treewide: rename to hakurei

Fortify makes little sense for a container tool. Signed-off-by: Ophestra <cat@gensokyo.uk>
2025-06-25 03:59:52 +09:00
parent 3992073212
commit 87e008d56d
137 changed files with 1044 additions and 1098 deletions
--- a/internal/app/instance/common/container.go
+++ b/internal/app/instance/common/container.go
@@ -8,20 +8,20 @@ import (
 	"path"
 	"syscall"

-	"git.gensokyo.uk/security/fortify/dbus"
-	"git.gensokyo.uk/security/fortify/fst"
-	"git.gensokyo.uk/security/fortify/internal/sys"
-	"git.gensokyo.uk/security/fortify/sandbox"
-	"git.gensokyo.uk/security/fortify/sandbox/seccomp"
+	"git.gensokyo.uk/security/hakurei/dbus"
+	"git.gensokyo.uk/security/hakurei/hst"
+	"git.gensokyo.uk/security/hakurei/internal/sys"
+	"git.gensokyo.uk/security/hakurei/sandbox"
+	"git.gensokyo.uk/security/hakurei/sandbox/seccomp"
 )

 // in practice there should be less than 30 entries added by the runtime;
 // allocating slightly more as a margin for future expansion
 const preallocateOpsCount = 1 << 5

-// NewContainer initialises [sandbox.Params] via [fst.ContainerConfig].
+// NewContainer initialises [sandbox.Params] via [hst.ContainerConfig].
 // Note that remaining container setup must be queued by the caller.
-func NewContainer(s *fst.ContainerConfig, os sys.State, uid, gid *int) (*sandbox.Params, map[string]string, error) {
+func NewContainer(s *hst.ContainerConfig, os sys.State, uid, gid *int) (*sandbox.Params, map[string]string, error) {
 	if s == nil {
 		return nil, nil, syscall.EBADE
 	}
@@ -67,7 +67,7 @@ func NewContainer(s *fst.ContainerConfig, os sys.State, uid, gid *int) (*sandbox

 	container.
 		Proc("/proc").
-		Tmpfs(fst.Tmp, 1<<12, 0755)
+		Tmpfs(hst.Tmp, 1<<12, 0755)

 	if !s.Device {
 		container.Dev("/dev").Mqueue("/dev/mqueue")
--- a/internal/app/instance/errors.go
+++ b/internal/app/instance/errors.go
@@ -3,8 +3,8 @@ package instance
 import (
 	"syscall"

-	"git.gensokyo.uk/security/fortify/internal/app"
-	"git.gensokyo.uk/security/fortify/internal/app/internal/setuid"
+	"git.gensokyo.uk/security/hakurei/internal/app"
+	"git.gensokyo.uk/security/hakurei/internal/app/internal/setuid"
 )

 func PrintRunStateErr(whence int, rs *app.RunState, runErr error) (code int) {
--- a/internal/app/instance/new.go
+++ b/internal/app/instance/new.go
@@ -6,9 +6,9 @@ import (
 	"log"
 	"syscall"

-	"git.gensokyo.uk/security/fortify/internal/app"
-	"git.gensokyo.uk/security/fortify/internal/app/internal/setuid"
-	"git.gensokyo.uk/security/fortify/internal/sys"
+	"git.gensokyo.uk/security/hakurei/internal/app"
+	"git.gensokyo.uk/security/hakurei/internal/app/internal/setuid"
+	"git.gensokyo.uk/security/hakurei/internal/sys"
 )

 const (
--- a/internal/app/instance/shim.go
+++ b/internal/app/instance/shim.go
@@ -1,6 +1,6 @@
 package instance

-import "git.gensokyo.uk/security/fortify/internal/app/internal/setuid"
+import "git.gensokyo.uk/security/hakurei/internal/app/internal/setuid"

 // ShimMain is the main function of the shim process and runs as the unconstrained target user.
 func ShimMain() { setuid.ShimMain() }