certctl

mirror of https://github.com/shankar0123/certctl.git synced 2026-06-07 20:41:30 +00:00

Files

T

shankar0123 5834e5b866 fix(est): plumb context through ESTService.ReloadTrust to satisfy contextcheck

CI golangci-lint v2.11.4 flagged internal/api/handler/admin_est.go:178:
the AdminESTServiceImpl.ReloadTrust method took ctx context.Context but
called svc.ReloadTrust() with no context, then the underlying
ESTService.ReloadTrust used context.Background() internally for the
audit RecordEvent call. That's the contextcheck linter's textbook
'context discarded at boundary' violation.

Fix: change ESTService.ReloadTrust signature to ReloadTrust(ctx
context.Context) and forward the caller-supplied ctx into
auditService.RecordEvent. AdminESTServiceImpl.ReloadTrust now passes
its received ctx through. The HTTP handler already forwards
r.Context() one layer up, so the request-scoped trace identifiers now
flow end-to-end into the audit row instead of being severed at the
service boundary.

Verified locally with golangci-lint v2.11.4 (the same version CI runs)
against ./internal/api/handler/... ./internal/service/... — '0
issues.' All cmd/* binaries build clean, go test -short -count=1
green for both packages.

2026-04-30 01:59:04 +00:00

testdata

EST RFC 7030 hardening master bundle Phases 10-11: libest sidecar e2e

2026-04-30 00:52:43 +00:00

admin_crl_cache_test.go

crl/ocsp: admin observability endpoint + Phase 6 e2e scaffold

2026-04-29 01:55:39 +00:00

admin_crl_cache.go

crl/ocsp: admin observability endpoint + Phase 6 e2e scaffold

2026-04-29 01:55:39 +00:00

admin_est_test.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

admin_est.go

fix(est): plumb context through ESTService.ReloadTrust to satisfy contextcheck

2026-04-30 01:59:04 +00:00

admin_scep_intune_test.go

refactor(scep-gui): rebrand SCEP admin surface to per-profile tabbed interface (Profiles + Intune + Recent Activity)

2026-04-29 17:46:42 +00:00

admin_scep_intune.go

refactor(scep-gui): rebrand SCEP admin surface to per-profile tabbed interface (Profiles + Intune + Recent Activity)

2026-04-29 17:46:42 +00:00

adversarial_est_test.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

adversarial_path_test.go

Unify API auth + RFC-compliant CRL/OCSP (M-002 + M-003 + M-006, auto-closes M-001)

2026-04-18 18:17:41 +00:00

adversarial_query_test.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

agent_bootstrap_test.go

fix(bundle-5): Operational Liveness + Bootstrap — 4 audit findings closed

2026-04-25 23:54:18 +00:00

agent_bootstrap.go

fix(bundle-5): CI green-up — drop unused sync.Once + document new env vars

2026-04-26 00:03:03 +00:00

agent_group_handler_test.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

agent_groups.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

agent_handler_test.go

fix(bundle-5): Operational Liveness + Bootstrap — 4 audit findings closed

2026-04-25 23:54:18 +00:00

agent_retire_handler_test.go

fix(bundle-5): Operational Liveness + Bootstrap — 4 audit findings closed

2026-04-25 23:54:18 +00:00

agents.go

fix(bundle-5): Operational Liveness + Bootstrap — 4 audit findings closed

2026-04-25 23:54:18 +00:00

audit_handler_test.go

fix(m2-pr-d): thread ctx through Job/Notification/Audit services

2026-04-18 01:20:46 +00:00

audit.go

fix(m2-pr-d): thread ctx through Job/Notification/Audit services

2026-04-18 01:20:46 +00:00

bulk_partial_failure_test.go

Bundle C: Renewal/reliability cluster — 7 findings closed

2026-04-27 00:08:25 +00:00

bulk_reassignment_handler_test.go

fix(api,web,mcp): add bulk-renew + bulk-reassign endpoints, drop client-side N×HTTP loops (L-1 master)

2026-04-25 14:33:02 +00:00

bulk_reassignment.go

fix(api,web,mcp): add bulk-renew + bulk-reassign endpoints, drop client-side N×HTTP loops (L-1 master)

