moz.yaml (20255B)
1 schema: 1 2 3 bugzilla: 4 product: "Core" 5 component: "Security: Process Sandboxing" 6 7 origin: 8 name: Chromium sandbox 9 description: Chromium sandbox and supporting base code. 10 11 url: https://chromium.googlesource.com/chromium/src/ 12 13 release: 6d3cc0dac5057925e096b1329680124b19f35842 (Fri Jan 12 17:18:37 2024). 14 revision: 6d3cc0dac5057925e096b1329680124b19f35842 15 16 license: BSD-3-Clause 17 18 vendoring: 19 url: https://chromium.googlesource.com/chromium/src/ 20 source-hosting: googlesource 21 flavor: individual-files 22 tracking: commit 23 24 skip-vendoring-steps: 25 - update-moz-build 26 27 individual-files-default-upstream: "" 28 individual-files-default-destination: "{vendor_dir}/" 29 individual-files-list: 30 - base/allocator/partition_allocator/src/partition_alloc/allocation_guard.h 31 - base/allocator/partition_allocator/src/partition_alloc/flags.h 32 - base/allocator/partition_allocator/src/partition_alloc/oom.h 33 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/augmentations/compiler_specific.h 34 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/compiler_specific.h 35 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/component_export.h 36 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/cxx20_is_constant_evaluated.h 37 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/thread_annotations.h 38 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/win/win_handle_types.h 39 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/win/win_handle_types_list.inc 40 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_base/win/windows_types.h 41 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_config.h 42 - base/allocator/partition_allocator/src/partition_alloc/partition_alloc_forward.h 43 - base/allocator/partition_allocator/src/partition_alloc/pointers/raw_ptr.h 44 - base/allocator/partition_allocator/src/partition_alloc/pointers/raw_ptr_exclusion.h 45 - base/allocator/partition_allocator/src/partition_alloc/pointers/raw_ptr_noop_impl.h 46 - base/allocator/partition_allocator/src/partition_alloc/pointers/raw_ref.h 47 - base/at_exit.cc 48 - base/at_exit.h 49 - base/atomic_ref_count.h 50 - base/atomicops.h 51 - base/atomicops_internals_portable.h 52 - base/auto_reset.h 53 - base/base_export.h 54 - base/bit_cast.h 55 - base/bits.h 56 - base/check.cc 57 - base/check.h 58 - base/check_op.cc 59 - base/check_op.h 60 - base/compiler_specific.h 61 - base/containers/adapters.h 62 - base/containers/checked_iterators.h 63 - base/containers/circular_deque.h 64 - base/containers/contains.h 65 - base/containers/contiguous_iterator.h 66 - base/containers/cxx20_erase.h 67 - base/containers/cxx20_erase_deque.h 68 - base/containers/cxx20_erase_forward_list.h 69 - base/containers/cxx20_erase_internal.h 70 - base/containers/cxx20_erase_list.h 71 - base/containers/cxx20_erase_map.h 72 - base/containers/cxx20_erase_set.h 73 - base/containers/cxx20_erase_string.h 74 - base/containers/cxx20_erase_unordered_map.h 75 - base/containers/cxx20_erase_unordered_set.h 76 - base/containers/cxx20_erase_vector.h 77 - base/containers/flat_map.h 78 - base/containers/flat_tree.h 79 - base/containers/linked_list.h 80 - base/containers/queue.h 81 - base/containers/span.h 82 - base/containers/stack.h 83 - base/containers/util.h 84 - base/containers/vector_buffer.h 