger.Fatalf("%s", err)
 	}
 	dstFS, err := newDstFS()
 	if err != nil {
 		logger.Fatalf("%s", err)
 	}
 	a := &actions.Restore{
 		Concurrency: *concurrency,
 		Src:         srcFS,
 		Dst:         dstFS,
 	}
 	if err := a.Run(); err != nil {
 		logger.Fatalf("cannot restore from backup: %s", err)
 	}
 }
 func usage() {
 	const s = `
 vmrestore restores VictoriaMetrics data from backups made by vmbackup.
 See the docs at https://github.com/VictoriaMetrics/VictoriaMetrics/blob/master/app/vmrestore/README.md .
 `
 	f := flag.CommandLine.Output()
 	fmt.Fprintf(f, "%s\n", s)
 	flag.PrintDefaults()
 }
 func newDstFS() (*fslocal.FS, error) {
 	if len(*storageDataPath) == 0 {
 		return nil, fmt.Errorf("`-storageDataPath` cannot be empty")
 	}
 	fs := &fslocal.FS{
 		Dir: *storageDataPath,
 	}
 	return fs, nil
 }
 func newSrcFS() (common.RemoteFS, error) {
 	fs, err := actions.NewRemoteFS(*src)
 	if err != nil {
 		return nil, fmt.Errorf("cannot parse `-src`=%q: %s", *src, err)
 	}
 	return fs, nil
 }
--- a/go.mod
+++ b/go.mod
@ -1,18 +1,28 @@
 module github.com/VictoriaMetrics/VictoriaMetrics
 require (
 	cloud.google.com/go v0.47.0 // indirect
 	cloud.google.com/go/storage v1.2.1
 	github.com/VictoriaMetrics/fastcache v1.5.2
 	github.com/VictoriaMetrics/metrics v1.7.2
 	github.com/aws/aws-sdk-go v1.25.29
 	github.com/cespare/xxhash/v2 v2.1.0
 	github.com/golang/groupcache v0.0.0-20191027212112-611e8accdfc9 // indirect
 	github.com/golang/snappy v0.0.1
-	github.com/google/go-cmp v0.3.0 // indirect
+	github.com/jstemmer/go-junit-report v0.9.1 // indirect
 	github.com/klauspost/compress v1.9.1
 	github.com/valyala/fastjson v1.4.1
 	github.com/valyala/fastrand v1.0.0
 	github.com/valyala/gozstd v1.6.2
 	github.com/valyala/histogram v1.0.1
 	github.com/valyala/quicktemplate v1.3.1
-	golang.org/x/sys v0.0.0-20191027211539-f8518d3b3627
+	go.opencensus.io v0.22.1 // indirect
 	golang.org/x/net v0.0.0-20191105084925-a882066a44e0 // indirect
 	golang.org/x/sys v0.0.0-20191105231009-c1f44814a5cd
 	golang.org/x/tools v0.0.0-20191107010934-f79515f33823 // indirect
 	google.golang.org/api v0.13.0
 	google.golang.org/appengine v1.6.5 // indirect
 	google.golang.org/grpc v1.25.0 // indirect
 )
 go 1.12
--- a/go.sum
+++ b/go.sum
@ -1,5 +1,26 @@
 cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU=
 cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU=
 cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
 cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
 cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
 cloud.google.com/go v0.47.0 h1:1JUtpcY9E7+eTospEwWS2QXP3DEn7poB3E2j0jN74mM=
 cloud.google.com/go v0.47.0/go.mod h1:5p3Ky/7f3N10VBkhuR5LFtddroTiMyjZV/Kj5qOQFxU=
 cloud.google.com/go/bigquery v1.0.1 h1:hL+ycaJpVE9M7nLoiXb/Pn10ENE2u+oddxbD8uu0ZVU=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/datastore v1.0.0 h1:Kt+gOPPp2LEPWp8CSfxhsM8ik9CcyE/gYu+0r+RnZvM=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/pubsub v1.0.1 h1:W9tAK3E57P75u0XLLR82LZyw8VpAnhmyTOxW9qzmyj8=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
 cloud.google.com/go/storage v1.2.1 h1:3G66kIUChoxgxJPzwpWroEnXjfbLuZgbCNAHIvN/sKY=
 cloud.google.com/go/storage v1.2.1/go.mod h1:kpwTAahUQmhyVVGgLWQh2GdyPDZSA3UJDjMm/fDV2oQ=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
 github.com/OneOfOne/xxhash v1.2.5 h1:zl/OfRA6nftbBK9qTohYBJ5xvw6C/oNKizR7cZGl3cI=
 github.com/OneOfOne/xxhash v1.2.5/go.mod h1:eZbhyaAYD41SGSSsnmcpxVoRiQ/MPUTjUdIIOT9Um7Q=
 github.com/VictoriaMetrics/fastcache v1.5.2 h1:Erd8iIuBAL9kke8JzM4+WxkKuFkHh3ktwLanJvDgR44=
 github.com/VictoriaMetrics/fastcache v1.5.2/go.mod h1:+jv9Ckb+za/P1ZRg/sulP5Ni1v49daAVERr0H3CuscE=
@ -7,28 +28,69 @@ github.com/VictoriaMetrics/metrics v1.7.2 h1:PzC0SEo5lbbNK7xaYwclCCdoaIGRmXOfflI
 github.com/VictoriaMetrics/metrics v1.7.2/go.mod h1:LU2j9qq7xqZYXz8tF3/RQnB2z2MbZms5TDiIg9/NHiQ=
 github.com/allegro/bigcache v1.2.1-0.20190218064605-e24eb225f156 h1:eMwmnE/GDgah4HI848JfFxHt+iPb26b4zyfspmqY0/8=
 github.com/allegro/bigcache v1.2.1-0.20190218064605-e24eb225f156/go.mod h1:Cb/ax3seSYIx7SuZdm2G2xzfwmv3TPSk2ucNfQESPXM=
 github.com/aws/aws-sdk-go v1.25.29 h1:XMAoVra1O2paI3ZgiougWydq6zGt6sLzWn4qb7oVbBY=
 github.com/aws/aws-sdk-go v1.25.29/go.mod h1:KmX6BPdI08NWTb3/sm4ZGu5ShLoqVDhKgpiN924inxo=
 github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
 github.com/cespare/xxhash v1.1.0 h1:a6HrQnmkObjyL+Gs60czilIUGqrzKutQD6XZog3p+ko=
 github.com/cespare/xxhash v1.1.0/go.mod h1:XrSqR1VqqWfGrhpAt58auRo0WTKS1nRRg3ghfAqPWnc=
 github.com/cespare/xxhash/v2 v2.0.1-0.20190104013014-3767db7a7e18 h1:pl4eWIqvFe/Kg3zkn7NxevNzILnZYWDCG7qbA1CJik0=
 github.com/cespare/xxhash/v2 v2.0.1-0.20190104013014-3767db7a7e18/go.mod h1:HD5P3vAIAh+Y2GAxg0PrPN1P8WkepXGpjbUPDHJqqKM=
 github.com/cespare/xxhash/v2 v2.1.0 h1:yTUvW7Vhb89inJ+8irsUqiWjh8iT6sQPZiQzI6ReGkA=
 github.com/cespare/xxhash/v2 v2.1.0/go.mod h1:dgIUBU3pDso/gPgZ1osOZ0iQf77oPR28Tjxl5dIMyVM=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4=
 github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b h1:VKtxabqXZkF25pY9ekfRL6a582T4P37/31XEstQ5p58=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/groupcache v0.0.0-20190702054246-869f871628b6/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/groupcache v0.0.0-20191027212112-611e8accdfc9 h1:uHTyIjqVhYRhLbJ8nIiOJHkEZZ+5YoOsAbD3sk82NiE=
 github.com/golang/groupcache v0.0.0-20191027212112-611e8accdfc9/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc=
 github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2 h1:6nsPYzhq5kReh6QImI3k5qWzO4PEbvbIW2cwSfR/6xs=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/snappy v0.0.1 h1:Qgr9rKW7uDUkrbSmQeiDsGa8SjGyCOGtuasMWwvp2P4=
 github.com/golang/snappy v0.0.1/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0 h1:crn/baboCvb5fXaQ0IJ1SGTsTVrWpDsCWC8EGETZijY=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5 h1:sjZBwGj9Jlw33ImPtvFviGYvseOtDM7hkSKB7+Tv3SM=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/jmespath/go-jmespath v0.0.0-20180206201540-c2b33e8439af h1:pmfjZENx5imkbgOkpRUYLnmbU7UEFbjtDA2hxJ1ichM=
 github.com/jmespath/go-jmespath v0.0.0-20180206201540-c2b33e8439af/go.mod h1:Nht3zPeWKUH0NzdCt2Blrr5ys8VGpn0CEB0cQHVjt7k=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/jstemmer/go-junit-report v0.9.1 h1:6QPYqodiu3GuPL+7mfx+NwDdp2eTkp9IfEUpgAwUN0o=
 github.com/jstemmer/go-junit-report v0.9.1/go.mod h1:Brl9GWCQeLvo8nXZwPNNblvFj/XSXhF0NWZEnDohbsk=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
 github.com/klauspost/compress v1.4.0/go.mod h1:RyIbtBH6LamlWaDj8nUwkbUhJ87Yi3uG0guNDohfE1A=
 github.com/klauspost/compress v1.4.1/go.mod h1:RyIbtBH6LamlWaDj8nUwkbUhJ87Yi3uG0guNDohfE1A=
 github.com/klauspost/compress v1.9.1 h1:TWy0o9J9c6LK9C8t7Msh6IAJNXbsU/nvKLTQUU5HdaY=
 github.com/klauspost/compress v1.9.1/go.mod h1:RyIbtBH6LamlWaDj8nUwkbUhJ87Yi3uG0guNDohfE1A=
 github.com/klauspost/cpuid v0.0.0-20180405133222-e7e905edc00e/go.mod h1:Pj4uuM528wm8OyEC2QMXAi2YiTZ96dNQPGgoMS4s3ek=
 github.com/klauspost/cpuid v1.2.0 h1:NMpwD2G9JSFOE1/TJjGSo5zG7Yb2bTe7eq1jH+irmeE=
 github.com/klauspost/cpuid v1.2.0/go.mod h1:Pj4uuM528wm8OyEC2QMXAi2YiTZ96dNQPGgoMS4s3ek=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
 github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 github.com/spaolacci/murmur3 v0.0.0-20180118202830-f09979ecbc72/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/spaolacci/murmur3 v1.0.1-0.20190317074736-539464a789e9/go.mod h1:JwIasOWyU6f++ZhiEuf87xNszmSA2myDM2Kzu9HwQUA=
 github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME=
@ -48,6 +110,129 @@ github.com/valyala/histogram v1.0.1/go.mod h1:lQy0xA4wUz2+IUnf97SivorsJIp8FxsnRd
 github.com/valyala/quicktemplate v1.3.1 h1:V9Ixd/ONuoT6C1ipx8XR2dNGSDgIVnvT4ezZ38ZWllU=
 github.com/valyala/quicktemplate v1.3.1/go.mod h1:EH+4AkTd43SvgIbQHYu59/cJyxDoOVRUAfrukLPuGJ4=
 github.com/valyala/tcplisten v0.0.0-20161114210144-ceec8f93295a/go.mod h1:v3UYOV9WzVtRmSR+PDvWpU/qWl4Wa5LApYYX4ZtKbio=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 go.opencensus.io v0.22.1 h1:8dP3SGL7MPB94crU3bEPplMPe83FI4EouesJUeFHv50=
 go.opencensus.io v0.22.1/go.mod h1:Ap50jQcDJrx6rB6VgeeFPtuPIf3wMRvRfrfYDO6+BmA=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
 golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek=
 golang.org/x/exp v0.0.0-20191002040644-a1355ae1e2c3/go.mod h1:NOZ3BPKG0ec/BKJQgnvsSFpcKLM5xXVWnvZS97DWHgE=
 golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136 h1:A1gGSx58LAGVHUUsOf7IiR0u8Xb6W51gRwfDBhkdcaw=
 golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136/go.mod h1:JXzH8nQsPlswgeRAPE3MuO9GYsAcnJvJ4vnMwN/5qkY=
 golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
 golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
 golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190409202823-959b441ac422/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190930215403-16217165b5de h1:5hukYrvBGR8/eNkX5mdUezrA6JiaEZDtJb9Ei+1LlBs=
 golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
 golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
 golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180911220305-26e67e76b6c3/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/sys v0.0.0-20191027211539-f8518d3b3627 h1:/FZUR3d/QsXe4AcJyJFCc40TOj3y6Hs23Y3YJlvVkWo=
+golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
-golang.org/x/sys v0.0.0-20191027211539-f8518d3b3627/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/net v0.0.0-20191105084925-a882066a44e0 h1:QPlSTtPE2k6PZPasQUbzuK3p9JbS+vMXYVto8g/yrsg=
 golang.org/x/net v0.0.0-20191105084925-a882066a44e0/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45 h1:SVwTIAaPC2U/AvvLNZ2a7OVsmBpC8L5BlwK1whH3hm0=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58 h1:8gQV6CLnAEikrhgkHFbMAEhagSSnXWGV915qUMm9mrU=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191105231009-c1f44814a5cd h1:3x5uuvBgE6oaXJjCOvpCC1IpgJogqQ+PqGGU3ZxAgII=
 golang.org/x/sys v0.0.0-20191105231009-c1f44814a5cd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2 h1:tW2bmiBqwgJj/UpqtC8EpXEZVYOwU0yG4iWbprSVAcs=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190927191325-030b2cf1153e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191010171213-8abd42400456/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191105231337-689d0f08e67a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191107010934-f79515f33823 h1:akkRBeitX2EZP59KdtKw310CI4WGPCNPyrLbE7WZA8Y=
 golang.org/x/tools v0.0.0-20191107010934-f79515f33823/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
 google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
 google.golang.org/api v0.13.0 h1:Q3Ui3V3/CVinFWFiW39Iw0kMuVrRzYX0wN6OPFp0lTA=
 google.golang.org/api v0.13.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
 google.golang.org/appengine v1.6.5 h1:tycE03LOZYQNhDpS27tcQdAzLCVMaj7QT2SXxebnpCM=
 google.golang.org/appengine v1.6.5/go.mod h1:8WjMMxjGQR8xUklV/ARdw2HLXBOI7O7uCIDZVag1xfc=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8=
 google.golang.org/genproto v0.0.0-20191009194640-548a555dbc03/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
 google.golang.org/genproto v0.0.0-20191028173616-919d9bdd9fe6 h1:UXl+Zk3jqqcbEVV7ace5lrt4YdA4tXiz3f/KbmD29Vo=
 google.golang.org/genproto v0.0.0-20191028173616-919d9bdd9fe6/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg=
 google.golang.org/grpc v1.25.0 h1:ItERT+UbGdX+s4u+nQNlVM/Q7cbmf7icKfvzbWqVtq0=
 google.golang.org/grpc v1.25.0/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.1-2019.2.3 h1:3JgtbtFHMiCmsznwGVTUWbgGov+pVqnlf1dEJTNAXeM=
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
--- a/lib/backup/actions/backup.go
+++ b/lib/backup/actions/backup.go
@ -0,0 +1,167 @@
 package actions
 import (
 	"fmt"
 	"io"
 	"sync/atomic"
 	"time"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fslocal"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fsnil"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 // Backup performs backup according to the provided settings.
 //
 // Note that the backup works only for VictoriaMetrics snapshots
 // made via `/snapshot/create`. It works improperly on mutable files.
 type Backup struct {
 	// Concurrency is the number of concurrent workers during the backup.
 	// Concurrency=1 by default.
 	Concurrency int
 	// Src is backup source
 	Src *fslocal.FS
 	// Dst is backup destination.
 	//
 	// If dst contains the previous backup data, then incremental backup
 	// is made, i.e. only the changed data is uploaded.
 	//
 	// If dst points to empty dir, then full backup is made.
 	// Origin can be set to the previous backup in order to reduce backup duration
 	// and reduce network bandwidth usage.
 	Dst common.RemoteFS
 	// Origin is optional origin for speeding up full backup if Dst points
 	// to empty dir.
 	Origin common.OriginFS
 }
 // Run runs b with the provided settings.
 func (b *Backup) Run() error {
 	startTime := time.Now()
 	concurrency := b.Concurrency
 	src := b.Src
 	dst := b.Dst
 	origin := b.Origin
 	if origin == nil {
 		origin = &fsnil.FS{}
 	}
 	logger.Infof("starting backup from %s to %s using origin %s", src, dst, origin)
 	logger.Infof("obtaining list of parts at %s", src)
 	srcParts, err := src.ListParts()
 	if err != nil {
 		return fmt.Errorf("cannot list src parts: %s", err)
 	}
 	logger.Infof("obtaining list of parts at %s", dst)
 	dstParts, err := dst.ListParts()
 	if err != nil {
 		return fmt.Errorf("cannot list dst parts: %s", err)
 	}
 	logger.Infof("obtaining list of parts at %s", origin)
 	originParts, err := origin.ListParts()
 	if err != nil {
 		return fmt.Errorf("cannot list origin parts: %s", err)
 	}
 	backupSize := getPartsSize(srcParts)
 	partsToDelete := common.PartsDifference(dstParts, srcParts)
 	deleteSize := getPartsSize(partsToDelete)
 	if len(partsToDelete) > 0 {
 		logger.Infof("deleting %d parts from %s", len(partsToDelete), dst)
 		deletedParts := uint64(0)
 		err = runParallel(concurrency, partsToDelete, func(p common.Part) error {
 			logger.Infof("deleting %s from %s", &p, dst)
 			if err := dst.DeletePart(p); err != nil {
 				return fmt.Errorf("cannot delete %s from %s: %s", &p, dst, err)
 			}
 			atomic.AddUint64(&deletedParts, 1)
 			return nil
 		}, func(elapsed time.Duration) {
 			n := atomic.LoadUint64(&deletedParts)
 			logger.Infof("deleted %d out of %d parts from %s in %s", n, len(partsToDelete), dst, elapsed)
 		})
 		if err != nil {
 			return err
 		}
 		if err := dst.RemoveEmptyDirs(); err != nil {
 			return fmt.Errorf("cannot remove empty directories at %s: %s", dst, err)
 		}
 	}
 	partsToCopy := common.PartsDifference(srcParts, dstParts)
 	originCopyParts := common.PartsIntersect(originParts, partsToCopy)
 	copySize := getPartsSize(originCopyParts)
 	if len(originCopyParts) > 0 {
 		logger.Infof("server-side copying %d parts from %s to %s", len(originCopyParts), origin, dst)
 		copiedParts := uint64(0)
 		err = runParallel(concurrency, originCopyParts, func(p common.Part) error {
 			logger.Infof("server-side copying %s from %s to %s", &p, origin, dst)
 			if err := dst.CopyPart(origin, p); err != nil {
 				return fmt.Errorf("cannot copy %s from %s to %s: %s", &p, origin, dst, err)
 			}
 			atomic.AddUint64(&copiedParts, 1)
 			return nil
 		}, func(elapsed time.Duration) {
 			n := atomic.LoadUint64(&copiedParts)
 			logger.Infof("server-side copied %d out of %d parts from %s to %s in %s", n, len(originCopyParts), origin, dst, elapsed)
 		})
 		if err != nil {
 			return err
 		}
 	}
 	srcCopyParts := common.PartsDifference(partsToCopy, originParts)
 	uploadSize := getPartsSize(srcCopyParts)
 	if len(srcCopyParts) > 0 {
 		logger.Infof("uploading %d parts from %s to %s", len(srcCopyParts), src, dst)
 		bytesUploaded := uint64(0)
 		err = runParallel(concurrency, srcCopyParts, func(p common.Part) error {
 			logger.Infof("uploading %s from %s to %s", &p, src, dst)
 			rc, err := src.NewReadCloser(p)
 			if err != nil {
 				return fmt.Errorf("cannot create reader for %s from %s: %s", &p, src, err)
 			}
 			sr := &statReader{
 				r:         rc,
 				bytesRead: &bytesUploaded,
 			}
 			if err := dst.UploadPart(p, sr); err != nil {
 				return fmt.Errorf("cannot upload %s to %s: %s", &p, dst, err)
 			}
 			if err = rc.Close(); err != nil {
 				return fmt.Errorf("cannot close reader for %s from %s: %s", &p, src, err)
 			}
 			return nil
 		}, func(elapsed time.Duration) {
 			n := atomic.LoadUint64(&bytesUploaded)
 			logger.Infof("uploaded %d out of %d bytes from %s to %s in %s", n, uploadSize, src, dst, elapsed)
 		})
 		if err != nil {
 			return err
 		}
 	}
 	logger.Infof("backed up %d bytes in %s; deleted %d bytes; server-side copied %d bytes; uploaded %d bytes",
 		backupSize, time.Since(startTime), deleteSize, copySize, uploadSize)
 	return nil
 }
 type statReader struct {
 	r         io.Reader
 	bytesRead *uint64
 }
 func (sr *statReader) Read(p []byte) (int, error) {
 	n, err := sr.r.Read(p)
 	atomic.AddUint64(sr.bytesRead, uint64(n))
 	return n, err
 }
--- a/lib/backup/actions/restore.go
+++ b/lib/backup/actions/restore.go
@ -0,0 +1,170 @@
 package actions
 import (
 	"fmt"
 	"io"
 	"sync/atomic"
 	"time"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fslocal"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 // Restore restores data according to the provided settings.
 //
 // Note that the restore works only for VictoriaMetrics backups made from snapshots.
 // It works improperly on mutable files.
 type Restore struct {
 	// Concurrency is the number of concurrent workers to run during restore.
 	// Concurrency=1 is used by default.
 	Concurrency int
 	// Src is the source containing backed up data.
 	Src common.RemoteFS
 	// Dst is destination to restore the data.
 	//
 	// If dst points to existing directory, then incremental restore is performed,
 	// i.e. only new data is downloaded from src.
 	Dst *fslocal.FS
 }
 // Run runs r with the provided settings.
 func (r *Restore) Run() error {
 	startTime := time.Now()
 	concurrency := r.Concurrency
 	src := r.Src
 	dst := r.Dst
 	logger.Infof("starting restore from %s to %s", src, dst)
 	logger.Infof("obtaining list of parts at %s", src)
 	srcParts, err := src.ListParts()
 	if err != nil {
 		return fmt.Errorf("cannot list src parts: %s", err)
 	}
 	logger.Infof("obtaining list of parts at %s", dst)
 	dstParts, err := dst.ListParts()
 	if err != nil {
 		return fmt.Errorf("cannot list dst parts: %s", err)
 	}
 	backupSize := getPartsSize(srcParts)
 	// Validate srcParts. They must cover the whole files.
 	common.SortParts(srcParts)
 	offset := uint64(0)
 	var pOld common.Part
 	var path string
 	for _, p := range srcParts {
 		if p.Path != path {
 			if offset != pOld.FileSize {
 				return fmt.Errorf("invalid size for %q; got %d; want %d", path, offset, pOld.FileSize)
 			}
 			pOld = p
 			path = p.Path
 			offset = 0
 		}
 		if p.Offset < offset {
 			return fmt.Errorf("there is an overlap in %d bytes between %s and %s", offset-p.Offset, &pOld, &p)
 		}
 		if p.Offset > offset {
 			if offset == 0 {
 				return fmt.Errorf("there is a gap in %d bytes from file start to %s", p.Offset, &p)
 			}
 			return fmt.Errorf("there is a gap in %d bytes between %s and %s", p.Offset-offset, &pOld, &p)
 		}
 		if p.Size != p.ActualSize {
 			return fmt.Errorf("invalid size for %s; got %d; want %d", &p, p.ActualSize, p.Size)
 		}
 		offset += p.Size
 	}
 	partsToDelete := common.PartsDifference(dstParts, srcParts)
 	deleteSize := uint64(0)
 	if len(partsToDelete) > 0 {
 		// Fully remove local file if certain parts from the remote part are missing.
 		pathsToDelete := make(map[string]bool)
 		for _, p := range partsToDelete {
 			pathsToDelete[p.Path] = true
 		}
 		logger.Infof("deleting %d files from %s", len(pathsToDelete), dst)
 		for path := range pathsToDelete {
 			logger.Infof("deleting %s from %s", path, dst)
 			size, err := dst.DeletePath(path)
 			if err != nil {
 				return fmt.Errorf("cannot delete %s from %s: %s", path, dst, err)
 			}
 			deleteSize += size
 		}
 		if err != nil {
 			return err
 		}
 		if err := dst.RemoveEmptyDirs(); err != nil {
 			return fmt.Errorf("cannot remove empty directories at %s: %s", dst, err)
 		}
 	}
 	// Re-read dstParts, since additional parts may be removed on the previous step.
 	dstParts, err = dst.ListParts()
 	if err != nil {
 		return fmt.Errorf("cannot list dst parts after the deletion: %s", err)
 	}
 	partsToCopy := common.PartsDifference(srcParts, dstParts)
 	downloadSize := getPartsSize(partsToCopy)
 	if len(partsToCopy) > 0 {
 		perPath := make(map[string][]common.Part)
 		for _, p := range partsToCopy {
 			parts := perPath[p.Path]
 			parts = append(parts, p)
 			perPath[p.Path] = parts
 		}
 		logger.Infof("downloading %d parts from %s to %s", len(partsToCopy), src, dst)
 		bytesDownloaded := uint64(0)
 		err = runParallelPerPath(concurrency, perPath, func(parts []common.Part) error {
 			// Sort partsToCopy in order to properly grow file size during downloading.
 			common.SortParts(parts)
 			for _, p := range parts {
 				logger.Infof("downloading %s from %s to %s", &p, src, dst)
 				wc, err := dst.NewWriteCloser(p)
 				if err != nil {
 					return fmt.Errorf("cannot create writer for %q to %s: %s", &p, dst, err)
 				}
 				sw := &statWriter{
 					w:            wc,
 					bytesWritten: &bytesDownloaded,
 				}
 				if err := src.DownloadPart(p, sw); err != nil {
 					return fmt.Errorf("cannot download %s to %s: %s", &p, dst, err)
 				}
 				if err := wc.Close(); err != nil {
 					return fmt.Errorf("cannot close reader fro %s from %s: %s", &p, src, err)
 				}
 			}
 			return nil
 		}, func(elapsed time.Duration) {
 			n := atomic.LoadUint64(&bytesDownloaded)
 			logger.Infof("downloaded %d out of %d bytes from %s to %s in %s", n, downloadSize, src, dst, elapsed)
 		})
 		if err != nil {
 			return err
 		}
 	}
 	logger.Infof("restored %d bytes from backup in %s; deleted %d bytes; downloaded %d bytes", backupSize, time.Since(startTime), deleteSize, downloadSize)
 	return nil
 }
 type statWriter struct {
 	w            io.Writer
 	bytesWritten *uint64
 }
 func (sw *statWriter) Write(p []byte) (int, error) {
 	n, err := sw.w.Write(p)
 	atomic.AddUint64(sw.bytesWritten, uint64(n))
 	return n, err
 }
--- a/lib/backup/actions/util.go
+++ b/lib/backup/actions/util.go
@ -0,0 +1,231 @@
 package actions
 import (
 	"flag"
 	"fmt"
 	"strings"
 	"sync"
 	"time"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fsremote"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/gcsremote"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/s3remote"
 )
 var (
 	credsFilePath = flag.String("credsFilePath", "", "Path to file with GCS or S3 credentials. Credentials are loaded from default locations if not set.\n"+
 		"See https://cloud.google.com/iam/docs/creating-managing-service-account-keys and https://docs.aws.amazon.com/general/latest/gr/aws-security-credentials.html")
 	configFilePath = flag.String("configFilePath", "", "Path to file with S3 configs. Configs are loaded from default location if not set.\n"+
 		"See https://docs.aws.amazon.com/general/latest/gr/aws-security-credentials.html")
 )
 func runParallel(concurrency int, parts []common.Part, f func(p common.Part) error, progress func(elapsed time.Duration)) error {
 	var err error
 	runWithProgress(progress, func() {
 		err = runParallelInternal(concurrency, parts, f)
 	})
 	return err
 }
 func runParallelPerPath(concurrency int, perPath map[string][]common.Part, f func(parts []common.Part) error, progress func(elapsed time.Duration)) error {
 	var err error
 	runWithProgress(progress, func() {
 		err = runParallelPerPathInternal(concurrency, perPath, f)
 	})
 	return err
 }
 func runParallelPerPathInternal(concurrency int, perPath map[string][]common.Part, f func(parts []common.Part) error) error {
 	if concurrency <= 0 {
 		concurrency = 1
 	}
 	if len(perPath) == 0 {
 		return nil
 	}
 	// len(perPath) capacity guarantees non-blocking behavior below.
 	resultCh := make(chan error, len(perPath))
 	workCh := make(chan []common.Part, len(perPath))
 	stopCh := make(chan struct{})
 	// Start workers
 	var wg sync.WaitGroup
 	wg.Add(concurrency)
 	for i := 0; i < concurrency; i++ {
 		go func() {
 			defer wg.Done()
 			for parts := range workCh {
 				select {
 				case <-stopCh:
 					return
 				default:
 				}
 				resultCh <- f(parts)
 			}
 		}()
 	}
 	// Feed workers with work.
 	for _, parts := range perPath {
 		workCh <- parts
 	}
 	close(workCh)
 	// Read results.
 	var err error
 	for i := 0; i < len(perPath); i++ {
 		err = <-resultCh
 		if err != nil {
 			// Stop the work.
 			close(stopCh)
 			break
 		}
 	}
 	// Wait for all the workers to stop.
 	wg.Wait()
 	return err
 }
 func runParallelInternal(concurrency int, parts []common.Part, f func(p common.Part) error) error {
 	if concurrency <= 0 {
 		concurrency = 1
 	}
 	if len(parts) == 0 {
 		return nil
 	}
 	// len(parts) capacity guarantees non-blocking behavior below.
 	resultCh := make(chan error, len(parts))
 	workCh := make(chan common.Part, len(parts))
 	stopCh := make(chan struct{})
 	// Start workers
 	var wg sync.WaitGroup
 	wg.Add(concurrency)
 	for i := 0; i < concurrency; i++ {
 		go func() {
 			defer wg.Done()
 			for p := range workCh {
 				select {
 				case <-stopCh:
 					return
 				default:
 				}
 				resultCh <- f(p)
 			}
 		}()
 	}
 	// Feed workers with work.
 	for _, p := range parts {
 		workCh <- p
 	}
 	close(workCh)
 	// Read results.
 	var err error
 	for i := 0; i < len(parts); i++ {
 		err = <-resultCh
 		if err != nil {
 			// Stop the work.
 			close(stopCh)
 			break
 		}
 	}
 	// Wait for all the workers to stop.
 	wg.Wait()
 	return err
 }
 func runWithProgress(progress func(elapsed time.Duration), f func()) {
 	startTime := time.Now()
 	doneCh := make(chan struct{})
 	go func() {
 		f()
 		close(doneCh)
 	}()
 	tc := time.NewTicker(10 * time.Second)
 	for {
 		select {
 		case <-doneCh:
 			tc.Stop()
 			// The last progress call.
 			progress(time.Since(startTime))
 			return
 		case <-tc.C:
 			progress(time.Since(startTime))
 		}
 	}
 }
 func getPartsSize(parts []common.Part) uint64 {
 	n := uint64(0)
 	for _, p := range parts {
 		n += p.Size
 	}
 	return n
 }
 // NewRemoteFS returns new remote fs from the given path.
 func NewRemoteFS(path string) (common.RemoteFS, error) {
 	if len(path) == 0 {
 		return nil, fmt.Errorf("path cannot be empty")
 	}
 	n := strings.Index(path, "://")
 	if n < 0 {
 		return nil, fmt.Errorf("Missing scheme in path %q. Supported schemes: `gcs://`, `s3://`, `fs://`", path)
 	}
 	scheme := path[:n]
 	dir := path[n+len("://"):]
 	switch scheme {
 	case "fs":
 		if !strings.HasPrefix(dir, "/") {
 			return nil, fmt.Errorf("dir must be absolute; got %q", dir)
 		}
 		fs := &fsremote.FS{
 			Dir: dir,
 		}
 		return fs, nil
 	case "gcs":
 		n := strings.Index(dir, "/")
 		if n < 0 {
 			return nil, fmt.Errorf("missing directory on the gcs bucket %q", dir)
 		}
 		bucket := dir[:n]
 		dir = dir[n:]
 		fs := &gcsremote.FS{
 			CredsFilePath: *credsFilePath,
 			Bucket:        bucket,
 			Dir:           dir,
 		}
 		if err := fs.Init(); err != nil {
 			return nil, fmt.Errorf("cannot initialize connection to gcs: %s", err)
 		}
 		return fs, nil
 	case "s3":
 		n := strings.Index(dir, "/")
 		if n < 0 {
 			return nil, fmt.Errorf("missing directory on the s3 bucket %q", dir)
 		}
 		bucket := dir[:n]
 		dir = dir[n:]
 		fs := &s3remote.FS{
 			CredsFilePath:  *credsFilePath,
 			ConfigFilePath: *configFilePath,
 			Bucket:         bucket,
 			Dir:            dir,
 		}
 		if err := fs.Init(); err != nil {
 			return nil, fmt.Errorf("cannot initialize connection to s3: %s", err)
 		}
 		return fs, nil
 	default:
 		return nil, fmt.Errorf("unsupported scheme %q in `-dst`", scheme)
 	}
 }
--- a/lib/backup/common/fs.go
+++ b/lib/backup/common/fs.go
@ -0,0 +1,41 @@
 package common
 import (
 	"io"
 )
 // OriginFS is an interface for remote origin filesystem.
 //
 // This filesystem is used for performing server-side file copies
 // instead of uploading data from local filesystem.
 type OriginFS interface {
 	// String must return human-readable representation of OriginFS.
 	String() string
 	// ListParts must return all the parts for the OriginFS.
 	ListParts() ([]Part, error)
 }
 // RemoteFS is a filesystem where backups are stored.
 type RemoteFS interface {
 	// String must return human-readable representation of RemoteFS.
 	String() string
 	// ListParts must return all the parts for the RemoteFS.
 	ListParts() ([]Part, error)
 	// DeletePart must delete part p from RemoteFS.
 	DeletePart(p Part) error
 	// RemoveEmptyDirs must recursively remove empty directories in RemoteFS.
 	RemoveEmptyDirs() error
 	// CopyPart must copy part p from dstFS to RemoteFS.
 	CopyPart(dstFS OriginFS, p Part) error
 	// DownloadPart must download part p from RemoteFS to w.
 	DownloadPart(p Part, w io.Writer) error
 	// UploadPart must upload part p from r to RemoteFS.
 	UploadPart(p Part, r io.Reader) error
 }
--- a/lib/backup/common/part.go
+++ b/lib/backup/common/part.go
@ -0,0 +1,136 @@
 package common
 import (
 	"fmt"
 	"regexp"
 	"sort"
 	"strconv"
 	"strings"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 // Part is an atomic unit for transfer during backup / restore.
 //
 // Each source file can be split into parts with up to MaxPartSize sizes.
 type Part struct {
 	// Path is the path to file for backup.
 	Path string
 	// FileSize is the size of the whole file for the given part.
 	FileSize uint64
 	// Offset is offset in the file to backup.
 	Offset uint64
 	// Size is the size of the part to backup starting from Offset.
 	Size uint64
 	// ActualSize is the actual size of the part.
 	//
 	// The part is considered broken if it isn't equal to Size.
 	// Such a part must be removed from remote storage.
 	ActualSize uint64
 }
 func (p *Part) key() string {
 	return fmt.Sprintf("%s%016X%016X%016X%016X", p.Path, p.FileSize, p.Offset, p.Size, p.ActualSize)
 }
 // String returns human-readable representation of the part.
 func (p *Part) String() string {
 	return fmt.Sprintf("part{path: %q, file_size: %d, offset: %d, size: %d}", p.Path, p.FileSize, p.Offset, p.Size)
 }
 // RemotePath returns remote path for the part p and the given prefix.
 func (p *Part) RemotePath(prefix string) string {
 	for strings.HasSuffix(prefix, "/") {
 		prefix = prefix[:len(prefix)-1]
 	}
 	return fmt.Sprintf("%s/%s/%016X_%016X_%016X", prefix, p.Path, p.FileSize, p.Offset, p.Size)
 }
 var partNameRegexp = regexp.MustCompile(`^(.+)/([0-9A-F]{16})_([0-9A-F]{16})_([0-9A-F]{16})$`)
 // ParseFromRemotePath parses p from remotePath.
 //
 // Returns true on success.
 func (p *Part) ParseFromRemotePath(remotePath string) bool {
 	tmp := partNameRegexp.FindStringSubmatch(remotePath)
 	if len(tmp) != 5 {
 		return false
 	}
 	path := tmp[1]
 	for strings.HasPrefix(path, "/") {
 		path = path[1:]
 	}
 	fileSize, err := strconv.ParseUint(tmp[2], 16, 64)
 	if err != nil {
 		logger.Panicf("BUG: cannot parse fileSize from %q: %s", tmp[2], err)
 	}
 	offset, err := strconv.ParseUint(tmp[3], 16, 64)
 	if err != nil {
 		logger.Panicf("BUG: cannot parse offset from %q: %s", tmp[3], err)
 	}
 	size, err := strconv.ParseUint(tmp[4], 16, 64)
 	if err != nil {
 		logger.Panicf("BUG: cannot parse size from %q: %s", tmp[4], err)
 	}
 	p.Path = path
 	p.FileSize = fileSize
 	p.Offset = offset
 	p.Size = size
 	return true
 }
 // MaxPartSize is the maximum size for each part.
 //
 // The MaxPartSize reduces bandwidth usage during retires on network errors
 // when transfering multi-TB files.
 const MaxPartSize = 128 * 1024 * 1024
 // SortParts sorts parts by (Path, Offset)
 func SortParts(parts []Part) {
 	sort.Slice(parts, func(i, j int) bool {
 		a := parts[i]
 		b := parts[j]
 		if a.Path != b.Path {
 			return a.Path < b.Path
 		}
 		return a.Offset < b.Offset
 	})
 }
 // PartsDifference returns a - b
 func PartsDifference(a, b []Part) []Part {
 	m := make(map[string]bool, len(b))
 	for _, p := range b {
 		k := p.key()
 		m[k] = true
 	}
 	var d []Part
 	for _, p := range a {
 		k := p.key()
 		if !m[k] {
 			d = append(d, p)
 		}
 	}
 	return d
 }
 // PartsIntersect returns the intersection of a and b
 func PartsIntersect(a, b []Part) []Part {
 	m := make(map[string]bool, len(a))
 	for _, p := range a {
 		k := p.key()
 		m[k] = true
 	}
 	var d []Part
 	for _, p := range b {
 		k := p.key()
 		if m[k] {
 			d = append(d, p)
 		}
 	}
 	return d
 }
--- a/lib/backup/fscommon/fscommon.go
+++ b/lib/backup/fscommon/fscommon.go
@ -0,0 +1,246 @@
 package fscommon
 import (
 	"fmt"
 	"os"
 	"path/filepath"
 	"strings"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 // FsyncFile fsyncs path contents and the parent directory contents.
 func FsyncFile(path string) error {
 	if err := fsync(path); err != nil {
 		_ = os.RemoveAll(path)
 		return fmt.Errorf("cannot fsync file %q: %s", path, err)
 	}
 	dir := filepath.Dir(path)
 	if err := fsync(dir); err != nil {
 		return fmt.Errorf("cannot fsync dir %q: %s", dir, err)
 	}
 	return nil
 }
 // FsyncDir fsyncs dir contents.
 func FsyncDir(dir string) error {
 	return fsync(dir)
 }
 func fsync(path string) error {
 	f, err := os.Open(path)
 	if err != nil {
 		return err
 	}
 	if err := f.Sync(); err != nil {
 		_ = f.Close()
 		return err
 	}
 	return f.Close()
 }
 // AppendFiles appends all the files from dir to dst.
 //
 // All the appended files will have dir prefix.
 func AppendFiles(dst []string, dir string) ([]string, error) {
 	d, err := os.Open(dir)
 	if err != nil {
 		return nil, fmt.Errorf("cannot open %q: %s", dir, err)
 	}
 	dst, err = appendFilesInternal(dst, d)
 	if err1 := d.Close(); err1 != nil {
 		err = err1
 	}
 	return dst, err
 }
 func appendFilesInternal(dst []string, d *os.File) ([]string, error) {
 	dir := d.Name()
 	dfi, err := d.Stat()
 	if err != nil {
 		return nil, fmt.Errorf("cannot stat %q: %s", dir, err)
 	}
 	if !dfi.IsDir() {
 		return nil, fmt.Errorf("%q isn't a directory", dir)
 	}
 	fis, err := d.Readdir(-1)
 	if err != nil {
 		return nil, fmt.Errorf("cannot read directory contents in %q: %s", dir, err)
 	}
 	for _, fi := range fis {
 		name := fi.Name()
 		if name == "." || name == ".." {
 			continue
 		}
 		path := dir + "/" + name
 		if fi.IsDir() {
 			// Process directory
 			dst, err = AppendFiles(dst, path)
 			if err != nil {
 				return nil, fmt.Errorf("cannot list %q: %s", path, err)
 			}
 			continue
 		}
 		if fi.Mode()&os.ModeSymlink != os.ModeSymlink {
 			// Process file
 			dst = append(dst, path)
 			continue
 		}
 		pathOrig := path
 	again:
 		// Process symlink
 		pathReal, err := filepath.EvalSymlinks(pathOrig)
 		if err != nil {
 			if os.IsNotExist(err) || strings.Contains(err.Error(), "no such file or directory") {
 				// Skip symlink that points to nowhere.
 				continue
 			}
 			return nil, fmt.Errorf("cannot resolve symlink %q: %s", pathOrig, err)
 		}
 		sfi, err := os.Stat(pathReal)
 		if err != nil {
 			return nil, fmt.Errorf("cannot stat %q from symlink %q: %s", pathReal, path, err)
 		}
 		if sfi.IsDir() {
 			// Symlink points to directory
 			dstNew, err := AppendFiles(dst, pathReal)
 			if err != nil {
 				return nil, fmt.Errorf("cannot list files at %q from symlink %q: %s", pathReal, path, err)
 			}
 			pathReal += "/"
 			for i := len(dst); i < len(dstNew); i++ {
 				x := dstNew[i]
 				if !strings.HasPrefix(x, pathReal) {
 					return nil, fmt.Errorf("unexpected prefix for path %q; want %q", x, pathReal)
 				}
 				dstNew[i] = path + "/" + x[len(pathReal):]
 			}
 			dst = dstNew
 			continue
 		}
 		if sfi.Mode()&os.ModeSymlink != os.ModeSymlink {
 			// Symlink points to file
 			dst = append(dst, path)
 			continue
 		}
 		// Symlink points to symlink. Process it again.
 		pathOrig = pathReal
 		goto again
 	}
 	return dst, nil
 }
 // RemoveEmptyDirs recursively removes empty directories under the given dir.
 func RemoveEmptyDirs(dir string) error {
 	_, err := removeEmptyDirs(dir)
 	return err
 }
 func removeEmptyDirs(dir string) (bool, error) {
 	d, err := os.Open(dir)
 	if err != nil {
 		if os.IsNotExist(err) {
 			return true, nil
 		}
 		return false, err
 	}
 	ok, err := removeEmptyDirsInternal(d)
 	if err1 := d.Close(); err1 != nil {
 		err = err1
 	}
 	if err != nil {
 		return false, err
 	}
 	return ok, nil
 }
 func removeEmptyDirsInternal(d *os.File) (bool, error) {
 	dir := d.Name()
 	dfi, err := d.Stat()
 	if err != nil {
 		return false, fmt.Errorf("cannot stat %q: %s", dir, err)
 	}
 	if !dfi.IsDir() {
 		return false, fmt.Errorf("%q isn't a directory", dir)
 	}
 	fis, err := d.Readdir(-1)
 	if err != nil {
 		return false, fmt.Errorf("cannot read directory contents in %q: %s", dir, err)
 	}
 	dirEntries := 0
 	for _, fi := range fis {
 		name := fi.Name()
 		if name == "." || name == ".." {
 			continue
 		}
 		path := dir + "/" + name
 		if fi.IsDir() {
 			// Process directory
 			ok, err := removeEmptyDirs(path)
 			if err != nil {
 				return false, fmt.Errorf("cannot list %q: %s", path, err)
 			}
 			if !ok {
 				dirEntries++
 			}
 			continue
 		}
 		if fi.Mode()&os.ModeSymlink != os.ModeSymlink {
 			// Skip plain files.
 			dirEntries++
 			continue
 		}
 		pathOrig := path
 	again:
 		// Process symlink
 		pathReal, err := filepath.EvalSymlinks(pathOrig)
 		if err != nil {
 			if os.IsNotExist(err) || strings.Contains(err.Error(), "no such file or directory") {
 				// Remove symlink that points to nowere.
 				logger.Infof("removing broken symlink %q", pathOrig)
 				if err := os.Remove(pathOrig); err != nil {
 					return false, fmt.Errorf("cannot remove %q: %s", pathOrig, err)
 				}
 				continue
 			}
 			return false, fmt.Errorf("cannot resolve symlink %q: %s", pathOrig, err)
 		}
 		sfi, err := os.Stat(pathReal)
 		if err != nil {
 			return false, fmt.Errorf("cannot stat %q from symlink %q: %s", pathReal, path, err)
 		}
 		if sfi.IsDir() {
 			// Symlink points to directory
 			ok, err := removeEmptyDirs(pathReal)
 			if err != nil {
 				return false, fmt.Errorf("cannot list files at %q from symlink %q: %s", pathReal, path, err)
 			}
 			if !ok {
 				dirEntries++
 			} else {
 				// Remove the symlink
 				logger.Infof("removing symlink that points to empty dir %q", pathOrig)
 				if err := os.Remove(pathOrig); err != nil {
 					return false, fmt.Errorf("cannot remove %q: %s", pathOrig, err)
 				}
 			}
 			continue
 		}
 		if sfi.Mode()&os.ModeSymlink != os.ModeSymlink {
 			// Symlink points to file. Skip it.
 			dirEntries++
 			continue
 		}
 		// Symlink points to symlink. Process it again.
 		pathOrig = pathReal
 		goto again
 	}
 	if dirEntries > 0 {
 		return false, nil
 	}
 	logger.Infof("removing empty dir %q", dir)
 	if err := os.Remove(dir); err != nil {
 		return false, fmt.Errorf("cannot remove %q: %s", dir, err)
 	}
 	return true, nil
 }
--- a/lib/backup/fslocal/fslocal.go
+++ b/lib/backup/fslocal/fslocal.go
@ -0,0 +1,201 @@
 package fslocal
 import (
 	"fmt"
 	"io"
 	"os"
 	"path/filepath"
 	"strings"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fscommon"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/filestream"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 // FS represents local filesystem.
 //
 // Backups are made from local fs.
 // Data is restored from backups to local fs.
 type FS struct {
 	// Dir is a path to local directory to work with.
 	Dir string
 }
 // String returns user-readable representation for the fs.
 func (fs *FS) String() string {
 	return fmt.Sprintf("fslocal %q", fs.Dir)
 }
 // ListParts returns all the parts for fs.
 func (fs *FS) ListParts() ([]common.Part, error) {
 	dir := fs.Dir
 	if _, err := os.Stat(dir); err != nil {
 		if os.IsNotExist(err) {
 			// Return empty part list for non-existing directory.
 			// The directory will be created later.
 			return nil, nil
 		}
 		return nil, err
 	}
 	files, err := fscommon.AppendFiles(nil, dir)
 	if err != nil {
 		return nil, err
 	}
 	var parts []common.Part
 	dir += "/"
 	for _, file := range files {
 		if !strings.HasPrefix(file, dir) {
 			logger.Panicf("BUG: unexpected prefix for file %q; want %q", file, dir)
 		}
 		fi, err := os.Stat(file)
 		if err != nil {
 			return nil, fmt.Errorf("cannot stat %q: %s", file, err)
 		}
 		path := file[len(dir):]
 		size := uint64(fi.Size())
 		if size == 0 {
 			parts = append(parts, common.Part{
 				Path:   path,
 				Offset: 0,
 				Size:   0,
 			})
 			continue
 		}
 		offset := uint64(0)
 		for offset < size {
 			n := size - offset
 			if n > common.MaxPartSize {
 				n = common.MaxPartSize
 			}
 			parts = append(parts, common.Part{
 				Path:       path,
 				FileSize:   size,
 				Offset:     offset,
 				Size:       n,
 				ActualSize: n,
 			})
 			offset += n
 		}
 	}
 	return parts, nil
 }
 // NewReadCloser returns io.ReadCloser for the given part p located in fs.
 func (fs *FS) NewReadCloser(p common.Part) (io.ReadCloser, error) {
 	path := fs.path(p)
 	r, err := filestream.OpenReaderAt(path, int64(p.Offset), true)
 	if err != nil {
 		return nil, fmt.Errorf("cannot open %q at %q: %s", p.Path, fs.Dir, err)
 	}
 	lrc := &limitedReadCloser{
 		r: r,
 		n: p.Size,
 	}
 	return lrc, nil
 }
 // NewWriteCloser returns io.WriteCloser for the given part p located in fs.
 func (fs *FS) NewWriteCloser(p common.Part) (io.WriteCloser, error) {
 	path := fs.path(p)
 	if err := fs.mkdirAll(path); err != nil {
 		return nil, err
 	}
 	w, err := filestream.OpenWriterAt(path, int64(p.Offset), true)
 	if err != nil {
 		return nil, fmt.Errorf("cannot open writer for %q at offset %d: %s", path, p.Offset, err)
 	}
 	wc := &writeCloser{
 		w:    w,
 		path: path,
 	}
 	return wc, nil
 }
 // DeletePath deletes the given path from fs and returns the size
 // for the deleted file.
 func (fs *FS) DeletePath(path string) (uint64, error) {
 	p := common.Part{
 		Path: path,
 	}
 	fullPath := fs.path(p)
 	f, err := os.Open(fullPath)
 	if err != nil {
 		if os.IsNotExist(err) {
 			// The file could be deleted earlier via symlink.
 			return 0, nil
 		}
 		return 0, fmt.Errorf("cannot open %q at %q: %s", path, fullPath, err)
 	}
 	fi, err := f.Stat()
 	_ = f.Close()
 	if err != nil {
 		return 0, fmt.Errorf("cannot stat %q at %q: %s", path, fullPath, err)
 	}
 	size := uint64(fi.Size())
 	if err := os.Remove(fullPath); err != nil {
 		return 0, fmt.Errorf("cannot remove %q: %s", fullPath, err)
 	}
 	return size, nil
 }
 // RemoveEmptyDirs recursively removes all the empty directories in fs.
 func (fs *FS) RemoveEmptyDirs() error {
 	return fscommon.RemoveEmptyDirs(fs.Dir)
 }
 func (fs *FS) mkdirAll(filePath string) error {
 	dir := filepath.Dir(filePath)
 	if err := os.MkdirAll(dir, 0700); err != nil {
 		return fmt.Errorf("cannot create directory %q: %s", dir, err)
 	}
 	return nil
 }
 func (fs *FS) path(p common.Part) string {
 	dir := fs.Dir
 	for strings.HasSuffix(dir, "/") {
 		dir = dir[:len(dir)-1]
 	}
 	return fs.Dir + "/" + p.Path
 }
 type limitedReadCloser struct {
 	r *filestream.Reader
 	n uint64
 }
 func (lrc *limitedReadCloser) Read(p []byte) (int, error) {
 	if lrc.n == 0 {
 		return 0, io.EOF
 	}
 	if uint64(len(p)) > lrc.n {
 		p = p[:lrc.n]
 	}
 	n, err := lrc.r.Read(p)
 	if n > len(p) {
 		return n, fmt.Errorf("too much data read; got %d bytes; want %d bytes", n, len(p))
 	}
 	lrc.n -= uint64(n)
 	return n, err
 }
 func (lrc *limitedReadCloser) Close() error {
 	lrc.r.MustClose()
 	return nil
 }
 type writeCloser struct {
 	w    *filestream.Writer
 	path string
 }
 func (wc *writeCloser) Write(p []byte) (int, error) {
 	return wc.w.Write(p)
 }
 func (wc *writeCloser) Close() error {
 	wc.w.MustClose()
 	return fscommon.FsyncFile(wc.path)
 }
--- a/lib/backup/fsnil/fsnil.go
+++ b/lib/backup/fsnil/fsnil.go
@ -0,0 +1,20 @@
 package fsnil
 import (
 	"fmt"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 )
 // FS represents nil remote filesystem.
 type FS struct{}
 // String returns human-readable string representation for fs.
 func (fs *FS) String() string {
 	return fmt.Sprintf("fsnil")
 }
 // ListParts returns all the parts from fs.
 func (fs *FS) ListParts() ([]common.Part, error) {
 	return nil, nil
 }
--- a/lib/backup/fsremote/fsremote.go
+++ b/lib/backup/fsremote/fsremote.go
@ -0,0 +1,190 @@
 package fsremote
 import (
 	"fmt"
 	"io"
 	"os"
 	"path/filepath"
 	"strings"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/fscommon"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 )
 // FS represents remote filesystem.
