gsadmin/certctl
1
0
Fork 0
mirror of https://github.com/shankar0123/certctl.git synced 2026-06-07 13:41:30 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
a1fae33f405c481f53b7a1dc6cafd967346e88af
certctl/deploy/test
T
History
shankar0123 a1fae33f40 fix(deploy/test): f5-mock-icontrol host-port collision (20443 → 20449) 
CI run 25192994486 (deploy-vendor-e2e job) failed with:

  Error response from daemon: failed to set up container networking:
    driver failed programming external connectivity on endpoint
    certctl-test-f5-mock: Bind for 0.0.0.0:20443 failed: port is already
    allocated

apache-test (compose line 491) and f5-mock-icontrol (compose line 619)
both bound host port 20443. The pre-Phase-5 per-vendor matrix only ran
one sidecar at a time, so the collision was structurally hidden. The
ci-pipeline-cleanup Phase 5 collapse brings all 11 sidecars up
simultaneously — the bug surfaces.

This was a pre-existing latent bug in the deploy-hardening II Phase 1
(commit 889c1a5) sidecar-matrix design that the matrix collapse
surfaced. Same pattern as the gofmt drift + libest build issues — the
new gates are doing their job, exposing real debt.

Fix: move f5-mock-icontrol from host port 20443 to 20449 (next free
in the 204xx range; 20448 is windows-iis-test, 20443-20447 occupied
by apache/haproxy/traefik/caddy/envoy).

Touched:
  deploy/docker-compose.test.yml — f5-mock-icontrol ports: 20449:443
  deploy/test/vendor_e2e_helpers.go — sidecarMap["f5-mock"].hostPort: 20449

Verified: every host port in deploy/docker-compose.test.yml is now
unique (per-port count == 1 across all 17 mappings).
2026-04-30 23:05:25 +00:00
..
apache
feat(test): docker-compose deploy-e2e sidecar matrix — apache + haproxy + traefik + caddy + envoy + postfix + dovecot + openssh + f5-mock-icontrol + k8s-kind + windows-iis
2026-04-30 16:05:44 +00:00
caddy
feat(test): docker-compose deploy-e2e sidecar matrix — apache + haproxy + traefik + caddy + envoy + postfix + dovecot + openssh + f5-mock-icontrol + k8s-kind + windows-iis
2026-04-30 16:05:44 +00:00
dovecot
feat(test): docker-compose deploy-e2e sidecar matrix — apache + haproxy + traefik + caddy + envoy + postfix + dovecot + openssh + f5-mock-icontrol + k8s-kind + windows-iis
2026-04-30 16:05:44 +00:00
envoy
feat(test): docker-compose deploy-e2e sidecar matrix — apache + haproxy + traefik + caddy + envoy + postfix + dovecot + openssh + f5-mock-icontrol + k8s-kind + windows-iis
2026-04-30 16:05:44 +00:00
est
EST RFC 7030 hardening master bundle Phases 10-11: libest sidecar e2e
2026-04-30 00:52:43 +00:00
f5-mock-icontrol
fix(ci): real digests + matrix→service mapping for deploy-vendor-e2e
2026-04-30 18:48:13 +00:00
fixtures
fix(scep-intune): close 11 audit gaps from 2026-04-29 pre-tag review
2026-04-29 20:28:53 +00:00
haproxy
feat(test): docker-compose deploy-e2e sidecar matrix — apache + haproxy + traefik + caddy + envoy + postfix + dovecot + openssh + f5-mock-icontrol + k8s-kind + windows-iis
2026-04-30 16:05:44 +00:00
libest
fix(deploy/test/libest): switch base bookworm-slim → bullseye-slim
2026-04-30 22:53:32 +00:00
traefik
feat(test): docker-compose deploy-e2e sidecar matrix — apache + haproxy + traefik + caddy + envoy + postfix + dovecot + openssh + f5-mock-icontrol + k8s-kind + windows-iis
2026-04-30 16:05:44 +00:00
crl_ocsp_e2e_test.go
crl/ocsp e2e: wire helpers to integration_test.go primitives — Phase 6
2026-04-29 03:03:19 +00:00
deploy_e2e_test.go
test(deploy): cross-phase end-to-end atomicity + post-verify + idempotency + concurrency invariants
2026-04-30 15:27:11 +00:00
est_e2e_test.go
EST RFC 7030 hardening master bundle Phases 10-11: libest sidecar e2e
2026-04-30 00:52:43 +00:00
healthcheck_test.go
test: triage 37 skipped-test sites — closure comments pinning rationale (Q-1)
2026-04-25 18:44:36 +00:00
integration_test.go
test: triage 37 skipped-test sites — closure comments pinning rationale (Q-1)
2026-04-25 18:44:36 +00:00
nginx_vendor_e2e_test.go
test(deploy): vendor-edge e2e harness — Phases 2-13 (NGINX, Apache, HAProxy, Traefik, Caddy, Envoy, Postfix, Dovecot, IIS, F5, SSH, WinCert, JKS, K8s)
2026-04-30 16:12:16 +00:00
nginx-entrypoint.sh
fix: end-to-end certificate lifecycle bugs + integration test environment
2026-04-02 17:02:20 -04:00
nginx.conf
fix: end-to-end certificate lifecycle bugs + integration test environment
2026-04-02 17:02:20 -04:00
pebble-config.json
fix: end-to-end certificate lifecycle bugs + integration test environment
2026-04-02 17:02:20 -04:00
qa_test.go
chore(fmt): repo-wide gofmt -w sweep — close drift surfaced by ci-pipeline-cleanup Phase 4
2026-04-30 22:33:57 +00:00
run-test.sh
v2.0.47: HTTPS Everywhere — TLS-only control plane, agents/CLI/MCP
2026-04-20 03:43:10 +00:00
scep_intune_e2e_test.go
fix(scep-intune): close 11 audit gaps from 2026-04-29 pre-tag review
2026-04-29 20:28:53 +00:00
setup-trust.sh
fix: end-to-end certificate lifecycle bugs + integration test environment
2026-04-02 17:02:20 -04:00
vendor_e2e_helpers_smoke_test.go
test(deploy): vendor-edge e2e harness — Phases 2-13 (NGINX, Apache, HAProxy, Traefik, Caddy, Envoy, Postfix, Dovecot, IIS, F5, SSH, WinCert, JKS, K8s)
2026-04-30 16:12:16 +00:00
vendor_e2e_helpers.go
fix(deploy/test): f5-mock-icontrol host-port collision (20443 → 20449)
2026-04-30 23:05:25 +00:00
vendor_e2e_phase3_to_13_test.go
chore(fmt): catch vendor_e2e files missed by Phase 1 sweep filter
2026-04-30 22:42:47 +00:00