85 - base/cpu.cc 86 - base/cpu.h 87 - base/cxx20_is_constant_evaluated.h 88 - base/cxx20_to_address.h 89 - base/dcheck_is_on.h 90 - base/debug/alias.cc 91 - base/debug/alias.h 92 - base/debug/crash_logging.cc 93 - base/debug/crash_logging.h 94 - base/debug/dump_without_crashing.h 95 - base/debug/leak_annotations.h 96 - base/debug/profiler.h 97 - base/environment.cc 98 - base/environment.h 99 - base/features.h 100 - base/files/file_path.h 101 - base/format_macros.h 102 - base/functional/bind.h 103 - base/functional/bind_internal.h 104 - base/functional/callback.h 105 - base/functional/callback_forward.h 106 - base/functional/callback_helpers.h 107 - base/functional/callback_internal.cc 108 - base/functional/callback_internal.h 109 - base/functional/callback_tags.h 110 - base/functional/disallow_unretained.h 111 - base/functional/function_ref.h 112 - base/functional/identity.h 113 - base/functional/invoke.h 114 - base/functional/not_fn.h 115 - base/functional/unretained_traits.h 116 - base/hash/hash.cc 117 - base/hash/hash.h 118 - base/immediate_crash.h 119 - base/lazy_instance.h 120 - base/lazy_instance_helpers.cc 121 - base/lazy_instance_helpers.h 122 - base/location.cc 123 - base/location.h 124 - base/logging.h 125 - base/macros/concat.h 126 - base/macros/uniquify.h 127 - base/memory/free_deleter.h 128 - base/memory/memory_pressure_listener.h 129 - base/memory/platform_shared_memory_handle.h 130 - base/memory/platform_shared_memory_region.h 131 - base/memory/ptr_util.h 132 - base/memory/raw_ptr.h 133 - base/memory/raw_ptr_asan_bound_arg_tracker.h 134 - base/memory/raw_ptr_exclusion.h 135 - base/memory/raw_ref.h 136 - base/memory/raw_scoped_refptr_mismatch_checker.h 137 - base/memory/ref_counted.cc 138 - base/memory/ref_counted.h 139 - base/memory/safe_ref_traits.h 140 - base/memory/scoped_refptr.h 141 - base/memory/shared_memory_mapper.h 142 - base/memory/shared_memory_mapping.h 143 - base/memory/singleton.h 144 - base/memory/unsafe_shared_memory_region.h 145 - base/memory/weak_ptr.h 146 - base/message_loop/message_pump.h 147 - base/message_loop/message_pump_for_io.h 148 - base/message_loop/message_pump_for_ui.h 149 - base/message_loop/message_pump_libevent.h 150 - base/message_loop/message_pump_type.h 151 - base/message_loop/message_pump_win.h 152 - base/message_loop/watchable_io_message_pump_posix.h 153 - base/metrics/field_trial_params.h 154 - base/no_destructor.h 155 - base/notreached.h 156 - base/numerics/checked_math.h 157 - base/numerics/checked_math_impl.h 158 - base/numerics/clamped_math.h 159 - base/numerics/clamped_math_impl.h 160 - base/numerics/safe_conversions.h 161 - base/numerics/safe_conversions_arm_impl.h 162 - base/numerics/safe_conversions_impl.h 163 - base/numerics/safe_math.h 164 - base/numerics/safe_math_arm_impl.h 165 - base/numerics/safe_math_clang_gcc_impl.h 166 - base/numerics/safe_math_shared_impl.h 167 - base/numerics/wrapping_math.h 168 - base/observer_list.h 169 - base/observer_list_internal.h 170 - base/observer_list_types.h 171 - base/pending_task.h 172 - base/posix/can_lower_nice_to.cc 173 - base/posix/can_lower_nice_to.h 174 - base/posix/eintr_wrapper.h 175 - base/posix/safe_strerror.cc 176 - base/posix/safe_strerror.h 177 - base/process/environment_internal.cc 178 - base/process/environment_internal.h 179 - base/process/kill.h 180 - base/process/memory.h 181 - base/process/process.h 182 - base/process/process_handle.h 183 - base/rand_util.cc 184 - base/rand_util.h 185 - base/rand_util_win.cc 186 - base/ranges/algorithm.h 187 - base/ranges/functional.h 188 - base/ranges/ranges.h 189 - base/scoped_clear_last_error.h 190 - base/scoped_clear_last_error_win.cc 191 - base/sequence_checker.h 192 - base/sequence_checker_impl.h 193 - base/sequence_token.h 194 - base/strings/safe_sprintf.cc 195 - base/strings/safe_sprintf.h 196 - base/strings/string_number_conversions.cc 197 - base/strings/string_number_conversions.h 198 - base/strings/string_number_conversions_internal.h 199 - base/strings/string_number_conversions_win.h 200 - base/strings/string_piece.h 201 - base/strings/string_piece_forward.h 202 - base/strings/string_split.cc 203 - base/strings/string_split.h 204 - base/strings/string_split_internal.h 205 - base/strings/string_split_win.h 206 - base/strings/string_util.cc 207 - base/strings/string_util.h 208 - base/strings/string_util_constants.cc 209 - base/strings/string_util_impl_helpers.h 210 - base/strings/string_util_internal.h 211 - base/strings/string_util_posix.h 212 - base/strings/string_util_win.cc 213 - base/strings/string_util_win.h 214 - base/strings/stringprintf.cc 215 - base/strings/stringprintf.h 216 - base/strings/to_string.h 217 - base/strings/utf_ostream_operators.cc 218 - base/strings/utf_ostream_operators.h 219 - base/strings/utf_string_conversion_utils.cc 220 - base/strings/utf_string_conversion_utils.h 221 - base/strings/utf_string_conversions.cc 222 - base/strings/utf_string_conversions.h 223 - base/synchronization/atomic_flag.h 224 - base/synchronization/condition_variable.h 225 - base/synchronization/condition_variable_posix.cc 226 - base/synchronization/lock.cc 227 - base/synchronization/lock.h 228 - base/synchronization/lock_impl.h 229 - base/synchronization/lock_impl_posix.cc 230 - base/synchronization/lock_impl_win.cc 231 - base/synchronization/waitable_event.h 232 - base/synchronization/waitable_event_posix.cc 233 - base/task/current_thread.h 234 - base/task/delay_policy.h 235 - base/task/delayed_task_handle.h 236 - base/task/post_task_and_reply_with_result_internal.h 237 - base/task/sequence_manager/task_time_observer.h 238 - base/task/sequenced_task_runner.h 239 - base/task/sequenced_task_runner_helpers.h 240 - base/task/single_thread_task_runner.h 241 - base/task/task_observer.h 242 - base/task/task_runner.h 243 - base/template_util.h 244 - base/third_party/cityhash/city.cc 245 - base/third_party/cityhash/city.h 246 - base/third_party/cityhash/COPYING 247 - base/third_party/icu/icu_utf.h 248 - base/third_party/icu/LICENSE 249 - base/third_party/superfasthash/LICENSE 250 - base/third_party/superfasthash/README.chromium 251 - base/third_party/superfasthash/superfasthash.c 252 - base/thread_annotations.h 253 - base/threading/hang_watcher.h 254 - base/threading/platform_thread.cc 255 - base/threading/platform_thread.h 256 - base/threading/platform_thread_internal_posix.cc 257 - base/threading/platform_thread_internal_posix.h 258 - base/threading/platform_thread_posix.cc 259 - base/threading/platform_thread_ref.cc 260 - base/threading/platform_thread_ref.h 261 - base/threading/platform_thread_win.cc 262 - base/threading/platform_thread_win.h 263 - base/threading/scoped_thread_priority.h 