 //
 // Backups are uploaded there.
 // Data is downloaded from there during restore.
 type FS struct {
 	// Dir is a path to remote directory with backup data.
 	Dir string
 }
 // String returns human-readable string representation for fs.
 func (fs *FS) String() string {
 	return fmt.Sprintf("fsremote %q", fs.Dir)
 }
 // ListParts returns all the parts from fs.
 func (fs *FS) ListParts() ([]common.Part, error) {
 	dir := fs.Dir
 	if _, err := os.Stat(dir); err != nil {
 		if os.IsNotExist(err) {
 			// Return empty part list for non-existing directory.
 			// The directory will be created later.
 			return nil, nil
 		}
 		return nil, err
 	}
 	files, err := fscommon.AppendFiles(nil, dir)
 	if err != nil {
 		return nil, err
 	}
 	var parts []common.Part
 	dir += "/"
 	for _, file := range files {
 		if !strings.HasPrefix(file, dir) {
 			logger.Panicf("BUG: unexpected prefix for file %q; want %q", file, dir)
 		}
 		var p common.Part
 		if !p.ParseFromRemotePath(file[len(dir):]) {
 			logger.Infof("skipping unknown file %s", file)
 			continue
 		}
 		// Check for correct part size.
 		fi, err := os.Stat(file)
 		if err != nil {
 			return nil, fmt.Errorf("cannot stat file %q for part %q: %s", file, p.Path, err)
 		}
 		p.ActualSize = uint64(fi.Size())
 		parts = append(parts, p)
 	}
 	return parts, nil
 }
 // DeletePart deletes the given part p from fs.
 func (fs *FS) DeletePart(p common.Part) error {
 	path := fs.path(p)
 	if err := os.Remove(path); err != nil {
 		return fmt.Errorf("cannot remove %q: %s", path, err)
 	}
 	return nil
 }
 // RemoveEmptyDirs recursively removes all the empty directories in fs.
 func (fs *FS) RemoveEmptyDirs() error {
 	return fscommon.RemoveEmptyDirs(fs.Dir)
 }
 // CopyPart copies the part p from srcFS to fs.
 //
 // srcFS must have *FS type.
 func (fs *FS) CopyPart(srcFS common.OriginFS, p common.Part) error {
 	src, ok := srcFS.(*FS)
 	if !ok {
 		return fmt.Errorf("cannot perform server-side copying from %s to %s: both of them must be fsremote", srcFS, fs)
 	}
 	srcPath := src.path(p)
 	dstPath := fs.path(p)
 	if err := fs.mkdirAll(dstPath); err != nil {
 		return err
 	}
 	// Attempt to create hardlink from srcPath to dstPath.
 	if err := os.Link(srcPath, dstPath); err == nil {
 		return fscommon.FsyncFile(dstPath)
 	}
 	// Cannot create hardlink. Just copy file contents
 	srcFile, err := os.Open(srcPath)
 	if err != nil {
 		return fmt.Errorf("cannot open file %q: %s", srcPath, err)
 	}
 	dstFile, err := os.Create(dstPath)
 	if err != nil {
 		_ = srcFile.Close()
 		return fmt.Errorf("cannot create file %q: %s", dstPath, err)
 	}
 	n, err := io.Copy(dstFile, srcFile)
 	if err1 := dstFile.Close(); err1 != nil {
 		err = err1
 	}
 	if err1 := srcFile.Close(); err1 != nil {
 		err = err1
 	}
 	if err != nil {
 		_ = os.RemoveAll(dstPath)
 		return err
 	}
 	if uint64(n) != p.Size {
 		_ = os.RemoveAll(dstPath)
 		return fmt.Errorf("unexpected number of bytes copied from %q to %q; got %d bytes; want %d bytes", srcPath, dstPath, n, p.Size)
 	}
 	if err := fscommon.FsyncFile(dstPath); err != nil {
 		_ = os.RemoveAll(dstPath)
 		return err
 	}
 	return nil
 }
 // DownloadPart download part p from fs to w.
 func (fs *FS) DownloadPart(p common.Part, w io.Writer) error {
 	path := fs.path(p)
 	r, err := os.Open(path)
 	if err != nil {
 		return fmt.Errorf("cannot open %q: %s", path, err)
 	}
 	n, err := io.Copy(w, r)
 	if err1 := r.Close(); err1 != nil && err == nil {
 		err = err1
 	}
 	if err != nil {
 		return fmt.Errorf("cannot download data from %q: %s", path, err)
 	}
 	if uint64(n) != p.Size {
 		return fmt.Errorf("wrong data size downloaded from %q; got %d bytes; want %d bytes", path, n, p.Size)
 	}
 	return nil
 }
 // UploadPart uploads p from r to fs.
 func (fs *FS) UploadPart(p common.Part, r io.Reader) error {
 	path := fs.path(p)
 	if err := fs.mkdirAll(path); err != nil {
 		return err
 	}
 	w, err := os.Create(path)
 	if err != nil {
 		return fmt.Errorf("cannot create file %q: %s", path, err)
 	}
 	n, err := io.Copy(w, r)
 	if err1 := w.Close(); err1 != nil && err == nil {
 		err = err1
 	}
 	if err != nil {
 		_ = os.RemoveAll(path)
 		return fmt.Errorf("cannot upload data to %q: %s", path, err)
 	}
 	if uint64(n) != p.Size {
 		_ = os.RemoveAll(path)
 		return fmt.Errorf("wrong data size uploaded to %q; got %d bytes; want %d bytes", path, n, p.Size)
 	}
 	if err := fscommon.FsyncFile(path); err != nil {
 		_ = os.RemoveAll(path)
 		return err
 	}
 	return nil
 }
 func (fs *FS) mkdirAll(filePath string) error {
 	dir := filepath.Dir(filePath)
 	if err := os.MkdirAll(dir, 0700); err != nil {
 		return fmt.Errorf("cannot create directory %q: %s", dir, err)
 	}
 	return nil
 }
 func (fs *FS) path(p common.Part) string {
 	return p.RemotePath(fs.Dir)
 }
--- a/lib/backup/gcsremote/gcs.go
+++ b/lib/backup/gcsremote/gcs.go
@ -0,0 +1,180 @@
 package gcsremote
 import (
 	"context"
 	"fmt"
 	"io"
 	"strings"
 	"cloud.google.com/go/storage"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 	"google.golang.org/api/iterator"
 	"google.golang.org/api/option"
 )
 // FS represents filesystem for backups in GCS.
 //
 // Init must be called before calling other FS methods.
 type FS struct {
 	// Path to GCP credentials file.
 	//
 	// Default credentials are used if empty.
 	CredsFilePath string
 	// GCS bucket to use.
 	Bucket string
 	// Directory in the bucket to write to.
 	Dir string
 	bkt *storage.BucketHandle
 }
 // Init initializes fs.
 func (fs *FS) Init() error {
 	if fs.bkt != nil {
 		logger.Panicf("BUG: fs.Init has been already called")
 	}
 	for strings.HasPrefix(fs.Dir, "/") {
 		fs.Dir = fs.Dir[1:]
 	}
 	if !strings.HasSuffix(fs.Dir, "/") {
 		fs.Dir += "/"
 	}
 	ctx := context.Background()
 	var client *storage.Client
 	if len(fs.CredsFilePath) > 0 {
 		creds := option.WithCredentialsFile(fs.CredsFilePath)
 		c, err := storage.NewClient(ctx, creds)
 		if err != nil {
 			return fmt.Errorf("cannot create gcs client with credsFile %q: %s", fs.CredsFilePath, err)
 		}
 		client = c
 	} else {
 		c, err := storage.NewClient(ctx)
 		if err != nil {
 			return fmt.Errorf("cannot create default gcs client: %q", err)
 		}
 		client = c
 	}
 	fs.bkt = client.Bucket(fs.Bucket)
 	return nil
 }
 // String returns human-readable description for fs.
 func (fs *FS) String() string {
 	return fmt.Sprintf("GCS{bucket: %q, dir: %q}", fs.Bucket, fs.Dir)
 }
 // ListParts returns all the parts for fs.
 func (fs *FS) ListParts() ([]common.Part, error) {
 	dir := fs.Dir
 	ctx := context.Background()
 	q := &storage.Query{
 		Prefix: dir,
 	}
 	it := fs.bkt.Objects(ctx, q)
 	var parts []common.Part
 	for {
 		attr, err := it.Next()
 		if err == iterator.Done {
 			return parts, nil
 		}
 		if err != nil {
 			return nil, fmt.Errorf("error when iterating objects at %q: %s", dir, err)
 		}
 		file := attr.Name
 		if !strings.HasPrefix(file, dir) {
 			return nil, fmt.Errorf("unexpected prefix for gcs key %q; want %q", file, dir)
 		}
 		var p common.Part
 		if !p.ParseFromRemotePath(file[len(dir):]) {
 			logger.Infof("skipping unknown object %q", file)
 			continue
 		}
 		p.ActualSize = uint64(attr.Size)
 		parts = append(parts, p)
 	}
 }
 // DeletePart deletes part p from fs.
 func (fs *FS) DeletePart(p common.Part) error {
 	o := fs.object(p)
 	ctx := context.Background()
 	if err := o.Delete(ctx); err != nil {
 		return fmt.Errorf("cannot delete %q at %s (remote path %q): %s", p.Path, fs, o.ObjectName(), err)
 	}
 	return nil
 }
 // RemoveEmptyDirs recursively removes empty dirs in fs.
 func (fs *FS) RemoveEmptyDirs() error {
 	// GCS has no directories, so nothing to remove.
 	return nil
 }
 // CopyPart copies p from srcFS to fs.
 func (fs *FS) CopyPart(srcFS common.OriginFS, p common.Part) error {
 	src, ok := srcFS.(*FS)
 	if !ok {
 		return fmt.Errorf("cannot perform server-side copying from %s to %s: both of them must be GCS", srcFS, fs)
 	}
 	srcObj := src.object(p)
 	dstObj := fs.object(p)
 	copier := dstObj.CopierFrom(srcObj)
 	ctx := context.Background()
 	attr, err := copier.Run(ctx)
 	if err != nil {
 		return fmt.Errorf("cannot copy %q from %s to %s: %s", p.Path, src, fs, err)
 	}
 	if uint64(attr.Size) != p.Size {
 		return fmt.Errorf("unexpected %q size after copying from %s to %s; got %d bytes; want %d bytes", p.Path, src, fs, attr.Size, p.Size)
 	}
 	return nil
 }
 // DownloadPart downloads part p from fs to w.
 func (fs *FS) DownloadPart(p common.Part, w io.Writer) error {
 	o := fs.object(p)
 	ctx := context.Background()
 	r, err := o.NewReader(ctx)
 	if err != nil {
 		return fmt.Errorf("cannot open reader for %q at %s (remote path %q): %s", p.Path, fs, o.ObjectName(), err)
 	}
 	n, err := io.Copy(w, r)
 	if err1 := r.Close(); err1 != nil && err == nil {
 		err = err1
 	}
 	if err != nil {
 		return fmt.Errorf("cannot download %q from at %s (remote path %q): %s", p.Path, fs, o.ObjectName(), err)
 	}
 	if uint64(n) != p.Size {
 		return fmt.Errorf("wrong data size downloaded from %q at %s; got %d bytes; want %d bytes", p.Path, fs, n, p.Size)
 	}
 	return nil
 }
 // UploadPart uploads part p from r to fs.
 func (fs *FS) UploadPart(p common.Part, r io.Reader) error {
 	o := fs.object(p)
 	ctx := context.Background()
 	w := o.NewWriter(ctx)
 	n, err := io.Copy(w, r)
 	if err1 := w.Close(); err1 != nil && err == nil {
 		err = err1
 	}
 	if err != nil {
 		return fmt.Errorf("cannot upload data to %q at %s (remote path %q): %s", p.Path, fs, o.ObjectName(), err)
 	}
 	if uint64(n) != p.Size {
 		return fmt.Errorf("wrong data size uploaded to %q at %s; got %d bytes; want %d bytes", p.Path, fs, n, p.Size)
 	}
 	return nil
 }
 func (fs *FS) object(p common.Part) *storage.ObjectHandle {
 	path := p.RemotePath(fs.Dir)
 	return fs.bkt.Object(path)
 }
--- a/lib/backup/s3remote/s3.go
+++ b/lib/backup/s3remote/s3.go
@ -0,0 +1,220 @@
 package s3remote
 import (
 	"context"
 	"fmt"
 	"io"
 	"strings"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/backup/common"
 	"github.com/VictoriaMetrics/VictoriaMetrics/lib/logger"
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/session"
 	"github.com/aws/aws-sdk-go/service/s3"
 	"github.com/aws/aws-sdk-go/service/s3/s3manager"
 )
 // FS represents filesystem for backups in S3.
 //
 // Init must be called before calling other FS methods.
 type FS struct {
 	// Path to S3 credentials file.
 	CredsFilePath string
 	// Pat to S3 configs file.
 	ConfigFilePath string
 	// GCS bucket to use.
 	Bucket string
 	// Directory in the bucket to write to.
 	Dir string
 	s3       *s3.S3
 	uploader *s3manager.Uploader
 }
 // Init initializes fs.
 func (fs *FS) Init() error {
 	if fs.s3 != nil {
 		logger.Panicf("BUG: Init is already called")
 	}
 	for strings.HasPrefix(fs.Dir, "/") {
 		fs.Dir = fs.Dir[1:]
 	}
 	if !strings.HasSuffix(fs.Dir, "/") {
 		fs.Dir += "/"
 	}
 	opts := session.Options{
 		SharedConfigState: session.SharedConfigEnable,
 	}
 	if len(fs.CredsFilePath) > 0 {
 		opts.SharedConfigFiles = []string{
 			fs.ConfigFilePath,
 			fs.CredsFilePath,
 		}
 	}
 	sess, err := session.NewSessionWithOptions(opts)
 	if err != nil {
 		return fmt.Errorf("cannot create S3 session: %s", err)
 	}
 	// Determine bucket region.
 	ctx := context.Background()
 	region, err := s3manager.GetBucketRegion(ctx, sess, fs.Bucket, "")
 	if err != nil {
 		return fmt.Errorf("cannot determine region for bucket %q: %s", fs.Bucket, err)
 	}
 	sess.Config.WithRegion(region)
 	logger.Infof("bucket %q is stored at region %q; switching to this region", fs.Bucket, region)
 	fs.s3 = s3.New(sess)
 	fs.uploader = s3manager.NewUploader(sess, func(u *s3manager.Uploader) {
 		// We manage upload concurrency by ourselves.
 		u.Concurrency = 1
 	})
 	return nil
 }
 // String returns human-readable description for fs.
 func (fs *FS) String() string {
 	return fmt.Sprintf("S3{bucket: %q, dir: %q}", fs.Bucket, fs.Dir)
 }
 // ListParts returns all the parts for fs.
 func (fs *FS) ListParts() ([]common.Part, error) {
 	dir := fs.Dir
 	input := &s3.ListObjectsV2Input{
 		Bucket: aws.String(fs.Bucket),
 		Prefix: aws.String(dir),
 	}
 	var errOuter error
 	var parts []common.Part
 	err := fs.s3.ListObjectsV2Pages(input, func(page *s3.ListObjectsV2Output, lastPage bool) bool {
 		for _, o := range page.Contents {
 			file := *o.Key
 			if !strings.HasPrefix(file, dir) {
 				errOuter = fmt.Errorf("unexpected prefix for s3 key %q; want %q", file, dir)
 				return false
 			}
 			var p common.Part
 			if !p.ParseFromRemotePath(file[len(dir):]) {
 				logger.Infof("skipping unknown object %q", file)
 				continue
 			}
 			p.ActualSize = uint64(*o.Size)
 			parts = append(parts, p)
 		}
 		return !lastPage
 	})
 	if errOuter != nil && err == nil {
 		err = errOuter
 	}
 	if err != nil {
 		return nil, fmt.Errorf("error when listing s3 objects inside dir %q: %s", dir, err)
 	}
 	return parts, nil
 }
 // DeletePart deletes part p from fs.
 func (fs *FS) DeletePart(p common.Part) error {
 	path := fs.path(p)
 	input := &s3.DeleteObjectInput{
 		Bucket: aws.String(fs.Bucket),
 		Key:    aws.String(path),
 	}
 	_, err := fs.s3.DeleteObject(input)
 	if err != nil {
 		return fmt.Errorf("cannot delete %q at %s (remote path %q): %s", p.Path, fs, path, err)
 	}
 	return nil
 }
 // RemoveEmptyDirs recursively removes empty dirs in fs.
 func (fs *FS) RemoveEmptyDirs() error {
 	// S3 has no directories, so nothing to remove.
 	return nil
 }
 // CopyPart copies p from srcFS to fs.
 func (fs *FS) CopyPart(srcFS common.OriginFS, p common.Part) error {
 	src, ok := srcFS.(*FS)
 	if !ok {
 		return fmt.Errorf("cannot perform server-side copying from %s to %s: both of them must be S3", srcFS, fs)
 	}
 	srcPath := src.path(p)
 	dstPath := fs.path(p)
 	copySource := fmt.Sprintf("/%s/%s", src.Bucket, srcPath)
 	input := &s3.CopyObjectInput{
 		Bucket:     aws.String(fs.Bucket),
 		CopySource: aws.String(copySource),
 		Key:        aws.String(dstPath),
 	}
 	_, err := fs.s3.CopyObject(input)
 	if err != nil {
 		return fmt.Errorf("cannot copy %q from %s to %s (copySource %q): %s", p.Path, src, fs, copySource, err)
 	}
 	return nil
 }
 // DownloadPart downloads part p from fs to w.
 func (fs *FS) DownloadPart(p common.Part, w io.Writer) error {
 	path := fs.path(p)
 	input := &s3.GetObjectInput{
 		Bucket: aws.String(fs.Bucket),
 		Key:    aws.String(path),
 	}
 	o, err := fs.s3.GetObject(input)
 	if err != nil {
 		return fmt.Errorf("cannot open %q at %s (remote path %q): %s", p.Path, fs, path, err)
 	}
 	r := o.Body
 	n, err := io.Copy(w, r)
 	if err1 := r.Close(); err1 != nil && err == nil {
 		err = err1
 	}
 	if err != nil {
 		return fmt.Errorf("cannot download %q from at %s (remote path %q): %s", p.Path, fs, path, err)
 	}
 	if uint64(n) != p.Size {
 		return fmt.Errorf("wrong data size downloaded from %q at %s; got %d bytes; want %d bytes", p.Path, fs, n, p.Size)
 	}
 	return nil
 }
 // UploadPart uploads part p from r to fs.
 func (fs *FS) UploadPart(p common.Part, r io.Reader) error {
 	path := fs.path(p)
 	sr := &statReader{
 		r: r,
 	}
 	input := &s3manager.UploadInput{
 		Bucket: aws.String(fs.Bucket),
 		Key:    aws.String(path),
 		Body:   sr,
 	}
 	_, err := fs.uploader.Upload(input)
 	if err != nil {
 		return fmt.Errorf("cannot upoad data to %q at %s (remote path %q): %s", p.Path, fs, path, err)
 	}
 	if uint64(sr.size) != p.Size {
 		return fmt.Errorf("wrong data size uploaded to %q at %s; got %d bytes; want %d bytes", p.Path, fs, sr.size, p.Size)
 	}
 	return nil
 }
 func (fs *FS) path(p common.Part) string {
 	return p.RemotePath(fs.Dir)
 }
 type statReader struct {
 	r    io.Reader
 	size int64
 }
 func (sr *statReader) Read(p []byte) (int, error) {
 	n, err := sr.r.Read(p)
 	sr.size += int64(n)
 	return n, err
 }
--- a/lib/filestream/filestream.go
+++ b/lib/filestream/filestream.go
@ -3,6 +3,7 @@ package filestream
 import (
 	"bufio"
 	"fmt"
 	"io"
 	"os"
 	"sync"
@ -51,6 +52,26 @@ type Reader struct {
 	st streamTracker
 }
 // OpenReaderAt opens the file at the given path in nocache mode at the given offset.
 //
 // If nocache is set, then the reader doesn't pollute OS page cache.
 func OpenReaderAt(path string, offset int64, nocache bool) (*Reader, error) {
 	r, err := Open(path, nocache)
 	if err != nil {
 		return nil, err
 	}
 	n, err := r.f.Seek(offset, io.SeekStart)
 	if err != nil {
 		r.MustClose()
 		return nil, fmt.Errorf("cannot seek to offset=%d for %q: %s", offset, path, err)
 	}
 	if n != offset {
 		r.MustClose()
 		return nil, fmt.Errorf("invalid seek offset for %q; got %d; want %d", path, n, offset)
 	}
 	return r, nil
 }
 // Open opens the file from the given path in nocache mode.
 //
 // If nocache is set, then the reader doesn't pollute OS page cache.
@ -143,6 +164,28 @@ type Writer struct {
 	st streamTracker
 }
 // OpenWriterAt opens the file at path in nocache mode for writing at the given offset.
 //
 // The file at path is created if it is missing.
 //
 // If nocache is set, the writer doesn't pollute OS page cache.
 func OpenWriterAt(path string, offset int64, nocache bool) (*Writer, error) {
 	f, err := os.OpenFile(path, os.O_WRONLY|os.O_CREATE, 0600)
 	if err != nil {
 		return nil, fmt.Errorf("cannot open %q: %s", path, err)
 	}
 	n, err := f.Seek(offset, io.SeekStart)
 	if err != nil {
 		_ = f.Close()
 		return nil, fmt.Errorf("cannot seek to offset=%d in %q: %s", offset, path, err)
 	}
 	if n != offset {
 		_ = f.Close()
 		return nil, fmt.Errorf("invalid seek offset for %q; got %d; want %d", path, n, offset)
 	}
 	return newWriter(f, nocache), nil
 }
 // Create creates the file for the given path in nocache mode.
 //
 // If nocache is set, the writer doesn't pollute OS page cache.
@ -151,6 +194,10 @@ func Create(path string, nocache bool) (*Writer, error) {
 	if err != nil {
 		return nil, fmt.Errorf("cannot create file %q: %s", path, err)
 	}
 	return newWriter(f, nocache), nil
 }
 func newWriter(f *os.File, nocache bool) *Writer {
 	w := &Writer{
 		f:  f,
 		bw: getBufioWriter(f),
@ -159,7 +206,7 @@ func Create(path string, nocache bool) (*Writer, error) {
 		w.st.fd = f.Fd()
 	}
 	writersCount.Inc()
-	return w, nil
+	return w
 }
 // MustClose syncs the underlying file to storage and then closes it.
--- a/vendor/cloud.google.com/go/CHANGES.md
+++ b/vendor/cloud.google.com/go/CHANGES.md
--- a/vendor/cloud.google.com/go/CODE_OF_CONDUCT.md
+++ b/vendor/cloud.google.com/go/CODE_OF_CONDUCT.md
@ -0,0 +1,44 @@
 # Contributor Code of Conduct
 As contributors and maintainers of this project,
 and in the interest of fostering an open and welcoming community,
 we pledge to respect all people who contribute through reporting issues,
 posting feature requests, updating documentation,
 submitting pull requests or patches, and other activities.
 We are committed to making participation in this project
 a harassment-free experience for everyone,
 regardless of level of experience, gender, gender identity and expression,
 sexual orientation, disability, personal appearance,
 body size, race, ethnicity, age, religion, or nationality.
 Examples of unacceptable behavior by participants include:
 * The use of sexualized language or imagery
 * Personal attacks
 * Trolling or insulting/derogatory comments
 * Public or private harassment
 * Publishing other's private information,
 such as physical or electronic
 addresses, without explicit permission
 * Other unethical or unprofessional conduct.
 Project maintainers have the right and responsibility to remove, edit, or reject
 comments, commits, code, wiki edits, issues, and other contributions
 that are not aligned to this Code of Conduct.
 By adopting this Code of Conduct,
 project maintainers commit themselves to fairly and consistently
 applying these principles to every aspect of managing this project.
 Project maintainers who do not follow or enforce the Code of Conduct
 may be permanently removed from the project team.
 This code of conduct applies both within project spaces and in public spaces
 when an individual is representing the project or its community.
 Instances of abusive, harassing, or otherwise unacceptable behavior
 may be reported by opening an issue
 or contacting one or more of the project maintainers.
 This Code of Conduct is adapted from the [Contributor Covenant](http://contributor-covenant.org), version 1.2.0,
 available at [http://contributor-covenant.org/version/1/2/0/](http://contributor-covenant.org/version/1/2/0/)
--- a/vendor/cloud.google.com/go/CONTRIBUTING.md
+++ b/vendor/cloud.google.com/go/CONTRIBUTING.md
@ -0,0 +1,306 @@
 # Contributing
 1. [Install Go](https://golang.org/dl/).
    1. Ensure that your `GOBIN` directory (by default `$(go env GOPATH)/bin`)
    is in your `PATH`.
    1. Check it's working by running `go version`.
        * If it doesn't work, check the install location, usually
        `/usr/local/go`, is on your `PATH`.
 1. Sign one of the
 [contributor license agreements](#contributor-license-agreements) below.
 1. Run `GO111MODULE=off go get golang.org/x/review/git-codereview` to install
 the code reviewing tool.
    1. Ensure it's working by running `git codereview` (check your `PATH` if
    not).
    1. If you would like, you may want to set up aliases for `git-codereview`,
    such that `git codereview change` becomes `git change`. See the
    [godoc](https://godoc.org/golang.org/x/review/git-codereview) for details.
        * Should you run into issues with the `git-codereview` tool, please note
        that all error messages will assume that you have set up these aliases.
 1. Change to a directory of your choosing and clone the repo.b
    ```
    cd ~/code
    git clone https://code.googlesource.com/gocloud
    ```
    * If you have already checked out the source, make sure that the remote
    `git` `origin` is https://code.googlesource.com/gocloud:
        ```
        git remote -v
        # ...
        git remote set-url origin https://code.googlesource.com/gocloud
        ```
    * The project uses [Go Modules](https://blog.golang.org/using-go-modules)
    for dependency management See
    [`gopls`](https://github.com/golang/go/wiki/gopls) for making your editor
    work with modules.
 1. Change to the project directory:
    ```
    cd ~/code/gocloud
    ```
 1. Make sure your `git` auth is configured correctly by visiting
 https://code.googlesource.com, clicking "Generate Password" at the top-right,
 and following the directions. Otherwise, `git codereview mail` in the next step
 will fail.
 1. Now you are ready to make changes. Don't create a new branch or make commits in the traditional
 way. Use the following`git codereview` commands to create a commit and create a Gerrit CL:
    ```
    git codereview change <branch-name> # Use this instead of git checkout -b <branch-name>
    # Make changes.
    git add ...
    git codereview change # Use this instead of git commit
    git codereview mail # If this fails, the error message will contain instructions to fix it.
    ```
    * This will create a new `git` branch for you to develop on. Once your
    change is merged, you can delete this branch.
 1. As you make changes for code review, ammend the commit and re-mail the
 change:
    ```
    # Make more changes.
    git add ...
    git codereview change
    git codereview mail
    ```
    * **Warning**: do not change the `Change-Id` at the bottom of the commit
    message - it's how Gerrit knows which change this is (or if it's new).
    * When you fixes issues from code review, respond to each code review
    message then click **Reply** at the top of the page.
    * Each new mailed amendment will create a new patch set for
    your change in Gerrit. Patch sets can be compared and reviewed.
    * **Note**: if your change includes a breaking change, our breaking change
    detector will cause CI/CD to fail. If your breaking change is acceptable
    in some way, add a `BREAKING_CHANGE_ACCEPTABLE=<reason>` line to the commit
    message to cause the detector not to be run and to make it clear why that is
    acceptable.
 1. Finally, add reviewers to your CL when it's ready for review. Reviewers will
 not be added automatically. If you're not sure who to add for your code review,
 add deklerk@, tbp@, cbro@, and codyoss@.
 ## Integration Tests
 In addition to the unit tests, you may run the integration test suite. These
 directions describe setting up your environment to run integration tests for
 _all_ packages: note that many of these instructions may be redundant if you
 intend only to run integration tests on a single package.
 #### GCP Setup
 To run the integrations tests, creation and configuration of two projects in
 the Google Developers Console is required: one specifically for Firestore
 integration tests, and another for all other integration tests. We'll refer to
 these projects as "general project" and "Firestore project".
 After creating each project, you must [create a service account](https://developers.google.com/identity/protocols/OAuth2ServiceAccount#creatinganaccount)
 for each project. Ensure the project-level **Owner**
 [IAM role](console.cloud.google.com/iam-admin/iam/project) role is added to
 each service account. During the creation of the service account, you should
 download the JSON credential file for use later.
 Next, ensure the following APIs are enabled in the general project:
 - BigQuery API
 - BigQuery Data Transfer API
 - Cloud Dataproc API
 - Cloud Dataproc Control API Private
 - Cloud Datastore API
 - Cloud Firestore API
 - Cloud Key Management Service (KMS) API
 - Cloud Natural Language API
 - Cloud OS Login API
 - Cloud Pub/Sub API
 - Cloud Resource Manager API
 - Cloud Spanner API
 - Cloud Speech API
 - Cloud Translation API
 - Cloud Video Intelligence API
 - Cloud Vision API
 - Compute Engine API
 - Compute Engine Instance Group Manager API
 - Container Registry API
 - Firebase Rules API
 - Google Cloud APIs
 - Google Cloud Deployment Manager V2 API
 - Google Cloud SQL
 - Google Cloud Storage
 - Google Cloud Storage JSON API
 - Google Compute Engine Instance Group Updater API
 - Google Compute Engine Instance Groups API
 - Kubernetes Engine API
 - Stackdriver Error Reporting API
 Next, create a Datastore database in the general project, and a Firestore
 database in the Firestore project.
 Finally, in the general project, create an API key for the translate API:
 - Go to GCP Developer Console.
 - Navigate to APIs & Services > Credentials.
 - Click Create Credentials > API Key.
 - Save this key for use in `GCLOUD_TESTS_API_KEY` as described below.
 #### Local Setup
 Once the two projects are created and configured, set the following environment
 variables:
 - `GCLOUD_TESTS_GOLANG_PROJECT_ID`: Developers Console project's ID (e.g.
 bamboo-shift-455) for the general project.
 - `GCLOUD_TESTS_GOLANG_KEY`: The path to the JSON key file of the general
 project's service account.
 - `GCLOUD_TESTS_GOLANG_FIRESTORE_PROJECT_ID`: Developers Console project's ID
 (e.g. doorway-cliff-677) for the Firestore project.
 - `GCLOUD_TESTS_GOLANG_FIRESTORE_KEY`: The path to the JSON key file of the
 Firestore project's service account.
 - `GCLOUD_TESTS_GOLANG_KEYRING`: The full name of the keyring for the tests,
 in the form
 "projects/P/locations/L/keyRings/R". The creation of this is described below.
 - `GCLOUD_TESTS_API_KEY`: API key for using the Translate API.
 - `GCLOUD_TESTS_GOLANG_ZONE`: Compute Engine zone.
 Install the [gcloud command-line tool][gcloudcli] to your machine and use it to
 create some resources used in integration tests.
 From the project's root directory:
 ``` sh
 # Sets the default project in your env.
 $ gcloud config set project $GCLOUD_TESTS_GOLANG_PROJECT_ID
 # Authenticates the gcloud tool with your account.
 $ gcloud auth login
 # Create the indexes used in the datastore integration tests.
 $ gcloud datastore indexes create datastore/testdata/index.yaml
 # Creates a Google Cloud storage bucket with the same name as your test project,
 # and with the Stackdriver Logging service account as owner, for the sink
 # integration tests in logging.
 $ gsutil mb gs://$GCLOUD_TESTS_GOLANG_PROJECT_ID
 $ gsutil acl ch -g cloud-logs@google.com:O gs://$GCLOUD_TESTS_GOLANG_PROJECT_ID
 # Creates a PubSub topic for integration tests of storage notifications.
 $ gcloud beta pubsub topics create go-storage-notification-test
 # Next, go to the Pub/Sub dashboard in GCP console. Authorize the user
 # "service-<numberic project id>@gs-project-accounts.iam.gserviceaccount.com"
 # as a publisher to that topic.
 # Creates a Spanner instance for the spanner integration tests.
 $ gcloud beta spanner instances create go-integration-test --config regional-us-central1 --nodes 10 --description 'Instance for go client test'
 # NOTE: Spanner instances are priced by the node-hour, so you may want to
 # delete the instance after testing with 'gcloud beta spanner instances delete'.
 $ export MY_KEYRING=some-keyring-name
 $ export MY_LOCATION=global
 # Creates a KMS keyring, in the same location as the default location for your
 # project's buckets.
 $ gcloud kms keyrings create $MY_KEYRING --location $MY_LOCATION
 # Creates two keys in the keyring, named key1 and key2.
 $ gcloud kms keys create key1 --keyring $MY_KEYRING --location $MY_LOCATION --purpose encryption
 $ gcloud kms keys create key2 --keyring $MY_KEYRING --location $MY_LOCATION --purpose encryption
 # Sets the GCLOUD_TESTS_GOLANG_KEYRING environment variable.
 $ export GCLOUD_TESTS_GOLANG_KEYRING=projects/$GCLOUD_TESTS_GOLANG_PROJECT_ID/locations/$MY_LOCATION/keyRings/$MY_KEYRING
 # Authorizes Google Cloud Storage to encrypt and decrypt using key1.
 gsutil kms authorize -p $GCLOUD_TESTS_GOLANG_PROJECT_ID -k $GCLOUD_TESTS_GOLANG_KEYRING/cryptoKeys/key1
 ```
 #### Running
 Once you've done the necessary setup, you can run the integration tests by
 running:
 ``` sh
 $ go test -v cloud.google.com/go/...
 ```
 #### Replay
 Some packages can record the RPCs during integration tests to a file for
 subsequent replay. To record, pass the `-record` flag to `go test`. The
 recording will be saved to the _package_`.replay` file. To replay integration
 tests from a saved recording, the replay file must be present, the `-short`
 flag must be passed to `go test`, and the `GCLOUD_TESTS_GOLANG_ENABLE_REPLAY`
 environment variable must have a non-empty value.
 ## Contributor License Agreements
 Before we can accept your pull requests you'll need to sign a Contributor
 License Agreement (CLA):
 - **If you are an individual writing original source code** and **you own the
 intellectual property**, then you'll need to sign an [individual CLA][indvcla].
 - **If you work for a company that wants to allow you to contribute your
 work**, then you'll need to sign a [corporate CLA][corpcla].
 You can sign these electronically (just scroll to the bottom). After that,
 we'll be able to accept your pull requests.
 ## Contributor Code of Conduct
 As contributors and maintainers of this project,
 and in the interest of fostering an open and welcoming community,
 we pledge to respect all people who contribute through reporting issues,
 posting feature requests, updating documentation,
 submitting pull requests or patches, and other activities.
 We are committed to making participation in this project
 a harassment-free experience for everyone,
 regardless of level of experience, gender, gender identity and expression,
 sexual orientation, disability, personal appearance,
 body size, race, ethnicity, age, religion, or nationality.
 Examples of unacceptable behavior by participants include:
 * The use of sexualized language or imagery
 * Personal attacks
 * Trolling or insulting/derogatory comments
 * Public or private harassment
 * Publishing other's private information,
 such as physical or electronic
 addresses, without explicit permission
 * Other unethical or unprofessional conduct.
 Project maintainers have the right and responsibility to remove, edit, or reject
 comments, commits, code, wiki edits, issues, and other contributions
 that are not aligned to this Code of Conduct.
 By adopting this Code of Conduct,
 project maintainers commit themselves to fairly and consistently
 applying these principles to every aspect of managing this project.
 Project maintainers who do not follow or enforce the Code of Conduct
 may be permanently removed from the project team.
 This code of conduct applies both within project spaces and in public spaces
 when an individual is representing the project or its community.
 Instances of abusive, harassing, or otherwise unacceptable behavior
 may be reported by opening an issue
 or contacting one or more of the project maintainers.
 This Code of Conduct is adapted from the [Contributor Covenant](http://contributor-covenant.org), version 1.2.0,
 available at [http://contributor-covenant.org/version/1/2/0/](http://contributor-covenant.org/version/1/2/0/)
 [gcloudcli]: https://developers.google.com/cloud/sdk/gcloud/
 [indvcla]: https://developers.google.com/open-source/cla/individual
 [corpcla]: https://developers.google.com/open-source/cla/corporate
--- a/vendor/cloud.google.com/go/LICENSE
+++ b/vendor/cloud.google.com/go/LICENSE
@ -0,0 +1,202 @@
                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/
   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
   1. Definitions.
      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.
      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.
      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.
      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.
      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.
      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.
      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).
      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.
      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."
      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.
   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.
   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.
   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:
      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and
      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and
      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and
      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.
      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.
   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.
   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.
   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.
   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.
   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.
   END OF TERMS AND CONDITIONS
   APPENDIX: How to apply the Apache License to your work.
      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!)  The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/vendor/cloud.google.com/go/README.md
+++ b/vendor/cloud.google.com/go/README.md
@ -0,0 +1,235 @@
 # Google Cloud Client Libraries for Go
 [![GoDoc](https://godoc.org/cloud.google.com/go?status.svg)](https://godoc.org/cloud.google.com/go)
 Go packages for [Google Cloud Platform](https://cloud.google.com) services.
 ``` go
 import "cloud.google.com/go"
 ```
 To install the packages on your system, *do not clone the repo*. Instead:
 1. Change to your project directory:
   ```
   cd /my/cloud/project
   ```
 1. Get the package you want to use. Some products have their own module, so it's
   best to `go get` the package(s) you want to use:
   ```
   $ go get cloud.google.com/go/firestore # Replace with the package you want to use.
   ```
 **NOTE:** Some of these packages are under development, and may occasionally
 make backwards-incompatible changes.
 **NOTE:** Github repo is a mirror of [https://code.googlesource.com/gocloud](https://code.googlesource.com/gocloud).
 ## Supported APIs
 Google API                                      | Status       | Package
 ------------------------------------------------|--------------|-----------------------------------------------------------
 [Asset][cloud-asset]                            | alpha        | [`cloud.google.com/go/asset/v1beta`][cloud-asset-ref]
 [BigQuery][cloud-bigquery]                      | stable       | [`cloud.google.com/go/bigquery`][cloud-bigquery-ref]
 [Bigtable][cloud-bigtable]                      | stable       | [`cloud.google.com/go/bigtable`][cloud-bigtable-ref]
 [Cloudtasks][cloud-tasks]                       | stable       | [`cloud.google.com/go/cloudtasks/apiv2`][cloud-tasks-ref]
 [Container][cloud-container]                    | stable       | [`cloud.google.com/go/container/apiv1`][cloud-container-ref]
 [ContainerAnalysis][cloud-containeranalysis]    | beta         | [`cloud.google.com/go/containeranalysis/apiv1beta1`][cloud-containeranalysis-ref]
 [Dataproc][cloud-dataproc]                      | stable       | [`cloud.google.com/go/dataproc/apiv1`][cloud-dataproc-ref]
 [Datastore][cloud-datastore]                    | stable       | [`cloud.google.com/go/datastore`][cloud-datastore-ref]
 [Debugger][cloud-debugger]                      | alpha        | [`cloud.google.com/go/debugger/apiv2`][cloud-debugger-ref]
 [Dialogflow][cloud-dialogflow]                  | alpha        | [`cloud.google.com/go/dialogflow/apiv2`][cloud-dialogflow-ref]
 [Data Loss Prevention][cloud-dlp]               | alpha        | [`cloud.google.com/go/dlp/apiv2`][cloud-dlp-ref]
 [ErrorReporting][cloud-errors]                  | alpha        | [`cloud.google.com/go/errorreporting`][cloud-errors-ref]
 [Firestore][cloud-firestore]                    | stable       | [`cloud.google.com/go/firestore`][cloud-firestore-ref]
 [IAM][cloud-iam]                                | stable       | [`cloud.google.com/go/iam`][cloud-iam-ref]
 [IoT][cloud-iot]                                | alpha        | [`cloud.google.com/iot/apiv1`][cloud-iot-ref]
 [KMS][cloud-kms]                                | stable       | [`cloud.google.com/go/kms`][cloud-kms-ref]
 [Natural Language][cloud-natural-language]      | stable       | [`cloud.google.com/go/language/apiv1`][cloud-natural-language-ref]
 [Logging][cloud-logging]                        | stable       | [`cloud.google.com/go/logging`][cloud-logging-ref]
 [Monitoring][cloud-monitoring]                  | alpha        | [`cloud.google.com/go/monitoring/apiv3`][cloud-monitoring-ref]
 [OS Login][cloud-oslogin]                       | alpha        | [`cloud.google.com/go/oslogin/apiv1`][cloud-oslogin-ref]
 [Pub/Sub][cloud-pubsub]                         | stable       | [`cloud.google.com/go/pubsub`][cloud-pubsub-ref]
 [Phishing Protection][cloud-phishingprotection] | alpha        | [`cloud.google.com/go/phishingprotection/apiv1betad1`][cloud-phishingprotection-ref]
 [reCAPTCHA Enterprise][cloud-recaptcha]         | alpha        | [`cloud.google.com/go/recaptchaenterprise/apiv1betad1`][cloud-recaptcha-ref]
 [Memorystore][cloud-memorystore]                | alpha        | [`cloud.google.com/go/redis/apiv1`][cloud-memorystore-ref]
 [Scheduler][cloud-scheduler]                    | stable       | [`cloud.google.com/go/scheduler/apiv1`][cloud-scheduler-ref]
 [Spanner][cloud-spanner]                        | stable       | [`cloud.google.com/go/spanner`][cloud-spanner-ref]
 [Speech][cloud-speech]                          | stable       | [`cloud.google.com/go/speech/apiv1`][cloud-speech-ref]
 [Storage][cloud-storage]                        | stable       | [`cloud.google.com/go/storage`][cloud-storage-ref]
 [Talent][cloud-talent]                          | alpha        | [`cloud.google.com/go/talent/apiv4beta1`][cloud-talent-ref]
 [Text To Speech][cloud-texttospeech]            | alpha        | [`cloud.google.com/go/texttospeech/apiv1`][cloud-texttospeech-ref]
 [Trace][cloud-trace]                            | alpha        | [`cloud.google.com/go/trace/apiv2`][cloud-trace-ref]
 [Translate][cloud-translate]                    | stable       | [`cloud.google.com/go/translate`][cloud-translate-ref]
 [Video Intelligence][cloud-video]               | alpha        | [`cloud.google.com/go/videointelligence/apiv1beta1`][cloud-video-ref]
 [Vision][cloud-vision]                          | stable       | [`cloud.google.com/go/vision/apiv1`][cloud-vision-ref]
 > **Alpha status**: the API is still being actively developed. As a
 > result, it might change in backward-incompatible ways and is not recommended
 > for production use.
 >
 > **Beta status**: the API is largely complete, but still has outstanding
 > features and bugs to be addressed. There may be minor backwards-incompatible
 > changes where necessary.
 >
 > **Stable status**: the API is mature and ready for production use. We will
 > continue addressing bugs and feature requests.
 Documentation and examples are available at [godoc.org/cloud.google.com/go](godoc.org/cloud.google.com/go)
 ## Go Versions Supported
 We support the two most recent major versions of Go. If Google App Engine uses
 an older version, we support that as well.
 ## Authorization
 By default, each API will use [Google Application Default Credentials](https://developers.google.com/identity/protocols/application-default-credentials)
 for authorization credentials used in calling the API endpoints. This will allow your
 application to run in many environments without requiring explicit configuration.
 [snip]:# (auth)
 ```go
 client, err := storage.NewClient(ctx)
 ```
 To authorize using a
 [JSON key file](https://cloud.google.com/iam/docs/managing-service-account-keys),
 pass
 [`option.WithCredentialsFile`](https://godoc.org/google.golang.org/api/option#WithCredentialsFile)
 to the `NewClient` function of the desired package. For example:
 [snip]:# (auth-JSON)
 ```go
 client, err := storage.NewClient(ctx, option.WithCredentialsFile("path/to/keyfile.json"))
 ```
 You can exert more control over authorization by using the
 [`golang.org/x/oauth2`](https://godoc.org/golang.org/x/oauth2) package to
 create an `oauth2.TokenSource`. Then pass
 [`option.WithTokenSource`](https://godoc.org/google.golang.org/api/option#WithTokenSource)
 to the `NewClient` function:
 [snip]:# (auth-ts)
 ```go
 tokenSource := ...
 client, err := storage.NewClient(ctx, option.WithTokenSource(tokenSource))
 ```
 ## Contributing
 Contributions are welcome. Please, see the
 [CONTRIBUTING](https://github.com/GoogleCloudPlatform/google-cloud-go/blob/master/CONTRIBUTING.md)
 document for details. We're using Gerrit for our code reviews. Please don't open pull
 requests against this repo, new pull requests will be automatically closed.
 Please note that this project is released with a Contributor Code of Conduct.
 By participating in this project you agree to abide by its terms.
 See [Contributor Code of Conduct](https://github.com/GoogleCloudPlatform/google-cloud-go/blob/master/CONTRIBUTING.md#contributor-code-of-conduct)
 for more information.
 [cloud-datastore]: https://cloud.google.com/datastore/
 [cloud-datastore-ref]: https://godoc.org/cloud.google.com/go/datastore
 [cloud-firestore]: https://cloud.google.com/firestore/
 [cloud-firestore-ref]: https://godoc.org/cloud.google.com/go/firestore
 [cloud-pubsub]: https://cloud.google.com/pubsub/
 [cloud-pubsub-ref]: https://godoc.org/cloud.google.com/go/pubsub
 [cloud-storage]: https://cloud.google.com/storage/
 [cloud-storage-ref]: https://godoc.org/cloud.google.com/go/storage
 [cloud-bigtable]: https://cloud.google.com/bigtable/
 [cloud-bigtable-ref]: https://godoc.org/cloud.google.com/go/bigtable
 [cloud-bigquery]: https://cloud.google.com/bigquery/
 [cloud-bigquery-ref]: https://godoc.org/cloud.google.com/go/bigquery
 [cloud-logging]: https://cloud.google.com/logging/
 [cloud-logging-ref]: https://godoc.org/cloud.google.com/go/logging
 [cloud-monitoring]: https://cloud.google.com/monitoring/
 [cloud-monitoring-ref]: https://godoc.org/cloud.google.com/go/monitoring/apiv3
 [cloud-vision]: https://cloud.google.com/vision
 [cloud-vision-ref]: https://godoc.org/cloud.google.com/go/vision/apiv1
 [cloud-language]: https://cloud.google.com/natural-language
 [cloud-language-ref]: https://godoc.org/cloud.google.com/go/language/apiv1
 [cloud-oslogin]: https://cloud.google.com/compute/docs/oslogin/rest
 [cloud-oslogin-ref]: https://cloud.google.com/go/oslogin/apiv1
 [cloud-speech]: https://cloud.google.com/speech
 [cloud-speech-ref]: https://godoc.org/cloud.google.com/go/speech/apiv1
 [cloud-spanner]: https://cloud.google.com/spanner/
 [cloud-spanner-ref]: https://godoc.org/cloud.google.com/go/spanner
 [cloud-translate]: https://cloud.google.com/translate
 [cloud-translate-ref]: https://godoc.org/cloud.google.com/go/translate
 [cloud-video]: https://cloud.google.com/video-intelligence/
 [cloud-video-ref]: https://godoc.org/cloud.google.com/go/videointelligence/apiv1beta1
 [cloud-errors]: https://cloud.google.com/error-reporting/
 [cloud-errors-ref]: https://godoc.org/cloud.google.com/go/errorreporting
 [cloud-container]: https://cloud.google.com/containers/
 [cloud-container-ref]: https://godoc.org/cloud.google.com/go/container/apiv1
 [cloud-debugger]: https://cloud.google.com/debugger/
 [cloud-debugger-ref]: https://godoc.org/cloud.google.com/go/debugger/apiv2
 [cloud-dlp]: https://cloud.google.com/dlp/
 [cloud-dlp-ref]: https://godoc.org/cloud.google.com/go/dlp/apiv2beta1
 [cloud-dataproc]: https://cloud.google.com/dataproc/
 [cloud-dataproc-ref]: https://godoc.org/cloud.google.com/go/dataproc/apiv1
 [cloud-iam]: https://cloud.google.com/iam/
 [cloud-iam-ref]: https://godoc.org/cloud.google.com/go/iam
 [cloud-kms]: https://cloud.google.com/kms/
 [cloud-kms-ref]: https://godoc.org/cloud.google.com/go/kms/apiv1
 [cloud-natural-language]: https://cloud.google.com/natural-language/
 [cloud-natural-language-ref]: https://godoc.org/cloud.google.com/go/language/apiv1
 [cloud-memorystore]: https://cloud.google.com/memorystore/
 [cloud-memorystore-ref]: https://godoc.org/cloud.google.com/go/redis/apiv1
 [cloud-texttospeech]: https://cloud.google.com/texttospeech/
 [cloud-texttospeech-ref]: https://godoc.org/cloud.google.com/go/texttospeech/apiv1
 [cloud-trace]: https://cloud.google.com/trace/
 [cloud-trace-ref]: https://godoc.org/cloud.google.com/go/trace/apiv2
 [cloud-dialogflow]: https://cloud.google.com/dialogflow-enterprise/
 [cloud-dialogflow-ref]: https://godoc.org/cloud.google.com/go/dialogflow/apiv2
 [cloud-containeranalysis]: https://cloud.google.com/container-registry/docs/container-analysis
 [cloud-containeranalysis-ref]: https://godoc.org/cloud.google.com/go/devtools/containeranalysis/apiv1beta1
 [cloud-asset]: https://cloud.google.com/security-command-center/docs/how-to-asset-inventory
 [cloud-asset-ref]: https://godoc.org/cloud.google.com/go/asset/apiv1
 [cloud-tasks]: https://cloud.google.com/tasks/
 [cloud-tasks-ref]: https://godoc.org/cloud.google.com/go/cloudtasks/apiv2
 [cloud-scheduler]: https://cloud.google.com/scheduler
 [cloud-scheduler-ref]: https://godoc.org/cloud.google.com/go/scheduler/apiv1
 [cloud-iot]: https://cloud.google.com/iot-core/
 [cloud-iot-ref]: https://godoc.org/cloud.google.com/go/iot/apiv1
 [cloud-phishingprotection]: https://cloud.google.com/phishing-protection/
 [cloud-phishingprotection-ref]: https://cloud.google.com/go/phishingprotection/apiv1beta1
 [cloud-recaptcha]: https://cloud.google.com/recaptcha-enterprise/
 [cloud-recaptcha-ref]: https://cloud.google.com/go/recaptchaenterprise/apiv1beta1
 [cloud-talent]: https://cloud.google.com/solutions/talent-solution/
 [cloud-talent-ref]: https://godoc.org/cloud.google.com/go/talent/apiv4beta1
--- a/vendor/cloud.google.com/go/RELEASING.md
+++ b/vendor/cloud.google.com/go/RELEASING.md
@ -0,0 +1,75 @@
 # Expectations
 In CONTRIBUTING.md, we expect users to have a remote called `origin` that points
 to the `https://code.googlesource.com/gocloud` repository.  For releasing, we
 also use a `github` remote, setup to point to the replica repository hosted
 on github at `https://github.com/googleapis/google-cloud-go`
 If you don't already have an 'origin' remote from cloning the master repository,
 you can add it:
 `git remote add origin https://code.googlesource.com/gocloud`
 Add the github remote as well, using the name `github`:
 `git remote add github https://github.com/googleapis/google-cloud-go`
 # How to release `cloud.google.com/go`
 1. Navigate `google-cloud-go/` and switch to master.
 1. `git pull`
 1. Determine the current release version with `git tag -l`. It should look
   something like `vX.Y.Z`. We'll call the current version `$CV` and the new
   version `$NV`.
