Migrate int and stg e2e jobs to slot-manager

[roivaz]

• INT uses now a dedicated INT-only service principal
• STG uses now a dedicated STG-only service principal and a new subscription in the RG tenant
• Cleanup jobs also updated to use the new service principals and subscriptions

Summary by CodeRabbit

This PR migrates Azure ARO-HCP's integration (INT) and staging (STG) end-to-end testing jobs from a lease-based resource acquisition model to a slot-manager system for managing Azure subscriptions and service identities.

What Changed

Vault Secret Profiles: The e2e job definitions now reference new Red Hat-specific Vault secret profiles:

• INT jobs: int → int-rh
• STG jobs: stg → stg-rh

Workflow Transition: All affected e2e jobs switch from the aro-hcp-e2e workflow to a new aro-hcp-persistent-e2e workflow. This new workflow is designed to work against pre-deployed persistent environments managed by slot-manager, eliminating the need for job-level resource provisioning/deprovisioning.

Lease Removal: The leases blocks have been removed from INT and STG job variants across multiple CI configurations (main, periodic) since slot-manager handles resource allocation instead.

Subscription Management: Updated cleanup jobs to explicitly specify CUSTOMER_SUBSCRIPTION and use environment-specific Vault profiles (int-rh, stg-rh), enabling subscription-specific resource cleanup.

Azure Authentication Script: The test execution script now conditionally sources slot-manager-provided environment variables (aro-hcp-slot.env) for subscription and location configuration, with fallback to cluster profile defaults when not available.

Files Modified

• CI Job Configurations (Azure-ARO-HCP-main.yaml, Azure-ARO-HCP-main__e2e.yaml, Azure-ARO-HCP-main__periodic.yaml, Azure-ARO-HCP-main__periodic-cleanup.yaml): Updated vault profiles, workflows, and lease removal
• New Workflow Infrastructure (persistent-e2e/ directory): Added new aro-hcp-persistent-e2e-workflow.yaml with supporting owners and metadata files
• Step Registry Updates: Extended credentials in lease acquire, test persistent, gather, and deprovision steps to include the new int-rh and stg-rh secret mounts
• Azure Script (aro-hcp-test-persistent-commands.sh): Updated subscription and location handling to support slot-manager integration

Impact

This migration enables centralized resource management through slot-manager, reducing per-job provisioning overhead and improving resource utilization for INT and STG environments in the ARO-HCP testing pipeline. The parallel job variants (standard OCP plus nightly/fast/stable) are included in this transition.

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Central YAML (inherited)

Review profile: CHILL

Plan: Enterprise

Run ID: 2101ad1a-cc7d-4201-bcce-e3e5631efdbf

📥 Commits

Reviewing files that changed from the base of the PR and between 3fa2a8c and f2ed65c.

📒 Files selected for processing (12)

• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__e2e.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic-cleanup.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic.yaml
• ci-operator/step-registry/aro-hcp/deprovision/expired-resource-groups/aro-hcp-deprovision-expired-resource-groups-ref.yaml
• ci-operator/step-registry/aro-hcp/gather/custom-link-tools/aro-hcp-gather-custom-link-tools-ref.yaml
• ci-operator/step-registry/aro-hcp/lease/acquire/aro-hcp-lease-acquire-ref.yaml
• ci-operator/step-registry/aro-hcp/persistent-e2e/OWNERS
• ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.metadata.json
• ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.yaml
• ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-commands.sh
• ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-ref.yaml

💤 Files with no reviewable changes (8)

• ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.metadata.json
• ci-operator/step-registry/aro-hcp/deprovision/expired-resource-groups/aro-hcp-deprovision-expired-resource-groups-ref.yaml
• ci-operator/step-registry/aro-hcp/lease/acquire/aro-hcp-lease-acquire-ref.yaml
• ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-ref.yaml
• ci-operator/step-registry/aro-hcp/gather/custom-link-tools/aro-hcp-gather-custom-link-tools-ref.yaml
• ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.yaml
• ci-operator/step-registry/aro-hcp/persistent-e2e/OWNERS
• ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-commands.sh

🚧 Files skipped from review as they are similar to previous changes (4)

• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic-cleanup.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__e2e.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml

---

Walkthrough

Introduces a new aro-hcp-persistent-e2e CI workflow for running E2E tests against pre-deployed environments without provisioning or deprovisioning. Migrates integration and stage parallel E2E jobs from aro-hcp-e2e to this new workflow, updates Vault secret profiles from int/stg to int-rh/stg-rh, removes job-scoped leases, and expands step registry credential mounts and the persistent test script to support the new -rh secret profiles.