264 - base/threading/simple_thread.h 265 - base/threading/thread_checker.h 266 - base/threading/thread_checker_impl.h 267 - base/threading/thread_collision_warner.cc 268 - base/threading/thread_collision_warner.h 269 - base/threading/thread_id_name_manager.cc 270 - base/threading/thread_id_name_manager.h 271 - base/threading/thread_local.h 272 - base/threading/thread_local_internal.h 273 - base/threading/thread_local_storage.cc 274 - base/threading/thread_local_storage.h 275 - base/threading/thread_local_storage_posix.cc 276 - base/threading/thread_local_storage_win.cc 277 - base/threading/thread_restrictions.cc 278 - base/threading/thread_restrictions.h 279 - base/threading/threading_features.h 280 - base/time/tick_clock.h 281 - base/time/time.cc 282 - base/time/time.h 283 - base/time/time_now_posix.cc 284 - base/time/time_override.h 285 - base/time/time_win.cc 286 - base/token.h 287 - base/trace_event/base_tracing.h 288 - base/trace_event/base_tracing_forward.h 289 - base/trace_event/common/trace_event_common.h 290 - base/trace_event/memory_allocator_dump_guid.h 291 - base/trace_event/trace_event_stub.cc 292 - base/trace_event/trace_event_stub.h 293 - base/types/always_false.h 294 - base/types/pass_key.h 295 - base/types/strong_alias.h 296 - base/types/supports_ostream_operator.h 297 - base/unguessable_token.h 298 - base/version.cc 299 - base/version.h 300 - base/win/access_control_list.cc 301 - base/win/access_control_list.h 302 - base/win/access_token.cc 303 - base/win/access_token.h 304 - base/win/current_module.h 305 - base/win/message_window.h 306 - base/win/pe_image.cc 307 - base/win/pe_image.h 308 - base/win/scoped_handle.cc 309 - base/win/scoped_handle.h 310 - base/win/scoped_handle_verifier.cc 311 - base/win/scoped_handle_verifier.h 312 - base/win/scoped_localalloc.h 313 - base/win/scoped_process_information.cc 314 - base/win/scoped_process_information.h 315 - base/win/security_descriptor.cc 316 - base/win/security_descriptor.h 317 - base/win/security_util.cc 318 - base/win/security_util.h 319 - base/win/sid.cc 320 - base/win/sid.h 321 - base/win/startup_information.cc 322 - base/win/startup_information.h 323 - base/win/static_constants.cc 324 - base/win/static_constants.h 325 - base/win/win_handle_types.h 326 - base/win/win_handle_types_list.inc 327 - base/win/windows_types.h 328 - base/win/windows_version.cc 329 - base/win/windows_version.h 330 - build/build_config.h 331 - build/buildflag.h 332 - LICENSE 333 - sandbox/features.cc 334 - sandbox/features.h 335 - sandbox/linux/bpf_dsl/bpf_dsl.cc 336 - sandbox/linux/bpf_dsl/bpf_dsl.h 337 - sandbox/linux/bpf_dsl/bpf_dsl_forward.h 338 - sandbox/linux/bpf_dsl/bpf_dsl_impl.h 339 - sandbox/linux/bpf_dsl/codegen.cc 340 - sandbox/linux/bpf_dsl/codegen.h 341 - sandbox/linux/bpf_dsl/cons.h 342 - sandbox/linux/bpf_dsl/dump_bpf.cc 343 - sandbox/linux/bpf_dsl/dump_bpf.h 344 - sandbox/linux/bpf_dsl/errorcode.h 345 - sandbox/linux/bpf_dsl/linux_syscall_ranges.h 346 - sandbox/linux/bpf_dsl/policy.cc 347 - sandbox/linux/bpf_dsl/policy.h 348 - sandbox/linux/bpf_dsl/policy_compiler.cc 349 - sandbox/linux/bpf_dsl/policy_compiler.h 350 - sandbox/linux/bpf_dsl/seccomp_macros.h 351 - sandbox/linux/bpf_dsl/syscall_set.cc 352 - sandbox/linux/bpf_dsl/syscall_set.h 353 - sandbox/linux/bpf_dsl/trap_registry.h 354 - sandbox/linux/seccomp-bpf/die.cc 