 1. On master, run `git log $CV...` to list all the changes since the last
   release. NOTE: You must manually exclude changes from submodules [1].
 1. Edit `CHANGES.md` to include a summary of the changes.
 1. `cd internal/version && go generate && cd -`
 1. `./tidyall.sh`
 1. Mail the CL: `git add -A && git change && git mail`
 1. Wait for the CL to be submitted. Once it's submitted, and without submitting
   any other CLs in the meantime:
   a. Switch to master.
   b. `git pull`
   c. Tag the repo with the next version: `git tag $NV`.
   d. Push the tag to both the googlesource and github repositories:
      `git push origin $NV`
      `git push github $NV`
 1. Update [the releases page](https://github.com/googleapis/google-cloud-go/releases)
   with the new release, copying the contents of `CHANGES.md`.
 # How to release a submodule
 We have several submodules, including cloud.google.com/go/logging,
 cloud.google.com/go/datastore, and so on.
 To release a submodule:
 (these instructions assume we're releasing cloud.google.com/go/datastore - adjust accordingly)
 1. Navigate `google-cloud-go/` and switch to master.
 1. `git pull`
 1. Determine the current release version with `git tag -l | grep datastore`. It
   should look something like `datastore/vX.Y.Z`. We'll call the current version
   `$CV` and the new version `$NV`, which should look something like `datastore/vX.Y+1.Z`
   (assuming a minor bump).
 1. On master, run `git log $CV.. -- datastore/` to list all the changes to the
   submodule directory since the last release.
 1. Edit `datastore/CHANGES.md` to include a summary of the changes.
 1. `./tidyall.sh`
 1. `cd internal/version && go generate && cd -`
 1. Mail the CL: `git add -A && git change && git mail`
 1. Wait for the CL to be submitted. Once it's submitted, and without submitting
   any other CLs in the meantime:
   a. Switch to master.
   b. `git pull`
   c. Tag the repo with the next version: `git tag $NV`.
   d. Push the tag to both the googlesource and github repositories:
      `git push origin $NV`
      `git push github $NV`
 1. Update [the releases page](https://github.com/googleapis/google-cloud-go/releases)
   with the new release, copying the contents of `datastore/CHANGES.md`.
 # Appendix
 1: This should get better as submodule tooling matures.
--- a/vendor/cloud.google.com/go/compute/metadata/.repo-metadata.json
+++ b/vendor/cloud.google.com/go/compute/metadata/.repo-metadata.json
@ -0,0 +1,12 @@
 {
  "name": "metadata",
  "name_pretty": "Google Compute Engine Metadata API",
  "product_documentation": "https://cloud.google.com/compute/docs/storing-retrieving-metadata",
  "client_documentation": "https://godoc.org/cloud.google.com/go/compute/metadata",
  "release_level": "ga",
  "language": "go",
  "repo": "googleapis/google-cloud-go",
  "distribution_name": "cloud.google.com/go/compute/metadata",
  "api_id": "compute:metadata",
  "requires_billing": false
 }
--- a/vendor/cloud.google.com/go/compute/metadata/metadata.go
+++ b/vendor/cloud.google.com/go/compute/metadata/metadata.go
@ -0,0 +1,526 @@
 // Copyright 2014 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Package metadata provides access to Google Compute Engine (GCE)
 // metadata and API service accounts.
 //
 // This package is a wrapper around the GCE metadata service,
 // as documented at https://developers.google.com/compute/docs/metadata.
 package metadata // import "cloud.google.com/go/compute/metadata"
 import (
 	"context"
 	"encoding/json"
 	"fmt"
 	"io/ioutil"
 	"net"
 	"net/http"
 	"net/url"
 	"os"
 	"runtime"
 	"strings"
 	"sync"
 	"time"
 )
 const (
 	// metadataIP is the documented metadata server IP address.
 	metadataIP = "169.254.169.254"
 	// metadataHostEnv is the environment variable specifying the
 	// GCE metadata hostname.  If empty, the default value of
 	// metadataIP ("169.254.169.254") is used instead.
 	// This is variable name is not defined by any spec, as far as
 	// I know; it was made up for the Go package.
 	metadataHostEnv = "GCE_METADATA_HOST"
 	userAgent = "gcloud-golang/0.1"
 )
 type cachedValue struct {
 	k    string
 	trim bool
 	mu   sync.Mutex
 	v    string
 }
 var (
 	projID  = &cachedValue{k: "project/project-id", trim: true}
 	projNum = &cachedValue{k: "project/numeric-project-id", trim: true}
 	instID  = &cachedValue{k: "instance/id", trim: true}
 )
 var (
 	defaultClient = &Client{hc: &http.Client{
 		Transport: &http.Transport{
 			Dial: (&net.Dialer{
 				Timeout:   2 * time.Second,
 				KeepAlive: 30 * time.Second,
 			}).Dial,
 			ResponseHeaderTimeout: 2 * time.Second,
 		},
 	}}
 	subscribeClient = &Client{hc: &http.Client{
 		Transport: &http.Transport{
 			Dial: (&net.Dialer{
 				Timeout:   2 * time.Second,
 				KeepAlive: 30 * time.Second,
 			}).Dial,
 		},
 	}}
 )
 // NotDefinedError is returned when requested metadata is not defined.
 //
 // The underlying string is the suffix after "/computeMetadata/v1/".
 //
 // This error is not returned if the value is defined to be the empty
 // string.
 type NotDefinedError string
 func (suffix NotDefinedError) Error() string {
 	return fmt.Sprintf("metadata: GCE metadata %q not defined", string(suffix))
 }
 func (c *cachedValue) get(cl *Client) (v string, err error) {
 	defer c.mu.Unlock()
 	c.mu.Lock()
 	if c.v != "" {
 		return c.v, nil
 	}
 	if c.trim {
 		v, err = cl.getTrimmed(c.k)
 	} else {
 		v, err = cl.Get(c.k)
 	}
 	if err == nil {
 		c.v = v
 	}
 	return
 }
 var (
 	onGCEOnce sync.Once
 	onGCE     bool
 )
 // OnGCE reports whether this process is running on Google Compute Engine.
 func OnGCE() bool {
 	onGCEOnce.Do(initOnGCE)
 	return onGCE
 }
 func initOnGCE() {
 	onGCE = testOnGCE()
 }
 func testOnGCE() bool {
 	// The user explicitly said they're on GCE, so trust them.
 	if os.Getenv(metadataHostEnv) != "" {
 		return true
 	}
 	ctx, cancel := context.WithCancel(context.Background())
 	defer cancel()
 	resc := make(chan bool, 2)
 	// Try two strategies in parallel.
 	// See https://github.com/googleapis/google-cloud-go/issues/194
 	go func() {
 		req, _ := http.NewRequest("GET", "http://"+metadataIP, nil)
 		req.Header.Set("User-Agent", userAgent)
 		res, err := defaultClient.hc.Do(req.WithContext(ctx))
 		if err != nil {
 			resc <- false
 			return
 		}
 		defer res.Body.Close()
 		resc <- res.Header.Get("Metadata-Flavor") == "Google"
 	}()
 	go func() {
 		addrs, err := net.LookupHost("metadata.google.internal")
 		if err != nil || len(addrs) == 0 {
 			resc <- false
 			return
 		}
 		resc <- strsContains(addrs, metadataIP)
 	}()
 	tryHarder := systemInfoSuggestsGCE()
 	if tryHarder {
 		res := <-resc
 		if res {
 			// The first strategy succeeded, so let's use it.
 			return true
 		}
 		// Wait for either the DNS or metadata server probe to
 		// contradict the other one and say we are running on
 		// GCE. Give it a lot of time to do so, since the system
 		// info already suggests we're running on a GCE BIOS.
 		timer := time.NewTimer(5 * time.Second)
 		defer timer.Stop()
 		select {
 		case res = <-resc:
 			return res
 		case <-timer.C:
 			// Too slow. Who knows what this system is.
 			return false
 		}
 	}
 	// There's no hint from the system info that we're running on
 	// GCE, so use the first probe's result as truth, whether it's
 	// true or false. The goal here is to optimize for speed for
 	// users who are NOT running on GCE. We can't assume that
 	// either a DNS lookup or an HTTP request to a blackholed IP
 	// address is fast. Worst case this should return when the
 	// metaClient's Transport.ResponseHeaderTimeout or
 	// Transport.Dial.Timeout fires (in two seconds).
 	return <-resc
 }
 // systemInfoSuggestsGCE reports whether the local system (without
 // doing network requests) suggests that we're running on GCE. If this
 // returns true, testOnGCE tries a bit harder to reach its metadata
 // server.
 func systemInfoSuggestsGCE() bool {
 	if runtime.GOOS != "linux" {
 		// We don't have any non-Linux clues available, at least yet.
 		return false
 	}
 	slurp, _ := ioutil.ReadFile("/sys/class/dmi/id/product_name")
 	name := strings.TrimSpace(string(slurp))
 	return name == "Google" || name == "Google Compute Engine"
 }
 // Subscribe calls Client.Subscribe on a client designed for subscribing (one with no
 // ResponseHeaderTimeout).
 func Subscribe(suffix string, fn func(v string, ok bool) error) error {
 	return subscribeClient.Subscribe(suffix, fn)
 }
 // Get calls Client.Get on the default client.
 func Get(suffix string) (string, error) { return defaultClient.Get(suffix) }
 // ProjectID returns the current instance's project ID string.
 func ProjectID() (string, error) { return defaultClient.ProjectID() }
 // NumericProjectID returns the current instance's numeric project ID.
 func NumericProjectID() (string, error) { return defaultClient.NumericProjectID() }
 // InternalIP returns the instance's primary internal IP address.
 func InternalIP() (string, error) { return defaultClient.InternalIP() }
 // ExternalIP returns the instance's primary external (public) IP address.
 func ExternalIP() (string, error) { return defaultClient.ExternalIP() }
 // Email calls Client.Email on the default client.
 func Email(serviceAccount string) (string, error) { return defaultClient.Email(serviceAccount) }
 // Hostname returns the instance's hostname. This will be of the form
 // "<instanceID>.c.<projID>.internal".
 func Hostname() (string, error) { return defaultClient.Hostname() }
 // InstanceTags returns the list of user-defined instance tags,
 // assigned when initially creating a GCE instance.
 func InstanceTags() ([]string, error) { return defaultClient.InstanceTags() }
 // InstanceID returns the current VM's numeric instance ID.
 func InstanceID() (string, error) { return defaultClient.InstanceID() }
 // InstanceName returns the current VM's instance ID string.
 func InstanceName() (string, error) { return defaultClient.InstanceName() }
 // Zone returns the current VM's zone, such as "us-central1-b".
 func Zone() (string, error) { return defaultClient.Zone() }
 // InstanceAttributes calls Client.InstanceAttributes on the default client.
 func InstanceAttributes() ([]string, error) { return defaultClient.InstanceAttributes() }
 // ProjectAttributes calls Client.ProjectAttributes on the default client.
 func ProjectAttributes() ([]string, error) { return defaultClient.ProjectAttributes() }
 // InstanceAttributeValue calls Client.InstanceAttributeValue on the default client.
 func InstanceAttributeValue(attr string) (string, error) {
 	return defaultClient.InstanceAttributeValue(attr)
 }
 // ProjectAttributeValue calls Client.ProjectAttributeValue on the default client.
 func ProjectAttributeValue(attr string) (string, error) {
 	return defaultClient.ProjectAttributeValue(attr)
 }
 // Scopes calls Client.Scopes on the default client.
 func Scopes(serviceAccount string) ([]string, error) { return defaultClient.Scopes(serviceAccount) }
 func strsContains(ss []string, s string) bool {
 	for _, v := range ss {
 		if v == s {
 			return true
 		}
 	}
 	return false
 }
 // A Client provides metadata.
 type Client struct {
 	hc *http.Client
 }
 // NewClient returns a Client that can be used to fetch metadata. All HTTP requests
 // will use the given http.Client instead of the default client.
 func NewClient(c *http.Client) *Client {
 	return &Client{hc: c}
 }
 // getETag returns a value from the metadata service as well as the associated ETag.
 // This func is otherwise equivalent to Get.
 func (c *Client) getETag(suffix string) (value, etag string, err error) {
 	// Using a fixed IP makes it very difficult to spoof the metadata service in
 	// a container, which is an important use-case for local testing of cloud
 	// deployments. To enable spoofing of the metadata service, the environment
 	// variable GCE_METADATA_HOST is first inspected to decide where metadata
 	// requests shall go.
 	host := os.Getenv(metadataHostEnv)
 	if host == "" {
 		// Using 169.254.169.254 instead of "metadata" here because Go
 		// binaries built with the "netgo" tag and without cgo won't
 		// know the search suffix for "metadata" is
 		// ".google.internal", and this IP address is documented as
 		// being stable anyway.
 		host = metadataIP
 	}
 	u := "http://" + host + "/computeMetadata/v1/" + suffix
 	req, _ := http.NewRequest("GET", u, nil)
 	req.Header.Set("Metadata-Flavor", "Google")
 	req.Header.Set("User-Agent", userAgent)
 	res, err := c.hc.Do(req)
 	if err != nil {
 		return "", "", err
 	}
 	defer res.Body.Close()
 	if res.StatusCode == http.StatusNotFound {
 		return "", "", NotDefinedError(suffix)
 	}
 	all, err := ioutil.ReadAll(res.Body)
 	if err != nil {
 		return "", "", err
 	}
 	if res.StatusCode != 200 {
 		return "", "", &Error{Code: res.StatusCode, Message: string(all)}
 	}
 	return string(all), res.Header.Get("Etag"), nil
 }
 // Get returns a value from the metadata service.
 // The suffix is appended to "http://${GCE_METADATA_HOST}/computeMetadata/v1/".
 //
 // If the GCE_METADATA_HOST environment variable is not defined, a default of
 // 169.254.169.254 will be used instead.
 //
 // If the requested metadata is not defined, the returned error will
 // be of type NotDefinedError.
 func (c *Client) Get(suffix string) (string, error) {
 	val, _, err := c.getETag(suffix)
 	return val, err
 }
 func (c *Client) getTrimmed(suffix string) (s string, err error) {
 	s, err = c.Get(suffix)
 	s = strings.TrimSpace(s)
 	return
 }
 func (c *Client) lines(suffix string) ([]string, error) {
 	j, err := c.Get(suffix)
 	if err != nil {
 		return nil, err
 	}
 	s := strings.Split(strings.TrimSpace(j), "\n")
 	for i := range s {
 		s[i] = strings.TrimSpace(s[i])
 	}
 	return s, nil
 }
 // ProjectID returns the current instance's project ID string.
 func (c *Client) ProjectID() (string, error) { return projID.get(c) }
 // NumericProjectID returns the current instance's numeric project ID.
 func (c *Client) NumericProjectID() (string, error) { return projNum.get(c) }
 // InstanceID returns the current VM's numeric instance ID.
 func (c *Client) InstanceID() (string, error) { return instID.get(c) }
 // InternalIP returns the instance's primary internal IP address.
 func (c *Client) InternalIP() (string, error) {
 	return c.getTrimmed("instance/network-interfaces/0/ip")
 }
 // Email returns the email address associated with the service account.
 // The account may be empty or the string "default" to use the instance's
 // main account.
 func (c *Client) Email(serviceAccount string) (string, error) {
 	if serviceAccount == "" {
 		serviceAccount = "default"
 	}
 	return c.getTrimmed("instance/service-accounts/" + serviceAccount + "/email")
 }
 // ExternalIP returns the instance's primary external (public) IP address.
 func (c *Client) ExternalIP() (string, error) {
 	return c.getTrimmed("instance/network-interfaces/0/access-configs/0/external-ip")
 }
 // Hostname returns the instance's hostname. This will be of the form
 // "<instanceID>.c.<projID>.internal".
 func (c *Client) Hostname() (string, error) {
 	return c.getTrimmed("instance/hostname")
 }
 // InstanceTags returns the list of user-defined instance tags,
 // assigned when initially creating a GCE instance.
 func (c *Client) InstanceTags() ([]string, error) {
 	var s []string
 	j, err := c.Get("instance/tags")
 	if err != nil {
 		return nil, err
 	}
 	if err := json.NewDecoder(strings.NewReader(j)).Decode(&s); err != nil {
 		return nil, err
 	}
 	return s, nil
 }
 // InstanceName returns the current VM's instance ID string.
 func (c *Client) InstanceName() (string, error) {
 	host, err := c.Hostname()
 	if err != nil {
 		return "", err
 	}
 	return strings.Split(host, ".")[0], nil
 }
 // Zone returns the current VM's zone, such as "us-central1-b".
 func (c *Client) Zone() (string, error) {
 	zone, err := c.getTrimmed("instance/zone")
 	// zone is of the form "projects/<projNum>/zones/<zoneName>".
 	if err != nil {
 		return "", err
 	}
 	return zone[strings.LastIndex(zone, "/")+1:], nil
 }
 // InstanceAttributes returns the list of user-defined attributes,
 // assigned when initially creating a GCE VM instance. The value of an
 // attribute can be obtained with InstanceAttributeValue.
 func (c *Client) InstanceAttributes() ([]string, error) { return c.lines("instance/attributes/") }
 // ProjectAttributes returns the list of user-defined attributes
 // applying to the project as a whole, not just this VM.  The value of
 // an attribute can be obtained with ProjectAttributeValue.
 func (c *Client) ProjectAttributes() ([]string, error) { return c.lines("project/attributes/") }
 // InstanceAttributeValue returns the value of the provided VM
 // instance attribute.
 //
 // If the requested attribute is not defined, the returned error will
 // be of type NotDefinedError.
 //
 // InstanceAttributeValue may return ("", nil) if the attribute was
 // defined to be the empty string.
 func (c *Client) InstanceAttributeValue(attr string) (string, error) {
 	return c.Get("instance/attributes/" + attr)
 }
 // ProjectAttributeValue returns the value of the provided
 // project attribute.
 //
 // If the requested attribute is not defined, the returned error will
 // be of type NotDefinedError.
 //
 // ProjectAttributeValue may return ("", nil) if the attribute was
 // defined to be the empty string.
 func (c *Client) ProjectAttributeValue(attr string) (string, error) {
 	return c.Get("project/attributes/" + attr)
 }
 // Scopes returns the service account scopes for the given account.
 // The account may be empty or the string "default" to use the instance's
 // main account.
 func (c *Client) Scopes(serviceAccount string) ([]string, error) {
 	if serviceAccount == "" {
 		serviceAccount = "default"
 	}
 	return c.lines("instance/service-accounts/" + serviceAccount + "/scopes")
 }
 // Subscribe subscribes to a value from the metadata service.
 // The suffix is appended to "http://${GCE_METADATA_HOST}/computeMetadata/v1/".
 // The suffix may contain query parameters.
 //
 // Subscribe calls fn with the latest metadata value indicated by the provided
 // suffix. If the metadata value is deleted, fn is called with the empty string
 // and ok false. Subscribe blocks until fn returns a non-nil error or the value
 // is deleted. Subscribe returns the error value returned from the last call to
 // fn, which may be nil when ok == false.
 func (c *Client) Subscribe(suffix string, fn func(v string, ok bool) error) error {
 	const failedSubscribeSleep = time.Second * 5
 	// First check to see if the metadata value exists at all.
 	val, lastETag, err := c.getETag(suffix)
 	if err != nil {
 		return err
 	}
 	if err := fn(val, true); err != nil {
 		return err
 	}
 	ok := true
 	if strings.ContainsRune(suffix, '?') {
 		suffix += "&wait_for_change=true&last_etag="
 	} else {
 		suffix += "?wait_for_change=true&last_etag="
 	}
 	for {
 		val, etag, err := c.getETag(suffix + url.QueryEscape(lastETag))
 		if err != nil {
 			if _, deleted := err.(NotDefinedError); !deleted {
 				time.Sleep(failedSubscribeSleep)
 				continue // Retry on other errors.
 			}
 			ok = false
 		}
 		lastETag = etag
 		if err := fn(val, ok); err != nil || !ok {
 			return err
 		}
 	}
 }
 // Error contains an error response from the server.
 type Error struct {
 	// Code is the HTTP response status code.
 	Code int
 	// Message is the server response message.
 	Message string
 }
 func (e *Error) Error() string {
 	return fmt.Sprintf("compute: Received %d `%s`", e.Code, e.Message)
 }
--- a/vendor/cloud.google.com/go/doc.go
+++ b/vendor/cloud.google.com/go/doc.go
@ -0,0 +1,100 @@
 // Copyright 2014 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 /*
 Package cloud is the root of the packages used to access Google Cloud
 Services. See https://godoc.org/cloud.google.com/go for a full list
 of sub-packages.
 Client Options
 All clients in sub-packages are configurable via client options. These options are
 described here: https://godoc.org/google.golang.org/api/option.
 Authentication and Authorization
 All the clients in sub-packages support authentication via Google Application Default
 Credentials (see https://cloud.google.com/docs/authentication/production), or
 by providing a JSON key file for a Service Account. See the authentication examples
 in this package for details.
 Timeouts and Cancellation
 By default, all requests in sub-packages will run indefinitely, retrying on transient
 errors when correctness allows. To set timeouts or arrange for cancellation, use
 contexts. See the examples for details.
 Do not attempt to control the initial connection (dialing) of a service by setting a
 timeout on the context passed to NewClient. Dialing is non-blocking, so timeouts
 would be ineffective and would only interfere with credential refreshing, which uses
 the same context.
 Connection Pooling
 Connection pooling differs in clients based on their transport. Cloud
 clients either rely on HTTP or gRPC transports to communicate
 with Google Cloud.
 Cloud clients that use HTTP (bigquery, compute, storage, and translate) rely on the
 underlying HTTP transport to cache connections for later re-use. These are cached to
 the default http.MaxIdleConns and http.MaxIdleConnsPerHost settings in
 http.DefaultTransport.
 For gRPC clients (all others in this repo), connection pooling is configurable. Users
 of cloud client libraries may specify option.WithGRPCConnectionPool(n) as a client
 option to NewClient calls. This configures the underlying gRPC connections to be
 pooled and addressed in a round robin fashion.
 Using the Libraries with Docker
 Minimal docker images like Alpine lack CA certificates. This causes RPCs to appear to
 hang, because gRPC retries indefinitely. See https://github.com/googleapis/google-cloud-go/issues/928
 for more information.
 Debugging
 To see gRPC logs, set the environment variable GRPC_GO_LOG_SEVERITY_LEVEL. See
 https://godoc.org/google.golang.org/grpc/grpclog for more information.
 For HTTP logging, set the GODEBUG environment variable to "http2debug=1" or "http2debug=2".
 Client Stability
 Clients in this repository are considered alpha or beta unless otherwise
 marked as stable in the README.md. Semver is not used to communicate stability
 of clients.
 Alpha and beta clients may change or go away without notice.
 Clients marked stable will maintain compatibility with future versions for as
 long as we can reasonably sustain. Incompatible changes might be made in some
 situations, including:
 - Security bugs may prompt backwards-incompatible changes.
 - Situations in which components are no longer feasible to maintain without
 making breaking changes, including removal.
 - Parts of the client surface may be outright unstable and subject to change.
 These parts of the surface will be labeled with the note, "It is EXPERIMENTAL
 and subject to change or removal without notice."
 */
 package cloud // import "cloud.google.com/go"
--- a/vendor/cloud.google.com/go/gapics.txt
+++ b/vendor/cloud.google.com/go/gapics.txt
@ -0,0 +1,56 @@
 google/api/expr/artman_cel.yaml
 google/cloud/asset/artman_cloudasset_v1beta1.yaml
 google/cloud/asset/artman_cloudasset_v1p2beta1.yaml
 google/cloud/asset/artman_cloudasset_v1.yaml
 google/iam/credentials/artman_iamcredentials_v1.yaml
 google/cloud/automl/artman_automl_v1.yaml
 google/cloud/automl/artman_automl_v1beta1.yaml
 google/cloud/bigquery/datatransfer/artman_bigquerydatatransfer.yaml
 google/cloud/bigquery/storage/artman_bigquerystorage_v1beta1.yaml
 google/cloud/dataproc/artman_dataproc_v1.yaml
 google/cloud/dataproc/artman_dataproc_v1beta2.yaml
 google/cloud/dialogflow/v2/artman_dialogflow_v2.yaml
 google/cloud/iot/artman_cloudiot.yaml
 google/cloud/irm/artman_irm_v1alpha2.yaml
 google/cloud/kms/artman_cloudkms.yaml
 google/cloud/language/artman_language_v1.yaml
 google/cloud/language/artman_language_v1beta2.yaml
 google/cloud/oslogin/artman_oslogin_v1.yaml
 google/cloud/oslogin/artman_oslogin_v1beta.yaml
 google/cloud/phishingprotection/artman_phishingprotection_v1beta1.yaml
 google/cloud/recaptchaenterprise/artman_recaptchaenterprise_v1beta1.yaml
 google/cloud/recommender/artman_recommender_v1beta1.yaml
 google/cloud/redis/artman_redis_v1beta1.yaml
 google/cloud/redis/artman_redis_v1.yaml
 google/cloud/scheduler/artman_cloudscheduler_v1beta1.yaml
 google/cloud/scheduler/artman_cloudscheduler_v1.yaml
 google/cloud/securitycenter/artman_securitycenter_v1beta1.yaml
 google/cloud/securitycenter/artman_securitycenter_v1.yaml
 google/cloud/speech/artman_speech_v1.yaml
 google/cloud/speech/artman_speech_v1p1beta1.yaml
 google/cloud/talent/artman_talent_v4beta1.yaml
 google/cloud/tasks/artman_cloudtasks_v2beta2.yaml
 google/cloud/tasks/artman_cloudtasks_v2beta3.yaml
 google/cloud/tasks/artman_cloudtasks_v2.yaml
 google/cloud/translate/artman_translate_v3.yaml
 google/cloud/videointelligence/artman_videointelligence_v1.yaml
 google/cloud/videointelligence/artman_videointelligence_v1beta2.yaml
 google/cloud/vision/artman_vision_v1.yaml
 google/cloud/vision/artman_vision_v1p1beta1.yaml
 google/cloud/webrisk/artman_webrisk_v1beta1.yaml
 google/devtools/artman_clouddebugger.yaml
 google/devtools/cloudbuild/artman_cloudbuild.yaml
 google/devtools/clouderrorreporting/artman_errorreporting.yaml
 google/devtools/cloudtrace/artman_cloudtrace_v1.yaml
 google/devtools/cloudtrace/artman_cloudtrace_v2.yaml
 google/devtools/containeranalysis/artman_containeranalysis_v1beta1.yaml
 google/firestore/artman_firestore.yaml
 google/firestore/admin/artman_firestore_v1.yaml
 google/logging/artman_logging.yaml
 google/longrunning/artman_longrunning.yaml
 google/monitoring/artman_monitoring.yaml
 google/privacy/dlp/artman_dlp_v2.yaml
 google/pubsub/artman_pubsub.yaml
 google/spanner/admin/database/artman_spanner_admin_database.yaml
 google/spanner/admin/instance/artman_spanner_admin_instance.yaml
 google/spanner/artman_spanner.yaml
--- a/vendor/cloud.google.com/go/go.mod
+++ b/vendor/cloud.google.com/go/go.mod
@ -0,0 +1,28 @@
 module cloud.google.com/go
 go 1.11
 require (
 	cloud.google.com/go/bigquery v1.0.1
 	cloud.google.com/go/datastore v1.0.0
 	cloud.google.com/go/pubsub v1.0.1
 	cloud.google.com/go/storage v1.0.0
 	github.com/golang/mock v1.3.1
 	github.com/golang/protobuf v1.3.2
 	github.com/google/go-cmp v0.3.0
 	github.com/google/martian v2.1.0+incompatible
 	github.com/google/pprof v0.0.0-20190515194954-54271f7e092f
 	github.com/googleapis/gax-go/v2 v2.0.5
 	github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024
 	go.opencensus.io v0.22.0
 	golang.org/x/exp v0.0.0-20191002040644-a1355ae1e2c3
 	golang.org/x/lint v0.0.0-20190930215403-16217165b5de
 	golang.org/x/net v0.0.0-20190620200207-3b0461eec859
 	golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45
 	golang.org/x/text v0.3.2
 	golang.org/x/tools v0.0.0-20191010171213-8abd42400456
 	google.golang.org/api v0.9.0
 	google.golang.org/genproto v0.0.0-20191009194640-548a555dbc03
 	google.golang.org/grpc v1.21.1
 	honnef.co/go/tools v0.0.1-2019.2.3
 )
--- a/vendor/cloud.google.com/go/go.sum
+++ b/vendor/cloud.google.com/go/go.sum
@ -0,0 +1,208 @@
 cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU=
 cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU=
 cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
 cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
 cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
 cloud.google.com/go/bigquery v1.0.1 h1:hL+ycaJpVE9M7nLoiXb/Pn10ENE2u+oddxbD8uu0ZVU=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/datastore v1.0.0 h1:Kt+gOPPp2LEPWp8CSfxhsM8ik9CcyE/gYu+0r+RnZvM=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/pubsub v1.0.1 h1:W9tAK3E57P75u0XLLR82LZyw8VpAnhmyTOxW9qzmyj8=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 cloud.google.com/go/storage v1.0.0 h1:VV2nUM3wwLLGh9lSABFgZMjInyUbJeaRSE64WuAIQ+4=
 cloud.google.com/go/storage v1.0.0/go.mod h1:IhtSnM/ZTZV8YYJWCY8RULGVqBDmpoyjwiyrjsg+URw=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b h1:VKtxabqXZkF25pY9ekfRL6a582T4P37/31XEstQ5p58=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.2.0 h1:28o5sBqPkBsMGnC6b4MvE2TzSr5/AT4c/1fLqVGIwlk=
 github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.3.1 h1:qGJ6qTW+x6xX/my+8YUVl4WNpX9B7+/l2tRsHGZ7f2s=
 github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1 h1:YF8+flBXS5eO826T4nzqPrxfhQThhXl0YzfuUPu4SBg=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2 h1:6nsPYzhq5kReh6QImI3k5qWzO4PEbvbIW2cwSfR/6xs=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c h1:964Od4U6p2jUkFxvCydnIczKteheJEzHRToSGK3Bnlw=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.0 h1:0udJVsspx3VBr5FwtLhQQtuAsVc79tTq0ocGIPAU6qo=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/go-cmp v0.2.0 h1:+dTQ8DZQJz0Mb/HjFlkptS1FeQ4cWSnN941F8aEG4SQ=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0 h1:crn/baboCvb5fXaQ0IJ1SGTsTVrWpDsCWC8EGETZijY=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57 h1:eqyIo2HjKhKe/mJzTG8n4VqvLXIOEG+SLdDqX7xGtkY=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f h1:Jnx61latede7zDD3DiiP4gmNz33uK0U5HDUaF0a/HVQ=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/googleapis/gax-go/v2 v2.0.4 h1:hU4mGcQI4DaAYW+IbTun+2qEZVFxK0ySjQLTbS0VQKc=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5 h1:sjZBwGj9Jlw33ImPtvFviGYvseOtDM7hkSKB7+Tv3SM=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/hashicorp/golang-lru v0.5.0 h1:CL2msUPvZTLb5O648aiLNJw3hnBxN2+1Jq8rCOH9wdo=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024 h1:rBMNdlhTLzJjJSDIjNEXX1Pz3Hmwmz91v+zycvx9PJc=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 go.opencensus.io v0.21.0 h1:mU6zScU4U1YAFPHEHYk+3JC4SY7JxgkqS10ZOSyksNg=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0 h1:C9hSCOW830chIVkdja34wa6Ky+IzWllkUinR+BtRZd4=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4 h1:c2HOrn5iMezYjSlGPncknSEr/8x5LELb/ilJbXi9DEA=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522 h1:OeRHuibLsmZkFj773W4LcfAGsSxJgfPONhr8cmO+eLA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
 golang.org/x/exp v0.0.0-20190829153037-c13cbed26979 h1:Agxu5KLo8o7Bb634SVDnhIfpTvxmzUwhbYAzBvXt6h4=
 golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek=
 golang.org/x/exp v0.0.0-20191002040644-a1355ae1e2c3 h1:n9HxLrNxWWtEb1cA950nuEEj3QnKbtsCJ6KjcgisNUs=
 golang.org/x/exp v0.0.0-20191002040644-a1355ae1e2c3/go.mod h1:NOZ3BPKG0ec/BKJQgnvsSFpcKLM5xXVWnvZS97DWHgE=
 golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
 golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
 golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f h1:hX65Cu3JDlGH3uEdK7I99Ii+9kjD6mvnnpfLdEAH0x4=
 golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190409202823-959b441ac422 h1:QzoH/1pFpZguR8NrRHLcO6jKqfv2zpuSqZLgdm7ZmjI=
 golang.org/x/lint v0.0.0-20190409202823-959b441ac422/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac h1:8R1esu+8QioDxo4E4mX6bFztO+dMTM49DNAaWfO5OeY=
 golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190930215403-16217165b5de h1:5hukYrvBGR8/eNkX5mdUezrA6JiaEZDtJb9Ei+1LlBs=
 golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
 golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
 golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a h1:oWX7TPOiFAMXLq8o0ikBYfCJVlRHBcsciT5bXOrH628=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c h1:uOCk1iQW6Vc18bnC13MfzScl+wdKBmM9Y9kU7Z83/lw=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859 h1:R/3boaszxrf1GEUWTVDzSKVwLmSJpwZ1yqXm8j0v2QI=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421 h1:Wo7BWFiOk0QRFMLYMqJGFMd9CgUAcGx7V+qEg/h5IBI=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45 h1:SVwTIAaPC2U/AvvLNZ2a7OVsmBpC8L5BlwK1whH3hm0=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6 h1:bjcUS9ztw9kFmmIxJInhon/0Is3p+EHBKNgquIzo1OI=
 golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58 h1:8gQV6CLnAEikrhgkHFbMAEhagSSnXWGV915qUMm9mrU=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a h1:1BGLXjeY4akVXGgbC9HugT3Jv3hCI0z56oJR5vAMgBU=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b h1:ag/x1USPSsqHud38I9BAC88qdNLDHHtQ4mlgQIZPPNA=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0 h1:HyfiK1WMnHj5FXFXatD+Qs1A/xC2Run6RzeW1SyHxpc=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2 h1:z99zHgr7hKfrUcX/KsoJk5FJfjTceCKIp96+biqP4To=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2 h1:tW2bmiBqwgJj/UpqtC8EpXEZVYOwU0yG4iWbprSVAcs=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c h1:fqgJT0MGcGpPgpWU7VRdRjuArfcOvC4AoJmILihzhDg=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4 h1:SvFZT6jyqRaOeXpc5h/JSfZenJ2O330aBsf7JfSUXmQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312170243-e65039ee4138 h1:H3uGjxCR/6Ds0Mjgyp7LMK81+LvmbvWWEnJhzk1Pi9E=
 golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c h1:97SnQk1GYRXJgvwZ8fadnxDOWfKvkNQHH3CtZntPSrM=
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0 h1:Dh6fw+p6FyRl5x/FvNswO1ji0lIGzm3KP8Y9VkS9PTE=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff h1:On1qIo75ByTwFJ4/W2bIqHcwJ9XAqtSWUs8GwRrIhtc=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190927191325-030b2cf1153e h1:1xWUkZQQ9Z9UuZgNaIR6OQOE7rUFglXUUBZlO+dGg6I=
 golang.org/x/tools v0.0.0-20190927191325-030b2cf1153e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191010171213-8abd42400456 h1:LR16zMCx87X52rsLOtnByklL2K/xWUKAo1Nm7AA4HA0=
 golang.org/x/tools v0.0.0-20191010171213-8abd42400456/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0 h1:VGGbLNyPF7dvYHhcUGYBBGCRDDK0RRJAI6KCvo0CL+E=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
 google.golang.org/api v0.9.0 h1:jbyannxz0XFD3zdjgrSUsaJbgpH4eTrkdhRChkHPfO8=
 google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0 h1:/wp5JvzpHIxhs/dumFmF7BXTf3Z+dd4uXta4kVyO508=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0 h1:KxkO13IPW4Lslp2bz+KHP2E3gtFlrIGNThxkZQ3g+4c=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1 h1:QzqyMA1tlu6CgqCDUtU9V+ZKhLFT2dkJuANu5QaxI3I=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19 h1:Lj2SnHtxkRGJDqnGaSjo+CCdIieEnwVazbOXILwQemk=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873 h1:nfPFGzJkUDX6uBmpN/pSw7MbOAWegH5QDQuoXFHedLg=
 google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64 h1:iKtrH9Y8mcbADOP0YFaEMth7OfuHY9xHOwNj4znpM1A=
 google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55 h1:gSJIx1SDwno+2ElGhA4+qG2zF97qiUzTM+rQ0klBOcE=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51 h1:Ex1mq5jaJof+kRnYi3SlYJ8KKa9Ao3NHyIT5XJ1gF6U=
 google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8=
 google.golang.org/genproto v0.0.0-20191009194640-548a555dbc03 h1:4HYDjxeNXAOTv3o1N2tjo8UUSlhQgAD52FVkwxnWgM8=
 google.golang.org/genproto v0.0.0-20191009194640-548a555dbc03/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
 google.golang.org/grpc v1.19.0 h1:cfg4PD8YEdSFnm7qLV4++93WcmhH2nIUhMjhdCvl3j8=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1 h1:Hz2g2wirWK7H0qIIhGIqRGTuMwTE8HEKFnDZZ7lm9NU=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1 h1:j6XxA85m/6txkUCHvzlV5f+HBNl/1r5cZ2A/3IEFOO8=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a h1:/8zB6iBfHCl1qAnEAWwGPNrUvapuy6CPla1VM0k8hQw=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a h1:LJwr7TCTghdatWv40WobzlKXc9c4s8oGa7QKJUtHhWA=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.1-2019.2.3 h1:3JgtbtFHMiCmsznwGVTUWbgGov+pVqnlf1dEJTNAXeM=
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 rsc.io/binaryregexp v0.2.0 h1:HfqmD5MEmC0zvwBuF187nq9mdnXjXsSivRiXN7SmRkE=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
--- a/vendor/cloud.google.com/go/iam/.repo-metadata.json
+++ b/vendor/cloud.google.com/go/iam/.repo-metadata.json
@ -0,0 +1,12 @@
 {
  "name": "iam",
  "name_pretty": "Cloud Identify and Access Management API",
  "product_documentation": "https://cloud.google.com/iam",
  "client_documentation": "https://godoc.org/cloud.google.com/go/iam",
  "release_level": "ga",
  "language": "go",
  "repo": "googleapis/google-cloud-go",
  "distribution_name": "cloud.google.com/go/iam",
  "api_id": "iam.googleapis.com",
  "requires_billing": true
 }
--- a/vendor/cloud.google.com/go/iam/iam.go
+++ b/vendor/cloud.google.com/go/iam/iam.go
@ -0,0 +1,315 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Package iam supports the resource-specific operations of Google Cloud
 // IAM (Identity and Access Management) for the Google Cloud Libraries.
 // See https://cloud.google.com/iam for more about IAM.
 //
 // Users of the Google Cloud Libraries will typically not use this package
 // directly. Instead they will begin with some resource that supports IAM, like
 // a pubsub topic, and call its IAM method to get a Handle for that resource.
 package iam
 import (
 	"context"
 	"fmt"
 	"time"
 	gax "github.com/googleapis/gax-go/v2"
 	pb "google.golang.org/genproto/googleapis/iam/v1"
 	"google.golang.org/grpc"
 	"google.golang.org/grpc/codes"
 	"google.golang.org/grpc/metadata"
 )
 // client abstracts the IAMPolicy API to allow multiple implementations.
 type client interface {
 	Get(ctx context.Context, resource string) (*pb.Policy, error)
 	Set(ctx context.Context, resource string, p *pb.Policy) error
 	Test(ctx context.Context, resource string, perms []string) ([]string, error)
 }
 // grpcClient implements client for the standard gRPC-based IAMPolicy service.
 type grpcClient struct {
 	c pb.IAMPolicyClient
 }
 var withRetry = gax.WithRetry(func() gax.Retryer {
 	return gax.OnCodes([]codes.Code{
 		codes.DeadlineExceeded,
 		codes.Unavailable,
 	}, gax.Backoff{
 		Initial:    100 * time.Millisecond,
 		Max:        60 * time.Second,
 		Multiplier: 1.3,
 	})
 })
 func (g *grpcClient) Get(ctx context.Context, resource string) (*pb.Policy, error) {
 	var proto *pb.Policy
 	md := metadata.Pairs("x-goog-request-params", fmt.Sprintf("%s=%v", "resource", resource))
 	ctx = insertMetadata(ctx, md)
 	err := gax.Invoke(ctx, func(ctx context.Context, _ gax.CallSettings) error {
 		var err error
 		proto, err = g.c.GetIamPolicy(ctx, &pb.GetIamPolicyRequest{Resource: resource})
 		return err
 	}, withRetry)
 	if err != nil {
 		return nil, err
 	}
 	return proto, nil
 }
 func (g *grpcClient) Set(ctx context.Context, resource string, p *pb.Policy) error {
 	md := metadata.Pairs("x-goog-request-params", fmt.Sprintf("%s=%v", "resource", resource))
 	ctx = insertMetadata(ctx, md)
 	return gax.Invoke(ctx, func(ctx context.Context, _ gax.CallSettings) error {
 		_, err := g.c.SetIamPolicy(ctx, &pb.SetIamPolicyRequest{
 			Resource: resource,
 			Policy:   p,
 		})
 		return err
 	}, withRetry)
 }
 func (g *grpcClient) Test(ctx context.Context, resource string, perms []string) ([]string, error) {
 	var res *pb.TestIamPermissionsResponse
 	md := metadata.Pairs("x-goog-request-params", fmt.Sprintf("%s=%v", "resource", resource))
 	ctx = insertMetadata(ctx, md)
 	err := gax.Invoke(ctx, func(ctx context.Context, _ gax.CallSettings) error {
 		var err error
 		res, err = g.c.TestIamPermissions(ctx, &pb.TestIamPermissionsRequest{
 			Resource:    resource,
 			Permissions: perms,
 		})
 		return err
 	}, withRetry)
 	if err != nil {
 		return nil, err
 	}
 	return res.Permissions, nil
 }
 // A Handle provides IAM operations for a resource.
 type Handle struct {
 	c        client
 	resource string
 }
 // InternalNewHandle is for use by the Google Cloud Libraries only.
 //
 // InternalNewHandle returns a Handle for resource.
 // The conn parameter refers to a server that must support the IAMPolicy service.
 func InternalNewHandle(conn *grpc.ClientConn, resource string) *Handle {
 	return InternalNewHandleGRPCClient(pb.NewIAMPolicyClient(conn), resource)
 }
 // InternalNewHandleGRPCClient is for use by the Google Cloud Libraries only.
 //
 // InternalNewHandleClient returns a Handle for resource using the given
 // grpc service that implements IAM as a mixin
 func InternalNewHandleGRPCClient(c pb.IAMPolicyClient, resource string) *Handle {
 	return InternalNewHandleClient(&grpcClient{c: c}, resource)
 }
 // InternalNewHandleClient is for use by the Google Cloud Libraries only.
 //
 // InternalNewHandleClient returns a Handle for resource using the given
 // client implementation.
 func InternalNewHandleClient(c client, resource string) *Handle {
 	return &Handle{
 		c:        c,
 		resource: resource,
 	}
 }
 // Policy retrieves the IAM policy for the resource.
 func (h *Handle) Policy(ctx context.Context) (*Policy, error) {
 	proto, err := h.c.Get(ctx, h.resource)
 	if err != nil {
 		return nil, err
 	}
 	return &Policy{InternalProto: proto}, nil
 }
 // SetPolicy replaces the resource's current policy with the supplied Policy.
 //
 // If policy was created from a prior call to Get, then the modification will
 // only succeed if the policy has not changed since the Get.
 func (h *Handle) SetPolicy(ctx context.Context, policy *Policy) error {
 	return h.c.Set(ctx, h.resource, policy.InternalProto)
 }
 // TestPermissions returns the subset of permissions that the caller has on the resource.
 func (h *Handle) TestPermissions(ctx context.Context, permissions []string) ([]string, error) {
 	return h.c.Test(ctx, h.resource, permissions)
 }
 // A RoleName is a name representing a collection of permissions.
 type RoleName string
 // Common role names.
 const (
 	Owner  RoleName = "roles/owner"
 	Editor RoleName = "roles/editor"
 	Viewer RoleName = "roles/viewer"
 )
 const (
 	// AllUsers is a special member that denotes all users, even unauthenticated ones.
 	AllUsers = "allUsers"
 	// AllAuthenticatedUsers is a special member that denotes all authenticated users.
 	AllAuthenticatedUsers = "allAuthenticatedUsers"
 )
 // A Policy is a list of Bindings representing roles
 // granted to members.
 //
 // The zero Policy is a valid policy with no bindings.
 type Policy struct {
 	// TODO(jba): when type aliases are available, put Policy into an internal package
 	// and provide an exported alias here.
 	// This field is exported for use by the Google Cloud Libraries only.
 	// It may become unexported in a future release.
 	InternalProto *pb.Policy
 }
 // Members returns the list of members with the supplied role.
 // The return value should not be modified. Use Add and Remove
 // to modify the members of a role.
 func (p *Policy) Members(r RoleName) []string {
 	b := p.binding(r)
 	if b == nil {
 		return nil
 	}
 	return b.Members
 }
 // HasRole reports whether member has role r.
 func (p *Policy) HasRole(member string, r RoleName) bool {
 	return memberIndex(member, p.binding(r)) >= 0
 }
 // Add adds member member to role r if it is not already present.
 // A new binding is created if there is no binding for the role.
 func (p *Policy) Add(member string, r RoleName) {
 	b := p.binding(r)
 	if b == nil {
 		if p.InternalProto == nil {
 			p.InternalProto = &pb.Policy{}
 		}
 		p.InternalProto.Bindings = append(p.InternalProto.Bindings, &pb.Binding{
 			Role:    string(r),
 			Members: []string{member},
 		})
 		return
 	}
 	if memberIndex(member, b) < 0 {
 		b.Members = append(b.Members, member)
 		return
 	}
 }
 // Remove removes member from role r if it is present.
 func (p *Policy) Remove(member string, r RoleName) {
 	bi := p.bindingIndex(r)
 	if bi < 0 {
 		return
 	}
 	bindings := p.InternalProto.Bindings
 	b := bindings[bi]
 	mi := memberIndex(member, b)
 	if mi < 0 {
 		return
 	}
 	// Order doesn't matter for bindings or members, so to remove, move the last item
 	// into the removed spot and shrink the slice.
 	if len(b.Members) == 1 {
 		// Remove binding.
 		last := len(bindings) - 1
 		bindings[bi] = bindings[last]
 		bindings[last] = nil
 		p.InternalProto.Bindings = bindings[:last]
 		return
 	}
 	// Remove member.
 	// TODO(jba): worry about multiple copies of m?
 	last := len(b.Members) - 1
 	b.Members[mi] = b.Members[last]
 	b.Members[last] = ""
 	b.Members = b.Members[:last]
 }
 // Roles returns the names of all the roles that appear in the Policy.
 func (p *Policy) Roles() []RoleName {
 	if p.InternalProto == nil {
 		return nil
 	}
 	var rns []RoleName
 	for _, b := range p.InternalProto.Bindings {
 		rns = append(rns, RoleName(b.Role))
 	}
 	return rns
 }
 // binding returns the Binding for the suppied role, or nil if there isn't one.
 func (p *Policy) binding(r RoleName) *pb.Binding {
 	i := p.bindingIndex(r)
 	if i < 0 {
 		return nil
 	}
 	return p.InternalProto.Bindings[i]
 }
 func (p *Policy) bindingIndex(r RoleName) int {
 	if p.InternalProto == nil {
 		return -1
 	}
 	for i, b := range p.InternalProto.Bindings {
 		if b.Role == string(r) {
 			return i
 		}
 	}
 	return -1
 }
 // memberIndex returns the index of m in b's Members, or -1 if not found.
 func memberIndex(m string, b *pb.Binding) int {
 	if b == nil {
 		return -1
 	}
 	for i, mm := range b.Members {
 		if mm == m {
 			return i
 		}
 	}
 	return -1
 }
 // insertMetadata inserts metadata into the given context
 func insertMetadata(ctx context.Context, mds ...metadata.MD) context.Context {
 	out, _ := metadata.FromOutgoingContext(ctx)
 	out = out.Copy()
 	for _, md := range mds {
 		for k, v := range md {
 			out[k] = append(out[k], v...)
 		}
 	}
 	return metadata.NewOutgoingContext(ctx, out)
 }
--- a/vendor/cloud.google.com/go/internal/annotate.go
+++ b/vendor/cloud.google.com/go/internal/annotate.go
@ -0,0 +1,54 @@
 // Copyright 2017 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package internal
 import (
 	"fmt"
 	"google.golang.org/api/googleapi"
 	"google.golang.org/grpc/status"
 )
 // Annotate prepends msg to the error message in err, attempting
 // to preserve other information in err, like an error code.
