Bug 1948471

Summary: [sig-auth][Feature:OpenShiftAuthorization][Serial] authorization TestAuthorizationResourceAccessReview should succeed [Suite:openshift/conformance/serial]
Product: OpenShift Container Platform Reporter: Oleg Bulatov <obulatov>
Component: Cloud ComputeAssignee: Joel Speed <jspeed>
Cloud Compute sub component: Other Providers QA Contact: sunzhaohua <zhsun>
Status: CLOSED ERRATA Docs Contact:
Severity: urgent    
Priority: unspecified CC: aos-bugs, mfojtik, misalunk, pmuller, sttts, wking
Version: 4.8   
Target Milestone: ---   
Target Release: 4.8.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of: Environment:
[sig-auth][Feature:OpenShiftAuthorization][Serial] authorization TestAuthorizationResourceAccessReview should succeed [Suite:openshift/conformance/serial]
Last Closed: 2021-07-27 22:59:25 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Oleg Bulatov 2021-04-12 09:20:38 UTC 
test:
[sig-auth][Feature:OpenShiftAuthorization][Serial] authorization  TestAuthorizationResourceAccessReview should succeed [Suite:openshift/conformance/serial] 

is failing frequently in CI, see search results:
https://search.ci.openshift.org/?maxAge=168h&context=1&type=bug%2Bjunit&name=&maxMatches=5&maxBytes=20971520&groupBy=job&search=%5C%5Bsig-auth%5C%5D%5C%5BFeature%3AOpenShiftAuthorization%5C%5D%5C%5BSerial%5C%5D+authorization++TestAuthorizationResourceAccessReview+should+succeed+%5C%5BSuite%3Aopenshift%2Fconformance%2Fserial%5C%5D

It fails every e2e-aws-serial:
https://testgrid.k8s.io/redhat-openshift-ocp-release-4.8-blocking#periodic-ci-openshift-release-master-ci-4.8-e2e-aws-serial

A job with a failure:
https://prow.ci.openshift.org/view/gcs/origin-ci-test/logs/periodic-ci-openshift-release-master-ci-4.8-e2e-aws-serial/1381430404086501376

Test output:
fail [github.com/openshift/origin/test/extended/authorization/authorization.go:375]: who can view deploymentconfigs in hammer by harold
: evaluation errors does not match (clusterrole.rbac.authorization.k8s.io "machine-api-operator-ext-remediation" not found!=)
Comment 2 Stefan Schimanski 2021-04-12 11:26:54 UTC 
This is most probably due https://github.com/openshift/machine-api-operator/pull/795#issuecomment-817700333. Moving to machine-api team.
Comment 4 Stefan Schimanski 2021-04-14 12:27:22 UTC 
*** Bug 1948364 has been marked as a duplicate of this bug. ***
Comment 5 sunzhaohua 2021-04-26 07:01:27 UTC 
didn't find evaluation errors does not match (clusterrole.rbac.authorization.k8s.io "machine-api-operator-ext-remediation" not found!=) in CI
https://testgrid.k8s.io/redhat-openshift-ocp-release-4.8-blocking#periodic-ci-openshift-release-master-ci-4.8-e2e-aws-serial
Comment 8 errata-xmlrpc 2021-07-27 22:59:25 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.8.2 bug fix and security update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2021:2438