From ac0c8ce016d50038c91ede141f4d771ed3b0f62b Mon Sep 17 00:00:00 2001
From: David Michael <dm0@redhat.com>
Date: Mon, 11 Mar 2019 02:17:25 +0000
Subject: [PATCH 1/3] bump(metadata/glsa): sync with upstream

---
 .../portage-stable/metadata/glsa/Manifest     |  30 +++----
 .../metadata/glsa/Manifest.files.gz           | Bin 435197 -> 436466 bytes
 .../metadata/glsa/glsa-201903-01.xml          |  55 +++++++++++++
 .../metadata/glsa/glsa-201903-02.xml          |  62 +++++++++++++++
 .../metadata/glsa/glsa-201903-03.xml          |  53 +++++++++++++
 .../metadata/glsa/glsa-201903-04.xml          |  73 ++++++++++++++++++
 .../metadata/glsa/glsa-201903-05.xml          |  50 ++++++++++++
 .../metadata/glsa/glsa-201903-06.xml          |  66 ++++++++++++++++
 .../metadata/glsa/glsa-201903-07.xml          |  52 +++++++++++++
 .../metadata/glsa/glsa-201903-08.xml          |  48 ++++++++++++
 .../metadata/glsa/timestamp.chk               |   2 +-
 .../metadata/glsa/timestamp.commit            |   2 +-
 12 files changed, 476 insertions(+), 17 deletions(-)
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-01.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-02.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-03.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-04.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-05.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-06.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-07.xml
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-08.xml

diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest
index 670e7c304f..53261d6d0d 100644
--- a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest
@@ -1,23 +1,23 @@
 -----BEGIN PGP SIGNED MESSAGE-----
 Hash: SHA512
 
-MANIFEST Manifest.files.gz 435197 BLAKE2B 5ef1f755677fba588afa252a22622c045d099b3f39fb6b356786170399bb20e8c58212856a5ddc6f59dc6076e3f84a95376a4dc3b4d5154c7d540151a154c88a SHA512 fb541e904c3c6b5ec17c08e76f9ce1dcd0d8f0b31dee092dd3542b9a34a04890e9a1b1e6b0d78d3523fb451deb84b3316ae6b588a29aec6f4741dfb52941ecc9
-TIMESTAMP 2018-12-31T15:38:40Z
+MANIFEST Manifest.files.gz 436466 BLAKE2B 1592f1e1bb1660fe56598a716be2722c8f9b14d74fcc7bf4086935ca129dff18da9e9a7deb43b3b3ab5e34487a04b37269914fde19e2c86f3d80a1165fc058e0 SHA512 814ba1ee894cf6c7438051199c5078a6339901cdea60b6848add142bf264fc54ba915b91229a96a1404f81bdbc5177e162144d5b97ce8351358c43ca91c86df7
+TIMESTAMP 2019-03-11T01:38:51Z
 -----BEGIN PGP SIGNATURE-----
 
-iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAlwqOABfFIAAAAAALgAo
+iQKTBAEBCgB9FiEE4dartjv8+0ugL98c7FkO6skYklAFAlyFvCtfFIAAAAAALgAo
 aXNzdWVyLWZwckBub3RhdGlvbnMub3BlbnBncC5maWZ0aGhvcnNlbWFuLm5ldEUx
 RDZBQkI2M0JGQ0ZCNEJBMDJGREYxQ0VDNTkwRUVBQzkxODkyNTAACgkQ7FkO6skY
-klBxRBAAtUgUnM+koOIrHy98B5Uj8vQ0YUz+hHXxfPZ5I3DjG138tNv+kSSfZtZ1
-VC9QQSG0svtCjDOUG1CZ6b31Kf1ySFALtcelgTgNp8Y8R1CqoC0UIhd6jhxIEzU3
-QThllPuldQOr8pOf/3pxDO0gZ/eeXeBF2rnrDq8nDkkqLNTnPBg998fJZGLFTi+S
-yWYh4Dtyq53TbbQ4tjKwFL8MZnIv9tDt5Xol6socrhWdZvScnpoHgg7W5+LemdYb
-J/CGgtl9LYn9xvUCCKl5YV/BF3rLH1tJUdZHDrcl1jqSSnmF59uQ17XDOyb47xZH
-bPU9gxGNvqdDdizqb8mRKILzQqzzBuSiOshuSO29wX4Xh+GcO76JBamw9U6B8O+O
-G+IjxAN9HaDj0nRzzCqQkhkBpN4dNsySt1bYyqzcTXaLUre6EQAerQE943exCQGX
-p+UiE4as/EMg6S1EA95K/hshidQHXMbCpqzoK4BCJ9AXgm3WULAJy6JhTEma+4M4
-7cIKiGtl4G61SxVCt/hVjqKKUZVkjUMo/+PMyclJ1Xrhgomxs1Pv+waX6RQ7ldgs
-dBALSFUehLiBDCC1HTSUEniPjDmgNNaAclze37jLhjOZUoVaiCDD6wuLHqIFajlC
-nLejRPqU6qWCOk6ig6UgA68G48Ttf7WXSZ9i/3d1Tw5B5ASWAMM=
-=qJUW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+=J9ze
 -----END PGP SIGNATURE-----
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest.files.gz b/sdk_container/src/third_party/portage-stable/metadata/glsa/Manifest.files.gz
index b87f67ec613a49a53d46b8f99c095c2246a7940e..3834742efd27c1321e80d3e5dc9a47eaa85a1ce1 100644
GIT binary patch
delta 25407
zcmV)%K#jls#~Sj{8i0fWgaU*Egam{Iv<5gvf8BB}>5(P7_a22tAn+E9-~a?cFA|^`
zFvuX(5E>Goo<Fn}Gxwz{cU7G_^=E#U*bLI$oNjJ*19fyvR;`B<=F9mER+G*Ozd_2X
zGMJ}#oBgWnA(Do&lumk=)28pG@w1Z`>}riNqsD9+Oag_KGQXF_E|HegcmqvUnL4%2
ze|gU1lCPb4;<LoAe?{EX&Fe=_{LA0cN9iM<q1j;Ep3U=lF2#?CdLSY_(g1}Ty@I%a
z3{7pt2S~|(<qp1hZf8U&Qj|ouH$l*0YdIvPDNS{(9Nb>SPXPL83z7;hQT+jNt+e>c
z4_}^aMG(|)hRVy3Nz5!{UA{wkBTku3f009hk>NGmGbOUtX)}$Da>jENTf$>R{=~-R
zwrbH<++9#8v$T0<<5J?+?f**zsUXV}u>51SUNVdElM}O}?~j^wTLbJOrP#UzBC&DU
zCDd1}VJ3P8I~<2L=?Aa>B&?1|u<F^rj-<h`g@Wy{pH#m&3fr8UNGB&KJ8#TZe?5qE
zDiaevbm;k<L=J|!7p%6X1Qz<LTK325$6}1ElDrk2bx<)-Y*X5@X_O!o#IR`;9pLQ(
z?JD{Ao;^lQ&^;+ilE@%+YP4QzoNsUWrEdvE;rfviU;HhA-<Ks|buaBp#S`c)A$L%G
zRA92gm)d`oRX4`z8m_ao2|3`te_(y+)H|z22`3Rx7J`#qQT`24hm4(_=h)z~S?-f3
zDy50m4_g=N9p%AcYZ8=hRmcaK1|VJt#$=njdCy76Cu6cHyx-`mAFOS;q9GCSS}FUr
zY^&><1QO;yxBjLaPNJYjE(9ElT9)4-b=|2twJKlh70-{=dfB#p^%I9if9wGH(~E0o
zjJ+WOrqnJEoEnyms1(|`w$4TvN=GVi>p;39keiLCIEwROJRgXb9J#$v73P167>kF$
zr>+HOy26%N%X!uYfPLpg)qC_K3EHQ}ZGEb~a4bVPuu?QtwpkNMw#%Udy}0TMHZ{N)
z?r_cK8y{%7I8m)y3LsIHf3~`0nLSS>Cn@c@;XXINE6DKskrQA1E#T?rB;Lm+;!1?{
zMh?(<55?8UT!7^=z2<w&+(GXS<&_C<zGkBRa#)pZLeMyz{%QnH5C@qpf@@?>9rr11
zRvx%sHvqdLYyH@hE(E{NYOOnjb14_J4k1Lj`H79hU?oc=XD^hTe^}tcX$EbaWm_tq
zUJ|Mc5U8`Jm;EZfKPjqxDHqlYTa8sUXHp$Mseq7z&qmq6tDLtJ(LYw}FP2YVcc-^K
zI)K~R_zhCux`Q<~oe5oArskv+%Z2>E4oaWo<w((ULU^P<=Qg+B?1M`LO1@j!ao+@{
zihQmzomABI=+df8f6`tG2Q^RwudNRcLS4WizxQ0?ef4B1T#M5gJX~%(M$)?SQ3cwP
zVQEc&6Zg-hIFsXcI=vpwFenJ5I=|)9kk_(39n{@fEjt0H%xkb^MmX!O{EAyI{??a#
zhIf0rj(7}&-Fw7SV@cwmCt@gXO8Aw_ZO~qoP|d+qO-8}*f5N}n%j)BUur4Y~S-vc?
z6K`77Y5jS1pca)1$Lx`CqrxE@#t87fgCIkJ6<Sbhlg+BwqGLR_B5jjsFXfa)w(sk%
zz1)jKeT*KGGFpI|<;<s6!H(gqAuC=2M<#&A(=J(?iP+`nYmSd|1^r|*dWZD<(|t{^
z`>hO=`r<T~e-SA5^tk{abpdpZmgg4yPOVKvw3U$?+JF6N3Q|uf44EB$)j73wqULe;
z&Ks8v=CGnF^O}Qf`D?*_S8Tip#`IJMC_beBcNc>y^lqTqTl<4*2We3AYFkJ80iroD
z(?pzvDdGk&)~5V8i&ZG`b?K&}OA82CiW2+pmO3{Ae{t5^(!=b}4kT-24g|YiX<H{g
zG6l?!)%q(v9KSmIwq=ef_q914{l}Ab3?a-#*}J7j>{31hj2RR?%qmCQWKryuf}4Hj
z+UX6SCb8b@a=u^PK}rl~if7V-MA>Es#U|&rXi095`HdiSpe_mlIjib5UDj+?QHrEa
zOt#}3e*nGuSrVTF5@9`#N&-TO<6ey<=Mo0x{T^G-YuoHlA*JUz2_`J+1C$}8P|*_o
z)RRe00cn=~W3^t=!(Wo=N_S~oLNRxHnE_6^9ph$4tuVL8q!-DRw=LV%X|q$-StM4n
zr1xaYhdtLtopIZ_vi*1QSsav<SSbt?7N%Qqe;4`rhnyKT8C!Wz7l3dnA-p%O>M!ob
z>z;5`$z$tx4wi*Oqg~$QNzNobR-2!{3C~HcOyIrH!OM=IDn2sy$j1qEBr7PZ%VHC?
z`q11hXh)W{&zqp&AFEaV<!`CKN3Bq{%3-017*)DRJgx1FGs@1*?H(L8+`9Z4oyeS9
ze**DyPKFBGHB$%`2lK!(3e@GnM^@Z)Y139M-zaz3R+CJ4*t{>=QogZ#&;~1TMgoYu
zND~y>w&ncK9*@8EOOvmfO^xB8f_0KXTH-n$*;)XwD>^CcFdLC;b>+#6!`e-bS18-M
z<p`QkI@)P3iyA49|3s(2oVNw@@g-z)e{6Dw3VPvkAQ?QWlZA7IIyG?6!^3aM7wcrr
zRod3kN^A@LD?mm7`pqC#omq3XOM)>qY<F^_Ihfc%tBU-ozjZk~7u|uD4fB03zt+tL
z@U~H!xE|_}1LXQYZa4ln808`DD>WgJc{w9?>RIA&@`_5e4lSrT%Yd?rokUT4e-J)3
zOOPlrQqu_7v(Dzzp*T4z6afVPDR{b9>+ijM_)<6kUn&~S>nrlR`=i3JPS`34v#B0c
z+X)L@mJO#12vOS|{)8BgzllC*r^#Z<$GnxG48am1X|r5deGvAuwr?mPK25t0(~ozr
zkJbp`j1spsq8I7qw#z&L%>8JmfBw>Uw&xn`?FZhdqx#7U8b_MhSAazRU{GEREu>_t
zoVv)8f~5v&{K+9LTa?9-0{f4{nKm%<CW!u8tv_*#kNI`eY~pFsKqwP9^^|>t3Y}K3
zd)Oq1Qg2iu5<N_nYHVMU!xdJMv&nyZlSGUK=@e~2RnQ`Z5e%Kdn9AY`f7nz}xC$Sn
zc_mBv&`C`nBeGP<#QZsVemFg-c)g++x{kT`H4W<><a|0CuY#kNal=aw$*Aj=uLLr=
zRK1RwBpZS+<<^GgI`kp32u{Iqb#u40CigQ@^jSYvtNc5&f22(&(pmFls}$pob3>ib
zq3^)qn0ex#9U2qVtfU_ke``eM-F}d|`cxSPyeO)P#A@fIfDg!=NDm%3Z6|8JDb0eP
z;3TwyN$X42`jH)-A3jQ8Q+7ww5<4v_%GPz#2-S)5ll9uePDA7Kbg~D@+=cM1O;z1e
zkf(T=l{kt5yza4EsaVTG&{sMudri?4Qen}8n{xP>KUV8KSN)0de*p5fxnZ6n>O3t8
z(q;cDZ|1gz-pIMO?gU7&RO7T9)A9JSS9y(~Ru?Hi)gX^1`SQ?M)XO|CN5FwB4Y?>O
zq_@3U<=k3wed5-YIkbEr4RO}x(N_qOj~arSx^n##v@R-Hv(iIOX@4l{iMUmrk2IB{
z2YO^pW!b}W<{i3Jf2dOt0iEwiiuV1L9$Kcx{4_0<SN^eDFD(CMUf^ua$nIr6;`P|s
zXO%chTiI(0{<PFOyfvpd3ZcXj^3vf}a`Gfaa<C6Cn28U`{;RtAQ!=co9MrdL+mgc;
zD^;mm9r0V53(ua<PxtklmepkVq$eD|+3D+PM?OoABLjn2e{IxBa#A$})avb$>>U<b
zMZre{FMd5J@N`OI#*MK%FzN8BL6-*2;7G5mc;$7J)%mfckRPk{m%l|d{;7P_eK<(F
zHn$v**_JwqtWllgxgG*EOZ7OduH~x1l&l+TF)FKWaeId@!QRpA;`F~aHmB?)RSx-b
za+N{O6Up}je@wt=R#&Pyzi(_Dtk#MhG;~Q$VL2Sari{z?(&&y7(`$9-1Sqx-{Yccr
z)uQy4oEfy<O)55sJ4gIeCCXv+#qlS>peL<_^fQ(wK<$!{qV~u0W3^uPN8kEetQA0U
zcS+T}m)^wLQ9FfvxJPb>7bhgBEh4L<)pX3v85GAgf7pM33UZ7r(xu2Bko0h%AR4@=
z`G!C<2$j6VR^OkBMOTjl9Qp25pIT8~(`FO!Szg;S_oLlFFwOT4Ey%r7B9&5Fw3H{S
zKrxx60R#2(sSmlhK#~NX<LDFEdgg7S+Vyu1QIk9`$T*DY(&vD<;m!Jw)oTBW>8_pL
z*+yQ%4Qr)y-jes@9_!S!K312jQU)A<^P$&q;GJ8A@daJ!68Zj~Ofb2B!Epieyb;8F
z#GC*R@8Z*)4;6Z=4$e=kDKD)OmY$J>`o)3sexJZVBquAbU4pZfoqizKDDMHhO2J`C
zCsRR&VQWd;)^i|Tpe1m*Z$C4I8N<J;^|4^SzGg9;MN<+(s;9E27aNw;o1QIydg!f)
zdZVYLj!6KPlGnq$m&Rv`RV%z}gP%Ht-N0t=)!V)#LR$|RVd*Y?*z6%6X-Dj&+@Wns
z{O}+M1S7?=r6PyY$<9Rvses3bVmD1Qjt5An^Plp+vK7^*%`7Buj#JIisE4!H66dJB
zn-dKn7S@y_s+S|_Vtd?DW!_4EF{wa&Ikfs~wO*3xU*-i_y-dLPqc!p&;UehpL<|Pu
zcy)a~WH7c)BbAfgvzim$&ho5Fdm>H~#kIG6zzIM%aaEBxLg^(Rlp{2^<CF70x`WKS
z@}J|PZee?T#B@ntnICwmq!rR2)&(Ma*D2{X%LON3%3;g%BtY2bRuq4KJ<;J6PPv(z
zZ_b|jA&0Q4A~K8jJ4%aB2Zv3#I#nclG0qV36Dz0o2ReO8rpGV4NwJG6YE#RUvWZWT
zO;r;)mlt|^^*h0ImqMO8)}2ZRUU9ImNeO|dn!CC*d;3*`=6yJj=$Pp|rIQ!sc^yk#
z>=&J^NR}nslXMc_w}DlET{PVSrQ4I4!#LF7qI4$jo2<1UzAv_{T4Q=Gu$d1<(GPxT
zC1dQHL9#C>jVv1WY_1OMnvjr_o-VnL3cJb5okO@HAzAI09Dg8)*S$P-+9z(U^XAdm
z^jW;<Eo^)MGS?9Lso_l2c<x{)PWz0iXUu$}u4%Un4L*f~+F{xt^(%lt{fLF?hyGB9
zYH`k=kT`VwRTul<%-XFknj?Rvmta)}8h=piWCI2c)z=-#?$k!7_cOpvFg_K?o|xQL
zm=xo@y3<~HbugG13^38kYe;pf?1cU!%KyEWFX7An=+b8`ZP`dKpAuDdAHqpWG+!r0
zk#|%4PTuNmB&Y84zTEm(5_Py#U%Z^FR1)MM7W1}=U#GZQA7ZK$fdA;3*t3d>j(^&P
ztohXXyzk{pF9&gk1Xjk_u+%LIY609`nqg4|Dq3gn$9Z^-%7~}M8cPGr;z*@#qV=+n
zc=YJvMT_)p_X1~#>#Lo&{Sz&d6{C|Eb!+PQGs?f_s`ED^i3*@=d^oqm#vjTJ;S=N;
zw`Q_(t-1hG_bXGDPd3$~W27Dgw|}!rU~@i>eHPvB?6T|5-Lr~_!JB7_wwg7By&aNa
z16cYunOW%z%d<HNipuRB_BYBpwI5b&p4f8V+bF#}ih0`zDnQlk&`eMpls9^F@=P~R
zMUmAu=eUuGgAMJee5kctmfN#?w<^Ol@@&`b>G*+8U-$CuYxdO(6^(7q!+$Fm7VctW
z*O51!`;aUG{Gp^F)PkQ6sY<qqA9h>QB3P-6TbV+3tmCHy=OA-_sK>xYQL*V-RJrR+
zn(>fIyZb9?zQt3$?;sSfJjCqgjroUw45V*c8%a07$f_(|3U&T8f86^=sYNRdJ?k;L
zxvv~J@1TMb6ptR&WCJJO>whU_L~_$eg>xZ|KkP4g{!?Xfuht98e~Ibx+KJVrY0#*y
zB|m)Fg7@egx?E}>tR3jyN+HXr1Mn$e#pX7QXVG&U+Lw?a+ZIr%QE5rFp4eGah<WhB
zDO(&-4+?K2FMaAUKO*1{hgJm_WqX^P<UxT^$hNwLSW~JmerLH@i+>dzrwkjf85~ld
zx>L?aF^r@}gQ`zz9nWrrwcB|&vUcDcva_@`>#E_~=_3uS{G+OVNv5;8KO7ss6A;ml
zv3cFm>V;zQ)M5B?LP@!}KXjqu6<9KGUdmMKE8O(HR5ymaKf{#9#x5APK(Dd2WSeng
zvbLUcRf+Y1s9L5+YJc%}Rjuy8l2xy=OaLb<Q@Fjo<L>cG9aZX7<7U;w37y^>dML{2
zVqIJ7Q-2BIki7-zsUs>PX3s*j*3@+cLXtp|hDn_izd%ghgZ@~p7nc80W)a>f51@({
z5g-Enl<-Nzt8-)cc+}%;V57?s^RAwcJ4?CUCn?oLVVAU1D}P|OLFVQQ0P<d|>obz<
zqK<WS&T_hpDSJ*M{oxZmpQ>8jMUdYN!6T~Oref}wjJE8+?AA~+4|sJDqkP$rWI`SC
zTc@sr!x<coG6my^TXjQnFYm~6(QeZ96++u`^Ny~_XqU04%*(&4^_EQk;xxBg5Wc{6
z-6kvW+mV`c+kfTlSyFHCo?|*_TUsE5X-;-?L^N7)W}-Q9*`hMP{ZS4|Q#S_`hF7`=
znTu^n#F#eRykK(P?a&)9=g*wavaZrz5P(FanLuB1Ch;(+%6P=KE#%p>PN{c&RTl^s
zXmwn6^40g(Yq1c#K&w@^aeY}pIZudzj7voZCcbT#uYc69x#cypPR564_di$b(@z9^
zd@13b(iNI<nRg#~5#CcLMO@FV0(Jz=O((S=Wr8;|Q9anM!AsY~ILUkgi4A9es}fkQ
z=^t8y*WdZl6t!$S*}4szlDc&Yf28{E`7EW!cW0}ZcvN*+R4<2m56fnm<U!RzmtrLP
z?rA)2Tz^X?b0{B=T33aZ2U6=ksRsehOI?$LB5}%jj<KsyO_5|D*w#>(H{~Czm0mZ^
zU;RW9N}i62oEl$+lX_Tz?5diV6b}=$P(69W9HZ9(l(g0o5*^RlsDs5d8Uay(9LL;Z
zAZ+<La<luF+H^!vg0XY#jmW~07POupbIv{NUw^Hp>H?<39Ue7Ep%_b2YhzNHmDgk#
zl$Yy3g~XfVbVzMG|2^m8@bSL%Jn5>O@xJQfsA=mPyk}PX3DgR7RN7NdQL$4hKUV7x
zmIo?+s_LfOG9ONZNR{fJGz1EvJu<>X<K9YTW$JeK%=%2VFD1#Sz=@@mW8B#BloCg9
z8h;^(QRDI!g^I<?sZ)A`_`I_(<h4b|#|yRg$1KXAM-e%7ICEl|=%xCp-Z<Un57C(<
zK){h<pvJJ)B#~o!D3_ES*I88DLElGB9HMs()F(Oxrehwr_1sXROJ~cj*<_UWuEIJG
z{A0ELV0q^UK2cuzNIpRDUR=MFrD*riAb&;$PoU4(+B&=f0fI73PTw~#@q<dh_J_{!
zIOOFJmrXUodjsblPTgD*(<ln{=h9Bl8|~Er5)SX=kAdPyb{E@FKuixFxgJYOSGcI~
zy_?^o2Q!#ULzSTWaH@2TH~2W#rr2DPgUPR)+fKlXZP~Nw_IfiY<HSoim(r}3Eq_#q
zDv#8E7~p%gUReH1Wsz7TD>}&!dUWKSR&=*g-Oem<^3LIaIC~~?OhVLr^WGG=xm_K}
z``*3X!fPU#cTd@OmLBh4_yClVCac)lryTii4!wNbgR}54i`ut*H4a5hiRoQe6!7Go
znmVh*B5Da8^t#$E<F*1+l}q(wXMcrP8*ArHhX-XWfg7kluEWbDg|fET+bypt8Tx=^
zOBn_2-ktgWv0C+IH~H1`x!UDeBFFe5FCJbgJ4#%v?t+8wTDxAkkjcr~Q<jSyv2v_E
z$E3047NM|tUWj0Wr{#a&!0$n+LeaTyQmbWCymauO7-7jd-Ou%P8`w^QvVTQOh|L)c
zMRmQ}aJDYg?SyL|@Z6d^d<`{BvtJb{tyZkwBpfPyN*^G!7RiN=<bPeHyY334&1Zk2
z)~Rw8VRZb(L+#+rf38-3&ya;L`=cIjYX0_Y3lh$n@s}D!nZwS`(7OFrQ1o%6&49bz
zkH9a}j<LhAXW$Ek5RtQ^Tz`~34Cm)04J(B0jYd^m)Cnp+U(sFEf8v`y6L)rcc+aQo
za23gH@!V4`m-lO6lEdj*-j~7v_0*iZQbrR4>K*tt{Yey`&AJowW+c0W>kQi%tY~~0
z_sG%M#`S!jizG~%1}&?m{A0D=x`AJ+KVZ-?BvRh$({v4pBoGmzhe#qi8eNi5u0snv
zJ35remkyr#<Fa<_whHX<4J{UM`L-P0l3-(LOgVBXg_Z3ZomHRT&`Ay2f7&d2BZym9
z8LwH)dtToIK@*p;UIrC^j><^`&$EJR%BV#mNSA<bi$c3`-pfeG(@ECAAcAzz;Co3P
z;4Q0&_hYs4%T)MFnT1-od5ky%ybVB!+_qVsNNxT&d9LyKaVWe-%G3lyigsE{L7q9N
z==o(jJ4sL)r`jFV=a<$}J__i`tKe=g+8a+@dDy=WODOV{Kc*{x+Qv}(-Rd%zR^>T4
zfJ;evX$h-RGjVgBs=MafdH1Qq;L~-XAa9bzv%jb5FUPXW?B}SGm#&AxjB=X_hzGs4
zO(gj5RKmLqN)Jx?kJWnFdxvkW5xw27rAp{Q{-DaC;v(m%*gWOHA88N`B^Sw%h#<2Y
ztb9m?n#$`~C9%GLY^q#Hdd5&bsqzEPZ^}V+4AU!zX9YzAM`qU?=O!GzZv*8bO`X6`
z@-V?PD6Pn`Gr~DTpnTdX8;*68z_@xNhOx&;3Rz;RcWJ%zlv<kyJr<;VYQd+=M)_lw
za)amftrSPz&b;t|wyMjoz4g};@cNp?s8#0*CCV>AVL6+BCYn|5H#M6MJ$Y_n*b|h~
zE3cCGajdE_n?a7<MBXIo_pPT!dCr+*b2wM33fS!4O@Mo%GW(j~bT*3z+Zl=YHCIi2
z+Ep~TYh6hTG9auGfj?HSgR)S8%j9BG+7NCR8{WzD>^0Y|3dMDRB%H**$kP-9y=XX=
z2#EZ!gCaVAR1-6CB03{?E0t6=c_DB9SgpTWBQ1XQst=h{&sKS6pA#}=7HV&`2I*H0
z6{kMgz*lLxsM}8J1YWSDKr@PGC7PA=AafoZjq6O=HVXlINDkU+Y)jXU9w<M+HaGQC
z)hHnzA9dIUW{tUNyyUoxp%gUAp<>hdlPO09oGwg%tWLg=tEmMSh)}BH(#uf2xZ&LB
zvaGoC7F3p+@u;e<#|?kSMlI5toN;#=vne(8{8+7*)=2*5LCBxgq>XZ7QE(Ey<Ee9~
z9B*)_>J3@}0_7aTx$er*JoGdL@n3-ZQ=^{58D_TwqsYqFRC%5%T$zC-T?u4fhgt$8
zPU)n7=W-0vIqr|C@b((3Qho^K^H5<cJsQeUjH~R)4|B%&@q#tF$CNjFD6USsIwZR6
z@QwP}<YRWdvi%7Z{aDU{0ZD`Qgv+&!=<F^Om-Ns@yrmzj^_n63nl7+6A?IDAWCG5#
zv25*nX|+up(TVNQcT1Vz^I&%zQlG|BM?<ZDbz5fjd`_jfZf`Oarv)uj7#Wzur7)vy
zF$!PM>0#4VWmi8x$miXCZN=*ijkT)k2L1F(Oo2_XZgR}p8`W*}ME$SnW$0Uf8ASeQ
z0@kY*(rl~1nhb@Xf^!x+zuwen9B`tYt!uWUo)-4Z`EXh`0qBn(tM$?v`C{olqj}GN
zQCF$_&Q1y1?K;^eUIYP0F>ciqK#A+5ZqK?jni#b3qtM|AIQ<+J&w{LRHp4kR+fr^a
z#n{w^Qs!dib5`Z^LCVg=Ss27mKk@0u$;rRS0E>(!n|C;g%&}szEmH^u&XrQ^P~w3r
zDht8cR`#k#9d;Eq1ABwDuk+G1>Y46;cd-AOL+c{|oue5oSu{|^ZkwoLUH9*5z3sh^
z&)(`Pt+2f{Bt4a_>vr%@eM(RL1MYM=p;$VfbddIdJ;V!<g8N4`cYd<ZaVSK@_OJ=K
zE+FVQw&G}T=tT;9R1`a3ylC^M)Ln;5-cdeL6d&G;C25gLUfhr49aK;n&TIC6r)AYV
zHnevnUsD@Gn<k)rYv1HfT_lH}5}wM5+TyV~eN<f3>@e-Q+^NWEFN2y}`)T!l2^T+B
z>o1l+zM}l0)!CWW8Oj_=PAgOT@L-N2>6fe~AcxJ7SYTBf3Mg4(Y@6Xnl{9LNTP?i>
zq73RH5@77ZYle|*d+sq!!h5xU=b1I9Rq$WtX#6-mh+G}|O~57fcs4!%R)HN98%4N;
zAdvX-#%&Iw&r<ADP9`B;Q_{h%Z4UJW`QG=Y3Ms-cw*;(+l0<k>vu*VjAcy|7{1o2V
zF@CJpi+B1J<r6WHnCv{8cc;&70=cTqHj+WUmLu&fZzysz`keRHagkGh+9;dVkY){}
zulR4Nxn4-x$pz@%%dR(J-wBpsUy8>Cq%BqaMshs$eZM6+JUV{uu;1Cd!}2;d?-r|p
zI4_H=pth2{HY$B!l(SY_E1b7=cSS0BziV?{9fFKItMH>8PWdyEz}tv7DOc*5qd0sZ
z5dM!S|FZYKzHS4TvH?JU8t**VOPwv+Rh~XHVmSLAAh(nzWw8d&b*f~ymhyy+KeaXu
z#km;@wp;(B7A3+Rp0xXB;dN-p+tnxQ5#jvx6;94wv6g?=iQX*|okO6i%Ud;}?rFnA
zg`+*PRimvt2e;RuC{@(EWghI9sfj2NvtAl-5hopeG!hpQXtuq75uCM_-KaoJCucr8
zscdJCzOC$ktkxea57_y{Eh@k42q*#207^B%Y0gKG)kZbC<OEiI(b>*z1baPGWfFOT
z$EjnMWEwm8U1m$sF%x7aPcM6Wv*!<zW7dzih`{he@n>LvRu1#MT8jEmW*(MRkJAOp
zV)Cnq=C_pu!K+z+$c{T(KuglnD9r&zFL@o0j#`%tFHqW@Z7K)v%1*F|&&aRb&X;VD
z^Qbx@56Uua%?J?xp2YIHgV0^`OWUpN`(@4E^c^IJU4|^JK{@)70Qxwl0?y;%95}fb
zI99RcqUr|EAI@G!)2CX~9{{7uoB3qF0}#ivH9@8m$ftCF3J`vFx%zD(@;-?qSp8CK
z*HiV__RhSB)q+N}`yy+HBu8ho#?Wf=2@VV`LajclhsLneah07Hs}l51d>nx#QqXf!
zl{SZZrN&IvA*f8$!Phr^{aCHPajSeyt~AG;`OL)kKqjHGvgJb!w)HlZW6D)35${wt
zZyvoV78Z7Yu+UMOa+U)B(Ogxx8%xS^h21U%-gn0lPW3aLA0*f%%9pd+Xrhz?2!EU&
zT2>k=YAoMvJrlfEcy3)Hwdv`c0Hs+7&V*FmbDl@t?85fGkL_|Y_B3Dz1Zw}i#fFtd
zCIFCp)c9xf-IO1bSTMZrX&lRX&q7W4W3^sBWMB7x@?Cj^wT&JK6r9AS4lm`3$|d?q
zCPxSq?j(T}Z6$KHYS-{=>n3Ugo?1*!p=No|07t5Ri&inwQJZ2%SpnS^xBpL<!RM`z
z=Hwsm0u_{0oqx)>DK(2m>V`Yg7>ADIKZ9t3h(=Y`oiC_S=Sj7avwszM#{=lU%2u(+
zgBmt}OHNmyYBm)-G$OonVZ%wCr}B4F{x<FYSgqHb&lfk)!s_1f+A<i#sPmQgGC)((
z<!~s46d+rTvq|cFw5>DvZega$fr{SKE7{c?ePDI$5vYn-w^(or9OfnIOCu<!GbDv6
zDM^lcuU1lcF$2{o)^AEnFIzZsdR-st;IP+!GjC|ChlWG7z3O9J*XdNyL1N;k7p<wX
zLhO=XWVDy9SnT}`=e%p;tE%cM+Y0iKh_-lbR9HV&>oxoOJt@p9%~fA7;=*xEM_q#^
z%u5yWdMTi#CJc~_oT)#xoL=@15%u;94{x#Lx;(RXGF4J|;EE0zQ@kYo%AI#(vGurr
zR=G_^k(yuXLw)uZyN2`Q6&ZjjSJJQknmsvpTc|i3l|2#(a5`a^lL|l2DJxvn$U*ky
z4XV|fWF>M~W6;#`(#umrBvtY*g$F6(c$E~`UMd<RIVbn=W3}E+reA7hs!vclWupQC
zN+p@YU?w?OslTz^qXx0xyCBk_-jlL_tGrrax$5DG<c+C&<-GsuR@}E`$tKEku-Ow-
zNRFlOfRV=}5UG7u*Z45ND-V*L<P*2f>+X$ra+hsILdA62_g$Sp#DaJA6P=D)1OwZ6
z)HSEG;VF))*fe2uyZcHe(8BP3fO~!4cxFeU*_PebnZPiSIm(aKdijv0&)(91)l0oG
zwx&MyhetqLXmUl92CP(~-AWm*oXM`LJ+*(-o~b*lwPY#SgnFb5Cp$>4gLV$9ozAX4
zHa#_4v+RpxhUI{sf5n@Bua^EZ(WxH5TU0^+CO}IekYG*tsk@gO)2)G#9W$jC2l-BM
z-K%Sz>m&$&+Xts)Rvm4NLsU0^YoBjE(4990m?UP)Z+4{`;^UNau0K}m`r*LL2liQt
zeuh_9#yWaGNZOx!nrSARQ8L%6&FNSj+NNOEEQ8;=_2z~b7-}b~bERhv*k<(GJ1@<Z
zG6!d9a~esn!0tQRFLb)3e>lyKayDWdr-sk0dc>;Q;igE|b7QoVbE=$w!<m6!()Z=3
zK0`GDmFW4S0%{~7FVKOEDu>|p!pp^yTvHk1Je9vgQdO;f0tfi@bVT;YYPEk|M3%U1
zfD1>K{L{Cw8e2^WIfC(r*pM&6FSVF6Kme;Ej7-GOC9_2hcd8&><mv4XKV|9Ucq(8G
z4BOjblEj}tT6OM8I|mhi8M0yWePg2nu;O8hKutY$@T%@1PoPpCr~9-ByA@t}q+2bG
zz(^aXaOEhOgLsBp4`QB3-R28qH6!KVaxn045N@c=M^H?<#8QJq&FCs0K^@$GSL>}~
z^QEP$?qDZe=iu;-cR@=jIbu9v$1yuX?a1o^?(h=k)|?W?CnrOHl*Z!#6g873RixJp
zeaS^QLEK9V5pR<mtWu(%dTJ7J*^v&(kZTmWf34P8i*`W$QN;Qf-imI2WCEo6#w6Y#
z1Xib_+RO!S)<yyaBL?+OFCAVev_=?`4DC&Wt}DO_xS-zrASUopw2;}Z8rt|?O8#qg
z+<&ar-#Z9m&PNY_VyOBORfE;&S4;cr(AZLieO?WTX6U&bd@u2jB(fp_RYkS#+;eaa
zJUvg_9kZ#byfYh*-2NoTolxQ6yQkEfo#tJEAhh~A-Uz~W#85oG0cy%aB{%u^?cj=H
z$I=lwtcs|}@?c3E43uvWydYwW$d-IG_=;uU209ugWNsRNsIKCDugc<+^ey?^w^v$H
z3%BtoKUV8+Ke2u>lCH=0QkL5ezMP|56{o|wrN<I7U0F?ln-IAK+3O?$dP+%PqIM80
zznGsWmBmZ)F*Ylem*%xt&}*D6B8{kxtxIS#GV{r;tJ*ut?;(GHcG=3)d5_!j1uR3@
zfpe`M^sByqI9S7uUSWx>{2yCiD(vdi!D}U0P(q*D>m~oz%L)Q2xb^AI+dfB>Lz|uX
z<~Wi?c+m6L-ujE>&oA{1XRuAO8uv_PK6E;{bn`B4*K=A=I=WM(@Pai8*$>#7#7xOP
zrepCyK|$3?jhhq;d&=VVjc^3zm+J77u}3N><5<LhTfiv`L)v@KVmOQ4Ee=l~f^AAv
z6cVY6?a(5aVQiL#6X~1S)-}MhVcs@;&(tG{bkKY*a;0^VgOIxa-EO|(<&zg|j{j`C
zsijFoQ_SyY+<MKvekl(R<p~@hzf`|S>=pJZE1>P{bWls?FxZfao`Q{RHOkh;w-+jb
zc5O?4`??7HPAREFwW3mNVgPpEqbc9Mk*I70J4?G3Db748Uj3df0IQXaW^YCRRf(;-
zXP#Hr1;%^N&VqQ~w}^k*lgStJ$})Myu1<%<KV60?ttq;;otylCLo#tu&`gCee$>*s
zDD45S8F#Pl`f&#l-?OiulXw@aeCJP|yv6T-$b#eCE`jyYi8J0>NS3V0wiBj_KtSvu
zV9WP%=tvp*>o}uR2U|FU9mx|mo?5OM|1sf$!}<+!930~E=sJAMMfm76w?cXNTmVRx
zJ~$={EO;&*V7%YpEoR=LMnU^lKZGcS$BVi1T-!E;DA#9ne1YFAr)R2n9rf=#DTZ}_
z-Q8pBl8brAvsTyAG2(LlSgjYw=6~prO%u9?tM|V4S<1yLpOPG_<#0PI$ZLB>%#Rmq
z5=Z$;m5L5+w#NltA*v)bZ%fyJY|03aKmwJy?ie%`$XWpDA_x+%+8~_DF@Jcc00Ieb
z59Pd`0!wjgM+uw+eRz!l2+cp)x*!LCFLRQ&SaunmP`4yh9hUdLCq3E2AQDO~PM!=U
z%6p#iUL;02^~=t%j-PwLu>N}+Sl)d35dH`LR*$l;bxb>{G`j<tq{7F`I({JG;(F9P
zkzAxH1XT-AU4i#bu6rCsh%>XIPg9nqQHu4`8fgv*Fcid!vly{C3#@Wd+~^K}TNEz6
zZv&?z`(*WM6Q8<VW{nLbJ?(fw{IsC5wPM@KgW2XG$rN@Yk#)N!az=(N7HSHaT|7mq
z^6WS$lU+vLFRztEu(>|{P?qpqI*0@5e_;6+U;aG4SR-Jlr<5(5C2do0m<xz0zb9-Z
zJ1=g4OaRqZ4!t=z?$yz9f*8+#YVX84R!w&))+eP$5Ule!Hy{8Mp)qqOY4N|kRcWOy
zH3^*${P0c<=T00x1%&4%Y`aSbd<U|$!i%JmTf6veKFPWebtKFvokZZej7C#6eh}$H
z?QtkarvdXiEGm|+IhNCN-`i;G)U|setPHVp`mtJX?}9G`aV6Ovjp|K*|1kY0)ZLr?
z7)gn3Z#vae5Bif|^4(5WlNzS-`^oxAt<k#ea_1j6UrHjoThjNGh9$ZVXLW<Kx_8s8
zrAoQD0@)#dCRd1`;BcuSvU=HoS?eEdFwc8vP4)mJs<Tk+{mX7Kc}NQ9p;Xj(9@mBh
z!1F6Y%lRnQZZ@c%lI_cXDtVKxl{Oop^5Qur5=y8#+mE}`H($Peaw170Z-?6!fGwLk
zbZfi26dG3E4OB2W@%2d{x}hW*A^HT@9lAX}aci`Jk<X^d3}+-t`6o9G-8fHhF57pk
zdpR$y@Dso;IYspNQ$M^@#g!f2R;j8N-P~DGfPj|^St+&$h}QOh^lZ02bCT{6L=zy}
zeQh7gTo1A|V5Qz$A4tnA5FcrP$Wj0dVA$9J4+{VpWW1?Qp{Dl_bo%lktKa;s<tSEb
zsvIwkK{@_Kj}F<Vs<ApD3Lxe@u{@MmU^_xAtD)n0mH;PFHR-UjrA7{QDTwz(+vTeW
zL7Kg*+qVX_KC6^}AgA(XCA|@ZLo>EssejdI1P+`QG)*Cep#^-m`CzQ6AZVL+Y;Lb=
zPwDVRt(#0p5<Hw`$tvZZVtTKyoo(T9G#br`C)E;WC=?N@MPG7;_s44e!SYA`>S6>-
zXzw5h9L_wgFeNG{bs#zsD5+l6n+BeIWCB{%UDc0zRL#qOWfhlai!}g!t}H=rE#=0%
zoVpIn4}x#dvePLAW4r98IkhhPs4SAL7JDk1HVJB%>|^C8I-p|CEoGWG!Cr(=Y7E^5
zRs5y!r*b4Z0D{;|_Vy`)7TGGE`|3+G8}}A)hhi0U34UN1HDCtmdmR*%J^g2I9q*pc
z`Gp{Cxd9P>D0L~UL5@TTeUkayD$NFC^|>8{L{sHV#OXAIWCT?QHpycWgS`}|GD%ba
z03i4Ec<B|a0XWeF8%Ja3HVh`e=|_K*Mrrp(5MUyuI{+h7ECznbL{vcR?MgTu14iKS
zZtvPuH+(dh4@Ev9nTLQkRl{)bVcY<!*uBfAJ|S&?JCkkmJh5_<s*~T<B!NE48&(j@
zaUMTb>*aA5;}_d45w_0d9wF*c?P`t9+k504$pX}jg%bEUcZ8Rce|nFk_=3#6ZBU^q
zgT}AKsQXrTer`8L2Vfha<hHpdb>`aY9_qa-Ji$x2KfKf81cD{|aa`gdz>`hObt;>r
z7|>mR<zU^`8r?2EnU5k{f|3`_99C6GZA~jRnfQNlJ|6|Lk`;8}B=9MgK_vRCc(cx9
za3U#gf2`KuI<bCfQu>RYr9FVNC#pb4zI_pi?Dui*mB8ZwiS!Bn`BCI1Onu}^RowR=
zzeh(nNQ(9c#@2UQ-u*SgTDYXwXY~$C)ub$cf(6WGO}p~>ahtped3p?1316JMd^=Eg
zt7(`gdrS%9pmdpq7ir^CPUEnlF2FvroD5(Z=#d;W0^m0*yBD-Gv_DsPgQqv(j=(tS
z(bB#U-#4_^`mtJn>qLU?2c2e)#c~px13!<GT9l6#Gz&Qt``W{FoSCKviauk}HjveS
zGBFe+G*wl*r!$%*oFM>vbXM(~SFE}FrQcK67Nlx0oSnSwPS-UM&}Tle%hqzzl4vZG
z@|c?TIe&5RbuvMot7)NNBf@sNO0rc=01IOWQHl4wK@phJ0u)3os5B2~ko9$RHxiqo
zs|xD<pR(6dS9ynF{5pxRI`PY|T6>^>)1F;qAC05Qsk)V&i^O4}XPH`X0B52QTgNB;
z{n(85AGLE|3PH|wXiE#~B##H1$|K$iWav<6*ZNTZ>1y^;C4?%W1OiK+xaIH8><vq9
z(u=kP>5ke^9os8=4=-lRiDc1C4YB!x<bUccpz-ZAcYN$*ljEtl*iq*eM*vHIMsoLX
zUgX|W@^`75U7`Ud=bf+5KUS;0JXgL>Vk+B5smWacDPI@AhDyToL!lg%?GDGTEWAgM
z^LaNQW7A!ie3|%|mxlGEfS!Ur-a7aybqPj2SW@rgS>2-nx>-;O^RgiBb{}7=KXPo@
znF(;Ktz_3u#rfn0U{JAlD#ho2B%6K>VGAOAvDfu8JgxmGF_cXU8y;S2ro^64?S;Yc
zpb@XMRv?~`^bc(W9?_uM?#*k~AFK7|oqkTDt1RP7?@Ec+7YUesn)Qs<s^KV8O3djM
zVqtG2S^Y&-kXdE<G$ND=F>ELxp~}@sfh#uG9g42oc~x&59T@T8N_dWcyw5=G&rf>K
zkR`pRqEm5=7clf9<g^y@fS+maX3mvy&8u-Rsh1Tg*l)ZfE;Sa6O1{KB;7LB|jf7=;
ze_utac(Lu)w?fiIx|Y~^W;;n<UH2cW^`}nE;Y;-gxKge6Zqg~mp2d|)aY`o*XX-`w
z@lpw^G%u=H$lLyf)V%wDaOjR@D{7Pye7Dz7P$q-86;^o!+Fj0znZJ^J9M`{=771Nz
zk?^IZtBRS;fms~`(oLk6QK_4?#gGoT^&Z6tN<%cK(aK$c7@R^<27h@dw(_V+S*o}3
z0C;KpSFF3z?bVw1bST^gZt5C>fg>s5(yzGn@-8T!=>pBT8;K2nh;(~3bn!M+g8}B*
zIDXEp%r8jnT{<4`P7+Cu3bHiW31`ij@>ugp@ZVxlr>-~ItMNqza@!!g%0<NiE<JhW
z)@!LKMf>42U!X?2wQUfUba9URryr+-<65ATb-GrL`H?!;cRNi%$y2>NyZXGWbU1M3
zSYOnWe77!|ZN#~M@7^c@w2P^`*KB>nAvc3ne$&6J_2!+PpDA=|P{Kpjoj^7n$)^vo
zUeRV{r5Wwx41F^C1+vd7)wu>qt9tdTs>*m|u|L;i`mks}!AWrZo^wO`Yf8m(U@mQ0
zvv$_i%v+a@%@^BE-F_Y9dU7VqtK+8SO>^kB1n&(<EDGa)?McTgaU9r+lm#666xaL%
z+a;38MYwfYu4JEsR6-qL*l$2Fwq`p(LB8a3-dPz8#{=Sz)r$W*J@BjU4p6!(uTBQ4
z`sb90(lsbd0>@@@%r){(ZTcR)T(URNoJr6IciLaLDL&cMOIK82HvnGGm7{0dAX}-Y
z$?_$Ivh5assP(>hLm%$~PYOZqwjPp{EaCMuaw~=CUH>Dq(0NShXHjW|TiUl2gY2{d
zmAY3^`Xi|8?uDtR_g3&HHO_Uo$@y&9s&eEW?g-xEb=P+Oh+FYJL)N}-1C@lO&Y`%_
zJJF#D=d^805{Vx*+-$v#>pq`7LI-GSBo-n5WA-_Jc->kqETwb^0YS1vkk^sf@-tr3
zm$w`mS(;xhebXL7$649RZv@eMHL^X=lWZxSW!f^S_Pa^A2Wt}mxN~`RDlX<Y092bs
z+FECwTJ%a(^^CJBpfip{_v+c!!P2#nh0C{!d~q{%o!;k^YPQ*btyccm=^^#P%c&&3
z;<gQchM|Mk4pij7<GJN}9v~+PpVCxUrcP4!-qX2x@Y9|}(iPUoqi598p@uwuo%~Ft
zqk;_xU4e;YY5S_@qFf_&!h5xDK(9E{W_8i=NmB{%fk|U*FEVGLR6Z;23zAFvV>Qij
z*P;0YB5I;Tg;*1aRi!fy$>pW~(o2!W?M117ZT*jfLLjCHr7#Kmz5Q6N@|x!SMESu=
zsOH889X0973Or(m$ppT;yp~7CV^lkRs2!U&<0s}s4!T7*c4u2rv?=lDUY;oj*S&oa
z7=jkZ*0_;4rNNb#T&fFJ4)T2Ct;Xk(zh}cT8dmcDqA2pvkH-5h<wiir*&(MzIN=?C
zk^pT95)q=_vOF81NI@BIP#()w!a9d}<>EY0+rw{(0;AZ?PD+k*9(w#0<^N*&@`dHK
z20Bh#uS98eu6p&_QgNu_#~EqM_%=1=?OoWLD_}uYS=;F(`b@(X7H_HR9-x+s(nEcT
zF`KG)jy+s9$m~PQFtb%d)@b)<_Vv_%8Vul1wpxj8OR=O-&TtGp03v(01mh%AdOGgO
z8`Y&yHy*Z|O+D2I^j;m_CAopA$@8`+Wb4TWc!D+%TRI|1>us@(TRq^>{?(+c?;D%?
zrOZ;q0YM^~V`R5tkyCjzXAC(xvOmaR#}*Zeo#pcSyv$o<=WpxELrl%kN7$`@3th?k
zsnXNoC6+=(tnxiLK236iDg!}}SCRz?|BX%o>wEyG=qVw<2z+an7n1<=-UAH6YI1~}
z5@B6)$B5>zE16`?!+DFMW|;E2da)_(c{;~$|AoN+sKY}}9d>bpob}>lknK9Y{Q9w4
z>BSBFpwpnO*k${JcnW+Zh!b9a`5o6P8!lIc1X!=BC~6R415u{zVltEoTIr$t;4_IV
z!?eS2Re2^Pi?kUViL!Xp&s5E0Z%w6Wz}FgGyjM#EsvD(d)9umcT^stz(&>3&K0Veh
z#V+Mv2E`rO$C<`6Z?6${PT!5xXBgO(wR{v330g>m!|BSn$M1@S>&;MqIkpmz<3ay+
z_Un66m^c6BBBBPvO@0o*wR&?3*(~L7NS~TGJMZnVhZ;49(+p+HY+f?r0X<Fa3~GS@
z2ICa)hU1EpB_=tNExb?N61O%(_Pn_B2>>SN%h+YlyNkgAdrZRPA&XW8Jg(yrDO~#g
zK3QceDr<W?qR?W4`mr;A>C9`^fU~A0(>QK1%*}h9c1<YFLA-{}BOh!$dkRqv%Q<t^
z-H_wMYyGiWuSwxA4e%~u^R_g3978j^Jdu)5`5#`J#NwEe{)9)N1k(&u8i+E5#G&C;
zD(CVhidO}Kr!t6kIK5mZOthoQq^QdLFZs^|LQeHX=DLE~q3_CnC)`P29VZYJvPz;x
zhhK=D`p7%l%9cB3(u3W)6%Z#wE)rHX9=lf3ETMUW%?5Q)r3`;eJGUZ8^ivTU%(Q^z
z%^`bkIW7CP?8j>TP{IQ#ZdjAHR<titjjYEu@1JR;n-iu?IY7>mkvyFo3%>{W3k2$Y
zC`hXe)yYqGdm@Q{JD^=9!%-_v9o{o%IBmC{E2hUW(UUq-{loYD)>GurT0K&SIQUs~
z{;1v(YFxuxO1I*}Zha!Jj)dfC13+YlAI=x09?g!O_~v3CRsfVdPm+CJBq~w`>1pY3
zLS=)f#<BRo?DZe3_3G>&?W?NR@%qyK^x-Tz=}OGf0Y$fec72q+k8>s|Jh#e+{TOkI
z^}D8xikv!Vqtd{ZNa01DI<XUmW#epu^r2pTrQVuXuFgO%M<)2H{9%nuJqRB)aMWeX
z8lrHX)gMYqaopZ0Y8W3c%}6P>*ciN0wOCZT(=C(aK@922v`#a7s_KhO>1K~N&OEpz
zx5XzZ2f&hG2LhP0Gr}E@AFFk~a^e@;?QX!Cs>}}y?$|f`IHVZM#(|>~Z#(}$p6d!{
z`r#dBR(?_Gh&Tz9v)RhmGhy1qGeuB;9Y@fG_}+JdY0JRnc~QTS%%ejJ)Li|;-=f$&
zmtlbh6n`Gt7E#N(Yj15b$dz6z-Fp2|_jD)SWVx!xp{GY)Md3JAxSOniQza5*L5r3b
z{vgVXU#s=EvtPgbs+Gku_1GO%^IneCy0p!WI;U_PR9|U{r2_DTLw#BaN6si7b{d*D
z=gzxCC6)<S^Lm~t2U(}mdvh`M8mXaCGE?^4cYoa8DiW@)_uZ+uI<6)|f8~A0aOw=M
zrJ|x{2BrI=C|5Gbs-s8^k=q?)el8K2GCM=1mOac5QuAKF#mtjZw#8@23<#$aRomy<
z@zLOWSFrBKYQ1l4KK;Z*$leZ?1ZlYhTK7hM6?kL`cG~&M=Oh|F>-2UzgN8I<SEQRd
ziGL!OicnL@duzigOFqrBig;X|xO0M5`F?7c<d&g&l8jB-EO&ZGc_94SbHX?Oe<>*<
z(}|_ntO(budyB|^2)6B%ZP$&;LE1$w-nx^d<tbUKI31}}U<iDd0cBXYT`nyLQ%UW9
z2PY+EogC-CUQz6t4?6uHra9}3Bnw~{2!EWk4Jb5tjpV&JFOZU|OM&%j(3}6ufhgJa
z6A&XmKY`Z`7}uRt`yjLNFolgFADmnS76d@vI(b|tbqQg$biO-EsQAn$0+00Z=>e>v
z_kb=vO}>w$mT+pRK2D{d>uxyn#aV)DulMsPN+=1T-e+MqIVI#Y;HfiLG4-CO#D7y>
zHy8t)ZKWz9FjFZ#lonu@AFK7Aef{jM?A#0+jMy~64aA?Q*kAOfE2>E|tHzdKbSfBL
z1N*k6?R#n}A@8YC<D3h4Q(eWoIUN-nsXeR)Uc5CqwLRTc0jV{DC#i;=?mu{`AH1cM
z^KnoltG-#%q0p6hGd(&L0JoL5%YW*DsU%sZ2GnaCuF7pV)ZV`-&!%Q7RYW8DQL^3H
z94)q+qb-Cj>QFMfT1`9wK;HII`mtL1-zcw(z_5?QOHHRbV@e8h)W|tgePy*JOo}=&
z0qGyl(f}|Yy^n`VFHvSY=oi$d@0w^5-=ZdV>gPHir*dDC9Cu%=?0F~zJ%3cbVc&i9
zw+`ElAla;1#3R>ZT;54l=Oyi|fIgKGe@^v*wyN7ym03|p4knnVZiimG=EM?pqIkC!
zf%<@Mmvo*xDNjUxDWwTH6er9>rqqwsdi4{({HlXB%XwER!DPWsQ4zC}9H$lJ6(WU^
z9)s*_FcXD@w+B;mnsYc#tbcE>u3Glc9-CZO8(t1lTvRZoO-8;kT&!c7&IXfWgFbYd
ziEw?q3zU;lovA9O&;O}6QUnza{5_zRO!j@)N9Q;N{plnNCGT^qcN%k1L2F~;uz<rx
zKx59u)GD?Dzw}AcyWWwraRl8Sug%+3X9&>opR0Af;+9??pNYGzzkhcq5h|C=d9A{8
z%{?V0*W1!BMJjnU%)NY(WUGYwk(?*EhcySUmPF++m5iyXT#bqQ=mch6x}5l;{v~J;
z=!Ro~(J^tN?#G+c+Z>Jv0q<6bEUOu<KeloOwLi1yJYFSlQbx`0K<jzyvqY@4B0Q?C
z^a-@l!{l~EUh1m@-hcH0U^gn?XVl%Gi%MN>3kH(PX>;nwYQ245KT)1vzw+G<1@0+i
zq(!s8N;!u#khJsOp;`w?%Ng6_zJk41dDq1{oZ}=BWJ(PoUPN#km>N{LbfSDVyS~UO
zTI5Os9yPPnysG~qIrQW1ZTjQ)0Rhb-GTqoHrF7vbg}khgK%iVa*M5I1#0?7QE$r^J
z&rFZp3StBSAv?XxZU?#L+_o{{S>5<V3=NCb?ORkHoa!v^u(tW9e=Z&C$7<!*H0RgM
ze$*9hR%<Gr&s#HD{6$(#ZVFb^%pUF{SPmvo+uBThc@9D4i74VvH~z9O<gM*77Jse6
zJk?`y*7&TNK&Yz*8XA9^8fpaWd5UiyMD?~Rs@c`ccJtbPJa+RRf+-Q6A0}t<wgw^$
zg<ya2R@Jit0vaKA_Djoo*P|*M=IxyHxsr6YQT<taj-|&82Lx>MfZ7Th4gmXWZ~dLw
zkL~-$M*e|=>r^{n+#vm5dv*&{HV9i=w0ZzICosWt6mJSc2S|U^@NFtE>|+~)^CXeI
z&nbx{aA|IAs`f`^<Z7pzP#WW->a03s9Oie2EP~0VYB}}vij2f4b6IO4c9&xd9bmyj
zD4d{oTHbdim-FOVLEVdD9%N6sN^w>sjL6TUBnSP?(N*r=Qh~&aXu0B4+U4N7lWE6)
z=EN9YajQ~{e(-;mEY4gbZ(>m5q`Jc8t+tqJNps$H9;HON4<&B`MP^u4%2NRS8!{%i
z19TCT{TKvRTat?fdwe!FW9N?vvtD1!``Z4#xALh=vEBE~zG4u1O>6tEiv%UJQxqx_
zij*F;Ha7zjFhZ@uVLtcG+#{}W@^CdtZQyp<#V3djNO*s4XUjb04o+1>b$lbrAFAPZ
zI|?i*DRN#vRx7=#>g$W`<`@`f{W!KjZ*YoC>w_lMqH1|~2kq`oezl@pQW+9;ciFVO
zpm8)I<BrZ05PnthAi65BE$EZOO?bWzMQ(bVTNK{UM$s#tf1}e|dr38iE_L?FaD-77
zbnHVUOuc`F_kd)|tFY^aqL2qLRE>y7a)aYHxqFMlCIio>N<O`!lbnG{rxIBxdfBzd
zir2mx0B0OoQbP$pR_legz7(aD@R9AOH~`>5!;r#R=(;-;a?X?@rBsCY;$(-BLC@QE
z)eRKRDmFA8&Ob;>s%Zaa<*02TsZ}-UM_!n0KX8Af6!XMCbz3hEG`#ngu5;A5K?gKv
zeyXDiSCnR#WY$t)D=F-aVkgXVTG>T)Sjli6lGLfJ?t@BGEHV47-Aal$X0D+y-yOi-
z&orvlB|g?`W-HjXe|#}qt-n2=?>V1+7fRGo>TW1|M}Y^>BWfEp^%r=SgLrunBrf?>
zRlk2Z2LN@gDST|oFbz`fWe1}TttPz91L<pO<M8V_r7E#toAoFagxpcLl;($HqeU?b
zbvr>6yyY*tLp{w#R1~wd2*7PJB<7U}UI!~fVd1s(Zq44y$mBo=1zO0acFxFHRk+%c
zyjNQ&G9G(9w|9o!Pp2l^uhsfHvtPelL@0j@&TM<cF;0F&7fG|^!@9zUtIOP511rX3
z*IUtA-k%c%+Sn$$MeEvwP^X$MdWGy6RCe0o+<fctVxfo>$9<5ZC}|{T-Kq(F+`YXK
z0+Jup#1uDvlk#R2K%r}#{ALQ7dq?g2SkkaLM|s};aO~_-5@@!*NJ8NCDz@X8s<VGz
zqt0C9M@rY*yXr}8zV>kZEz?iIOODfz)%vR&SiksNpcKaioxt$-@w=1}jQWGCb`0cH
zEsUzHXko3E+fp=m09Xh?fVDEI`@B6+9|UN1ZYK=ANDc!qFE8A>hX)xr#T)vdYfKh;
zemO92-@K^LhaRcVR6S+trkthOR7romH{j)JX*oGLW9PI6f)wb@yb$<xoN{}i&VKL#
zE&|r&3#3Q{Pk5hvcwg-;^{p)5d1MFh<~Dozv08s_1M_#3-#yMl;fd~oI~;jVJsT*$
zc4IeHGe86m4)%(dAZlW){-|K8Ug(e-Q59b1l#=qCbsBDr;KWE%2=pSF-hY2)QVyN$
zz`HzycFi9JPYvT((Q8~vDoMt0woj5c)yg7k96D}Ea%s)0-kWd;`n<^70hBK(m^VO?
zN{vXtZ}%hb7SVXF+sme5Oz4DCO0XonS*qmtiph%SkJb9i-#WhP#G;MHp<hc;QMo&e
ze%N6dva2dt()m7B%nvQi?aqJ8YL4ZpikOeABNscIcbhBE`2=$QzQNVLz)85IlnaG5
z(Ssb&wQsHRRY4|%=a2F*AyczS@6EcBb%4BSrd3v-V|x18j-l>-VTq_?wF{=|m}}oA
zZ#U5AG?hCUGBSWr?rK|Fb;>sdf~=t3r%ZfutNWnIECh@6AFK76*}s3{w{yH!G=yKm
zh|yJ%#1pupgg2Gc(}xNXe9@3uo;r9*TAj+M@|@Y2b{uPQ@+Qi@>r;AH@vUkZ23Bp0
zB-K?Fvw3V&gLBb~a>4oIDcmG-ssP0<JBO<O58y>glykCoEuh<7uhisxx2jGc_dQ7f
z3gi0>ahHA)!l<OJAX$IwUer`2*v?miN1jGwZz(S%<weKfKm=<4uGVX2|7xGria9yz
zpu0Ocy;4P7qNie1)gn+sj(Y0_$Lo~>6N7_!&R2p-2@Otqn?Redn+yTa&yJc!eeQ`1
zsyb2S)$S~C;Ji<Xq3lw{InH-gEd!Hx75UJClzQl7dXB;&?wWtfdhaDCA6!nU(x<jT
z=^m=81oxBlz?-<*vW5y5pGU6{l`aB5_Hdwr6{R+~9G}eD9yll4dx=DC_D_c_#*YU0
z^^G8?*B`4cIaLyJW50}47vVYz$fMKYchgMO>miD+tvt@^5j|^LDpXYK@e`y!ha#H5
zeBf5soG3bTwnu+qN3LXU04PyV#x9s4UgyUVaOi|{770#NfYJ&$O<m^-rHwg093W2D
z!y}O)4}G5txFT&Q8m}3t`g)Yld<|7H&(OU^9I0+BufUDBVm78&ouodqXFMsQ|IbZx
zjGtMIFE8}0zd8|EOD?CvW067Jbv7$N(PiU{tSmKF#T$S5DH@2T-Ytpt^+|CQuxbWP
zp46m`jhWAL3yM)tJGY%cV(VB(R0_VGUWluFbbk<pzUKCOrnTQKmDz8noa96~o0a)|
z!?6d_n_f4!m+u_Lyes8y8LRA7mJvZU%2~APRK-X`)W!buCcqKmKdSxw0}u49<C0}Q
z%8%80@wb2Kr~8_87NcTWJQc|Da6HjlNH*Xq$+-x}!0ZxhnyF1%QF`vyp0W_q>((QB
zBzx~Y*@)^<%on_VK9w!1og+$t#tJXTg}@46EtB5*Fe$;bCv|tWUsGklatc|6v1yR!
z9aB_nI47mDsS-z2OjFk~ZHDKTVYyY!W=)^PzGr_OY~&Vo#CV|^2b_a#Da{a+p_$9M
zDD)ncd7tv@B$mIN=C8>WH3<9GZmNoRX$6zZcC+g0uFDQRWgzKGST6Ho6K9S~&&_qK
zUD1iVoJB7|d~3~tg6k45D7YvShocuYBG7tjUm~yD(?X&AQNl}oPZ^yp#VKQjt#e-c
zBdUMv(b}z!uok&PhG96;BNjbWHMKk?*$$~Wjy$uo#!Z3Ws~4Zc+LF&DYkR73Hp#{8
zTa{EZVMnLye>{cbmtXbwG-vFxDs&2+QBSQ)C+O3HIH;aUAnY|?b9>8=T&V18kHjai
zJjsEa&eO?jNQ%Kb3%68hc3>(Q)THbTod$n7AevDS!*r_Qr#@4e;5UMBsF;W((*Ynx
zQIby;l<fv=Fj;J>^UJH0cx|Mn@PR<(0F~o-w=(?OkAfmc(SEj{k~>#XJE0D{BbB{<
zX;AsxsoAULW1KAd{1vxe`deSCRmyQK3MW#|zLW(mQDsf9|1=KCvno_|tCBgD&vk$N
z$F3>wYl4_LFOD=S7Q^|ZZnf*Keg`M8`Hofh&_r}Pr|875zDnK?Q(GxX@QzywPjWJN
zgh$3Vfsh<{3G8~m)%txn6GXOyK(2G;v7FA(Fu>;AqiAa&NAO3w0uU|3ylp3H`Z5p4
zlq`Dm@MWb!J!f&?=m}b~UinwtdUb#HuTO`}!9+GNk;n-KV3B6p^Pt%9dS3bar^jKt
zB5Is^mrE_f)1y?W=MMHv;TPJ*8yv8wC`r|I=p+g7!<%v>heGA@(d2iKQ=~ts?mw>g
z6#BT6q$;z<^Q>ogb@b}44t$>^4ZDOwfTf9z1s*ZVIku$!&y$?nm|%Ph+ADuwtilwz
zg`pDrbM)180iX&vuZ#Vcw#8XXiVzWl{_#SOAHVAJtFwP^3sAOJRS0wnOsczTY`TDh
z=SdX-KK3m{=Bereq_e;de<(~n0gg%?QtOkF0HsN;ToCGzu$pw-Q-`}dQws4KCeQMm
zoBc$Rdb8aWU?lDnC>0Hncol!tK5=GRA>ovXsa*jBc`p3E=$!oRw!M74S%RA}G;tJ_
z{eQNvR^L+6nst)1bZF%-h^Qc~6XX+Zie6x*{A;ydSpI9ZNL}6QG{gF>+A2r6{E>7T
zEh*$Bz?neO(zoicuZbM)WZk61BpNuGr*p`;Qg$d|fmP=s{##LWat|+9BTq$wwj1CU
z17Lq%gxC)QJS$5R^@`eq8z5e#sHF=nUxFeN6xjTL<c*Z~LS2`DlLi!jxe*(@$)P4c
z9psS562>zm2L%V)>q)Y`ej$jzSRMfPHCKH*n?U7O)7c%)Uuv5dWrZvuonV$6RQOlc
zlE@~9C|;Y7wAq8IwS}5jRT;>cj+qWHF1v0^d^&7u$DQcvbOO0MyO{O~!-)B#DAk&=
zIm=v%V!!BZuIWQ{^GBP1WDv3Y+I_4O4`mDg#SZ2*RXLi?Ijij07}!6lxDcy!PVdlf
z_BFs?19d>ZnFLr)b!>x4rSc!E^}_OB8cEi|L+&2sf>sp#D1|!L1;}^Q`J`Z7U1Ri4
z;F&zNNxoN!)0f(X8l6WwAnM=-yUn6xC8{VgCC)emz0~|rl0;*Fz+1`oDOZJj^-)Y`
z+cts<X*P_T@0i6?tNOEgumGicsQMe6yVJci>vf;KZj(WrXWz4ZwJW^!DEy{a<SKbv
zeo1a?vLe_`><+a996hLqy?sidA35>wEC%($msgYx2M*J6-gzs02NvGzClyX(6iBH6
zpaU|wuTg<fw`lBtbSV~poy7^E;KueESl*qp4OQC6QlwXP$|ad^54~2WdI|DLwaNmV
zd*91Td5~+W0|y}`X%Y#@oF07+t$v>hV-BfEJgoCtQ|am>k&|qRWQ9_VV=7G*e)v$Q
zcuaecf@8a3937yWEvMo9tgPo7K-d0JW{GdV>YBb*YnrHkD5QhFS!5cD4nCY+eZ{t?
zvbRwJ70X4*!gG*sIz{}kFH=<%Ewd8dlDTvk^B=pU)Hjc6vS7lgbOXrjzHk0UX^dW}
ziuUEl{f_c&s*OF=3Q%djisj1V|0U-~gY&b0uo2N)<K$tNkRzZWE&06bcjc``a&rBm
zJ~<1Ucr>Yht2Uq<>IPOMkPlcn*X(7QqlRbFndrxA{l)Ufm!FT<p<!?gNOgMF%iU9>
zg0noHso4Ihg)+hL(9c^ts>0hi%v}$Wj4~6PL=XqRu&u@(-6CZXKAuDG9|}8a-fQgP
z)1nd^5U+sa<??+`uG~>;S;y9fnuL!%Og_Br@caOOo~!p$V@Fl>n3OUmNlP17>TR||
zodrU&lIYH3G~G`4%X~U@=b@2?{*VAQUj;M)%X#cL1h&6U;@^Au>sxs^X&p+vw*WBZ
z&~|N0h`Y6-vhz_n8zo>KfQc4YC!rxZLjs26Fl=3LiyD38x23!7VC^ZZ`npBYMJKJ7
zQ($&~6{$m=0F7q1@zJDYO|97z`z=SyM3pc5()*0P5-uA%95%i&*#J?blO4t;x0TA1
zX-%{3&h2Q6YGlPqKBXKHb|}gs1Kin3ukvgq=nvO+Sv!BM)?b!x{GMEy#V*fz^Yi3?
zA3m`}1?eOX^8mvJIr5H=+`ma2;e1F3w!cMxb;)j62IH>x!`kv+L}r`O<bJ(Jn*zAT
zv~^G~97^dnh2TK%*YRGhW2kva8S}^*0ogjAfAq^LQPCry>|s}ytl__0o33hw#KW|Q
zu9J~_>}c4DRP4Yg)hea3FDp6e1kl3PKKu*>V*;@}Vkrgf7lJtdI>)y!g@Z+*p~DJ)
zr4v{@bXH$`r!(uk!lqmD-W;#dw4ej#dga-=uUGfKWJA7E?oj7?^J&vxCP_b?+i4cQ
z;k@`H9QT~7lbG_8+I9d+A0M)da*khGPN&C@@UXBtm<7#9vT{btk|{ei?wtV-!hT-6
zP@^&f-o!dmP`}^+$|+wRH`#{*<8W|)Xf<kJ$}sP5Cj}&NuT33Q4>cD5?P7fSRoAaM
zpRBwCdE)@PKN?G0S#64KR{%%_eXkI<QKQ8Di^61Vb-?MpvdP^{E<ruZnN#%oO1wjj
zx-NoR)%QTbT?0?jqg0b=^(^__ABP%}Cq+Y%f94FVRtz8;l|*`?EV?d!3&;t7I8WrD
zq#;}LS_uM&qhcJ(rFE6FN?Y@d<x`I`dm#W!mik|*&&0U5B4&DMXEv&sJlys9v0CkQ
z2k~{&95uP3j@Ofolx7oypG{_wB1R~asm$L?iXtM}vF9XbbpcipI;tZRPYI&B1jqBa
z6p<*3?hoxR9YeVlnCZOGBHvtpLj>|6J2HRn<%6D=ML{1h*>RmgF|ehWSK4jb`=X4!
zwe(UQv2lh}b7W(bWM^@L4Q~xyZbLbx;OGjk+a*q2R`BVZhcevcEiV9!I7CYFlOtx~
zN9FU@->RRx(=(}DqL1|B?CQoci4SHu#VNC!0ig5h3Dip^=)Et|;i;;B1r+5`Ij7Wt
z4!Q!BG#dt%#Yag`VkiehM<(fSk6vjrKl>h8t%IQI*O#Ic<zrVv^|p|9NXlV<oq-NH
z?Lc~#&<pO)hMxc(wjlYkf}=@=OQ$)_l=J3~Q63TQZ<WSbB!!DY-3m`mbUB{Jx<yb*
zzYb^6%a6U4UReH1nWb-kyR)(OeVc5QNsy&N&YGg`4xARvr0L5(@V%xOtVw+EF4xf%
zk`!fyoH2q?x5SQQHVPDdqnqMBnZ(Q4Dhku}<rp3xllRU^eXo|xE?IhN3;N<nq*;yE
z=4)fStwur43F4*Me`04y8@s~}ZjSv;yXw~3yo&n?XIFGecBaLD?v!&l20v=4FeM<0
zy9zj3cvJ{YKUV9-Y5qEih46Hbi`XtHBsWQ++7}IFFE__Ik9(?{PsOKqCL2zn0FDTs
zIj0;)sj3+ALE^1G=~6QdaCS)f1TIsN1IQ=}NqId7qMph`UUa2reQs>*mU=zr{P}ur
zU0^8(f|Ept^4Z#dzDX}q1q`e%IqNbUIG=f3dq$r_6}`Ob6sS}c6<9@5DGKS5YP?;&
z6{03z%BzpmaHnn}Y~Rp-tkz#{;PEwAEgj)h$IBVew4Szjh`EiWl^M>GupTd|yytkN
z6#(!+p@z9j;hA3aR(~!femVzmL^fM+CgG4r*%Dhz{E?P_93^TItucr5?j-yEz72Fn
zoN^y<%5QRRD@Q#@K%8Jza4ZoyQr)ZzXu!7@zLFC!+g732W?1bqSsUAqq9d~^z9ddu
ztF=>Jvf0l=(c48x)b5TTXMCR`$m0h(O@FaGh5M)Hla-@=cB}Gouv(o80)~cg7dcCT
z)2tbfednrwXwe>8pEtEq@-}KboPOmsiK)fv7l6+`t23$i6R42XYMWp&hbx+98`?5%
zp32uOhV;s;u&L^wYRqqcF7}Ozb7q>*h&vkEQj%WP@qr`-R8gBC!MlPfs)DjTI<pb<
zKX_OeFVh?aWKlRZY1`F;@iP!b%}5q^L<)=lT&?tf>L=!J&lLb9=shc;ul{By?_{L}
zSbx&oxPU2Ly~idHzGSm2zIL|5PO3svLtpkGV{0nZLo(t>v-5-iN|21%oFgAfvH4oP
z?dR!~$fd~q_>i^xpwb@FV&t;M>)to+S5k%65w#hF91|!LpJQrs2K?&!4xYqZ0E2!8
z;2TPR0D^*}AfPD~yN@m22C`P2=?0%U&~bTN$8iDYflXKcv0CY0ckij&ZPa&1j70&V
zhW<S)KGZbzF733(LOfuL6GoLPqcD?GU%f7mdiRZf+O3O@veneLwl6qLH6hX;xK<al
zR-|5ezIVW3UCQ}BiB&I%%;)O6VexDkg)qo}uD2KSms%ABO{y2g1A&{jOo}Aoh+}a+
zmJE-Ml+wI=mV}!N$W%A&MQn{u@~a?WdrJ&m9M1DDv#5qLf2`Jf7UNS@H*eEhN=<7p
zqSur6obV&>;8Yx+I4j*yCHv?Ew>kwHV9Hcr5vpd{m(W5fCn8prUMji1IK6oGv}J35
zc({|=>fu;SQ4eJTAGGv0H<0LdmabpK6V&(24)<t>1XuvNFG?OsGpa5qN#qctaAEM8
zyS9b82etj9hb^p2a^vE=+(86`qG)bC6rM|aT$Fv!3$Ry0mIcrLSgpTt>ujGok;Bmx
z;ZbjmD)msj0~p{fPz6tE%em&M8%(EvSWtqmldDP74`=MzW*6!yTdn}c?KC9Kg`4j@
zH*lERwGxP?H?i&vepNDEG#laNQ~B&8&j<7Zq?xePO}nE07@54!8fsL?VY{~0wua;l
z7_H}@hGlXWgOxtDHDF}VWpBz$Eye4jx_x*eCBJ1`QXlJdW@;^!0FNK5_11QO`??L(
zN+uCAd1-9z(WT&bB`>=7SX9A=Yc{e*j(p>`b0XkKWGIR}cw^F(WWCr)dT}aFJW8<Z
zoz#TtL%Smur+U|QYs#YNZmN9JPvtX+;hZIVZ1PVWCv*-mSS<`M2344-6xO^baOOFa
zw4~tmF?FccC$olmA1c`ACpsm6>9{{tDKND<9T<2Z&4DEUf@5XGkcO&v`Kyc{t5sjC
z^>x2>7oE(8a-akzXA`Nqb>`vBABt$R(TM6msmClA6)Kah=&U~>U*{iNfXk-r<An`C
z<5UBG0nU}B3){v}rEIFWap}LOZJmsW>!TY8VDQuuIP=;!v{WUR!VgJ*wCxS9vSG5>
zsH;_xw&0ZH0MwXfobzrP-YGTxWUT{PQx?-QEPDaQil~)AjGy_G_|>$k>r&&Wk;;$N
zdTD@vdvo$@oZ-H!uJoKqMKb3mIo$g;n5@{7HFw-L_Y|euWv@kfiH}2=gRst~KCkU5
z9jv>Dv*e?lifn_uP2>Q75}v-yI{;xN?==TD=7)F6;&6mDJ8<;6MP=|oebM$3NPXKU
zKN@<=BQ+9k<2`lTmaZaYi&{`P5Kg7V5{sP4$x<^P?X4*eXLb6V{J6)(Nh_@SvyE?l
zA&9?s5XV=~ha#+B+C#2AMI#^bWJjm-ncMrB9AazOD@r~TXn|vYk{#0w<_2oTMa2;>
zx%By1w~lO?xa71{NT()4#FDrfwK{roR(aD+E3UzZIzCz>&s_xjM7pYse5+ozNtIAm
z;*kGJg+MIQvUlkvdy^Ygj=mf|(q8?P>t&CvC{HYZT(SC^R8G+aMldLK+BpPrysCu&
zS2BU4r9W1yy(*u7Po3ztPLk8fT=D^H+Ts$cY>&@Vm*1ppZ5Ja@$dk3UVnb0ToGOsD
zBLDyvqpWnB?^Ja}xkICkvpIb^{UaXks9jE@H~CiQnjPNnE=CuCNNJ`t)T^M`t0vj;
z1jMB#``k<I=r%6PKE8!x)-+s^Vm`i3kb8E-btl2vqLV9sbZ+hOVw>cV_v*;(2+lLh
z8<K7K9ODOqcyR;Em#6TOhc``Y5@zbA^Xs;Co|h~m$umTHUKSfpp@|Em=Oux3=CwQ$
z$I`>EIa9fZ+(vc)+<?so;`9y8Nx&(M!$&ZQD&nWya}&$opBb_iu0PacPPLtPrGj{o
zY&dICqdw_>3lLJ(IcEtRW|nl&w7)(JF)2yyxfC35Smv6K8$BdV;w7KzV`#PlM|xSw
zHpp9wU!$D!$7;R&eBx)d3a|Od%K2_JswNNC8cYAEtL+x4<QvtBL0D{+rQ00UewE2~
zaLf*!t9m_yg-5Hlb6H1c^=#Qvk1Y1wAOL!!Zb7bpwHm-%>AO#7f9SsDb=I)IrfCVK
zpAFXA3&iS8_~YB*^s$Cs3F+HNWuT~D7w%rVVGDw)lqz1HT(Q%ZvO3dl<h1tnEVUxF
z9e@i^nQRh~F8%|{H{HGet`;l&xtF)GObT{N-a%^ln&AY2Hd~ad##6%i<=`YCQ{7VF
z$*FOFEg6g80#?w2rt^D?T>Zccbu1&u(2A2&rMT|1CCARS*%jKl$&nMPzVX%>HI1{V
zvOlJhF*!%xd9p3>I3lgXt|D7m4+sL-B|uF*@{5E2(p`?ttd-|fRA6xK`~qd=)RY#z
zgeT~jC*$qn2-rWrP9^Vutk&zs=F7?SvU90_re9b>VGU)R)gFCM1n}zEMuB=bX*$Hw
zw5Z9PUH0?omEmEENi}xwFitHPhXik6hK6Iq&WN|X_SB@|9!eifHT%yMiA|rASc5Z$
zPWs$clAXlyd+YUR8y^mLt(Je(eL_y+`eA8nx^qN(NGi}|%ITZFyx`YnN6T+>PXdpB
z&C3Z`qM0UF!0e(Z6|p}!4ESTUUelak-B&`OX0P6RJYe$yik|k2q`327ns?->b*Ubr
zt69#l|4&EngYtgLgHt+HEs&hWR!vb0Gp7X<xYSmS*UUFhj^_5^cA64sUC44DPhknP
z;3~BO2V3F_Vq|5zQqiqhLn=vaZ7J=48wnJSsflFlv|Q?!=fyT*18)UCxn-9uD<vR2
zujkNeR&7Y{iRD$E<SB2Qs=qY-SgjY6@(f?DZ4bD&sX<_q&tcN8e7(X%Spj=pEvEuN
z?1|mC()vm}%O?TFc!hUeMm`|IZdE5aw3I}kivbcJOD%VPbn<%2ESFP@&G>kKs-f`V
z%g4RC&L>iL4UYaZhxhPyBvVr-dOd7r_ID(MHw}xGy$Aelp0p$INgs*KDu6u*8pJSf
zA+Aly5jQtGo=u8+VEd79o(L}S;(PvBtyksqr3djyy)1`s^a89`B>`Cxa=+DUF?e3K
zNE8N4n;^W}%~wtSbob<{U2_kAuadP^UAp%qyU|n#<OeDxWo@->YJdaqTDCcSco}hh
zCRe7^C3#g8aC3r8*dO_!`es*IUaOpWcLg+tKFxVvLm{kW^MsQY$QYC&j}>ZH##vtq
zjzQ7qcPh^e(p~D+UPa-ERY9=543#i$zU^1s`a2c%?fd#DyI(HLb*lz{R-BrA%X8>w
zpk|y#^F&SdQQQh$dgV~R^Lq&qhokj+Qg}*qP>hutY4q;xXVUW*RIfEi1*(qQ2uIq}
zi?1!67C%hNN1-~tsi;T#Xxgo>Np%`XMF>*Zh*=&|xXDC~@S3!W1Hn-Rl5kIwjBZ+h
zV12ZJj`zMnQZRtnaTDKv#gU{ehgv}Kkv-b1&eXUGKUV8}xqE-mY3(U^<H!NeD&J*?
z^<yWEki_(mZQ52V-^BJ}ar7LvpgpwKywVouazv5k%lk63^`-{N?Vz|F*%h+_Hj${J
z^m=q!@R^rFAWD^fv~)#vC*e}|H^om>P|8BX5{F`O0iUARBovo_-hS3c2dirbI!@eS
z*EoU{&ZI)W#vOfgTIyB?T{?I+qxz8S$)5yU)e81rYN-E;TQ7~IFXiE0N&km>K26gL
zpof0M6tap}f#k*!^G^5uaX~Y64v5^*(!g<B2V4Di#)1#SQ4O+^gDNV{b`ZXZ!pSH%
z424<HS)`n)xNqlwxP0nF+eGWI+cU1U3Cc33m5T};%xc#`kJX_ci{{FaLJQPD;YsCB
z5Ns+-k7-kmjYwgs-=a5Y{7P3=g94RosWu%@ZFX74O~N_UOFjO}|MtKB@BhdD`M>;6
u|NX!Ix99)+@BP31zyI_2zy9wZfB66WxBvEE|NDRW{{hbjlW)8Iq6`2y=-M*?