 //
 // Annotate panics if err is nil.
 //
 // Annotate knows about these error types:
 // - "google.golang.org/grpc/status".Status
 // - "google.golang.org/api/googleapi".Error
 // If the error is not one of these types, Annotate behaves
 // like
 //   fmt.Errorf("%s: %v", msg, err)
 func Annotate(err error, msg string) error {
 	if err == nil {
 		panic("Annotate called with nil")
 	}
 	if s, ok := status.FromError(err); ok {
 		p := s.Proto()
 		p.Message = msg + ": " + p.Message
 		return status.ErrorProto(p)
 	}
 	if g, ok := err.(*googleapi.Error); ok {
 		g.Message = msg + ": " + g.Message
 		return g
 	}
 	return fmt.Errorf("%s: %v", msg, err)
 }
 // Annotatef uses format and args to format a string, then calls Annotate.
 func Annotatef(err error, format string, args ...interface{}) error {
 	return Annotate(err, fmt.Sprintf(format, args...))
 }
--- a/vendor/cloud.google.com/go/internal/optional/optional.go
+++ b/vendor/cloud.google.com/go/internal/optional/optional.go
@ -0,0 +1,108 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // Package optional provides versions of primitive types that can
 // be nil. These are useful in methods that update some of an API object's
 // fields.
 package optional
 import (
 	"fmt"
 	"strings"
 	"time"
 )
 type (
 	// Bool is either a bool or nil.
 	Bool interface{}
 	// String is either a string or nil.
 	String interface{}
 	// Int is either an int or nil.
 	Int interface{}
 	// Uint is either a uint or nil.
 	Uint interface{}
 	// Float64 is either a float64 or nil.
 	Float64 interface{}
 	// Duration is either a time.Duration or nil.
 	Duration interface{}
 )
 // ToBool returns its argument as a bool.
 // It panics if its argument is nil or not a bool.
 func ToBool(v Bool) bool {
 	x, ok := v.(bool)
 	if !ok {
 		doPanic("Bool", v)
 	}
 	return x
 }
 // ToString returns its argument as a string.
 // It panics if its argument is nil or not a string.
 func ToString(v String) string {
 	x, ok := v.(string)
 	if !ok {
 		doPanic("String", v)
 	}
 	return x
 }
 // ToInt returns its argument as an int.
 // It panics if its argument is nil or not an int.
 func ToInt(v Int) int {
 	x, ok := v.(int)
 	if !ok {
 		doPanic("Int", v)
 	}
 	return x
 }
 // ToUint returns its argument as a uint.
 // It panics if its argument is nil or not a uint.
 func ToUint(v Uint) uint {
 	x, ok := v.(uint)
 	if !ok {
 		doPanic("Uint", v)
 	}
 	return x
 }
 // ToFloat64 returns its argument as a float64.
 // It panics if its argument is nil or not a float64.
 func ToFloat64(v Float64) float64 {
 	x, ok := v.(float64)
 	if !ok {
 		doPanic("Float64", v)
 	}
 	return x
 }
 // ToDuration returns its argument as a time.Duration.
 // It panics if its argument is nil or not a time.Duration.
 func ToDuration(v Duration) time.Duration {
 	x, ok := v.(time.Duration)
 	if !ok {
 		doPanic("Duration", v)
 	}
 	return x
 }
 func doPanic(capType string, v interface{}) {
 	panic(fmt.Sprintf("optional.%s value should be %s, got %T", capType, strings.ToLower(capType), v))
 }
--- a/vendor/cloud.google.com/go/internal/retry.go
+++ b/vendor/cloud.google.com/go/internal/retry.go
@ -0,0 +1,54 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package internal
 import (
 	"context"
 	"time"
 	gax "github.com/googleapis/gax-go/v2"
 )
 // Retry calls the supplied function f repeatedly according to the provided
 // backoff parameters. It returns when one of the following occurs:
 // When f's first return value is true, Retry immediately returns with f's second
 // return value.
 // When the provided context is done, Retry returns with an error that
 // includes both ctx.Error() and the last error returned by f.
 func Retry(ctx context.Context, bo gax.Backoff, f func() (stop bool, err error)) error {
 	return retry(ctx, bo, f, gax.Sleep)
 }
 func retry(ctx context.Context, bo gax.Backoff, f func() (stop bool, err error),
 	sleep func(context.Context, time.Duration) error) error {
 	var lastErr error
 	for {
 		stop, err := f()
 		if stop {
 			return err
 		}
 		// Remember the last "real" error from f.
 		if err != nil && err != context.Canceled && err != context.DeadlineExceeded {
 			lastErr = err
 		}
 		p := bo.Pause()
 		if cerr := sleep(ctx, p); cerr != nil {
 			if lastErr != nil {
 				return Annotatef(lastErr, "retry failed with %v; last error", cerr)
 			}
 			return cerr
 		}
 	}
 }
--- a/vendor/cloud.google.com/go/internal/trace/trace.go
+++ b/vendor/cloud.google.com/go/internal/trace/trace.go
@ -0,0 +1,109 @@
 // Copyright 2018 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package trace
 import (
 	"context"
 	"fmt"
 	"go.opencensus.io/trace"
 	"google.golang.org/api/googleapi"
 	"google.golang.org/genproto/googleapis/rpc/code"
 	"google.golang.org/grpc/status"
 )
 // StartSpan adds a span to the trace with the given name.
 func StartSpan(ctx context.Context, name string) context.Context {
 	ctx, _ = trace.StartSpan(ctx, name)
 	return ctx
 }
 // EndSpan ends a span with the given error.
 func EndSpan(ctx context.Context, err error) {
 	span := trace.FromContext(ctx)
 	if err != nil {
 		span.SetStatus(toStatus(err))
 	}
 	span.End()
 }
 // toStatus interrogates an error and converts it to an appropriate
 // OpenCensus status.
 func toStatus(err error) trace.Status {
 	if err2, ok := err.(*googleapi.Error); ok {
 		return trace.Status{Code: httpStatusCodeToOCCode(err2.Code), Message: err2.Message}
 	} else if s, ok := status.FromError(err); ok {
 		return trace.Status{Code: int32(s.Code()), Message: s.Message()}
 	} else {
 		return trace.Status{Code: int32(code.Code_UNKNOWN), Message: err.Error()}
 	}
 }
 // TODO(deklerk): switch to using OpenCensus function when it becomes available.
 // Reference: https://github.com/googleapis/googleapis/blob/26b634d2724ac5dd30ae0b0cbfb01f07f2e4050e/google/rpc/code.proto
 func httpStatusCodeToOCCode(httpStatusCode int) int32 {
 	switch httpStatusCode {
 	case 200:
 		return int32(code.Code_OK)
 	case 499:
 		return int32(code.Code_CANCELLED)
 	case 500:
 		return int32(code.Code_UNKNOWN) // Could also be Code_INTERNAL, Code_DATA_LOSS
 	case 400:
 		return int32(code.Code_INVALID_ARGUMENT) // Could also be Code_OUT_OF_RANGE
 	case 504:
 		return int32(code.Code_DEADLINE_EXCEEDED)
 	case 404:
 		return int32(code.Code_NOT_FOUND)
 	case 409:
 		return int32(code.Code_ALREADY_EXISTS) // Could also be Code_ABORTED
 	case 403:
 		return int32(code.Code_PERMISSION_DENIED)
 	case 401:
 		return int32(code.Code_UNAUTHENTICATED)
 	case 429:
 		return int32(code.Code_RESOURCE_EXHAUSTED)
 	case 501:
 		return int32(code.Code_UNIMPLEMENTED)
 	case 503:
 		return int32(code.Code_UNAVAILABLE)
 	default:
 		return int32(code.Code_UNKNOWN)
 	}
 }
 // TODO: (odeke-em): perhaps just pass around spans due to the cost
 // incurred from using trace.FromContext(ctx) yet we could avoid
 // throwing away the work done by ctx, span := trace.StartSpan.
 func TracePrintf(ctx context.Context, attrMap map[string]interface{}, format string, args ...interface{}) {
 	var attrs []trace.Attribute
 	for k, v := range attrMap {
 		var a trace.Attribute
 		switch v := v.(type) {
 		case string:
 			a = trace.StringAttribute(k, v)
 		case bool:
 			a = trace.BoolAttribute(k, v)
 		case int:
 			a = trace.Int64Attribute(k, int64(v))
 		case int64:
 			a = trace.Int64Attribute(k, v)
 		default:
 			a = trace.StringAttribute(k, fmt.Sprintf("%#v", v))
 		}
 		attrs = append(attrs, a)
 	}
 	trace.FromContext(ctx).Annotatef(attrs, format, args...)
 }
--- a/vendor/cloud.google.com/go/internal/version/update_version.sh
+++ b/vendor/cloud.google.com/go/internal/version/update_version.sh
@ -0,0 +1,19 @@
 #!/bin/bash
 # Copyright 2019 Google LLC
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #      http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 today=$(date +%Y%m%d)
 sed -i -r -e 's/const Repo = "([0-9]{8})"/const Repo = "'$today'"/' $GOFILE
--- a/vendor/cloud.google.com/go/internal/version/version.go
+++ b/vendor/cloud.google.com/go/internal/version/version.go
@ -0,0 +1,71 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 //go:generate ./update_version.sh
 // Package version contains version information for Google Cloud Client
 // Libraries for Go, as reported in request headers.
 package version
 import (
 	"runtime"
 	"strings"
 	"unicode"
 )
 // Repo is the current version of the client libraries in this
 // repo. It should be a date in YYYYMMDD format.
 const Repo = "20191008"
 // Go returns the Go runtime version. The returned string
 // has no whitespace.
 func Go() string {
 	return goVersion
 }
 var goVersion = goVer(runtime.Version())
 const develPrefix = "devel +"
 func goVer(s string) string {
 	if strings.HasPrefix(s, develPrefix) {
 		s = s[len(develPrefix):]
 		if p := strings.IndexFunc(s, unicode.IsSpace); p >= 0 {
 			s = s[:p]
 		}
 		return s
 	}
 	if strings.HasPrefix(s, "go1") {
 		s = s[2:]
 		var prerelease string
 		if p := strings.IndexFunc(s, notSemverRune); p >= 0 {
 			s, prerelease = s[:p], s[p:]
 		}
 		if strings.HasSuffix(s, ".") {
 			s += "0"
 		} else if strings.Count(s, ".") < 2 {
 			s += ".0"
 		}
 		if prerelease != "" {
 			s += "-" + prerelease
 		}
 		return s
 	}
 	return ""
 }
 func notSemverRune(r rune) bool {
 	return !strings.ContainsRune("0123456789.", r)
 }
--- a/vendor/cloud.google.com/go/issue_template.md
+++ b/vendor/cloud.google.com/go/issue_template.md
@ -0,0 +1,17 @@
 (delete this for feature requests)
 ## Client
 e.g. PubSub
 ## Describe Your Environment
 e.g. Alpine Docker on GKE
 ## Expected Behavior
 e.g. Messages arrive really fast.
 ## Actual Behavior
 e.g. Messages arrive really slowly.
--- a/vendor/cloud.google.com/go/manuals.txt
+++ b/vendor/cloud.google.com/go/manuals.txt
@ -0,0 +1,8 @@
 errorreporting/apiv1beta1
 firestore/apiv1beta1
 firestore/apiv1
 logging/apiv2
 longrunning/autogen
 pubsub/apiv1
 spanner/apiv1
 trace/apiv1
--- a/vendor/cloud.google.com/go/microgens.csv
+++ b/vendor/cloud.google.com/go/microgens.csv
@ -0,0 +1 @@
 input directory path, go module;package flag, gRPC ServiceConfig path flag, API service config path flag, release level
--- a/vendor/cloud.google.com/go/regen-gapic.sh
+++ b/vendor/cloud.google.com/go/regen-gapic.sh
@ -0,0 +1,81 @@
 #!/bin/bash
 # Copyright 2019 Google LLC
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #      http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 # This script generates all GAPIC clients in this repo.
 # See instructions at go/yoshi-site.
 set -ex
 GOCLOUD_DIR="$(dirname "$0")"
 HOST_MOUNT="$PWD"
 # need to mount the /var/folders properly for macos
 # https://stackoverflow.com/questions/45122459/docker-mounts-denied-the-paths-are-not-shared-from-os-x-and-are-not-known/45123074
 if [[ "$OSTYPE" == "darwin"* ]] && [[ "$HOST_MOUNT" == "/var/folders"* ]]; then
  HOST_MOUNT=/private$HOST_MOUNT
 fi
 microgen() {
  input=$1
  options="${@:2}"
  # see https://github.com/googleapis/gapic-generator-go/blob/master/README.md#docker-wrapper for details
  docker run \
    --user $UID \
    --mount type=bind,source=$HOST_MOUNT,destination=/conf,readonly \
    --mount type=bind,source=$HOST_MOUNT/$input,destination=/in/$input,readonly \
    --mount type=bind,source=/tmp,destination=/out \
    --rm \
    gcr.io/gapic-images/gapic-generator-go:0.8.1 \
    $options
 }
 for gencfg in $(cat $GOCLOUD_DIR/gapics.txt); do
  rm -rf artman-genfiles/*
  artman --config "$gencfg" generate go_gapic
  cp -r artman-genfiles/gapi-*/cloud.google.com/go/* $GOCLOUD_DIR
 done
 rm -rf /tmp/cloud.google.com
 {
  # skip the first line with column titles
  read -r
  while IFS=, read -r input mod retrycfg apicfg release
  do
    microgen $input "$mod" "$retrycfg" "$apicfg" "$release"
  done
 } < $GOCLOUD_DIR/microgens.csv
 # copy generated code if any was created
 [ -d "/tmp/cloud.google.com/go" ] && cp -r /tmp/cloud.google.com/go/* $GOCLOUD_DIR
 pushd $GOCLOUD_DIR
  gofmt -s -d -l -w . && goimports -w .
  # NOTE(pongad): `sed -i` doesn't work on Macs, because -i option needs an argument.
  # `-i ''` doesn't work on GNU, since the empty string is treated as a file name.
  # So we just create the backup and delete it after.
  ver=$(date +%Y%m%d)
  git ls-files -mo | while read modified; do
    dir=${modified%/*.*}
    find . -path "*/$dir/doc.go" -exec sed -i.backup -e "s/^const versionClient.*/const versionClient = \"$ver\"/" '{}' +
  done
 popd
 for manualdir in $(cat $GOCLOUD_DIR/manuals.txt); do
  find "$GOCLOUD_DIR/$manualdir" -name '*.go' -exec sed -i.backup -e 's/setGoogleClientInfo/SetGoogleClientInfo/g' '{}' '+'
 done
 find $GOCLOUD_DIR -name '*.backup' -delete
--- a/vendor/cloud.google.com/go/storage/.repo-metadata.json
+++ b/vendor/cloud.google.com/go/storage/.repo-metadata.json
@ -0,0 +1,12 @@
 {
  "name": "storage",
  "name_pretty": "storage",
  "product_documentation": "https://cloud.google.com/storage",
  "client_documentation": "https://godoc.org/cloud.google.com/go/storage",
  "release_level": "ga",
  "language": "go",
  "repo": "googleapis/google-cloud-go",
  "distribution_name": "cloud.google.com/go/storage",
  "api_id": "storage:v2",
  "requires_billing": true
 }
--- a/vendor/cloud.google.com/go/storage/CHANGES.md
+++ b/vendor/cloud.google.com/go/storage/CHANGES.md
@ -0,0 +1,33 @@
 # Changes
 ## v1.2.1
 - Fixed a bug where UniformBucketLevelAccess and BucketPolicyOnly were not
  being sent in all cases.
 ## v1.2.0
 - Add support for UniformBucketLevelAccess. This configures access checks
  to use only bucket-level IAM policies.
  See: https://godoc.org/cloud.google.com/go/storage#UniformBucketLevelAccess.
 - Fix userAgent to use correct version.
 ## v1.1.2
 - Fix memory leak in BucketIterator and ObjectIterator.
 ## v1.1.1
 - Send BucketPolicyOnly even when it's disabled.
 ## v1.1.0
 - Performance improvements for ObjectIterator and BucketIterator.
 - Fix Bucket.ObjectIterator size calculation checks.
 - Added HMACKeyOptions to all the methods which allows for options such as
  UserProject to be set per invocation and optionally be used.
 ## v1.0.0
 This is the first tag to carve out storage as its own module. See:
 https://github.com/golang/go/wiki/Modules#is-it-possible-to-add-a-module-to-a-multi-module-repository.
--- a/vendor/cloud.google.com/go/storage/LICENSE
+++ b/vendor/cloud.google.com/go/storage/LICENSE
@ -0,0 +1,202 @@
                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/
   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
   1. Definitions.
      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.
      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.
      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.
      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.
      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.
      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.
      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).
      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.
      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."
      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.
   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.
   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.
   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:
      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and
      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and
      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and
      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.
      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.
   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.
   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.
   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.
   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.
   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.
   END OF TERMS AND CONDITIONS
   APPENDIX: How to apply the Apache License to your work.
      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!)  The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/vendor/cloud.google.com/go/storage/README.md
+++ b/vendor/cloud.google.com/go/storage/README.md
@ -0,0 +1,32 @@
 ## Cloud Storage [![GoDoc](https://godoc.org/cloud.google.com/go/storage?status.svg)](https://godoc.org/cloud.google.com/go/storage)
 - [About Cloud Storage](https://cloud.google.com/storage/)
 - [API documentation](https://cloud.google.com/storage/docs)
 - [Go client documentation](https://godoc.org/cloud.google.com/go/storage)
 - [Complete sample programs](https://github.com/GoogleCloudPlatform/golang-samples/tree/master/storage)
 ### Example Usage
 First create a `storage.Client` to use throughout your application:
 [snip]:# (storage-1)
 ```go
 client, err := storage.NewClient(ctx)
 if err != nil {
 	log.Fatal(err)
 }
 ```
 [snip]:# (storage-2)
 ```go
 // Read the object1 from bucket.
 rc, err := client.Bucket("bucket").Object("object1").NewReader(ctx)
 if err != nil {
 	log.Fatal(err)
 }
 defer rc.Close()
 body, err := ioutil.ReadAll(rc)
 if err != nil {
 	log.Fatal(err)
 }
 ```
--- a/vendor/cloud.google.com/go/storage/acl.go
+++ b/vendor/cloud.google.com/go/storage/acl.go
@ -0,0 +1,335 @@
 // Copyright 2014 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"net/http"
 	"reflect"
 	"cloud.google.com/go/internal/trace"
 	"google.golang.org/api/googleapi"
 	raw "google.golang.org/api/storage/v1"
 )
 // ACLRole is the level of access to grant.
 type ACLRole string
 const (
 	RoleOwner  ACLRole = "OWNER"
 	RoleReader ACLRole = "READER"
 	RoleWriter ACLRole = "WRITER"
 )
 // ACLEntity refers to a user or group.
 // They are sometimes referred to as grantees.
 //
 // It could be in the form of:
 // "user-<userId>", "user-<email>", "group-<groupId>", "group-<email>",
 // "domain-<domain>" and "project-team-<projectId>".
 //
 // Or one of the predefined constants: AllUsers, AllAuthenticatedUsers.
 type ACLEntity string
 const (
 	AllUsers              ACLEntity = "allUsers"
 	AllAuthenticatedUsers ACLEntity = "allAuthenticatedUsers"
 )
 // ACLRule represents a grant for a role to an entity (user, group or team) for a
 // Google Cloud Storage object or bucket.
 type ACLRule struct {
 	Entity      ACLEntity
 	EntityID    string
 	Role        ACLRole
 	Domain      string
 	Email       string
 	ProjectTeam *ProjectTeam
 }
 // ProjectTeam is the project team associated with the entity, if any.
 type ProjectTeam struct {
 	ProjectNumber string
 	Team          string
 }
 // ACLHandle provides operations on an access control list for a Google Cloud Storage bucket or object.
 type ACLHandle struct {
 	c           *Client
 	bucket      string
 	object      string
 	isDefault   bool
 	userProject string // for requester-pays buckets
 }
 // Delete permanently deletes the ACL entry for the given entity.
 func (a *ACLHandle) Delete(ctx context.Context, entity ACLEntity) (err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.ACL.Delete")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if a.object != "" {
 		return a.objectDelete(ctx, entity)
 	}
 	if a.isDefault {
 		return a.bucketDefaultDelete(ctx, entity)
 	}
 	return a.bucketDelete(ctx, entity)
 }
 // Set sets the role for the given entity.
 func (a *ACLHandle) Set(ctx context.Context, entity ACLEntity, role ACLRole) (err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.ACL.Set")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if a.object != "" {
 		return a.objectSet(ctx, entity, role, false)
 	}
 	if a.isDefault {
 		return a.objectSet(ctx, entity, role, true)
 	}
 	return a.bucketSet(ctx, entity, role)
 }
 // List retrieves ACL entries.
 func (a *ACLHandle) List(ctx context.Context) (rules []ACLRule, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.ACL.List")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if a.object != "" {
 		return a.objectList(ctx)
 	}
 	if a.isDefault {
 		return a.bucketDefaultList(ctx)
 	}
 	return a.bucketList(ctx)
 }
 func (a *ACLHandle) bucketDefaultList(ctx context.Context) ([]ACLRule, error) {
 	var acls *raw.ObjectAccessControls
 	var err error
 	err = runWithRetry(ctx, func() error {
 		req := a.c.raw.DefaultObjectAccessControls.List(a.bucket)
 		a.configureCall(ctx, req)
 		acls, err = req.Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return toObjectACLRules(acls.Items), nil
 }
 func (a *ACLHandle) bucketDefaultDelete(ctx context.Context, entity ACLEntity) error {
 	return runWithRetry(ctx, func() error {
 		req := a.c.raw.DefaultObjectAccessControls.Delete(a.bucket, string(entity))
 		a.configureCall(ctx, req)
 		return req.Do()
 	})
 }
 func (a *ACLHandle) bucketList(ctx context.Context) ([]ACLRule, error) {
 	var acls *raw.BucketAccessControls
 	var err error
 	err = runWithRetry(ctx, func() error {
 		req := a.c.raw.BucketAccessControls.List(a.bucket)
 		a.configureCall(ctx, req)
 		acls, err = req.Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return toBucketACLRules(acls.Items), nil
 }
 func (a *ACLHandle) bucketSet(ctx context.Context, entity ACLEntity, role ACLRole) error {
 	acl := &raw.BucketAccessControl{
 		Bucket: a.bucket,
 		Entity: string(entity),
 		Role:   string(role),
 	}
 	err := runWithRetry(ctx, func() error {
 		req := a.c.raw.BucketAccessControls.Update(a.bucket, string(entity), acl)
 		a.configureCall(ctx, req)
 		_, err := req.Do()
 		return err
 	})
 	if err != nil {
 		return err
 	}
 	return nil
 }
 func (a *ACLHandle) bucketDelete(ctx context.Context, entity ACLEntity) error {
 	return runWithRetry(ctx, func() error {
 		req := a.c.raw.BucketAccessControls.Delete(a.bucket, string(entity))
 		a.configureCall(ctx, req)
 		return req.Do()
 	})
 }
 func (a *ACLHandle) objectList(ctx context.Context) ([]ACLRule, error) {
 	var acls *raw.ObjectAccessControls
 	var err error
 	err = runWithRetry(ctx, func() error {
 		req := a.c.raw.ObjectAccessControls.List(a.bucket, a.object)
 		a.configureCall(ctx, req)
 		acls, err = req.Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return toObjectACLRules(acls.Items), nil
 }
 func (a *ACLHandle) objectSet(ctx context.Context, entity ACLEntity, role ACLRole, isBucketDefault bool) error {
 	type setRequest interface {
 		Do(opts ...googleapi.CallOption) (*raw.ObjectAccessControl, error)
 		Header() http.Header
 	}
 	acl := &raw.ObjectAccessControl{
 		Bucket: a.bucket,
 		Entity: string(entity),
 		Role:   string(role),
 	}
 	var req setRequest
 	if isBucketDefault {
 		req = a.c.raw.DefaultObjectAccessControls.Update(a.bucket, string(entity), acl)
 	} else {
 		req = a.c.raw.ObjectAccessControls.Update(a.bucket, a.object, string(entity), acl)
 	}
 	a.configureCall(ctx, req)
 	return runWithRetry(ctx, func() error {
 		_, err := req.Do()
 		return err
 	})
 }
 func (a *ACLHandle) objectDelete(ctx context.Context, entity ACLEntity) error {
 	return runWithRetry(ctx, func() error {
 		req := a.c.raw.ObjectAccessControls.Delete(a.bucket, a.object, string(entity))
 		a.configureCall(ctx, req)
 		return req.Do()
 	})
 }
 func (a *ACLHandle) configureCall(ctx context.Context, call interface{ Header() http.Header }) {
 	vc := reflect.ValueOf(call)
 	vc.MethodByName("Context").Call([]reflect.Value{reflect.ValueOf(ctx)})
 	if a.userProject != "" {
 		vc.MethodByName("UserProject").Call([]reflect.Value{reflect.ValueOf(a.userProject)})
 	}
 	setClientHeader(call.Header())
 }
 func toObjectACLRules(items []*raw.ObjectAccessControl) []ACLRule {
 	var rs []ACLRule
 	for _, item := range items {
 		rs = append(rs, toObjectACLRule(item))
 	}
 	return rs
 }
 func toBucketACLRules(items []*raw.BucketAccessControl) []ACLRule {
 	var rs []ACLRule
 	for _, item := range items {
 		rs = append(rs, toBucketACLRule(item))
 	}
 	return rs
 }
 func toObjectACLRule(a *raw.ObjectAccessControl) ACLRule {
 	return ACLRule{
 		Entity:      ACLEntity(a.Entity),
 		EntityID:    a.EntityId,
 		Role:        ACLRole(a.Role),
 		Domain:      a.Domain,
 		Email:       a.Email,
 		ProjectTeam: toObjectProjectTeam(a.ProjectTeam),
 	}
 }
 func toBucketACLRule(a *raw.BucketAccessControl) ACLRule {
 	return ACLRule{
 		Entity:      ACLEntity(a.Entity),
 		EntityID:    a.EntityId,
 		Role:        ACLRole(a.Role),
 		Domain:      a.Domain,
 		Email:       a.Email,
 		ProjectTeam: toBucketProjectTeam(a.ProjectTeam),
 	}
 }
 func toRawObjectACL(rules []ACLRule) []*raw.ObjectAccessControl {
 	if len(rules) == 0 {
 		return nil
 	}
 	r := make([]*raw.ObjectAccessControl, 0, len(rules))
 	for _, rule := range rules {
 		r = append(r, rule.toRawObjectAccessControl("")) // bucket name unnecessary
 	}
 	return r
 }
 func toRawBucketACL(rules []ACLRule) []*raw.BucketAccessControl {
 	if len(rules) == 0 {
 		return nil
 	}
 	r := make([]*raw.BucketAccessControl, 0, len(rules))
 	for _, rule := range rules {
 		r = append(r, rule.toRawBucketAccessControl("")) // bucket name unnecessary
 	}
 	return r
 }
 func (r ACLRule) toRawBucketAccessControl(bucket string) *raw.BucketAccessControl {
 	return &raw.BucketAccessControl{
 		Bucket: bucket,
 		Entity: string(r.Entity),
 		Role:   string(r.Role),
 		// The other fields are not settable.
 	}
 }
 func (r ACLRule) toRawObjectAccessControl(bucket string) *raw.ObjectAccessControl {
 	return &raw.ObjectAccessControl{
 		Bucket: bucket,
 		Entity: string(r.Entity),
 		Role:   string(r.Role),
 		// The other fields are not settable.
 	}
 }
 func toBucketProjectTeam(p *raw.BucketAccessControlProjectTeam) *ProjectTeam {
 	if p == nil {
 		return nil
 	}
 	return &ProjectTeam{
 		ProjectNumber: p.ProjectNumber,
 		Team:          p.Team,
 	}
 }
 func toObjectProjectTeam(p *raw.ObjectAccessControlProjectTeam) *ProjectTeam {
 	if p == nil {
 		return nil
 	}
 	return &ProjectTeam{
 		ProjectNumber: p.ProjectNumber,
 		Team:          p.Team,
 	}
 }
--- a/vendor/cloud.google.com/go/storage/bucket.go
+++ b/vendor/cloud.google.com/go/storage/bucket.go
--- a/vendor/cloud.google.com/go/storage/copy.go
+++ b/vendor/cloud.google.com/go/storage/copy.go
@ -0,0 +1,228 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"errors"
 	"fmt"
 	"cloud.google.com/go/internal/trace"
 	raw "google.golang.org/api/storage/v1"
 )
 // CopierFrom creates a Copier that can copy src to dst.
 // You can immediately call Run on the returned Copier, or
 // you can configure it first.
 //
 // For Requester Pays buckets, the user project of dst is billed, unless it is empty,
 // in which case the user project of src is billed.
 func (dst *ObjectHandle) CopierFrom(src *ObjectHandle) *Copier {
 	return &Copier{dst: dst, src: src}
 }
 // A Copier copies a source object to a destination.
 type Copier struct {
 	// ObjectAttrs are optional attributes to set on the destination object.
 	// Any attributes must be initialized before any calls on the Copier. Nil
 	// or zero-valued attributes are ignored.
 	ObjectAttrs
 	// RewriteToken can be set before calling Run to resume a copy
 	// operation. After Run returns a non-nil error, RewriteToken will
 	// have been updated to contain the value needed to resume the copy.
 	RewriteToken string
 	// ProgressFunc can be used to monitor the progress of a multi-RPC copy
 	// operation. If ProgressFunc is not nil and copying requires multiple
 	// calls to the underlying service (see
 	// https://cloud.google.com/storage/docs/json_api/v1/objects/rewrite), then
 	// ProgressFunc will be invoked after each call with the number of bytes of
 	// content copied so far and the total size in bytes of the source object.
 	//
 	// ProgressFunc is intended to make upload progress available to the
 	// application. For example, the implementation of ProgressFunc may update
 	// a progress bar in the application's UI, or log the result of
 	// float64(copiedBytes)/float64(totalBytes).
 	//
 	// ProgressFunc should return quickly without blocking.
 	ProgressFunc func(copiedBytes, totalBytes uint64)
 	// The Cloud KMS key, in the form projects/P/locations/L/keyRings/R/cryptoKeys/K,
 	// that will be used to encrypt the object. Overrides the object's KMSKeyName, if
 	// any.
 	//
 	// Providing both a DestinationKMSKeyName and a customer-supplied encryption key
 	// (via ObjectHandle.Key) on the destination object will result in an error when
 	// Run is called.
 	DestinationKMSKeyName string
 	dst, src *ObjectHandle
 }
 // Run performs the copy.
 func (c *Copier) Run(ctx context.Context) (attrs *ObjectAttrs, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.Copier.Run")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if err := c.src.validate(); err != nil {
 		return nil, err
 	}
 	if err := c.dst.validate(); err != nil {
 		return nil, err
 	}
 	if c.DestinationKMSKeyName != "" && c.dst.encryptionKey != nil {
 		return nil, errors.New("storage: cannot use DestinationKMSKeyName with a customer-supplied encryption key")
 	}
 	// Convert destination attributes to raw form, omitting the bucket.
 	// If the bucket is included but name or content-type aren't, the service
 	// returns a 400 with "Required" as the only message. Omitting the bucket
 	// does not cause any problems.
 	rawObject := c.ObjectAttrs.toRawObject("")
 	for {
 		res, err := c.callRewrite(ctx, rawObject)
 		if err != nil {
 			return nil, err
 		}
 		if c.ProgressFunc != nil {
 			c.ProgressFunc(uint64(res.TotalBytesRewritten), uint64(res.ObjectSize))
 		}
 		if res.Done { // Finished successfully.
 			return newObject(res.Resource), nil
 		}
 	}
 }
 func (c *Copier) callRewrite(ctx context.Context, rawObj *raw.Object) (*raw.RewriteResponse, error) {
 	call := c.dst.c.raw.Objects.Rewrite(c.src.bucket, c.src.object, c.dst.bucket, c.dst.object, rawObj)
 	call.Context(ctx).Projection("full")
 	if c.RewriteToken != "" {
 		call.RewriteToken(c.RewriteToken)
 	}
 	if c.DestinationKMSKeyName != "" {
 		call.DestinationKmsKeyName(c.DestinationKMSKeyName)
 	}
 	if c.PredefinedACL != "" {
 		call.DestinationPredefinedAcl(c.PredefinedACL)
 	}
 	if err := applyConds("Copy destination", c.dst.gen, c.dst.conds, call); err != nil {
 		return nil, err
 	}
 	if c.dst.userProject != "" {
 		call.UserProject(c.dst.userProject)
 	} else if c.src.userProject != "" {
 		call.UserProject(c.src.userProject)
 	}
 	if err := applySourceConds(c.src.gen, c.src.conds, call); err != nil {
 		return nil, err
 	}
 	if err := setEncryptionHeaders(call.Header(), c.dst.encryptionKey, false); err != nil {
 		return nil, err
 	}
 	if err := setEncryptionHeaders(call.Header(), c.src.encryptionKey, true); err != nil {
 		return nil, err
 	}
 	var res *raw.RewriteResponse
 	var err error
 	setClientHeader(call.Header())
 	err = runWithRetry(ctx, func() error { res, err = call.Do(); return err })
 	if err != nil {
 		return nil, err
 	}
 	c.RewriteToken = res.RewriteToken
 	return res, nil
 }
 // ComposerFrom creates a Composer that can compose srcs into dst.
 // You can immediately call Run on the returned Composer, or you can
 // configure it first.
 //
 // The encryption key for the destination object will be used to decrypt all
 // source objects and encrypt the destination object. It is an error
 // to specify an encryption key for any of the source objects.
 func (dst *ObjectHandle) ComposerFrom(srcs ...*ObjectHandle) *Composer {
 	return &Composer{dst: dst, srcs: srcs}
 }
 // A Composer composes source objects into a destination object.
 //
 // For Requester Pays buckets, the user project of dst is billed.
 type Composer struct {
 	// ObjectAttrs are optional attributes to set on the destination object.
 	// Any attributes must be initialized before any calls on the Composer. Nil
 	// or zero-valued attributes are ignored.
 	ObjectAttrs
 	dst  *ObjectHandle
 	srcs []*ObjectHandle
 }
 // Run performs the compose operation.
 func (c *Composer) Run(ctx context.Context) (attrs *ObjectAttrs, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.Composer.Run")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if err := c.dst.validate(); err != nil {
 		return nil, err
 	}
 	if len(c.srcs) == 0 {
 		return nil, errors.New("storage: at least one source object must be specified")
 	}
 	req := &raw.ComposeRequest{}
 	// Compose requires a non-empty Destination, so we always set it,
 	// even if the caller-provided ObjectAttrs is the zero value.
 	req.Destination = c.ObjectAttrs.toRawObject(c.dst.bucket)
 	for _, src := range c.srcs {
 		if err := src.validate(); err != nil {
 			return nil, err
 		}
 		if src.bucket != c.dst.bucket {
 			return nil, fmt.Errorf("storage: all source objects must be in bucket %q, found %q", c.dst.bucket, src.bucket)
 		}
 		if src.encryptionKey != nil {
 			return nil, fmt.Errorf("storage: compose source %s.%s must not have encryption key", src.bucket, src.object)
 		}
 		srcObj := &raw.ComposeRequestSourceObjects{
 			Name: src.object,
 		}
 		if err := applyConds("ComposeFrom source", src.gen, src.conds, composeSourceObj{srcObj}); err != nil {
 			return nil, err
 		}
 		req.SourceObjects = append(req.SourceObjects, srcObj)
 	}
 	call := c.dst.c.raw.Objects.Compose(c.dst.bucket, c.dst.object, req).Context(ctx)
 	if err := applyConds("ComposeFrom destination", c.dst.gen, c.dst.conds, call); err != nil {
 		return nil, err
 	}
 	if c.dst.userProject != "" {
 		call.UserProject(c.dst.userProject)
 	}
 	if c.PredefinedACL != "" {
 		call.DestinationPredefinedAcl(c.PredefinedACL)
 	}
 	if err := setEncryptionHeaders(call.Header(), c.dst.encryptionKey, false); err != nil {
 		return nil, err
 	}
 	var obj *raw.Object
 	setClientHeader(call.Header())
 	err = runWithRetry(ctx, func() error { obj, err = call.Do(); return err })
 	if err != nil {
 		return nil, err
 	}
 	return newObject(obj), nil
 }
--- a/vendor/cloud.google.com/go/storage/doc.go
+++ b/vendor/cloud.google.com/go/storage/doc.go
@ -0,0 +1,176 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 /*
 Package storage provides an easy way to work with Google Cloud Storage.
 Google Cloud Storage stores data in named objects, which are grouped into buckets.
 More information about Google Cloud Storage is available at
 https://cloud.google.com/storage/docs.
 See https://godoc.org/cloud.google.com/go for authentication, timeouts,
 connection pooling and similar aspects of this package.
 All of the methods of this package use exponential backoff to retry calls that fail
 with certain errors, as described in
 https://cloud.google.com/storage/docs/exponential-backoff. Retrying continues
 indefinitely unless the controlling context is canceled or the client is closed. See
 context.WithTimeout and context.WithCancel.
 Creating a Client
 To start working with this package, create a client:
    ctx := context.Background()
    client, err := storage.NewClient(ctx)
    if err != nil {
        // TODO: Handle error.
    }
 The client will use your default application credentials.
 If you only wish to access public data, you can create
 an unauthenticated client with
    client, err := storage.NewClient(ctx, option.WithoutAuthentication())
 Buckets
 A Google Cloud Storage bucket is a collection of objects. To work with a
 bucket, make a bucket handle:
    bkt := client.Bucket(bucketName)
 A handle is a reference to a bucket. You can have a handle even if the
 bucket doesn't exist yet. To create a bucket in Google Cloud Storage,
 call Create on the handle:
    if err := bkt.Create(ctx, projectID, nil); err != nil {
        // TODO: Handle error.
    }
 Note that although buckets are associated with projects, bucket names are
 global across all projects.
 Each bucket has associated metadata, represented in this package by
 BucketAttrs. The third argument to BucketHandle.Create allows you to set
 the initial BucketAttrs of a bucket. To retrieve a bucket's attributes, use
 Attrs:
    attrs, err := bkt.Attrs(ctx)
    if err != nil {
        // TODO: Handle error.
    }
    fmt.Printf("bucket %s, created at %s, is located in %s with storage class %s\n",
        attrs.Name, attrs.Created, attrs.Location, attrs.StorageClass)
 Objects
 An object holds arbitrary data as a sequence of bytes, like a file. You
 refer to objects using a handle, just as with buckets, but unlike buckets
 you don't explicitly create an object. Instead, the first time you write
 to an object it will be created. You can use the standard Go io.Reader
 and io.Writer interfaces to read and write object data:
    obj := bkt.Object("data")
    // Write something to obj.
    // w implements io.Writer.
    w := obj.NewWriter(ctx)
    // Write some text to obj. This will either create the object or overwrite whatever is there already.
    if _, err := fmt.Fprintf(w, "This object contains text.\n"); err != nil {
        // TODO: Handle error.
    }
    // Close, just like writing a file.
    if err := w.Close(); err != nil {
        // TODO: Handle error.
    }
    // Read it back.
    r, err := obj.NewReader(ctx)
    if err != nil {
        // TODO: Handle error.
    }
    defer r.Close()
    if _, err := io.Copy(os.Stdout, r); err != nil {
        // TODO: Handle error.
    }
    // Prints "This object contains text."
 Objects also have attributes, which you can fetch with Attrs:
    objAttrs, err := obj.Attrs(ctx)
    if err != nil {
        // TODO: Handle error.
    }
    fmt.Printf("object %s has size %d and can be read using %s\n",
        objAttrs.Name, objAttrs.Size, objAttrs.MediaLink)
 ACLs
 Both objects and buckets have ACLs (Access Control Lists). An ACL is a list of
 ACLRules, each of which specifies the role of a user, group or project. ACLs
 are suitable for fine-grained control, but you may prefer using IAM to control
 access at the project level (see
 https://cloud.google.com/storage/docs/access-control/iam).
 To list the ACLs of a bucket or object, obtain an ACLHandle and call its List method:
    acls, err := obj.ACL().List(ctx)
    if err != nil {
        // TODO: Handle error.
    }
    for _, rule := range acls {
        fmt.Printf("%s has role %s\n", rule.Entity, rule.Role)
    }
 You can also set and delete ACLs.
 Conditions
 Every object has a generation and a metageneration. The generation changes
 whenever the content changes, and the metageneration changes whenever the
 metadata changes. Conditions let you check these values before an operation;
 the operation only executes if the conditions match. You can use conditions to
 prevent race conditions in read-modify-write operations.
 For example, say you've read an object's metadata into objAttrs. Now
 you want to write to that object, but only if its contents haven't changed
 since you read it. Here is how to express that:
    w = obj.If(storage.Conditions{GenerationMatch: objAttrs.Generation}).NewWriter(ctx)
    // Proceed with writing as above.
 Signed URLs
 You can obtain a URL that lets anyone read or write an object for a limited time.
 You don't need to create a client to do this. See the documentation of
 SignedURL for details.
    url, err := storage.SignedURL(bucketName, "shared-object", opts)
    if err != nil {
        // TODO: Handle error.
    }
    fmt.Println(url)
 Errors
 Errors returned by this client are often of the type [`googleapi.Error`](https://godoc.org/google.golang.org/api/googleapi#Error).
 These errors can be introspected for more information by type asserting to the richer `googleapi.Error` type. For example:
 	if e, ok := err.(*googleapi.Error); ok {
 		  if e.Code == 409 { ... }
 	}
 */
 package storage // import "cloud.google.com/go/storage"
--- a/vendor/cloud.google.com/go/storage/go.mod
+++ b/vendor/cloud.google.com/go/storage/go.mod
@ -0,0 +1,17 @@
 module cloud.google.com/go/storage
 go 1.11
 require (
 	cloud.google.com/go v0.46.3
 	github.com/golang/protobuf v1.3.2
 	github.com/google/go-cmp v0.3.0
 	github.com/googleapis/gax-go/v2 v2.0.5
 	golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136 // indirect
 	golang.org/x/lint v0.0.0-20190930215403-16217165b5de // indirect
 	golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45
 	golang.org/x/tools v0.0.0-20191105231337-689d0f08e67a // indirect
 	google.golang.org/api v0.13.0
 	google.golang.org/genproto v0.0.0-20191028173616-919d9bdd9fe6
 	google.golang.org/grpc v1.21.1
 )
--- a/vendor/cloud.google.com/go/storage/go.sum
+++ b/vendor/cloud.google.com/go/storage/go.sum
@ -0,0 +1,169 @@
 cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.34.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw=
 cloud.google.com/go v0.38.0/go.mod h1:990N+gfupTy94rShfmMCWGDn0LpTmnzTp2qbd1dvSRU=
 cloud.google.com/go v0.44.1/go.mod h1:iSa0KzasP4Uvy3f1mN/7PiObzGgflwredwwASm/v6AU=
 cloud.google.com/go v0.44.2/go.mod h1:60680Gw3Yr4ikxnPRS/oxxkBccT6SA1yMk63TGekxKY=
 cloud.google.com/go v0.45.1/go.mod h1:RpBamKRgapWJb87xiFSdk4g1CME7QZg3uwTez+TSTjc=
 cloud.google.com/go v0.46.3 h1:AVXDdKsrtX33oR9fbCMu/+c1o8Ofjq6Ku/MInaLVg5Y=
 cloud.google.com/go v0.46.3/go.mod h1:a6bKKbmY7er1mI7TEI4lsAkts/mkhTSZK8w33B4RAg0=
 cloud.google.com/go/bigquery v1.0.1 h1:hL+ycaJpVE9M7nLoiXb/Pn10ENE2u+oddxbD8uu0ZVU=
 cloud.google.com/go/bigquery v1.0.1/go.mod h1:i/xbL2UlR5RvWAURpBYZTtm/cXjCha9lbfbpx4poX+o=
 cloud.google.com/go/datastore v1.0.0 h1:Kt+gOPPp2LEPWp8CSfxhsM8ik9CcyE/gYu+0r+RnZvM=
 cloud.google.com/go/datastore v1.0.0/go.mod h1:LXYbyblFSglQ5pkeyhO+Qmw7ukd3C+pD7TKLgZqpHYE=
 cloud.google.com/go/pubsub v1.0.1 h1:W9tAK3E57P75u0XLLR82LZyw8VpAnhmyTOxW9qzmyj8=
 cloud.google.com/go/pubsub v1.0.1/go.mod h1:R0Gpsv3s54REJCy4fxDixWD93lHJMoZTyQ2kNxGRt3I=
 dmitri.shuralyov.com/gpu/mtl v0.0.0-20190408044501-666a987793e9/go.mod h1:H6x//7gZCb22OMCxBHrMx7a5I7Hp++hsVxbQ4BYO7hU=
 github.com/BurntSushi/toml v0.3.1 h1:WXkYYl6Yr3qBf1K79EBnL4mak0OimBfB0XUf9Vl28OQ=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
 github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw=
 github.com/go-gl/glfw v0.0.0-20190409004039-e6da0acd62b1/go.mod h1:vR7hzQXu2zJy9AVAgeJqvqgH9Q5CA+iKCZ2gyEVpxRU=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b h1:VKtxabqXZkF25pY9ekfRL6a582T4P37/31XEstQ5p58=
 github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q=
 github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.2.0/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A=
 github.com/golang/mock v1.3.1/go.mod h1:sBzyDLLjw3U8JLTeZvSv8jJB+tU5PVekmnlKIyFUx0Y=
 github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.1/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/golang/protobuf v1.3.2 h1:6nsPYzhq5kReh6QImI3k5qWzO4PEbvbIW2cwSfR/6xs=
 github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U=
 github.com/google/btree v0.0.0-20180813153112-4030bb1f1f0c/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/btree v1.0.0/go.mod h1:lNA+9X1NB3Zf8V7Ke586lFgjr2dZNuvo3lPJSGZ5JPQ=
 github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M=
 github.com/google/go-cmp v0.3.0 h1:crn/baboCvb5fXaQ0IJ1SGTsTVrWpDsCWC8EGETZijY=
 github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU=
 github.com/google/martian v2.1.0+incompatible h1:/CP5g8u/VJHijgedC/Legn3BAbAaWPgecwXBIDzw5no=
 github.com/google/martian v2.1.0+incompatible/go.mod h1:9I4somxYTbIHy5NJKHRl3wXiIaQGbYVAs8BPL6v8lEs=
 github.com/google/pprof v0.0.0-20181206194817-3ea8567a2e57/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/pprof v0.0.0-20190515194954-54271f7e092f/go.mod h1:zfwlbNMJ+OItoe0UupaVj+oy1omPYYDuagoSzA8v9mc=
 github.com/google/renameio v0.1.0/go.mod h1:KWCgfxg9yswjAJkECMjeO8J8rahYeXnNhOm40UhjYkI=
 github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+vpHVxEJEs9eg=
 github.com/googleapis/gax-go/v2 v2.0.5 h1:sjZBwGj9Jlw33ImPtvFviGYvseOtDM7hkSKB7+Tv3SM=
 github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
 github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/hashicorp/golang-lru v0.5.1 h1:0hERBMJE1eitiLkihrMvRVBYAkpHzc/J3QdDN+dAcgU=
 github.com/hashicorp/golang-lru v0.5.1/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024 h1:rBMNdlhTLzJjJSDIjNEXX1Pz3Hmwmz91v+zycvx9PJc=
 github.com/jstemmer/go-junit-report v0.0.0-20190106144839-af01ea7f8024/go.mod h1:6v2b51hI/fHJwM22ozAgKL4VKDeJcHhJFhtBdhmNjmU=
 github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck=
 github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo=
 github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ=
 github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI=
 github.com/rogpeppe/go-internal v1.3.0/go.mod h1:M8bDsm7K2OlrFYOpmOWEs/qY81heoFRclV5y23lUDJ4=
 go.opencensus.io v0.21.0/go.mod h1:mSImk1erAIZhrmZN+AvHh14ztQfjbGwt4TtuofqLduU=
 go.opencensus.io v0.22.0 h1:C9hSCOW830chIVkdja34wa6Ky+IzWllkUinR+BtRZd4=
 go.opencensus.io v0.22.0/go.mod h1:+kGneAE2xo2IficOXnaByMWTGM9T73dGwxeWcUqIpI8=
 golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w=
 golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
 golang.org/x/exp v0.0.0-20190829153037-c13cbed26979 h1:Agxu5KLo8o7Bb634SVDnhIfpTvxmzUwhbYAzBvXt6h4=
 golang.org/x/exp v0.0.0-20190829153037-c13cbed26979/go.mod h1:86+5VVa7VpoJ4kLfm080zCjGlMRFzhUhsZKEZO7MGek=
 golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136 h1:A1gGSx58LAGVHUUsOf7IiR0u8Xb6W51gRwfDBhkdcaw=
 golang.org/x/exp v0.0.0-20191030013958-a1ab85dbe136/go.mod h1:JXzH8nQsPlswgeRAPE3MuO9GYsAcnJvJ4vnMwN/5qkY=
 golang.org/x/image v0.0.0-20190227222117-0694c2d4d067/go.mod h1:kZ7UVZpmo3dzQBMxlp+ypCbDeSB+sBbTgSJuh5dn5js=
 golang.org/x/image v0.0.0-20190802002840-cff245a6509b/go.mod h1:FeLwcggjj3mMvU+oOTbSwawSJRM1uh48EjtB4UJZlP0=
 golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU=
 golang.org/x/lint v0.0.0-20190301231843-5614ed5bae6f/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE=
 golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190409202823-959b441ac422/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac h1:8R1esu+8QioDxo4E4mX6bFztO+dMTM49DNAaWfO5OeY=
 golang.org/x/lint v0.0.0-20190909230951-414d861bb4ac/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/lint v0.0.0-20190930215403-16217165b5de h1:5hukYrvBGR8/eNkX5mdUezrA6JiaEZDtJb9Ei+1LlBs=
 golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc=
 golang.org/x/mobile v0.0.0-20190312151609-d3739f865fa6/go.mod h1:z+o9i4GpDbdi3rU15maQ/Ox0txvL9dWGYEHz965HBQE=
 golang.org/x/mobile v0.0.0-20190719004257-d2bd2a29d028/go.mod h1:E/iHnbuqvinMTCcRqshq8CkpyQDoeVncDDYHnLhea+o=
 golang.org/x/mod v0.0.0-20190513183733-4bf6d317e70e/go.mod h1:mXi4GBBbnImb6dmsKGUJ2LatrhH/nqhxcFungHvyanc=
 golang.org/x/mod v0.1.0/go.mod h1:0QHyrYULN0/3qlju5TqG8bIK38QM8yzMo5ekMj3DlcY=
 golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190108225652-1e06a53dbb7e/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4=
 golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190501004415-9ce7a6920f09/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190503192946-f4e77d36d62c/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg=
 golang.org/x/net v0.0.0-20190603091049-60506f45cf65/go.mod h1:HSz+uSET+XFnRR8LxR5pz3Of3rY3CfYBVs4xY44aLks=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859 h1:R/3boaszxrf1GEUWTVDzSKVwLmSJpwZ1yqXm8j0v2QI=
 golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s=
 golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
 golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45 h1:SVwTIAaPC2U/AvvLNZ2a7OVsmBpC8L5BlwK1whH3hm0=
 golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
 golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20181221193216-37e7f081c4d4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190227155943-e225da77a7e6/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58 h1:8gQV6CLnAEikrhgkHFbMAEhagSSnXWGV915qUMm9mrU=
 golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
 golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
 golang.org/x/sys v0.0.0-20190312061237-fead79001313/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190502145724-3ef323f4f1fd/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190507160741-ecd444e8653b/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0 h1:HyfiK1WMnHj5FXFXatD+Qs1A/xC2Run6RzeW1SyHxpc=
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 golang.org/x/text v0.3.2 h1:tW2bmiBqwgJj/UpqtC8EpXEZVYOwU0yG4iWbprSVAcs=
 golang.org/x/text v0.3.2/go.mod h1:bEr9sfX3Q8Zfm5fL9x+3itogRgK3+ptLWKqgva+5dAk=
 golang.org/x/time v0.0.0-20181108054448-85acf8d2951c/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/time v0.0.0-20190308202827-9d24e82272b4/go.mod h1:tRJNPiyCQ0inRvYxbN9jk5I+vvW/OXSQhTDSoE431IQ=
 golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
 golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY=
 golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312151545-0bb0c0a6e846/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190312170243-e65039ee4138/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs=
 golang.org/x/tools v0.0.0-20190425150028-36563e24a262/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190506145303-2d16b83fe98c/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q=
 golang.org/x/tools v0.0.0-20190606124116-d0a3d012864b/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190621195816-6e04913cbbac/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190628153133-6cdbf07be9d0/go.mod h1:/rFqwRUd4F7ZHNgwSSTFct+R/Kf4OFW1sUzUTQQTgfc=
 golang.org/x/tools v0.0.0-20190816200558-6889da9d5479/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff h1:On1qIo75ByTwFJ4/W2bIqHcwJ9XAqtSWUs8GwRrIhtc=
 golang.org/x/tools v0.0.0-20190911174233-4f2ddba30aff/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191012152004-8de300cfc20a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/tools v0.0.0-20191105231337-689d0f08e67a h1:RzzIfXstYPS78k0QViPGpDcTlV+QuYrbxVmsxDHdxTs=
 golang.org/x/tools v0.0.0-20191105231337-689d0f08e67a/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo=
 golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0=
 google.golang.org/api v0.4.0/go.mod h1:8k5glujaEP+g9n7WNsDg8QP6cUVNI86fCNMcbazEtwE=
 google.golang.org/api v0.7.0/go.mod h1:WtwebWUNSVBH/HAw79HIFXZNqEvBhG+Ra+ax0hx3E3M=
 google.golang.org/api v0.8.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
 google.golang.org/api v0.9.0 h1:jbyannxz0XFD3zdjgrSUsaJbgpH4eTrkdhRChkHPfO8=
 google.golang.org/api v0.9.0/go.mod h1:o4eAsZoiT+ibD93RtjEohWalFOjRDx6CVaqeizhEnKg=
 google.golang.org/api v0.13.0 h1:Q3Ui3V3/CVinFWFiW39Iw0kMuVrRzYX0wN6OPFp0lTA=
 google.golang.org/api v0.13.0/go.mod h1:iLdEw5Ide6rF15KTC1Kkl0iskquN2gFfn9o9XIsbkAI=
 google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM=
 google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.5.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4=
 google.golang.org/appengine v1.6.1 h1:QzqyMA1tlu6CgqCDUtU9V+ZKhLFT2dkJuANu5QaxI3I=
 google.golang.org/appengine v1.6.1/go.mod h1:i06prIuMbXzDqacNJfV5OdTW448YApPu5ww/cMBSeb0=
 google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc=
 google.golang.org/genproto v0.0.0-20190307195333-5fe7a883aa19/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190418145605-e7d98fc518a7/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190425155659-357c62f0e4bb/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190502173448-54afdca5d873/go.mod h1:VzzqZJRnGkLBvHegQrXjBqPurQTc5/KpmUdxsrq26oE=
 google.golang.org/genproto v0.0.0-20190801165951-fa694d86fc64/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc=
 google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51 h1:Ex1mq5jaJof+kRnYi3SlYJ8KKa9Ao3NHyIT5XJ1gF6U=
 google.golang.org/genproto v0.0.0-20190911173649-1774047e7e51/go.mod h1:IbNlFCBrqXvoKpeg0TB2l7cyZUmoaFKYIwrEpbDKLA8=
 google.golang.org/genproto v0.0.0-20191028173616-919d9bdd9fe6 h1:UXl+Zk3jqqcbEVV7ace5lrt4YdA4tXiz3f/KbmD29Vo=
 google.golang.org/genproto v0.0.0-20191028173616-919d9bdd9fe6/go.mod h1:n3cpQtvxv34hfy77yVDNjmbRyujviMdxYliBSkLhpCc=
 google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c=
 google.golang.org/grpc v1.20.1/go.mod h1:10oTOabMzJvdu6/UiuZezV6QK5dSlG84ov/aaiqXj38=
 google.golang.org/grpc v1.21.1 h1:j6XxA85m/6txkUCHvzlV5f+HBNl/1r5cZ2A/3IEFOO8=
 google.golang.org/grpc v1.21.1/go.mod h1:oYelfM1adQP15Ek0mdvEgi9Df8B9CZIaU1084ijfRaM=
 gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0=
 gopkg.in/errgo.v2 v2.1.0/go.mod h1:hNsd1EY+bozCKY1Ytp96fpM3vjJbqLJn88ws8XvfDNI=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190106161140-3f1c8253044a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.0-20190418001031-e561f6794a2a/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=
 honnef.co/go/tools v0.0.1-2019.2.3 h1:3JgtbtFHMiCmsznwGVTUWbgGov+pVqnlf1dEJTNAXeM=
 honnef.co/go/tools v0.0.1-2019.2.3/go.mod h1:a3bituU0lyd329TUQxRnasdCoJDkEUEAqEt0JzvZhAg=
 rsc.io/binaryregexp v0.2.0/go.mod h1:qTv7/COck+e2FymRvadv62gMdZztPaShugOCi3I+8D8=
--- a/vendor/cloud.google.com/go/storage/go110.go
+++ b/vendor/cloud.google.com/go/storage/go110.go
@ -0,0 +1,32 @@
 // Copyright 2017 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // +build go1.10
 package storage
 import "google.golang.org/api/googleapi"
 func shouldRetry(err error) bool {
 	switch e := err.(type) {
 	case *googleapi.Error:
 		// Retry on 429 and 5xx, according to
 		// https://cloud.google.com/storage/docs/exponential-backoff.
 		return e.Code == 429 || (e.Code >= 500 && e.Code < 600)
 	case interface{ Temporary() bool }:
 		return e.Temporary()
 	default:
 		return false
 	}
 }
--- a/vendor/cloud.google.com/go/storage/go_mod_tidy_hack.go
+++ b/vendor/cloud.google.com/go/storage/go_mod_tidy_hack.go
@ -0,0 +1,22 @@
 // Copyright 2019 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // This file, and the cloud.google.com/go import, won't actually become part of
 // the resultant binary.
