From 33f601e4fed3a3bae940a5de5ecb4e4c8a1e1460 Mon Sep 17 00:00:00 2001
From: Sergey Matveev <stargrave@stargrave.org>
Date: Fri, 14 Nov 2025 10:19:01 +0300
Subject: [PATCH] NetBSD sandboxing
MIME-Version: 1.0
Content-Type: text/plain; charset=utf8
Content-Transfer-Encoding: 8bit

https://blog.netbsd.org/tnf/entry/gsoc2025_bubblewrap_sandboxing
ÐÑÐµÐ¶Ð´Ðµ ÐµÐ³Ð¾ Ð½Ðµ Ð±ÑÐ»Ð¾, ÐºÑÐ¾Ð¼Ðµ chroot.

Ð Ñ Ð²Ð¾Ñ Ð¿Ð¾Ð»ÑÑÐ°Ñ Ð¿ÑÑÐ¼ ÑÐ´Ð¾Ð²Ð¾Ð»ÑÑÑÐ²Ð¸Ðµ (24acdbc75c8ffae0b70fc127118df12434767dd1)
Ð¾Ñ Ð½Ð°Ð¿Ð¸ÑÐ°Ð½Ð¸Ñ Ð¡Ð¸ ÑÐ¾ÑÑÐ° Ð³Ð´Ðµ Ð²Ð¾Ð²ÑÑ Ð´ÐµÐ»Ð°ÐµÑÑÑ privsep Ð¸ privdrop, Ð³Ð´Ðµ Ð¾Ð±ÑÐµÐ½Ð¸Ðµ Ð¼ÐµÐ¶Ð´Ñ
Ð¿ÑÐ¾ÑÐµÑÑÐ°Ð¼Ð¸ ÑÐ¾Ð»ÑÐºÐ¾ Ð¿Ð¾ Unix SEQPACKET ÑÐ¾ÐºÐµÑÐ°Ð¼ Ð¸ Ð²ÑÑ Ð¾Ð±Ð¼Ð°Ð·Ð°Ð½Ð¾ Capsicum-Ð¾Ð¼.
-- 
2.52.0