+++ This bug was initially created as a clone of Bug #1983615 +++ Description of problem: When e2e testing framework creates a new namespace, it should wait until service accounts and their registry secrets are created. Otherwise, if a pod is created before the secrets, its images will be anonymously and these pull will fail due to RBAC policies. Version-Release number of selected component (if applicable): 4.x How reproducible: Sometimes Steps to Reproduce: 1. run a CI test Actual results: Failures like: image-registry.openshift-image-registry.svc:5000/openshift/tools: unauthorized: authentication required Expected results: openshift/tools should be always pullable by any OpenShift user. Additional info:
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (OpenShift Container Platform 4.7.31 bug fix update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2021:3510