 // +build modhack
 package storage
 // Necessary for safely adding multi-module repo. See: https://github.com/golang/go/wiki/Modules#is-it-possible-to-add-a-module-to-a-multi-module-repository
 import _ "cloud.google.com/go"
--- a/vendor/cloud.google.com/go/storage/hmac.go
+++ b/vendor/cloud.google.com/go/storage/hmac.go
@ -0,0 +1,441 @@
 // Copyright 2019 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"errors"
 	"fmt"
 	"time"
 	"google.golang.org/api/iterator"
 	raw "google.golang.org/api/storage/v1"
 )
 // HMACState is the state of the HMAC key.
 //
 // This type is EXPERIMENTAL and subject to change or removal without notice.
 type HMACState string
 const (
 	// Active is the status for an active key that can be used to sign
 	// requests.
 	Active HMACState = "ACTIVE"
 	// Inactive is the status for an inactive key thus requests signed by
 	// this key will be denied.
 	Inactive HMACState = "INACTIVE"
 	// Deleted is the status for a key that is deleted.
 	// Once in this state the key cannot key cannot be recovered
 	// and does not count towards key limits. Deleted keys will be cleaned
 	// up later.
 	Deleted HMACState = "DELETED"
 )
 // HMACKey is the representation of a Google Cloud Storage HMAC key.
 //
 // HMAC keys are used to authenticate signed access to objects. To enable HMAC key
 // authentication, please visit https://cloud.google.com/storage/docs/migrating.
 //
 // This type is EXPERIMENTAL and subject to change or removal without notice.
 type HMACKey struct {
 	// The HMAC's secret key.
 	Secret string
 	// AccessID is the ID of the HMAC key.
 	AccessID string
 	// Etag is the HTTP/1.1 Entity tag.
 	Etag string
 	// ID is the ID of the HMAC key, including the ProjectID and AccessID.
 	ID string
 	// ProjectID is the ID of the project that owns the
 	// service account to which the key authenticates.
 	ProjectID string
 	// ServiceAccountEmail is the email address
 	// of the key's associated service account.
 	ServiceAccountEmail string
 	// CreatedTime is the creation time of the HMAC key.
 	CreatedTime time.Time
 	// UpdatedTime is the last modification time of the HMAC key metadata.
 	UpdatedTime time.Time
 	// State is the state of the HMAC key.
 	// It can be one of StateActive, StateInactive or StateDeleted.
 	State HMACState
 }
 // HMACKeyHandle helps provide access and management for HMAC keys.
 //
 // This type is EXPERIMENTAL and subject to change or removal without notice.
 type HMACKeyHandle struct {
 	projectID string
 	accessID  string
 	raw *raw.ProjectsHmacKeysService
 }
 // HMACKeyHandle creates a handle that will be used for HMACKey operations.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (c *Client) HMACKeyHandle(projectID, accessID string) *HMACKeyHandle {
 	return &HMACKeyHandle{
 		projectID: projectID,
 		accessID:  accessID,
 		raw:       raw.NewProjectsHmacKeysService(c.raw),
 	}
 }
 // Get invokes an RPC to retrieve the HMAC key referenced by the
 // HMACKeyHandle's accessID.
 //
 // Options such as UserProjectForHMACKeys can be used to set the
 // userProject to be billed against for operations.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (hkh *HMACKeyHandle) Get(ctx context.Context, opts ...HMACKeyOption) (*HMACKey, error) {
 	call := hkh.raw.Get(hkh.projectID, hkh.accessID)
 	desc := new(hmacKeyDesc)
 	for _, opt := range opts {
 		opt.withHMACKeyDesc(desc)
 	}
 	if desc.userProjectID != "" {
 		call = call.UserProject(desc.userProjectID)
 	}
 	setClientHeader(call.Header())
 	var metadata *raw.HmacKeyMetadata
 	var err error
 	err = runWithRetry(ctx, func() error {
 		metadata, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	hkPb := &raw.HmacKey{
 		Metadata: metadata,
 	}
 	return pbHmacKeyToHMACKey(hkPb, false)
 }
 // Delete invokes an RPC to delete the key referenced by accessID, on Google Cloud Storage.
 // Only inactive HMAC keys can be deleted.
 // After deletion, a key cannot be used to authenticate requests.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (hkh *HMACKeyHandle) Delete(ctx context.Context, opts ...HMACKeyOption) error {
 	delCall := hkh.raw.Delete(hkh.projectID, hkh.accessID)
 	desc := new(hmacKeyDesc)
 	for _, opt := range opts {
 		opt.withHMACKeyDesc(desc)
 	}
 	if desc.userProjectID != "" {
 		delCall = delCall.UserProject(desc.userProjectID)
 	}
 	setClientHeader(delCall.Header())
 	return runWithRetry(ctx, func() error {
 		return delCall.Context(ctx).Do()
 	})
 }
 func pbHmacKeyToHMACKey(pb *raw.HmacKey, updatedTimeCanBeNil bool) (*HMACKey, error) {
 	pbmd := pb.Metadata
 	if pbmd == nil {
 		return nil, errors.New("field Metadata cannot be nil")
 	}
 	createdTime, err := time.Parse(time.RFC3339, pbmd.TimeCreated)
 	if err != nil {
 		return nil, fmt.Errorf("field CreatedTime: %v", err)
 	}
 	updatedTime, err := time.Parse(time.RFC3339, pbmd.Updated)
 	if err != nil && !updatedTimeCanBeNil {
 		return nil, fmt.Errorf("field UpdatedTime: %v", err)
 	}
 	hmk := &HMACKey{
 		AccessID:    pbmd.AccessId,
 		Secret:      pb.Secret,
 		Etag:        pbmd.Etag,
 		ID:          pbmd.Id,
 		State:       HMACState(pbmd.State),
 		ProjectID:   pbmd.ProjectId,
 		CreatedTime: createdTime,
 		UpdatedTime: updatedTime,
 		ServiceAccountEmail: pbmd.ServiceAccountEmail,
 	}
 	return hmk, nil
 }
 // CreateHMACKey invokes an RPC for Google Cloud Storage to create a new HMACKey.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (c *Client) CreateHMACKey(ctx context.Context, projectID, serviceAccountEmail string, opts ...HMACKeyOption) (*HMACKey, error) {
 	if projectID == "" {
 		return nil, errors.New("storage: expecting a non-blank projectID")
 	}
 	if serviceAccountEmail == "" {
 		return nil, errors.New("storage: expecting a non-blank service account email")
 	}
 	svc := raw.NewProjectsHmacKeysService(c.raw)
 	call := svc.Create(projectID, serviceAccountEmail)
 	desc := new(hmacKeyDesc)
 	for _, opt := range opts {
 		opt.withHMACKeyDesc(desc)
 	}
 	if desc.userProjectID != "" {
 		call = call.UserProject(desc.userProjectID)
 	}
 	setClientHeader(call.Header())
 	var hkPb *raw.HmacKey
 	var err error
 	err = runWithRetry(ctx, func() error {
 		hkPb, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return pbHmacKeyToHMACKey(hkPb, true)
 }
 // HMACKeyAttrsToUpdate defines the attributes of an HMACKey that will be updated.
 //
 // This type is EXPERIMENTAL and subject to change or removal without notice.
 type HMACKeyAttrsToUpdate struct {
 	// State is required and must be either StateActive or StateInactive.
 	State HMACState
 	// Etag is an optional field and it is the HTTP/1.1 Entity tag.
 	Etag string
 }
 // Update mutates the HMACKey referred to by accessID.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (h *HMACKeyHandle) Update(ctx context.Context, au HMACKeyAttrsToUpdate, opts ...HMACKeyOption) (*HMACKey, error) {
 	if au.State != Active && au.State != Inactive {
 		return nil, fmt.Errorf("storage: invalid state %q for update, must be either %q or %q", au.State, Active, Inactive)
 	}
 	call := h.raw.Update(h.projectID, h.accessID, &raw.HmacKeyMetadata{
 		Etag:  au.Etag,
 		State: string(au.State),
 	})
 	desc := new(hmacKeyDesc)
 	for _, opt := range opts {
 		opt.withHMACKeyDesc(desc)
 	}
 	if desc.userProjectID != "" {
 		call = call.UserProject(desc.userProjectID)
 	}
 	setClientHeader(call.Header())
 	var metadata *raw.HmacKeyMetadata
 	var err error
 	err = runWithRetry(ctx, func() error {
 		metadata, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	hkPb := &raw.HmacKey{
 		Metadata: metadata,
 	}
 	return pbHmacKeyToHMACKey(hkPb, false)
 }
 // An HMACKeysIterator is an iterator over HMACKeys.
 //
 // Note: This iterator is not safe for concurrent operations without explicit synchronization.
 //
 // This type is EXPERIMENTAL and subject to change or removal without notice.
 type HMACKeysIterator struct {
 	ctx       context.Context
 	raw       *raw.ProjectsHmacKeysService
 	projectID string
 	hmacKeys  []*HMACKey
 	pageInfo  *iterator.PageInfo
 	nextFunc  func() error
 	index     int
 	desc      hmacKeyDesc
 }
 // ListHMACKeys returns an iterator for listing HMACKeys.
 //
 // Note: This iterator is not safe for concurrent operations without explicit synchronization.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (c *Client) ListHMACKeys(ctx context.Context, projectID string, opts ...HMACKeyOption) *HMACKeysIterator {
 	it := &HMACKeysIterator{
 		ctx:       ctx,
 		raw:       raw.NewProjectsHmacKeysService(c.raw),
 		projectID: projectID,
 	}
 	for _, opt := range opts {
 		opt.withHMACKeyDesc(&it.desc)
 	}
 	it.pageInfo, it.nextFunc = iterator.NewPageInfo(
 		it.fetch,
 		func() int { return len(it.hmacKeys) - it.index },
 		func() interface{} {
 			prev := it.hmacKeys
 			it.hmacKeys = it.hmacKeys[:0]
 			it.index = 0
 			return prev
 		})
 	return it
 }
 // Next returns the next result. Its second return value is iterator.Done if
 // there are no more results. Once Next returns iterator.Done, all subsequent
 // calls will return iterator.Done.
 //
 // Note: This iterator is not safe for concurrent operations without explicit synchronization.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (it *HMACKeysIterator) Next() (*HMACKey, error) {
 	if err := it.nextFunc(); err != nil {
 		return nil, err
 	}
 	key := it.hmacKeys[it.index]
 	it.index++
 	return key, nil
 }
 // PageInfo supports pagination. See the google.golang.org/api/iterator package for details.
 //
 // Note: This iterator is not safe for concurrent operations without explicit synchronization.
 //
 // This method is EXPERIMENTAL and subject to change or removal without notice.
 func (it *HMACKeysIterator) PageInfo() *iterator.PageInfo { return it.pageInfo }
 func (it *HMACKeysIterator) fetch(pageSize int, pageToken string) (token string, err error) {
 	call := it.raw.List(it.projectID)
 	setClientHeader(call.Header())
 	if pageToken != "" {
 		call = call.PageToken(pageToken)
 	}
 	if it.desc.showDeletedKeys {
 		call = call.ShowDeletedKeys(true)
 	}
 	if it.desc.userProjectID != "" {
 		call = call.UserProject(it.desc.userProjectID)
 	}
 	if it.desc.forServiceAccountEmail != "" {
 		call = call.ServiceAccountEmail(it.desc.forServiceAccountEmail)
 	}
 	if pageSize > 0 {
 		call = call.MaxResults(int64(pageSize))
 	}
 	ctx := it.ctx
 	var resp *raw.HmacKeysMetadata
 	err = runWithRetry(it.ctx, func() error {
 		resp, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return "", err
 	}
 	for _, metadata := range resp.Items {
 		hkPb := &raw.HmacKey{
 			Metadata: metadata,
 		}
 		hkey, err := pbHmacKeyToHMACKey(hkPb, true)
 		if err != nil {
 			return "", err
 		}
 		it.hmacKeys = append(it.hmacKeys, hkey)
 	}
 	return resp.NextPageToken, nil
 }
 type hmacKeyDesc struct {
 	forServiceAccountEmail string
 	showDeletedKeys        bool
 	userProjectID          string
 }
 // HMACKeyOption configures the behavior of HMACKey related methods and actions.
 //
 // This interface is EXPERIMENTAL and subject to change or removal without notice.
 type HMACKeyOption interface {
 	withHMACKeyDesc(*hmacKeyDesc)
 }
 type hmacKeyDescFunc func(*hmacKeyDesc)
 func (hkdf hmacKeyDescFunc) withHMACKeyDesc(hkd *hmacKeyDesc) {
 	hkdf(hkd)
 }
 // ForHMACKeyServiceAccountEmail returns HMAC Keys that are
 // associated with the email address of a service account in the project.
 //
 // Only one service account email can be used as a filter, so if multiple
 // of these options are applied, the last email to be set will be used.
 //
 // This option is EXPERIMENTAL and subject to change or removal without notice.
 func ForHMACKeyServiceAccountEmail(serviceAccountEmail string) HMACKeyOption {
 	return hmacKeyDescFunc(func(hkd *hmacKeyDesc) {
 		hkd.forServiceAccountEmail = serviceAccountEmail
 	})
 }
 // ShowDeletedHMACKeys will also list keys whose state is "DELETED".
 //
 // This option is EXPERIMENTAL and subject to change or removal without notice.
 func ShowDeletedHMACKeys() HMACKeyOption {
 	return hmacKeyDescFunc(func(hkd *hmacKeyDesc) {
 		hkd.showDeletedKeys = true
 	})
 }
 // UserProjectForHMACKeys will bill the request against userProjectID
 // if userProjectID is non-empty.
 //
 // Note: This is a noop right now and only provided for API compatibility.
 //
 // This option is EXPERIMENTAL and subject to change or removal without notice.
 func UserProjectForHMACKeys(userProjectID string) HMACKeyOption {
 	return hmacKeyDescFunc(func(hkd *hmacKeyDesc) {
 		hkd.userProjectID = userProjectID
 	})
 }
--- a/vendor/cloud.google.com/go/storage/iam.go
+++ b/vendor/cloud.google.com/go/storage/iam.go
@ -0,0 +1,130 @@
 // Copyright 2017 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"cloud.google.com/go/iam"
 	"cloud.google.com/go/internal/trace"
 	raw "google.golang.org/api/storage/v1"
 	iampb "google.golang.org/genproto/googleapis/iam/v1"
 )
 // IAM provides access to IAM access control for the bucket.
 func (b *BucketHandle) IAM() *iam.Handle {
 	return iam.InternalNewHandleClient(&iamClient{
 		raw:         b.c.raw,
 		userProject: b.userProject,
 	}, b.name)
 }
 // iamClient implements the iam.client interface.
 type iamClient struct {
 	raw         *raw.Service
 	userProject string
 }
 func (c *iamClient) Get(ctx context.Context, resource string) (p *iampb.Policy, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.IAM.Get")
 	defer func() { trace.EndSpan(ctx, err) }()
 	call := c.raw.Buckets.GetIamPolicy(resource)
 	setClientHeader(call.Header())
 	if c.userProject != "" {
 		call.UserProject(c.userProject)
 	}
 	var rp *raw.Policy
 	err = runWithRetry(ctx, func() error {
 		rp, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return iamFromStoragePolicy(rp), nil
 }
 func (c *iamClient) Set(ctx context.Context, resource string, p *iampb.Policy) (err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.IAM.Set")
 	defer func() { trace.EndSpan(ctx, err) }()
 	rp := iamToStoragePolicy(p)
 	call := c.raw.Buckets.SetIamPolicy(resource, rp)
 	setClientHeader(call.Header())
 	if c.userProject != "" {
 		call.UserProject(c.userProject)
 	}
 	return runWithRetry(ctx, func() error {
 		_, err := call.Context(ctx).Do()
 		return err
 	})
 }
 func (c *iamClient) Test(ctx context.Context, resource string, perms []string) (permissions []string, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.IAM.Test")
 	defer func() { trace.EndSpan(ctx, err) }()
 	call := c.raw.Buckets.TestIamPermissions(resource, perms)
 	setClientHeader(call.Header())
 	if c.userProject != "" {
 		call.UserProject(c.userProject)
 	}
 	var res *raw.TestIamPermissionsResponse
 	err = runWithRetry(ctx, func() error {
 		res, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return res.Permissions, nil
 }
 func iamToStoragePolicy(ip *iampb.Policy) *raw.Policy {
 	return &raw.Policy{
 		Bindings: iamToStorageBindings(ip.Bindings),
 		Etag:     string(ip.Etag),
 	}
 }
 func iamToStorageBindings(ibs []*iampb.Binding) []*raw.PolicyBindings {
 	var rbs []*raw.PolicyBindings
 	for _, ib := range ibs {
 		rbs = append(rbs, &raw.PolicyBindings{
 			Role:    ib.Role,
 			Members: ib.Members,
 		})
 	}
 	return rbs
 }
 func iamFromStoragePolicy(rp *raw.Policy) *iampb.Policy {
 	return &iampb.Policy{
 		Bindings: iamFromStorageBindings(rp.Bindings),
 		Etag:     []byte(rp.Etag),
 	}
 }
 func iamFromStorageBindings(rbs []*raw.PolicyBindings) []*iampb.Binding {
 	var ibs []*iampb.Binding
 	for _, rb := range rbs {
 		ibs = append(ibs, &iampb.Binding{
 			Role:    rb.Role,
 			Members: rb.Members,
 		})
 	}
 	return ibs
 }
--- a/vendor/cloud.google.com/go/storage/invoke.go
+++ b/vendor/cloud.google.com/go/storage/invoke.go
@ -0,0 +1,37 @@
 // Copyright 2014 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"cloud.google.com/go/internal"
 	gax "github.com/googleapis/gax-go/v2"
 )
 // runWithRetry calls the function until it returns nil or a non-retryable error, or
 // the context is done.
 func runWithRetry(ctx context.Context, call func() error) error {
 	return internal.Retry(ctx, gax.Backoff{}, func() (stop bool, err error) {
 		err = call()
 		if err == nil {
 			return true, nil
 		}
 		if shouldRetry(err) {
 			return false, nil
 		}
 		return true, err
 	})
 }
--- a/vendor/cloud.google.com/go/storage/not_go110.go
+++ b/vendor/cloud.google.com/go/storage/not_go110.go
@ -0,0 +1,42 @@
 // Copyright 2017 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // +build !go1.10
 package storage
 import (
 	"net/url"
 	"strings"
 	"google.golang.org/api/googleapi"
 )
 func shouldRetry(err error) bool {
 	switch e := err.(type) {
 	case *googleapi.Error:
 		// Retry on 429 and 5xx, according to
 		// https://cloud.google.com/storage/docs/exponential-backoff.
 		return e.Code == 429 || (e.Code >= 500 && e.Code < 600)
 	case *url.Error:
 		// Retry on REFUSED_STREAM.
 		// Unfortunately the error type is unexported, so we resort to string
 		// matching.
 		return strings.Contains(e.Error(), "REFUSED_STREAM")
 	case interface{ Temporary() bool }:
 		return e.Temporary()
 	default:
 		return false
 	}
 }
--- a/vendor/cloud.google.com/go/storage/notifications.go
+++ b/vendor/cloud.google.com/go/storage/notifications.go
@ -0,0 +1,188 @@
 // Copyright 2017 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"errors"
 	"fmt"
 	"regexp"
 	"cloud.google.com/go/internal/trace"
 	raw "google.golang.org/api/storage/v1"
 )
 // A Notification describes how to send Cloud PubSub messages when certain
 // events occur in a bucket.
 type Notification struct {
 	//The ID of the notification.
 	ID string
 	// The ID of the topic to which this subscription publishes.
 	TopicID string
 	// The ID of the project to which the topic belongs.
 	TopicProjectID string
 	// Only send notifications about listed event types. If empty, send notifications
 	// for all event types.
 	// See https://cloud.google.com/storage/docs/pubsub-notifications#events.
 	EventTypes []string
 	// If present, only apply this notification configuration to object names that
 	// begin with this prefix.
 	ObjectNamePrefix string
 	// An optional list of additional attributes to attach to each Cloud PubSub
 	// message published for this notification subscription.
 	CustomAttributes map[string]string
 	// The contents of the message payload.
 	// See https://cloud.google.com/storage/docs/pubsub-notifications#payload.
 	PayloadFormat string
 }
 // Values for Notification.PayloadFormat.
 const (
 	// Send no payload with notification messages.
 	NoPayload = "NONE"
 	// Send object metadata as JSON with notification messages.
 	JSONPayload = "JSON_API_V1"
 )
 // Values for Notification.EventTypes.
 const (
 	// Event that occurs when an object is successfully created.
 	ObjectFinalizeEvent = "OBJECT_FINALIZE"
 	// Event that occurs when the metadata of an existing object changes.
 	ObjectMetadataUpdateEvent = "OBJECT_METADATA_UPDATE"
 	// Event that occurs when an object is permanently deleted.
 	ObjectDeleteEvent = "OBJECT_DELETE"
 	// Event that occurs when the live version of an object becomes an
 	// archived version.
 	ObjectArchiveEvent = "OBJECT_ARCHIVE"
 )
 func toNotification(rn *raw.Notification) *Notification {
 	n := &Notification{
 		ID:               rn.Id,
 		EventTypes:       rn.EventTypes,
 		ObjectNamePrefix: rn.ObjectNamePrefix,
 		CustomAttributes: rn.CustomAttributes,
 		PayloadFormat:    rn.PayloadFormat,
 	}
 	n.TopicProjectID, n.TopicID = parseNotificationTopic(rn.Topic)
 	return n
 }
 var topicRE = regexp.MustCompile("^//pubsub.googleapis.com/projects/([^/]+)/topics/([^/]+)")
 // parseNotificationTopic extracts the project and topic IDs from from the full
 // resource name returned by the service. If the name is malformed, it returns
 // "?" for both IDs.
 func parseNotificationTopic(nt string) (projectID, topicID string) {
 	matches := topicRE.FindStringSubmatch(nt)
 	if matches == nil {
 		return "?", "?"
 	}
 	return matches[1], matches[2]
 }
 func toRawNotification(n *Notification) *raw.Notification {
 	return &raw.Notification{
 		Id: n.ID,
 		Topic: fmt.Sprintf("//pubsub.googleapis.com/projects/%s/topics/%s",
 			n.TopicProjectID, n.TopicID),
 		EventTypes:       n.EventTypes,
 		ObjectNamePrefix: n.ObjectNamePrefix,
 		CustomAttributes: n.CustomAttributes,
 		PayloadFormat:    string(n.PayloadFormat),
 	}
 }
 // AddNotification adds a notification to b. You must set n's TopicProjectID, TopicID
 // and PayloadFormat, and must not set its ID. The other fields are all optional. The
 // returned Notification's ID can be used to refer to it.
 func (b *BucketHandle) AddNotification(ctx context.Context, n *Notification) (ret *Notification, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.Bucket.AddNotification")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if n.ID != "" {
 		return nil, errors.New("storage: AddNotification: ID must not be set")
 	}
 	if n.TopicProjectID == "" {
 		return nil, errors.New("storage: AddNotification: missing TopicProjectID")
 	}
 	if n.TopicID == "" {
 		return nil, errors.New("storage: AddNotification: missing TopicID")
 	}
 	call := b.c.raw.Notifications.Insert(b.name, toRawNotification(n))
 	setClientHeader(call.Header())
 	if b.userProject != "" {
 		call.UserProject(b.userProject)
 	}
 	rn, err := call.Context(ctx).Do()
 	if err != nil {
 		return nil, err
 	}
 	return toNotification(rn), nil
 }
 // Notifications returns all the Notifications configured for this bucket, as a map
 // indexed by notification ID.
 func (b *BucketHandle) Notifications(ctx context.Context) (n map[string]*Notification, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.Bucket.Notifications")
 	defer func() { trace.EndSpan(ctx, err) }()
 	call := b.c.raw.Notifications.List(b.name)
 	setClientHeader(call.Header())
 	if b.userProject != "" {
 		call.UserProject(b.userProject)
 	}
 	var res *raw.Notifications
 	err = runWithRetry(ctx, func() error {
 		res, err = call.Context(ctx).Do()
 		return err
 	})
 	if err != nil {
 		return nil, err
 	}
 	return notificationsToMap(res.Items), nil
 }
 func notificationsToMap(rns []*raw.Notification) map[string]*Notification {
 	m := map[string]*Notification{}
 	for _, rn := range rns {
 		m[rn.Id] = toNotification(rn)
 	}
 	return m
 }
 // DeleteNotification deletes the notification with the given ID.
 func (b *BucketHandle) DeleteNotification(ctx context.Context, id string) (err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.Bucket.DeleteNotification")
 	defer func() { trace.EndSpan(ctx, err) }()
 	call := b.c.raw.Notifications.Delete(b.name, id)
 	setClientHeader(call.Header())
 	if b.userProject != "" {
 		call.UserProject(b.userProject)
 	}
 	return call.Context(ctx).Do()
 }
--- a/vendor/cloud.google.com/go/storage/reader.go
+++ b/vendor/cloud.google.com/go/storage/reader.go
@ -0,0 +1,403 @@
 // Copyright 2016 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"errors"
 	"fmt"
 	"hash/crc32"
 	"io"
 	"io/ioutil"
 	"net/http"
 	"net/url"
 	"reflect"
 	"strconv"
 	"strings"
 	"time"
 	"cloud.google.com/go/internal/trace"
 	"google.golang.org/api/googleapi"
 )
 var crc32cTable = crc32.MakeTable(crc32.Castagnoli)
 // ReaderObjectAttrs are attributes about the object being read. These are populated
 // during the New call. This struct only holds a subset of object attributes: to
 // get the full set of attributes, use ObjectHandle.Attrs.
 //
 // Each field is read-only.
 type ReaderObjectAttrs struct {
 	// Size is the length of the object's content.
 	Size int64
 	// StartOffset is the byte offset within the object
 	// from which reading begins.
 	// This value is only non-zero for range requests.
 	StartOffset int64
 	// ContentType is the MIME type of the object's content.
 	ContentType string
 	// ContentEncoding is the encoding of the object's content.
 	ContentEncoding string
 	// CacheControl specifies whether and for how long browser and Internet
 	// caches are allowed to cache your objects.
 	CacheControl string
 	// LastModified is the time that the object was last modified.
 	LastModified time.Time
 	// Generation is the generation number of the object's content.
 	Generation int64
 	// Metageneration is the version of the metadata for this object at
 	// this generation. This field is used for preconditions and for
 	// detecting changes in metadata. A metageneration number is only
 	// meaningful in the context of a particular generation of a
 	// particular object.
 	Metageneration int64
 }
 // NewReader creates a new Reader to read the contents of the
 // object.
 // ErrObjectNotExist will be returned if the object is not found.
 //
 // The caller must call Close on the returned Reader when done reading.
 func (o *ObjectHandle) NewReader(ctx context.Context) (*Reader, error) {
 	return o.NewRangeReader(ctx, 0, -1)
 }
 // NewRangeReader reads part of an object, reading at most length bytes
 // starting at the given offset. If length is negative, the object is read
 // until the end. If offset is negative, the object is read abs(offset) bytes
 // from the end, and length must also be negative to indicate all remaining
 // bytes will be read.
 func (o *ObjectHandle) NewRangeReader(ctx context.Context, offset, length int64) (r *Reader, err error) {
 	ctx = trace.StartSpan(ctx, "cloud.google.com/go/storage.Object.NewRangeReader")
 	defer func() { trace.EndSpan(ctx, err) }()
 	if err := o.validate(); err != nil {
 		return nil, err
 	}
 	if offset < 0 && length >= 0 {
 		return nil, fmt.Errorf("storage: invalid offset %d < 0 requires negative length", offset)
 	}
 	if o.conds != nil {
 		if err := o.conds.validate("NewRangeReader"); err != nil {
 			return nil, err
 		}
 	}
 	u := &url.URL{
 		Scheme: o.c.scheme,
 		Host:   o.c.readHost,
 		Path:   fmt.Sprintf("/%s/%s", o.bucket, o.object),
 	}
 	verb := "GET"
 	if length == 0 {
 		verb = "HEAD"
 	}
 	req, err := http.NewRequest(verb, u.String(), nil)
 	if err != nil {
 		return nil, err
 	}
 	req = req.WithContext(ctx)
 	if o.userProject != "" {
 		req.Header.Set("X-Goog-User-Project", o.userProject)
 	}
 	if o.readCompressed {
 		req.Header.Set("Accept-Encoding", "gzip")
 	}
 	if err := setEncryptionHeaders(req.Header, o.encryptionKey, false); err != nil {
 		return nil, err
 	}
 	gen := o.gen
 	// Define a function that initiates a Read with offset and length, assuming we
 	// have already read seen bytes.
 	reopen := func(seen int64) (*http.Response, error) {
 		start := offset + seen
 		if length < 0 && start < 0 {
 			req.Header.Set("Range", fmt.Sprintf("bytes=%d", start))
 		} else if length < 0 && start > 0 {
 			req.Header.Set("Range", fmt.Sprintf("bytes=%d-", start))
 		} else if length > 0 {
 			// The end character isn't affected by how many bytes we've seen.
 			req.Header.Set("Range", fmt.Sprintf("bytes=%d-%d", start, offset+length-1))
 		}
 		// We wait to assign conditions here because the generation number can change in between reopen() runs.
 		req.URL.RawQuery = conditionsQuery(gen, o.conds)
 		var res *http.Response
 		err = runWithRetry(ctx, func() error {
 			res, err = o.c.hc.Do(req)
 			if err != nil {
 				return err
 			}
 			if res.StatusCode == http.StatusNotFound {
 				res.Body.Close()
 				return ErrObjectNotExist
 			}
 			if res.StatusCode < 200 || res.StatusCode > 299 {
 				body, _ := ioutil.ReadAll(res.Body)
 				res.Body.Close()
 				return &googleapi.Error{
 					Code:   res.StatusCode,
 					Header: res.Header,
 					Body:   string(body),
 				}
 			}
 			if start > 0 && length != 0 && res.StatusCode != http.StatusPartialContent {
 				res.Body.Close()
 				return errors.New("storage: partial request not satisfied")
 			}
 			// If a generation hasn't been specified, and this is the first response we get, let's record the
 			// generation. In future requests we'll use this generation as a precondition to avoid data races.
 			if gen < 0 && res.Header.Get("X-Goog-Generation") != "" {
 				gen64, err := strconv.ParseInt(res.Header.Get("X-Goog-Generation"), 10, 64)
 				if err != nil {
 					return err
 				}
 				gen = gen64
 			}
 			return nil
 		})
 		if err != nil {
 			return nil, err
 		}
 		return res, nil
 	}
 	res, err := reopen(0)
 	if err != nil {
 		return nil, err
 	}
 	var (
 		size        int64 // total size of object, even if a range was requested.
 		checkCRC    bool
 		crc         uint32
 		startOffset int64 // non-zero if range request.
 	)
 	if res.StatusCode == http.StatusPartialContent {
 		cr := strings.TrimSpace(res.Header.Get("Content-Range"))
 		if !strings.HasPrefix(cr, "bytes ") || !strings.Contains(cr, "/") {
 			return nil, fmt.Errorf("storage: invalid Content-Range %q", cr)
 		}
 		size, err = strconv.ParseInt(cr[strings.LastIndex(cr, "/")+1:], 10, 64)
 		if err != nil {
 			return nil, fmt.Errorf("storage: invalid Content-Range %q", cr)
 		}
 		dashIndex := strings.Index(cr, "-")
 		if dashIndex >= 0 {
 			startOffset, err = strconv.ParseInt(cr[len("bytes="):dashIndex], 10, 64)
 			if err != nil {
 				return nil, fmt.Errorf("storage: invalid Content-Range %q: %v", cr, err)
 			}
 		}
 	} else {
 		size = res.ContentLength
 		// Check the CRC iff all of the following hold:
 		// - We asked for content (length != 0).
 		// - We got all the content (status != PartialContent).
 		// - The server sent a CRC header.
 		// - The Go http stack did not uncompress the file.
 		// - We were not served compressed data that was uncompressed on download.
 		// The problem with the last two cases is that the CRC will not match -- GCS
 		// computes it on the compressed contents, but we compute it on the
 		// uncompressed contents.
 		if length != 0 && !res.Uncompressed && !uncompressedByServer(res) {
 			crc, checkCRC = parseCRC32c(res)
 		}
 	}
 	remain := res.ContentLength
 	body := res.Body
 	if length == 0 {
 		remain = 0
 		body.Close()
 		body = emptyBody
 	}
 	var metaGen int64
 	if res.Header.Get("X-Goog-Generation") != "" {
 		metaGen, err = strconv.ParseInt(res.Header.Get("X-Goog-Metageneration"), 10, 64)
 		if err != nil {
 			return nil, err
 		}
 	}
 	var lm time.Time
 	if res.Header.Get("Last-Modified") != "" {
 		lm, err = http.ParseTime(res.Header.Get("Last-Modified"))
 		if err != nil {
 			return nil, err
 		}
 	}
 	attrs := ReaderObjectAttrs{
 		Size:            size,
 		ContentType:     res.Header.Get("Content-Type"),
 		ContentEncoding: res.Header.Get("Content-Encoding"),
 		CacheControl:    res.Header.Get("Cache-Control"),
 		LastModified:    lm,
 		StartOffset:     startOffset,
 		Generation:      gen,
 		Metageneration:  metaGen,
 	}
 	return &Reader{
 		Attrs:    attrs,
 		body:     body,
 		size:     size,
 		remain:   remain,
 		wantCRC:  crc,
 		checkCRC: checkCRC,
 		reopen:   reopen,
 	}, nil
 }
 func uncompressedByServer(res *http.Response) bool {
 	// If the data is stored as gzip but is not encoded as gzip, then it
 	// was uncompressed by the server.
 	return res.Header.Get("X-Goog-Stored-Content-Encoding") == "gzip" &&
 		res.Header.Get("Content-Encoding") != "gzip"
 }
 func parseCRC32c(res *http.Response) (uint32, bool) {
 	const prefix = "crc32c="
 	for _, spec := range res.Header["X-Goog-Hash"] {
 		if strings.HasPrefix(spec, prefix) {
 			c, err := decodeUint32(spec[len(prefix):])
 			if err == nil {
 				return c, true
 			}
 		}
 	}
 	return 0, false
 }
 var emptyBody = ioutil.NopCloser(strings.NewReader(""))
 // Reader reads a Cloud Storage object.
 // It implements io.Reader.
 //
 // Typically, a Reader computes the CRC of the downloaded content and compares it to
 // the stored CRC, returning an error from Read if there is a mismatch. This integrity check
 // is skipped if transcoding occurs. See https://cloud.google.com/storage/docs/transcoding.
 type Reader struct {
 	Attrs              ReaderObjectAttrs
 	body               io.ReadCloser
 	seen, remain, size int64
 	checkCRC           bool   // should we check the CRC?
 	wantCRC            uint32 // the CRC32c value the server sent in the header
 	gotCRC             uint32 // running crc
 	reopen             func(seen int64) (*http.Response, error)
 }
 // Close closes the Reader. It must be called when done reading.
 func (r *Reader) Close() error {
 	return r.body.Close()
 }
 func (r *Reader) Read(p []byte) (int, error) {
 	n, err := r.readWithRetry(p)
 	if r.remain != -1 {
 		r.remain -= int64(n)
 	}
 	if r.checkCRC {
 		r.gotCRC = crc32.Update(r.gotCRC, crc32cTable, p[:n])
 		// Check CRC here. It would be natural to check it in Close, but
 		// everybody defers Close on the assumption that it doesn't return
 		// anything worth looking at.
 		if err == io.EOF {
 			if r.gotCRC != r.wantCRC {
 				return n, fmt.Errorf("storage: bad CRC on read: got %d, want %d",
 					r.gotCRC, r.wantCRC)
 			}
 		}
 	}
 	return n, err
 }
 func (r *Reader) readWithRetry(p []byte) (int, error) {
 	n := 0
 	for len(p[n:]) > 0 {
 		m, err := r.body.Read(p[n:])
 		n += m
 		r.seen += int64(m)
 		if !shouldRetryRead(err) {
 			return n, err
 		}
 		// Read failed, but we will try again. Send a ranged read request that takes
 		// into account the number of bytes we've already seen.
 		res, err := r.reopen(r.seen)
 		if err != nil {
 			// reopen already retries
 			return n, err
 		}
 		r.body.Close()
 		r.body = res.Body
 	}
 	return n, nil
 }
 func shouldRetryRead(err error) bool {
 	if err == nil {
 		return false
 	}
 	return strings.HasSuffix(err.Error(), "INTERNAL_ERROR") && strings.Contains(reflect.TypeOf(err).String(), "http2")
 }
 // Size returns the size of the object in bytes.
 // The returned value is always the same and is not affected by
 // calls to Read or Close.
 //
 // Deprecated: use Reader.Attrs.Size.
 func (r *Reader) Size() int64 {
 	return r.Attrs.Size
 }
 // Remain returns the number of bytes left to read, or -1 if unknown.
 func (r *Reader) Remain() int64 {
 	return r.remain
 }
 // ContentType returns the content type of the object.
 //
 // Deprecated: use Reader.Attrs.ContentType.
 func (r *Reader) ContentType() string {
 	return r.Attrs.ContentType
 }
 // ContentEncoding returns the content encoding of the object.
 //
 // Deprecated: use Reader.Attrs.ContentEncoding.
 func (r *Reader) ContentEncoding() string {
 	return r.Attrs.ContentEncoding
 }
 // CacheControl returns the cache control of the object.
 //
 // Deprecated: use Reader.Attrs.CacheControl.
 func (r *Reader) CacheControl() string {
 	return r.Attrs.CacheControl
 }
 // LastModified returns the value of the Last-Modified header.
 //
 // Deprecated: use Reader.Attrs.LastModified.
 func (r *Reader) LastModified() (time.Time, error) {
 	return r.Attrs.LastModified, nil
 }
--- a/vendor/cloud.google.com/go/storage/storage.go
+++ b/vendor/cloud.google.com/go/storage/storage.go
--- a/vendor/cloud.google.com/go/storage/storage.replay
+++ b/vendor/cloud.google.com/go/storage/storage.replay
--- a/vendor/cloud.google.com/go/storage/writer.go
+++ b/vendor/cloud.google.com/go/storage/writer.go
@ -0,0 +1,260 @@
 // Copyright 2014 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 package storage
 import (
 	"context"
 	"encoding/base64"
 	"errors"
 	"fmt"
 	"io"
 	"sync"
 	"unicode/utf8"
 	"google.golang.org/api/googleapi"
 	raw "google.golang.org/api/storage/v1"
 )
 // A Writer writes a Cloud Storage object.
 type Writer struct {
 	// ObjectAttrs are optional attributes to set on the object. Any attributes
 	// must be initialized before the first Write call. Nil or zero-valued
 	// attributes are ignored.
 	ObjectAttrs
 	// SendCRC specifies whether to transmit a CRC32C field. It should be set
 	// to true in addition to setting the Writer's CRC32C field, because zero
 	// is a valid CRC and normally a zero would not be transmitted.
 	// If a CRC32C is sent, and the data written does not match the checksum,
 	// the write will be rejected.
 	SendCRC32C bool
 	// ChunkSize controls the maximum number of bytes of the object that the
 	// Writer will attempt to send to the server in a single request. Objects
 	// smaller than the size will be sent in a single request, while larger
 	// objects will be split over multiple requests. The size will be rounded up
 	// to the nearest multiple of 256K. If zero, chunking will be disabled and
 	// the object will be uploaded in a single request.
 	//
 	// ChunkSize will default to a reasonable value. If you perform many concurrent
 	// writes of small objects, you may wish set ChunkSize to a value that matches
 	// your objects' sizes to avoid consuming large amounts of memory.
 	//
 	// ChunkSize must be set before the first Write call.
 	ChunkSize int
 	// ProgressFunc can be used to monitor the progress of a large write.
 	// operation. If ProgressFunc is not nil and writing requires multiple
 	// calls to the underlying service (see
 	// https://cloud.google.com/storage/docs/json_api/v1/how-tos/resumable-upload),
 	// then ProgressFunc will be invoked after each call with the number of bytes of
 	// content copied so far.
 	//
 	// ProgressFunc should return quickly without blocking.
 	ProgressFunc func(int64)
 	ctx context.Context
 	o   *ObjectHandle
 	opened bool
 	pw     *io.PipeWriter
 	donec chan struct{} // closed after err and obj are set.
 	obj   *ObjectAttrs
 	mu  sync.Mutex
 	err error
 }
 func (w *Writer) open() error {
 	attrs := w.ObjectAttrs
 	// Check the developer didn't change the object Name (this is unfortunate, but
 	// we don't want to store an object under the wrong name).
 	if attrs.Name != w.o.object {
 		return fmt.Errorf("storage: Writer.Name %q does not match object name %q", attrs.Name, w.o.object)
 	}
 	if !utf8.ValidString(attrs.Name) {
 		return fmt.Errorf("storage: object name %q is not valid UTF-8", attrs.Name)
 	}
 	if attrs.KMSKeyName != "" && w.o.encryptionKey != nil {
 		return errors.New("storage: cannot use KMSKeyName with a customer-supplied encryption key")
 	}
 	pr, pw := io.Pipe()
 	w.pw = pw
 	w.opened = true
 	go w.monitorCancel()
 	if w.ChunkSize < 0 {
 		return errors.New("storage: Writer.ChunkSize must be non-negative")
 	}
 	mediaOpts := []googleapi.MediaOption{
 		googleapi.ChunkSize(w.ChunkSize),
 	}
 	if c := attrs.ContentType; c != "" {
 		mediaOpts = append(mediaOpts, googleapi.ContentType(c))
 	}
 	go func() {
 		defer close(w.donec)
 		rawObj := attrs.toRawObject(w.o.bucket)
 		if w.SendCRC32C {
 			rawObj.Crc32c = encodeUint32(attrs.CRC32C)
 		}
 		if w.MD5 != nil {
 			rawObj.Md5Hash = base64.StdEncoding.EncodeToString(w.MD5)
 		}
 		if w.o.c.envHost != "" {
 			w.o.c.raw.BasePath = fmt.Sprintf("%s://%s", w.o.c.scheme, w.o.c.envHost)
 		}
 		call := w.o.c.raw.Objects.Insert(w.o.bucket, rawObj).
 			Media(pr, mediaOpts...).
 			Projection("full").
 			Context(w.ctx)
 		if w.ProgressFunc != nil {
 			call.ProgressUpdater(func(n, _ int64) { w.ProgressFunc(n) })
 		}
 		if attrs.KMSKeyName != "" {
 			call.KmsKeyName(attrs.KMSKeyName)
 		}
 		if attrs.PredefinedACL != "" {
 			call.PredefinedAcl(attrs.PredefinedACL)
 		}
 		if err := setEncryptionHeaders(call.Header(), w.o.encryptionKey, false); err != nil {
 			w.mu.Lock()
 			w.err = err
 			w.mu.Unlock()
 			pr.CloseWithError(err)
 			return
 		}
 		var resp *raw.Object
 		err := applyConds("NewWriter", w.o.gen, w.o.conds, call)
 		if err == nil {
 			if w.o.userProject != "" {
 				call.UserProject(w.o.userProject)
 			}
 			setClientHeader(call.Header())
 			// The internals that perform call.Do automatically retry
 			// uploading chunks, hence no need to add retries here.
 			// See issue https://github.com/googleapis/google-cloud-go/issues/1507.
 			//
 			// However, since this whole call's internals involve making the initial
 			// resumable upload session, the first HTTP request is not retried.
 			// TODO: Follow-up with google.golang.org/gensupport to solve
 			// https://github.com/googleapis/google-api-go-client/issues/392.
 			resp, err = call.Do()
 		}
 		if err != nil {
 			w.mu.Lock()
 			w.err = err
 			w.mu.Unlock()
 			pr.CloseWithError(err)
 			return
 		}
 		w.obj = newObject(resp)
 	}()
 	return nil
 }
 // Write appends to w. It implements the io.Writer interface.