355 - sandbox/linux/seccomp-bpf/die.h 356 - sandbox/linux/seccomp-bpf/syscall.cc 357 - sandbox/linux/seccomp-bpf/syscall.h 358 - sandbox/linux/seccomp-bpf/trap.cc 359 - sandbox/linux/seccomp-bpf/trap.h 360 - sandbox/linux/services/syscall_wrappers.cc 361 - sandbox/linux/services/syscall_wrappers.h 362 - sandbox/linux/system_headers/arm64_linux_syscalls.h 363 - sandbox/linux/system_headers/arm_linux_syscalls.h 364 - sandbox/linux/system_headers/capability.h 365 - sandbox/linux/system_headers/linux_filter.h 366 - sandbox/linux/system_headers/linux_seccomp.h 367 - sandbox/linux/system_headers/linux_signal.h 368 - sandbox/linux/system_headers/linux_stat.h 369 - sandbox/linux/system_headers/linux_syscalls.h 370 - sandbox/linux/system_headers/x86_32_linux_syscalls.h 371 - sandbox/linux/system_headers/x86_64_linux_syscalls.h 372 - sandbox/sandbox_export.h 373 - sandbox/win/src/acl.cc 374 - sandbox/win/src/acl.h 375 - sandbox/win/src/alternate_desktop.cc 376 - sandbox/win/src/alternate_desktop.h 377 - sandbox/win/src/app_container.h 378 - sandbox/win/src/app_container_base.cc 379 - sandbox/win/src/app_container_base.h 380 - sandbox/win/src/broker_services.cc 381 - sandbox/win/src/broker_services.h 382 - sandbox/win/src/crosscall_client.h 383 - sandbox/win/src/crosscall_params.h 384 - sandbox/win/src/crosscall_server.cc 385 - sandbox/win/src/crosscall_server.h 386 - sandbox/win/src/eat_resolver.cc 387 - sandbox/win/src/eat_resolver.h 388 - sandbox/win/src/filesystem_dispatcher.cc 389 - sandbox/win/src/filesystem_dispatcher.h 390 - sandbox/win/src/filesystem_interception.cc 391 - sandbox/win/src/filesystem_interception.h 392 - sandbox/win/src/filesystem_policy.cc 393 - sandbox/win/src/filesystem_policy.h 394 - sandbox/win/src/handle_closer.cc 395 - sandbox/win/src/handle_closer.h 396 - sandbox/win/src/handle_closer_agent.cc 397 - sandbox/win/src/handle_closer_agent.h 398 - sandbox/win/src/heap_helper.cc 399 - sandbox/win/src/heap_helper.h 400 - sandbox/win/src/interception.cc 401 - sandbox/win/src/interception.h 402 - sandbox/win/src/interception_agent.cc 403 - sandbox/win/src/interception_agent.h 404 - sandbox/win/src/interception_internal.h 405 - sandbox/win/src/interceptors.h 406 - sandbox/win/src/interceptors_64.cc 407 - sandbox/win/src/interceptors_64.h 408 - sandbox/win/src/internal_types.h 409 - sandbox/win/src/ipc_args.cc 410 - sandbox/win/src/ipc_args.h 411 - sandbox/win/src/ipc_tags.h 412 - sandbox/win/src/job.cc 413 - sandbox/win/src/job.h 414 - sandbox/win/src/named_pipe_dispatcher.cc 415 - sandbox/win/src/named_pipe_dispatcher.h 416 - sandbox/win/src/named_pipe_interception.cc 417 - sandbox/win/src/named_pipe_interception.h 418 - sandbox/win/src/named_pipe_policy.cc 419 - sandbox/win/src/named_pipe_policy.h 420 - sandbox/win/src/nt_internals.h 421 - sandbox/win/src/policy_broker.cc 422 - sandbox/win/src/policy_broker.h 423 - sandbox/win/src/policy_engine_opcodes.cc 424 - sandbox/win/src/policy_engine_opcodes.h 425 - sandbox/win/src/policy_engine_params.h 426 - sandbox/win/src/policy_engine_processor.cc 427 - sandbox/win/src/policy_engine_processor.h 428 - sandbox/win/src/policy_low_level.cc 429 - sandbox/win/src/policy_low_level.h 430 - sandbox/win/src/policy_params.h 431 - sandbox/win/src/policy_target.cc 432 - sandbox/win/src/policy_target.h 433 - sandbox/win/src/process_mitigations.cc 