2026-04-25 14:33:02 +00:00

bulk_renewal_handler_test.go

fix(api,web,mcp): add bulk-renew + bulk-reassign endpoints, drop client-side N×HTTP loops (L-1 master)

2026-04-25 14:33:02 +00:00

bulk_renewal.go

fix(api,web,mcp): add bulk-renew + bulk-reassign endpoints, drop client-side N×HTTP loops (L-1 master)

2026-04-25 14:33:02 +00:00

bulk_revocation_est_test.go

EST RFC 7030 hardening master bundle Phases 10-11: libest sidecar e2e

2026-04-30 00:52:43 +00:00

bulk_revocation_handler_test.go

Unify API auth + RFC-compliant CRL/OCSP (M-002 + M-003 + M-006, auto-closes M-001)

2026-04-18 18:17:41 +00:00

bulk_revocation.go

EST RFC 7030 hardening master bundle Phases 10-11: libest sidecar e2e

2026-04-30 00:52:43 +00:00

certificate_handler_test.go

crl/ocsp: POST OCSP endpoint (RFC 6960 §A.1.1) + cache integration

2026-04-29 00:07:27 +00:00

certificates.go

crl/ocsp: POST OCSP endpoint (RFC 6960 §A.1.1) + cache integration

2026-04-29 00:07:27 +00:00

cisco_ios_quirks_test.go

EST RFC 7030 hardening master bundle Phases 10-11: libest sidecar e2e

2026-04-30 00:52:43 +00:00

digest_handler_test.go

feat(m28+m29+m30): ACME ARI, email digest, and Helm chart

2026-03-28 21:18:35 -04:00

digest.go

F-001/F-002/F-003: CRL prefix-scan, digest error sanitization, ctx-aware sleeps

2026-04-20 16:51:52 +00:00

discovery_handler_test.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

discovery.go

Close M-004 (OCSP issuer binding) and M-005 (discovery actor propagation) coverage-gap findings

2026-04-18 22:20:25 +00:00

est_clock.go

EST RFC 7030 hardening master bundle Phases 2-4: end-to-end mTLS sibling

2026-04-29 23:15:35 +00:00

est_handler_test.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

est_hardening_test.go

EST RFC 7030 hardening master bundle Phases 2-4: end-to-end mTLS sibling

2026-04-29 23:15:35 +00:00

est_serverkeygen_helpers_test.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

est_serverkeygen_test.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

est_transport_test.go

fix(bundle-4): EST/SCEP Attack Surface Hardening — 3 audit findings closed

2026-04-25 21:14:41 +00:00

est.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

export_handler_test.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

export.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

health_check_handler_test.go

feat(M48): continuous TLS health monitoring — endpoint state machine, shared tlsprobe, 8 API endpoints, GUI

2026-04-15 21:45:45 -04:00

health_check.go

feat(M48): continuous TLS health monitoring — endpoint state machine, shared tlsprobe, 8 API endpoints, GUI

2026-04-15 21:45:45 -04:00

health_test.go

fix(bundle-5): Operational Liveness + Bootstrap — 4 audit findings closed

2026-04-25 23:54:18 +00:00

health.go

fix(bundle-5): Operational Liveness + Bootstrap — 4 audit findings closed

2026-04-25 23:54:18 +00:00

issuer_handler_test.go

M-2 PR-B: Collapse IssuerService + TargetService to ctx-first signatures

2026-04-18 00:46:58 +00:00

issuers.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

job_handler_test.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

jobs.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

m008_admin_gate_test.go

EST RFC 7030 hardening master bundle Phases 5-7: end-to-end serverkeygen

2026-04-29 23:57:45 +00:00

metrics.go

I-005: notification retry loop + dead-letter queue

2026-04-19 15:17:27 +00:00

network_scan_handler_test.go

feat(scep): SCEP probe in network scanner for fleet-readiness assessment

2026-04-29 18:51:57 +00:00

network_scan.go

feat(scep): SCEP probe in network scanner for fleet-readiness assessment

2026-04-29 18:51:57 +00:00

notification_handler_test.go

I-005: notification retry loop + dead-letter queue

2026-04-19 15:17:27 +00:00

notifications.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

owner_handler_test.go

M-2 PR-C: Collapse Policy/Profile/Owner/Team services to ctx-first signatures

2026-04-18 01:10:06 +00:00

owners.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

policies.go

fix(policies): stop 400ing the "+ New Policy" button + add per-rule severity (D-005, D-006)