 //
 // Since writes happen asynchronously, Write may return a nil
 // error even though the write failed (or will fail). Always
 // use the error returned from Writer.Close to determine if
 // the upload was successful.
 func (w *Writer) Write(p []byte) (n int, err error) {
 	w.mu.Lock()
 	werr := w.err
 	w.mu.Unlock()
 	if werr != nil {
 		return 0, werr
 	}
 	if !w.opened {
 		if err := w.open(); err != nil {
 			return 0, err
 		}
 	}
 	n, err = w.pw.Write(p)
 	if err != nil {
 		w.mu.Lock()
 		werr := w.err
 		w.mu.Unlock()
 		// Preserve existing functionality that when context is canceled, Write will return
 		// context.Canceled instead of "io: read/write on closed pipe". This hides the
 		// pipe implementation detail from users and makes Write seem as though it's an RPC.
 		if werr == context.Canceled || werr == context.DeadlineExceeded {
 			return n, werr
 		}
 	}
 	return n, err
 }
 // Close completes the write operation and flushes any buffered data.
 // If Close doesn't return an error, metadata about the written object
 // can be retrieved by calling Attrs.
 func (w *Writer) Close() error {
 	if !w.opened {
 		if err := w.open(); err != nil {
 			return err
 		}
 	}
 	// Closing either the read or write causes the entire pipe to close.
 	if err := w.pw.Close(); err != nil {
 		return err
 	}
 	<-w.donec
 	w.mu.Lock()
 	defer w.mu.Unlock()
 	return w.err
 }
 // monitorCancel is intended to be used as a background goroutine. It monitors the
 // context, and when it observes that the context has been canceled, it manually
 // closes things that do not take a context.
 func (w *Writer) monitorCancel() {
 	select {
 	case <-w.ctx.Done():
 		w.mu.Lock()
 		werr := w.ctx.Err()
 		w.err = werr
 		w.mu.Unlock()
 		// Closing either the read or write causes the entire pipe to close.
 		w.CloseWithError(werr)
 	case <-w.donec:
 	}
 }
 // CloseWithError aborts the write operation with the provided error.
 // CloseWithError always returns nil.
 //
 // Deprecated: cancel the context passed to NewWriter instead.
 func (w *Writer) CloseWithError(err error) error {
 	if !w.opened {
 		return nil
 	}
 	return w.pw.CloseWithError(err)
 }
 // Attrs returns metadata about a successfully-written object.
 // It's only valid to call it after Close returns nil.
 func (w *Writer) Attrs() *ObjectAttrs {
 	return w.obj
 }
--- a/vendor/cloud.google.com/go/tidyall.sh
+++ b/vendor/cloud.google.com/go/tidyall.sh
@ -0,0 +1,23 @@
 #!/bin/bash
 # Copyright 2019 Google Inc.
 #
 # Licensed under the Apache License, Version 2.0 (the "License");
 # you may not use this file except in compliance with the License.
 # You may obtain a copy of the License at
 #
 #      http://www.apache.org/licenses/LICENSE-2.0
 #
 # Unless required by applicable law or agreed to in writing, software
 # distributed under the License is distributed on an "AS IS" BASIS,
 # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 # See the License for the specific language governing permissions and
 # limitations under the License.
 # Run at repo root.
 go mod tidy
 for i in `find . -name go.mod`; do
 pushd `dirname $i`;
    go mod tidy;
 popd;
 done
--- a/vendor/cloud.google.com/go/tools.go
+++ b/vendor/cloud.google.com/go/tools.go
@ -0,0 +1,33 @@
 // +build tools
 // Copyright 2018 Google LLC
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //      http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.
 // This package exists to cause `go mod` and `go get` to believe these tools
 // are dependencies, even though they are not runtime dependencies of any
 // package (these are tools used by our CI builds). This means they will appear
 // in our `go.mod` file, but will not be a part of the build. Also, since the
 // build target is something non-existent, these should not be included in any
 // binaries.
 package cloud
 import (
 	_ "github.com/golang/protobuf/protoc-gen-go"
 	_ "github.com/jstemmer/go-junit-report"
 	_ "golang.org/x/exp/cmd/apidiff"
 	_ "golang.org/x/lint/golint"
 	_ "golang.org/x/tools/cmd/goimports"
 	_ "honnef.co/go/tools/cmd/staticcheck"
 )
--- a/vendor/github.com/BurntSushi/toml/.gitignore
+++ b/vendor/github.com/BurntSushi/toml/.gitignore
@ -0,0 +1,5 @@
 TAGS
 tags
 .*.swp
 tomlcheck/tomlcheck
 toml.test
--- a/vendor/github.com/BurntSushi/toml/.travis.yml
+++ b/vendor/github.com/BurntSushi/toml/.travis.yml
@ -0,0 +1,15 @@
 language: go
 go:
  - 1.1
  - 1.2
  - 1.3
  - 1.4
  - 1.5
  - 1.6
  - tip
 install:
  - go install ./...
  - go get github.com/BurntSushi/toml-test
 script:
  - export PATH="$PATH:$HOME/gopath/bin"
  - make test
--- a/vendor/github.com/BurntSushi/toml/COMPATIBLE
+++ b/vendor/github.com/BurntSushi/toml/COMPATIBLE
@ -0,0 +1,3 @@
 Compatible with TOML version
 [v0.4.0](https://github.com/toml-lang/toml/blob/v0.4.0/versions/en/toml-v0.4.0.md)
--- a/vendor/github.com/BurntSushi/toml/COPYING
+++ b/vendor/github.com/BurntSushi/toml/COPYING
@ -0,0 +1,21 @@
 The MIT License (MIT)
 Copyright (c) 2013 TOML authors
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
 in the Software without restriction, including without limitation the rights
 to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 copies of the Software, and to permit persons to whom the Software is
 furnished to do so, subject to the following conditions:
 The above copyright notice and this permission notice shall be included in
 all copies or substantial portions of the Software.
 THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
 IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
 FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
 AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
 LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
 OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
 THE SOFTWARE.
--- a/vendor/github.com/BurntSushi/toml/Makefile
+++ b/vendor/github.com/BurntSushi/toml/Makefile
@ -0,0 +1,19 @@
 install:
 	go install ./...
 test: install
 	go test -v
 	toml-test toml-test-decoder
 	toml-test -encoder toml-test-encoder
 fmt:
 	gofmt -w *.go */*.go
 	colcheck *.go */*.go
 tags:
 	find ./ -name '*.go' -print0 | xargs -0 gotags > TAGS
 push:
 	git push origin master
 	git push github master
--- a/vendor/github.com/BurntSushi/toml/README.md
+++ b/vendor/github.com/BurntSushi/toml/README.md
@ -0,0 +1,218 @@
 ## TOML parser and encoder for Go with reflection
 TOML stands for Tom's Obvious, Minimal Language. This Go package provides a
 reflection interface similar to Go's standard library `json` and `xml`
 packages. This package also supports the `encoding.TextUnmarshaler` and
 `encoding.TextMarshaler` interfaces so that you can define custom data
 representations. (There is an example of this below.)
 Spec: https://github.com/toml-lang/toml
 Compatible with TOML version
 [v0.4.0](https://github.com/toml-lang/toml/blob/master/versions/en/toml-v0.4.0.md)
 Documentation: https://godoc.org/github.com/BurntSushi/toml
 Installation:
 ```bash
 go get github.com/BurntSushi/toml
 ```
 Try the toml validator:
 ```bash
 go get github.com/BurntSushi/toml/cmd/tomlv
 tomlv some-toml-file.toml
 ```
 [![Build Status](https://travis-ci.org/BurntSushi/toml.svg?branch=master)](https://travis-ci.org/BurntSushi/toml) [![GoDoc](https://godoc.org/github.com/BurntSushi/toml?status.svg)](https://godoc.org/github.com/BurntSushi/toml)
 ### Testing
 This package passes all tests in
 [toml-test](https://github.com/BurntSushi/toml-test) for both the decoder
 and the encoder.
 ### Examples
 This package works similarly to how the Go standard library handles `XML`
 and `JSON`. Namely, data is loaded into Go values via reflection.
 For the simplest example, consider some TOML file as just a list of keys
 and values:
 ```toml
 Age = 25
 Cats = [ "Cauchy", "Plato" ]
 Pi = 3.14
 Perfection = [ 6, 28, 496, 8128 ]
 DOB = 1987-07-05T05:45:00Z
 ```
 Which could be defined in Go as:
 ```go
 type Config struct {
  Age int
  Cats []string
  Pi float64
  Perfection []int
  DOB time.Time // requires `import time`
 }
 ```
 And then decoded with:
 ```go
 var conf Config
 if _, err := toml.Decode(tomlData, &conf); err != nil {
  // handle error
 }
 ```
 You can also use struct tags if your struct field name doesn't map to a TOML
 key value directly:
 ```toml
 some_key_NAME = "wat"
 ```
 ```go
 type TOML struct {
  ObscureKey string `toml:"some_key_NAME"`
 }
 ```
 ### Using the `encoding.TextUnmarshaler` interface
 Here's an example that automatically parses duration strings into
 `time.Duration` values:
 ```toml
 [[song]]
 name = "Thunder Road"
 duration = "4m49s"
 [[song]]
 name = "Stairway to Heaven"
 duration = "8m03s"
 ```
 Which can be decoded with:
 ```go
 type song struct {
  Name     string
  Duration duration
 }
 type songs struct {
  Song []song
 }
 var favorites songs
 if _, err := toml.Decode(blob, &favorites); err != nil {
  log.Fatal(err)
 }
 for _, s := range favorites.Song {
  fmt.Printf("%s (%s)\n", s.Name, s.Duration)
 }
 ```
 And you'll also need a `duration` type that satisfies the
 `encoding.TextUnmarshaler` interface:
 ```go
 type duration struct {
 	time.Duration
 }
 func (d *duration) UnmarshalText(text []byte) error {
 	var err error
 	d.Duration, err = time.ParseDuration(string(text))
 	return err
 }
 ```
 ### More complex usage
 Here's an example of how to load the example from the official spec page:
 ```toml
 # This is a TOML document. Boom.
 title = "TOML Example"
 [owner]
 name = "Tom Preston-Werner"
 organization = "GitHub"
 bio = "GitHub Cofounder & CEO\nLikes tater tots and beer."
 dob = 1979-05-27T07:32:00Z # First class dates? Why not?
 [database]
 server = "192.168.1.1"
 ports = [ 8001, 8001, 8002 ]
 connection_max = 5000
 enabled = true
 [servers]
  # You can indent as you please. Tabs or spaces. TOML don't care.
  [servers.alpha]
  ip = "10.0.0.1"
  dc = "eqdc10"
  [servers.beta]
  ip = "10.0.0.2"
  dc = "eqdc10"
 [clients]
 data = [ ["gamma", "delta"], [1, 2] ] # just an update to make sure parsers support it
 # Line breaks are OK when inside arrays
 hosts = [
  "alpha",
  "omega"
 ]
 ```
 And the corresponding Go types are:
 ```go
 type tomlConfig struct {
 	Title string
 	Owner ownerInfo
 	DB database `toml:"database"`
 	Servers map[string]server
 	Clients clients
 }
 type ownerInfo struct {
 	Name string
 	Org string `toml:"organization"`
 	Bio string
 	DOB time.Time
 }
 type database struct {
 	Server string
 	Ports []int
 	ConnMax int `toml:"connection_max"`
 	Enabled bool
 }
 type server struct {
 	IP string
 	DC string
 }
 type clients struct {
 	Data [][]interface{}
 	Hosts []string
 }
 ```
 Note that a case insensitive match will be tried if an exact match can't be
 found.
 A working example of the above can be found in `_examples/example.{go,toml}`.
--- a/vendor/github.com/BurntSushi/toml/decode.go
+++ b/vendor/github.com/BurntSushi/toml/decode.go
@ -0,0 +1,509 @@
 package toml
 import (
 	"fmt"
 	"io"
 	"io/ioutil"
 	"math"
 	"reflect"
 	"strings"
 	"time"
 )
 func e(format string, args ...interface{}) error {
 	return fmt.Errorf("toml: "+format, args...)
 }
 // Unmarshaler is the interface implemented by objects that can unmarshal a
 // TOML description of themselves.
 type Unmarshaler interface {
 	UnmarshalTOML(interface{}) error
 }
 // Unmarshal decodes the contents of `p` in TOML format into a pointer `v`.
 func Unmarshal(p []byte, v interface{}) error {
 	_, err := Decode(string(p), v)
 	return err
 }
 // Primitive is a TOML value that hasn't been decoded into a Go value.
 // When using the various `Decode*` functions, the type `Primitive` may
 // be given to any value, and its decoding will be delayed.
 //
 // A `Primitive` value can be decoded using the `PrimitiveDecode` function.
 //
 // The underlying representation of a `Primitive` value is subject to change.
 // Do not rely on it.
 //
 // N.B. Primitive values are still parsed, so using them will only avoid
 // the overhead of reflection. They can be useful when you don't know the
 // exact type of TOML data until run time.
 type Primitive struct {
 	undecoded interface{}
 	context   Key
 }
 // DEPRECATED!
 //
 // Use MetaData.PrimitiveDecode instead.
 func PrimitiveDecode(primValue Primitive, v interface{}) error {
 	md := MetaData{decoded: make(map[string]bool)}
 	return md.unify(primValue.undecoded, rvalue(v))
 }
 // PrimitiveDecode is just like the other `Decode*` functions, except it
 // decodes a TOML value that has already been parsed. Valid primitive values
 // can *only* be obtained from values filled by the decoder functions,
 // including this method. (i.e., `v` may contain more `Primitive`
 // values.)
 //
 // Meta data for primitive values is included in the meta data returned by
 // the `Decode*` functions with one exception: keys returned by the Undecoded
 // method will only reflect keys that were decoded. Namely, any keys hidden
 // behind a Primitive will be considered undecoded. Executing this method will
 // update the undecoded keys in the meta data. (See the example.)
 func (md *MetaData) PrimitiveDecode(primValue Primitive, v interface{}) error {
 	md.context = primValue.context
 	defer func() { md.context = nil }()
 	return md.unify(primValue.undecoded, rvalue(v))
 }
 // Decode will decode the contents of `data` in TOML format into a pointer
 // `v`.
 //
 // TOML hashes correspond to Go structs or maps. (Dealer's choice. They can be
 // used interchangeably.)
 //
 // TOML arrays of tables correspond to either a slice of structs or a slice
 // of maps.
 //
 // TOML datetimes correspond to Go `time.Time` values.
 //
 // All other TOML types (float, string, int, bool and array) correspond
 // to the obvious Go types.
 //
 // An exception to the above rules is if a type implements the
 // encoding.TextUnmarshaler interface. In this case, any primitive TOML value
 // (floats, strings, integers, booleans and datetimes) will be converted to
 // a byte string and given to the value's UnmarshalText method. See the
 // Unmarshaler example for a demonstration with time duration strings.
 //
 // Key mapping
 //
 // TOML keys can map to either keys in a Go map or field names in a Go
 // struct. The special `toml` struct tag may be used to map TOML keys to
 // struct fields that don't match the key name exactly. (See the example.)
 // A case insensitive match to struct names will be tried if an exact match
 // can't be found.
 //
 // The mapping between TOML values and Go values is loose. That is, there
 // may exist TOML values that cannot be placed into your representation, and
 // there may be parts of your representation that do not correspond to
 // TOML values. This loose mapping can be made stricter by using the IsDefined
 // and/or Undecoded methods on the MetaData returned.
 //
 // This decoder will not handle cyclic types. If a cyclic type is passed,
 // `Decode` will not terminate.
 func Decode(data string, v interface{}) (MetaData, error) {
 	rv := reflect.ValueOf(v)
 	if rv.Kind() != reflect.Ptr {
 		return MetaData{}, e("Decode of non-pointer %s", reflect.TypeOf(v))
 	}
 	if rv.IsNil() {
 		return MetaData{}, e("Decode of nil %s", reflect.TypeOf(v))
 	}
 	p, err := parse(data)
 	if err != nil {
 		return MetaData{}, err
 	}
 	md := MetaData{
 		p.mapping, p.types, p.ordered,
 		make(map[string]bool, len(p.ordered)), nil,
 	}
 	return md, md.unify(p.mapping, indirect(rv))
 }
 // DecodeFile is just like Decode, except it will automatically read the
 // contents of the file at `fpath` and decode it for you.
 func DecodeFile(fpath string, v interface{}) (MetaData, error) {
 	bs, err := ioutil.ReadFile(fpath)
 	if err != nil {
 		return MetaData{}, err
 	}
 	return Decode(string(bs), v)
 }
 // DecodeReader is just like Decode, except it will consume all bytes
 // from the reader and decode it for you.
 func DecodeReader(r io.Reader, v interface{}) (MetaData, error) {
 	bs, err := ioutil.ReadAll(r)
 	if err != nil {
 		return MetaData{}, err
 	}
 	return Decode(string(bs), v)
 }
 // unify performs a sort of type unification based on the structure of `rv`,
 // which is the client representation.
 //
 // Any type mismatch produces an error. Finding a type that we don't know
 // how to handle produces an unsupported type error.
 func (md *MetaData) unify(data interface{}, rv reflect.Value) error {
 	// Special case. Look for a `Primitive` value.
 	if rv.Type() == reflect.TypeOf((*Primitive)(nil)).Elem() {
 		// Save the undecoded data and the key context into the primitive
 		// value.
 		context := make(Key, len(md.context))
 		copy(context, md.context)
 		rv.Set(reflect.ValueOf(Primitive{
 			undecoded: data,
 			context:   context,
 		}))
 		return nil
 	}
 	// Special case. Unmarshaler Interface support.
 	if rv.CanAddr() {
 		if v, ok := rv.Addr().Interface().(Unmarshaler); ok {
 			return v.UnmarshalTOML(data)
 		}
 	}
 	// Special case. Handle time.Time values specifically.
 	// TODO: Remove this code when we decide to drop support for Go 1.1.
 	// This isn't necessary in Go 1.2 because time.Time satisfies the encoding
 	// interfaces.
 	if rv.Type().AssignableTo(rvalue(time.Time{}).Type()) {
 		return md.unifyDatetime(data, rv)
 	}
 	// Special case. Look for a value satisfying the TextUnmarshaler interface.
 	if v, ok := rv.Interface().(TextUnmarshaler); ok {
 		return md.unifyText(data, v)
 	}
 	// BUG(burntsushi)
 	// The behavior here is incorrect whenever a Go type satisfies the
 	// encoding.TextUnmarshaler interface but also corresponds to a TOML
 	// hash or array. In particular, the unmarshaler should only be applied
 	// to primitive TOML values. But at this point, it will be applied to
 	// all kinds of values and produce an incorrect error whenever those values
 	// are hashes or arrays (including arrays of tables).
 	k := rv.Kind()
 	// laziness
 	if k >= reflect.Int && k <= reflect.Uint64 {
 		return md.unifyInt(data, rv)
 	}
 	switch k {
 	case reflect.Ptr:
 		elem := reflect.New(rv.Type().Elem())
 		err := md.unify(data, reflect.Indirect(elem))
 		if err != nil {
 			return err
 		}
 		rv.Set(elem)
 		return nil
 	case reflect.Struct:
 		return md.unifyStruct(data, rv)
 	case reflect.Map:
 		return md.unifyMap(data, rv)
 	case reflect.Array:
 		return md.unifyArray(data, rv)
 	case reflect.Slice:
 		return md.unifySlice(data, rv)
 	case reflect.String:
 		return md.unifyString(data, rv)
 	case reflect.Bool:
 		return md.unifyBool(data, rv)
 	case reflect.Interface:
 		// we only support empty interfaces.
 		if rv.NumMethod() > 0 {
 			return e("unsupported type %s", rv.Type())
 		}
 		return md.unifyAnything(data, rv)
 	case reflect.Float32:
 		fallthrough
 	case reflect.Float64:
 		return md.unifyFloat64(data, rv)
 	}
 	return e("unsupported type %s", rv.Kind())
 }
 func (md *MetaData) unifyStruct(mapping interface{}, rv reflect.Value) error {
 	tmap, ok := mapping.(map[string]interface{})
 	if !ok {
 		if mapping == nil {
 			return nil
 		}
 		return e("type mismatch for %s: expected table but found %T",
 			rv.Type().String(), mapping)
 	}
 	for key, datum := range tmap {
 		var f *field
 		fields := cachedTypeFields(rv.Type())
 		for i := range fields {
 			ff := &fields[i]
 			if ff.name == key {
 				f = ff
 				break
 			}
 			if f == nil && strings.EqualFold(ff.name, key) {
 				f = ff
 			}
 		}
 		if f != nil {
 			subv := rv
 			for _, i := range f.index {
 				subv = indirect(subv.Field(i))
 			}
 			if isUnifiable(subv) {
 				md.decoded[md.context.add(key).String()] = true
 				md.context = append(md.context, key)
 				if err := md.unify(datum, subv); err != nil {
 					return err
 				}
 				md.context = md.context[0 : len(md.context)-1]
 			} else if f.name != "" {
 				// Bad user! No soup for you!
 				return e("cannot write unexported field %s.%s",
 					rv.Type().String(), f.name)
 			}
 		}
 	}
 	return nil
 }
 func (md *MetaData) unifyMap(mapping interface{}, rv reflect.Value) error {
 	tmap, ok := mapping.(map[string]interface{})
 	if !ok {
 		if tmap == nil {
 			return nil
 		}
 		return badtype("map", mapping)
 	}
 	if rv.IsNil() {
 		rv.Set(reflect.MakeMap(rv.Type()))
 	}
 	for k, v := range tmap {
 		md.decoded[md.context.add(k).String()] = true
 		md.context = append(md.context, k)
 		rvkey := indirect(reflect.New(rv.Type().Key()))
 		rvval := reflect.Indirect(reflect.New(rv.Type().Elem()))
 		if err := md.unify(v, rvval); err != nil {
 			return err
 		}
 		md.context = md.context[0 : len(md.context)-1]
 		rvkey.SetString(k)
 		rv.SetMapIndex(rvkey, rvval)
 	}
 	return nil
 }
 func (md *MetaData) unifyArray(data interface{}, rv reflect.Value) error {
 	datav := reflect.ValueOf(data)
 	if datav.Kind() != reflect.Slice {
 		if !datav.IsValid() {
 			return nil
 		}
 		return badtype("slice", data)
 	}
 	sliceLen := datav.Len()
 	if sliceLen != rv.Len() {
 		return e("expected array length %d; got TOML array of length %d",
 			rv.Len(), sliceLen)
 	}
 	return md.unifySliceArray(datav, rv)
 }
 func (md *MetaData) unifySlice(data interface{}, rv reflect.Value) error {
 	datav := reflect.ValueOf(data)
 	if datav.Kind() != reflect.Slice {
 		if !datav.IsValid() {
 			return nil
 		}
 		return badtype("slice", data)
 	}
 	n := datav.Len()
 	if rv.IsNil() || rv.Cap() < n {
 		rv.Set(reflect.MakeSlice(rv.Type(), n, n))
 	}
 	rv.SetLen(n)
 	return md.unifySliceArray(datav, rv)
 }
 func (md *MetaData) unifySliceArray(data, rv reflect.Value) error {
 	sliceLen := data.Len()
 	for i := 0; i < sliceLen; i++ {
 		v := data.Index(i).Interface()
 		sliceval := indirect(rv.Index(i))
 		if err := md.unify(v, sliceval); err != nil {
 			return err
 		}
 	}
 	return nil
 }
 func (md *MetaData) unifyDatetime(data interface{}, rv reflect.Value) error {
 	if _, ok := data.(time.Time); ok {
 		rv.Set(reflect.ValueOf(data))
 		return nil
 	}
 	return badtype("time.Time", data)
 }
 func (md *MetaData) unifyString(data interface{}, rv reflect.Value) error {
 	if s, ok := data.(string); ok {
 		rv.SetString(s)
 		return nil
 	}
 	return badtype("string", data)
 }
 func (md *MetaData) unifyFloat64(data interface{}, rv reflect.Value) error {
 	if num, ok := data.(float64); ok {
 		switch rv.Kind() {
 		case reflect.Float32:
 			fallthrough
 		case reflect.Float64:
 			rv.SetFloat(num)
 		default:
 			panic("bug")
 		}
 		return nil
 	}
 	return badtype("float", data)
 }
 func (md *MetaData) unifyInt(data interface{}, rv reflect.Value) error {
 	if num, ok := data.(int64); ok {
 		if rv.Kind() >= reflect.Int && rv.Kind() <= reflect.Int64 {
 			switch rv.Kind() {
 			case reflect.Int, reflect.Int64:
 				// No bounds checking necessary.
 			case reflect.Int8:
 				if num < math.MinInt8 || num > math.MaxInt8 {
 					return e("value %d is out of range for int8", num)
 				}
 			case reflect.Int16:
 				if num < math.MinInt16 || num > math.MaxInt16 {
 					return e("value %d is out of range for int16", num)
 				}
 			case reflect.Int32:
 				if num < math.MinInt32 || num > math.MaxInt32 {
 					return e("value %d is out of range for int32", num)
 				}
 			}
 			rv.SetInt(num)
 		} else if rv.Kind() >= reflect.Uint && rv.Kind() <= reflect.Uint64 {
 			unum := uint64(num)
 			switch rv.Kind() {
 			case reflect.Uint, reflect.Uint64:
 				// No bounds checking necessary.
 			case reflect.Uint8:
 				if num < 0 || unum > math.MaxUint8 {
 					return e("value %d is out of range for uint8", num)
 				}
 			case reflect.Uint16:
 				if num < 0 || unum > math.MaxUint16 {
 					return e("value %d is out of range for uint16", num)
 				}
 			case reflect.Uint32:
 				if num < 0 || unum > math.MaxUint32 {
 					return e("value %d is out of range for uint32", num)
 				}
 			}
 			rv.SetUint(unum)
 		} else {
 			panic("unreachable")
 		}
 		return nil
 	}
 	return badtype("integer", data)
 }
 func (md *MetaData) unifyBool(data interface{}, rv reflect.Value) error {
 	if b, ok := data.(bool); ok {
 		rv.SetBool(b)
 		return nil
 	}
 	return badtype("boolean", data)
 }
 func (md *MetaData) unifyAnything(data interface{}, rv reflect.Value) error {
 	rv.Set(reflect.ValueOf(data))
 	return nil
 }
 func (md *MetaData) unifyText(data interface{}, v TextUnmarshaler) error {
 	var s string
 	switch sdata := data.(type) {
 	case TextMarshaler:
 		text, err := sdata.MarshalText()
 		if err != nil {
 			return err
 		}
 		s = string(text)
 	case fmt.Stringer:
 		s = sdata.String()
 	case string:
 		s = sdata
 	case bool:
 		s = fmt.Sprintf("%v", sdata)
 	case int64:
 		s = fmt.Sprintf("%d", sdata)
 	case float64:
 		s = fmt.Sprintf("%f", sdata)
 	default:
 		return badtype("primitive (string-like)", data)
 	}
 	if err := v.UnmarshalText([]byte(s)); err != nil {
 		return err
 	}
 	return nil
 }
 // rvalue returns a reflect.Value of `v`. All pointers are resolved.
 func rvalue(v interface{}) reflect.Value {
 	return indirect(reflect.ValueOf(v))
 }
 // indirect returns the value pointed to by a pointer.
 // Pointers are followed until the value is not a pointer.
 // New values are allocated for each nil pointer.
 //
 // An exception to this rule is if the value satisfies an interface of
 // interest to us (like encoding.TextUnmarshaler).
 func indirect(v reflect.Value) reflect.Value {
 	if v.Kind() != reflect.Ptr {
 		if v.CanSet() {
 			pv := v.Addr()
 			if _, ok := pv.Interface().(TextUnmarshaler); ok {
 				return pv
 			}
 		}
 		return v
 	}
 	if v.IsNil() {
 		v.Set(reflect.New(v.Type().Elem()))
 	}
 	return indirect(reflect.Indirect(v))
 }
 func isUnifiable(rv reflect.Value) bool {
 	if rv.CanSet() {
 		return true
 	}
 	if _, ok := rv.Interface().(TextUnmarshaler); ok {
 		return true
 	}
 	return false
 }
 func badtype(expected string, data interface{}) error {
 	return e("cannot load TOML value of type %T into a Go %s", data, expected)
 }
--- a/vendor/github.com/BurntSushi/toml/decode_meta.go
+++ b/vendor/github.com/BurntSushi/toml/decode_meta.go
@ -0,0 +1,121 @@
 package toml
 import "strings"
 // MetaData allows access to meta information about TOML data that may not
 // be inferrable via reflection. In particular, whether a key has been defined
 // and the TOML type of a key.
 type MetaData struct {
 	mapping map[string]interface{}
 	types   map[string]tomlType
 	keys    []Key
 	decoded map[string]bool
 	context Key // Used only during decoding.
 }
 // IsDefined returns true if the key given exists in the TOML data. The key
 // should be specified hierarchially. e.g.,
 //
 //	// access the TOML key 'a.b.c'
 //	IsDefined("a", "b", "c")
 //
 // IsDefined will return false if an empty key given. Keys are case sensitive.
 func (md *MetaData) IsDefined(key ...string) bool {
 	if len(key) == 0 {
 		return false
 	}
 	var hash map[string]interface{}
 	var ok bool
 	var hashOrVal interface{} = md.mapping
 	for _, k := range key {
 		if hash, ok = hashOrVal.(map[string]interface{}); !ok {
 			return false
 		}
 		if hashOrVal, ok = hash[k]; !ok {
 			return false
 		}
 	}
 	return true
 }
 // Type returns a string representation of the type of the key specified.
 //
 // Type will return the empty string if given an empty key or a key that
 // does not exist. Keys are case sensitive.
 func (md *MetaData) Type(key ...string) string {
 	fullkey := strings.Join(key, ".")
 	if typ, ok := md.types[fullkey]; ok {
 		return typ.typeString()
 	}
 	return ""
 }
 // Key is the type of any TOML key, including key groups. Use (MetaData).Keys
 // to get values of this type.
 type Key []string
 func (k Key) String() string {
 	return strings.Join(k, ".")
 }
 func (k Key) maybeQuotedAll() string {
 	var ss []string
 	for i := range k {
 		ss = append(ss, k.maybeQuoted(i))
 	}
 	return strings.Join(ss, ".")
 }
 func (k Key) maybeQuoted(i int) string {
 	quote := false
 	for _, c := range k[i] {
 		if !isBareKeyChar(c) {
 			quote = true
 			break
 		}
 	}
 	if quote {
 		return "\"" + strings.Replace(k[i], "\"", "\\\"", -1) + "\""
 	}
 	return k[i]
 }
 func (k Key) add(piece string) Key {
 	newKey := make(Key, len(k)+1)
 	copy(newKey, k)
 	newKey[len(k)] = piece
 	return newKey
 }
 // Keys returns a slice of every key in the TOML data, including key groups.
 // Each key is itself a slice, where the first element is the top of the
 // hierarchy and the last is the most specific.
 //
 // The list will have the same order as the keys appeared in the TOML data.
 //
 // All keys returned are non-empty.
 func (md *MetaData) Keys() []Key {
 	return md.keys
 }
 // Undecoded returns all keys that have not been decoded in the order in which
 // they appear in the original TOML document.
 //
 // This includes keys that haven't been decoded because of a Primitive value.
 // Once the Primitive value is decoded, the keys will be considered decoded.
 //
 // Also note that decoding into an empty interface will result in no decoding,
 // and so no keys will be considered decoded.
 //
 // In this sense, the Undecoded keys correspond to keys in the TOML document
 // that do not have a concrete type in your representation.
 func (md *MetaData) Undecoded() []Key {
 	undecoded := make([]Key, 0, len(md.keys))
 	for _, key := range md.keys {
 		if !md.decoded[key.String()] {
 			undecoded = append(undecoded, key)
 		}
 	}
 	return undecoded
 }
--- a/vendor/github.com/BurntSushi/toml/doc.go
+++ b/vendor/github.com/BurntSushi/toml/doc.go
@ -0,0 +1,27 @@
 /*
 Package toml provides facilities for decoding and encoding TOML configuration
 files via reflection. There is also support for delaying decoding with
 the Primitive type, and querying the set of keys in a TOML document with the
 MetaData type.
 The specification implemented: https://github.com/toml-lang/toml
 The sub-command github.com/BurntSushi/toml/cmd/tomlv can be used to verify
 whether a file is a valid TOML document. It can also be used to print the
 type of each key in a TOML document.
 Testing
 There are two important types of tests used for this package. The first is
 contained inside '*_test.go' files and uses the standard Go unit testing
 framework. These tests are primarily devoted to holistically testing the
 decoder and encoder.
 The second type of testing is used to verify the implementation's adherence
 to the TOML specification. These tests have been factored into their own
 project: https://github.com/BurntSushi/toml-test
 The reason the tests are in a separate project is so that they can be used by
 any implementation of TOML. Namely, it is language agnostic.
 */
 package toml
--- a/vendor/github.com/BurntSushi/toml/encode.go
+++ b/vendor/github.com/BurntSushi/toml/encode.go
@ -0,0 +1,568 @@
 package toml
 import (
 	"bufio"
 	"errors"
 	"fmt"
 	"io"
 	"reflect"
 	"sort"
 	"strconv"
 	"strings"
 	"time"
 )
 type tomlEncodeError struct{ error }
 var (
 	errArrayMixedElementTypes = errors.New(
 		"toml: cannot encode array with mixed element types")
 	errArrayNilElement = errors.New(
 		"toml: cannot encode array with nil element")
 	errNonString = errors.New(
 		"toml: cannot encode a map with non-string key type")
 	errAnonNonStruct = errors.New(
 		"toml: cannot encode an anonymous field that is not a struct")
 	errArrayNoTable = errors.New(
 		"toml: TOML array element cannot contain a table")
 	errNoKey = errors.New(
 		"toml: top-level values must be Go maps or structs")
 	errAnything = errors.New("") // used in testing
 )
 var quotedReplacer = strings.NewReplacer(
 	"\t", "\\t",
 	"\n", "\\n",
 	"\r", "\\r",
 	"\"", "\\\"",
 	"\\", "\\\\",
 )
 // Encoder controls the encoding of Go values to a TOML document to some
 // io.Writer.
 //
 // The indentation level can be controlled with the Indent field.
 type Encoder struct {
 	// A single indentation level. By default it is two spaces.
 	Indent string
 	// hasWritten is whether we have written any output to w yet.
 	hasWritten bool
 	w          *bufio.Writer
 }
 // NewEncoder returns a TOML encoder that encodes Go values to the io.Writer
 // given. By default, a single indentation level is 2 spaces.
 func NewEncoder(w io.Writer) *Encoder {
 	return &Encoder{
 		w:      bufio.NewWriter(w),
 		Indent: "  ",
 	}
 }
 // Encode writes a TOML representation of the Go value to the underlying
 // io.Writer. If the value given cannot be encoded to a valid TOML document,
 // then an error is returned.
 //
 // The mapping between Go values and TOML values should be precisely the same
 // as for the Decode* functions. Similarly, the TextMarshaler interface is
 // supported by encoding the resulting bytes as strings. (If you want to write
 // arbitrary binary data then you will need to use something like base64 since
 // TOML does not have any binary types.)
 //
 // When encoding TOML hashes (i.e., Go maps or structs), keys without any
 // sub-hashes are encoded first.
 //
 // If a Go map is encoded, then its keys are sorted alphabetically for
 // deterministic output. More control over this behavior may be provided if
 // there is demand for it.
 //
 // Encoding Go values without a corresponding TOML representation---like map
 // types with non-string keys---will cause an error to be returned. Similarly
 // for mixed arrays/slices, arrays/slices with nil elements, embedded
 // non-struct types and nested slices containing maps or structs.
 // (e.g., [][]map[string]string is not allowed but []map[string]string is OK
 // and so is []map[string][]string.)
 func (enc *Encoder) Encode(v interface{}) error {
 	rv := eindirect(reflect.ValueOf(v))
 	if err := enc.safeEncode(Key([]string{}), rv); err != nil {
 		return err
 	}
 	return enc.w.Flush()
 }
 func (enc *Encoder) safeEncode(key Key, rv reflect.Value) (err error) {
 	defer func() {
 		if r := recover(); r != nil {
 			if terr, ok := r.(tomlEncodeError); ok {
 				err = terr.error
 				return
 			}
 			panic(r)
 		}
 	}()
 	enc.encode(key, rv)
 	return nil
 }
 func (enc *Encoder) encode(key Key, rv reflect.Value) {
 	// Special case. Time needs to be in ISO8601 format.
 	// Special case. If we can marshal the type to text, then we used that.
 	// Basically, this prevents the encoder for handling these types as
 	// generic structs (or whatever the underlying type of a TextMarshaler is).
 	switch rv.Interface().(type) {
 	case time.Time, TextMarshaler:
 		enc.keyEqElement(key, rv)
 		return
 	}
 	k := rv.Kind()
 	switch k {
 	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
 		reflect.Int64,
 		reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32,
 		reflect.Uint64,
 		reflect.Float32, reflect.Float64, reflect.String, reflect.Bool:
 		enc.keyEqElement(key, rv)
 	case reflect.Array, reflect.Slice:
 		if typeEqual(tomlArrayHash, tomlTypeOfGo(rv)) {
 			enc.eArrayOfTables(key, rv)
 		} else {
 			enc.keyEqElement(key, rv)
 		}
 	case reflect.Interface:
 		if rv.IsNil() {
 			return
 		}
 		enc.encode(key, rv.Elem())
 	case reflect.Map:
 		if rv.IsNil() {
 			return
 		}
 		enc.eTable(key, rv)
 	case reflect.Ptr:
 		if rv.IsNil() {
 			return
 		}
 		enc.encode(key, rv.Elem())
 	case reflect.Struct:
 		enc.eTable(key, rv)
 	default:
 		panic(e("unsupported type for key '%s': %s", key, k))
 	}
 }
 // eElement encodes any value that can be an array element (primitives and
 // arrays).
 func (enc *Encoder) eElement(rv reflect.Value) {
 	switch v := rv.Interface().(type) {
 	case time.Time:
 		// Special case time.Time as a primitive. Has to come before
 		// TextMarshaler below because time.Time implements
 		// encoding.TextMarshaler, but we need to always use UTC.
 		enc.wf(v.UTC().Format("2006-01-02T15:04:05Z"))
 		return
 	case TextMarshaler:
 		// Special case. Use text marshaler if it's available for this value.
 		if s, err := v.MarshalText(); err != nil {
 			encPanic(err)
 		} else {
 			enc.writeQuoted(string(s))
 		}
 		return
 	}
 	switch rv.Kind() {
 	case reflect.Bool:
 		enc.wf(strconv.FormatBool(rv.Bool()))
 	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
 		reflect.Int64:
 		enc.wf(strconv.FormatInt(rv.Int(), 10))
 	case reflect.Uint, reflect.Uint8, reflect.Uint16,
 		reflect.Uint32, reflect.Uint64:
 		enc.wf(strconv.FormatUint(rv.Uint(), 10))
 	case reflect.Float32:
 		enc.wf(floatAddDecimal(strconv.FormatFloat(rv.Float(), 'f', -1, 32)))
 	case reflect.Float64:
 		enc.wf(floatAddDecimal(strconv.FormatFloat(rv.Float(), 'f', -1, 64)))
 	case reflect.Array, reflect.Slice:
 		enc.eArrayOrSliceElement(rv)
 	case reflect.Interface:
 		enc.eElement(rv.Elem())
 	case reflect.String:
 		enc.writeQuoted(rv.String())
 	default:
 		panic(e("unexpected primitive type: %s", rv.Kind()))
 	}
 }
 // By the TOML spec, all floats must have a decimal with at least one
 // number on either side.
 func floatAddDecimal(fstr string) string {
 	if !strings.Contains(fstr, ".") {
 		return fstr + ".0"
 	}
 	return fstr
 }
 func (enc *Encoder) writeQuoted(s string) {
 	enc.wf("\"%s\"", quotedReplacer.Replace(s))
 }
 func (enc *Encoder) eArrayOrSliceElement(rv reflect.Value) {
 	length := rv.Len()
 	enc.wf("[")
 	for i := 0; i < length; i++ {
 		elem := rv.Index(i)
 		enc.eElement(elem)
 		if i != length-1 {
 			enc.wf(", ")
 		}
 	}
 	enc.wf("]")
 }
 func (enc *Encoder) eArrayOfTables(key Key, rv reflect.Value) {
 	if len(key) == 0 {
 		encPanic(errNoKey)
 	}
 	for i := 0; i < rv.Len(); i++ {
 		trv := rv.Index(i)
 		if isNil(trv) {
 			continue
 		}
 		panicIfInvalidKey(key)
 		enc.newline()
 		enc.wf("%s[[%s]]", enc.indentStr(key), key.maybeQuotedAll())
 		enc.newline()
 		enc.eMapOrStruct(key, trv)
 	}
 }
 func (enc *Encoder) eTable(key Key, rv reflect.Value) {
 	panicIfInvalidKey(key)
 	if len(key) == 1 {
 		// Output an extra newline between top-level tables.
 		// (The newline isn't written if nothing else has been written though.)
 		enc.newline()
 	}
 	if len(key) > 0 {
 		enc.wf("%s[%s]", enc.indentStr(key), key.maybeQuotedAll())
 		enc.newline()
 	}
 	enc.eMapOrStruct(key, rv)
 }
 func (enc *Encoder) eMapOrStruct(key Key, rv reflect.Value) {
 	switch rv := eindirect(rv); rv.Kind() {
 	case reflect.Map:
 		enc.eMap(key, rv)
 	case reflect.Struct:
 		enc.eStruct(key, rv)
 	default:
 		panic("eTable: unhandled reflect.Value Kind: " + rv.Kind().String())
 	}
 }
 func (enc *Encoder) eMap(key Key, rv reflect.Value) {
 	rt := rv.Type()
 	if rt.Key().Kind() != reflect.String {
 		encPanic(errNonString)
 	}
 	// Sort keys so that we have deterministic output. And write keys directly
 	// underneath this key first, before writing sub-structs or sub-maps.
 	var mapKeysDirect, mapKeysSub []string
 	for _, mapKey := range rv.MapKeys() {
 		k := mapKey.String()
 		if typeIsHash(tomlTypeOfGo(rv.MapIndex(mapKey))) {
 			mapKeysSub = append(mapKeysSub, k)
 		} else {
 			mapKeysDirect = append(mapKeysDirect, k)
 		}
 	}
 	var writeMapKeys = func(mapKeys []string) {
 		sort.Strings(mapKeys)
 		for _, mapKey := range mapKeys {
 			mrv := rv.MapIndex(reflect.ValueOf(mapKey))
 			if isNil(mrv) {
 				// Don't write anything for nil fields.
 				continue
 			}
 			enc.encode(key.add(mapKey), mrv)
 		}
 	}
 	writeMapKeys(mapKeysDirect)
 	writeMapKeys(mapKeysSub)
 }
 func (enc *Encoder) eStruct(key Key, rv reflect.Value) {
 	// Write keys for fields directly under this key first, because if we write
 	// a field that creates a new table, then all keys under it will be in that
 	// table (not the one we're writing here).
 	rt := rv.Type()
 	var fieldsDirect, fieldsSub [][]int
 	var addFields func(rt reflect.Type, rv reflect.Value, start []int)
 	addFields = func(rt reflect.Type, rv reflect.Value, start []int) {
 		for i := 0; i < rt.NumField(); i++ {
 			f := rt.Field(i)
 			// skip unexported fields
 			if f.PkgPath != "" && !f.Anonymous {
 				continue
 			}
 			frv := rv.Field(i)
 			if f.Anonymous {
 				t := f.Type
 				switch t.Kind() {
 				case reflect.Struct:
 					// Treat anonymous struct fields with
 					// tag names as though they are not
 					// anonymous, like encoding/json does.
 					if getOptions(f.Tag).name == "" {
 						addFields(t, frv, f.Index)
 						continue
 					}
 				case reflect.Ptr:
 					if t.Elem().Kind() == reflect.Struct &&
 						getOptions(f.Tag).name == "" {
 						if !frv.IsNil() {
 							addFields(t.Elem(), frv.Elem(), f.Index)
 						}
 						continue
 					}
 					// Fall through to the normal field encoding logic below
 					// for non-struct anonymous fields.
 				}
 			}
 			if typeIsHash(tomlTypeOfGo(frv)) {
 				fieldsSub = append(fieldsSub, append(start, f.Index...))
 			} else {
 				fieldsDirect = append(fieldsDirect, append(start, f.Index...))
 			}
 		}
 	}
 	addFields(rt, rv, nil)
 	var writeFields = func(fields [][]int) {
 		for _, fieldIndex := range fields {
 			sft := rt.FieldByIndex(fieldIndex)
 			sf := rv.FieldByIndex(fieldIndex)
 			if isNil(sf) {
 				// Don't write anything for nil fields.
 				continue
 			}
 			opts := getOptions(sft.Tag)
 			if opts.skip {
 				continue
 			}
 			keyName := sft.Name
 			if opts.name != "" {
 				keyName = opts.name
 			}
 			if opts.omitempty && isEmpty(sf) {
 				continue
 			}
 			if opts.omitzero && isZero(sf) {
 				continue
 			}
 			enc.encode(key.add(keyName), sf)
 		}
 	}
 	writeFields(fieldsDirect)
 	writeFields(fieldsSub)
 }
 // tomlTypeName returns the TOML type name of the Go value's type. It is
 // used to determine whether the types of array elements are mixed (which is
 // forbidden). If the Go value is nil, then it is illegal for it to be an array
 // element, and valueIsNil is returned as true.
 // Returns the TOML type of a Go value. The type may be `nil`, which means
 // no concrete TOML type could be found.
 func tomlTypeOfGo(rv reflect.Value) tomlType {
 	if isNil(rv) || !rv.IsValid() {
 		return nil
 	}
 	switch rv.Kind() {
 	case reflect.Bool:
 		return tomlBool
 	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32,
 		reflect.Int64,
 		reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32,
 		reflect.Uint64:
 		return tomlInteger
 	case reflect.Float32, reflect.Float64:
 		return tomlFloat
 	case reflect.Array, reflect.Slice:
 		if typeEqual(tomlHash, tomlArrayType(rv)) {
 			return tomlArrayHash
 		}
 		return tomlArray
 	case reflect.Ptr, reflect.Interface:
 		return tomlTypeOfGo(rv.Elem())
 	case reflect.String:
 		return tomlString
 	case reflect.Map:
 		return tomlHash
 	case reflect.Struct:
 		switch rv.Interface().(type) {
 		case time.Time:
 			return tomlDatetime
 		case TextMarshaler:
 			return tomlString
 		default:
 			return tomlHash
 		}
 	default:
 		panic("unexpected reflect.Kind: " + rv.Kind().String())
 	}
 }
 // tomlArrayType returns the element type of a TOML array. The type returned
 // may be nil if it cannot be determined (e.g., a nil slice or a zero length
 // slize). This function may also panic if it finds a type that cannot be
 // expressed in TOML (such as nil elements, heterogeneous arrays or directly
 // nested arrays of tables).
 func tomlArrayType(rv reflect.Value) tomlType {
 	if isNil(rv) || !rv.IsValid() || rv.Len() == 0 {
 		return nil
 	}
 	firstType := tomlTypeOfGo(rv.Index(0))
 	if firstType == nil {
 		encPanic(errArrayNilElement)
 	}
 	rvlen := rv.Len()
 	for i := 1; i < rvlen; i++ {
 		elem := rv.Index(i)
 		switch elemType := tomlTypeOfGo(elem); {
 		case elemType == nil:
 			encPanic(errArrayNilElement)
 		case !typeEqual(firstType, elemType):
 			encPanic(errArrayMixedElementTypes)
 		}
 	}
 	// If we have a nested array, then we must make sure that the nested
 	// array contains ONLY primitives.
 	// This checks arbitrarily nested arrays.
 	if typeEqual(firstType, tomlArray) || typeEqual(firstType, tomlArrayHash) {
 		nest := tomlArrayType(eindirect(rv.Index(0)))
 		if typeEqual(nest, tomlHash) || typeEqual(nest, tomlArrayHash) {
 			encPanic(errArrayNoTable)
 		}
 	}
 	return firstType
 }
 type tagOptions struct {
 	skip      bool // "-"
 	name      string
 	omitempty bool
 	omitzero  bool
 }
 func getOptions(tag reflect.StructTag) tagOptions {
 	t := tag.Get("toml")
 	if t == "-" {
 		return tagOptions{skip: true}
 	}
 	var opts tagOptions
 	parts := strings.Split(t, ",")
 	opts.name = parts[0]
 	for _, s := range parts[1:] {
 		switch s {
 		case "omitempty":
 			opts.omitempty = true
 		case "omitzero":
 			opts.omitzero = true
 		}
 	}
 	return opts
 }
 func isZero(rv reflect.Value) bool {
 	switch rv.Kind() {
 	case reflect.Int, reflect.Int8, reflect.Int16, reflect.Int32, reflect.Int64:
 		return rv.Int() == 0
 	case reflect.Uint, reflect.Uint8, reflect.Uint16, reflect.Uint32, reflect.Uint64:
 		return rv.Uint() == 0
 	case reflect.Float32, reflect.Float64:
 		return rv.Float() == 0.0
 	}
 	return false
 }
 func isEmpty(rv reflect.Value) bool {
 	switch rv.Kind() {
 	case reflect.Array, reflect.Slice, reflect.Map, reflect.String:
 		return rv.Len() == 0
 	case reflect.Bool:
 		return !rv.Bool()
 	}
 	return false
 }
 func (enc *Encoder) newline() {
 	if enc.hasWritten {
 		enc.wf("\n")
 	}
 }
 func (enc *Encoder) keyEqElement(key Key, val reflect.Value) {
 	if len(key) == 0 {
 		encPanic(errNoKey)
 	}
 	panicIfInvalidKey(key)
 	enc.wf("%s%s = ", enc.indentStr(key), key.maybeQuoted(len(key)-1))
 	enc.eElement(val)
 	enc.newline()
 }
 func (enc *Encoder) wf(format string, v ...interface{}) {
 	if _, err := fmt.Fprintf(enc.w, format, v...); err != nil {
 		encPanic(err)
 	}
 	enc.hasWritten = true
 }
 func (enc *Encoder) indentStr(key Key) string {
 	return strings.Repeat(enc.Indent, len(key)-1)
 }
 func encPanic(err error) {
 	panic(tomlEncodeError{err})
 }
 func eindirect(v reflect.Value) reflect.Value {
 	switch v.Kind() {
 	case reflect.Ptr, reflect.Interface:
 		return eindirect(v.Elem())
 	default:
 		return v
 	}
 }
 func isNil(rv reflect.Value) bool {
 	switch rv.Kind() {
 	case reflect.Interface, reflect.Map, reflect.Ptr, reflect.Slice:
 		return rv.IsNil()
 	default:
 		return false
 	}
 }
 func panicIfInvalidKey(key Key) {
 	for _, k := range key {
 		if len(k) == 0 {
 			encPanic(e("Key '%s' is not a valid table name. Key names "+
 				"cannot be empty.", key.maybeQuotedAll()))
 		}
 	}
 }
 func isValidKeyName(s string) bool {
 	return len(s) != 0
 }
--- a/vendor/github.com/BurntSushi/toml/encoding_types.go
+++ b/vendor/github.com/BurntSushi/toml/encoding_types.go
@ -0,0 +1,19 @@
 // +build go1.2
 package toml
 // In order to support Go 1.1, we define our own TextMarshaler and
 // TextUnmarshaler types. For Go 1.2+, we just alias them with the
 // standard library interfaces.
 import (
 	"encoding"
 )
 // TextMarshaler is a synonym for encoding.TextMarshaler. It is defined here
 // so that Go 1.1 can be supported.
 type TextMarshaler encoding.TextMarshaler
 // TextUnmarshaler is a synonym for encoding.TextUnmarshaler. It is defined
 // here so that Go 1.1 can be supported.
 type TextUnmarshaler encoding.TextUnmarshaler
--- a/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
+++ b/vendor/github.com/BurntSushi/toml/encoding_types_1.1.go
@ -0,0 +1,18 @@
 // +build !go1.2
 package toml
 // These interfaces were introduced in Go 1.2, so we add them manually when
 // compiling for Go 1.1.