delta 24194
zcmV)xK$E}n(Hi~78i0fWgaU*Egam{Iv<5gvf6Q_v*_G`2U!%|n1Ufr+AAlg}M*=hh
zHcqG@6eK`3e`qb{IT2Aeqh3?*W}e1_PMU2qZri&9b#zQtt%nol%Xtr0lg=`~LCUH!
zn5VtXc2)KeNkdsmC%yCOrSGNjvy&I>YK<}vjoCDq1PUu<-j~HLk(Sfgfu^cVo!aI+
ze`mSmYbT!g%tzC|;@H&9>q}1j;cw}q^p?-iZ1C8g&GUIK#gB-3AR;}|0EHU8g1CST
zx7vyikdpsO4Sex*XGADcltlM#f}q3Ja!5*3n(A0NxIK%X0Q84fkW_Gy>JNx(rNvji
z`SN5df}nmgR9=QmVrC}m@*T<>amu_De<=!#4BK$el*n4AmuYO2^Eg-bN_dQeKk?#n
zTeWB_?k>obS=zj_aVhcZ_Wvb<RFLHfSpKqFzcP!*J0~Vb-yb#Wwg%WmO7ZFvh{VQW
zmr!4^hKcAIyx}O?q!(WQNmv~R!Kx+y`XCL4Efnkx`$_ei4q=;f6Y=B(CFhOVf2xHz
zr!q0&Lx-OCN#tOtd%<dJN?@U{s%3j@KW1ZOmE^7Htb>YyVw=*IO``;%Acjq&=m2jQ
zXjjR<eYWG!1l^OOB#8`Cr$+0g#`*S^U;36%6s|8h@t3~^@cXa?tnQ`VR6K#+5^@K{
zM+GJ;e5w6cUUg%frr|nUn~($Ue+$-!PQ9~glyDO9WFa`&b;!RV>X5OM^Bfyo-j@61
ziArgr^~2VMdPR9~*qQ{Tt_t}e(*VRX!I*5*Z~L5td@?4R!v026{a|g&6%C1q*Gk#1
z<+Zx5Ng!eV-Ss!+a1sSIav|VY)Ux~zsq0SFs8#t|TRdM@>({pJ<34d{f5Z-uKW$t)
zV{C^Am{OZOaB5gKqEcw%+BzFyC>^Q5tpn+bKyEgk;wa9C@q8d!a^&_xRha+DVk{oM
zPhAVnc!e#omeQ;@0QQv=RqxS{Bxs+0Z0l3?g^xUx1It-cWiM+2$#yw(pchwN!AlJ=
zhC5ud`I`^4T%1F#S_&Xhf0eenWSKorB_}EFx#2c9zbnY_`;rrX`CGu#_etz!6LBR%
z+K~fv_Mx~MnG3L-r)|E+%pLUZP+pnv=4&R}FNamxCIpS*^w&+`1aXkr4seaksnSnr
zv+}_8x&hc_S?gs_x)A){tF?Lv=Ta_c6(L0K{KT8YU?oc=XD{Rwe_7znX$Ebad0Q%;
zHVM@Q2-I2AX1|K>PdwDVlnZOaR%2DonN-J*Dj>w*vr#tiDra{h`patlVEOpbJMG@l
z0o=};-yrp^IauSRGofqC)SQ%JDU<(Kq4bG1N3xz1!Xy1Tx4HdhA6z0(^4&^~`$jO;
z!RN};Nkv_cF0INWf9=IksDW<q+IsUK)CC;!d(S1_S5KD0H9MWb!=;<Yh+0=Zsz6&Z
zEUoD~asOP3GdXUj(`#{tK|vtZ`7NJ@yq4|hpzhAPlM`^tyaun#2xsli-{RIUf9pd&
z!`|MmBOU``vyXUcEJ+;nL=5Fk3BPi=4ce;`syUdd$td`pfB6@CS$%vE)<tD0%a=uV
z;!TS>tv{~@)S^=1m^~71R5)bA7y({A2r?8{;SOqTvRM^dbd0Af(l&|qQchW9?|t31
zmwR!jkI_O@Mhj50ocYu$*fE?nWW`J1NCeR1^p@<Nk=W(vYdRk13fjqLw1@Qkb^98B
z`&$Vp^}%V*e<M)r>2m=<Y69qbSe{$(JGC|y(N;!oX#e%+QjmH=VaVj@tInx+BWjl3
z8gE=Sn8S*y%xey^<*x<zO|kJT7}HZ3p!ksfU$+=kq5THccI^+UH%Nn;SKB($4-n0P
znOnq3m?CZfW4)9gXSNC@zAoKVbZG$rOHpF~b*XbBe-LNwmKL)=JCLlAI1uc5rEQ(~
zNE9$%R_jN4`1rWl_gbb*xv#g=(SJN?#}L9?l)YPe#9PW|fH8xjhe_pVFIg0OrQl|t
zxpsQP$4RWWUC#HbJ4lJ)O!16bkSN>ipxETxW-ZCRV}2nB9jLQHK+dY#rc0X5DoPR6
ziAml#e+NLXewM^1fkar3qmqD7;<&Am=v=~}yx(K%X>FSwDx~;4C&7e8eSk8A6e?Px
zpL#OUDIm?VzpU1;^zesdy3$=5mr%@gn;GDw?ie>aYK6HyCT%2F-nML4r_D}TX9uy8
zCGC?fANE`qbw>B*%Im+2&*Gq@#7beHurPMTe_iC~7dbO(GT!+$T>!$Rgs^W~)nD8f
zuY1B(C6BG&Ian4BjdppHCpn||SZ#j(COjv(GJ^L)11~#*s`$v*BOfQwk*uJsE{jdn
zYD06kpdDG#K5v48zpPgNo4=+09<@T=Du<aOVpQoO$7yY6oKbdeZuj6r!>!A&(TU8t
ze<ct<=VYj`T@!^+b}$btqd;96d}PH<mo{zH@{MwbZ8gb+#moDwE#(W#2W_wdXC#2g
zvot}m?Y*4;+2iqDzcl%($<!DM6|9pC(h^sBWNQJyuER-ThuMf+t0_;O9oD|(c!j*J
zTT0M`($P-uvZ#^L_$N9A=DaMJ%ZHFnf7#>=74*X8Kr(n#Cky8ab!y<Chlk&iF4oDK
zE8km3E3z&0uK*bV=r@B{b!N@kE(yleu+7Ph+rh*JT2<sv{jJN{xx*c3*)U&y`L#M5
zz;2^7aXr)z4v_2rxZU{QV3dcnuhfJ@=H-mosb`79$?H(6b!b7&Sq79{>?DfXe?s`w
zEJ32gh_^<-o^>{#4#m+?p#wnhPr=i@T0edH@S$)3zEm`t*O%pYw?~Cxov>99W>Y<?
zwi6bbEE`T25Tf2a{0T7}e-nMsPLsuykJ*)=48am1YO|bKeGvAuwr?mPK2C2PrXR1b
zx7G;Zj1u?0iC(0a?k)2KFt>7_fBH-J<eh8qZa?rw9o3IEXdG!~UjY*NgF$&Qw2+dm
za_S;W3YHqA@h68gZ&4OU3cP<D&a{D<H$n8<YW;~@e9Vtdvx(=H211#@si*8CROqyN
z_2DJKA@xQjBGJQCsmAL|a=5}OayI#IJ4wV?kWSVXR0S<k7{SmPjHxWHe}GLDg)8$x
zZd<aH4~^9HHX@6aOw6B?=ZDjSiq|WOq3f7?U(>MGK+dPL@hUiK88>WtNJd><z7ojf
zQuX>sB-s#rDP0?ytLQ^y5gdc#>gH}~P3~u+=(E18R{nctzr;-@(pmFlt7PMjb3={L
zq3=L(%sleX4vh(FR@9G)e>EcWZa+v}eX0xtUKG_tWVO>$zz1Ybqz4b2UMFh4Db0eP
z;3TwyN$W$_`jH)-9zIH7Q#MD_B0KF+l&$Hc5vmjAC+oF`orcEe@njE@xijHgo2t5{
zAW!i!D^aonyza5CRIFto=qsL;y{2disW5B7O*#C`FRS&MtA0m$e*pQtxnZ6n>O3t8
z;^qBS+RSYWy^&JAn-d_}QjOD6rsMH>ukso}tu9i4szDx2@@3Ij)MlQ|5pW<&LoSL6
z>1}UTIk%Qv@3?g(4lN%@L!5Pa^c6znqlTcSu3SF_t+Ptjtn`pm+8&B}B5qaZBTl90
zfgVXyS@y7;d510)f9h03K<7J>qWAtv4=qz;dTuS1SNgJAzgYgmyujI-k=)CC#Ov{9
zpH<>4ZDp@1_|sCW*fpm(3Lzgkq@}~H<m5?;<X{&Y%*2Q2{j0k9Q!=co9MrdL+nmA{
zD^;mm9q}&Bg=bIa`}XymmepkVs3#o1+3D-)jeL?EM+OG5e|k|T$w}1^P^;Y~**h$>
zih_>@Ui^Ac;OUgaJT}H|z@%cUL6-*2;7G5mc;$8E)%dZbkT0wC!{4GBe^);0J`~cf
zms<|VY)hR;)~L?$Tn_=7rFxuJ*K*ZhO4dDUHY%%b(e0s2uy-^&JN<9R=9HbJ${}A)
zt}@7ZBKdxRe+d}P>Pj`|SI5S|YOUBoLzm<fmct=z%DB{*Mt78$w$+^zpx7?@k*JBQ
zMQN9u8MNMwDmI8a$ML61l*8zY<4=M?Pg)7-XDm&C?n^?7+8@uC)%vwR`qbZItpJMq
zmQ>Aq=}nv+wNuE4d*pW5I3Yo85m_CrrekK#pg69<fBpkhkYi+#E=B%;q{V@P!{9~D
zHw2nNsALmceSazzT|Ejo@^x2zYDIZXFPnhR^4gxcAFTtyG~X*)klRxtl~P*VF-=y1
zVlqhs2I{9%A98VlBndu8X%pCbrfs6y^mh)2CV4i<IE?Yq=YY6jXZ_1+-G7VeuASc5
zMmFKK4AMEf<o#ohb!u9FRF|w$1{{BL(d#(y&aJ}uf~Itde1A_SnB2eMxPW<H2x2~B
zPJoBK_}EiXp||Sb{2Vo=rB%YxGm=ohIB@p&2@FJXvf|n$I9u822Xc+_9>A*@9F}x4
z6=WE;mPEIn1L*=Sfy-_CnJLT|{$8!O1@rYWi{UJqk{D7wl|8-Ku%zDjY|(#1yCUk1
zo{~By0a!|23$rhc&lIaxc-ISl>JWAVo4r-LeNlwA9x}qxUAlPLLq5`u*h#sfZOZZH
zK@bQ=Jo1)`97-oU7a61imT`#PG|eavkWlA8<$q->s!y9(NZuT$nxj#Rv)2;msJ(9|
z8bB<pDMwT<N7BXixTVVMN-=+_Kzup0`fas-CDT953zB-7fbmCb<RalB=<q}g2I1Jc
zJ|8j|TjwT~liib=6Lx2L)}=iWr-|a)ZXa+0&`n%bB#uye$p_^K&F%Q){EzM+vseCI
zF6tJx$6HL7^p*I5mr7b84q{y(vNxTQx>+tb0h5bYo+kmqdu~PX*K>b3yuv9rbMwu~
zQ$OSoR#il1w!fpa_;hgCgsW3U^e)C3LVjZ9)P6yyzmn<4hux&uMHRKFWlG+}r-MyZ
zBRQ8BdfNJ(V7f~oPaW${r30^Hu&+r8fvB3Ax-@(HRfA?P4kS8eI#223S$ST^QWyJ0
zCo7U=4t<hNj#oFZs*8W7TcC7%GIJP34K7M&^1jJh3*vsUWz`zfYk|#N6h$xm&`QSG
zok6lMD2*%{_H3>W?3$2}lb$BIjtcvhl{<%UMMARLFX{M#Ab$Ju)M@Xywa(6?vFVd|
z(Jt)q0A#Kq^i#u`sPXjRO`P@_RnM6D9J;1;85(>F2erfW)-Qhp0`(&nsu%sCifVDr
zpO83o{8bmbaAv)&&YB~?r#VUI9C0AHGNs^of7~f;WvCxu{wDxZsyoz>y~zd)6xG)q
z$!^p}r~Mh=CK#UzWKT?PD@=-UUft<kd37+D7z{Ac%4<k<s_caJCCdNw<#YJ3Kf3f;
zi(59*=2N7qZbN@KNr~p`q$sjC#qZ>;b|X1;pZ#*{UrE&AQho7qu2M;mLM-NO6TePz
zwLZjDDFFY`60v7x6CJe+S@Ws&dG+OU%Y`^Y0?T7;Sn3u9wE*re&9JBf6|M8`$9Z^-
z%7~}g8cPGr>`0|<qV=+nc=YJvMT_*k?gh>e*Vlb^?@xcUOje9eUR2lA@oSX-ovTit
zj3g?6rt#t24jX?cH-t}+=dm@Dm21@nkh)))vUIYk9vvg~An492fzA0i-m~a-=PkSL
z+%2hy80<V#wAG{`Y<Eb84Pfbi%gl-&Sf0&EP*iTOc)yX?sr|5G^Td|kw^4e26!Z2X
zC<9fuLo<ItZBX9m&B-%$o{A#t-kjr`L>#=(p2~+>%O$xz`|eg{n43J?bbBga(CKeq
z{{EPKwV|T1%~@=@uy7X}yN<N!+(oho@Q0FyPz!!8QkA?We%Nid7QsqobY%+Jv5ub-
zoP*5yp&kPpMa8CTQRS{PYQ{q<ZSJqA`4&(0>Op@fURlKK=8gG>fDEL+w>FY)fCsCx
zbSc#N)BMr*k5Y?P8hX-WbaP)haQ2{r5)_Xf)no%F-s>r4L~_%JnR6kHKkP4g{;9IK
zSL+wce~9Vw+KJWq)}T>cOMdw93f`krbh*?%SUb?Yl|qtH2jEk{ip^~pPon2zXkS8x
zytjXVN<Ea8RO^YIHHDak7f#vYh<Z?XBii(-Wxhqg9}cYwF3R@aa*_uHMkd?p7Gh1Q
zzIab^u@);jP8l|~85~ldx>L?aF^s52gQ`zz9nWTj^|rI$WbME?WM^q>)>OmyrjInR
z(wD0GS2CT={pQ&Coq&i|#^!Y&RxcEbrw)I^mlI0L#r>fRWm{m;z<DWCt*`K{_occq
z<oy|@G&Xj@@Cx)ATTAvfZcNtJbFM0}J`h#Q^n+UbRaL7yuw>P%EEB-V$`o#I?_=Nb
zOC43}RO4pV#0j1D4Lub3bg{0j^{KxEaLBs_>8ayTM9e!2(b}!9D-e<d5;aU}r1*aY
zVzLkVWwm~>{D(4&@J4w6RlJA*2hdLmpEzut8^gz=9_I}<x*RcY>iM{{l-qrxQcV<g
zQ9HE^b{k}Fz5pO^TV0=#=q>74SK}<l%b2p~G~ypV(etjV)m;Sn%@91I+HET4e#vM{
z4$N*1CG&u-gX54d8=_38BENO&Iyirv!Qm)VFpguZZb<Is9eFP9PP)EAxVPNAqboAn
zW$Y>Q^7m@JB-1}Q&36}sFR)$nk`?&vNX@zJ^7bsL9lWPZ2W|5m2w|F&b&iNeE6z;Z
zPF&uHGQaIn4oXuu2NZ@a-9qMKTM{v*7j8C~oOdgF<E8YT^I6ta+6w}Zh%|o_=u6Hd
z9tKqz%W-cDc{Z(6>P=tO1;PbdmCKua_5Jl)%mgpcYSnFAUlvf#6OKT}r6L0pcdyG=
zY}efKnn@?);@SP@YQ66h0UsYqc&BuQ+qlfTKX?)LsiPvU=T-qLL37hdEl8PQXXa23
zwrTLvG%=1cUqE8R+25)JmTQ0dht^>GJ6)Qh=4~fiw_#IMw@%@YSYLNOOX=}_vz1Le
zs=6$ym!jUo^0G|wpz5GYF%o_EG@drD#hf^lk4LSkLdyfGbsyD(0O!S~$w8Jl<vhpO
zRj8&&vJbr0P?$HSFRK-QJIx>Wi6oRX9Thn>z6vMxumagtH7_Y1CTM@5dbGoQ9JT`}
zX{{wBI-d2W4i?vF1VjZ=%G_cgZ239T?d@N@rz3(AjGbe@i7XsxLF@T8=iI~o)oQ9P
zV9K$>qXsDyV^M1D5tU};H5mrw<vLIy@ur*(scq-K=Uf~<-j|*yO_ej=S6v)6ZGD4%
zX0@L{tw2YmJ@ph7JH>zeWwribd7$FEs=jqw=EG?asZ#wDhd?3RkBl(UxLv8FOx?ac
zvp!SpOGz>+aAIlY7~kx8N{JGjMhIfmW7$QaVzD`ON^cOKH}-|Rw!`u9Os)Mki!$g@
zL{1&foLDA$seY<APV@4I=u8qI;K(pgV_0jFgJW8hOG=LGEGmEQpzot54u`!4>Jyy;
zW0|E}&kZHIbhd1oO&;>zRaobNzpU0DEbsilJIX5`$p;Ab#q~>BigphTVpQ-1`i!lu
z!z&OVDAVNh{cRIJs08f&&>0?wyd2{4QjPF_gL8{hH<!dTibDOlv=g+Wy&6Em;hpq0
zP#n?Q#d|0qrU!qIT#qHCD_m6g_U8BK!3^foP$lR-oGM-84L**wDK;17VDc;HwiB?i
zEqgY0+nYfdCtkw2lxDSTp+Z!7r2fSK->dbD<v&ywi8ZpKqx_&pN8V{g*OlsaW`UD;
z4hO{9GY7{c9GY+TO@W)+)seh!@2v~3iDdSklJ6`&_FsSa0F;p?tD~_`Ir7aMdil78
zv+y>H+FibS3`I?e=}lJ@@MMp-I;+GYY6%_mn%XX-TLG%drTVe6!s{Mu=S_zPWh{Xk
zs6Vb^GfAPWE%w&sHAO=okZdWVpxwJO-(Oa%{@P7`-1%Jh<ya!e_#!VBTgr|SXREv5
z;JenYSIU26a<cZ6<swHcm$m1ZG`8F#6keWZBG}+*`QIJ*Jt$QuI#(yPS~eY*4jvRE
zEIFt9xjwpq_eoH;XbH#d42Gh*wl<ut3w1l;dJlMR%^kjm8s_%C>Y%h*N41ksRQQxW
zKxoa93m?h<x=1(O6-b-U{zP}9%2kBX@fQ!ZgExQwT&?t)AqyY&NA2j;{P(jhNH}Z8
zUuqO(4jVf|>-Mgo=;KJ60e8C}fnTOK#ty@tfiDz79Go5HqP)X!eooS`LfCdRs^X$f
zQ1SV)?xOw^-}Iii^QMRQe98`2k<2TeKIL-RUjvgAr)zm%3Io(rbM8tRO$?|#@NN2&
zC_aCibSLJ`NOlR=8MZN4*7)++BS&K!*YkNUk}zo+w5*!)m(_ad27ajifI-KQNZHk=
zX&MkoAR<H$MRYW}B%xeI3p{UhD3LE6JoU$A?bvM<*x?&mEa38OIl3jm#?qK_<WdSN
zd24i5eSSkDHE93oW!VcsbX{d^vzYg6-vfU^Bb5;74|M7e)+>4sO<vkql3XNnf^tgb
zq=DyIK{aL6A`zrZ!1szmyK&yjh~;S{YhVyTI%x2{BoFYGRmA(UTIttR_(Pe6TKM)D
zaRzuBfD*ZFGd~Bl`Qzld#^<Fdyhh5@1Vf5;TuVWoIjHFQWjZ@aP#UM&9n|NS)>4-+
zUj_t!R&et!+K#8LJnUbGB^3EeZ_^cRW2pVQy3F~m@|+yNrKG&HgjK1TxVcW%T~l}7
zed;jyG+ijjn`H6i@45AtW7%c)b5zMo*F#}OxlIMcgI?Pv68v{6;hhJi2dDhYYW>=K
zhfl2$z1^>+N@yW}P~}i@k@Hk+o^s$z97IEZ$we|G4v<*~D;KFyQ+XY$B-WQrl`=`s
z7|JJAe!%%nIjD|d+H!bSP&9BPc1<}q;po*3l#4WV0zb*a1k<3jBFD}M=L~`JX{T&B
z)=dKAYBw>AJw{SU5>xG^wZ>CwZ65Skkn*VopDr8uk6B6w&+A($j_l67@PJ-b=Wly|
z>&FuC`k2M2Rp$yN$}d1+K5tDltK4sDHXVA>+`_OYD5q6kCGVrGsxg~Ej@?AwB<i=V
zr$%|snPYP}SE>rwZ1yI=J%=*;n&31xiwD~oiQ{9gn)<Y<XwYk2Q42C4tPz1fR<DDy
zP=U+nVp7@=ZWkNg$@65JtE)nB6_A8~llT{Tnqr`34aXt@ksnqlqC+(?6DJO5<hoKx
zRg)L;=9ks_(HgmrkGtw3bL!bD&+KzTrp!X^t=1s@%Aw-aM=$VITF&aWlRAMHEGf{8
z;#rAiB|XTTg`;tuF?r2GfF6>Awi?^gwW9^f53o(AeySQJ9ObPJdxKezbZfkS<hYBW
z6g0}AV$=DPDMtmIF3eG#d?8m;3oa0$RK=y2p?Yz{xzS}=(bE=GmYVUXs;<Wkf5%46
z(wm%dcN+6nYU=s2TEAK&>5~T`e^!$=%85n6N%THWokQh#gF{ts&<YSJ=NQh_D@U{F
zX$s=M0QaXxJ&`laZU;t@m9MFP@;p_zG6PGx63Dy`wFF3<(n-(d7^HLDZ&TszHCCnk
z5Xxs!VJkiw%2AA~?8y&v#`v+pdbr1wH+v|qPH%Ncbjjfx^|Q&x?0RMUBPjZ@oC5=r
z2E7x`*EXW_b|Jf@MHlfqep#*G8M2S*0`Df|yla$9z?ohwTf1IbZ4*a-bYd&|ZYdLd
z7IsIG`ZSh08fvY3WmeDUREn$H$xxgYv`k@SU=EkUj9!aT_<~N0m#!+i`uRaVuiMu<
z+uqPvtEz6$PFrFMY=U*8W7c+5x6u>zzowU=ZT)2s`J)L~t6E62tpaN@6n+ZMS?K)Q
zsnIy#L_4pp*^YWzcxTRkhtskNKwrMB*00vc2TS)Ew|$Pfa^-h6O3>!5lh?$HAmAuQ
zS4{zwxK8T!q)VfTK?^?$9iD*G&tdT_$QoxeoYS){<t9;#O<gEuE>=EgRX!i2>`a`6
z!STLNd|Ej<`4<^rk<n!H4kwX0RxGw<3ZcNcQi>f)Ja9#2AvoKA%3ifYhh2ruz}{f(
z>%4T0dZzmw?7!yF`UpVhXvQ5a8mMBoO;on7`+K!s_TJ^ax0*^TY;O%oPi5<xH~6PM
zrKkP@Jzh>I=Ef%-q&;8{@j|5F{!z`HpX_rKg^1W5UIMNQ2s+AE91RY=NMSz|#ZDJ5
z+WaYX*Wr>^l#djD#l^l@loqMvMSmRcpn}qHUb8<ft7h5I-jRGwZ3u0efVQoDlNxoA
z9DYi8Dko}-$LjP^aZ$6wxaV@GBBw16YHsbP)%zt}d|9m@EMGpNe9`LcjOz?}4kf3R
zDSdb_N0IbPRuhoJ=145C>K+OxSz>IP;YXD;YK^Xz-U3m726Yh$Fy6y!h7rB?++&)A
z_v)Qz(wtVof0?7l+v!2%>d<clE~&?}>G@p+c2Mjg!X*TO#FrhnIfy<>u}?Xfgmg_w
z2fOxms3*wx?wcy42*cbGup&wl;YH21)mwlZ`q%PPcxPpNS*>5*=|_~0#6)7U^KAA`
zpKb!Vs+VnlB!hG<N7`B5kmY8yIs4XekyCn8Hmf1c8c1L9Us7{zNP3eC(Cy1xZ^FJ4
zEW>*#9v6_dRPh_p@zhs;OLF+(__f1+=WP$mc5K>LtOnw=EV6>yO7hyM^np>%T5YXx
z-d1mlRPuh;=DIordF-shk9Iia&qxAq<LIPZsb`LV;_!h$_+O&@uf6y6(G6V61^{X7
zd9arnTePV>T{L1i+a4gdlqO}d2G4b>WVe>`gg1X`Z5pz3GZbuH|D*em2v<C5y|eH-
zG^Fk7lk|vi{`v|h=Pp~zzv@JLi$v!TsOr*IO{ja?u&8jfN4DzW)t!Uet0+o!=-o04
zJ7#KsB1*)pmj+zKNk<=z#F+$|yxs`TTFY)!Af}NspPf{;Ge_H2_Fq=(50(e)yyF&?
zUvdPL0B8WEn&3325@fYejV?KXRbO<r^F4xhJyT^8d4c8BF-tOyH~39vOV%+HWF}89
z*}d8G2hlO>$1Wl;yeR$*>`%&JzE(?7AIi*sVp;V#U7#!`zlvzytt1Fuw}tHJ$pTuE
zmPTm~FxupGJo?bOWY|Etd-75_*eg51B0eL(aywtLJ<d{fLLQW5+L{p{{yvHMw+ErS
z=7+Xh-u-3G-t-+Lhh2s&twA~Z2LbePOa+|B!#Qx$7dTe2<*e!k&mYcK$E{Dbrau6G
zMwK_y$$keQj%RCvOec^}=@cOR<Z`ucA@VwjBv}1YYtvJ;Y<p*3#JYn<w7ZeDLz1I2
zT4QK6`2+`s7NJ(3)uJ)%bX;ZU#i|6o6CWk8L<)LNs?yt`Ua2utbqFdGb@25~Utd=1
zCvN4B$(7r2XFfCWJ&;MLti1A}2HSdno60ezDwT+Ls+%{Dek&FhcCgS<nsSx`|Iu7k
zw;M~!e1&~o3cPQQBb@4IIzLFTi<B>C^`ePV3LyM;dbpF)P>06y&8ugE*9uS9B~qK7
z#tBfGh2Ts`)jj8V)XmOp?_Rdc$=K6?4G^gP_ZAyg7MTD*@=@cT&DSYECb3|D*zdVH
zmbK4JP5EWDetpP3`tnVAgtd(x2o#*eTOD4?6_rc$lZ=iKDBMW`$=XV!WYw<W+15?e
z20Y$JbP6@eg9bQK^;@)xiAuc{J4y=Z-pBU;X)^fi3TaOM_AXFCN!9r$k4~wXHBvX+
zk;XW59RC?a6GSwsvgUk2J#?ObR4Y08SAlmtfc`6Q6^k^eVUy%^1*+z)f`>+gJ!LkW
z)Ojj@C*`|o_seSi&iQ<B11+rjj@OpKAV!_9?8^X6NteT+6jFd}HO?lf^U=1>;JbyH
zCI{-UPp@Rx?dSum;~jyjh;@qv$G~A;lD;&8aymm&n39s@sMl&mg%=ZlP>o`}Q(D?=
z;mqlEUDUy0uP5HnRu2tDwY}<NT-WJTP$4n#)3er8Ng;O0FEZNmRxGxE!#Qu7_^PV9
z^0tC3644f~jSB0_YW>c>eohMWN>kO>i?~qAbksFy!n{-=ua^Q^YQg}?$eH?6%jsqR
z5K+5dSnOiSb$MoOWU8ot@W6FAWK8iA^(%MYjm6gETIDtwMQVPj5B1(#>>AFGEiwR8
zs-$22HCuG<HdAppDqA86a5`a^q6$CHDJxvn$U*ky4XV`}WhHW0kD#gJrI)9MNUG#r
z3J+4m@hT~>Z7LcgIVZh*S*@3o>4#dG>JyYs$*4epQc0#5%p?bYEA=<Fd(<HI+Y2HM
z>OCpD%GL_YRf{K*H>U2D^Zu(@ad*p-O_b+gvnQyK982K=4<3_1r1n`|<IMoCJV<hq
zPux1M-frGW&)bTGis|&;cQpbL3*OXEbUJDg47|ppt~s3zkH@HrO%q19yRT#dEe!hu
z+-tkznH-5`TQ;wM&IE>$%#pvW)~^p)eD5t?z0@0HYwA;9JObK6lPhj%z)B^0TPeep
zGuc$Nr}jUzXKK!BEm;a)LOoK3qc=#dgLV$<KAl~Cy!6y;&9d(xGb{)6{43u4Yqj*B
zIh^VNyd5g&cLKB&0twcHpStgIkJvRZ^2SW5#X-JPT=!~!TIV_m!r!*RDVbGA+w2fk
zXYEtx1NF2iz$7uR{AN?C;dq>KPW8)bU0)oS`M^F)*3a;2%2*%v2TA*LPczNvWt7ad
z>gDuN9onW~)+~eHy7lIU4Ggst)w$9$2W&H1x96p~QsUqYZB7r;E3msC-WNJu(%zhA
zM>%g|9H)kV&#ZdHs@mbkgRJMqxKGZhat>z#eo5b#pZW~d1XQBuk20u{guFlpGO8Sc
z*9$LYOL9$Ri1Sqb4oOwD`UxE1*V7T%FROL`?IN<oZ3A35lH{MZjn&v{LdX$}Kg5P~
z5q_z~oB;w@Wnp9_elD3UYPeGc@gh&VKm3%XljEs>fHg2|Z-+?|e*$UMxhL%$RAfko
z$ydil1z^R)7J-_2s_?4%kS9>7k7GYA!n(pMk94c05g2LX6t0w<IEZKHdJywO>NZ~>
zt9eikE(ZgPgK$G_K7wM@C6*fG(2TC~5!Au`d$nFVHXmBL>JB!-bqWsO*b7=p$r0lT
zJC50Z5o$+T4{(Q<Ft_HEFg`jNqBI@{Agh@)sUmGNv?Uke1aU7dMC>LxSfxZi_0%Nd
zvLhXmA=fB$|GQde&DsIAM-l5X?22xGWCEo6#w6Y#1Xib_dYKE}tTzc1j2P5Ay>xh?
z&>CS#GW2d5bX@^fzy<Z@2Qh(<qJ_+M)zHR&_fqm-tK;@%wSIaK#GJPt#8CC+Pz_e2
zUoGvgqOqk4`@9+w&Cqi>_+E}blE{h#R29{lbI-v!@c2CUzA>As$~&|1$nB4E+zAy9
zzI#gT?A-PW1fkW}@j?(@M-0W|Z$M3csN^R9>JF|bb}Su{!>WjiEDx5%!9e*2!3Gh3
zTST_xqrumacQ??{C?WH$f$GZkdsP;nq;JXRzP)@$wQz49<;!aQ+$Yu#M$+|oy_Dp(
zgD>Z3R>iS6xAa&-#w)1_&<T-CkiAY4pr@1sCTa)4@{9S2Qdw-0kFi;)yfoWlL9cPP
zh%};mY+XVxBNLz8y6S#K`90(h(9T<bc{=TJTfTs02s?1D)q;N27YA#2qnBACEC0u<
zFBNum>fp5!EGVH*?e(I6YqNrY3T}Ox^R`bp<j^K(zB!I$5gzpXwzqz;{Q04t;S9D(
zR^y(j%!f`Vmu}wq-u0Z;laB6GDZF5fO!fn|Mln<L9@DXSprD}Yq{fYkg*|zH@%lz6
zLHVUR{ABEr3d$&pcndgXVMu$gSqx{fo5kVjL$FPWib5iFu^n0jGmOo$a3XyZ+nNS=
zUYOq-z9;IDNIJNEE^?)Hk%N%B|8+NCw)td(&GDaYH?=g0xE1sJ8n=FDUq6(Ghw=mt
zkYB1_MD_}Ml@-u-b~>mfa~N!YNJUS<Mz$JxYvX$tDuH%wOZ&PA{7xyUL$wa2*u((r
zzDHBO-I1tl1aFphEs~viQoQ;#T>w_g8_jk_|5b^tx@VqO(*?%9XJbL^_buX|_GI$K
zY*|KI?CNw#{L^Ka(wd@c+quaPD3Xb@f@Ug&@uQa3MR5;!&12uyU0-^C5XWow^?ee1
zw#s+@<Vjonjx0FN?GjiYoj8xKg=9{eY&&5Z2?WFr0=9fFhmMq?zsh+yb+Cmq*pWQp
z%~Q)Y<KHG+a9Hag$H5`akFLXAF2Y-<`OcJw&jo;F>4RgUz=G$}0ml9YZ!z%}H455Y
z{SXc*JT~Ueb8XuYqFkGQhvN(UW;s1mz3W5&&XZzT*WEp~F1eU@JZp6=9V5=ym(}{^
z*!+hZvS~usaJBEY&r&X4`IP8bEr;7#L0;Q4j`Y}AlQ_y(s#H|8*&Y{og{TtMyv<Dm
zvMD3{01~Lo)sLX5K+*z87eSDC)dt~Ij`__y1rSJhdno7i6j+LXTRTeNB<RCy3_xi9
z$*T);@G>Xa#qyTX33W?C)nR$>d(x9V3?iY_;^fItqP*uB`yw&QsbAg<>-f0`4C~+B
z!2IINhwvZxTkVj2tz+6rrP&<FBo#h3>-d3$i|bMIL~@a)5L7Kdbp_rVx$bck;h2dP
zeQsr0Zc4FsS|iPWApwShSaB93HfMoVj*1)gutnkGs~b2S*(a-4FY&3%W!89sq^BJ(
zh@TczwpMIgc`&beNHUq-NMzlviJXz)6$>?m%r2fHR(W<Dl*ulm?w8j}BG_D?R+J??
zmk#1U`Y%}imoI;o57r16>dAS_W=Y%B8|DIH%I^tV$<D@q4Uh?-dgr1y2gkiST22t-
zS-m^4j#blLiuFn95d`ZzP6q^lA~a@hBrX28U6niEOHD%O1K+$;!?_cOPX^)HguQ!i
zfbT$-R(O$A(zT1<=98=oQAfgz(n$oa%V;!J;|GyG)E-4SIt`dtv8Y(O=2%Y8-M7)!
zscH8_SQ%n}=lEr{Ufu;C2;z#eJ#MNu{loO1P<L;(GNKaOb~@El5Bif|^4(5WlNzS-
z`^oxIt<k#ea_1j6UrHixx1{eW4NG(#&guqdb^EPZOO<kQ1+qhWPp%L@!QoOvWc9KE
zlh!}lV4i(wP4)mJs<Tk+{ma{8@{knHqEys)9@mC{1i<qvLd*Hc)^1)<Jvn(VtK?0*
zR@`ia%8TciNGPG|yub8LUwrxdofAnCX*=BB0obysLtWe5rO>eQZlHq6iLXxt(G4Zh
z2+=3FuITpo99yFejC|gj%y32yDgWfAp&RE3&Sm?K)tB?q3O@ntqEkeVKlRN!Rb1KO
zZI!BjTGq{-6$J>`Tu4f>JwUX3PtP{%GbiaDK{NsK?$`FAOtp}u0V}m{eIPBfKzyVD
zB1;A^fMJgYcvt|)AmdGa3N^jIpwnL;viiy2T8?7fw<^a=V^EHN)}urAscNiFhysW?
zPb?257TAsu%WCL&o+Q9YRE;{UY^jl=E(P&_o@l##6(LBocXiv=pw?%V6693gEXNmu
zaA?M>SL$Ci8i50+1<kFH!q5V~dHG<hsUT=C@7Ub7YES9#My*aJBncL0S&~Y*r<mUM
zwX-cejz*&?@}yeA422>>wdjk^@P1jXKUlt`k6Vmj32hI8z~Ri(3R9wTR0pCFfuibv
zRqfWmlaEY5tGcWDQA^dlTvl;@wpatu=SmXf)>3ZF=G0XzKM1}-%TA{hjP0_U=G40E
zt+GhATI{LAv`J9AWFIR((Et^5ZYk5q3APbJsWEgLRPmR>pURQw00?3;dACmyw8&P+
zxm#bF*|@iWI~1#+OYj5Br~xxb-*!-cQ1<k%y;WX!KIaF5@X8H{K&eY%4RRz(=#$Ln
zR%tdEtIzEqB$~=+Bu>X6BqOLgut^@17;ICV$|O$x1AyGuW78{G18|}VHjc*5Z5T{`
z(~rL7o6_!uAizXQcK}AFSPcA<h^T<r?n*cv14iKSy1h2l4Id5WLzYiS<{{vJP1P_Q
zd>9=-bu@eV)F-5EXR^IKkF4CJ>g0Fbl0YBj4J(MHoaM`E{d(LT#|PUj61L9e9wF*c
z?P`t9+k504$pX}jg%Y@&JHkuJKkXwaz94gN8&s&upz$j)s&{qg=XPUs0QM%7bT9X$
z&RkpFL%nx}CwK|{%{$FbAXu`0mvV`R08d_8u2b10#ejO1gVn7ynz!_1K8kD!N;aA~
ztg4WDHLcWS<p0U}d=$uvR?wM~z^7OSk;7lbn{^(86G?IVWwn0l#QLF0=`VVg_5jYF
zr~-ZP?Tbj{eIMsu2|NyvNT1-J9z|}#)JHB?#eEC;{cwbXr0D&?*!oU?%iiBjSPPf*
z`lQ}ru9}n`U;(q)tzG$iyG?dNo*si$!WZW*bqDIYnuckz$CMxrN|#x9kv1;nG>RAM
z0_>9HWB}7ZkK~{c0KZAuy`Y_;_j8#yc-jGX1jb2^JMM<~?$BQA%WD19i3Hs@I!zpl
z<s>!-ewLG3l#doP3n_|!eeGd7&djX`iauk9*FaXw#88mXR8_4{XEbv-Ljd;ZtlBoO
zSabJFzo(`xNY!9CIeFWhuDd}%@A<?gTgypHqOnZMGBxdU{-W@8GC`i})<VIH2(Qys
zlC5e2SQtBqO1$R{iolc>pdh+~O7nmQSzo2Ok=PVXRZ#nX%3e!<UF98y@$Dr3)`=f}
z)!GA{-q{`Oqfu@-RbAP+gE%bo%u@>v;LIV!*6~SyKQ^QHkJ`B}g&^lD+R}nL$>YIG
z<#BWcGIS{P*1D+wblu*iN(fa#2?Q43am(MG*c+DIq!(=oVn4K@D%&f24=*OmiD=PG
z4YB!x<bUccpmBG9n)`UX$tK5Baj~P$Esg+|JjmU{d6B-S<a@50U7`Ud=bf)lUskLB
zdait&#F)2_(k*uZq<mfc8Y&6T4~6ofY<DQTvapXJ=d<5H##?t?@@3>>UK-Yu0$L3E
zc<bP+)Fl|Tu%!0nS>192x>-;O^RgiN-OGpSj~rWeW(3@SYAe~aQ*l1|1~91DJC)*d
zl1;ycumzEA>^1!iPisF)3}w^8hKHA$DMw4E_QGIz(1<Oq6^JJ!{i2P)BN|lO{kF~e
zWwl<s)Avbqm1TVCT`BSUA_22clb+F9HIzK1#GJMeGkYV->d&fz%qq+0CPJwY!-fJ9
zs$3lvxMFjE^^kSlPOI8+bYR4TE8+RzeFkcOe$s1(Eb2XVI2CvE0)}3MoYqVp@H6e*
z%(*hI*%}9v+N_Ad`^HP+(#?WV$>(Dac#==rO~Ueef43r4yx4Z@TOsKpT}$jdlQ&7W
zuG^Q@`co&S@S*wxT&dQ3opegEXK|%coYG0dnR?NG{c)*;m2VqWEM)ioLTX+w4&AYA
zS&dSH@AeuB%486?!pe_8yUBSm^H-9O<NDXqBB5z55<awaRWb8&U{=R~bQ7t0RO)7J
zF{A@-y+<*E(h#@PXt`G)2B(me!Cw}|RvtAebF~`}fS0y^9d%c_ty=S*4uyMx8=Hn;
z;7Ce;xcDt@{dyPV_jG|~+&760h}3NjUAzs|V1RjE96#q)<`*QkCLND=Cy68-3bNd?
z6V93v<+0|I;J?M9PF-)3t?@+#(!C(N@<qh~E<JhW)@v~<Mf>J7U!X>BYwtl+(#84M
zKfRm|j%$HV)@fQfrbp^r+t+CdN}lTFd8^NV%ZkN;E64f{J<0dg#qBlX+`TtS0PSMx
zzH7EV;*gucD!=LP)q3$x&-WBMH7MaB=}sV<j^xvZSTAd{vf@0v#~J!$v<qaPRH}0g
zqE_|lS5=kq$YOumWBRaYKfy_G{GM||`n#2i<-lCpvL@}UtC_bhFE)SKZtC{yAlIUQ
zGg-EdZ!K?bhi-GQZ$M&E7;jHHUXkO#R-`Q8(8puVKd@aQnOuaf%W@_A6jBLwgkk>%
zim^5C0t)gapR*@rFdPp!zO2^qx6=c^syBerRe5zXP}M)DM3k;UVG=ktlVh%tcf6<X
z(dLqO1Gh5?+Tc#_7dpi!n|kSr3hV}d!0WkETJjoXEA`y6d`Y2fy9H|P7jNk8UEoO}
z$aU)>Ny!pkPb0Tdi1zv)nT5_{N<TZ4R_M~cr5Gfq6{ys0Md^>AuDcCWPj6T7C*GXv
z(8>91*s5~m9_|Qs@tSKpzr?NMHA8lPbOV)yrOu(a&^ytg3FoxEmLw8CYPflS^){}4
zK6``?&~%eng!qryr|`P9Tv$r!5CVc^i6E~dvE}D+O<&$}Xk=-Awe(GU2pwl-E58s#
zYt_j1JWupW>CDqBlj?mp3AeB|0f0M~ty6I^#{r;vYox7p)~Q9WL{-l?s{%UXNHkl|
zUL7o58(Fy2RpdK1Q`hNzPN`;po9)|brN5mXV#~aoO5)3I+h7<fymp`>|9zZWuIB-A
zlJF@_b!BQKW&57a&4ZuzERwFUMjkz*mJT)K@$2MgDjgNPfY23~NEWxRddkW*QYXAt
zs{?w)nO;_B9iKFn03Vn%#`Yp}7E0x_?7kqm#6MQk9Csa>PavWuI#h^%HG)`GI^&RB
zHuaZYiY#u+N^R?Z925dEMJR<y*l+ij)yluqobM<<SP9kK_@JXkU0H!g>@b<Yy~%5N
zWIP^frw_Gb<7WIEDUyS_=*HXGJ1g20`E#3R%E2|eF9Ji*;@BED5~nn{vdN{oVC5js
z7v8%0Jo5LvusjSaX@AjwA@b0V#(tM_BOv7DkkcZZ@D53UUI`Kr4!vc0HbRktGImfN
z%T>ZUhk2#!JkY&|-y#J@_BJ~zInH@#$G0f|gXQxFme(4noL;>WrPaA=)wZSLP}z?&
z;+FBf)s*+{!n?T)7F3n>KAl9Lad?HrTWY!osO6&cP+MZmTh%*%#~v;($h?P^Vdhm0
zS>x{S+1FERFn~YVYDKm!#galf!!h&#h-}RgjFU|1>9{9vRF^{Cc-U@U>Zv}U_v)~h
z<OZfDPurf5ttT7c3EDtx>4+$;_df2?)dL>)-<p*5)v>7`$}CwN5G0~GM%ERJoXVp)
zW5~&o{XqsRTU6+OXe^iQ^E|uA&fnIQhnSk7kFc*UbR}=6N>9ZmmO@3WavvO@TXKUc
z13`~hk_8C=g-!wMd;q8DDIvfJd~1>y69M%00R~|;Izmo~u&%jd#O<&vnPko4yhT<s
zOnF_s*p&7>o#XfZg~0!)!$VFT-r@#1>)FX5uj}~o>&t3?#b0jV8=VGi#V)Tuh^N3u
zf;i!o-*K(H;c`_-fc2V+q6QH*5M|0PCPSH^l^*Ja&m^)8(;J4X$}=HZ#Ld`<l*OBV
zrfMF0Ybr$pzSijCwOS%j-6%Diz8`(wwV|IZot_uw)3SCcb}9cdDDKEU&NQBBdyTMj
z+P+AAhJjswS<6Quk)VY{C{9-%d;Bg-xZVtvvXy`w5BmFNzrH4gdGjAGB5E*n@^b*L
z)y^qov*hBCJ~eT2-rHdhHEN2}40+3JUNYhVJ-6B!)B*tv#wp+pAM2PbG0Bl^VLx?C
z+<F<Z=f#~*05CaU#x8qaw-_9-$0R%+vS?Mn<0_ATNa51=_em;SQCWMpBMQx4P(R*G
zI`f(|;H+`UG(NT%=H|UlZ%ru8LA-{}k_sEoJB33H%Q;ik-H_wMYyGlXzmvir8sJUB
zX16qX978j^JO?G8@;|&biN!~Z`V*E+38opSG!SJ9i9^FyD(A8j#j66rQyD~WIBhNy
zChk&yWl~gS{+Ik`0wJgRB6D3q?a)`{6MEEF#|Z?5tfHvV;TK}3KJt#XvgOK*dazr!
z0^(%I9fVbl$F3DMOStV|vq2qH$-^IWpIZ^+@KX^Q%(Q^z%^`cboR-}!`?6YJl<+``
z8`i|F743^uBkS>+_s=v^=Y%O!4v@2CBu__w$HMyne}O>lhk~^7P@Vi_w?~q=1KL$G
z9JS)q;XQGN<96%0j`%nxdQwNKfB5QeJy{N|)gyI?gP&RFk7}1t;~L&l?1~S&^@+SX
z5|XD400%p~IA0XoVRmf9Hy68D0Z{ThQTBP3s7Mv0r=`OQl?|dA$KnIC*T1aR@6CRH
zxj(9E9j`C#Pan>rldi-p9Z+;@*GJiYoHI$`=_((#GL9+MZ<;nLa_XRsN&{OWg%@?|
z#7-ENjk5{TMZNk;y)~~?oq=4AOz>6d%^I0{5I$<)sLPf#MBzNEKNOYX=ynt}j6W{T
zNGZ117`#%oSX8>xEtBLy3~9==PBVLdtm=zQ>1K}|XC7RV+v1bt0<h$P0OstB(2w$E
zwa(w1_`!DTH*lsZ^TUEW_RT&H@i_9vfuj*`8~;F_YYJ!j;T>jHeo^U&V-hIm?Nz>>
z3DZkFQv~%_DM1(FzI%dk%fO|1QNNMQ4~G<}x!Rk*MX^~(VJ?^zLZDIymMaH;x>Taj
z-I{W07Hx~DW!<%1n+$TLZKbZ)A9YW2(oL4DdK`Lsq?HwpQ-%AM6>zFVqAY0E^1>fP
znelD4es1>bhhMd_Sf(CtN7cNSW3?`Aa}S+UI1Z|>+>xaM@Pwj1t%M_I6pJ?vx1Dq6
zT@EFd30L!ao+<}fr_#Q;n0k$W)NoTWQ}*<JY;P3_SJ$g|Dy}}(Ekl2$-D5a)2G>$i
zQ8R;5zbML;46^FTQbXi+2brHsM5fHnP^o1P^Mlmv>)%J>Nh#ZoXUGf)rxR7%=i2en
z;ColF?#pVuIyUe7#7M~A4weLIxddAG9{MWq$P(<d^Oes@G<?=+cRPW9hBRPTq?<a4
zBA1F#Q^~%yVU;DH=2=BNu14HBL92W}HB5BNP(4Y;CT->(Ur`<izxJGP=l?GyMPxd$
z6q^;{dNsR<?1$jBowDt^Q8`Gv$i-WClC(S}Yh|Y+l?n`j?=qka3%ARq<zOnQ-Fk3R
zQr1a1|MrSv*Syi`f0*Wftn(mQ0J}ioq-{W<!D~eO;=DjgswM^2)}WpL%Yi7_^%D>y
zKR<%k4H#FCs(p~zc$mz_kPl8S0t*5lyG|b0NnJu%&5iFqBvicT6M;wi__P4l(0f3a
zo?E_;q?T}MsXk7npX<JG=8KaA*H-)UC`u>^q4qPgo17AI8t~MAnJb%m&r{+luN#a3
z&bCsO5SXZx9!d+a%a_%9&Az_(R&s8J4MuF5;0EH)q1fMHr|VFYW>$?Y!RS;lyax8|
z9k=hPsf4_zMvZeW;7xTE`|Whpag*A^y1|QGlT)v!n<^l+9^gr;VW;~GFZGSLlyWYG
zB3bp#9E(C%;?4Mf=u`mQR^BeD2d0u_o*GcEZMZ78p{TvzDbJ>6Dpf=y`cbmo*&Hpl
zZ%11QThyUscD0&#0)V{NNAb&QrN5)RE&{`Q9A0WX)frP#n4?C{nd&R6En!mBi3v#m
zc$Nl$xwJMOD!oXV?Vw*!pT23LNqjpru~R?S`8bvPqU5-LezCG=Q3!gde8awb>u(jW
z8$q&3wTMTq$GGfCRp%wWSpj`2BmSJ~18r5esVcLgkQ_`fPu&i^-kK9j)QRHVS_J9?
zx?R$F?x;Kw`6cID$e}o48ZxE6tk&;+;)h>#ux2@Xl@d%AY!nqoQj+7eg1o{(VWh_(
z`x?wdAz}A_U}{ct4#$c0?bTJwJG943uInB)2PrNp7}HBezA;>^W1P+glVXEDbeoBA
zy}b*RlTn?iDyGkW)Emiy3J3lk&`KivKJ24&oPz#%l7*uE+-gr_E-GkkOdJ+)*a&FM
zxtLnTR^XRDNqW~iayClP?eW^YO?8F<9sgXd>o;zH>GkoRxZC=BMTt<kWX@}4o@?$Y
zDY@R3e(|7^SHs-qizHhm)Jt@ppbu*fUM-2rVJaC@Rk<1ycWDG>UAmn3qW&dl5$J|v
zfrn$_MBTSHr`;Tm2m!AvM3&Ty)*oBBg4&*$bsn#hHz}iLbD;I?`YaJEtq4o?Dt!WN
z^f2jvj>t=Wb-=qm0PLH}_Zf9x&>c!$Z3_mH%IW3Qm(_atzP_V8zka2D7X|JqWTZv2
zzj8i@G?2LSUQw-sq~(kO79Q#0ZRuC=?p5A(whrewNd%cvLx>j#xD8AVDqK2IKAT;i
zWfd)QB>|6`S!!O@e~}#ecK0^@@%sR5lv29z<V;>xe@GxuE}m<@72*a3^cHq^+GoZ`
zZUr%dfRLQtWw(ReQo6S>;aT1IL<|j!)$LnU9-QhV@37wU&;7Y{tS_sTey2G<X7&$V
z(Pp)#;`!{F$>Pt_YSOJ>MNRDCCW7T)0=2Ep)R*TFRGx?;{&eFn?}hBzma+J273QfP
zv$Mu$f7Jv+T{Y0q(9}>PV9(R>;z3lqRfn2gEpIok?Z@M7{zEV&!t=xAEOu)k!cYj_
zFLqTuD<I$|<j!_!Iq!N@Wy9>wNuSG6XB*X@wdYuR%y2-!HV>#Rv*7@+-}cte%>HqI
zc5LJyIJi!=1I7)~|FvhgKxKolwMDB1z&U{lf1abGQy4lxqK5CS0>eJGM{u6xVDEEE
z4idODH#XJ%M`h%?PdA}7#z)mzb;vl(uN$%hOg2@^si!S65~Ivzt%cZKjx98R1rMQc
zg5GIq_e?J5$&-S*7sWito^qAqEK3-XpGQd!`kSMv+`Xj&i5G|Eic@KqgX>PFm4D{M
ze<S?Htx7Ta##^#DQ$2VSgAym!6)wBlVy-34dDnTA61f*8ZvsVTSXIhX0R0;>Cb$E1
z5tRKH1Xiyk7Yp|IY;4BH9}{M6U(9}Of8VZr>QZd?HM6f6gkICyzUv}E$?Oz`%7h}N
zN3G4xfCP+Ct8kdl-I;sDHBKI`TT&aie_eL*31R~hp4-_nO}T?p6;U1Ei1I}>{N{}U
zOG=8I*O%3bzg6}1!FF>DjI&<K7U&I5k!gK!OSPz49`>N!-N~<3luIf@r0&j}mKQXR
zCS>%(nF7MEDjq~v1-1o!a<~c4S5f4q-E)h=``IXZ#q%$8+O?NdbLdiMpA1JBe`P_(
zK19OQF1!aMQ(lE#H)Mr8fT3zcJdzt6ze&w54x0=-A1nFvI-KMTR63Q&Lea~vE$g^;
zYXF>4lB9+lzO2?S-uh6KQo={JpW*<32Mt3qXQAotkjXhyij-0j;)|0VMg~2**Hs-T
zoK$SMc{u+dDygFVo0X%sg``&1f21FIVY2<eky6Yf|J1yCaiHO~w{)GO#tk~4IrCE;
zRk#jmc2Q<66}FPXb`%?7p3}-Ms>4c#^AM#@C3PQEnqrCBZ+BNx#4&RXh57CP_I{>O
ztuFDgUNc+4_WsKk!`1q^^ZA_f*}YJrj#76+**gk6fF4oXsHwlevmC@re~Tb-$)~FN
z%{c(5Yfa{3Q-*1f(w8?F_t0v>ZXQTqQyYh0&nZ=j1>3AgsUYNzx}`MV92+f)S*Y#=
zQLxLOb%%OxFQN`H+kF6VZy6HviUhC1%1~I?mflyheHob?=%7Fg$<)pn8LJ9c?<nup
zD-;=zt)AOE!`n}%Chu>nfAur7Uq4(#C=AZz^@wAf{D>x!X32+jg%4Mkxwi&ZjK{8B
z(OTZ069wAXMsJJOwFjY2HC^-y*)yo@wBp?S-HwZeB2tuINKuqDlC!#MLT`6(J3>J6
zLQPC@<2Na9Rsj^c#>sD{km);W_p+p6bB@yNtvGgeDG4<1wn#$YfAuQ1<Cv<mUk{zR
z$d8n+-Cp&iHeY)<zRUDe@RH;7Wwm~E1M3HW3zXuxpc5GWK7N-nf`|U#svQG4RSTmk
z%UW2g<+c<J9sm|X5MV7&>OQ*%>Vp8S&h3Pu7fCSy^YTL1Jv_+3$#&?2t}#jI`QgC4
zee(`|KJ-X^rs^qEe>deM&8AA~?SPl-j?2l(c{EOIAV`7U%nN~E$0_$N)Y%U{z(v5i
ze1Q~+;0gQ5#eTJ2>aHx`S&{>IbDO<<S*<_a!1NjA_Z??Zc%r%B4o99-&j!k`eX$#>
z8Q=g84)%&o5H&GYdsHx0FLX$as0uH0N=bRnIt@2QaAM?Ee+cv<n)W|4DMcqc@Gj4w
zUGrPPQ^Pn`^ct6vN|G_0?UN)<wX(<>MaL~kF86J#w-XLQpBH&Mfbt~;^9CqVsSzpo
zz5Pi0ifBAnx7jp|35`%n2^NJnOO+g7F<J5avRXg<t@2SPW^FWzel1x=<>oMY@rGr{
zuBv27=lfJKe=k~^dpj?y`N&UI#C#+jx!B>n+f;eZCy?`Z2Uq(7C*h(}E)>>84{|`$
zzO~9%1(^_@-^#;;OwA_kn>8it0D03)tE@i9^z^fpq3(TViKt_>3#RIrYj=~k8|ZVI
z%AE`u2|y@!^<G+a$~Ogqtf1YeOnh>y`{0&Y2o`Bye^%>vX8$@qo#VBlA^Z|XjIN3#
zp1>6)ys4y~HdKh<i-yed*uYED>QqLR=gh|R#<6B6Zw}daZA$OTzEv&5z^eBmNi|i)
zygc?&gLBcca>42CDSS)hQ~`=zb`DklAHa*0DCcB*&7j*|uhi&#x2jGc_dQ7f3gi0>
zahHA)f5ND!tsq&eFKVhByv|pGN1n#b-cnvj%8QP{fe3W}y;{FB``7(mts_N89dvgm
zr&p?oOZ1eDs#*kU$WgmqaJ*hAFh_7O&-qF)DWSnhZxiV4>n1}0^pm4zhd%ej1y!A>
z@@jJyIB?#l#87sr;vDCzs+NJtyE^#Lfs|Twe=<Es<`6ecW$k;($p@EHs<f$XQ0zlh
zmEeAo9@vSichXSd;`8VgqS8g+#})@FSW#+&%kjySyaVTC+n0#cW`Es~9miV({Q5)?
z)a#E`mz*jIxktN<R2Sj;5Re~Ehxc1ERog=pU0Zpa)gyY=d#O-St;bK0{v3*E0`q}e
ze@%0u!<n-^3OiCIa|1w$f--i&499i89RY_<IA@mNL<K0VfYa1;u29;T<HG^sbUi#0
z8M5g6oWT`wJJHx?r0Q#jeCBJYl6i(^7jeY8vAhB|cE!AyVs)bW%%1V6i2h%l=HqzJ
zVtja^C;iolz*=%S6@FwH#7$?j3=~~ne|(XZrN*jwBR@q0(b$?L(Qcn)M**v5(Bw%?
z+Sr)sJhz}21+{bA5hS+CDu+_=_i001<)i*a5c-;X-!rZKx>RPropO>B<!n~s^9{!y
zNN;-Gber!S#<VNtW*MvORgw`wHOg7E>Qu!@L)69ovlHM5@gLQG{(%R2R=H%Ee~<iS
zwSM_q^?myqbrz#ySv(cUvN)b-7m^LQa&#`jF)(k5HO<r}Eh|0OwWrL4^t$zk9?9N&
zPu@iJL(CU!KcC7L)y5H}Kx2iM<3eBsu$D=0y_u9?+LO9Fd0$gy!Ey>&g|TUnXFuYh
z*l>zUWm6@NLorQV%d{DuTZW~pf11sjK8t<NI(U(r)e+-`Y8-G5wxu*fP=;nM=c3Si
zROWs1x09HEIL#lED{2t7t=&`=@6rk;<?UwG)LoYyddfi3moQ)E#ao;?E<HC_SG%GS
zcR7nTL40es0|nP5UQlpRCJsmM(1<|msog|g-P1y${8qw?ZBH4UcRZ$ye-*aQdF_v=
zuE%|Mb%eFZ9Wo3<iH}&csA_6?O0peNa~yeQXN^vQ->QwzVQtChlC?e6IGf~R_N_{)
ziLj&7^<SRC$A@3_=QQWhWL4-CIuAXyE}fuH3*w-9CV{Zkbj|H8KT@W$uk9c{f#pdK
z<aC}+UPDw2-dVV%O0xq~f6<^OWoPI#$N|xef*7V#4L|jn$^^d<ghRzdB$*BXF^ZCO
zs-Wy`zy_1qOLcyEl@hOw)D%7ts2rej9Iq?Gzx^mEaun@n`zg6|WwjIP@OGrKw=WGU
zpB``TYWWx^i$1@_tzZ4EkJZY#T#Leql(U<%pe3rTY5Py(kTk18e^p(T%&B~?<3HY-
z^1ddBne*aEqhc|fPwG~0-PP~l1m3=5)jc#3oz5vb@vE<r{b6b=B?(?}OW{dQ29NN_
z_$CmN122JHYhA71hciKBD+F?#E6Z{^L&E?s=N?5{137{}(iMPc8D{r7QPY=M98<FB
z(ZiRO3iX`XfukpAf602KZ*lAQX8(HMkU5yh1|||Y!2m4MOnVlJ4cqg|-#_gbURN9%
zr}liQWq5j&D)n4p&t!g~*LZ^i_GBfgnhu>L0e<+c97$2ATt1ro4swe0C)NGO^_oH-
zJxZ!FYdp_-_N|Uy-PM8blceD-p%7qcVq<|vjB<`Gs{ivuf9EzP7~g{SN*AjzMQ&lJ
z#Qv1FZe0MV0?zAV|HW-_c1J~sh(UjOp&xI*>ht4fzi$grwpLXLbP7zWyJ~E@fP?2z
z6#+hW7b5dibpg^@V23{xrk(&tr4Fg}NlAdxC|52Bbx2sZblg*iyPhb8cny<hdCtv#
zB1yg2ZVE6GfA<NLiiSwM3TmG?Gp&$tOvKctfPp+0e&6Aoe0SSkzTPCk%@`Uvipu^!
z+gGb?DQV3*$yqwI@)tx@kk$$EIlL6Tz)b1eYW-sQkJTb|HQQ;1^{(0~M>+qIbQ*V5
z$V-4Tfuy-@)nQ)~Io!#*Nr_1`a57KlkaNZ4P{IPMf6hhxx1wm|9<WB5iUe&pz%2&A
z{=5jWZw7c$mgdkaY7cIJc$K1-F0_0JicC;o^8=zCDf>cA-DdSUWqpDTl-MJS@|$@o
zkeOaF=_WSV$)P4c9psS562>zm2L%V)>q)Y`z9EPoEDwPDn5*v2CQ!N6cs7Ugm)ho8
zSs_bEe<zqF2W9>*X-VWIhbUf~kGR=`s<nlhR#h3unT{C?7?)kQB|aTC^~Rm(>U09R
zJGq$N6NYi5x1!X28=I5Nr9<p@*v&P4sBZpflMEtuU%QWW;-PHezu3XNrYcACcFrm}
zHU{>ODlQyVI;TDK&b|itYoHG3H<JL%sgAv1e^ROZ%WC~%`45dGYvCbxk8(jP3VxJA
zo$CVRJL-H=u&$;tdL!^mp4uees>JC_?Lv*t4{t!!!42Lvi;|V7qR5mu;}G;x^Fv7z
zjRCuo?NhD_`Rc8h&bGY?Dx}#kI^Qv~r&jf6^<V)?wW#_VoV(M#H0gDpY`4iEPP6UV
zf4<rj-g*>%Q!H}jv@O3Rx81TL*iGyXwF4YIsKvW|N}(?~@n;r;df~$>$_ob$({kQ<
zD|`nQ-u9CUr^g|XQUO2*WOCn41xDSXvD2kk{B>q0gn}E}Hn6-qXB(=tk)=ql>Xb_|
z-yV9cPW2MxqiU5IIQQzyOL>rMssjfhe<f-X3CNrteGaXDp9*6RsYpDm^IB8s>JrIG
zUWp`yQjKFOO=W)gP^WlI?;r)o-iC2>fNown4d-WNJ$C@z{g*P!@$###@nf~7iHbrx
z=$l2Rq3Gbld8@D3_Eh%vkU+(9QL^wH<eNqjUv@K9MbSJf;Vqg=hcW;0mX!MDe^E^q
zOgNQp0GajP`5UD%TBR!5&5!<y^7m95d#Dwl(tH)m<;VX-=SPF{vwyG=(Ocu>;VmIY
zKto#cdDHL8u0?cm{h~fOGn;taQdhlza;O_v5kWp+<y4c+G)E23s58-*)%wBm<-^a%
zc4!zJ15%xy^>X*rsNgJ*XDYUTe`=vjFf96cYe$uN8^zr95XmSr!AS&h@C(~&?9nY!
z7UAP5djC+^QS)A751(e0*noH$950veb8@90TFW}NHq<11yu;+fdmWx0z;m@fHFi{0
zk4Y(GlC-pOrQYUU)L9@TD~awr#;w~4f0<6F?mRTo&>s?@=Bt1vU^$O{e++@`x0CqO
zm%l!hhojb^)O!m6lZ&=%TSDBebtpT3C}*Pt%mXmd;_4(cL}y6AkQ|1s3vN-PkNmcD
z_c~a6%BsF@R&>!x>*W-fw~ExEPJkX}xAE4bWKFHvBl|5KmWe7~wx#zOdnH_6>~Prl
z#^?ozBAx6oHn~@+Jek%sf7|Zd8*NdItXRpXlq13pMOkEkJ3DDB&#MIe;qG15&M&L=
z!_qxICs$_nmgnsJJo(?nCzhxnoy1`tVAvo>_T!QJH;E&h59z?(Z&6*c8<xSi>HV;_
z{1=hg%V=`H-lMkyxW=?qs27S-y0=1bp!ci1R;vs(FDYXlStB4@f9LZ{yQ~rwJp#%W
zZ)M3E{-0~pRIQMB828Y1G;)s}4I7b)9e7B!iZSnIB`2K#n%UaL&p<FH5X&Q$QgDAm
z5a*9`{QaSDuqZTiSfO+Ri-*SQYwvU>ombd&OWvE~HJTPQz+9_5Tl4km{ujNFuarB~
zxpqFi^p{D}PUm)Re+%DmUVIXcdrH+wO!-Oob^wZRAF_*bj$fKjr^icpSXdp*f@UO1
zIiqFCl$;v3XTXE7pVuzbsLX&jM;$S!Ur>N@%2ywo>_dT392{CVH85qE{o6?aN!+`q
zj;ckC#lLScKK!cd$DB`6-hsSP!0wO6(pFZRV%rn|QbFGqf5J9ul(>IUn2fCsIPEK&
z+|A??)RUY!MX#^OJJhJ_BB)h;4;0)r@I*aIHJMh=lHdJys3Cb$G-UZ_&cJHL0J2d@
zq(#c2>*BY7oPhI04oVubHLsN*P#hKGST3!roK@PIZ!DjBl*xtwFj?w<r9Knmc16te
z&`xYrF?s0qfBCXn_iqp4qtkq7az!1lCmSivOALNCnMH~ip-iSSe=jMDh~$kuCpoDL
zu(Hrm9hu{lAgW97aXyzK5?Rsxq5Y*}C|!Y>#tY5z%{4?IAF?CUyDuN~yvz#vfXT{r
z2F1XZVqS4y)AoxpwrlC7I^xY4Qq7T#k)t<@6KvQue{|`Fa!SF`6khk1I5t_qr*j_4
zaFe%e02pzIl;kHz%)*z-=cT_@-@Vf_s$8Ov^yBR6#xju)W;w+v^ELxOXX^>nOC@OE
zm+0_R)dI5esGL*kKnGocN}3G=%Z^7$PhuzsL`Np+Z;xJSGd;VHtkywL_3J}Xit@3k
zq1r8^e;tx?*k5O$BBvcl&l1|;Zfy7o&|wRbFDp2jRJe4S(@Z&S{ut#E;l8Uh&LSyX
z6zW!Za-z%eG}i3^rL?O!gPy<at@w-OKa^S8wmTbZ_uFKnOoA*Ga?%ua-@s|nOq#yD
z2kvW%!ET8U_HrFfAxTkI$QdITHB0P+%tnEte{b}yxKASSa<;O<bZt3?$H(Nob5dWc
zC9_MGp4x)GI1*`6<MsBnvE9~9LCy){rFs9v&X6|N!wzna{Y`Jxt+ja-{RwANbV_!n
z#qN}II0ipzsW2rVI(8LM?(nD(8o#X8FQ@tABxb@>9~ZG*Qb@Wbg=$|kl)c;>=QR3M
ze>b0sPwz}NoI(K{5k7N@=@_}HV#o(My85I`%{0JSk@5*#rXmNBQ52H$S_(uxm5FS0
z#b>=cHr|%n9&`SDJzW=A%7Ne{QBgiy+c)V&s(^vjC1+iR1Lrf#wP*A>REN#0MuAFI
zQGrz?m8_61smAVVSBRQ?DX;#ZhC6i=e_{KE_GPtxxPj$ku39?6sg9R3pm9C-;vwcX
zmR4psNy2(;QrYKtq!j@0K%s`YOW~Q8^;Ul_C4L$Qa2#y5;7mf1M|nrKmiQwsIZD(b
zT4N69-AVTC)eUq;oN^y<%5QRRD;;`}fH=Xb;8-H^L3Oh(paI{W`ASZ_Y+Hq5e{aKT
zlgWCs?I=1DtKv)I#ND+v%1bu;SrolpghcJ`2y({vDS|9t&}sa^@)YjxJD;Q+?X#~c
zF9)mDsUToz2zQaQ6gW+q@p$iC6)oCB>$6iUMY~bs;q)u7NleXFzW{vpS)EbEpFoAA
zR@(%NIb3mTwxKQK=Ba$lVo0w{e+rwb{;9_N_UB^Xs5ob)2{&;^Lt9GHt2#aqrGP4G
z6C`+7Fhx~RwjIuF1pN;l7RF|pqkt?5rzUQ@S}=YBqNo|k;*NvD;-9M(fA161r{@X)
z67-&w&{u!6k#~|(0<1r2Zd|~WrrzT%5WZxyE53H##hX-xriQ-kL&nxrf2fCK#F1v_
z2?3NK8S{3Id?>}{Yqi_Y(<zZlk@@x^yL+M19@1juvL0989rr7$LhFdy3_^|xlsTR<
zwK)TRHGKz9VlIF|KLhX$B>+LeQ4r9Sirr<4w}GrxXX@ZH2RbghbsQIP9@uoXFRK;*
zcK4pT-5&bxh_NUj)X?w4f8s+;Q+sKrcPzvMwm4x_sWJ*PIrY_c`Js2;Xs5SzhofvY
zwyo_84pU8t^arlh#q7>fuRPy7;IJ<Fe4WIq7ewN7wS8gnY#D_x$gbVS{H0a}L6ho5
z@j&2amq`&N9C0kp$CBaEky4s>OOkL?2AS%ny@;)cll&@3c)cZtf6fl)*~`qTq0BF<
z^_s<aSJk)O^gG5|YcQhMllGkOBk$l;9G^HV-B2a_!wGJ63N*l!slXys&9X0{g;GvL
ztSY@!a(#As@oaI+*6?sAwbjG1n4%ua1U_hPFK!^w?aWQTh$pD;nH=uX4hgUTbYGM_
zl4ew0P?E?YM&ZKXe>FF43v~~=_m3W4VO^3N7vJR$A{b;vb8As}F79zr_B}7ayArZ2
zc=pR`{lu;Fe%FZ{j$08P_136Ti{c%?0J}gHJf$t?nx}3sjbcFwzDBMlO+TEmXPaH9
zr);?b826?jYA$^H&eIJJQ@d6I(X<om&fr%?)5YyYcz#ztfBVSu0d0WXCM<Q+u0wx}
zMBZl&H7ew=U0Z8gL-HFKt>>SHWpWpTl|HpKU}Vo_Z^}!}+4fQ0K0F5{zhzrgAM12x
zYAuxj%a_%9X}f)N1GSQg#7tfqTYEGq_)W=+W*>_x*l^88*2s}>+;&a`9El8Bkq0{_
zx00+EJ4r82f5nMM4&Hi4HKE$j?uf;y_PV;JEQ;>N$|rqSK7$y}S@Moe{)yv+&LIY?
zg<)e*g^5aG&5HtOo-;~I3bv1_L$yAcHOyXAuusq7l%(VSRHeYw>U3b>fiwq_{0oki
z5knfP_VQOAUskLBuGU9?t7o0ehH{_;CTA0=x^?E^f6Ny}wApAxb)eK^mOB(Gldb5i
zKOtY|AFlwHm$Huy8-T{C2L1w^D@zx)jiE}}RB_|de^1*w84=f8HxR(!sU>ixwL7#_
zC6~evQM7FbSJ^PxY}D1NNLz49asX;fGtSv>4eykiev;OKtSO6W8J28-u_9_^5aVY$
zC4Svnf7Laqanwlp%WC~<fPZ>(@@t&o?p0TM&ZHulbCVqU?go<;TeRjrw#_|7>2}$>
z4|$1?LzsiG&Za)E?I|6syN9#n<31JH278;x0VF(qo;?6zCGXu1Y|J<Bl*Qo)Yj)u1
z^?fLV59&L-UIM9a`{YMMZ+WCf!fm{#ZrjpTe<W{F3knCqskB&Pkuy0-YUZQ8HO1kq
zPM?z>_qaG|g;jsH@y#~`@zaASA9p?!VeQf$a_uP^`H&|&I-bwm-p}L^uZC?=@}WQr
z9FydjW-vEUD=sRI<C06C%IZ3@CE}9PQX!t23=vC?&8XGUle5a3zO~{Se5mr)8hLsa
zf9w<KsxtC-wb>?BLRpC-|CI`XSfpj|(o43J8&!_J96r)s{gmtF9a~nOSpK+T^);%T
zq6>^*Q0laE2;_KG3jwZV0!K@~tk(To`Mm2yw{?`9PUeyiSmPF#Sb2MVp1S--Wow%l
zfkK|FwG|t(GT~H#tQ`RWuz1Ky_wt>pe~u_uG}<_Cr!S{}#KV=^<TTpJw>sDCu)l6G
zngB#fGo_(k1-EzABs-pfxOB@tx2b)&jq~yz-@-9z8m>q&A73ZPJv-vMlVH7~lPh#?
z?eXk2$s_O8k=YTPXO=f4+wdvl3xfFN2Idb>;Uy1mn${%D)J^BtZR<QQSw@m)e~9$F
zEH<1%6BkI&CV_P3wLB7K>EU-fQ@MxSMsfh$fXxTu^bO5Pz$rI}k6?1Bh#yl+w^+Wv
zXUOhw{h=Ons=awvDu@@!hO-tm>XW_zAyu7omcU_VNe8#~*JmasMX5cPf&&iAT=Q|G
zhp0)s<WqeN%~s$@o0V*Xw59kpf66((tk$oe&+%TZ%xf-5Ip3{Db<2ab#?n9Py7v{S
z<QvtBL0D{+rQ00UewE2qIA%rXs#ecn;c-{5b6H1c^}MpB9$D<UK>)O)Zb7cK8o*oW
zyZ6oh(0$8x*6@B!(-KNQFIc+`#A+w}@$GQ>SVLPv`ZiJ-D5}?lyO(a*Rf3=@rHYp)
zSM2mkS)FM&a$LJTORY$42jBu!MlXp-7wupE+kgG<|KorDm;dzd|N3vw|NHm$Z~yl{
dkN@?*zx?6<`L}=j*MI+){|}81FD{Ll3;+u?%TNFS

diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-01.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-01.xml
new file mode 100644
index 0000000000..beacb00e0b
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-01.xml
@@ -0,0 +1,55 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-01">
+  <title>Keepalived: Multiple vulnerabilities</title>
+  <synopsis>Multiple vulnerabilities have been found in Keepalived, the worst
+    of which could allow an attacker to cause Denial of Service condition.
+  </synopsis>
+  <product type="ebuild">keepalived</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>670856</bug>
+  <access>local, remote</access>
+  <affected>
+    <package name="sys-cluster/keepalived" auto="yes" arch="*">
+      <unaffected range="ge">2.0.10</unaffected>
+      <vulnerable range="lt">2.0.10</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>Keepalived is a strong &amp; robust keepalive facility to the Linux
+      Virtual Server project.
+    </p>
+  </background>
+  <description>
+    <p>Multiple vulnerabilities have been discovered in keepalived. Please
+      review the CVE identifiers referenced below for details.
+    </p>
+  </description>
+  <impact type="normal">
+    <p>A remote attacker could send a specially crafted request possibly
+      resulting in a Denial of Service condition. A local attacker could
+      perform symlink attacks to overwrite arbitrary files with the privileges
+      of the user running the application.
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All Keepalived users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=sys-cluster/keepalived-2.0.10"
+    </code>
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-19044">CVE-2018-19044</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-19045">CVE-2018-19045</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-19046">CVE-2018-19046</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-19115">CVE-2018-19115</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-01-07T16:53:52Z">whissi</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T02:16:03Z">pinkbyte</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-02.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-02.xml
new file mode 100644
index 0000000000..11ae0246fe
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-02.xml
@@ -0,0 +1,62 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-02">
+  <title>Zsh: User-assisted execution of arbitrary code</title>
+  <synopsis>Input validation errors in Zsh could result in arbitrary code
+    execution.
+  </synopsis>
+  <product type="ebuild">zsh</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>665278</bug>
+  <access>local, remote</access>
+  <affected>
+    <package name="app-shells/zsh" auto="yes" arch="*">
+      <unaffected range="ge">5.6</unaffected>
+      <vulnerable range="lt">5.6</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>A shell designed for interactive use, although it is also a powerful
+      scripting language.
+    </p>
+  </background>
+  <description>
+    <p>Two input validation errors have been discovered in how Zsh parses
+      scripts:
+    </p>
+    
+    <ul>
+      <li>Parsing a malformed shebang line could cause Zsh to call a program
+        listed in the second line (CVE-2018-0502)
+      </li>
+      <li>Shebang lines longer than 64 characters are truncated
+        (CVE-2018-13259)
+      </li>
+    </ul>
+  </description>
+  <impact type="normal">
+    <p>An attacker could entice a user to execute a specially crafted script
+      using Zsh, possibly resulting in execution of arbitrary code with the
+      privileges of the process.
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All Zsh users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=app-shells/zsh-5.6"
+    </code>
+    
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-0502">CVE-2018-0502</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-13259">CVE-2018-13259</uri>
+  </references>
+  <metadata tag="requester" timestamp="2018-12-31T07:32:39Z">Zlogene</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T02:21:31Z">ackle</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-03.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-03.xml
new file mode 100644
index 0000000000..eb2941f015
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-03.xml
@@ -0,0 +1,53 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-03">
+  <title>cURL: Multiple vulnerabilities</title>
+  <synopsis>Multiple vulnerabilities have been found in cURL, the worst of
+    which could result in a Denial of Service condition.
+  </synopsis>
+  <product type="ebuild">curl</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>665292</bug>
+  <bug>670026</bug>
+  <bug>677346</bug>
+  <access>remote</access>
+  <affected>
+    <package name="net-misc/curl" auto="yes" arch="*">
+      <unaffected range="ge">7.64.0</unaffected>
+      <vulnerable range="lt">7.64.0</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>A command line tool and library for transferring data with URLs.</p>
+  </background>
+  <description>
+    <p>Multiple vulnerabilities have been discovered in cURL. Please review the
+      CVE identifiers referenced below for details.
+    </p>
+  </description>
+  <impact type="normal">
+    <p>Remote attackers could cause a Denial of Service condition.</p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All cURL users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=net-misc/curl-7.64.0"
+    </code>
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-14618">CVE-2018-14618</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-16839">CVE-2018-16839</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-16840">CVE-2018-16840</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-16842">CVE-2018-16842</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2019-3822">CVE-2019-3822</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2019-3823">CVE-2019-3823</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-03-10T02:44:40Z">b-man</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T19:47:40Z">b-man</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-04.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-04.xml
new file mode 100644
index 0000000000..14dee74c7b
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-04.xml
@@ -0,0 +1,73 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-04">
+  <title>Mozilla Firefox: Multiple vulnerabilities</title>
+  <synopsis>Multiple vulnerabilities have been found in Mozilla Firefox, the
+    worst of which may allow execution of arbitrary code.
+  </synopsis>
+  <product type="ebuild">firefox</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>672956</bug>
+  <bug>676892</bug>
+  <bug>677856</bug>
+  <access>remote</access>
+  <affected>
+    <package name="www-client/firefox" auto="yes" arch="*">
+      <unaffected range="ge">60.5.1</unaffected>
+      <vulnerable range="lt">60.5.1</vulnerable>
+    </package>
+    <package name="www-client/firefox-bin" auto="yes" arch="*">
+      <unaffected range="ge">60.5.1</unaffected>
+      <vulnerable range="lt">60.5.1</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>Mozilla Firefox is a popular open-source web browser from the Mozilla
+      Project.
+    </p>
+  </background>
+  <description>
+    <p>Multiple vulnerabilities have been discovered in Mozilla Firefox. Please
+      review the CVE identifiers referenced below for details.
+    </p>
+  </description>
+  <impact type="normal">
+    <p>A remote attacker could entice a user to view a specially crafted web
+      page possibly resulting in the execution of arbitrary code with the
+      privileges of the process or cause a Denial of Service condition.
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All Mozilla FireFox users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=www-client/firefox-60.5.1"
+    </code>
+    
+    <p>All Mozilla FireFox bin users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=www-client/firefox-bin-60.5.1"
+    </code>
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-12405">CVE-2018-12405</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18356">CVE-2018-18356</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18492">CVE-2018-18492</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18493">CVE-2018-18493</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18494">CVE-2018-18494</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18498">CVE-2018-18498</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18500">CVE-2018-18500</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18501">CVE-2018-18501</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-18505">CVE-2018-18505</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2019-5785">CVE-2019-5785</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-02-06T14:21:19Z">whissi</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T19:49:50Z">b-man</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-05.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-05.xml
new file mode 100644
index 0000000000..106046f3f7
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-05.xml
@@ -0,0 +1,50 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-05">
+  <title>Tar: Denial of Service</title>
+  <synopsis>A vulnerability in Tar could led to a Denial of Service condition.</synopsis>
+  <product type="ebuild">tar</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>674210</bug>
+  <access>local</access>
+  <affected>
+    <package name="app-arch/tar" auto="yes" arch="*">
+      <unaffected range="ge">1.30-r1</unaffected>
+      <vulnerable range="lt">1.30-r1</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>The Tar program provides the ability to create and manipulate tar
+      archives.
+    </p>
+  </background>
+  <description>
+    <p>The sparse_dump_region function in sparse.c file in Tar allows an
+      infinite loop using the --sparse option.
+    </p>
+  </description>
+  <impact type="normal">
+    <p>A local attacker could cause a Denial of Service condition by modifying
+      a file that is supposed to be archived by a different user’s process
+      (e.g., a system backup running as root).
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All Tar users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=app-arch/tar-1.30-r1"
+    </code>
+    
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20482">CVE-2018-20482</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-03-10T16:20:01Z">Zlogene</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T20:04:34Z">Zlogene</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-06.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-06.xml
new file mode 100644
index 0000000000..456d057120
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-06.xml
@@ -0,0 +1,66 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-06">
+  <title>rdesktop: Multiple vulnerabilities</title>
+  <synopsis>Multiple vulnerabilities have been discovered in rdesktop, the
+    worst of which could result in the remote execution of arbitrary code.
+  </synopsis>
+  <product type="ebuild">rdesktop</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>674558</bug>
+  <access>remote</access>
+  <affected>
+    <package name="net-misc/rdesktop" auto="yes" arch="*">
+      <unaffected range="ge">1.8.4</unaffected>
+      <vulnerable range="lt">1.8.4</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>rdesktop is a Remote Desktop Protocol (RDP) Client.</p>
+  </background>
+  <description>
+    <p>Multiple vulnerabilities have been discovered in rdesktop. Please review
+      the CVE identifiers referenced below for details.
+    </p>
+  </description>
+  <impact type="normal">
+    <p>A remote attacker could cause a Denial of Service condition, obtain
+      sensitive information, or execute arbitrary code.
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All rdesktop users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=net-misc/rdesktop-1.8.4"
+    </code>
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20174">CVE-2018-20174</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20175">CVE-2018-20175</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20176">CVE-2018-20176</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20177">CVE-2018-20177</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20178">CVE-2018-20178</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20179">CVE-2018-20179</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20180">CVE-2018-20180</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20181">CVE-2018-20181</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20182">CVE-2018-20182</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8791">CVE-2018-8791</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8792">CVE-2018-8792</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8793">CVE-2018-8793</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8794">CVE-2018-8794</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8795">CVE-2018-8795</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8796">CVE-2018-8796</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8797">CVE-2018-8797</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8798">CVE-2018-8798</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8799">CVE-2018-8799</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-8800">CVE-2018-8800</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-03-10T19:30:37Z">b-man</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T20:45:00Z">b-man</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-07.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-07.xml
new file mode 100644
index 0000000000..5ef41e69dd
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-07.xml
@@ -0,0 +1,52 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-07">
+  <title>systemd: Multiple vulnerabilities</title>
+  <synopsis>Multiple vulnerabilities have been found in systemd, the worst of
+    which may allow execution of arbitrary code.
+  </synopsis>
+  <product type="ebuild">systemd</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>674144</bug>
+  <bug>677944</bug>
+  <access>remote</access>
+  <affected>
+    <package name="sys-apps/systemd" auto="yes" arch="*">
+      <unaffected range="ge">239-r4</unaffected>
+      <vulnerable range="lt">239-r4</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>A system and service manager.</p>
+  </background>
+  <description>
+    <p>Multiple vulnerabilities have been discovered in systemd. Please review
+      the CVE identifiers referenced below for details.
+    </p>
+  </description>
+  <impact type="normal">
+    <p>An attacker could cause a Denial of Service condition or possibly
+      execute arbitrary code.
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All systemd users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=sys-apps/systemd-239-r4"
+    </code>
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-16864">CVE-2018-16864</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-16865">CVE-2018-16865</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-16866">CVE-2018-16866</uri>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2019-6454">CVE-2019-6454</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-03-10T19:34:40Z">b-man</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T20:47:25Z">b-man</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-08.xml b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-08.xml
new file mode 100644
index 0000000000..3793a2326d
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/glsa-201903-08.xml
@@ -0,0 +1,48 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE glsa SYSTEM "http://www.gentoo.org/dtd/glsa.dtd">
+<glsa id="201903-08">
+  <title>GNU Wget: Password and metadata leak</title>
+  <synopsis>A vulnerability in GNU Wget which could allow an attacker to obtain
+    sensitive information.
+  </synopsis>
+  <product type="ebuild">wget</product>
+  <announced>2019-03-10</announced>
+  <revised count="1">2019-03-10</revised>
+  <bug>674170</bug>
+  <access>local</access>
+  <affected>
+    <package name="net-misc/wget" auto="yes" arch="*">
+      <unaffected range="ge">1.20.1</unaffected>
+      <vulnerable range="lt">1.20.1</vulnerable>
+    </package>
+  </affected>
+  <background>
+    <p>GNU Wget is a free software package for retrieving files using HTTP,
+      HTTPS and FTP, the most widely-used Internet protocols.
+    </p>
+  </background>
+  <description>
+    <p>A vulnerability was discovered in GNU Wget’s file_metadata in xattr.c.</p>
+  </description>
+  <impact type="normal">
+    <p>A local attacker could obtain sensitive information to include
+      credentials.
+    </p>
+  </impact>
+  <workaround>
+    <p>There is no known workaround at this time.</p>
+  </workaround>
+  <resolution>
+    <p>All GNU Wget users should upgrade to the latest version:</p>
+    
+    <code>
+      # emerge --sync
+      # emerge --ask --oneshot --verbose "&gt;=net-misc/wget-1.20.1"
+    </code>
+  </resolution>
+  <references>
+    <uri link="https://nvd.nist.gov/vuln/detail/CVE-2018-20483">CVE-2018-20483</uri>
+  </references>
+  <metadata tag="requester" timestamp="2019-03-10T06:22:02Z">BlueKnight</metadata>
+  <metadata tag="submitter" timestamp="2019-03-10T20:49:49Z">b-man</metadata>
+</glsa>
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk
index 222264473b..457a6ae6b1 100644
--- a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.chk
@@ -1 +1 @@
-Mon, 31 Dec 2018 15:38:36 +0000
+Mon, 11 Mar 2019 01:38:48 +0000
diff --git a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit
index 991ee16872..6dea1110d2 100644
--- a/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit
+++ b/sdk_container/src/third_party/portage-stable/metadata/glsa/timestamp.commit
@@ -1 +1 @@
-baa5a86124960e22df1f11ab63da9f282dd4cdd3 1546204642 2018-12-30T21:17:22+00:00
+579d79ed98752445ffce6122ab66094d1cb0110e 1552251022 2019-03-10T20:50:22+00:00