2026-04-18 13:02:04 +00:00

policy_handler_test.go

M-2 PR-C: Collapse Policy/Profile/Owner/Team services to ctx-first signatures

2026-04-18 01:10:06 +00:00

profile_handler_test.go

M-2 PR-C: Collapse Policy/Profile/Owner/Team services to ctx-first signatures

2026-04-18 01:10:06 +00:00

profiles.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

renewal_policy_handler_test.go

G-1: renewal-policies API + frontend FK-drift fix

2026-04-20 18:53:01 +00:00

renewal_policy.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

response_test.go

test: comprehensive test gap closure across 24 packages

2026-04-09 23:09:40 -04:00

response.go

Unify API auth + RFC-compliant CRL/OCSP (M-002 + M-003 + M-006, auto-closes M-001)

2026-04-18 18:17:41 +00:00

round_out_test.go

Bundle N.C-extended (Coverage Audit Extension): service + handler round-out — M-002 + M-003 partial-closed

2026-04-27 21:40:09 +00:00

scep_chromeos_test.go

fix(scep-intune): close 11 audit gaps from 2026-04-29 pre-tag review

2026-04-29 20:28:53 +00:00

scep_fuzz_test.go

fix(bundle-4): EST/SCEP Attack Surface Hardening — 3 audit findings closed

2026-04-25 21:14:41 +00:00

scep_handler_test.go

feat(scep): RenewalReq + GetCertInitial + ChromeOS E2E + caps + must-staple

2026-04-29 13:16:09 +00:00

scep_intune_e2e_test.go

fix(scep-intune): close 11 audit gaps from 2026-04-29 pre-tag review

2026-04-29 20:28:53 +00:00

scep_mtls_test.go

feat(scep): mTLS sibling route /scep-mtls/<pathID> (opt-in)

2026-04-29 13:58:18 +00:00

scep_profile_counter_isolation_test.go

fix(scep-intune): close 11 audit gaps from 2026-04-29 pre-tag review

2026-04-29 20:28:53 +00:00

scep.go

feat(scep): mTLS sibling route /scep-mtls/<pathID> (opt-in)

2026-04-29 13:58:18 +00:00

stats_handler_test.go

test + docs: close 12 test gaps (~250 new tests) and expand testing guide to 34 parts

2026-03-28 17:57:25 -04:00

stats.go

feat: M14 — Observability (dashboard charts, agent fleet, stats API, metrics, structured logging, rollback)

2026-03-22 19:46:13 -04:00

target_handler_test.go

fix(gui,api): close C-001 + C-002 — ownership + agent FK contract

2026-04-18 16:01:40 +00:00

targets.go

fix(gui,api): close C-001 + C-002 — ownership + agent FK contract

2026-04-18 16:01:40 +00:00

team_handler_test.go

M-2 PR-C: Collapse Policy/Profile/Owner/Team services to ctx-first signatures

2026-04-18 01:10:06 +00:00

teams.go

M-2 PR-C: Collapse Policy/Profile/Owner/Team services to ctx-first signatures

2026-04-18 01:10:06 +00:00

test_utils.go

refactor(handler,repo): replace strings.Contains error dispatch with typed sentinels (S-2)

2026-04-25 17:54:14 +00:00

validation_test.go

fix: resolve 8 staticcheck lint errors in test files

2026-04-09 23:27:57 -04:00

validation.go

fix(policies): close the D-006 loop — TitleCase seed canonicals + severity-aware, config-consuming rule engine (D-008)

2026-04-18 14:55:56 +00:00

verification_handler_test.go

test + docs: close 12 test gaps (~250 new tests) and expand testing guide to 34 parts

2026-03-28 17:57:25 -04:00

verification.go

fix: use context.Context instead of interface{} in VerificationService interface

2026-03-27 21:13:48 -04:00

version_handler_test.go

fix(deploy,db,handler): close fresh-clone postgres init failure + 4 ride-along audit findings (U-3 master)

2026-04-25 13:29:23 +00:00

version.go

fix(deploy,db,handler): close fresh-clone postgres init failure + 4 ride-along audit findings (U-3 master)

2026-04-25 13:29:23 +00:00