 // TextMarshaler is a synonym for encoding.TextMarshaler. It is defined here
 // so that Go 1.1 can be supported.
 type TextMarshaler interface {
 	MarshalText() (text []byte, err error)
 }
 // TextUnmarshaler is a synonym for encoding.TextUnmarshaler. It is defined
 // here so that Go 1.1 can be supported.
 type TextUnmarshaler interface {
 	UnmarshalText(text []byte) error
 }
--- a/vendor/github.com/BurntSushi/toml/lex.go
+++ b/vendor/github.com/BurntSushi/toml/lex.go
@ -0,0 +1,953 @@
 package toml
 import (
 	"fmt"
 	"strings"
 	"unicode"
 	"unicode/utf8"
 )
 type itemType int
 const (
 	itemError itemType = iota
 	itemNIL            // used in the parser to indicate no type
 	itemEOF
 	itemText
 	itemString
 	itemRawString
 	itemMultilineString
 	itemRawMultilineString
 	itemBool
 	itemInteger
 	itemFloat
 	itemDatetime
 	itemArray // the start of an array
 	itemArrayEnd
 	itemTableStart
 	itemTableEnd
 	itemArrayTableStart
 	itemArrayTableEnd
 	itemKeyStart
 	itemCommentStart
 	itemInlineTableStart
 	itemInlineTableEnd
 )
 const (
 	eof              = 0
 	comma            = ','
 	tableStart       = '['
 	tableEnd         = ']'
 	arrayTableStart  = '['
 	arrayTableEnd    = ']'
 	tableSep         = '.'
 	keySep           = '='
 	arrayStart       = '['
 	arrayEnd         = ']'
 	commentStart     = '#'
 	stringStart      = '"'
 	stringEnd        = '"'
 	rawStringStart   = '\''
 	rawStringEnd     = '\''
 	inlineTableStart = '{'
 	inlineTableEnd   = '}'
 )
 type stateFn func(lx *lexer) stateFn
 type lexer struct {
 	input string
 	start int
 	pos   int
 	line  int
 	state stateFn
 	items chan item
 	// Allow for backing up up to three runes.
 	// This is necessary because TOML contains 3-rune tokens (""" and ''').
 	prevWidths [3]int
 	nprev      int // how many of prevWidths are in use
 	// If we emit an eof, we can still back up, but it is not OK to call
 	// next again.
 	atEOF bool
 	// A stack of state functions used to maintain context.
 	// The idea is to reuse parts of the state machine in various places.
 	// For example, values can appear at the top level or within arbitrarily
 	// nested arrays. The last state on the stack is used after a value has
 	// been lexed. Similarly for comments.
 	stack []stateFn
 }
 type item struct {
 	typ  itemType
 	val  string
 	line int
 }
 func (lx *lexer) nextItem() item {
 	for {
 		select {
 		case item := <-lx.items:
 			return item
 		default:
 			lx.state = lx.state(lx)
 		}
 	}
 }
 func lex(input string) *lexer {
 	lx := &lexer{
 		input: input,
 		state: lexTop,
 		line:  1,
 		items: make(chan item, 10),
 		stack: make([]stateFn, 0, 10),
 	}
 	return lx
 }
 func (lx *lexer) push(state stateFn) {
 	lx.stack = append(lx.stack, state)
 }
 func (lx *lexer) pop() stateFn {
 	if len(lx.stack) == 0 {
 		return lx.errorf("BUG in lexer: no states to pop")
 	}
 	last := lx.stack[len(lx.stack)-1]
 	lx.stack = lx.stack[0 : len(lx.stack)-1]
 	return last
 }
 func (lx *lexer) current() string {
 	return lx.input[lx.start:lx.pos]
 }
 func (lx *lexer) emit(typ itemType) {
 	lx.items <- item{typ, lx.current(), lx.line}
 	lx.start = lx.pos
 }
 func (lx *lexer) emitTrim(typ itemType) {
 	lx.items <- item{typ, strings.TrimSpace(lx.current()), lx.line}
 	lx.start = lx.pos
 }
 func (lx *lexer) next() (r rune) {
 	if lx.atEOF {
 		panic("next called after EOF")
 	}
 	if lx.pos >= len(lx.input) {
 		lx.atEOF = true
 		return eof
 	}
 	if lx.input[lx.pos] == '\n' {
 		lx.line++
 	}
 	lx.prevWidths[2] = lx.prevWidths[1]
 	lx.prevWidths[1] = lx.prevWidths[0]
 	if lx.nprev < 3 {
 		lx.nprev++
 	}
 	r, w := utf8.DecodeRuneInString(lx.input[lx.pos:])
 	lx.prevWidths[0] = w
 	lx.pos += w
 	return r
 }
 // ignore skips over the pending input before this point.
 func (lx *lexer) ignore() {
 	lx.start = lx.pos
 }
 // backup steps back one rune. Can be called only twice between calls to next.
 func (lx *lexer) backup() {
 	if lx.atEOF {
 		lx.atEOF = false
 		return
 	}
 	if lx.nprev < 1 {
 		panic("backed up too far")
 	}
 	w := lx.prevWidths[0]
 	lx.prevWidths[0] = lx.prevWidths[1]
 	lx.prevWidths[1] = lx.prevWidths[2]
 	lx.nprev--
 	lx.pos -= w
 	if lx.pos < len(lx.input) && lx.input[lx.pos] == '\n' {
 		lx.line--
 	}
 }
 // accept consumes the next rune if it's equal to `valid`.
 func (lx *lexer) accept(valid rune) bool {
 	if lx.next() == valid {
 		return true
 	}
 	lx.backup()
 	return false
 }
 // peek returns but does not consume the next rune in the input.
 func (lx *lexer) peek() rune {
 	r := lx.next()
 	lx.backup()
 	return r
 }
 // skip ignores all input that matches the given predicate.
 func (lx *lexer) skip(pred func(rune) bool) {
 	for {
 		r := lx.next()
 		if pred(r) {
 			continue
 		}
 		lx.backup()
 		lx.ignore()
 		return
 	}
 }
 // errorf stops all lexing by emitting an error and returning `nil`.
 // Note that any value that is a character is escaped if it's a special
 // character (newlines, tabs, etc.).
 func (lx *lexer) errorf(format string, values ...interface{}) stateFn {
 	lx.items <- item{
 		itemError,
 		fmt.Sprintf(format, values...),
 		lx.line,
 	}
 	return nil
 }
 // lexTop consumes elements at the top level of TOML data.
 func lexTop(lx *lexer) stateFn {
 	r := lx.next()
 	if isWhitespace(r) || isNL(r) {
 		return lexSkip(lx, lexTop)
 	}
 	switch r {
 	case commentStart:
 		lx.push(lexTop)
 		return lexCommentStart
 	case tableStart:
 		return lexTableStart
 	case eof:
 		if lx.pos > lx.start {
 			return lx.errorf("unexpected EOF")
 		}
 		lx.emit(itemEOF)
 		return nil
 	}
 	// At this point, the only valid item can be a key, so we back up
 	// and let the key lexer do the rest.
 	lx.backup()
 	lx.push(lexTopEnd)
 	return lexKeyStart
 }
 // lexTopEnd is entered whenever a top-level item has been consumed. (A value
 // or a table.) It must see only whitespace, and will turn back to lexTop
 // upon a newline. If it sees EOF, it will quit the lexer successfully.
 func lexTopEnd(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case r == commentStart:
 		// a comment will read to a newline for us.
 		lx.push(lexTop)
 		return lexCommentStart
 	case isWhitespace(r):
 		return lexTopEnd
 	case isNL(r):
 		lx.ignore()
 		return lexTop
 	case r == eof:
 		lx.emit(itemEOF)
 		return nil
 	}
 	return lx.errorf("expected a top-level item to end with a newline, "+
 		"comment, or EOF, but got %q instead", r)
 }
 // lexTable lexes the beginning of a table. Namely, it makes sure that
 // it starts with a character other than '.' and ']'.
 // It assumes that '[' has already been consumed.
 // It also handles the case that this is an item in an array of tables.
 // e.g., '[[name]]'.
 func lexTableStart(lx *lexer) stateFn {
 	if lx.peek() == arrayTableStart {
 		lx.next()
 		lx.emit(itemArrayTableStart)
 		lx.push(lexArrayTableEnd)
 	} else {
 		lx.emit(itemTableStart)
 		lx.push(lexTableEnd)
 	}
 	return lexTableNameStart
 }
 func lexTableEnd(lx *lexer) stateFn {
 	lx.emit(itemTableEnd)
 	return lexTopEnd
 }
 func lexArrayTableEnd(lx *lexer) stateFn {
 	if r := lx.next(); r != arrayTableEnd {
 		return lx.errorf("expected end of table array name delimiter %q, "+
 			"but got %q instead", arrayTableEnd, r)
 	}
 	lx.emit(itemArrayTableEnd)
 	return lexTopEnd
 }
 func lexTableNameStart(lx *lexer) stateFn {
 	lx.skip(isWhitespace)
 	switch r := lx.peek(); {
 	case r == tableEnd || r == eof:
 		return lx.errorf("unexpected end of table name " +
 			"(table names cannot be empty)")
 	case r == tableSep:
 		return lx.errorf("unexpected table separator " +
 			"(table names cannot be empty)")
 	case r == stringStart || r == rawStringStart:
 		lx.ignore()
 		lx.push(lexTableNameEnd)
 		return lexValue // reuse string lexing
 	default:
 		return lexBareTableName
 	}
 }
 // lexBareTableName lexes the name of a table. It assumes that at least one
 // valid character for the table has already been read.
 func lexBareTableName(lx *lexer) stateFn {
 	r := lx.next()
 	if isBareKeyChar(r) {
 		return lexBareTableName
 	}
 	lx.backup()
 	lx.emit(itemText)
 	return lexTableNameEnd
 }
 // lexTableNameEnd reads the end of a piece of a table name, optionally
 // consuming whitespace.
 func lexTableNameEnd(lx *lexer) stateFn {
 	lx.skip(isWhitespace)
 	switch r := lx.next(); {
 	case isWhitespace(r):
 		return lexTableNameEnd
 	case r == tableSep:
 		lx.ignore()
 		return lexTableNameStart
 	case r == tableEnd:
 		return lx.pop()
 	default:
 		return lx.errorf("expected '.' or ']' to end table name, "+
 			"but got %q instead", r)
 	}
 }
 // lexKeyStart consumes a key name up until the first non-whitespace character.
 // lexKeyStart will ignore whitespace.
 func lexKeyStart(lx *lexer) stateFn {
 	r := lx.peek()
 	switch {
 	case r == keySep:
 		return lx.errorf("unexpected key separator %q", keySep)
 	case isWhitespace(r) || isNL(r):
 		lx.next()
 		return lexSkip(lx, lexKeyStart)
 	case r == stringStart || r == rawStringStart:
 		lx.ignore()
 		lx.emit(itemKeyStart)
 		lx.push(lexKeyEnd)
 		return lexValue // reuse string lexing
 	default:
 		lx.ignore()
 		lx.emit(itemKeyStart)
 		return lexBareKey
 	}
 }
 // lexBareKey consumes the text of a bare key. Assumes that the first character
 // (which is not whitespace) has not yet been consumed.
 func lexBareKey(lx *lexer) stateFn {
 	switch r := lx.next(); {
 	case isBareKeyChar(r):
 		return lexBareKey
 	case isWhitespace(r):
 		lx.backup()
 		lx.emit(itemText)
 		return lexKeyEnd
 	case r == keySep:
 		lx.backup()
 		lx.emit(itemText)
 		return lexKeyEnd
 	default:
 		return lx.errorf("bare keys cannot contain %q", r)
 	}
 }
 // lexKeyEnd consumes the end of a key and trims whitespace (up to the key
 // separator).
 func lexKeyEnd(lx *lexer) stateFn {
 	switch r := lx.next(); {
 	case r == keySep:
 		return lexSkip(lx, lexValue)
 	case isWhitespace(r):
 		return lexSkip(lx, lexKeyEnd)
 	default:
 		return lx.errorf("expected key separator %q, but got %q instead",
 			keySep, r)
 	}
 }
 // lexValue starts the consumption of a value anywhere a value is expected.
 // lexValue will ignore whitespace.
 // After a value is lexed, the last state on the next is popped and returned.
 func lexValue(lx *lexer) stateFn {
 	// We allow whitespace to precede a value, but NOT newlines.
 	// In array syntax, the array states are responsible for ignoring newlines.
 	r := lx.next()
 	switch {
 	case isWhitespace(r):
 		return lexSkip(lx, lexValue)
 	case isDigit(r):
 		lx.backup() // avoid an extra state and use the same as above
 		return lexNumberOrDateStart
 	}
 	switch r {
 	case arrayStart:
 		lx.ignore()
 		lx.emit(itemArray)
 		return lexArrayValue
 	case inlineTableStart:
 		lx.ignore()
 		lx.emit(itemInlineTableStart)
 		return lexInlineTableValue
 	case stringStart:
 		if lx.accept(stringStart) {
 			if lx.accept(stringStart) {
 				lx.ignore() // Ignore """
 				return lexMultilineString
 			}
 			lx.backup()
 		}
 		lx.ignore() // ignore the '"'
 		return lexString
 	case rawStringStart:
 		if lx.accept(rawStringStart) {
 			if lx.accept(rawStringStart) {
 				lx.ignore() // Ignore """
 				return lexMultilineRawString
 			}
 			lx.backup()
 		}
 		lx.ignore() // ignore the "'"
 		return lexRawString
 	case '+', '-':
 		return lexNumberStart
 	case '.': // special error case, be kind to users
 		return lx.errorf("floats must start with a digit, not '.'")
 	}
 	if unicode.IsLetter(r) {
 		// Be permissive here; lexBool will give a nice error if the
 		// user wrote something like
 		//   x = foo
 		// (i.e. not 'true' or 'false' but is something else word-like.)
 		lx.backup()
 		return lexBool
 	}
 	return lx.errorf("expected value but found %q instead", r)
 }
 // lexArrayValue consumes one value in an array. It assumes that '[' or ','
 // have already been consumed. All whitespace and newlines are ignored.
 func lexArrayValue(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case isWhitespace(r) || isNL(r):
 		return lexSkip(lx, lexArrayValue)
 	case r == commentStart:
 		lx.push(lexArrayValue)
 		return lexCommentStart
 	case r == comma:
 		return lx.errorf("unexpected comma")
 	case r == arrayEnd:
 		// NOTE(caleb): The spec isn't clear about whether you can have
 		// a trailing comma or not, so we'll allow it.
 		return lexArrayEnd
 	}
 	lx.backup()
 	lx.push(lexArrayValueEnd)
 	return lexValue
 }
 // lexArrayValueEnd consumes everything between the end of an array value and
 // the next value (or the end of the array): it ignores whitespace and newlines
 // and expects either a ',' or a ']'.
 func lexArrayValueEnd(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case isWhitespace(r) || isNL(r):
 		return lexSkip(lx, lexArrayValueEnd)
 	case r == commentStart:
 		lx.push(lexArrayValueEnd)
 		return lexCommentStart
 	case r == comma:
 		lx.ignore()
 		return lexArrayValue // move on to the next value
 	case r == arrayEnd:
 		return lexArrayEnd
 	}
 	return lx.errorf(
 		"expected a comma or array terminator %q, but got %q instead",
 		arrayEnd, r,
 	)
 }
 // lexArrayEnd finishes the lexing of an array.
 // It assumes that a ']' has just been consumed.
 func lexArrayEnd(lx *lexer) stateFn {
 	lx.ignore()
 	lx.emit(itemArrayEnd)
 	return lx.pop()
 }
 // lexInlineTableValue consumes one key/value pair in an inline table.
 // It assumes that '{' or ',' have already been consumed. Whitespace is ignored.
 func lexInlineTableValue(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case isWhitespace(r):
 		return lexSkip(lx, lexInlineTableValue)
 	case isNL(r):
 		return lx.errorf("newlines not allowed within inline tables")
 	case r == commentStart:
 		lx.push(lexInlineTableValue)
 		return lexCommentStart
 	case r == comma:
 		return lx.errorf("unexpected comma")
 	case r == inlineTableEnd:
 		return lexInlineTableEnd
 	}
 	lx.backup()
 	lx.push(lexInlineTableValueEnd)
 	return lexKeyStart
 }
 // lexInlineTableValueEnd consumes everything between the end of an inline table
 // key/value pair and the next pair (or the end of the table):
 // it ignores whitespace and expects either a ',' or a '}'.
 func lexInlineTableValueEnd(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case isWhitespace(r):
 		return lexSkip(lx, lexInlineTableValueEnd)
 	case isNL(r):
 		return lx.errorf("newlines not allowed within inline tables")
 	case r == commentStart:
 		lx.push(lexInlineTableValueEnd)
 		return lexCommentStart
 	case r == comma:
 		lx.ignore()
 		return lexInlineTableValue
 	case r == inlineTableEnd:
 		return lexInlineTableEnd
 	}
 	return lx.errorf("expected a comma or an inline table terminator %q, "+
 		"but got %q instead", inlineTableEnd, r)
 }
 // lexInlineTableEnd finishes the lexing of an inline table.
 // It assumes that a '}' has just been consumed.
 func lexInlineTableEnd(lx *lexer) stateFn {
 	lx.ignore()
 	lx.emit(itemInlineTableEnd)
 	return lx.pop()
 }
 // lexString consumes the inner contents of a string. It assumes that the
 // beginning '"' has already been consumed and ignored.
 func lexString(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case r == eof:
 		return lx.errorf("unexpected EOF")
 	case isNL(r):
 		return lx.errorf("strings cannot contain newlines")
 	case r == '\\':
 		lx.push(lexString)
 		return lexStringEscape
 	case r == stringEnd:
 		lx.backup()
 		lx.emit(itemString)
 		lx.next()
 		lx.ignore()
 		return lx.pop()
 	}
 	return lexString
 }
 // lexMultilineString consumes the inner contents of a string. It assumes that
 // the beginning '"""' has already been consumed and ignored.
 func lexMultilineString(lx *lexer) stateFn {
 	switch lx.next() {
 	case eof:
 		return lx.errorf("unexpected EOF")
 	case '\\':
 		return lexMultilineStringEscape
 	case stringEnd:
 		if lx.accept(stringEnd) {
 			if lx.accept(stringEnd) {
 				lx.backup()
 				lx.backup()
 				lx.backup()
 				lx.emit(itemMultilineString)
 				lx.next()
 				lx.next()
 				lx.next()
 				lx.ignore()
 				return lx.pop()
 			}
 			lx.backup()
 		}
 	}
 	return lexMultilineString
 }
 // lexRawString consumes a raw string. Nothing can be escaped in such a string.
 // It assumes that the beginning "'" has already been consumed and ignored.
 func lexRawString(lx *lexer) stateFn {
 	r := lx.next()
 	switch {
 	case r == eof:
 		return lx.errorf("unexpected EOF")
 	case isNL(r):
 		return lx.errorf("strings cannot contain newlines")
 	case r == rawStringEnd:
 		lx.backup()
 		lx.emit(itemRawString)
 		lx.next()
 		lx.ignore()
 		return lx.pop()
 	}
 	return lexRawString
 }
 // lexMultilineRawString consumes a raw string. Nothing can be escaped in such
 // a string. It assumes that the beginning "'''" has already been consumed and
 // ignored.
 func lexMultilineRawString(lx *lexer) stateFn {
 	switch lx.next() {
 	case eof:
 		return lx.errorf("unexpected EOF")
 	case rawStringEnd:
 		if lx.accept(rawStringEnd) {
 			if lx.accept(rawStringEnd) {
 				lx.backup()
 				lx.backup()
 				lx.backup()
 				lx.emit(itemRawMultilineString)
 				lx.next()
 				lx.next()
 				lx.next()
 				lx.ignore()
 				return lx.pop()
 			}
 			lx.backup()
 		}
 	}
 	return lexMultilineRawString
 }
 // lexMultilineStringEscape consumes an escaped character. It assumes that the
 // preceding '\\' has already been consumed.
 func lexMultilineStringEscape(lx *lexer) stateFn {
 	// Handle the special case first:
 	if isNL(lx.next()) {
 		return lexMultilineString
 	}
 	lx.backup()
 	lx.push(lexMultilineString)
 	return lexStringEscape(lx)
 }
 func lexStringEscape(lx *lexer) stateFn {
 	r := lx.next()
 	switch r {
 	case 'b':
 		fallthrough
 	case 't':
 		fallthrough
 	case 'n':
 		fallthrough
 	case 'f':
 		fallthrough
 	case 'r':
 		fallthrough
 	case '"':
 		fallthrough
 	case '\\':
 		return lx.pop()
 	case 'u':
 		return lexShortUnicodeEscape
 	case 'U':
 		return lexLongUnicodeEscape
 	}
 	return lx.errorf("invalid escape character %q; only the following "+
 		"escape characters are allowed: "+
 		`\b, \t, \n, \f, \r, \", \\, \uXXXX, and \UXXXXXXXX`, r)
 }
 func lexShortUnicodeEscape(lx *lexer) stateFn {
 	var r rune
 	for i := 0; i < 4; i++ {
 		r = lx.next()
 		if !isHexadecimal(r) {
 			return lx.errorf(`expected four hexadecimal digits after '\u', `+
 				"but got %q instead", lx.current())
 		}
 	}
 	return lx.pop()
 }
 func lexLongUnicodeEscape(lx *lexer) stateFn {
 	var r rune
 	for i := 0; i < 8; i++ {
 		r = lx.next()
 		if !isHexadecimal(r) {
 			return lx.errorf(`expected eight hexadecimal digits after '\U', `+
 				"but got %q instead", lx.current())
 		}
 	}
 	return lx.pop()
 }
 // lexNumberOrDateStart consumes either an integer, a float, or datetime.
 func lexNumberOrDateStart(lx *lexer) stateFn {
 	r := lx.next()
 	if isDigit(r) {
 		return lexNumberOrDate
 	}
 	switch r {
 	case '_':
 		return lexNumber
 	case 'e', 'E':
 		return lexFloat
 	case '.':
 		return lx.errorf("floats must start with a digit, not '.'")
 	}
 	return lx.errorf("expected a digit but got %q", r)
 }
 // lexNumberOrDate consumes either an integer, float or datetime.
 func lexNumberOrDate(lx *lexer) stateFn {
 	r := lx.next()
 	if isDigit(r) {
 		return lexNumberOrDate
 	}
 	switch r {
 	case '-':
 		return lexDatetime
 	case '_':
 		return lexNumber
 	case '.', 'e', 'E':
 		return lexFloat
 	}
 	lx.backup()
 	lx.emit(itemInteger)
 	return lx.pop()
 }
 // lexDatetime consumes a Datetime, to a first approximation.
 // The parser validates that it matches one of the accepted formats.
 func lexDatetime(lx *lexer) stateFn {
 	r := lx.next()
 	if isDigit(r) {
 		return lexDatetime
 	}
 	switch r {
 	case '-', 'T', ':', '.', 'Z', '+':
 		return lexDatetime
 	}
 	lx.backup()
 	lx.emit(itemDatetime)
 	return lx.pop()
 }
 // lexNumberStart consumes either an integer or a float. It assumes that a sign
 // has already been read, but that *no* digits have been consumed.
 // lexNumberStart will move to the appropriate integer or float states.
 func lexNumberStart(lx *lexer) stateFn {
 	// We MUST see a digit. Even floats have to start with a digit.
 	r := lx.next()
 	if !isDigit(r) {
 		if r == '.' {
 			return lx.errorf("floats must start with a digit, not '.'")
 		}
 		return lx.errorf("expected a digit but got %q", r)
 	}
 	return lexNumber
 }
 // lexNumber consumes an integer or a float after seeing the first digit.
 func lexNumber(lx *lexer) stateFn {
 	r := lx.next()
 	if isDigit(r) {
 		return lexNumber
 	}
 	switch r {
 	case '_':
 		return lexNumber
 	case '.', 'e', 'E':
 		return lexFloat
 	}
 	lx.backup()
 	lx.emit(itemInteger)
 	return lx.pop()
 }
 // lexFloat consumes the elements of a float. It allows any sequence of
 // float-like characters, so floats emitted by the lexer are only a first
 // approximation and must be validated by the parser.
 func lexFloat(lx *lexer) stateFn {
 	r := lx.next()
 	if isDigit(r) {
 		return lexFloat
 	}
 	switch r {
 	case '_', '.', '-', '+', 'e', 'E':
 		return lexFloat
 	}
 	lx.backup()
 	lx.emit(itemFloat)
 	return lx.pop()
 }
 // lexBool consumes a bool string: 'true' or 'false.
 func lexBool(lx *lexer) stateFn {
 	var rs []rune
 	for {
 		r := lx.next()
 		if !unicode.IsLetter(r) {
 			lx.backup()
 			break
 		}
 		rs = append(rs, r)
 	}
 	s := string(rs)
 	switch s {
 	case "true", "false":
 		lx.emit(itemBool)
 		return lx.pop()
 	}
 	return lx.errorf("expected value but found %q instead", s)
 }
 // lexCommentStart begins the lexing of a comment. It will emit
 // itemCommentStart and consume no characters, passing control to lexComment.
 func lexCommentStart(lx *lexer) stateFn {
 	lx.ignore()
 	lx.emit(itemCommentStart)
 	return lexComment
 }
 // lexComment lexes an entire comment. It assumes that '#' has been consumed.
 // It will consume *up to* the first newline character, and pass control
 // back to the last state on the stack.
 func lexComment(lx *lexer) stateFn {
 	r := lx.peek()
 	if isNL(r) || r == eof {
 		lx.emit(itemText)
 		return lx.pop()
 	}
 	lx.next()
 	return lexComment
 }
 // lexSkip ignores all slurped input and moves on to the next state.
 func lexSkip(lx *lexer, nextState stateFn) stateFn {
 	return func(lx *lexer) stateFn {
 		lx.ignore()
 		return nextState
 	}
 }
 // isWhitespace returns true if `r` is a whitespace character according
 // to the spec.
 func isWhitespace(r rune) bool {
 	return r == '\t' || r == ' '
 }
 func isNL(r rune) bool {
 	return r == '\n' || r == '\r'
 }
 func isDigit(r rune) bool {
 	return r >= '0' && r <= '9'
 }
 func isHexadecimal(r rune) bool {
 	return (r >= '0' && r <= '9') ||
 		(r >= 'a' && r <= 'f') ||
 		(r >= 'A' && r <= 'F')
 }
 func isBareKeyChar(r rune) bool {
 	return (r >= 'A' && r <= 'Z') ||
 		(r >= 'a' && r <= 'z') ||
 		(r >= '0' && r <= '9') ||
 		r == '_' ||
 		r == '-'
 }
 func (itype itemType) String() string {
 	switch itype {
 	case itemError:
 		return "Error"
 	case itemNIL:
 		return "NIL"
 	case itemEOF:
 		return "EOF"
 	case itemText:
 		return "Text"
 	case itemString, itemRawString, itemMultilineString, itemRawMultilineString:
 		return "String"
 	case itemBool:
 		return "Bool"
 	case itemInteger:
 		return "Integer"
 	case itemFloat:
 		return "Float"
 	case itemDatetime:
 		return "DateTime"
 	case itemTableStart:
 		return "TableStart"
 	case itemTableEnd:
 		return "TableEnd"
 	case itemKeyStart:
 		return "KeyStart"
 	case itemArray:
 		return "Array"
 	case itemArrayEnd:
 		return "ArrayEnd"
 	case itemCommentStart:
 		return "CommentStart"
 	}
 	panic(fmt.Sprintf("BUG: Unknown type '%d'.", int(itype)))
 }
 func (item item) String() string {
 	return fmt.Sprintf("(%s, %s)", item.typ.String(), item.val)
 }
--- a/vendor/github.com/BurntSushi/toml/parse.go
+++ b/vendor/github.com/BurntSushi/toml/parse.go
@ -0,0 +1,592 @@
 package toml
 import (
 	"fmt"
 	"strconv"
 	"strings"
 	"time"
 	"unicode"
 	"unicode/utf8"
 )
 type parser struct {
 	mapping map[string]interface{}
 	types   map[string]tomlType
 	lx      *lexer
 	// A list of keys in the order that they appear in the TOML data.
 	ordered []Key
 	// the full key for the current hash in scope
 	context Key
 	// the base key name for everything except hashes
 	currentKey string
 	// rough approximation of line number
 	approxLine int
 	// A map of 'key.group.names' to whether they were created implicitly.
 	implicits map[string]bool
 }
 type parseError string
 func (pe parseError) Error() string {
 	return string(pe)
 }
 func parse(data string) (p *parser, err error) {
 	defer func() {
 		if r := recover(); r != nil {
 			var ok bool
 			if err, ok = r.(parseError); ok {
 				return
 			}
 			panic(r)
 		}
 	}()
 	p = &parser{
 		mapping:   make(map[string]interface{}),
 		types:     make(map[string]tomlType),
 		lx:        lex(data),
 		ordered:   make([]Key, 0),
 		implicits: make(map[string]bool),
 	}
 	for {
 		item := p.next()
 		if item.typ == itemEOF {
 			break
 		}
 		p.topLevel(item)
 	}
 	return p, nil
 }
 func (p *parser) panicf(format string, v ...interface{}) {
 	msg := fmt.Sprintf("Near line %d (last key parsed '%s'): %s",
 		p.approxLine, p.current(), fmt.Sprintf(format, v...))
 	panic(parseError(msg))
 }
 func (p *parser) next() item {
 	it := p.lx.nextItem()
 	if it.typ == itemError {
 		p.panicf("%s", it.val)
 	}
 	return it
 }
 func (p *parser) bug(format string, v ...interface{}) {
 	panic(fmt.Sprintf("BUG: "+format+"\n\n", v...))
 }
 func (p *parser) expect(typ itemType) item {
 	it := p.next()
 	p.assertEqual(typ, it.typ)
 	return it
 }
 func (p *parser) assertEqual(expected, got itemType) {
 	if expected != got {
 		p.bug("Expected '%s' but got '%s'.", expected, got)
 	}
 }
 func (p *parser) topLevel(item item) {
 	switch item.typ {
 	case itemCommentStart:
 		p.approxLine = item.line
 		p.expect(itemText)
 	case itemTableStart:
 		kg := p.next()
 		p.approxLine = kg.line
 		var key Key
 		for ; kg.typ != itemTableEnd && kg.typ != itemEOF; kg = p.next() {
 			key = append(key, p.keyString(kg))
 		}
 		p.assertEqual(itemTableEnd, kg.typ)
 		p.establishContext(key, false)
 		p.setType("", tomlHash)
 		p.ordered = append(p.ordered, key)
 	case itemArrayTableStart:
 		kg := p.next()
 		p.approxLine = kg.line
 		var key Key
 		for ; kg.typ != itemArrayTableEnd && kg.typ != itemEOF; kg = p.next() {
 			key = append(key, p.keyString(kg))
 		}
 		p.assertEqual(itemArrayTableEnd, kg.typ)
 		p.establishContext(key, true)
 		p.setType("", tomlArrayHash)
 		p.ordered = append(p.ordered, key)
 	case itemKeyStart:
 		kname := p.next()
 		p.approxLine = kname.line
 		p.currentKey = p.keyString(kname)
 		val, typ := p.value(p.next())
 		p.setValue(p.currentKey, val)
 		p.setType(p.currentKey, typ)
 		p.ordered = append(p.ordered, p.context.add(p.currentKey))
 		p.currentKey = ""
 	default:
 		p.bug("Unexpected type at top level: %s", item.typ)
 	}
 }
 // Gets a string for a key (or part of a key in a table name).
 func (p *parser) keyString(it item) string {
 	switch it.typ {
 	case itemText:
 		return it.val
 	case itemString, itemMultilineString,
 		itemRawString, itemRawMultilineString:
 		s, _ := p.value(it)
 		return s.(string)
 	default:
 		p.bug("Unexpected key type: %s", it.typ)
 		panic("unreachable")
 	}
 }
 // value translates an expected value from the lexer into a Go value wrapped
 // as an empty interface.
 func (p *parser) value(it item) (interface{}, tomlType) {
 	switch it.typ {
 	case itemString:
 		return p.replaceEscapes(it.val), p.typeOfPrimitive(it)
 	case itemMultilineString:
 		trimmed := stripFirstNewline(stripEscapedWhitespace(it.val))
 		return p.replaceEscapes(trimmed), p.typeOfPrimitive(it)
 	case itemRawString:
 		return it.val, p.typeOfPrimitive(it)
 	case itemRawMultilineString:
 		return stripFirstNewline(it.val), p.typeOfPrimitive(it)
 	case itemBool:
 		switch it.val {
 		case "true":
 			return true, p.typeOfPrimitive(it)
 		case "false":
 			return false, p.typeOfPrimitive(it)
 		}
 		p.bug("Expected boolean value, but got '%s'.", it.val)
 	case itemInteger:
 		if !numUnderscoresOK(it.val) {
 			p.panicf("Invalid integer %q: underscores must be surrounded by digits",
 				it.val)
 		}
 		val := strings.Replace(it.val, "_", "", -1)
 		num, err := strconv.ParseInt(val, 10, 64)
 		if err != nil {
 			// Distinguish integer values. Normally, it'd be a bug if the lexer
 			// provides an invalid integer, but it's possible that the number is
 			// out of range of valid values (which the lexer cannot determine).
 			// So mark the former as a bug but the latter as a legitimate user
 			// error.
 			if e, ok := err.(*strconv.NumError); ok &&
 				e.Err == strconv.ErrRange {
 				p.panicf("Integer '%s' is out of the range of 64-bit "+
 					"signed integers.", it.val)
 			} else {
 				p.bug("Expected integer value, but got '%s'.", it.val)
 			}
 		}
 		return num, p.typeOfPrimitive(it)
 	case itemFloat:
 		parts := strings.FieldsFunc(it.val, func(r rune) bool {
 			switch r {
 			case '.', 'e', 'E':
 				return true
 			}
 			return false
 		})
 		for _, part := range parts {
 			if !numUnderscoresOK(part) {
 				p.panicf("Invalid float %q: underscores must be "+
 					"surrounded by digits", it.val)
 			}
 		}
 		if !numPeriodsOK(it.val) {
 			// As a special case, numbers like '123.' or '1.e2',
 			// which are valid as far as Go/strconv are concerned,
 			// must be rejected because TOML says that a fractional
 			// part consists of '.' followed by 1+ digits.
 			p.panicf("Invalid float %q: '.' must be followed "+
 				"by one or more digits", it.val)
 		}
 		val := strings.Replace(it.val, "_", "", -1)
 		num, err := strconv.ParseFloat(val, 64)
 		if err != nil {
 			if e, ok := err.(*strconv.NumError); ok &&
 				e.Err == strconv.ErrRange {
 				p.panicf("Float '%s' is out of the range of 64-bit "+
 					"IEEE-754 floating-point numbers.", it.val)
 			} else {
 				p.panicf("Invalid float value: %q", it.val)
 			}
 		}
 		return num, p.typeOfPrimitive(it)
 	case itemDatetime:
 		var t time.Time
 		var ok bool
 		var err error
 		for _, format := range []string{
 			"2006-01-02T15:04:05Z07:00",
 			"2006-01-02T15:04:05",
 			"2006-01-02",
 		} {
 			t, err = time.ParseInLocation(format, it.val, time.Local)
 			if err == nil {
 				ok = true
 				break
 			}
 		}
 		if !ok {
 			p.panicf("Invalid TOML Datetime: %q.", it.val)
 		}
 		return t, p.typeOfPrimitive(it)
 	case itemArray:
 		array := make([]interface{}, 0)
 		types := make([]tomlType, 0)
 		for it = p.next(); it.typ != itemArrayEnd; it = p.next() {
 			if it.typ == itemCommentStart {
 				p.expect(itemText)
 				continue
 			}
 			val, typ := p.value(it)
 			array = append(array, val)
 			types = append(types, typ)
 		}
 		return array, p.typeOfArray(types)
 	case itemInlineTableStart:
 		var (
 			hash         = make(map[string]interface{})
 			outerContext = p.context
 			outerKey     = p.currentKey
 		)
 		p.context = append(p.context, p.currentKey)
 		p.currentKey = ""
 		for it := p.next(); it.typ != itemInlineTableEnd; it = p.next() {
 			if it.typ != itemKeyStart {
 				p.bug("Expected key start but instead found %q, around line %d",
 					it.val, p.approxLine)
 			}
 			if it.typ == itemCommentStart {
 				p.expect(itemText)
 				continue
 			}
 			// retrieve key
 			k := p.next()
 			p.approxLine = k.line
 			kname := p.keyString(k)
 			// retrieve value
 			p.currentKey = kname
 			val, typ := p.value(p.next())
 			// make sure we keep metadata up to date
 			p.setType(kname, typ)
 			p.ordered = append(p.ordered, p.context.add(p.currentKey))
 			hash[kname] = val
 		}
 		p.context = outerContext
 		p.currentKey = outerKey
 		return hash, tomlHash
 	}
 	p.bug("Unexpected value type: %s", it.typ)
 	panic("unreachable")
 }
 // numUnderscoresOK checks whether each underscore in s is surrounded by
 // characters that are not underscores.
 func numUnderscoresOK(s string) bool {
 	accept := false
 	for _, r := range s {
 		if r == '_' {
 			if !accept {
 				return false
 			}
 			accept = false
 			continue
 		}
 		accept = true
 	}
 	return accept
 }
 // numPeriodsOK checks whether every period in s is followed by a digit.
 func numPeriodsOK(s string) bool {
 	period := false
 	for _, r := range s {
 		if period && !isDigit(r) {
 			return false
 		}
 		period = r == '.'
 	}
 	return !period
 }
 // establishContext sets the current context of the parser,
 // where the context is either a hash or an array of hashes. Which one is
 // set depends on the value of the `array` parameter.
 //
 // Establishing the context also makes sure that the key isn't a duplicate, and
 // will create implicit hashes automatically.
 func (p *parser) establishContext(key Key, array bool) {
 	var ok bool
 	// Always start at the top level and drill down for our context.
 	hashContext := p.mapping
 	keyContext := make(Key, 0)
 	// We only need implicit hashes for key[0:-1]
 	for _, k := range key[0 : len(key)-1] {
 		_, ok = hashContext[k]
 		keyContext = append(keyContext, k)
 		// No key? Make an implicit hash and move on.
 		if !ok {
 			p.addImplicit(keyContext)
 			hashContext[k] = make(map[string]interface{})
 		}
 		// If the hash context is actually an array of tables, then set
 		// the hash context to the last element in that array.
 		//
 		// Otherwise, it better be a table, since this MUST be a key group (by
 		// virtue of it not being the last element in a key).
 		switch t := hashContext[k].(type) {
 		case []map[string]interface{}:
 			hashContext = t[len(t)-1]
 		case map[string]interface{}:
 			hashContext = t
 		default:
 			p.panicf("Key '%s' was already created as a hash.", keyContext)
 		}
 	}
 	p.context = keyContext
 	if array {
 		// If this is the first element for this array, then allocate a new
 		// list of tables for it.
 		k := key[len(key)-1]
 		if _, ok := hashContext[k]; !ok {
 			hashContext[k] = make([]map[string]interface{}, 0, 5)
 		}
 		// Add a new table. But make sure the key hasn't already been used
 		// for something else.
 		if hash, ok := hashContext[k].([]map[string]interface{}); ok {
 			hashContext[k] = append(hash, make(map[string]interface{}))
 		} else {
 			p.panicf("Key '%s' was already created and cannot be used as "+
 				"an array.", keyContext)
 		}
 	} else {
 		p.setValue(key[len(key)-1], make(map[string]interface{}))
 	}
 	p.context = append(p.context, key[len(key)-1])
 }
 // setValue sets the given key to the given value in the current context.
 // It will make sure that the key hasn't already been defined, account for
 // implicit key groups.
 func (p *parser) setValue(key string, value interface{}) {
 	var tmpHash interface{}
 	var ok bool
 	hash := p.mapping
 	keyContext := make(Key, 0)
 	for _, k := range p.context {
 		keyContext = append(keyContext, k)
 		if tmpHash, ok = hash[k]; !ok {
 			p.bug("Context for key '%s' has not been established.", keyContext)
 		}
 		switch t := tmpHash.(type) {
 		case []map[string]interface{}:
 			// The context is a table of hashes. Pick the most recent table
 			// defined as the current hash.
 			hash = t[len(t)-1]
 		case map[string]interface{}:
 			hash = t
 		default:
 			p.bug("Expected hash to have type 'map[string]interface{}', but "+
 				"it has '%T' instead.", tmpHash)
 		}
 	}
 	keyContext = append(keyContext, key)
 	if _, ok := hash[key]; ok {
 		// Typically, if the given key has already been set, then we have
 		// to raise an error since duplicate keys are disallowed. However,
 		// it's possible that a key was previously defined implicitly. In this
 		// case, it is allowed to be redefined concretely. (See the
 		// `tests/valid/implicit-and-explicit-after.toml` test in `toml-test`.)
 		//
 		// But we have to make sure to stop marking it as an implicit. (So that
 		// another redefinition provokes an error.)
 		//
 		// Note that since it has already been defined (as a hash), we don't
 		// want to overwrite it. So our business is done.
 		if p.isImplicit(keyContext) {
 			p.removeImplicit(keyContext)
 			return
 		}
 		// Otherwise, we have a concrete key trying to override a previous
 		// key, which is *always* wrong.
 		p.panicf("Key '%s' has already been defined.", keyContext)
 	}
 	hash[key] = value
 }
 // setType sets the type of a particular value at a given key.
 // It should be called immediately AFTER setValue.
 //
 // Note that if `key` is empty, then the type given will be applied to the
 // current context (which is either a table or an array of tables).
 func (p *parser) setType(key string, typ tomlType) {
 	keyContext := make(Key, 0, len(p.context)+1)
 	for _, k := range p.context {
 		keyContext = append(keyContext, k)
 	}
 	if len(key) > 0 { // allow type setting for hashes
 		keyContext = append(keyContext, key)
 	}
 	p.types[keyContext.String()] = typ
 }
 // addImplicit sets the given Key as having been created implicitly.
 func (p *parser) addImplicit(key Key) {
 	p.implicits[key.String()] = true
 }
 // removeImplicit stops tagging the given key as having been implicitly
 // created.
 func (p *parser) removeImplicit(key Key) {
 	p.implicits[key.String()] = false
 }
 // isImplicit returns true if the key group pointed to by the key was created
 // implicitly.
 func (p *parser) isImplicit(key Key) bool {
 	return p.implicits[key.String()]
 }
 // current returns the full key name of the current context.
 func (p *parser) current() string {
 	if len(p.currentKey) == 0 {
 		return p.context.String()
 	}
 	if len(p.context) == 0 {
 		return p.currentKey
 	}
 	return fmt.Sprintf("%s.%s", p.context, p.currentKey)
 }
 func stripFirstNewline(s string) string {
 	if len(s) == 0 || s[0] != '\n' {
 		return s
 	}
 	return s[1:]
 }
 func stripEscapedWhitespace(s string) string {
 	esc := strings.Split(s, "\\\n")
 	if len(esc) > 1 {
 		for i := 1; i < len(esc); i++ {
 			esc[i] = strings.TrimLeftFunc(esc[i], unicode.IsSpace)
 		}
 	}
 	return strings.Join(esc, "")
 }
 func (p *parser) replaceEscapes(str string) string {
 	var replaced []rune
 	s := []byte(str)
 	r := 0
 	for r < len(s) {
 		if s[r] != '\\' {
 			c, size := utf8.DecodeRune(s[r:])
 			r += size
 			replaced = append(replaced, c)
 			continue
 		}
 		r += 1
 		if r >= len(s) {
 			p.bug("Escape sequence at end of string.")
 			return ""
 		}
 		switch s[r] {
 		default:
 			p.bug("Expected valid escape code after \\, but got %q.", s[r])
 			return ""
 		case 'b':
 			replaced = append(replaced, rune(0x0008))
 			r += 1
 		case 't':
 			replaced = append(replaced, rune(0x0009))
 			r += 1
 		case 'n':
 			replaced = append(replaced, rune(0x000A))
 			r += 1
 		case 'f':
 			replaced = append(replaced, rune(0x000C))
 			r += 1
 		case 'r':
 			replaced = append(replaced, rune(0x000D))
 			r += 1
 		case '"':
 			replaced = append(replaced, rune(0x0022))
 			r += 1
 		case '\\':
 			replaced = append(replaced, rune(0x005C))
 			r += 1
 		case 'u':
 			// At this point, we know we have a Unicode escape of the form
 			// `uXXXX` at [r, r+5). (Because the lexer guarantees this
 			// for us.)
 			escaped := p.asciiEscapeToUnicode(s[r+1 : r+5])
 			replaced = append(replaced, escaped)
 			r += 5
 		case 'U':
 			// At this point, we know we have a Unicode escape of the form
 			// `uXXXX` at [r, r+9). (Because the lexer guarantees this
 			// for us.)
 			escaped := p.asciiEscapeToUnicode(s[r+1 : r+9])
 			replaced = append(replaced, escaped)
 			r += 9
 		}
 	}
 	return string(replaced)
 }
 func (p *parser) asciiEscapeToUnicode(bs []byte) rune {
 	s := string(bs)
 	hex, err := strconv.ParseUint(strings.ToLower(s), 16, 32)
 	if err != nil {
 		p.bug("Could not parse '%s' as a hexadecimal number, but the "+
 			"lexer claims it's OK: %s", s, err)
 	}
 	if !utf8.ValidRune(rune(hex)) {
 		p.panicf("Escaped character '\\u%s' is not valid UTF-8.", s)
 	}
 	return rune(hex)
 }
 func isStringType(ty itemType) bool {
 	return ty == itemString || ty == itemMultilineString ||
 		ty == itemRawString || ty == itemRawMultilineString
 }
--- a/vendor/github.com/BurntSushi/toml/session.vim
+++ b/vendor/github.com/BurntSushi/toml/session.vim
@ -0,0 +1 @@
 au BufWritePost *.go silent!make tags > /dev/null 2>&1
--- a/vendor/github.com/BurntSushi/toml/type_check.go
+++ b/vendor/github.com/BurntSushi/toml/type_check.go
@ -0,0 +1,91 @@
 package toml
 // tomlType represents any Go type that corresponds to a TOML type.
 // While the first draft of the TOML spec has a simplistic type system that
 // probably doesn't need this level of sophistication, we seem to be militating
 // toward adding real composite types.
 type tomlType interface {
 	typeString() string
 }
 // typeEqual accepts any two types and returns true if they are equal.
 func typeEqual(t1, t2 tomlType) bool {
 	if t1 == nil || t2 == nil {
 		return false
 	}
 	return t1.typeString() == t2.typeString()
 }
 func typeIsHash(t tomlType) bool {
 	return typeEqual(t, tomlHash) || typeEqual(t, tomlArrayHash)
 }
 type tomlBaseType string
 func (btype tomlBaseType) typeString() string {
 	return string(btype)
 }
 func (btype tomlBaseType) String() string {
 	return btype.typeString()
 }
 var (
 	tomlInteger   tomlBaseType = "Integer"
 	tomlFloat     tomlBaseType = "Float"
 	tomlDatetime  tomlBaseType = "Datetime"
 	tomlString    tomlBaseType = "String"
 	tomlBool      tomlBaseType = "Bool"
 	tomlArray     tomlBaseType = "Array"
 	tomlHash      tomlBaseType = "Hash"
 	tomlArrayHash tomlBaseType = "ArrayHash"
 )
 // typeOfPrimitive returns a tomlType of any primitive value in TOML.
 // Primitive values are: Integer, Float, Datetime, String and Bool.
 //
 // Passing a lexer item other than the following will cause a BUG message
 // to occur: itemString, itemBool, itemInteger, itemFloat, itemDatetime.
 func (p *parser) typeOfPrimitive(lexItem item) tomlType {
 	switch lexItem.typ {
 	case itemInteger:
 		return tomlInteger
 	case itemFloat:
 		return tomlFloat
 	case itemDatetime:
 		return tomlDatetime
 	case itemString:
 		return tomlString
 	case itemMultilineString:
 		return tomlString
 	case itemRawString:
 		return tomlString
 	case itemRawMultilineString:
 		return tomlString
 	case itemBool:
 		return tomlBool
 	}
 	p.bug("Cannot infer primitive type of lex item '%s'.", lexItem)
 	panic("unreachable")
 }
 // typeOfArray returns a tomlType for an array given a list of types of its
 // values.
 //
 // In the current spec, if an array is homogeneous, then its type is always
 // "Array". If the array is not homogeneous, an error is generated.
 func (p *parser) typeOfArray(types []tomlType) tomlType {
 	// Empty arrays are cool.
 	if len(types) == 0 {
 		return tomlArray
 	}
 	theType := types[0]
 	for _, t := range types[1:] {
 		if !typeEqual(theType, t) {
 			p.panicf("Array contains values of type '%s' and '%s', but "+
 				"arrays must be homogeneous.", theType, t)
 		}
 	}
 	return tomlArray
 }
--- a/vendor/github.com/BurntSushi/toml/type_fields.go
+++ b/vendor/github.com/BurntSushi/toml/type_fields.go
@ -0,0 +1,242 @@
 package toml
 // Struct field handling is adapted from code in encoding/json:
 //
 // Copyright 2010 The Go Authors.  All rights reserved.