From a623783aacc91a68e33ea0c8b1df2a161a44fc01 Mon Sep 17 00:00:00 2001
From: David Michael <dm0@redhat.com>
Date: Mon, 11 Mar 2019 02:18:08 +0000
Subject: [PATCH 2/3] bump(app-arch/tar): sync with upstream

---
 .../portage-stable/app-arch/tar/Manifest      |  19 +-
 .../tar-1.27.1-recursion_norecursion.patch    |  25 --
 .../files/tar-1.27.1-xattr_build_fix.patch    | 196 ---------
 .../tar/files/tar-1.28-concat-listed.patch    | 117 ------
 .../app-arch/tar/files/tar-1.28-xattr.patch   |  36 --
 .../tar-1.29-extract-pathname-bypass.patch    |  27 --
 ...tar-1.31-remove-erroneous-abort-call.patch |  33 ++
 .../app-arch/tar/files/tar.1-1.27             | 388 ------------------
 .../app-arch/tar/tar-1.27.1-r2.ebuild         |  79 ----
 .../app-arch/tar/tar-1.28-r1.ebuild           |  76 ----
 ...{tar-1.29-r1.ebuild => tar-1.31-r1.ebuild} |  46 +--
 .../tar/{tar-1.29.ebuild => tar-1.32.ebuild}  |  41 +-
 .../metadata/md5-cache/app-arch/tar-1.27.1-r2 |  13 -
 .../metadata/md5-cache/app-arch/tar-1.28-r1   |  13 -
 .../app-arch/{tar-1.29-r1 => tar-1.31-r1}     |  12 +-
 .../md5-cache/app-arch/{tar-1.29 => tar-1.32} |  12 +-
 16 files changed, 93 insertions(+), 1040 deletions(-)
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-recursion_norecursion.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-xattr_build_fix.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-concat-listed.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-xattr.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.29-extract-pathname-bypass.patch
 create mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.31-remove-erroneous-abort-call.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar.1-1.27
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.27.1-r2.ebuild
 delete mode 100644 sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.28-r1.ebuild
 rename sdk_container/src/third_party/portage-stable/app-arch/tar/{tar-1.29-r1.ebuild => tar-1.31-r1.ebuild} (60%)
 rename sdk_container/src/third_party/portage-stable/app-arch/tar/{tar-1.29.ebuild => tar-1.32.ebuild} (61%)
 delete mode 100644 sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.27.1-r2
 delete mode 100644 sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.28-r1
 rename sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/{tar-1.29-r1 => tar-1.31-r1} (54%)
 rename sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/{tar-1.29 => tar-1.32} (54%)

diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/Manifest b/sdk_container/src/third_party/portage-stable/app-arch/tar/Manifest
index 49696d2142..eeff245a6f 100644
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/Manifest
+++ b/sdk_container/src/third_party/portage-stable/app-arch/tar/Manifest
@@ -1,17 +1,2 @@
-AUX rmt 263 SHA256 c0371cb0243a190b6bb43609c86dfb4cd637882d4ff3ff9651ca7ec8d6b59355 SHA512 2f1a9d3a522fc1f0d5385d1ea4c27da88a1c9357b866340432c6310604c01d3e328e33080ed1e951c0da6f025c3ee2a0c9f170d4b86a1d235ebb56be48fef152 WHIRLPOOL 11869239f2ebbb237f8429d1f13f146fd2414e90edc2475d190f16659d052d3ac949d717939dcfc815a30942855fb26e60b6b506104876ccad32747191b04727
-AUX tar-1.27.1-recursion_norecursion.patch 765 SHA256 2232bcf904f9cc0a1a485549baf229b741d13fa89b69f8d112846c5f4f8ee0b0 SHA512 6b9a8c9a9f1d8a6c96137353a86c77c170d8f3bdc348c99a1147c950b43780aa896f0d8e1c0c1c70a044a0169f445f2ee6ca89ea680729062bf4f73f93a99ef1 WHIRLPOOL dfef48b1df29c53ff0aacbf7958c9101faf591d98f0e843b22185cd979e5e5d694b5c02b69f692c47f840f214d5bbffdf8cacb043fe1c901a30bd2df218a1643
-AUX tar-1.27.1-xattr_build_fix.patch 5762 SHA256 a23332692959044ecc281a93de19de2ac7c37c56971d6aa541adf2fd3bc74251 SHA512 d44322734813ec201567d389deffc94f6a08c2f83c93d495f18451666409465a3ad577ca7f4c540d8ca668dd4d3f77d327fdf32669ec8e932d12e8d819f8c5ab WHIRLPOOL 1245479b74b1f11aabbe29f55b90eb7c179f6c8175f77f43f409e58b71b11026dd3f882665c10e777ae3837c1e5fac2ddd0e8f9d241a9a6d694a2ccb20ae38b5
-AUX tar-1.28-concat-listed.patch 3387 SHA256 a77e7d9d2ae7efd68a3f6b6342ebd8a822c32e689ff5bd61f78a39ee6e40b281 SHA512 990c0de7a3d83b149413857d18ac0a654fd68ebe5c0d972e4ea5ebc5c9b17750355959da549c6314213bd47a2befff1c01df21e2378800ca39dd94d2cdf8df36 WHIRLPOOL 47e031b2ba1e22f9536d8db8071201ce0a9384d8df9415db9e73724827ff70a7883be0e01bb75e7e6adc6f5d8a1b34368ee5a38f4c57fa4f2ec914f8b7300a41
-AUX tar-1.28-xattr.patch 902 SHA256 87c09a948b9424a12e1cb862cc07ea8df1ff66b6819ec70c48fdb18ea0ed78f0 SHA512 0a14ff1d33ee87047b3fa109c4f6f8597c8aacc9574225c1ed7cf302dc22d3f2f4341604f51808f438d462e4bb216b6d77689f1cb554fbe5bddd022369de7b84 WHIRLPOOL fb70a9492c247594bdfb06dbfd623074c240523fb777700a5b243353e4b2dc0cd5511e49fef77278dbb946a3c623415bcbfb4a8afd5f85b6901cbec45b7fe0be
-AUX tar-1.29-extract-pathname-bypass.patch 723 SHA256 c5aef4c88c46978a51e0b4bd344d9de5d5b6e2c619e1b2e1f8bfd5dda1919455 SHA512 ba06ae53b4effcdd0996be07ae03fae7237c579a82d2606fe25100bed447287a68e37282ba2b017eed0c26cb0f4bf77dcdb4fca2f5175e1bbaed91408b0bd54a WHIRLPOOL 6328a758f1ae1e27bf2b6ad37a95fd1c02878aaf015dc6bef818a2be926a914054a3990b6fff5adf17bade0868f1c7654fc196cdb74260457e3652194319213e
-AUX tar.1-1.27 13442 SHA256 fd1410214bad29525c08fc0fe499c8807c4cc648c7d56ba83bf429a2c43fdffd SHA512 4810df7e549713287e74a4de7113f2ba41bd96173829313d123be7ac9d74242d3d39ef17604761fbcc607cdd72ada0bcc26c99de5867cab5c1d0e9410131707b WHIRLPOOL ad8847f9d7f3395d42e9500aed6aa43cef2791e034e54c192a6ecef4953b8ba415dbfe1ddda4b113031c9aeb409e0630bc8b432f17ae28e905afa9b1d2b459a6
-DIST tar-1.27.1.tar.bz2 2573070 SHA256 9b0fb3ce8512059337add0da5f8f0f7d7647f2201f5ece24581d620ea60337c6 SHA512 f14a0a58e574db3aeec0914621aff2f0518b8d8acce81106b8219b36b3fed47349d6cb802c51a836a5e6889529337434d83b3c50cd7fc1801b9b3944eecc695b WHIRLPOOL fd44ee747f44febc9dd4b0e1a532c38a835fcb55967143a1ab29b29dfc27316de76dfa1d23438f1843bb0a7962eb0b59c3ec75041cc0fbe879b02af292ebc6e9
-DIST tar-1.28.tar.bz2 2693989 SHA256 60e4bfe0602fef34cd908d91cf638e17eeb09394d7b98c2487217dc4d3147562 SHA512 4f66a236a2d9185114e2b358a09f3d38c3c38e984e5fca4bedc4d7eb461bdaace6a7a9fc62aafb70428b1f3dc617fb0d0553558fb29cad33f0cb53ba081521c4 WHIRLPOOL 54ad7b73e973d436cff853fda267d21ab22139f53d18f6870c7a53cf74e53ec8735022b6d3c503504ee416f1b9f9d43ca1af60d2fedb5d852766cb8dd2ac72d0
-DIST tar-1.29.tar.bz2 2715993 SHA256 236b11190c0a3a6885bdb8d61424f2b36a5872869aa3f7f695dea4b4843ae2f2 SHA512 d2cea9892892dfa0c8efd390303b75dccc085c4895e07ced684074592d69729916d6ea12475aa6aff873d076a729bb7dc2499c233edcfb9c7e8e8995481eef3b WHIRLPOOL fa5f66a7bb7698c35ad842bc4900a62997da5eb2f3cd6154391b88505a581078a64a8399bb5976d4723d90951d34c084e00d17908d90792bb5139184e8b92a94
-EBUILD tar-1.27.1-r2.ebuild 2341 SHA256 167a13c8427c373952d84082a8f3356edb7134e65b1e4eca8c71ee9e3956bd6d SHA512 cf641fc058c9507cde017ce3a0cfd375a14a780a8c03a74a3e18686c09f4ff909d9beed589b6a88d2739c2cc24cb1c87c92a76ea4573143077be6f01e4ea6912 WHIRLPOOL 79c6f251bdb50ef7a1e7976520d83277addddd17e1f61c0cc15569bfd849b3b3cb5a375955f7c1d5f2f3e25061ba8b38e022747ba5834813507227554e9de319
-EBUILD tar-1.28-r1.ebuild 2244 SHA256 3aba9563f43b186aa362bcaf6c812894dab6b9305ad6e1a3d93d1c276297b71f SHA512 a14ab34881e2fe14a6460d21469e46a19f328bf4c44ef325d385dbaca71cf3a6f90a9d1baf88d9cf0a5f8e6ea03894f7dbef40c66cfe415d4a7f55d6a00ebd13 WHIRLPOOL 2ce02f6eea349a14beb1550c52c5038def20319b398a4ba16e0d34de3a1ace1ac530ff4d0dea0c0c6a8dbb43f2df31269007af2f5649d5b65510e27e262088c6
-EBUILD tar-1.29-r1.ebuild 2237 SHA256 8729e81f6f6c4cf89209d57761a1b5f1aeb009fd5a97b878231f9564da0af574 SHA512 2cb57dba9bd888847348f53f0243f841fd5762d0612bc7aaaafc55168de4b233974c21909b5b9b867088fe73d5e8f8744aa778fb3e0e2232978f99bdb3ea53ea WHIRLPOOL 295e78a1db13a04159acc9b5c9cee28fdd3e08d7387f0997072fcfb93a9e4bf3153b8f47a698e22823092608e108bdc56abc3bd15142b29842ef6a2aaf1cde0f
-EBUILD tar-1.29.ebuild 2149 SHA256 c966c35c309f5f565f541053d46dabf3c96d5c0ec5bc20dfd5ff54475ddc26cd SHA512 6fda3fb899655f5c68ee567369b11216aa93953eb1bded34c64f746a3ada1af261d8c6c9f038ddf7543585d3afc77897a627b8dd7806db1022091b4fe76fa613 WHIRLPOOL 593f1292ff4ce338b1dd593bcfc5217b929bc039b3b1c273236a9bbf0a69201f506502262c30c8158e75639084dd5850f139ff3439ef2874b212b463f81f0f46
-MISC ChangeLog 6826 SHA256 4d216216b686a8bf3c1ac2afde5649a1e4faa81ec4935edd7177c50fdb2169be SHA512 7953d186e78e680e7578995393d52670495e6dc792d6bfd10620a06f01f8f20a5cc46c0ee06a386eb6ab90c53f393d53a27051c78318c73fe09fe4f827e8a065 WHIRLPOOL bf4a5a1b471d3d889b0aab88796676d777a8f6fd34fa1238aa194b9035abfd6e407f39e2333a4958ae232bd4fb46e13069ea1185caa97caf5c6b31b088d1c9ac
-MISC ChangeLog-2015 31970 SHA256 9e334cc3415e0417fbaed891f6bba1d434ffb07d7ea080688447e0cffec5e462 SHA512 8b8b47dec0e0cd310947ce1b355dec2b9d3173ddb1f7915fb41de337debf35640eafa5b8f6d160fe0e45fc832419f4cf470972ce1bd0e1498879d120a490341b WHIRLPOOL eb05a9e69d7e0efd1a9c0352207e1704b252cf6e9a6fbb8c1154dbea8becfb487b437b3caf83852129d50521bd22d93ab9fdf24dbe5ac59aad852ab1f884d6b0
-MISC metadata.xml 387 SHA256 fae089b1cff94a61ec673decb3bdad5f363260f048d8a6dad027bd141b1d739d SHA512 e5bce64bc18a7c6313d0818182941f49ea7e89617c97338fff29297bb2bfc2f4e56a9c124aa97fcb5f2a3a54e0e7cfd209bce09c2ced40a398381b7970c08cf7 WHIRLPOOL 66a5d269f6023bcef32e4520a189735fc84a1c028a2e9db19fb9fb8ba091fa05fb4cf93ae1c76de16f89e5c4055f45ba345989e81ae1af0b0134914faa28aec3
+DIST tar-1.31.tar.bz2 2946047 BLAKE2B c85c17740e4cd3e8c93d10d93b070cd80629b7f052d020c0513cdddd377f3f90e229a6fa10dfbb43e1006f8202c674f2df854b864c0947f49339a52964d65c1c SHA512 0f4d00e08d56a8f8c32aac0afa2845397efb8ad72eaa6af47334cef9612adb1a4b91406bdc2c3a2cf1b9cc8b92c12735a331e0d137b24f66703f6af6219464f6
+DIST tar-1.32.tar.bz2 2947264 BLAKE2B 4e380a9a2f84a2af5130464e1b298ae6acf02ee459cbca20dd0991c2859785e5aac789d57b87b32e8b45d89985b6414af9dd37161385da9568d6030c5aa42c0e SHA512 3139e87112123269ee0600243b3ea081687cc93667bef5832bfe3c785c1be622f520f00fcfbdf44ad1d3247866d0ecfe347a85bbfec38eb38fa1014baef566f6
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-recursion_norecursion.patch b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-recursion_norecursion.patch
deleted file mode 100644
index 47973c394b..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-recursion_norecursion.patch
+++ /dev/null
@@ -1,25 +0,0 @@
-From 2bd9c15391b0bd6ef0bff76aebf09cfb53003199 Mon Sep 17 00:00:00 2001
-From: Sergey Poznyakoff <gray@gnu.org>
-Date: Thu, 09 Jan 2014 22:13:15 +0000
-Subject: Fix the use of --no-recursion and --recursion options.
-
-Each option remains in effect until cancelled by the next ocurrence
-of its counterpart, as stated in the documentation.
-
-* src/names.c (name_next_elt): Restore recursion_option from the
-value of matching_flags.
----
-diff --git a/src/names.c b/src/names.c
-index fc9841e..7777dc1 100644
---- a/src/names.c
-+++ b/src/names.c
-@@ -570,6 +570,7 @@ name_next_elt (int change_dirs)
- 
- 	case NELT_FMASK:
- 	  matching_flags = ep->v.matching_flags;
-+	  recursion_option = matching_flags & FNM_LEADING_DIR;
- 	  name_list_advance ();
- 	  continue;
- 
---
-cgit v0.9.0.2
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-xattr_build_fix.patch b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-xattr_build_fix.patch
deleted file mode 100644
index 14cf90a5f4..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.27.1-xattr_build_fix.patch
+++ /dev/null
@@ -1,196 +0,0 @@
-http://lists.gnu.org/archive/html/bug-tar/2013-12/msg00023.html
-https://bugs.gentoo.org/489170
-
---- tar-1.27.1/configure	2013-11-17 17:18:39.000000000 +0100
-+++ tar-1.27.1/configure	2013-11-17 17:18:39.000000000 +0100
-@@ -33619,19 +33619,20 @@
- fi
- 
- 
--  for ac_header in attr/xattr.h
-+  for ac_header in sys/xattr.h attr/xattr.h
- do :
--  ac_fn_c_check_header_mongrel "$LINENO" "attr/xattr.h" "ac_cv_header_attr_xattr_h" "$ac_includes_default"
--if test "x$ac_cv_header_attr_xattr_h" = xyes; then :
-+  as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh`
-+ac_fn_c_check_header_mongrel "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default"
-+if eval test \"x\$"$as_ac_Header"\" = x"yes"; then :
-   cat >>confdefs.h <<_ACEOF
--#define HAVE_ATTR_XATTR_H 1
-+#define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1
- _ACEOF
- 
- fi
- 
- done
- 
--   if test "$ac_cv_header_attr_xattr_h" = yes; then
-+   if test "$ac_cv_header_sys_xattr_h" = yes -o "$ac_cv_header_attr_xattr_h" = yes; then
-   TAR_COND_XATTR_H_TRUE=
-   TAR_COND_XATTR_H_FALSE='#'
- else
-@@ -33639,30 +33640,130 @@
-   TAR_COND_XATTR_H_FALSE=
- fi
- 
--  if test "$ac_cv_header_attr_xattr_h" = yes; then
--    for ac_func in getxattr  fgetxattr  lgetxattr \
--                   setxattr  fsetxattr  lsetxattr \
--                   listxattr flistxattr llistxattr
--do :
--  as_ac_var=`$as_echo "ac_cv_func_$ac_func" | $as_tr_sh`
--ac_fn_c_check_func "$LINENO" "$ac_func" "$as_ac_var"
--if eval test \"x\$"$as_ac_var"\" = x"yes"; then :
-+
-+  if test "$with_xattrs" != no; then
-+    # If <sys/xattr.h> doesn't exist and <attr/xattr.h> does,
-+    # then link against libattr.so and not libc
-+    if test "$ac_cv_header_sys_xattr_h" = no -a "$ac_cv_header_attr_xattr_h" = yes; then
-+      { $as_echo "$as_me:${as_lineno-$LINENO}: checking for fgetxattr in -lattr" >&5
-+$as_echo_n "checking for fgetxattr in -lattr... " >&6; }
-+if ${ac_cv_lib_attr_fgetxattr+:} false; then :
-+  $as_echo_n "(cached) " >&6
-+else
-+  ac_check_lib_save_LIBS=$LIBS
-+LIBS="-lattr  $LIBS"
-+cat confdefs.h - <<_ACEOF >conftest.$ac_ext
-+/* end confdefs.h.  */
-+
-+/* Override any GCC internal prototype to avoid an error.
-+   Use char because int might match the return type of a GCC
-+   builtin and then its argument prototype would still apply.  */
-+#ifdef __cplusplus
-+extern "C"
-+#endif
-+char fgetxattr ();
-+int
-+main ()
-+{
-+return fgetxattr ();
-+  ;
-+  return 0;
-+}
-+_ACEOF
-+if ac_fn_c_try_link "$LINENO"; then :
-+  ac_cv_lib_attr_fgetxattr=yes
-+else
-+  ac_cv_lib_attr_fgetxattr=no
-+fi
-+rm -f core conftest.err conftest.$ac_objext \
-+    conftest$ac_exeext conftest.$ac_ext
-+LIBS=$ac_check_lib_save_LIBS
-+fi
-+{ $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_attr_fgetxattr" >&5
-+$as_echo "$ac_cv_lib_attr_fgetxattr" >&6; }
-+if test "x$ac_cv_lib_attr_fgetxattr" = xyes; then :
-   cat >>confdefs.h <<_ACEOF
--#define `$as_echo "HAVE_$ac_func" | $as_tr_cpp` 1
-+#define HAVE_LIBATTR 1
- _ACEOF
-- # only when functions are present
- 
--$as_echo "#define HAVE_ATTR_XATTR_H 1" >>confdefs.h
-+  LIBS="-lattr $LIBS"
- 
--        if test "$with_xattrs" != no; then
-+fi
- 
--$as_echo "#define HAVE_XATTRS /**/" >>confdefs.h
-+    fi
-+    have_functions=yes
-+    for xattr_func in getxattr  fgetxattr  lgetxattr \
-+                      setxattr  fsetxattr  lsetxattr \
-+                      listxattr flistxattr llistxattr; do \
-+      as_ac_Search=`$as_echo "ac_cv_search_$xattr_func" | $as_tr_sh`
-+{ $as_echo "$as_me:${as_lineno-$LINENO}: checking for library containing $xattr_func" >&5
-+$as_echo_n "checking for library containing $xattr_func... " >&6; }
-+if eval \${$as_ac_Search+:} false; then :
-+  $as_echo_n "(cached) " >&6
-+else
-+  ac_func_search_save_LIBS=$LIBS
-+cat confdefs.h - <<_ACEOF >conftest.$ac_ext
-+/* end confdefs.h.  */
-+
-+/* Override any GCC internal prototype to avoid an error.
-+   Use char because int might match the return type of a GCC
-+   builtin and then its argument prototype would still apply.  */
-+#ifdef __cplusplus
-+extern "C"
-+#endif
-+char $xattr_func ();
-+int
-+main ()
-+{
-+return $xattr_func ();
-+  ;
-+  return 0;
-+}
-+_ACEOF
-+for ac_lib in '' attr; do
-+  if test -z "$ac_lib"; then
-+    ac_res="none required"
-+  else
-+    ac_res=-l$ac_lib
-+    LIBS="-l$ac_lib  $ac_func_search_save_LIBS"
-+  fi
-+  if ac_fn_c_try_link "$LINENO"; then :
-+  eval "$as_ac_Search=\$ac_res"
-+fi
-+rm -f core conftest.err conftest.$ac_objext \
-+    conftest$ac_exeext
-+  if eval \${$as_ac_Search+:} false; then :
-+  break
-+fi
-+done
-+if eval \${$as_ac_Search+:} false; then :
- 
--        fi
-+else
-+  eval "$as_ac_Search=no"
-+fi
-+rm conftest.$ac_ext
-+LIBS=$ac_func_search_save_LIBS
-+fi
-+eval ac_res=\$$as_ac_Search
-+	       { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5
-+$as_echo "$ac_res" >&6; }
-+eval ac_res=\$$as_ac_Search
-+if test "$ac_res" != no; then :
-+  test "$ac_res" = "none required" || LIBS="$ac_res $LIBS"
- 
-+else
-+  have_functions=no
- fi
--done
- 
-+      test $have_functions = no && break
-+    done
-+    if test $have_functions = yes; then
-+
-+$as_echo "#define HAVE_XATTRS 1" >>confdefs.h
-+
-+    else
-+      test "$with_xattrs" = yes && as_fn_error $? "xattr support requested but not found." "$LINENO" 5
-+    fi
-   fi
- 
- 
---- tar-1.27.1/lib/xattr-at.h	2013-03-14 21:18:10.000000000 +0100
-+++ tar-1.27.1/lib/xattr-at.h	2013-03-14 21:18:10.000000000 +0100
-@@ -20,7 +20,15 @@
- #define XATTRS_AT_H
- 
- #include <sys/types.h>
--#include <attr/xattr.h>
-+#if defined(HAVE_SYS_XATTR_H)
-+# include <sys/xattr.h>
-+#elif defined(HAVE_ATTR_XATTR_H)
-+# include <attr/xattr.h>
-+#endif
-+
-+#ifndef ENOATTR
-+# define ENOATTR ENODATA        /* No such attribute */
-+#endif
- 
- /* These are the dir-fd-relative variants of the functions without the
-    "at" suffix.  For example, setxattrat (AT_FDCWD, path, name, value, size,
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-concat-listed.patch b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-concat-listed.patch
deleted file mode 100644
index 28dc578241..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-concat-listed.patch
+++ /dev/null
@@ -1,117 +0,0 @@
-https://bugs.gentoo.org/546294
-https://lists.gnu.org/archive/html/bug-tar/2015-04/msg00006.html
-
-From 15c02c2b9d383446b3ea35dbea5a048e136b020d Mon Sep 17 00:00:00 2001
-From: Sergey Poznyakoff <gray@gnu.org.ua>
-Date: Thu, 16 Apr 2015 13:02:10 +0300
-Subject: [PATCH] Fix extraction from concatenated incremental archives.
-
-* src/common.h (remove_delayed_set_stat): New proto.
-* src/extract.c (free_delayed_set_stat)
-(remove_delayed_set_stat): New function.
-(apply_nonancestor_delayed_set_stat): Use free_delayed_set_stat.
-* src/misc.c (safer_rmdir): Remove delayed_set_stat entry
-corresponding to the removed directory.
-* tests/incr10.at: New test case.
-* tests/Makefile.am: Add new test.
-* tests/testsuite.at: Likewise.
----
- src/common.h       |  2 ++
- src/extract.c      | 38 +++++++++++++++++++++++++++-----
- src/misc.c         |  7 +++++-
- tests/Makefile.am  |  1 +
- tests/incr10.at    | 64 ++++++++++++++++++++++++++++++++++++++++++++++++++++++
- tests/testsuite.at |  1 +
- 6 files changed, 107 insertions(+), 6 deletions(-)
- create mode 100644 tests/incr10.at
-
-diff --git a/src/common.h b/src/common.h
-index 20cbb64..2904183 100644
---- a/src/common.h
-+++ b/src/common.h
-@@ -523,6 +523,8 @@ void extract_archive (void);
- void extract_finish (void);
- bool rename_directory (char *src, char *dst);
- 
-+void remove_delayed_set_stat (const char *fname);
-+
- /* Module delete.c.  */
- 
- void delete_archive_members (void);
-diff --git a/src/extract.c b/src/extract.c
-index ca25603..5aaeb1b 100644
---- a/src/extract.c
-+++ b/src/extract.c
-@@ -537,6 +537,38 @@ repair_delayed_set_stat (char const *dir,
- 	  quotearg_colon (dir)));
- }
- 
-+static void
-+free_delayed_set_stat (struct delayed_set_stat *data)
-+{
-+  xheader_xattr_free (data->xattr_map, data->xattr_map_size);
-+  free (data->cntx_name);
-+  free (data->acls_a_ptr);
-+  free (data->acls_d_ptr);
-+  free (data);
-+}
-+
-+void
-+remove_delayed_set_stat (const char *fname)
-+{
-+  struct delayed_set_stat *data, *next, *prev = NULL;
-+  for (data = delayed_set_stat_head; data; data = next)
-+    {
-+      next = data->next;
-+      if (chdir_current == data->change_dir
-+	  && strcmp (data->file_name, fname) == 0)
-+	{
-+	  free_delayed_set_stat (data);
-+	  if (prev)
-+	    prev->next = next;
-+	  else
-+	    delayed_set_stat_head = next;
-+	  return;
-+	}
-+      else
-+	prev = data;
-+    }
-+}
-+
- /* After a file/link/directory creation has failed, see if
-    it's because some required directory was not present, and if so,
-    create all required directories.  Return zero if all the required
-@@ -846,11 +878,7 @@ apply_nonancestor_delayed_set_stat (char const *file_name, bool after_links)
- 	}
- 
-       delayed_set_stat_head = data->next;
--      xheader_xattr_free (data->xattr_map, data->xattr_map_size);
--      free (data->cntx_name);
--      free (data->acls_a_ptr);
--      free (data->acls_d_ptr);
--      free (data);
-+      free_delayed_set_stat (data);
-     }
- }
- 
-diff --git a/src/misc.c b/src/misc.c
-index 8e66643..d263c07 100644
---- a/src/misc.c
-+++ b/src/misc.c
-@@ -586,7 +586,12 @@ safer_rmdir (const char *file_name)
-       return -1;
-     }
- 
--  return unlinkat (chdir_fd, file_name, AT_REMOVEDIR);
-+  if (unlinkat (chdir_fd, file_name, AT_REMOVEDIR) == 0)
-+    {
-+      remove_delayed_set_stat (file_name);
-+      return 0;
-+    }
-+  return -1;
- }
- 
- /* Remove FILE_NAME, returning 1 on success.  If FILE_NAME is a directory,
--- 
-2.3.5
-
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-xattr.patch b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-xattr.patch
deleted file mode 100644
index a8f91fd8b2..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.28-xattr.patch
+++ /dev/null
@@ -1,36 +0,0 @@
-https://bugs.gentoo.org/548024
-
-From 9c2b57232e3bc2e5ba85387560bcdd851849a128 Mon Sep 17 00:00:00 2001
-From: Paul Eggert <eggert@cs.ucla.edu>
-Date: Mon, 5 Jan 2015 20:24:18 -0800
-Subject: [PATCH] tar: port xattr-at.c to Solaris 10
-
-* lib/xattr-at.c (setxattrat, lsetxattrat, getxattrat, lgetxattrat)
-(listxattrat, llistxattrat): Compile only if HAVE_XATTRS, so that
-the code doesn't call functions that are not declared.
----
- lib/xattr-at.c | 4 ++++
- 1 file changed, 4 insertions(+)
-
-diff --git a/lib/xattr-at.c b/lib/xattr-at.c
-index 443ccae..66427e9 100644
---- a/lib/xattr-at.c
-+++ b/lib/xattr-at.c
-@@ -31,6 +31,8 @@
- 
- #include "openat-priv.h"
- 
-+#ifdef HAVE_XATTRS
-+
- /* setxattrat */
- #define AT_FUNC_NAME setxattrat
- #define AT_FUNC_F1 setxattr
-@@ -108,3 +110,5 @@
- #undef AT_FUNC_RESULT
- #undef AT_FUNC_POST_FILE_PARAM_DECLS
- #undef AT_FUNC_POST_FILE_ARGS
-+
-+#endif /* HAVE_XATTRS */
--- 
-2.4.0
-
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.29-extract-pathname-bypass.patch b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.29-extract-pathname-bypass.patch
deleted file mode 100644
index 6470fe082b..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.29-extract-pathname-bypass.patch
+++ /dev/null
@@ -1,27 +0,0 @@
---- a/lib/paxnames.c	2016-04-06 00:04:47.314860045 +0300
-+++ b/lib/paxnames.c	2016-04-06 02:08:44.962297881 +0300
-@@ -18,6 +18,7 @@
- #include <system.h>
- #include <hash.h>
- #include <paxlib.h>
-+#include <quotearg.h>
- 
- 
- /* Hash tables of strings.  */
-@@ -114,7 +115,15 @@
-       for (p = file_name + prefix_len; *p; )
- 	{
-           if (p[0] == '.' && p[1] == '.' && (ISSLASH (p[2]) || !p[2]))
--	    prefix_len = p + 2 - file_name;
-+            {
-+	      static char const *const diagnostic[] =
-+	      {
-+		N_("%s: Member name contains '..'"),
-+		N_("%s: Hard link target contains '..'")
-+	      };
-+	      ERROR ((0, 0, _(diagnostic[link_target]),
-+	              quotearg_colon (file_name)));
-+	    }
- 
- 	  do
- 	    {
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.31-remove-erroneous-abort-call.patch b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.31-remove-erroneous-abort-call.patch
new file mode 100644
index 0000000000..9e255df576
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar-1.31-remove-erroneous-abort-call.patch
@@ -0,0 +1,33 @@
+From 85c005ee1345c342f707f3c55317daf6cb050603 Mon Sep 17 00:00:00 2001
+From: Sergey Poznyakoff <gray@gnu.org.ua>
+Date: Thu, 10 Jan 2019 18:18:49 +0200
+Subject: Remove erroneous abort() call
+
+The call was introduced by commit ccef8581. It caused tar to abort
+on perfectly normal operations, like untarring archives containing
+./ with the -U option,
+
+See http://lists.gnu.org/archive/html/bug-tar/2019-01/msg00019.html
+for details.
+
+* src/extract.c (maybe_recoverable): Remove misplaced call to abort().
+---
+ src/extract.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/src/extract.c b/src/extract.c
+index 090b866..8276f8f 100644
+--- a/src/extract.c
++++ b/src/extract.c
+@@ -787,7 +787,7 @@ maybe_recoverable (char *file_name, bool regular, bool *interdir_made)
+ 	case UNLINK_FIRST_OLD_FILES:
+ 	  break;
+ 	}
+-      abort (); /* notreached */
++      FALLTHROUGH;
+ 
+     case ENOENT:
+       /* Attempt creating missing intermediate directories.  */
+-- 
+cgit v1.0-41-gc330
+
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar.1-1.27 b/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar.1-1.27
deleted file mode 100644
index 700b569a57..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/files/tar.1-1.27
+++ /dev/null
@@ -1,388 +0,0 @@
-.\" generated by script on Mon Oct 21 08:29:21 2013
-.Dd Oct 21, 2013
-.Dt TAR 1
-.Sh NAME
-.Nm tar
-.Nd The GNU version of the tar archiving utility
-.Sh SYNOPSIS
-.Nm tar
-.Oo Fl Oc Cm A Fl \-catenate \-concatenate Cm \||\| c Fl \-create Cm \||\| d Fl \-diff \-compare Cm \||\| Fl \-delete Cm \||\| r Fl \-append Cm \||\| t Fl \-list Cm \||\| Fl \-test\-label Cm \||\| u Fl \-update Cm \||\| x Fl \-extract \-get
-.Op Ar options
-.Op Ar pathname ...
-.Sh DESCRIPTION
-.Nm Tar
-stores and extracts files from a tape or disk archive.
-.Pp
-The first argument to
-tar
-should be a function; either one of the letters
-.Cm Acdrtux ,
-or one of the long function names.
-A function letter need not be prefixed with ``\-'', and may be combined
-with other single-letter options.
-A long function name must be prefixed with
-.Cm \\-\\- .
-Some options take a parameter; with the single-letter form
-these must be given as separate arguments.
-With the long form, they may be given by appending
-.Cm = Ns Ar value
-to the option.
-.Sh FUNCTION LETTERS
-Main operation mode:
-.Bl -tag -width flag
-.It Fl A , Fl \-catenate , Fl \-concatenate
-append tar files to an archive
-.It Fl c , Fl \-create
-create a new archive
-.It Fl d , Fl \-diff , Fl \-compare
-find differences between archive and file system
-.It Fl \-delete
-delete from the archive (not on mag tapes!)
-.It Fl r , Fl \-append
-append files to the end of an archive
-.It Fl t , Fl \-list
-list the contents of an archive
-.It Fl \-test\-label
-test the archive volume label and exit
-.It Fl u , Fl \-update
-only append files newer than copy in archive
-.It Fl x , Fl \-extract , Fl \-get
-extract files from an archive
-.El
-.Sh OTHER OPTIONS
-Operation modifiers:
-.Bl -tag -width flag
-.It \-[0\-7][lmh]
-specify drive and density
-.It Fl a , Fl \-auto\-compress
-use archive suffix to determine the compression program
-.It Fl \-acls
-Enable the POSIX ACLs support
-.It Fl \-no\-acls
-Disable the POSIX ACLs support
-.It Fl \-add\-file Ns \= Ns Ar FILE
-add given FILE to the archive (useful if its name starts with a dash)
-.It Fl \-anchored
-patterns match file name start
-.It Fl \-no\-anchored
-patterns match after any '/' (default for exclusion)
-.It Fl \-atime\-preserve
-preserve access times on dumped files, either by restoring the times
-.It Fl \-no\-auto\-compress
-do not use archive suffix to determine the compression program
-.It Fl b , Fl \-blocking\-factor Ar BLOCKS
-BLOCKS x 512 bytes per record
-.It Fl B , Fl \-read\-full\-records
-reblock as we read (for 4.2BSD pipes)
-.It Fl \-backup
-backup before removal, choose version CONTROL
-.It Fl C , Fl \-directory Ar DIR
-change to directory DIR
-.It Fl \-check\-device
-check device numbers when creating incremental archives (default)
-.It Fl \-no\-check\-device
-do not check device numbers when creating incremental archives
-.It Fl \-checkpoint
-display progress messages every NUMBERth record (default 10)
-.It Fl \-checkpoint\-action Ns \= Ns Ar ACTION
-execute ACTION on each checkpoint
-.It Fl \-delay\-directory\-restore
-delay setting modification times and permissions of extracted
-.It Fl \-no\-delay\-directory\-restore
-cancel the effect of --delay-directory-restore option
-.It Fl \-exclude Ns \= Ns Ar PATTERN
-exclude files, given as a PATTERN
-.It Fl \-exclude\-backups
-exclude backup and lock files
-.It Fl \-exclude\-caches
-exclude contents of directories containing CACHEDIR.TAG, 
-.It Fl \-exclude\-caches\-all
-exclude directories containing CACHEDIR.TAG
-.It Fl \-exclude\-caches\-under
-exclude everything under directories containing CACHEDIR.TAG
-.It Fl \-exclude\-tag Ns \= Ns Ar FILE
-exclude contents of directories containing FILE, except
-.It Fl \-exclude\-tag\-all Ns \= Ns Ar FILE
-exclude directories containing FILE
-.It Fl \-exclude\-tag\-under Ns \= Ns Ar FILE
-exclude everything under directories containing FILE
-.It Fl \-exclude\-vcs
-exclude version control system directories
-.It Fl f , Fl \-file Ar ARCHIVE
-use archive file or device ARCHIVE
-.It Fl F , Fl \-info\-script , Fl \-new\-volume\-script Ar NAME
-run script at end of each tape (implies -M)
-.It Fl \-force\-local
-archive file is local even if it has a colon
-.It Fl \-full\-time
-print file time to its full resolution
-.It Fl g , Fl \-listed\-incremental Ar FILE
-handle new GNU-format incremental backup
-.It Fl G , Fl \-incremental
-handle old GNU-format incremental backup
-.It Fl \-group Ns \= Ns Ar NAME
-force NAME as group for added files
-.It Fl h , Fl \-dereference
-follow symlinks; archive and dump the files they point to
-.It Fl H , Fl \-format Ar FORMAT
-create archive of the given formatFORMAT is one of the following:
-.Bl -tag -width flag
-.It Fl \-format=gnu
-GNU tar 1.13.x format
-.It Fl \-format=oldgnu
-GNU format as per tar <= 1.12
-.It Fl \-format=pax
-POSIX 1003.1-2001 (pax) format
-.It Fl \-format=posix
-same as pax
-.It Fl \-format=ustar
-POSIX 1003.1-1988 (ustar) format
-.It Fl \-format=v7
-old V7 tar format
-.El
-.It Fl \-hard\-dereference
-follow hard links; archive and dump the files they refer to
-.It Fl i , Fl \-ignore\-zeros
-ignore zeroed blocks in archive (means EOF)
-.It Fl I , Fl \-use\-compress\-program Ar PROG
-filter through PROG (must accept -d)
-.It Fl \-ignore\-case
-ignore case
-.It Fl \-no\-ignore\-case
-case sensitive matching (default)
-.It Fl \-ignore\-command\-error
-ignore exit codes of children
-.It Fl \-no\-ignore\-command\-error
-treat non-zero exit codes of children as error
-.It Fl \-ignore\-failed\-read
-do not exit with nonzero on unreadable files
-.It Fl \-index\-file Ns \= Ns Ar FILE
-send verbose output to FILE
-.It Fl j , Fl \-bzip2
-
-.It Fl J , Fl \-xz
-
-.It Fl k , Fl \-keep\-old\-files
-don't replace existing files when extracting, 
-.It Fl K , Fl \-starting\-file Ar MEMBER-NAME
-begin at member MEMBER-NAME when reading the archive
-.It Fl \-keep\-directory\-symlink
-preserve existing symlinks to directories when extracting
-.It Fl \-keep\-newer\-files
-don't replace existing files that are newer than their archive copies
-.It Fl l , Fl \-check\-links
-print a message if not all links are dumped
-.It Fl L , Fl \-tape\-length Ar NUMBER
-change tape after writing NUMBER x 1024 bytes
-.It Fl \-level Ns \= Ns Ar NUMBER
-dump level for created listed-incremental archive
-.It Fl \-lzip
-
-.It Fl \-lzma
-
-.It Fl \-lzop
-
-.It Fl m , Fl \-touch
-don't extract file modified time
-.It Fl M , Fl \-multi\-volume
-create/list/extract multi-volume archive
-.It Fl \-mode Ns \= Ns Ar CHANGES
-force (symbolic) mode CHANGES for added files
-.It Fl \-mtime Ns \= Ns Ar DATE-OR-FILE
-set mtime for added files from DATE-OR-FILE
-.It Fl n , Fl \-seek
-archive is seekable
-.It Fl N , Fl \-newer , Fl \-after\-date Ar DATE-OR-FILE
-only store files newer than DATE-OR-FILE
-.It Fl \-newer\-mtime Ns \= Ns Ar DATE
-compare date and time when data changed only
-.It Fl \-null
--T reads null-terminated names, disable -C
-.It Fl \-no\-null
-disable the effect of the previous --null option
-.It Fl \-numeric\-owner
-always use numbers for user/group names
-.It Fl O , Fl \-to\-stdout
-extract files to standard output
-.It Fl \-occurrence
-process only the NUMBERth occurrence of each file in the archive;
-.It Fl \-old\-archive , Fl \-portability
-same as --format=v7
-.It Fl \-one\-file\-system
-stay in local file system when creating archive
-.It Fl \-overwrite
-overwrite existing files when extracting
-.It Fl \-overwrite\-dir
-overwrite metadata of existing directories when extracting (default)
-.It Fl \-no\-overwrite\-dir
-preserve metadata of existing directories
-.It Fl \-owner Ns \= Ns Ar NAME
-force NAME as owner for added files
-.It Fl p , Fl \-preserve\-permissions , Fl \-same\-permissions
-extract information about file permissions (default for superuser)
-.It Fl P , Fl \-absolute\-names
-don't strip leading '/'s from file names
-.It Fl \-pax\-option Ns \= Ns Ar keyword[[:]=value][,keyword[[:]=value]]...
-control pax keywords
-.It Fl \-posix
-same as --format=posix
-.It Fl \-preserve
-same as both -p and -s
-.It Fl \-quote\-chars Ns \= Ns Ar STRING
-additionally quote characters from STRING
-.It Fl \-no\-quote\-chars Ns \= Ns Ar STRING
-disable quoting for characters from STRING
-.It Fl \-quoting\-style Ns \= Ns Ar STYLE
-set name quoting style; see below for valid STYLE values
-.It Fl R , Fl \-block\-number
-show block number within archive with each message
-.It Fl \-record\-size Ns \= Ns Ar NUMBER
-NUMBER of bytes per record, multiple of 512
-.It Fl \-recursion
-recurse into directories (default)
-.It Fl \-no\-recursion
-avoid descending automatically in directories
-.It Fl \-recursive\-unlink
-empty hierarchies prior to extracting directory
-.It Fl \-remove\-files
-remove files after adding them to the archive
-.It Fl \-restrict
-disable use of some potentially harmful options
-.It Fl \-rmt\-command Ns \= Ns Ar COMMAND
-use given rmt COMMAND instead of rmt
-.It Fl \-rsh\-command Ns \= Ns Ar COMMAND
-use remote COMMAND instead of rsh
-.It Fl s , Fl \-preserve\-order , Fl \-same\-order
-member arguments are listed in the same order as the 
-.It Fl S , Fl \-sparse
-handle sparse files efficiently
-.It Fl \-same\-owner
-try extracting files with the same ownership as exists in the archive (default for superuser)
-.It Fl \-no\-same\-owner
-extract files as yourself (default for ordinary users)
-.It Fl \-no\-same\-permissions
-apply the user's umask when extracting permissions from the archive (default for ordinary users)
-.It Fl \-no\-seek
-archive is not seekable
-.It Fl \-selinux
-Enable the SELinux context support
-.It Fl \-no\-selinux
-Disable the SELinux context support
-.It Fl \-show\-defaults
-show tar defaults
-.It Fl \-show\-omitted\-dirs
-when listing or extracting, list each directory that does not match search criteria
-.It Fl \-show\-snapshot\-field\-ranges
-show valid ranges for snapshot-file fields
-.It Fl \-show\-transformed\-names , Fl \-show\-stored\-names
-show file or archive names after transformation
-.It Fl \-skip\-old\-files
-don't replace existing files when extracting, silently skip over them
-.It Fl \-sparse\-version Ns \= Ns Ar MAJOR[.MINOR]
-set version of the sparse format to use (implies --sparse)
-.It Fl \-strip\-components Ns \= Ns Ar NUMBER
-strip NUMBER leading components from file names on extraction
-.It Fl \-suffix Ns \= Ns Ar STRING
-backup before removal, override usual suffix ('~' unless overridden by environment variable SIMPLE_BACKUP_SUFFIX)
-.It Fl T , Fl \-files\-from Ar FILE
-get names to extract or create from FILE
-.It Fl \-to\-command Ns \= Ns Ar COMMAND
-pipe extracted files to another program
-.It Fl \-totals
-print total bytes after processing the archive; 
-.It Fl \-transform , Fl \-xform Ar EXPRESSION
-use sed replace EXPRESSION to transform file names
-.It Fl U , Fl \-unlink\-first
-remove each file prior to extracting over it
-.It Fl \-unquote
-unquote filenames read with -T (default)
-.It Fl \-no\-unquote
-do not unquote filenames read with -T
-.It Fl \-utc
-print file modification times in UTC
-.It Fl v , Fl \-verbose
-verbosely list files processed
-.It Fl V , Fl \-label Ar TEXT
-create archive with volume name TEXT; at list/extract time, use TEXT as a globbing pattern for volume name
-.It Fl \-volno\-file Ns \= Ns Ar FILE
-use/update the volume number in FILE
-.It Fl w , Fl \-interactive , Fl \-confirmation
-ask for confirmation for every action
-.It Fl W , Fl \-verify
-attempt to verify the archive after writing it
-.It Fl \-warning Ns \= Ns Ar KEYWORD
-warning control
-.It Fl \-wildcards
-use wildcards (default for exclusion)
-.It Fl \-wildcards\-match\-slash
-wildcards match '/' (default for exclusion)
-.It Fl \-no\-wildcards\-match\-slash
-wildcards do not match '/'
-.It Fl \-no\-wildcards
-verbatim string matching
-.It Fl X , Fl \-exclude\-from Ar FILE
-exclude patterns listed in FILE
-.It Fl \-xattrs
-Enable extended attributes support
-.It Fl \-xattrs\-exclude Ns \= Ns Ar MASK
-specify the exclude pattern for xattr keys
-.It Fl \-xattrs\-include Ns \= Ns Ar MASK
-specify the include pattern for xattr keys
-.It Fl \-no\-xattrs
-Disable extended attributes support
-.It Fl z , Fl \-gzip , Fl \-gunzip Fl \-ungzip
-
-.It Fl Z , Fl \-compress , Fl \-uncompress
-
-.El
-.Sh ENVIRONMENT
-The behavior of tar is controlled by the following environment variables,
-among others:
-.Bl -tag -width Ds
-.It Ev SIMPLE_BACKUP_SUFFIX
-Backup prefix to use when extracting, if
-.Fl \-suffix
-is not specified.
-The backup suffix defaults to `~' if neither is specified.
-.It Ev TAR_OPTIONS
-Options to prepend to those specified on the command line, separated by
-whitespace.  Embedded backslashes may be used to escape whitespace or
-backslashes within an option.
-.It Ev TAPE
-Device or file to use for the archive if 
-.Fl \-file
-is not specified.
-If this environment variable is unset, use stdin or stdout instead.
-.El
-.Sh EXAMPLES
-Create archive.tar from files foo and bar.
-.Bd -literal -offset indent -compact
-tar \-cf archive.tar foo bar
-.Ed
-List all files in archive.tar verbosely.
-.Bd -literal -offset indent -compact
-tar \-tvf archive.tar
-.Ed
-Extract all files from archive.tar.
-.Bd -literal -offset indent -compact
-tar \-xf archive.tar
-.Ed
-.Sh SEE ALSO
-.\" libarchive
-.Xr tar 5 ,
-.\" man-pages
-.Xr symlink 7 ,
-.Xr rmt 8
-.Sh HISTORY
-The
-.Nm tar
-command appeared in
-.At v7 .
-.Sh BUGS
-The GNU folks, in general, abhor man pages, and create info documents instead.
-Unfortunately, the info document describing tar is licensed under the GFDL with
-invariant cover texts, which makes it impossible to include any text
-from that document in this man page.
-Most of the text in this document was automatically extracted from the usage
-text in the source.
-It may not completely describe all features of the program.
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.27.1-r2.ebuild b/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.27.1-r2.ebuild
deleted file mode 100644
index 8c01c37606..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.27.1-r2.ebuild
+++ /dev/null
@@ -1,79 +0,0 @@
-# Copyright 1999-2014 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=4
-
-inherit flag-o-matic eutils
-
-DESCRIPTION="Use this to make tarballs :)"
-HOMEPAGE="https://www.gnu.org/software/tar/"
-SRC_URI="mirror://gnu/tar/${P}.tar.bz2
-	mirror://gnu-alpha/tar/${P}.tar.bz2"
-
-LICENSE="GPL-3+"
-SLOT="0"
-KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
-IUSE="acl minimal nls selinux static userland_GNU xattr"
-
-RDEPEND="acl? ( virtual/acl )
-	selinux? ( sys-libs/libselinux )"
-DEPEND="${RDEPEND}
-	nls? ( >=sys-devel/gettext-0.10.35 )
-	xattr? ( sys-apps/attr )"
-
-src_prepare() {
-	EPATCH_OPTS="-Z" \
-	epatch "${FILESDIR}/${P}-xattr_build_fix.patch"
-	epatch "${FILESDIR}/${P}-recursion_norecursion.patch"
-	if ! use userland_GNU ; then
-		sed -i \
-			-e 's:/backup\.sh:/gbackup.sh:' \
-			scripts/{backup,dump-remind,restore}.in \
-			|| die "sed non-GNU"
-	fi
-}
-
-src_configure() {
-	use static && append-ldflags -static
-	FORCE_UNSAFE_CONFIGURE=1 \
-	econf \
-		--enable-backup-scripts \
-		--bindir="${EPREFIX}"/bin \
-		--libexecdir="${EPREFIX}"/usr/sbin \
-		$(usex userland_GNU "" "--program-prefix=g") \
-		$(use_with acl posix-acls) \
-		$(use_enable nls) \
-		$(use_with selinux) \
-		$(use_with xattr xattrs)
-}
-
-src_install() {
-	emake DESTDIR="${D}" install
-
-	local p=$(usex userland_GNU "" "g")
-	if [[ -z ${p} ]] ; then
-		# a nasty yet required piece of baggage
-		exeinto /etc
-		doexe "${FILESDIR}"/rmt
-	fi
-
-	# autoconf looks for gtar before tar (in configure scripts), hence
-	# in Prefix it is important that it is there, otherwise, a gtar from
-	# the host system (FreeBSD, Solaris, Darwin) will be found instead
-	# of the Prefix provided (GNU) tar
-	if use prefix ; then
-		dosym tar /bin/gtar
-	fi
-
-	dodoc AUTHORS ChangeLog* NEWS README* THANKS
-	newman "${FILESDIR}"/tar.1-1.27 ${p}tar.1
-	mv "${ED}"/usr/sbin/${p}backup{,-tar} || die
-	mv "${ED}"/usr/sbin/${p}restore{,-tar} || die
-
-	if use minimal ; then
-		find "${ED}"/etc "${ED}"/*bin/ "${ED}"/usr/*bin/ \
-			-type f -a '!' '(' -name tar -o -name ${p}tar ')' \
-			-delete || die
-	fi
-}
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.28-r1.ebuild b/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.28-r1.ebuild
deleted file mode 100644
index ee145ec87b..0000000000
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.28-r1.ebuild
+++ /dev/null
@@ -1,76 +0,0 @@
-# Copyright 1999-2016 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-# $Id$
-
-EAPI=4
-
-inherit flag-o-matic eutils
-
-DESCRIPTION="Use this to make tarballs :)"
-HOMEPAGE="https://www.gnu.org/software/tar/"
-SRC_URI="mirror://gnu/tar/${P}.tar.bz2
-	mirror://gnu-alpha/tar/${P}.tar.bz2"
-
-LICENSE="GPL-3+"
-SLOT="0"
-KEYWORDS="alpha amd64 arm ~arm64 hppa ~ia64 ~m68k ~mips ppc ppc64 ~s390 ~sh ~sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
-IUSE="acl elibc_glibc minimal nls selinux static userland_GNU xattr"
-
-RDEPEND="acl? ( virtual/acl )
-	selinux? ( sys-libs/libselinux )"
-DEPEND="${RDEPEND}
-	nls? ( >=sys-devel/gettext-0.10.35 )
-	xattr? ( elibc_glibc? ( sys-apps/attr ) )"
-
-src_prepare() {
-	if ! use userland_GNU ; then
-		sed -i \
-			-e 's:/backup\.sh:/gbackup.sh:' \
-			scripts/{backup,dump-remind,restore}.in \
-			|| die "sed non-GNU"
-	fi
-	epatch "${FILESDIR}"/${P}-concat-listed.patch #546294
-	epatch "${FILESDIR}"/${P}-xattr.patch #548024
-}
-
-src_configure() {
-	use static && append-ldflags -static
-	FORCE_UNSAFE_CONFIGURE=1 \
-	econf \
-		--enable-backup-scripts \
-		--bindir="${EPREFIX}"/bin \
-		--libexecdir="${EPREFIX}"/usr/sbin \
-		$(usex userland_GNU "" "--program-prefix=g") \
-		$(use_with acl posix-acls) \
-		$(use_enable nls) \
-		$(use_with selinux) \
-		$(use_with xattr xattrs)
-}
-
-src_install() {
-	default
-
-	local p=$(usex userland_GNU "" "g")
-	if [[ -z ${p} ]] ; then
-		# a nasty yet required piece of baggage
-		exeinto /etc
-		doexe "${FILESDIR}"/rmt
-	fi
-
-	# autoconf looks for gtar before tar (in configure scripts), hence
-	# in Prefix it is important that it is there, otherwise, a gtar from
-	# the host system (FreeBSD, Solaris, Darwin) will be found instead
-	# of the Prefix provided (GNU) tar
-	if use prefix ; then
-		dosym tar /bin/gtar
-	fi
-
-	mv "${ED}"/usr/sbin/${p}backup{,-tar} || die
-	mv "${ED}"/usr/sbin/${p}restore{,-tar} || die
-
-	if use minimal ; then
-		find "${ED}"/etc "${ED}"/*bin/ "${ED}"/usr/*bin/ \
-			-type f -a '!' '(' -name tar -o -name ${p}tar ')' \
-			-delete || die
-	fi
-}
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.29-r1.ebuild b/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.31-r1.ebuild
similarity index 60%
rename from sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.29-r1.ebuild
rename to sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.31-r1.ebuild
index 5d85b9368a..72de0a507c 100644
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.29-r1.ebuild
+++ b/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.31-r1.ebuild
@@ -1,10 +1,9 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2019 Gentoo Authors
 # Distributed under the terms of the GNU General Public License v2
-# $Id$
 