434 - sandbox/win/src/process_mitigations.h 435 - sandbox/win/src/process_mitigations_win32k_dispatcher.cc 436 - sandbox/win/src/process_mitigations_win32k_dispatcher.h 437 - sandbox/win/src/process_mitigations_win32k_interception.cc 438 - sandbox/win/src/process_mitigations_win32k_interception.h 439 - sandbox/win/src/process_mitigations_win32k_policy.cc 440 - sandbox/win/src/process_mitigations_win32k_policy.h 441 - sandbox/win/src/process_thread_dispatcher.cc 442 - sandbox/win/src/process_thread_dispatcher.h 443 - sandbox/win/src/process_thread_interception.cc 444 - sandbox/win/src/process_thread_interception.h 445 - sandbox/win/src/process_thread_policy.cc 446 - sandbox/win/src/process_thread_policy.h 447 - sandbox/win/src/resolver.cc 448 - sandbox/win/src/resolver.h 449 - sandbox/win/src/resolver_32.cc 450 - sandbox/win/src/resolver_64.cc 451 - sandbox/win/src/restricted_token.cc 452 - sandbox/win/src/restricted_token.h 453 - sandbox/win/src/restricted_token_utils.cc 454 - sandbox/win/src/restricted_token_utils.h 455 - sandbox/win/src/sandbox.cc 456 - sandbox/win/src/sandbox.h 457 - sandbox/win/src/sandbox_factory.h 458 - sandbox/win/src/sandbox_globals.cc 459 - sandbox/win/src/sandbox_nt_types.h 460 - sandbox/win/src/sandbox_nt_util.cc 461 - sandbox/win/src/sandbox_nt_util.h 462 - sandbox/win/src/sandbox_policy.h 463 - sandbox/win/src/sandbox_policy_base.cc 464 - sandbox/win/src/sandbox_policy_base.h 465 - sandbox/win/src/sandbox_types.h 466 - sandbox/win/src/security_capabilities.cc 467 - sandbox/win/src/security_capabilities.h 468 - sandbox/win/src/security_level.h 469 - sandbox/win/src/service_resolver.cc 470 - sandbox/win/src/service_resolver.h 471 - sandbox/win/src/service_resolver_32.cc 472 - sandbox/win/src/service_resolver_64.cc 473 - sandbox/win/src/sharedmem_ipc_client.cc 474 - sandbox/win/src/sharedmem_ipc_client.h 475 - sandbox/win/src/sharedmem_ipc_server.cc 476 - sandbox/win/src/sharedmem_ipc_server.h 477 - sandbox/win/src/signed_dispatcher.cc 478 - sandbox/win/src/signed_dispatcher.h 479 - sandbox/win/src/signed_interception.cc 480 - sandbox/win/src/signed_interception.h 481 - sandbox/win/src/signed_policy.cc 482 - sandbox/win/src/signed_policy.h 483 - sandbox/win/src/startup_information_helper.cc 484 - sandbox/win/src/startup_information_helper.h 485 - sandbox/win/src/target_interceptions.cc 486 - sandbox/win/src/target_interceptions.h 487 - sandbox/win/src/target_process.cc 488 - sandbox/win/src/target_process.h 489 - sandbox/win/src/target_services.cc 490 - sandbox/win/src/target_services.h 491 - sandbox/win/src/threadpool.cc 492 - sandbox/win/src/threadpool.h 493 - sandbox/win/src/top_level_dispatcher.cc 494 - sandbox/win/src/top_level_dispatcher.h 495 - sandbox/win/src/win_utils.cc 496 - sandbox/win/src/win_utils.h 497 - sandbox/win/src/window.cc 498 - sandbox/win/src/window.h 499 - third_party/libevent/event-config.h 500 - third_party/libevent/event.h 501 - third_party/libevent/evutil.h 502 - third_party/libevent/LICENSE 503 - third_party/libevent/linux/event-config.h 504 505 # Apply patches that are taken from upstream first as these will not be 506 # needed at some point, so we want subsequent patches to work after the 507 # upstream fix. 508 patches: 509 - ../chromium-shim/patches/upstream/*.patch 510 - ../chromium-shim/patches/*.patch