 // Use of this source code is governed by a BSD-style
 // license that can be found in the Go distribution.
 import (
 	"reflect"
 	"sort"
 	"sync"
 )
 // A field represents a single field found in a struct.
 type field struct {
 	name  string       // the name of the field (`toml` tag included)
 	tag   bool         // whether field has a `toml` tag
 	index []int        // represents the depth of an anonymous field
 	typ   reflect.Type // the type of the field
 }
 // byName sorts field by name, breaking ties with depth,
 // then breaking ties with "name came from toml tag", then
 // breaking ties with index sequence.
 type byName []field
 func (x byName) Len() int { return len(x) }
 func (x byName) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
 func (x byName) Less(i, j int) bool {
 	if x[i].name != x[j].name {
 		return x[i].name < x[j].name
 	}
 	if len(x[i].index) != len(x[j].index) {
 		return len(x[i].index) < len(x[j].index)
 	}
 	if x[i].tag != x[j].tag {
 		return x[i].tag
 	}
 	return byIndex(x).Less(i, j)
 }
 // byIndex sorts field by index sequence.
 type byIndex []field
 func (x byIndex) Len() int { return len(x) }
 func (x byIndex) Swap(i, j int) { x[i], x[j] = x[j], x[i] }
 func (x byIndex) Less(i, j int) bool {
 	for k, xik := range x[i].index {
 		if k >= len(x[j].index) {
 			return false
 		}
 		if xik != x[j].index[k] {
 			return xik < x[j].index[k]
 		}
 	}
 	return len(x[i].index) < len(x[j].index)
 }
 // typeFields returns a list of fields that TOML should recognize for the given
 // type. The algorithm is breadth-first search over the set of structs to
 // include - the top struct and then any reachable anonymous structs.
 func typeFields(t reflect.Type) []field {
 	// Anonymous fields to explore at the current level and the next.
 	current := []field{}
 	next := []field{{typ: t}}
 	// Count of queued names for current level and the next.
 	count := map[reflect.Type]int{}
 	nextCount := map[reflect.Type]int{}
 	// Types already visited at an earlier level.
 	visited := map[reflect.Type]bool{}
 	// Fields found.
 	var fields []field
 	for len(next) > 0 {
 		current, next = next, current[:0]
 		count, nextCount = nextCount, map[reflect.Type]int{}
 		for _, f := range current {
 			if visited[f.typ] {
 				continue
 			}
 			visited[f.typ] = true
 			// Scan f.typ for fields to include.
 			for i := 0; i < f.typ.NumField(); i++ {
 				sf := f.typ.Field(i)
 				if sf.PkgPath != "" && !sf.Anonymous { // unexported
 					continue
 				}
 				opts := getOptions(sf.Tag)
 				if opts.skip {
 					continue
 				}
 				index := make([]int, len(f.index)+1)
 				copy(index, f.index)
 				index[len(f.index)] = i
 				ft := sf.Type
 				if ft.Name() == "" && ft.Kind() == reflect.Ptr {
 					// Follow pointer.
 					ft = ft.Elem()
 				}
 				// Record found field and index sequence.
 				if opts.name != "" || !sf.Anonymous || ft.Kind() != reflect.Struct {
 					tagged := opts.name != ""
 					name := opts.name
 					if name == "" {
 						name = sf.Name
 					}
 					fields = append(fields, field{name, tagged, index, ft})
 					if count[f.typ] > 1 {
 						// If there were multiple instances, add a second,
 						// so that the annihilation code will see a duplicate.
 						// It only cares about the distinction between 1 or 2,
 						// so don't bother generating any more copies.
 						fields = append(fields, fields[len(fields)-1])
 					}
 					continue
 				}
 				// Record new anonymous struct to explore in next round.
 				nextCount[ft]++
 				if nextCount[ft] == 1 {
 					f := field{name: ft.Name(), index: index, typ: ft}
 					next = append(next, f)
 				}
 			}
 		}
 	}
 	sort.Sort(byName(fields))
 	// Delete all fields that are hidden by the Go rules for embedded fields,
 	// except that fields with TOML tags are promoted.
 	// The fields are sorted in primary order of name, secondary order
 	// of field index length. Loop over names; for each name, delete
 	// hidden fields by choosing the one dominant field that survives.
 	out := fields[:0]
 	for advance, i := 0, 0; i < len(fields); i += advance {
 		// One iteration per name.
 		// Find the sequence of fields with the name of this first field.
 		fi := fields[i]
 		name := fi.name
 		for advance = 1; i+advance < len(fields); advance++ {
 			fj := fields[i+advance]
 			if fj.name != name {
 				break
 			}
 		}
 		if advance == 1 { // Only one field with this name
 			out = append(out, fi)
 			continue
 		}
 		dominant, ok := dominantField(fields[i : i+advance])
 		if ok {
 			out = append(out, dominant)
 		}
 	}
 	fields = out
 	sort.Sort(byIndex(fields))
 	return fields
 }
 // dominantField looks through the fields, all of which are known to
 // have the same name, to find the single field that dominates the
 // others using Go's embedding rules, modified by the presence of
 // TOML tags. If there are multiple top-level fields, the boolean
 // will be false: This condition is an error in Go and we skip all
 // the fields.
 func dominantField(fields []field) (field, bool) {
 	// The fields are sorted in increasing index-length order. The winner
 	// must therefore be one with the shortest index length. Drop all
 	// longer entries, which is easy: just truncate the slice.
 	length := len(fields[0].index)
 	tagged := -1 // Index of first tagged field.
 	for i, f := range fields {
 		if len(f.index) > length {
 			fields = fields[:i]
 			break
 		}
 		if f.tag {
 			if tagged >= 0 {
 				// Multiple tagged fields at the same level: conflict.
 				// Return no field.
 				return field{}, false
 			}
 			tagged = i
 		}
 	}
 	if tagged >= 0 {
 		return fields[tagged], true
 	}
 	// All remaining fields have the same length. If there's more than one,
 	// we have a conflict (two fields named "X" at the same level) and we
 	// return no field.
 	if len(fields) > 1 {
 		return field{}, false
 	}
 	return fields[0], true
 }
 var fieldCache struct {
 	sync.RWMutex
 	m map[reflect.Type][]field
 }
 // cachedTypeFields is like typeFields but uses a cache to avoid repeated work.
 func cachedTypeFields(t reflect.Type) []field {
 	fieldCache.RLock()
 	f := fieldCache.m[t]
 	fieldCache.RUnlock()
 	if f != nil {
 		return f
 	}
 	// Compute fields without lock.
 	// Might duplicate effort but won't hold other computations back.
 	f = typeFields(t)
 	if f == nil {
 		f = []field{}
 	}
 	fieldCache.Lock()
 	if fieldCache.m == nil {
 		fieldCache.m = map[reflect.Type][]field{}
 	}
 	fieldCache.m[t] = f
 	fieldCache.Unlock()
 	return f
 }
--- a/vendor/github.com/aws/aws-sdk-go/LICENSE.txt
+++ b/vendor/github.com/aws/aws-sdk-go/LICENSE.txt
@ -0,0 +1,202 @@
                                 Apache License
                           Version 2.0, January 2004
                        http://www.apache.org/licenses/
   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
   1. Definitions.
      "License" shall mean the terms and conditions for use, reproduction,
      and distribution as defined by Sections 1 through 9 of this document.
      "Licensor" shall mean the copyright owner or entity authorized by
      the copyright owner that is granting the License.
      "Legal Entity" shall mean the union of the acting entity and all
      other entities that control, are controlled by, or are under common
      control with that entity. For the purposes of this definition,
      "control" means (i) the power, direct or indirect, to cause the
      direction or management of such entity, whether by contract or
      otherwise, or (ii) ownership of fifty percent (50%) or more of the
      outstanding shares, or (iii) beneficial ownership of such entity.
      "You" (or "Your") shall mean an individual or Legal Entity
      exercising permissions granted by this License.
      "Source" form shall mean the preferred form for making modifications,
      including but not limited to software source code, documentation
      source, and configuration files.
      "Object" form shall mean any form resulting from mechanical
      transformation or translation of a Source form, including but
      not limited to compiled object code, generated documentation,
      and conversions to other media types.
      "Work" shall mean the work of authorship, whether in Source or
      Object form, made available under the License, as indicated by a
      copyright notice that is included in or attached to the work
      (an example is provided in the Appendix below).
      "Derivative Works" shall mean any work, whether in Source or Object
      form, that is based on (or derived from) the Work and for which the
      editorial revisions, annotations, elaborations, or other modifications
      represent, as a whole, an original work of authorship. For the purposes
      of this License, Derivative Works shall not include works that remain
      separable from, or merely link (or bind by name) to the interfaces of,
      the Work and Derivative Works thereof.
      "Contribution" shall mean any work of authorship, including
      the original version of the Work and any modifications or additions
      to that Work or Derivative Works thereof, that is intentionally
      submitted to Licensor for inclusion in the Work by the copyright owner
      or by an individual or Legal Entity authorized to submit on behalf of
      the copyright owner. For the purposes of this definition, "submitted"
      means any form of electronic, verbal, or written communication sent
      to the Licensor or its representatives, including but not limited to
      communication on electronic mailing lists, source code control systems,
      and issue tracking systems that are managed by, or on behalf of, the
      Licensor for the purpose of discussing and improving the Work, but
      excluding communication that is conspicuously marked or otherwise
      designated in writing by the copyright owner as "Not a Contribution."
      "Contributor" shall mean Licensor and any individual or Legal Entity
      on behalf of whom a Contribution has been received by Licensor and
      subsequently incorporated within the Work.
   2. Grant of Copyright License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      copyright license to reproduce, prepare Derivative Works of,
      publicly display, publicly perform, sublicense, and distribute the
      Work and such Derivative Works in Source or Object form.
   3. Grant of Patent License. Subject to the terms and conditions of
      this License, each Contributor hereby grants to You a perpetual,
      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
      (except as stated in this section) patent license to make, have made,
      use, offer to sell, sell, import, and otherwise transfer the Work,
      where such license applies only to those patent claims licensable
      by such Contributor that are necessarily infringed by their
      Contribution(s) alone or by combination of their Contribution(s)
      with the Work to which such Contribution(s) was submitted. If You
      institute patent litigation against any entity (including a
      cross-claim or counterclaim in a lawsuit) alleging that the Work
      or a Contribution incorporated within the Work constitutes direct
      or contributory patent infringement, then any patent licenses
      granted to You under this License for that Work shall terminate
      as of the date such litigation is filed.
   4. Redistribution. You may reproduce and distribute copies of the
      Work or Derivative Works thereof in any medium, with or without
      modifications, and in Source or Object form, provided that You
      meet the following conditions:
      (a) You must give any other recipients of the Work or
          Derivative Works a copy of this License; and
      (b) You must cause any modified files to carry prominent notices
          stating that You changed the files; and
      (c) You must retain, in the Source form of any Derivative Works
          that You distribute, all copyright, patent, trademark, and
          attribution notices from the Source form of the Work,
          excluding those notices that do not pertain to any part of
          the Derivative Works; and
      (d) If the Work includes a "NOTICE" text file as part of its
          distribution, then any Derivative Works that You distribute must
          include a readable copy of the attribution notices contained
          within such NOTICE file, excluding those notices that do not
          pertain to any part of the Derivative Works, in at least one
          of the following places: within a NOTICE text file distributed
          as part of the Derivative Works; within the Source form or
          documentation, if provided along with the Derivative Works; or,
          within a display generated by the Derivative Works, if and
          wherever such third-party notices normally appear. The contents
          of the NOTICE file are for informational purposes only and
          do not modify the License. You may add Your own attribution
          notices within Derivative Works that You distribute, alongside
          or as an addendum to the NOTICE text from the Work, provided
          that such additional attribution notices cannot be construed
          as modifying the License.
      You may add Your own copyright statement to Your modifications and
      may provide additional or different license terms and conditions
      for use, reproduction, or distribution of Your modifications, or
      for any such Derivative Works as a whole, provided Your use,
      reproduction, and distribution of the Work otherwise complies with
      the conditions stated in this License.
   5. Submission of Contributions. Unless You explicitly state otherwise,
      any Contribution intentionally submitted for inclusion in the Work
      by You to the Licensor shall be under the terms and conditions of
      this License, without any additional terms or conditions.
      Notwithstanding the above, nothing herein shall supersede or modify
      the terms of any separate license agreement you may have executed
      with Licensor regarding such Contributions.
   6. Trademarks. This License does not grant permission to use the trade
      names, trademarks, service marks, or product names of the Licensor,
      except as required for reasonable and customary use in describing the
      origin of the Work and reproducing the content of the NOTICE file.
   7. Disclaimer of Warranty. Unless required by applicable law or
      agreed to in writing, Licensor provides the Work (and each
      Contributor provides its Contributions) on an "AS IS" BASIS,
      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
      implied, including, without limitation, any warranties or conditions
      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
      PARTICULAR PURPOSE. You are solely responsible for determining the
      appropriateness of using or redistributing the Work and assume any
      risks associated with Your exercise of permissions under this License.
   8. Limitation of Liability. In no event and under no legal theory,
      whether in tort (including negligence), contract, or otherwise,
      unless required by applicable law (such as deliberate and grossly
      negligent acts) or agreed to in writing, shall any Contributor be
      liable to You for damages, including any direct, indirect, special,
      incidental, or consequential damages of any character arising as a
      result of this License or out of the use or inability to use the
      Work (including but not limited to damages for loss of goodwill,
      work stoppage, computer failure or malfunction, or any and all
      other commercial damages or losses), even if such Contributor
      has been advised of the possibility of such damages.
   9. Accepting Warranty or Additional Liability. While redistributing
      the Work or Derivative Works thereof, You may choose to offer,
      and charge a fee for, acceptance of support, warranty, indemnity,
      or other liability obligations and/or rights consistent with this
      License. However, in accepting such obligations, You may act only
      on Your own behalf and on Your sole responsibility, not on behalf
      of any other Contributor, and only if You agree to indemnify,
      defend, and hold each Contributor harmless for any liability
      incurred by, or claims asserted against, such Contributor by reason
      of your accepting any such warranty or additional liability.
   END OF TERMS AND CONDITIONS
   APPENDIX: How to apply the Apache License to your work.
      To apply the Apache License to your work, attach the following
      boilerplate notice, with the fields enclosed by brackets "[]"
      replaced with your own identifying information. (Don't include
      the brackets!)  The text should be enclosed in the appropriate
      comment syntax for the file format. We also recommend that a
      file or class name and description of purpose be included on the
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
   Copyright [yyyy] [name of copyright owner]
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
   You may obtain a copy of the License at
       http://www.apache.org/licenses/LICENSE-2.0
   Unless required by applicable law or agreed to in writing, software
   distributed under the License is distributed on an "AS IS" BASIS,
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
--- a/vendor/github.com/aws/aws-sdk-go/NOTICE.txt
+++ b/vendor/github.com/aws/aws-sdk-go/NOTICE.txt
@ -0,0 +1,3 @@
 AWS SDK for Go
 Copyright 2015 Amazon.com, Inc. or its affiliates. All Rights Reserved.
 Copyright 2014-2015 Stripe, Inc.
--- a/vendor/github.com/aws/aws-sdk-go/aws/awserr/error.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awserr/error.go
@ -0,0 +1,164 @@
 // Package awserr represents API error interface accessors for the SDK.
 package awserr
 // An Error wraps lower level errors with code, message and an original error.
 // The underlying concrete error type may also satisfy other interfaces which
 // can be to used to obtain more specific information about the error.
 //
 // Calling Error() or String() will always include the full information about
 // an error based on its underlying type.
 //
 // Example:
 //
 //     output, err := s3manage.Upload(svc, input, opts)
 //     if err != nil {
 //         if awsErr, ok := err.(awserr.Error); ok {
 //             // Get error details
 //             log.Println("Error:", awsErr.Code(), awsErr.Message())
 //
 //             // Prints out full error message, including original error if there was one.
 //             log.Println("Error:", awsErr.Error())
 //
 //             // Get original error
 //             if origErr := awsErr.OrigErr(); origErr != nil {
 //                 // operate on original error.
 //             }
 //         } else {
 //             fmt.Println(err.Error())
 //         }
 //     }
 //
 type Error interface {
 	// Satisfy the generic error interface.
 	error
 	// Returns the short phrase depicting the classification of the error.
 	Code() string
 	// Returns the error details message.
 	Message() string
 	// Returns the original error if one was set.  Nil is returned if not set.
 	OrigErr() error
 }
 // BatchError is a batch of errors which also wraps lower level errors with
 // code, message, and original errors. Calling Error() will include all errors
 // that occurred in the batch.
 //
 // Deprecated: Replaced with BatchedErrors. Only defined for backwards
 // compatibility.
 type BatchError interface {
 	// Satisfy the generic error interface.
 	error
 	// Returns the short phrase depicting the classification of the error.
 	Code() string
 	// Returns the error details message.
 	Message() string
 	// Returns the original error if one was set.  Nil is returned if not set.
 	OrigErrs() []error
 }
 // BatchedErrors is a batch of errors which also wraps lower level errors with
 // code, message, and original errors. Calling Error() will include all errors
 // that occurred in the batch.
 //
 // Replaces BatchError
 type BatchedErrors interface {
 	// Satisfy the base Error interface.
 	Error
 	// Returns the original error if one was set.  Nil is returned if not set.
 	OrigErrs() []error
 }
 // New returns an Error object described by the code, message, and origErr.
 //
 // If origErr satisfies the Error interface it will not be wrapped within a new
 // Error object and will instead be returned.
 func New(code, message string, origErr error) Error {
 	var errs []error
 	if origErr != nil {
 		errs = append(errs, origErr)
 	}
 	return newBaseError(code, message, errs)
 }
 // NewBatchError returns an BatchedErrors with a collection of errors as an
 // array of errors.
 func NewBatchError(code, message string, errs []error) BatchedErrors {
 	return newBaseError(code, message, errs)
 }
 // A RequestFailure is an interface to extract request failure information from
 // an Error such as the request ID of the failed request returned by a service.
 // RequestFailures may not always have a requestID value if the request failed
 // prior to reaching the service such as a connection error.
 //
 // Example:
 //
 //     output, err := s3manage.Upload(svc, input, opts)
 //     if err != nil {
 //         if reqerr, ok := err.(RequestFailure); ok {
 //             log.Println("Request failed", reqerr.Code(), reqerr.Message(), reqerr.RequestID())
 //         } else {
 //             log.Println("Error:", err.Error())
 //         }
 //     }
 //
 // Combined with awserr.Error:
 //
 //    output, err := s3manage.Upload(svc, input, opts)
 //    if err != nil {
 //        if awsErr, ok := err.(awserr.Error); ok {
 //            // Generic AWS Error with Code, Message, and original error (if any)
 //            fmt.Println(awsErr.Code(), awsErr.Message(), awsErr.OrigErr())
 //
 //            if reqErr, ok := err.(awserr.RequestFailure); ok {
 //                // A service error occurred
 //                fmt.Println(reqErr.StatusCode(), reqErr.RequestID())
 //            }
 //        } else {
 //            fmt.Println(err.Error())
 //        }
 //    }
 //
 type RequestFailure interface {
 	Error
 	// The status code of the HTTP response.
 	StatusCode() int
 	// The request ID returned by the service for a request failure. This will
 	// be empty if no request ID is available such as the request failed due
 	// to a connection error.
 	RequestID() string
 }
 // NewRequestFailure returns a wrapped error with additional information for
 // request status code, and service requestID.
 //
 // Should be used to wrap all request which involve service requests. Even if
 // the request failed without a service response, but had an HTTP status code
 // that may be meaningful.
 func NewRequestFailure(err Error, statusCode int, reqID string) RequestFailure {
 	return newRequestError(err, statusCode, reqID)
 }
 // UnmarshalError provides the interface for the SDK failing to unmarshal data.
 type UnmarshalError interface {
 	awsError
 	Bytes() []byte
 }
 // NewUnmarshalError returns an initialized UnmarshalError error wrapper adding
 // the bytes that fail to unmarshal to the error.
 func NewUnmarshalError(err error, msg string, bytes []byte) UnmarshalError {
 	return &unmarshalError{
 		awsError: New("UnmarshalError", msg, err),
 		bytes:    bytes,
 	}
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/awserr/types.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awserr/types.go
@ -0,0 +1,221 @@
 package awserr
 import (
 	"encoding/hex"
 	"fmt"
 )
 // SprintError returns a string of the formatted error code.
 //
 // Both extra and origErr are optional.  If they are included their lines
 // will be added, but if they are not included their lines will be ignored.
 func SprintError(code, message, extra string, origErr error) string {
 	msg := fmt.Sprintf("%s: %s", code, message)
 	if extra != "" {
 		msg = fmt.Sprintf("%s\n\t%s", msg, extra)
 	}
 	if origErr != nil {
 		msg = fmt.Sprintf("%s\ncaused by: %s", msg, origErr.Error())
 	}
 	return msg
 }
 // A baseError wraps the code and message which defines an error. It also
 // can be used to wrap an original error object.
 //
 // Should be used as the root for errors satisfying the awserr.Error. Also
 // for any error which does not fit into a specific error wrapper type.
 type baseError struct {
 	// Classification of error
 	code string
 	// Detailed information about error
 	message string
 	// Optional original error this error is based off of. Allows building
 	// chained errors.
 	errs []error
 }
 // newBaseError returns an error object for the code, message, and errors.
 //
 // code is a short no whitespace phrase depicting the classification of
 // the error that is being created.
 //
 // message is the free flow string containing detailed information about the
 // error.
 //
 // origErrs is the error objects which will be nested under the new errors to
 // be returned.
 func newBaseError(code, message string, origErrs []error) *baseError {
 	b := &baseError{
 		code:    code,
 		message: message,
 		errs:    origErrs,
 	}
 	return b
 }
 // Error returns the string representation of the error.
 //
 // See ErrorWithExtra for formatting.
 //
 // Satisfies the error interface.
 func (b baseError) Error() string {
 	size := len(b.errs)
 	if size > 0 {
 		return SprintError(b.code, b.message, "", errorList(b.errs))
 	}
 	return SprintError(b.code, b.message, "", nil)
 }
 // String returns the string representation of the error.
 // Alias for Error to satisfy the stringer interface.
 func (b baseError) String() string {
 	return b.Error()
 }
 // Code returns the short phrase depicting the classification of the error.
 func (b baseError) Code() string {
 	return b.code
 }
 // Message returns the error details message.
 func (b baseError) Message() string {
 	return b.message
 }
 // OrigErr returns the original error if one was set. Nil is returned if no
 // error was set. This only returns the first element in the list. If the full
 // list is needed, use BatchedErrors.
 func (b baseError) OrigErr() error {
 	switch len(b.errs) {
 	case 0:
 		return nil
 	case 1:
 		return b.errs[0]
 	default:
 		if err, ok := b.errs[0].(Error); ok {
 			return NewBatchError(err.Code(), err.Message(), b.errs[1:])
 		}
 		return NewBatchError("BatchedErrors",
 			"multiple errors occurred", b.errs)
 	}
 }
 // OrigErrs returns the original errors if one was set. An empty slice is
 // returned if no error was set.
 func (b baseError) OrigErrs() []error {
 	return b.errs
 }
 // So that the Error interface type can be included as an anonymous field
 // in the requestError struct and not conflict with the error.Error() method.
 type awsError Error
 // A requestError wraps a request or service error.
 //
 // Composed of baseError for code, message, and original error.
 type requestError struct {
 	awsError
 	statusCode int
 	requestID  string
 	bytes      []byte
 }
 // newRequestError returns a wrapped error with additional information for
 // request status code, and service requestID.
 //
 // Should be used to wrap all request which involve service requests. Even if
 // the request failed without a service response, but had an HTTP status code
 // that may be meaningful.
 //
 // Also wraps original errors via the baseError.
 func newRequestError(err Error, statusCode int, requestID string) *requestError {
 	return &requestError{
 		awsError:   err,
 		statusCode: statusCode,
 		requestID:  requestID,
 	}
 }
 // Error returns the string representation of the error.
 // Satisfies the error interface.
 func (r requestError) Error() string {
 	extra := fmt.Sprintf("status code: %d, request id: %s",
 		r.statusCode, r.requestID)
 	return SprintError(r.Code(), r.Message(), extra, r.OrigErr())
 }
 // String returns the string representation of the error.
 // Alias for Error to satisfy the stringer interface.
 func (r requestError) String() string {
 	return r.Error()
 }
 // StatusCode returns the wrapped status code for the error
 func (r requestError) StatusCode() int {
 	return r.statusCode
 }
 // RequestID returns the wrapped requestID
 func (r requestError) RequestID() string {
 	return r.requestID
 }
 // OrigErrs returns the original errors if one was set. An empty slice is
 // returned if no error was set.
 func (r requestError) OrigErrs() []error {
 	if b, ok := r.awsError.(BatchedErrors); ok {
 		return b.OrigErrs()
 	}
 	return []error{r.OrigErr()}
 }
 type unmarshalError struct {
 	awsError
 	bytes []byte
 }
 // Error returns the string representation of the error.
 // Satisfies the error interface.
 func (e unmarshalError) Error() string {
 	extra := hex.Dump(e.bytes)
 	return SprintError(e.Code(), e.Message(), extra, e.OrigErr())
 }
 // String returns the string representation of the error.
 // Alias for Error to satisfy the stringer interface.
 func (e unmarshalError) String() string {
 	return e.Error()
 }
 // Bytes returns the bytes that failed to unmarshal.
 func (e unmarshalError) Bytes() []byte {
 	return e.bytes
 }
 // An error list that satisfies the golang interface
 type errorList []error
 // Error returns the string representation of the error.
 //
 // Satisfies the error interface.
 func (e errorList) Error() string {
 	msg := ""
 	// How do we want to handle the array size being zero
 	if size := len(e); size > 0 {
 		for i := 0; i < size; i++ {
 			msg += e[i].Error()
 			// We check the next index to see if it is within the slice.
 			// If it is, then we append a newline. We do this, because unit tests
 			// could be broken with the additional '\n'
 			if i+1 < size {
 				msg += "\n"
 			}
 		}
 	}
 	return msg
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/awsutil/copy.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awsutil/copy.go
@ -0,0 +1,108 @@
 package awsutil
 import (
 	"io"
 	"reflect"
 	"time"
 )
 // Copy deeply copies a src structure to dst. Useful for copying request and
 // response structures.
 //
 // Can copy between structs of different type, but will only copy fields which
 // are assignable, and exist in both structs. Fields which are not assignable,
 // or do not exist in both structs are ignored.
 func Copy(dst, src interface{}) {
 	dstval := reflect.ValueOf(dst)
 	if !dstval.IsValid() {
 		panic("Copy dst cannot be nil")
 	}
 	rcopy(dstval, reflect.ValueOf(src), true)
 }
 // CopyOf returns a copy of src while also allocating the memory for dst.
 // src must be a pointer type or this operation will fail.
 func CopyOf(src interface{}) (dst interface{}) {
 	dsti := reflect.New(reflect.TypeOf(src).Elem())
 	dst = dsti.Interface()
 	rcopy(dsti, reflect.ValueOf(src), true)
 	return
 }
 // rcopy performs a recursive copy of values from the source to destination.
 //
 // root is used to skip certain aspects of the copy which are not valid
 // for the root node of a object.
 func rcopy(dst, src reflect.Value, root bool) {
 	if !src.IsValid() {
 		return
 	}
 	switch src.Kind() {
 	case reflect.Ptr:
 		if _, ok := src.Interface().(io.Reader); ok {
 			if dst.Kind() == reflect.Ptr && dst.Elem().CanSet() {
 				dst.Elem().Set(src)
 			} else if dst.CanSet() {
 				dst.Set(src)
 			}
 		} else {
 			e := src.Type().Elem()
 			if dst.CanSet() && !src.IsNil() {
 				if _, ok := src.Interface().(*time.Time); !ok {
 					dst.Set(reflect.New(e))
 				} else {
 					tempValue := reflect.New(e)
 					tempValue.Elem().Set(src.Elem())
 					// Sets time.Time's unexported values
 					dst.Set(tempValue)
 				}
 			}
 			if src.Elem().IsValid() {
 				// Keep the current root state since the depth hasn't changed
 				rcopy(dst.Elem(), src.Elem(), root)
 			}
 		}
 	case reflect.Struct:
 		t := dst.Type()
 		for i := 0; i < t.NumField(); i++ {
 			name := t.Field(i).Name
 			srcVal := src.FieldByName(name)
 			dstVal := dst.FieldByName(name)
 			if srcVal.IsValid() && dstVal.CanSet() {
 				rcopy(dstVal, srcVal, false)
 			}
 		}
 	case reflect.Slice:
 		if src.IsNil() {
 			break
 		}
 		s := reflect.MakeSlice(src.Type(), src.Len(), src.Cap())
 		dst.Set(s)
 		for i := 0; i < src.Len(); i++ {
 			rcopy(dst.Index(i), src.Index(i), false)
 		}
 	case reflect.Map:
 		if src.IsNil() {
 			break
 		}
 		s := reflect.MakeMap(src.Type())
 		dst.Set(s)
 		for _, k := range src.MapKeys() {
 			v := src.MapIndex(k)
 			v2 := reflect.New(v.Type()).Elem()
 			rcopy(v2, v, false)
 			dst.SetMapIndex(k, v2)
 		}
 	default:
 		// Assign the value if possible. If its not assignable, the value would
 		// need to be converted and the impact of that may be unexpected, or is
 		// not compatible with the dst type.
 		if src.Type().AssignableTo(dst.Type()) {
 			dst.Set(src)
 		}
 	}
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/awsutil/equal.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awsutil/equal.go
@ -0,0 +1,27 @@
 package awsutil
 import (
 	"reflect"
 )
 // DeepEqual returns if the two values are deeply equal like reflect.DeepEqual.
 // In addition to this, this method will also dereference the input values if
 // possible so the DeepEqual performed will not fail if one parameter is a
 // pointer and the other is not.
 //
 // DeepEqual will not perform indirection of nested values of the input parameters.
 func DeepEqual(a, b interface{}) bool {
 	ra := reflect.Indirect(reflect.ValueOf(a))
 	rb := reflect.Indirect(reflect.ValueOf(b))
 	if raValid, rbValid := ra.IsValid(), rb.IsValid(); !raValid && !rbValid {
 		// If the elements are both nil, and of the same type they are equal
 		// If they are of different types they are not equal
 		return reflect.TypeOf(a) == reflect.TypeOf(b)
 	} else if raValid != rbValid {
 		// Both values must be valid to be equal
 		return false
 	}
 	return reflect.DeepEqual(ra.Interface(), rb.Interface())
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/awsutil/path_value.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awsutil/path_value.go
@ -0,0 +1,221 @@
 package awsutil
 import (
 	"reflect"
 	"regexp"
 	"strconv"
 	"strings"
 	"github.com/jmespath/go-jmespath"
 )
 var indexRe = regexp.MustCompile(`(.+)\[(-?\d+)?\]$`)
 // rValuesAtPath returns a slice of values found in value v. The values
 // in v are explored recursively so all nested values are collected.
 func rValuesAtPath(v interface{}, path string, createPath, caseSensitive, nilTerm bool) []reflect.Value {
 	pathparts := strings.Split(path, "||")
 	if len(pathparts) > 1 {
 		for _, pathpart := range pathparts {
 			vals := rValuesAtPath(v, pathpart, createPath, caseSensitive, nilTerm)
 			if len(vals) > 0 {
 				return vals
 			}
 		}
 		return nil
 	}
 	values := []reflect.Value{reflect.Indirect(reflect.ValueOf(v))}
 	components := strings.Split(path, ".")
 	for len(values) > 0 && len(components) > 0 {
 		var index *int64
 		var indexStar bool
 		c := strings.TrimSpace(components[0])
 		if c == "" { // no actual component, illegal syntax
 			return nil
 		} else if caseSensitive && c != "*" && strings.ToLower(c[0:1]) == c[0:1] {
 			// TODO normalize case for user
 			return nil // don't support unexported fields
 		}
 		// parse this component
 		if m := indexRe.FindStringSubmatch(c); m != nil {
 			c = m[1]
 			if m[2] == "" {
 				index = nil
 				indexStar = true
 			} else {
 				i, _ := strconv.ParseInt(m[2], 10, 32)
 				index = &i
 				indexStar = false
 			}
 		}
 		nextvals := []reflect.Value{}
 		for _, value := range values {
 			// pull component name out of struct member
 			if value.Kind() != reflect.Struct {
 				continue
 			}
 			if c == "*" { // pull all members
 				for i := 0; i < value.NumField(); i++ {
 					if f := reflect.Indirect(value.Field(i)); f.IsValid() {
 						nextvals = append(nextvals, f)
 					}
 				}
 				continue
 			}
 			value = value.FieldByNameFunc(func(name string) bool {
 				if c == name {
 					return true
 				} else if !caseSensitive && strings.ToLower(name) == strings.ToLower(c) {
 					return true
 				}
 				return false
 			})
 			if nilTerm && value.Kind() == reflect.Ptr && len(components[1:]) == 0 {
 				if !value.IsNil() {
 					value.Set(reflect.Zero(value.Type()))
 				}
 				return []reflect.Value{value}
 			}
 			if createPath && value.Kind() == reflect.Ptr && value.IsNil() {
 				// TODO if the value is the terminus it should not be created
 				// if the value to be set to its position is nil.
 				value.Set(reflect.New(value.Type().Elem()))
 				value = value.Elem()
 			} else {
 				value = reflect.Indirect(value)
 			}
 			if value.Kind() == reflect.Slice || value.Kind() == reflect.Map {
 				if !createPath && value.IsNil() {
 					value = reflect.ValueOf(nil)
 				}
 			}
 			if value.IsValid() {
 				nextvals = append(nextvals, value)
 			}
 		}
 		values = nextvals
 		if indexStar || index != nil {
 			nextvals = []reflect.Value{}
 			for _, valItem := range values {
 				value := reflect.Indirect(valItem)
 				if value.Kind() != reflect.Slice {
 					continue
 				}
 				if indexStar { // grab all indices
 					for i := 0; i < value.Len(); i++ {
 						idx := reflect.Indirect(value.Index(i))
 						if idx.IsValid() {
 							nextvals = append(nextvals, idx)
 						}
 					}
 					continue
 				}
 				// pull out index
 				i := int(*index)
 				if i >= value.Len() { // check out of bounds
 					if createPath {
 						// TODO resize slice
 					} else {
 						continue
 					}
 				} else if i < 0 { // support negative indexing
 					i = value.Len() + i
 				}
 				value = reflect.Indirect(value.Index(i))
 				if value.Kind() == reflect.Slice || value.Kind() == reflect.Map {
 					if !createPath && value.IsNil() {
 						value = reflect.ValueOf(nil)
 					}
 				}
 				if value.IsValid() {
 					nextvals = append(nextvals, value)
 				}
 			}
 			values = nextvals
 		}
 		components = components[1:]
 	}
 	return values
 }
 // ValuesAtPath returns a list of values at the case insensitive lexical
 // path inside of a structure.
 func ValuesAtPath(i interface{}, path string) ([]interface{}, error) {
 	result, err := jmespath.Search(path, i)
 	if err != nil {
 		return nil, err
 	}
 	v := reflect.ValueOf(result)
 	if !v.IsValid() || (v.Kind() == reflect.Ptr && v.IsNil()) {
 		return nil, nil
 	}
 	if s, ok := result.([]interface{}); ok {
 		return s, err
 	}
 	if v.Kind() == reflect.Map && v.Len() == 0 {
 		return nil, nil
 	}
 	if v.Kind() == reflect.Slice {
 		out := make([]interface{}, v.Len())
 		for i := 0; i < v.Len(); i++ {
 			out[i] = v.Index(i).Interface()
 		}
 		return out, nil
 	}
 	return []interface{}{result}, nil
 }
 // SetValueAtPath sets a value at the case insensitive lexical path inside
 // of a structure.
 func SetValueAtPath(i interface{}, path string, v interface{}) {
 	rvals := rValuesAtPath(i, path, true, false, v == nil)
 	for _, rval := range rvals {
 		if rval.Kind() == reflect.Ptr && rval.IsNil() {
 			continue
 		}
 		setValue(rval, v)
 	}
 }
 func setValue(dstVal reflect.Value, src interface{}) {
 	if dstVal.Kind() == reflect.Ptr {
 		dstVal = reflect.Indirect(dstVal)
 	}
 	srcVal := reflect.ValueOf(src)
 	if !srcVal.IsValid() { // src is literal nil
 		if dstVal.CanAddr() {
 			// Convert to pointer so that pointer's value can be nil'ed
 			//                     dstVal = dstVal.Addr()
 		}
 		dstVal.Set(reflect.Zero(dstVal.Type()))
 	} else if srcVal.Kind() == reflect.Ptr {
 		if srcVal.IsNil() {
 			srcVal = reflect.Zero(dstVal.Type())
 		} else {
 			srcVal = reflect.ValueOf(src).Elem()
 		}
 		dstVal.Set(srcVal)
 	} else {
 		dstVal.Set(srcVal)
 	}
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/awsutil/prettify.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awsutil/prettify.go
@ -0,0 +1,113 @@
 package awsutil
 import (
 	"bytes"
 	"fmt"
 	"io"
 	"reflect"
 	"strings"
 )
 // Prettify returns the string representation of a value.
 func Prettify(i interface{}) string {
 	var buf bytes.Buffer
 	prettify(reflect.ValueOf(i), 0, &buf)
 	return buf.String()
 }
 // prettify will recursively walk value v to build a textual
 // representation of the value.
 func prettify(v reflect.Value, indent int, buf *bytes.Buffer) {
 	for v.Kind() == reflect.Ptr {
 		v = v.Elem()
 	}
 	switch v.Kind() {
 	case reflect.Struct:
 		strtype := v.Type().String()
 		if strtype == "time.Time" {
 			fmt.Fprintf(buf, "%s", v.Interface())
 			break
 		} else if strings.HasPrefix(strtype, "io.") {
 			buf.WriteString("<buffer>")
 			break
 		}
 		buf.WriteString("{\n")
 		names := []string{}
 		for i := 0; i < v.Type().NumField(); i++ {
 			name := v.Type().Field(i).Name
 			f := v.Field(i)
 			if name[0:1] == strings.ToLower(name[0:1]) {
 				continue // ignore unexported fields
 			}
 			if (f.Kind() == reflect.Ptr || f.Kind() == reflect.Slice || f.Kind() == reflect.Map) && f.IsNil() {
 				continue // ignore unset fields
 			}
 			names = append(names, name)
 		}
 		for i, n := range names {
 			val := v.FieldByName(n)
 			buf.WriteString(strings.Repeat(" ", indent+2))
 			buf.WriteString(n + ": ")
 			prettify(val, indent+2, buf)
 			if i < len(names)-1 {
 				buf.WriteString(",\n")
 			}
 		}
 		buf.WriteString("\n" + strings.Repeat(" ", indent) + "}")
 	case reflect.Slice:
 		strtype := v.Type().String()
 		if strtype == "[]uint8" {
 			fmt.Fprintf(buf, "<binary> len %d", v.Len())
 			break
 		}
 		nl, id, id2 := "", "", ""
 		if v.Len() > 3 {
 			nl, id, id2 = "\n", strings.Repeat(" ", indent), strings.Repeat(" ", indent+2)
 		}
 		buf.WriteString("[" + nl)
 		for i := 0; i < v.Len(); i++ {
 			buf.WriteString(id2)
 			prettify(v.Index(i), indent+2, buf)
 			if i < v.Len()-1 {
 				buf.WriteString("," + nl)
 			}
 		}
 		buf.WriteString(nl + id + "]")
 	case reflect.Map:
 		buf.WriteString("{\n")
 		for i, k := range v.MapKeys() {
 			buf.WriteString(strings.Repeat(" ", indent+2))
 			buf.WriteString(k.String() + ": ")
 			prettify(v.MapIndex(k), indent+2, buf)
 			if i < v.Len()-1 {
 				buf.WriteString(",\n")
 			}
 		}
 		buf.WriteString("\n" + strings.Repeat(" ", indent) + "}")
 	default:
 		if !v.IsValid() {
 			fmt.Fprint(buf, "<invalid value>")
 			return
 		}
 		format := "%v"
 		switch v.Interface().(type) {
 		case string:
 			format = "%q"
 		case io.ReadSeeker, io.Reader:
 			format = "buffer(%p)"
 		}
 		fmt.Fprintf(buf, format, v.Interface())
 	}
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/awsutil/string_value.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/awsutil/string_value.go
@ -0,0 +1,88 @@
 package awsutil
 import (
 	"bytes"
 	"fmt"
 	"reflect"
 	"strings"
 )
 // StringValue returns the string representation of a value.
 func StringValue(i interface{}) string {
 	var buf bytes.Buffer
 	stringValue(reflect.ValueOf(i), 0, &buf)
 	return buf.String()
 }
 func stringValue(v reflect.Value, indent int, buf *bytes.Buffer) {
 	for v.Kind() == reflect.Ptr {
 		v = v.Elem()
 	}
 	switch v.Kind() {
 	case reflect.Struct:
 		buf.WriteString("{\n")
 		for i := 0; i < v.Type().NumField(); i++ {
 			ft := v.Type().Field(i)
 			fv := v.Field(i)
 			if ft.Name[0:1] == strings.ToLower(ft.Name[0:1]) {
 				continue // ignore unexported fields
 			}
 			if (fv.Kind() == reflect.Ptr || fv.Kind() == reflect.Slice) && fv.IsNil() {
 				continue // ignore unset fields
 			}
 			buf.WriteString(strings.Repeat(" ", indent+2))
 			buf.WriteString(ft.Name + ": ")
 			if tag := ft.Tag.Get("sensitive"); tag == "true" {
 				buf.WriteString("<sensitive>")
 			} else {
 				stringValue(fv, indent+2, buf)
 			}
 			buf.WriteString(",\n")
 		}
 		buf.WriteString("\n" + strings.Repeat(" ", indent) + "}")
 	case reflect.Slice:
 		nl, id, id2 := "", "", ""
 		if v.Len() > 3 {
 			nl, id, id2 = "\n", strings.Repeat(" ", indent), strings.Repeat(" ", indent+2)
 		}
 		buf.WriteString("[" + nl)
 		for i := 0; i < v.Len(); i++ {
 			buf.WriteString(id2)
 			stringValue(v.Index(i), indent+2, buf)
 			if i < v.Len()-1 {
 				buf.WriteString("," + nl)
 			}
 		}
 		buf.WriteString(nl + id + "]")
 	case reflect.Map:
 		buf.WriteString("{\n")
 		for i, k := range v.MapKeys() {
 			buf.WriteString(strings.Repeat(" ", indent+2))
 			buf.WriteString(k.String() + ": ")
 			stringValue(v.MapIndex(k), indent+2, buf)
 			if i < v.Len()-1 {
 				buf.WriteString(",\n")
 			}
 		}
 		buf.WriteString("\n" + strings.Repeat(" ", indent) + "}")
 	default:
 		format := "%v"
 		switch v.Interface().(type) {
 		case string:
 			format = "%q"
 		}
 		fmt.Fprintf(buf, format, v.Interface())
 	}
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/client/client.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/client/client.go
@ -0,0 +1,97 @@
 package client
 import (
 	"fmt"
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/client/metadata"
 	"github.com/aws/aws-sdk-go/aws/request"
 )
 // A Config provides configuration to a service client instance.
 type Config struct {
 	Config        *aws.Config
 	Handlers      request.Handlers
 	PartitionID   string
 	Endpoint      string
 	SigningRegion string
 	SigningName   string
 	// States that the signing name did not come from a modeled source but
 	// was derived based on other data. Used by service client constructors
 	// to determine if the signin name can be overridden based on metadata the
 	// service has.
 	SigningNameDerived bool
 }
 // ConfigProvider provides a generic way for a service client to receive
 // the ClientConfig without circular dependencies.
 type ConfigProvider interface {
 	ClientConfig(serviceName string, cfgs ...*aws.Config) Config
 }
 // ConfigNoResolveEndpointProvider same as ConfigProvider except it will not
 // resolve the endpoint automatically. The service client's endpoint must be
 // provided via the aws.Config.Endpoint field.
 type ConfigNoResolveEndpointProvider interface {
 	ClientConfigNoResolveEndpoint(cfgs ...*aws.Config) Config
 }
 // A Client implements the base client request and response handling
 // used by all service clients.
 type Client struct {
 	request.Retryer
 	metadata.ClientInfo
 	Config   aws.Config
 	Handlers request.Handlers
 }
 // New will return a pointer to a new initialized service client.
 func New(cfg aws.Config, info metadata.ClientInfo, handlers request.Handlers, options ...func(*Client)) *Client {
 	svc := &Client{
 		Config:     cfg,
 		ClientInfo: info,
 		Handlers:   handlers.Copy(),
 	}
 	switch retryer, ok := cfg.Retryer.(request.Retryer); {
 	case ok:
 		svc.Retryer = retryer
 	case cfg.Retryer != nil && cfg.Logger != nil:
 		s := fmt.Sprintf("WARNING: %T does not implement request.Retryer; using DefaultRetryer instead", cfg.Retryer)
 		cfg.Logger.Log(s)
 		fallthrough
 	default:
 		maxRetries := aws.IntValue(cfg.MaxRetries)
 		if cfg.MaxRetries == nil || maxRetries == aws.UseServiceDefaultRetries {
 			maxRetries = DefaultRetryerMaxNumRetries
 		}
 		svc.Retryer = DefaultRetryer{NumMaxRetries: maxRetries}
 	}
 	svc.AddDebugHandlers()
 	for _, option := range options {
 		option(svc)
 	}
 	return svc
 }
 // NewRequest returns a new Request pointer for the service API
 // operation and parameters.
 func (c *Client) NewRequest(operation *request.Operation, params interface{}, data interface{}) *request.Request {
 	return request.New(c.Config, c.ClientInfo, c.Handlers, c.Retryer, operation, params, data)
 }
 // AddDebugHandlers injects debug logging handlers into the service to log request
 // debug information.
 func (c *Client) AddDebugHandlers() {
 	if !c.Config.LogLevel.AtLeast(aws.LogDebug) {
 		return
 	}
 	c.Handlers.Send.PushFrontNamed(LogHTTPRequestHandler)
 	c.Handlers.Send.PushBackNamed(LogHTTPResponseHandler)
 }
--- a/vendor/github.com/aws/aws-sdk-go/aws/client/default_retryer.go
+++ b/vendor/github.com/aws/aws-sdk-go/aws/client/default_retryer.go
@ -0,0 +1,177 @@
 package client
 import (
 	"math"
 	"strconv"
 	"time"
 	"github.com/aws/aws-sdk-go/aws/request"
 	"github.com/aws/aws-sdk-go/internal/sdkrand"
 )
 // DefaultRetryer implements basic retry logic using exponential backoff for
 // most services. If you want to implement custom retry logic, you can implement the
 // request.Retryer interface.
 //
 type DefaultRetryer struct {
 	// Num max Retries is the number of max retries that will be performed.
 	// By default, this is zero.
 	NumMaxRetries int
 	// MinRetryDelay is the minimum retry delay after which retry will be performed.
 	// If not set, the value is 0ns.
 	MinRetryDelay time.Duration
 	// MinThrottleRetryDelay is the minimum retry delay when throttled.
 	// If not set, the value is 0ns.
 	MinThrottleDelay time.Duration
 	// MaxRetryDelay is the maximum retry delay before which retry must be performed.
 	// If not set, the value is 0ns.
 	MaxRetryDelay time.Duration
 	// MaxThrottleDelay is the maximum retry delay when throttled.
 	// If not set, the value is 0ns.
 	MaxThrottleDelay time.Duration
 }
 const (
 	// DefaultRetryerMaxNumRetries sets maximum number of retries
 	DefaultRetryerMaxNumRetries = 3
 	// DefaultRetryerMinRetryDelay sets minimum retry delay
 	DefaultRetryerMinRetryDelay = 30 * time.Millisecond
 	// DefaultRetryerMinThrottleDelay sets minimum delay when throttled
 	DefaultRetryerMinThrottleDelay = 500 * time.Millisecond
 	// DefaultRetryerMaxRetryDelay sets maximum retry delay
 	DefaultRetryerMaxRetryDelay = 300 * time.Second
 	// DefaultRetryerMaxThrottleDelay sets maximum delay when throttled
 	DefaultRetryerMaxThrottleDelay = 300 * time.Second
 )
 // MaxRetries returns the number of maximum returns the service will use to make
 // an individual API request.
 func (d DefaultRetryer) MaxRetries() int {
 	return d.NumMaxRetries
 }
 // setRetryerDefaults sets the default values of the retryer if not set
 func (d *DefaultRetryer) setRetryerDefaults() {
 	if d.MinRetryDelay == 0 {
 		d.MinRetryDelay = DefaultRetryerMinRetryDelay
 	}
 	if d.MaxRetryDelay == 0 {
 		d.MaxRetryDelay = DefaultRetryerMaxRetryDelay
 	}
 	if d.MinThrottleDelay == 0 {
 		d.MinThrottleDelay = DefaultRetryerMinThrottleDelay
 	}
 	if d.MaxThrottleDelay == 0 {
 		d.MaxThrottleDelay = DefaultRetryerMaxThrottleDelay
 	}
 }
 // RetryRules returns the delay duration before retrying this request again
 func (d DefaultRetryer) RetryRules(r *request.Request) time.Duration {
 	// if number of max retries is zero, no retries will be performed.
 	if d.NumMaxRetries == 0 {
 		return 0
 	}
 	// Sets default value for retryer members
 	d.setRetryerDefaults()
 	// minDelay is the minimum retryer delay
 	minDelay := d.MinRetryDelay
 	var initialDelay time.Duration
 	isThrottle := r.IsErrorThrottle()
 	if isThrottle {
 		if delay, ok := getRetryAfterDelay(r); ok {
 			initialDelay = delay
 		}
 		minDelay = d.MinThrottleDelay
 	}
 	retryCount := r.RetryCount
 	// maxDelay the maximum retryer delay
 	maxDelay := d.MaxRetryDelay
 	if isThrottle {
 		maxDelay = d.MaxThrottleDelay
 	}
 	var delay time.Duration
 	// Logic to cap the retry count based on the minDelay provided
 	actualRetryCount := int(math.Log2(float64(minDelay))) + 1
 	if actualRetryCount < 63-retryCount {
 		delay = time.Duration(1<<uint64(retryCount)) * getJitterDelay(minDelay)
 		if delay > maxDelay {
 			delay = getJitterDelay(maxDelay / 2)
 		}
 	} else {
 		delay = getJitterDelay(maxDelay / 2)
 	}
 	return delay + initialDelay
 }
 // getJitterDelay returns a jittered delay for retry
 func getJitterDelay(duration time.Duration) time.Duration {
 	return time.Duration(sdkrand.SeededRand.Int63n(int64(duration)) + int64(duration))
 }
 // ShouldRetry returns true if the request should be retried.
 func (d DefaultRetryer) ShouldRetry(r *request.Request) bool {
 	// ShouldRetry returns false if number of max retries is 0.
 	if d.NumMaxRetries == 0 {
 		return false
 	}
 	// If one of the other handlers already set the retry state
 	// we don't want to override it based on the service's state
 	if r.Retryable != nil {
 		return *r.Retryable
 	}
 	return r.IsErrorRetryable() || r.IsErrorThrottle()
 }
 // This will look in the Retry-After header, RFC 7231, for how long
 // it will wait before attempting another request
 func getRetryAfterDelay(r *request.Request) (time.Duration, bool) {
 	if !canUseRetryAfterHeader(r) {
 		return 0, false
 	}
 	delayStr := r.HTTPResponse.Header.Get("Retry-After")
 	if len(delayStr) == 0 {
 		return 0, false
 	}
 	delay, err := strconv.Atoi(delayStr)
 	if err != nil {
 		return 0, false
 	}
 	return time.Duration(delay) * time.Second, true
 }
 // Will look at the status code to see if the retry header pertains to
 // the status code.
 func canUseRetryAfterHeader(r *request.Request) bool {
 	switch r.HTTPResponse.StatusCode {
 	case 429:
 	case 503:
 	default:
 		return false
 	}
 	return true
 }
--- a/Show more
+++ b/Show more
		`@ -0,0 +1 @@`
							`input directory path, go module;package flag, gRPC ServiceConfig path flag, API service config path flag, release level`
		`@ -0,0 +1,3 @@`
							`Compatible with TOML version`
							`[v0.4.0](https://github.com/toml-lang/toml/blob/v0.4.0/versions/en/toml-v0.4.0.md)`
		`@ -0,0 +1 @@`
							`au BufWritePost *.go silent!make tags > /dev/null 2>&1`