-EAPI=5
+EAPI=6
 
-inherit flag-o-matic eutils
+inherit flag-o-matic
 
 DESCRIPTION="Use this to make tarballs :)"
 HOMEPAGE="https://www.gnu.org/software/tar/"
@@ -13,22 +12,22 @@ SRC_URI="mirror://gnu/tar/${P}.tar.bz2
 
 LICENSE="GPL-3+"
 SLOT="0"
-KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
+KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
 IUSE="acl elibc_glibc minimal nls selinux static userland_GNU xattr"
 
-RDEPEND="acl? ( virtual/acl )
+LIB_DEPEND="acl? ( virtual/acl[static-libs(+)] )"
+
+RDEPEND="!static? ( ${LIB_DEPEND//\[static-libs(+)]} )
 	selinux? ( sys-libs/libselinux )"
 DEPEND="${RDEPEND}
 	nls? ( >=sys-devel/gettext-0.10.35 )
+	static? ( ${LIB_DEPEND} )
 	xattr? ( elibc_glibc? ( sys-apps/attr ) )"
 
-PATCHES=(
-	"${FILESDIR}/${P}-extract-pathname-bypass.patch"
-)
+PATCHES=( "${FILESDIR}"/${P}-remove-erroneous-abort-call.patch )
 
 src_prepare() {
-	epatch "${PATCHES[@]}"
-	epatch_user
+	default
 
 	if ! use userland_GNU ; then
 		sed -i \
@@ -40,16 +39,17 @@ src_prepare() {
 
 src_configure() {
 	use static && append-ldflags -static
-	FORCE_UNSAFE_CONFIGURE=1 \
-	econf \
-		--enable-backup-scripts \
-		--bindir="${EPREFIX}"/bin \
-		--libexecdir="${EPREFIX}"/usr/sbin \
-		$(usex userland_GNU "" "--program-prefix=g") \
-		$(use_with acl posix-acls) \
-		$(use_enable nls) \
-		$(use_with selinux) \
+	local myeconfargs=(
+		--bindir="${EPREFIX%/}"/bin
+		--enable-backup-scripts
+		--libexecdir="${EPREFIX%/}"/usr/sbin
+		$(usex userland_GNU "" "--program-prefix=g")
+		$(use_with acl posix-acls)
+		$(use_enable nls)
+		$(use_with selinux)
 		$(use_with xattr xattrs)
+	)
+	FORCE_UNSAFE_CONFIGURE=1 econf "${myeconfargs[@]}"
 }
 
 src_install() {
@@ -70,11 +70,11 @@ src_install() {
 		dosym tar /bin/gtar
 	fi
 
-	mv "${ED}"/usr/sbin/${p}backup{,-tar} || die
-	mv "${ED}"/usr/sbin/${p}restore{,-tar} || die
+	mv "${ED%/}"/usr/sbin/${p}backup{,-tar} || die
+	mv "${ED%/}"/usr/sbin/${p}restore{,-tar} || die
 
 	if use minimal ; then
-		find "${ED}"/etc "${ED}"/*bin/ "${ED}"/usr/*bin/ \
+		find "${ED%/}"/etc "${ED%/}"/*bin/ "${ED%/}"/usr/*bin/ \
 			-type f -a '!' '(' -name tar -o -name ${p}tar ')' \
 			-delete || die
 	fi
diff --git a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.29.ebuild b/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.32.ebuild
similarity index 61%
rename from sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.29.ebuild
rename to sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.32.ebuild
index 02f2c7eeb0..bfcea16fbe 100644
--- a/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.29.ebuild
+++ b/sdk_container/src/third_party/portage-stable/app-arch/tar/tar-1.32.ebuild
@@ -1,10 +1,9 @@
-# Copyright 1999-2016 Gentoo Foundation
+# Copyright 1999-2019 Gentoo Authors
 # Distributed under the terms of the GNU General Public License v2
-# $Id$
 
-EAPI=5
+EAPI=6
 
-inherit flag-o-matic eutils
+inherit flag-o-matic
 
 DESCRIPTION="Use this to make tarballs :)"
 HOMEPAGE="https://www.gnu.org/software/tar/"
@@ -13,16 +12,21 @@ SRC_URI="mirror://gnu/tar/${P}.tar.bz2
 
 LICENSE="GPL-3+"
 SLOT="0"
-KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
+KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
 IUSE="acl elibc_glibc minimal nls selinux static userland_GNU xattr"
 
-RDEPEND="acl? ( virtual/acl )
+LIB_DEPEND="acl? ( virtual/acl[static-libs(+)] )"
+
+RDEPEND="!static? ( ${LIB_DEPEND//\[static-libs(+)]} )
 	selinux? ( sys-libs/libselinux )"
 DEPEND="${RDEPEND}
 	nls? ( >=sys-devel/gettext-0.10.35 )
+	static? ( ${LIB_DEPEND} )
 	xattr? ( elibc_glibc? ( sys-apps/attr ) )"
 
 src_prepare() {
+	default
+
 	if ! use userland_GNU ; then
 		sed -i \
 			-e 's:/backup\.sh:/gbackup.sh:' \
@@ -33,16 +37,17 @@ src_prepare() {
 
 src_configure() {
 	use static && append-ldflags -static
-	FORCE_UNSAFE_CONFIGURE=1 \
-	econf \
-		--enable-backup-scripts \
-		--bindir="${EPREFIX}"/bin \
-		--libexecdir="${EPREFIX}"/usr/sbin \
-		$(usex userland_GNU "" "--program-prefix=g") \
-		$(use_with acl posix-acls) \
-		$(use_enable nls) \
-		$(use_with selinux) \
+	local myeconfargs=(
+		--bindir="${EPREFIX%/}"/bin
+		--enable-backup-scripts
+		--libexecdir="${EPREFIX%/}"/usr/sbin
+		$(usex userland_GNU "" "--program-prefix=g")
+		$(use_with acl posix-acls)
+		$(use_enable nls)
+		$(use_with selinux)
 		$(use_with xattr xattrs)
+	)
+	FORCE_UNSAFE_CONFIGURE=1 econf "${myeconfargs[@]}"
 }
 
 src_install() {
@@ -63,11 +68,11 @@ src_install() {
 		dosym tar /bin/gtar
 	fi
 
-	mv "${ED}"/usr/sbin/${p}backup{,-tar} || die
-	mv "${ED}"/usr/sbin/${p}restore{,-tar} || die
+	mv "${ED%/}"/usr/sbin/${p}backup{,-tar} || die
+	mv "${ED%/}"/usr/sbin/${p}restore{,-tar} || die
 
 	if use minimal ; then
-		find "${ED}"/etc "${ED}"/*bin/ "${ED}"/usr/*bin/ \
+		find "${ED%/}"/etc "${ED%/}"/*bin/ "${ED%/}"/usr/*bin/ \
 			-type f -a '!' '(' -name tar -o -name ${p}tar ')' \
 			-delete || die
 	fi
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.27.1-r2 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.27.1-r2
deleted file mode 100644
index cf6f15d140..0000000000
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.27.1-r2
+++ /dev/null
@@ -1,13 +0,0 @@
-DEFINED_PHASES=configure install prepare
-DEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux ) nls? ( >=sys-devel/gettext-0.10.35 ) xattr? ( sys-apps/attr )
-DESCRIPTION=Use this to make tarballs :)
-EAPI=4
-HOMEPAGE=https://www.gnu.org/software/tar/
-IUSE=acl minimal nls selinux static userland_GNU xattr
-KEYWORDS=alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
-LICENSE=GPL-3+
-RDEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux )
-SLOT=0
-SRC_URI=mirror://gnu/tar/tar-1.27.1.tar.bz2 mirror://gnu-alpha/tar/tar-1.27.1.tar.bz2
-_eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=c7203afb0128d3ef1dd48ac06365ec1f
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.28-r1 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.28-r1
deleted file mode 100644
index ee42736b96..0000000000
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.28-r1
+++ /dev/null
@@ -1,13 +0,0 @@
-DEFINED_PHASES=configure install prepare
-DEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux ) nls? ( >=sys-devel/gettext-0.10.35 ) xattr? ( elibc_glibc? ( sys-apps/attr ) )
-DESCRIPTION=Use this to make tarballs :)
-EAPI=4
-HOMEPAGE=https://www.gnu.org/software/tar/
-IUSE=acl elibc_glibc minimal nls selinux static userland_GNU xattr
-KEYWORDS=alpha amd64 arm ~arm64 hppa ~ia64 ~m68k ~mips ppc ppc64 ~s390 ~sh ~sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
-LICENSE=GPL-3+
-RDEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux )
-SLOT=0
-SRC_URI=mirror://gnu/tar/tar-1.28.tar.bz2 mirror://gnu-alpha/tar/tar-1.28.tar.bz2
-_eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=b46610a7b4556f455ccd62f94b57bc16
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.29-r1 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.31-r1
similarity index 54%
rename from sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.29-r1
rename to sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.31-r1
index 06d0faeb34..696ea8fd16 100644
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.29-r1
+++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.31-r1
@@ -1,13 +1,13 @@
 DEFINED_PHASES=configure install prepare
-DEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux ) nls? ( >=sys-devel/gettext-0.10.35 ) xattr? ( elibc_glibc? ( sys-apps/attr ) )
+DEPEND=!static? ( acl? ( virtual/acl ) ) selinux? ( sys-libs/libselinux ) nls? ( >=sys-devel/gettext-0.10.35 ) static? ( acl? ( virtual/acl[static-libs(+)] ) ) xattr? ( elibc_glibc? ( sys-apps/attr ) )
 DESCRIPTION=Use this to make tarballs :)
-EAPI=5
+EAPI=6
 HOMEPAGE=https://www.gnu.org/software/tar/
 IUSE=acl elibc_glibc minimal nls selinux static userland_GNU xattr
-KEYWORDS=alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
+KEYWORDS=alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
 LICENSE=GPL-3+
-RDEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux )
+RDEPEND=!static? ( acl? ( virtual/acl ) ) selinux? ( sys-libs/libselinux )
 SLOT=0
-SRC_URI=mirror://gnu/tar/tar-1.29.tar.bz2 mirror://gnu-alpha/tar/tar-1.29.tar.bz2
+SRC_URI=mirror://gnu/tar/tar-1.31.tar.bz2 mirror://gnu-alpha/tar/tar-1.31.tar.bz2
 _eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=1797eae97feb42042a947790991641ef
+_md5_=4b2f59804db1aa2f086ca697e8d595ed
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.29 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.32
similarity index 54%
rename from sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.29
rename to sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.32
index 7d1e16d4e8..ae79787799 100644
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.29
+++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/app-arch/tar-1.32
@@ -1,13 +1,13 @@
 DEFINED_PHASES=configure install prepare
-DEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux ) nls? ( >=sys-devel/gettext-0.10.35 ) xattr? ( elibc_glibc? ( sys-apps/attr ) )
+DEPEND=!static? ( acl? ( virtual/acl ) ) selinux? ( sys-libs/libselinux ) nls? ( >=sys-devel/gettext-0.10.35 ) static? ( acl? ( virtual/acl[static-libs(+)] ) ) xattr? ( elibc_glibc? ( sys-apps/attr ) )
 DESCRIPTION=Use this to make tarballs :)
-EAPI=5
+EAPI=6
 HOMEPAGE=https://www.gnu.org/software/tar/
 IUSE=acl elibc_glibc minimal nls selinux static userland_GNU xattr
-KEYWORDS=~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~x64-freebsd ~x86-freebsd ~hppa-hpux ~ia64-hpux ~x86-interix ~amd64-linux ~arm-linux ~ia64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
+KEYWORDS=~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
 LICENSE=GPL-3+
-RDEPEND=acl? ( virtual/acl ) selinux? ( sys-libs/libselinux )
+RDEPEND=!static? ( acl? ( virtual/acl ) ) selinux? ( sys-libs/libselinux )
 SLOT=0
-SRC_URI=mirror://gnu/tar/tar-1.29.tar.bz2 mirror://gnu-alpha/tar/tar-1.29.tar.bz2
+SRC_URI=mirror://gnu/tar/tar-1.32.tar.bz2 mirror://gnu-alpha/tar/tar-1.32.tar.bz2
 _eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=a1ca5e02b19a072f26002dd6c4e313ba
+_md5_=3c52bf7c4c46cc6e8c64126ab34b89de

From 756c04232e4c2f4856d1ed97b771e6ff4150ac7a Mon Sep 17 00:00:00 2001
From: David Michael <dm0@redhat.com>
Date: Mon, 11 Mar 2019 02:21:13 +0000
Subject: [PATCH 3/3] bump(net-misc/wget): sync with upstream

---
 .../md5-cache/net-misc/wget-1.19.1-r2         |  14 --
 .../metadata/md5-cache/net-misc/wget-1.19.4   |  14 --
 .../metadata/md5-cache/net-misc/wget-1.19.5   |  14 --
 .../metadata/md5-cache/net-misc/wget-1.20.1   |  14 ++
 .../portage-stable/net-misc/wget/Manifest     |   4 +-
 .../files/wget-1.19.1-CRLF_injection.patch    |  37 ----
 .../files/wget-1.19.1-CVE-2017-13089.patch    |  34 ----
 .../files/wget-1.19.1-CVE-2017-13090.patch    |  37 ----
 ...et-1.19.1-fix-Perl-warnings-in-tests.patch | 104 -----------
 .../wget-1.19.1-fix-Python-test-suite.patch   | 172 ------------------
 .../net-misc/wget/wget-1.19.1-r2.ebuild       | 115 ------------
 .../net-misc/wget/wget-1.19.5.ebuild          | 117 ------------
 ...{wget-1.19.4.ebuild => wget-1.20.1.ebuild} |  13 +-
 13 files changed, 22 insertions(+), 667 deletions(-)
 delete mode 100644 sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.1-r2
 delete mode 100644 sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.4
 delete mode 100644 sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.5
 create mode 100644 sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.20.1
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CRLF_injection.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13089.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13090.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Perl-warnings-in-tests.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Python-test-suite.patch
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.1-r2.ebuild
 delete mode 100644 sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.5.ebuild
 rename sdk_container/src/third_party/portage-stable/net-misc/wget/{wget-1.19.4.ebuild => wget-1.20.1.ebuild} (85%)

diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.1-r2 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.1-r2
deleted file mode 100644
index ff31cf141b..0000000000
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.1-r2
+++ /dev/null
@@ -1,14 +0,0 @@
-DEFINED_PHASES=configure install prepare setup
-DEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14 ) pcre? ( dev-libs/libpcre ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) ) app-arch/xz-utils virtual/pkgconfig static? ( idn? ( >=net-dns/libidn2-0.14[static-libs(+)] ) pcre? ( dev-libs/libpcre[static-libs(+)] ) ssl? ( gnutls? ( net-libs/gnutls:0=[static-libs(+)] ) !gnutls? ( !libressl? ( dev-libs/openssl:0=[static-libs(+)] ) libressl? ( dev-libs/libressl:0=[static-libs(+)] ) ) ) uuid? ( sys-apps/util-linux[static-libs(+)] ) zlib? ( sys-libs/zlib[static-libs(+)] ) ) test? ( || ( dev-lang/python:3.6 dev-lang/python:3.5 dev-lang/python:3.4 ) dev-lang/perl dev-perl/HTTP-Daemon dev-perl/HTTP-Message dev-perl/IO-Socket-SSL ) nls? ( sys-devel/gettext )
-DESCRIPTION=Network utility to retrieve files from the WWW
-EAPI=6
-HOMEPAGE=https://www.gnu.org/software/wget/
-IUSE=debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib
-KEYWORDS=alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
-LICENSE=GPL-3
-RDEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14 ) pcre? ( dev-libs/libpcre ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) )
-REQUIRED_USE=ntlm? ( !gnutls ssl ) gnutls? ( ssl )
-SLOT=0
-SRC_URI=mirror://gnu/wget/wget-1.19.1.tar.xz
-_eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	python-any-r1	4900ae970f827a22d33d41bd8b8f9ace	python-utils-r1	12114a2a9aab35b93efc037a196b3234	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=117a834a7adf7b983f0435a71afb1ae8
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.4 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.4
deleted file mode 100644
index 0371e646c9..0000000000
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.4
+++ /dev/null
@@ -1,14 +0,0 @@
-DEFINED_PHASES=configure install prepare setup
-DEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14 ) pcre? ( dev-libs/libpcre ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) ) app-arch/xz-utils virtual/pkgconfig static? ( idn? ( >=net-dns/libidn2-0.14[static-libs(+)] ) pcre? ( dev-libs/libpcre[static-libs(+)] ) ssl? ( gnutls? ( net-libs/gnutls:0=[static-libs(+)] ) !gnutls? ( !libressl? ( dev-libs/openssl:0=[static-libs(+)] ) libressl? ( dev-libs/libressl:0=[static-libs(+)] ) ) ) uuid? ( sys-apps/util-linux[static-libs(+)] ) zlib? ( sys-libs/zlib[static-libs(+)] ) ) test? ( || ( dev-lang/python:3.6 dev-lang/python:3.5 dev-lang/python:3.4 ) dev-lang/perl dev-perl/HTTP-Daemon dev-perl/HTTP-Message dev-perl/IO-Socket-SSL ) nls? ( sys-devel/gettext )
-DESCRIPTION=Network utility to retrieve files from the WWW
-EAPI=6
-HOMEPAGE=https://www.gnu.org/software/wget/
-IUSE=debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib
-KEYWORDS=~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
-LICENSE=GPL-3
-RDEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14 ) pcre? ( dev-libs/libpcre ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) )
-REQUIRED_USE=ntlm? ( !gnutls ssl ) gnutls? ( ssl )
-SLOT=0
-SRC_URI=mirror://gnu/wget/wget-1.19.4.tar.gz
-_eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	python-any-r1	4900ae970f827a22d33d41bd8b8f9ace	python-utils-r1	12114a2a9aab35b93efc037a196b3234	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=30afeb88eb89610406c5fc7ea68c0dbc
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.5 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.5
deleted file mode 100644
index 1590441499..0000000000
--- a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.19.5
+++ /dev/null
@@ -1,14 +0,0 @@
-DEFINED_PHASES=configure install prepare setup
-DEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14 ) pcre? ( dev-libs/libpcre ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) ) app-arch/xz-utils virtual/pkgconfig static? ( idn? ( >=net-dns/libidn2-0.14[static-libs(+)] ) pcre? ( dev-libs/libpcre[static-libs(+)] ) ssl? ( gnutls? ( net-libs/gnutls:0=[static-libs(+)] ) !gnutls? ( !libressl? ( dev-libs/openssl:0=[static-libs(+)] ) libressl? ( dev-libs/libressl:0=[static-libs(+)] ) ) ) uuid? ( sys-apps/util-linux[static-libs(+)] ) zlib? ( sys-libs/zlib[static-libs(+)] ) ) test? ( || ( dev-lang/python:3.6 dev-lang/python:3.5 dev-lang/python:3.4 ) dev-lang/perl dev-perl/HTTP-Daemon dev-perl/HTTP-Message dev-perl/IO-Socket-SSL ) nls? ( sys-devel/gettext )
-DESCRIPTION=Network utility to retrieve files from the WWW
-EAPI=6
-HOMEPAGE=https://www.gnu.org/software/wget/
-IUSE=debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib
-KEYWORDS=~alpha amd64 ~arm arm64 hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh sparc x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
-LICENSE=GPL-3
-RDEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14 ) pcre? ( dev-libs/libpcre ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) )
-REQUIRED_USE=ntlm? ( !gnutls ssl ) gnutls? ( ssl )
-SLOT=0
-SRC_URI=mirror://gnu/wget/wget-1.19.5.tar.gz
-_eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	python-any-r1	4900ae970f827a22d33d41bd8b8f9ace	python-utils-r1	12114a2a9aab35b93efc037a196b3234	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
-_md5_=710233b1fca7f205aa762fd58a70d411
diff --git a/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.20.1 b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.20.1
new file mode 100644
index 0000000000..3993b9fe5a
--- /dev/null
+++ b/sdk_container/src/third_party/portage-stable/metadata/md5-cache/net-misc/wget-1.20.1
@@ -0,0 +1,14 @@
+DEFINED_PHASES=configure install prepare setup
+DEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14:= ) pcre? ( dev-libs/libpcre2 ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) ) app-arch/xz-utils virtual/pkgconfig static? ( idn? ( >=net-dns/libidn2-0.14:=[static-libs(+)] ) pcre? ( dev-libs/libpcre2[static-libs(+)] ) ssl? ( gnutls? ( net-libs/gnutls:0=[static-libs(+)] ) !gnutls? ( !libressl? ( dev-libs/openssl:0=[static-libs(+)] ) libressl? ( dev-libs/libressl:0=[static-libs(+)] ) ) ) uuid? ( sys-apps/util-linux[static-libs(+)] ) zlib? ( sys-libs/zlib[static-libs(+)] ) ) test? ( || ( dev-lang/python:3.7 dev-lang/python:3.6 dev-lang/python:3.5 dev-lang/python:3.4 ) dev-lang/perl dev-perl/HTTP-Daemon dev-perl/HTTP-Message dev-perl/IO-Socket-SSL ) nls? ( sys-devel/gettext )
+DESCRIPTION=Network utility to retrieve files from the WWW
+EAPI=6
+HOMEPAGE=https://www.gnu.org/software/wget/
+IUSE=debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib
+KEYWORDS=alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris
+LICENSE=GPL-3
+RDEPEND=!static? ( idn? ( >=net-dns/libidn2-0.14:= ) pcre? ( dev-libs/libpcre2 ) ssl? ( gnutls? ( net-libs/gnutls:0= ) !gnutls? ( !libressl? ( dev-libs/openssl:0= ) libressl? ( dev-libs/libressl:0= ) ) ) uuid? ( sys-apps/util-linux ) zlib? ( sys-libs/zlib ) )
+REQUIRED_USE=ntlm? ( !gnutls ssl ) gnutls? ( ssl )
+SLOT=0
+SRC_URI=mirror://gnu/wget/wget-1.20.1.tar.gz
+_eclasses_=desktop	b1d22ac8bdd4679ab79c71aca235009d	epatch	a1bf4756dba418a7238f3be0cb010c54	estack	43ddf5aaffa7a8d0482df54d25a66a1f	eutils	6e6c2737b59a4b982de6fb3ecefd87f8	flag-o-matic	55aaa148741116aa54ad0d80e361818e	ltprune	08f9e1d9ee0af8f5d9a7854efbcd8c0e	multilib	b2f01ad412baf81650c23fcf0975fa33	preserve-libs	ef207dc62baddfddfd39a164d9797648	python-any-r1	4900ae970f827a22d33d41bd8b8f9ace	python-utils-r1	12114a2a9aab35b93efc037a196b3234	toolchain-funcs	f164325a2cdb5b3ea39311d483988861	vcs-clean	2a0f74a496fa2b1552c4f3398258b7bf
+_md5_=4f2e18c9e1d303a0d0bd0c4f1100837a
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/Manifest b/sdk_container/src/third_party/portage-stable/net-misc/wget/Manifest
index 8a22faba26..8660cb751b 100644
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/Manifest
+++ b/sdk_container/src/third_party/portage-stable/net-misc/wget/Manifest
@@ -1,3 +1 @@
-DIST wget-1.19.1.tar.xz 2111756 BLAKE2B e5dcaa791f78bb2d7de19a6f689430cd692e1232b7392102936e5f3b4e3592861bcfc78e27df0c4b02a9002ce4c755e765a0a51749670464789fc9f07f8787f7 SHA512 00864d225439bcb7c5af01d7ef19efa615427812d3320ab3f4c8f62c38191e837b1392397843f935d7dc5860a4d0ce89ee31f2730c4a729402f1f2bf3e5f64e5
-DIST wget-1.19.4.tar.gz 4310657 BLAKE2B 3f2e5a32e897101761d449f079bf9df38e60b68284230553b03280a6262e60b3d0b5af3bd9fdd334d09cac5ed3417c3a7e8736b1710f3a7402a123b4633b95e4 SHA512 e84b0c40235b160ade69e18f2f139c782eb2387edc97a847c11dbb906c0273daf6d0ef5afe20360ba965c7da8b5e109f5a45e39ea93d20ec945575203235943a
-DIST wget-1.19.5.tar.gz 4455797 BLAKE2B 988b80090ff1f62cb527afb33c03b7c6a68bbc1649d42f62061e05e416bebf5b2e9546ebafad3c9cdbf1199a8d2b84f4427c921f23338b02631da357da9b3d61 SHA512 0d4964e0f5adb0c023edc831bde9c9f13f3222f6efc1ce93250d234ab937e92b53921624532fb0e6586151ddfdee6df9a7ca91a2a99b3d16e2e68401c625301b
+DIST wget-1.20.1.tar.gz 4392853 BLAKE2B 5740fa70064e24a699ba5fc0b6262b372fc877e86fc74bede07bcfe7dcdf6d4a15db7686fc900d8ec90ad3adce8c4af1c00460601c1845da7907f929d8d48447 SHA512 855c7e3c45f9020a9fdb30e286ee6a0bdcaa780be3d0dda9ffdae73b562ae1012d4550242f66240407a28076a7054328d4f08a469a0da227a9e3410b8d5f46dc
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CRLF_injection.patch b/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CRLF_injection.patch
deleted file mode 100644
index aa4e978cfd..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CRLF_injection.patch
+++ /dev/null
@@ -1,37 +0,0 @@
-From 4d729e322fae359a1aefaafec1144764a54e8ad4 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Tim=20R=C3=BChsen?= <tim.ruehsen@gmx.de>
-Date: Mon, 6 Mar 2017 10:04:22 +0100
-Subject: Fix CRLF injection in Wget host part
-
-* src/url.c (url_parse): Reject control characters in host part of URL
-
-Reported-by: Orange Tsai
----
- src/url.c | 11 +++++++++++
- 1 file changed, 11 insertions(+)
-
-diff --git a/src/url.c b/src/url.c
-index 8f8ff0b..7d36b27 100644
---- a/src/url.c
-+++ b/src/url.c
-@@ -925,6 +925,17 @@ url_parse (const char *url, int *error, struct iri *iri, bool percent_encode)
-       url_unescape (u->host);
-       host_modified = true;
- 
-+      /* check for invalid control characters in host name */
-+      for (p = u->host; *p; p++)
-+        {
-+          if (c_iscntrl(*p))
-+            {
-+              url_free(u);
-+              error_code = PE_INVALID_HOST_NAME;
-+              goto error;
-+            }
-+        }
-+
-       /* Apply IDNA regardless of iri->utf8_encode status */
-       if (opt.enable_iri && iri)
-         {
--- 
-cgit v1.0-41-gc330
-
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13089.patch b/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13089.patch
deleted file mode 100644
index f961741aa2..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13089.patch
+++ /dev/null
@@ -1,34 +0,0 @@
-From 3dbc2e06ad487862c2fcc64d4891ff8aeb254bad Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Tim=20R=C3=BChsen?= <tim.ruehsen@gmx.de>
-Date: Fri, 20 Oct 2017 10:59:38 +0200
-Subject: [PATCH 1/2] Fix stack overflow in HTTP protocol handling
- (CVE-2017-13089)
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
-
-* src/http.c (skip_short_body): Return error on negative chunk size
-
-Reported-by: Antti Levomäki, Christian Jalio, Joonas Pihlaja from Forcepoint
-Reported-by: Juhani Eronen from Finnish National Cyber Security Centre
----
- src/http.c | 3 +++
- 1 file changed, 3 insertions(+)
-
-diff --git a/src/http.c b/src/http.c
-index 55367688..dc318231 100644
---- a/src/http.c
-+++ b/src/http.c
-@@ -973,6 +973,9 @@ skip_short_body (int fd, wgint contlen, bool chunked)
-               remaining_chunk_size = strtol (line, &endl, 16);
-               xfree (line);
- 
-+              if (remaining_chunk_size < 0)
-+                return false;
-+
-               if (remaining_chunk_size == 0)
-                 {
-                   line = fd_read_line (fd);
--- 
-2.15.0.rc1
-
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13090.patch b/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13090.patch
deleted file mode 100644
index 4e600fe784..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-CVE-2017-13090.patch
+++ /dev/null
@@ -1,37 +0,0 @@
-From 28925c37b72867c0819799c6f35caf9439080f83 Mon Sep 17 00:00:00 2001
-From: =?UTF-8?q?Tim=20R=C3=BChsen?= <tim.ruehsen@gmx.de>
-Date: Fri, 20 Oct 2017 15:15:47 +0200
-Subject: [PATCH 2/2] Fix heap overflow in HTTP protocol handling
- (CVE-2017-13090)
-MIME-Version: 1.0
-Content-Type: text/plain; charset=UTF-8
-Content-Transfer-Encoding: 8bit
-
-* src/retr.c (fd_read_body): Stop processing on negative chunk size
-
-Reported-by: Antti Levomäki, Christian Jalio, Joonas Pihlaja from Forcepoint
-Reported-by: Juhani Eronen from Finnish National Cyber Security Centre
----
- src/retr.c | 6 ++++++
- 1 file changed, 6 insertions(+)
-
-diff --git a/src/retr.c b/src/retr.c
-index a27d58af..723ac725 100644
---- a/src/retr.c
-+++ b/src/retr.c
-@@ -378,6 +378,12 @@ fd_read_body (const char *downloaded_filename, int fd, FILE *out, wgint toread,
-               remaining_chunk_size = strtol (line, &endl, 16);
-               xfree (line);
- 
-+              if (remaining_chunk_size < 0)
-+                {
-+                  ret = -1;
-+                  break;
-+                }
-+
-               if (remaining_chunk_size == 0)
-                 {
-                   ret = 0;
--- 
-2.15.0.rc1
-
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Perl-warnings-in-tests.patch b/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Perl-warnings-in-tests.patch
deleted file mode 100644
index 334bcef865..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Perl-warnings-in-tests.patch
+++ /dev/null
@@ -1,104 +0,0 @@
-From 7ffe93cabb181f39ad5091c31ab9f61bd940a55f Mon Sep 17 00:00:00 2001
-From: Anton Yuzhaninov <citrin+github@citrin.ru>
-Date: Wed, 5 Apr 2017 19:06:42 +0300
-Subject: [PATCH] Fix perl warnings in tests
-
-* tests/FTPServer.pm: Escape '{' in RE to fix warnings
-* tests/FTPTest.pm: Likewise
-* tests/HTTPServer.pm: Likewise
-* tests/HTTPTest.pm: Likewise
-* tests/Test-proxied-https-auth-keepalive.px: Likewise
-* tests/Test-proxied-https-auth.px: Likewise
-Escape '{' in RE to fix warnings:
-Unescaped left brace in regex is deprecated, passed through in regex;
-marked by <-- HERE in m/{{ <-- HERE port}}/
----
- tests/FTPServer.pm                         | 2 +-
- tests/FTPTest.pm                           | 2 +-
- tests/HTTPServer.pm                        | 2 +-
- tests/HTTPTest.pm                          | 2 +-
- tests/Test-proxied-https-auth-keepalive.px | 2 +-
- tests/Test-proxied-https-auth.px           | 2 +-
- 6 files changed, 6 insertions(+), 6 deletions(-)
-
-diff --git a/tests/FTPServer.pm b/tests/FTPServer.pm
-index a5185d66..cac80942 100644
---- a/tests/FTPServer.pm
-+++ b/tests/FTPServer.pm
-@@ -589,7 +589,7 @@ sub new
-     foreach my $file (keys %{$self->{_input}})
-     {
-         my $ref = \$self->{_input}{$file}{content};
--        $$ref =~ s/{{port}}/$self->sockport/eg;
-+        $$ref =~ s/\Q{{port}}/$self->sockport/eg;
-     }
- 
-     return $self;
-diff --git a/tests/FTPTest.pm b/tests/FTPTest.pm
-index 50385ad0..0a1c768c 100644
---- a/tests/FTPTest.pm
-+++ b/tests/FTPTest.pm
-@@ -53,7 +53,7 @@ sub _substitute_port
- {
-     my $self = shift;
-     my $ret  = shift;
--    $ret =~ s/{{port}}/$self->{_server}->sockport/eg;
-+    $ret =~ s/\Q{{port}}/$self->{_server}->sockport/eg;
-     return $ret;
- }
- 
-diff --git a/tests/HTTPServer.pm b/tests/HTTPServer.pm
-index dd8ec043..78609f65 100644
---- a/tests/HTTPServer.pm
-+++ b/tests/HTTPServer.pm
-@@ -310,7 +310,7 @@ sub _substitute_port
- {
-     my $self = shift;
-     my $ret  = shift;
--    $ret =~ s/{{port}}/$self->sockport/eg;
-+    $ret =~ s/\Q{{port}}/$self->sockport/eg;
-     return $ret;
- }
- 
-diff --git a/tests/HTTPTest.pm b/tests/HTTPTest.pm
-index 00f079f8..6225c7f1 100644
---- a/tests/HTTPTest.pm
-+++ b/tests/HTTPTest.pm
-@@ -47,7 +47,7 @@ sub _substitute_port
- {
-     my $self = shift;
-     my $ret  = shift;
--    $ret =~ s/{{port}}/$self->{_server}->sockport/eg;
-+    $ret =~ s/\Q{{port}}/$self->{_server}->sockport/eg;
-     return $ret;
- }
- 
-diff --git a/tests/Test-proxied-https-auth-keepalive.px b/tests/Test-proxied-https-auth-keepalive.px
-index 049bebec..2a18ccfd 100755
---- a/tests/Test-proxied-https-auth-keepalive.px
-+++ b/tests/Test-proxied-https-auth-keepalive.px
-@@ -153,7 +153,7 @@ my $cmdline = $WgetTest::WGETPATH . " --user=fiddle-dee-dee"
-     . " --password=Dodgson -e https_proxy=localhost:{{port}}"
-     . " --no-check-certificate"
-     . " https://no.such.domain/needs-auth.txt";
--$cmdline =~ s/{{port}}/$SOCKET->sockport()/e;
-+$cmdline =~ s/\Q{{port}}/$SOCKET->sockport()/e;
- 
- if (defined $srcdir) {
-     $VALGRIND_SUPP_FILE = $srcdir . '/valgrind-suppressions-ssl';
-diff --git a/tests/Test-proxied-https-auth.px b/tests/Test-proxied-https-auth.px
-index ce4e736c..878114e7 100755
---- a/tests/Test-proxied-https-auth.px
-+++ b/tests/Test-proxied-https-auth.px
-@@ -152,7 +152,7 @@ my $cmdline = $WgetTest::WGETPATH . " --user=fiddle-dee-dee"
-     . " --password=Dodgson -e https_proxy=localhost:{{port}}"
-     . " --no-check-certificate"
-     . " https://no.such.domain/needs-auth.txt";
--$cmdline =~ s/{{port}}/$SOCKET->sockport()/e;
-+$cmdline =~ s/\Q{{port}}/$SOCKET->sockport()/e;
- 
- if (defined $srcdir) {
-     $VALGRIND_SUPP_FILE = $srcdir . '/valgrind-suppressions-ssl';
--- 
-2.14.3
-
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Python-test-suite.patch b/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Python-test-suite.patch
deleted file mode 100644
index 11736675dc..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/files/wget-1.19.1-fix-Python-test-suite.patch
+++ /dev/null
@@ -1,172 +0,0 @@
-Fix python test suite for GnuTLS 3.5.12+
-
-Backport of f42229b1fdf30ee30c6e13b01eb0c4ebd9ea9169
-
---- a/testenv/Test--rejected-log.py
-+++ b/testenv/Test--rejected-log.py
-@@ -14,7 +14,7 @@ mainpage = """
- </head>
- <body>
-   <p>
--    Recurse to a <a href="http://127.0.0.1:{{port}}/secondpage.html">second page</a>.
-+    Recurse to a <a href="http://localhost:{{port}}/secondpage.html">second page</a>.
-   </p>
- </body>
- </html>
-@@ -27,8 +27,8 @@ secondpage = """
- </head>
- <body>
-   <p>
--    Recurse to a <a href="http://127.0.0.1:{{port}}/thirdpage.html">third page</a>.
--    Try the blacklisted <a href="http://127.0.0.1:{{port}}/index.html">main page</a>.
-+    Recurse to a <a href="http://localhost:{{port}}/thirdpage.html">third page</a>.
-+    Try the blacklisted <a href="http://localhost:{{port}}/index.html">main page</a>.
-   </p>
- </body>
- </html>
-@@ -41,7 +41,7 @@ thirdpage = """
- </head>
- <body>
-   <p>
--    Try a hidden <a href="http://127.0.0.1:{{port}}/dummy.txt">dummy file</a>.
-+    Try a hidden <a href="http://localhost:{{port}}/dummy.txt">dummy file</a>.
-     Try to leave to <a href="http://no.such.domain/">another domain</a>.
-   </p>
- </body>
-@@ -55,9 +55,9 @@ Disallow: /dummy.txt
- 
- log = """\
- REASON\tU_URL\tU_SCHEME\tU_HOST\tU_PORT\tU_PATH\tU_PARAMS\tU_QUERY\tU_FRAGMENT\tP_URL\tP_SCHEME\tP_HOST\tP_PORT\tP_PATH\tP_PARAMS\tP_QUERY\tP_FRAGMENT
--BLACKLIST\thttp%3A//127.0.0.1%3A{{port}}/index.html\tSCHEME_HTTP\t127.0.0.1\t{{port}}\tindex.html\t\t\t\thttp%3A//127.0.0.1%3A{{port}}/secondpage.html\tSCHEME_HTTP\t127.0.0.1\t{{port}}\tsecondpage.html\t\t\t
--ROBOTS\thttp%3A//127.0.0.1%3A{{port}}/dummy.txt\tSCHEME_HTTP\t127.0.0.1\t{{port}}\tdummy.txt\t\t\t\thttp%3A//127.0.0.1%3A{{port}}/thirdpage.html\tSCHEME_HTTP\t127.0.0.1\t{{port}}\tthirdpage.html\t\t\t
--SPANNEDHOST\thttp%3A//no.such.domain/\tSCHEME_HTTP\tno.such.domain\t80\t\t\t\t\thttp%3A//127.0.0.1%3A{{port}}/thirdpage.html\tSCHEME_HTTP\t127.0.0.1\t{{port}}\tthirdpage.html\t\t\t
-+BLACKLIST\thttp%3A//localhost%3A{{port}}/index.html\tSCHEME_HTTP\tlocalhost\t{{port}}\tindex.html\t\t\t\thttp%3A//localhost%3A{{port}}/secondpage.html\tSCHEME_HTTP\tlocalhost\t{{port}}\tsecondpage.html\t\t\t
-+ROBOTS\thttp%3A//localhost%3A{{port}}/dummy.txt\tSCHEME_HTTP\tlocalhost\t{{port}}\tdummy.txt\t\t\t\thttp%3A//localhost%3A{{port}}/thirdpage.html\tSCHEME_HTTP\tlocalhost\t{{port}}\tthirdpage.html\t\t\t
-+SPANNEDHOST\thttp%3A//no.such.domain/\tSCHEME_HTTP\tno.such.domain\t80\t\t\t\t\thttp%3A//localhost%3A{{port}}/thirdpage.html\tSCHEME_HTTP\tlocalhost\t{{port}}\tthirdpage.html\t\t\t
- """
- 
- dummyfile = "Don't care."
---- a/testenv/Test--spider-r.py
-+++ b/testenv/Test--spider-r.py
-@@ -14,8 +14,8 @@ mainpage = """
- </head>
- <body>
-   <p>
--    Some text and a link to a <a href="http://127.0.0.1:{{port}}/secondpage.html">second page</a>.
--    Also, a <a href="http://127.0.0.1:{{port}}/nonexistent">broken link</a>.
-+    Some text and a link to a <a href="http://localhost:{{port}}/secondpage.html">second page</a>.
-+    Also, a <a href="http://localhost:{{port}}/nonexistent">broken link</a>.
-   </p>
- </body>
- </html>
-@@ -29,8 +29,8 @@ secondpage = """
- </head>
- <body>
-   <p>
--    Some text and a link to a <a href="http://127.0.0.1:{{port}}/thirdpage.html">third page</a>.
--    Also, a <a href="http://127.0.0.1:{{port}}/nonexistent">broken link</a>.
-+    Some text and a link to a <a href="http://localhost:{{port}}/thirdpage.html">third page</a>.
-+    Also, a <a href="http://localhost:{{port}}/nonexistent">broken link</a>.
-   </p>
- </body>
- </html>
-@@ -43,8 +43,8 @@ thirdpage = """
- </head>
- <body>
-   <p>
--    Some text and a link to a <a href="http://127.0.0.1:{{port}}/dummy.txt">text file</a>.
--    Also, another <a href="http://127.0.0.1:{{port}}/againnonexistent">broken link</a>.
-+    Some text and a link to a <a href="http://localhost:{{port}}/dummy.txt">text file</a>.
-+    Also, another <a href="http://localhost:{{port}}/againnonexistent">broken link</a>.
-   </p>
- </body>
- </html>
---- a/testenv/certs/server-cert.pem
-+++ b/testenv/certs/server-cert.pem
-@@ -1,21 +1,21 @@
- -----BEGIN CERTIFICATE-----
--MIIDgDCCAmigAwIBAgIIVGI73zrIeeMwDQYJKoZIhvcNAQELBQAwMDERMA8GA1UE
--AxMIR05VIFdnZXQxDTALBgNVBAsTBFdnZXQxDDAKBgNVBAoTA0dOVTAiGA8yMDE0
--MTExMTE2NDAwMFoYDzk5OTkxMjMxMjM1OTU5WjAxMRIwEAYDVQQDEwkxMjcuMC4w
--LjExDTALBgNVBAsTBFdnZXQxDDAKBgNVBAoTA0dOVTCCASIwDQYJKoZIhvcNAQEB
--BQADggEPADCCAQoCggEBAMjC3Gt55EfStl6mE371+pD3/cpR5MLxkdbBss5MlIP2
--TDhiPOItLXml8oxs4BjUm3wfn3GV9iJLmbzbIWL+0kbRkQ2LCPKUf+Cln3z2ZE+r
--XwdWlT8gVfv51Opfkp2lLDVUqLfNKRGQgivjSCmLqY2LqeB0SaVNvuaD3EpqZyIH
--0E5SZgjqBHgRRtvGkcy0rOmp5SI2NASLugUioXa9OLWjpYDwodsd3ERlL0DJ1aJW
--8TC8Tqix4i0osWzar+LXBIin0Qvar9/uRHN0p1kq3p0XgNHKqWpiTT54+WYx7Pem
--v4qRXz11swiJzUL+Pw1DurQ9smbzDgAsz7V2FJnUeCcCAwEAAaOBmDCBlTAMBgNV
--HRMBAf8EAjAAMB8GA1UdEQQYMBaCCTEyNy4wLjAuMYIJbG9jYWxob3N0MBMGA1Ud
--JQQMMAoGCCsGAQUFBwMBMA8GA1UdDwEB/wQFAwMHoAAwHQYDVR0OBBYEFJfm323L
--JbKTM/tMKSt0qlUqewbnMB8GA1UdIwQYMBaAFPM+TjiESqm+wW/HYaNQ2m4pi+tU
--MA0GCSqGSIb3DQEBCwUAA4IBAQCDmuSD4IGmn0UQ5jhGQquh92Iu59j64Rrg7EIM
--zoppciyYR8gDUutOI9CEisxJz6umvAdOo5L981gcFaBv6hHWaE/krAZccR+ZXZP6
--fI9btO8My8O63fYcd2KkLEFqvKDF43i01S2LrqXdPo3uELbFZwxCmUKsexFGsoW1
--CbXbRjnS7w/f72myRmvBeDiNMuGfe1lb4IflybH3DMlKC7i0AN1JKglp+IKn5XAE
--neWR03i3UaYJsibIxj0DkTS+hVPu5MXQ9RlF5CkRdFKjGinLE/u70XyAyx0/IeAN
--e7c2MJvpdfRmTXm2ew4sNyK9RXo7Bv0Yqkl65iMscF8LNnxL
-+MIIDdzCCAl+gAwIBAgIMWWD1GB1UFkEICdQvMA0GCSqGSIb3DQEBCwUAMDAxETAP
-+BgNVBAMTCEdOVSBXZ2V0MQ0wCwYDVQQLEwRXZ2V0MQwwCgYDVQQKEwNHTlUwIBcN
-+MTcwNzA4MTUwNzA0WhgPOTk5OTEyMzEyMzU5NTlaMDExEjAQBgNVBAMTCTEyNy4w
-+LjAuMTENMAsGA1UECxMEV2dldDEMMAoGA1UEChMDR05VMIIBIjANBgkqhkiG9w0B
-+AQEFAAOCAQ8AMIIBCgKCAQEAyMLca3nkR9K2XqYTfvX6kPf9ylHkwvGR1sGyzkyU
-+g/ZMOGI84i0teaXyjGzgGNSbfB+fcZX2IkuZvNshYv7SRtGRDYsI8pR/4KWffPZk
-+T6tfB1aVPyBV+/nU6l+SnaUsNVSot80pEZCCK+NIKYupjYup4HRJpU2+5oPcSmpn
-+IgfQTlJmCOoEeBFG28aRzLSs6anlIjY0BIu6BSKhdr04taOlgPCh2x3cRGUvQMnV
-+olbxMLxOqLHiLSixbNqv4tcEiKfRC9qv3+5Ec3SnWSrenReA0cqpamJNPnj5ZjHs
-+96a/ipFfPXWzCInNQv4/DUO6tD2yZvMOACzPtXYUmdR4JwIDAQABo4GNMIGKMAwG
-+A1UdEwEB/wQCMAAwFAYDVR0RBA0wC4IJbG9jYWxob3N0MBMGA1UdJQQMMAoGCCsG
-+AQUFBwMBMA8GA1UdDwEB/wQFAwMHoAAwHQYDVR0OBBYEFJfm323LJbKTM/tMKSt0
-+qlUqewbnMB8GA1UdIwQYMBaAFPM+TjiESqm+wW/HYaNQ2m4pi+tUMA0GCSqGSIb3
-+DQEBCwUAA4IBAQC1a0NQfmqT8Ky/BFo5H+G+GoQTlqi3J83ujAMdLUD57zYCEyDL
-+XzAhMPfrOSLPDcQb0ooD1Ie+Rz8Xs1h00cD2OGKwH479+nisF5ksqJVJ4fn/aNFE
-+6W2Xb3MCB+4FRdmy0UeDDA6N2OpVskCM30s9tmovlBLVK46HogdLvy/O1o7z/gbx
-+vV8luevxobnevZ3NdWLyVE3BJZiThBHmZUvL1XNy4KAR4wDAkbCwoTN/JkehTu0i
-+WR6DaG7N7M6psc7rctfzRqimlAkxnoAUwc8LwNLTB3v613xXX8iSUsLKsh6pQfZR
-+e5wnYQIS4MzowvDx8WevTPMRKlN72d8HHuv9
- -----END CERTIFICATE-----
---- a/testenv/certs/server-crl.pem
-+++ b/testenv/certs/server-crl.pem
-@@ -1,12 +1,12 @@
- -----BEGIN X509 CRL-----
--MIIB1DCBvQIBATANBgkqhkiG9w0BAQsFADAwMREwDwYDVQQDEwhHTlUgV2dldDEN
--MAsGA1UECxMEV2dldDEMMAoGA1UEChMDR05VGA8yMDE0MTExMTE2NDU1NFoYDzk5
--OTkxMjMxMjM1OTU5WjAdMBsCCFRiO986yHnjGA8yMDE0MTExMTE2NDU1NFqgNjA0
--MB8GA1UdIwQYMBaAFPM+TjiESqm+wW/HYaNQ2m4pi+tUMBEGA1UdFAQKAghUYj1E
--KHs9ijANBgkqhkiG9w0BAQsFAAOCAQEAZgwqs1VOFG39dFHHMXvBr4eJfhwiG4bC
--cL6IvLhvl9ikcyQMHrpOBtNjkCtgclSbJjjTDdera1+zuCWE0WBOJ4mojYdAIOhR
--QvSwp4NwAtibu2F/fjeXoo+LEpcRKtLvAotB30eCZ1OPrijsa/HxFILOLlayjns8
--wM4RmQC4o43y1G/1jqM8hGDg4Wz0j1URVuyP+pU55JpubV5LlExy3gIRwevD2lam
--q3hiighenJYFO3HGZkYT2SIoSpXZnQqKPJ4HwRBSg/cjOpc1y1lIIvKhmk+Cut6M
--+S5HL4pIk8vGYg57nTfOOkj1goqFkfU0DBqvVAZj02ay/VIDu61T1g==
-+MIIB1jCBvwIBATANBgkqhkiG9w0BAQsFADAwMREwDwYDVQQDEwhHTlUgV2dldDEN
-+MAsGA1UECxMEV2dldDEMMAoGA1UEChMDR05VFw0xNzA3MDgxNTA3MDRaFw0xODA3
-+MDgxNTA3MDRaMB8wHQIMWWD1GB1UFkEICdQvFw0xNzA3MDgxNTA3MDRaoDowODAf
-+BgNVHSMEGDAWgBTzPk44hEqpvsFvx2GjUNpuKYvrVDAVBgNVHRQEDgIMWWD1GB4C
-+YfERSnyEMA0GCSqGSIb3DQEBCwUAA4IBAQAAKu+Lum1l/XtcCJ43WveouPK97iOE
-+bjUZWaGYx8Ys/iBdhTa1GXG+E+JuyqgyHTW0HrWJi1D+GiYmsjPJXoEgVgtxXEQ7
-+8b3NyIQ8OCsSTTlVCmLECN9R0xlsitzH+HXOaIEs5sbmIxCnxu+brqno9gQocmCv
-+LHYvoSxsSsOCkkmodbYtKssl2dBonvQPSijN/z3NhZ259e2U3Yv4V7/MrEoTvOxg
-+M0GC0u0Nx86EWbq0sWeiUu270Qk9En5YGNtRhkeq0bXerJswmMAmvrtuKdyfouny
-+4WMvtn30xsO3WwWSV2oyrDSN/IQdDbcmul/bg8ewqlnN77cVf2m70c/W
- -----END X509 CRL-----
---- a/testenv/certs/server-template.cfg
-+++ b/testenv/certs/server-template.cfg
-@@ -68,7 +68,6 @@ expiration_days = -1
- # X.509 v3 extensions
- 
- # A dnsname in case of a WWW server.
--dns_name = "127.0.0.1"
- dns_name = "localhost"
- 
- # A subject alternative name URI
---- a/testenv/test/base_test.py
-+++ b/testenv/test/base_test.py
-@@ -90,7 +90,7 @@ class BaseTest:
-             # ports and etc.
-             # so we should record different domains respect to servers.
-             domain = self.get_domain_addr(instance.server_address)
--            self.domains.append(domain[0])
-+            self.domains.append('localhost')
-             self.ports.append(domain[1])
- 
-     def exec_wget(self):
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.1-r2.ebuild b/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.1-r2.ebuild
deleted file mode 100644
index ee66293872..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.1-r2.ebuild
+++ /dev/null
@@ -1,115 +0,0 @@
-# Copyright 1999-2018 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI="6"
-
-PYTHON_COMPAT=( python3_{4,5,6} )
-
-inherit flag-o-matic python-any-r1 toolchain-funcs
-
-DESCRIPTION="Network utility to retrieve files from the WWW"
-HOMEPAGE="https://www.gnu.org/software/wget/"
-SRC_URI="mirror://gnu/wget/${P}.tar.xz"
-
-LICENSE="GPL-3"
-SLOT="0"
-KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~amd64-fbsd ~x86-fbsd ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
-IUSE="debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib"
-REQUIRED_USE=" ntlm? ( !gnutls ssl ) gnutls? ( ssl )"
-
-# Force a newer libidn2 to avoid libunistring deps. #612498
-LIB_DEPEND="idn? ( >=net-dns/libidn2-0.14[static-libs(+)] )
-	pcre? ( dev-libs/libpcre[static-libs(+)] )
-	ssl? (
-		gnutls? ( net-libs/gnutls:0=[static-libs(+)] )
-		!gnutls? (
-			!libressl? ( dev-libs/openssl:0=[static-libs(+)] )
-			libressl? ( dev-libs/libressl:0=[static-libs(+)] )
-		)
-	)
-	uuid? ( sys-apps/util-linux[static-libs(+)] )
-	zlib? ( sys-libs/zlib[static-libs(+)] )"
-RDEPEND="!static? ( ${LIB_DEPEND//\[static-libs(+)]} )"
-DEPEND="${RDEPEND}
-	app-arch/xz-utils
-	virtual/pkgconfig
-	static? ( ${LIB_DEPEND} )
-	test? (
-		${PYTHON_DEPS}
-		dev-lang/perl
-		dev-perl/HTTP-Daemon
-		dev-perl/HTTP-Message
-		dev-perl/IO-Socket-SSL
-	)
-	nls? ( sys-devel/gettext )"
-
-DOCS=( AUTHORS MAILING-LIST NEWS README doc/sample.wgetrc )
-
-PATCHES=(
-	"${FILESDIR}"/${P}-CRLF_injection.patch
-	"${FILESDIR}"/${PN}-1.19.1-fix-Perl-warnings-in-tests.patch
-	"${FILESDIR}"/${PN}-1.19.1-fix-Python-test-suite.patch
-	"${FILESDIR}"/${PN}-1.19.1-CVE-2017-13089.patch
-	"${FILESDIR}"/${PN}-1.19.1-CVE-2017-13090.patch
-)
-
-pkg_setup() {
-	use test && python-any-r1_pkg_setup
-}
-
-src_prepare() {
-	default
-
-	# revert some hack that breaks linking, bug #585924
-	if [[ ${CHOST} == *-darwin* ]] || [[ ${CHOST} == *-solaris* ]] || [[ ${CHOST} == *-uclibc* ]]; then
-		sed -i \
-			-e 's/^  LIBICONV=$/:/' \
-			configure || die
-	fi
-}
-
-src_configure() {
-	# fix compilation on Solaris, we need filio.h for FIONBIO as used in
-	# the included gnutls -- force ioctl.h to include this header
-	[[ ${CHOST} == *-solaris* ]] && append-cppflags -DBSD_COMP=1
-
-	if use static ; then
-		append-ldflags -static
-		tc-export PKG_CONFIG
-		PKG_CONFIG+=" --static"
-	fi
-
-	# There is no flag that controls this.  libunistring-prefix only
-	# controls the search path (which is why we turn it off below).
-	# Further, libunistring is only needed w/older libidn2 installs,
-	# and since we force the latest, we can force off libunistring. #612498
-	ac_cv_libunistring=no \
-	econf \
-		--disable-assert \
-		--disable-rpath \
-		--without-included-libunistring \
-		--without-libunistring-prefix \
-		$(use_enable debug) \
-		$(use_enable idn iri) \
-		$(use_enable ipv6) \
-		$(use_enable nls) \
-		$(use_enable ntlm) \
-		$(use_enable pcre) \
-		$(use_enable ssl digest) \
-		$(use_enable ssl opie) \
-		$(use_with idn libidn) \
-		$(use_with ssl ssl $(usex gnutls gnutls openssl)) \
-		$(use_with uuid libuuid) \
-		$(use_with zlib)
-}
-
-src_install() {
-	default
-
-	sed -i \
-		-e "s:/usr/local/etc:${EPREFIX}/etc:g" \
-		"${ED}"/etc/wgetrc \
-		"${ED}"/usr/share/man/man1/wget.1 \
-		"${ED}"/usr/share/info/wget.info \
-		|| die
-}
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.5.ebuild b/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.5.ebuild
deleted file mode 100644
index b4d33f3b37..0000000000
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.5.ebuild
+++ /dev/null
@@ -1,117 +0,0 @@
-# Copyright 1999-2018 Gentoo Foundation
-# Distributed under the terms of the GNU General Public License v2
-
-EAPI=6
-
-PYTHON_COMPAT=( python3_{4,5,6} )
-
-inherit flag-o-matic python-any-r1 toolchain-funcs
-
-DESCRIPTION="Network utility to retrieve files from the WWW"
-HOMEPAGE="https://www.gnu.org/software/wget/"
-SRC_URI="mirror://gnu/wget/${P}.tar.gz"
-
-LICENSE="GPL-3"
-SLOT="0"
-KEYWORDS="~alpha amd64 ~arm arm64 hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh sparc x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
-IUSE="debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib"
-REQUIRED_USE=" ntlm? ( !gnutls ssl ) gnutls? ( ssl )"
-
-# Force a newer libidn2 to avoid libunistring deps. #612498
-LIB_DEPEND="
-	idn? ( >=net-dns/libidn2-0.14[static-libs(+)] )
-	pcre? ( dev-libs/libpcre[static-libs(+)] )
-	ssl? (
-		gnutls? ( net-libs/gnutls:0=[static-libs(+)] )
-		!gnutls? (
-			!libressl? ( dev-libs/openssl:0=[static-libs(+)] )
-			libressl? ( dev-libs/libressl:0=[static-libs(+)] )
-		)
-	)
-	uuid? ( sys-apps/util-linux[static-libs(+)] )
-	zlib? ( sys-libs/zlib[static-libs(+)] )
-"
-RDEPEND="!static? ( ${LIB_DEPEND//\[static-libs(+)]} )"
-DEPEND="
-	${RDEPEND}
-	app-arch/xz-utils
-	virtual/pkgconfig
-	static? ( ${LIB_DEPEND} )
-	test? (
-		${PYTHON_DEPS}
-		dev-lang/perl
-		dev-perl/HTTP-Daemon
-		dev-perl/HTTP-Message
-		dev-perl/IO-Socket-SSL
-	)
-	nls? ( sys-devel/gettext )
-"
-
-DOCS=( AUTHORS MAILING-LIST NEWS README doc/sample.wgetrc )
-
-pkg_setup() {
-	use test && python-any-r1_pkg_setup
-}
-
-src_prepare() {
-	default
-
-	# revert some hack that breaks linking, bug #585924
-	if [[ ${CHOST} == *-darwin* ]] \
-	|| [[ ${CHOST} == *-solaris* ]] \
-	|| [[ ${CHOST} == *-uclibc* ]] \
-	|| [[ ${CHOST} == *-cygwin* ]] \
-	; then
-		sed -i \
-			-e 's/^  LIBICONV=$/:/' \
-			configure || die
-	fi
-}
-
-src_configure() {
-	# fix compilation on Solaris, we need filio.h for FIONBIO as used in
-	# the included gnutls -- force ioctl.h to include this header
-	[[ ${CHOST} == *-solaris* ]] && append-cppflags -DBSD_COMP=1
-
-	if use static ; then
-		append-ldflags -static
-		tc-export PKG_CONFIG
-		PKG_CONFIG+=" --static"
-	fi
-
-	# There is no flag that controls this.  libunistring-prefix only
-	# controls the search path (which is why we turn it off below).
-	# Further, libunistring is only needed w/older libidn2 installs,
-	# and since we force the latest, we can force off libunistring. #612498
-	local myeconfargs=(
-		--disable-assert
-		--disable-rpath
-		--without-included-libunistring
-		--without-libunistring-prefix
-		$(use_enable debug)
-		$(use_enable idn iri)
-		$(use_enable ipv6)
-		$(use_enable nls)
-		$(use_enable ntlm)
-		$(use_enable pcre)
-		$(use_enable ssl digest)
-		$(use_enable ssl opie)
-		$(use_with idn libidn)
-		$(use_with ssl ssl $(usex gnutls gnutls openssl))
-		$(use_with uuid libuuid)
-		$(use_with zlib)
-	)
-	ac_cv_libunistring=no \
-	econf "${myeconfargs[@]}"
-}
-
-src_install() {
-	default
-
-	sed -i \
-		-e "s:/usr/local/etc:${EPREFIX}/etc:g" \
-		"${ED%/}"/etc/wgetrc \
-		"${ED%/}"/usr/share/man/man1/wget.1 \
-		"${ED%/}"/usr/share/info/wget.info \
-		|| die
-}
diff --git a/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.4.ebuild b/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.20.1.ebuild
similarity index 85%
rename from sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.4.ebuild
rename to sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.20.1.ebuild
index a4cc423b95..ae23b38c43 100644
--- a/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.19.4.ebuild
+++ b/sdk_container/src/third_party/portage-stable/net-misc/wget/wget-1.20.1.ebuild
@@ -1,9 +1,9 @@
-# Copyright 1999-2018 Gentoo Foundation
+# Copyright 1999-2019 Gentoo Authors
 # Distributed under the terms of the GNU General Public License v2
 
 EAPI=6
 
-PYTHON_COMPAT=( python3_{4,5,6} )
+PYTHON_COMPAT=( python3_{4,5,6,7} )
 
 inherit flag-o-matic python-any-r1 toolchain-funcs
 
@@ -13,14 +13,14 @@ SRC_URI="mirror://gnu/wget/${P}.tar.gz"
 
 LICENSE="GPL-3"
 SLOT="0"
-KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~m68k ~mips ~ppc ~ppc64 ~s390 ~sh ~sparc ~x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~arm-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
+KEYWORDS="alpha amd64 arm arm64 hppa ia64 m68k ~mips ppc ppc64 s390 sh sparc x86 ~ppc-aix ~x64-cygwin ~amd64-fbsd ~x86-fbsd ~amd64-linux ~x86-linux ~ppc-macos ~x64-macos ~x86-macos ~m68k-mint ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
 IUSE="debug gnutls idn ipv6 libressl nls ntlm pcre +ssl static test uuid zlib"
 REQUIRED_USE=" ntlm? ( !gnutls ssl ) gnutls? ( ssl )"
 
 # Force a newer libidn2 to avoid libunistring deps. #612498
 LIB_DEPEND="
-	idn? ( >=net-dns/libidn2-0.14[static-libs(+)] )
-	pcre? ( dev-libs/libpcre[static-libs(+)] )
+	idn? ( >=net-dns/libidn2-0.14:=[static-libs(+)] )
+	pcre? ( dev-libs/libpcre2[static-libs(+)] )
 	ssl? (
 		gnutls? ( net-libs/gnutls:0=[static-libs(+)] )
 		!gnutls? (
@@ -85,6 +85,7 @@ src_configure() {
 	# and since we force the latest, we can force off libunistring. #612498
 	local myeconfargs=(
 		--disable-assert
+		--disable-pcre
 		--disable-rpath
 		--without-included-libunistring
 		--without-libunistring-prefix
@@ -93,7 +94,7 @@ src_configure() {
 		$(use_enable ipv6)
 		$(use_enable nls)
 		$(use_enable ntlm)
-		$(use_enable pcre)
+		$(use_enable pcre pcre2)
 		$(use_enable ssl digest)
 		$(use_enable ssl opie)
 		$(use_with idn libidn)