Changes

ARO-HCP Persistent E2E Workflow and -rh Credential Migration

Layer / File(s)	Summary
New aro-hcp-persistent-e2e workflow definition ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.yaml, ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.metadata.json, ci-operator/step-registry/aro-hcp/persistent-e2e/OWNERS	Creates the aro-hcp-persistent-e2e workflow with pre (lease acquire, write config), test (persistent E2E), and post (gather, lease release) phases targeting a persistent pre-deployed environment, along with its metadata and OWNERS.
Credential mounts expanded for int-rh and stg-rh secrets ci-operator/step-registry/aro-hcp/lease/acquire/aro-hcp-lease-acquire-ref.yaml, ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-ref.yaml, ci-operator/step-registry/aro-hcp/gather/custom-link-tools/aro-hcp-gather-custom-link-tools-ref.yaml, ci-operator/step-registry/aro-hcp/deprovision/expired-resource-groups/aro-hcp-deprovision-expired-resource-groups-ref.yaml	Adds cluster-secrets-aro-hcp-int-rh and cluster-secrets-aro-hcp-stg-rh credential mounts to the four affected step registry refs.
Persistent test script: conditional slot.env sourcing ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-commands.sh	Conditionally sources aro-hcp-slot.env to obtain CUSTOMER_SUBSCRIPTION and LOCATION from slot manager; falls back to reading subscription-name from the cluster profile. Replaces SUBSCRIPTION_ID with CUSTOMER_SUBSCRIPTION in az account set.
CI job configs migrated to aro-hcp-persistent-e2e and -rh profiles ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml, ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__e2e.yaml, ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic.yaml, ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic-cleanup.yaml	Updates all integration/stage parallel E2E job variants to use VAULT_SECRET_PROFILE: int-rh/stg-rh, replaces workflow: aro-hcp-e2e with workflow: aro-hcp-persistent-e2e, and removes job-scoped leases blocks. Periodic-cleanup jobs also add explicit CUSTOMER_SUBSCRIPTION values.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Suggested labels

rehearsals-ack

---

Important

Pre-merge checks failed

Please resolve all errors before merging. Addressing warnings is optional.

❌ Failed checks (1 error)

Check name	Status	Explanation	Resolution
No-Sensitive-Data-In-Logs	❌ Error	The new file aro-hcp-test-persistent-commands.sh has set -o xtrace enabled (line 5), which logs all variable expansions including AZURE_CLIENT_SECRET and AZURE_CLIENT_ID before execution.	Remove set -o xtrace or temporarily disable it before handling credentials: set +o xtrace before lines 9-11, then re-enable set -o xtrace after the az login command (line 23).

✅ Passed checks (14 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title 'Migrate int and stg e2e jobs to slot-manager' directly and clearly summarizes the main change—migrating integration and stage e2e testing jobs to use the slot-manager system.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Stable And Deterministic Test Names	✅ Passed	PR contains only CI/CD configuration and step-registry updates; no Ginkgo test code or test titles are present or modified, making the check not applicable.
Test Structure And Quality	✅ Passed	PR contains no Ginkgo test code—only CI/CD infrastructure configuration files (YAML, shell scripts, JSON metadata). The check for test structure/quality is not applicable.
Microshift Test Compatibility	✅ Passed	This PR adds no new Ginkgo e2e tests; it only updates CI/CD configuration files, shell scripts, and metadata. The MicroShift Test Compatibility check is not applicable.
Single Node Openshift (Sno) Test Compatibility	✅ Passed	This PR does not add any new Ginkgo e2e tests; it only updates CI/CD configuration, shell scripts, and metadata for ARO-HCP e2e job execution. The check is not applicable.
Topology-Aware Scheduling Compatibility	✅ Passed	PR modifies only CI/CD infrastructure configuration files (ci-operator/* YAML files, OWNERS, and shell scripts). No Kubernetes deployment manifests, operator code, or controllers are added or modif...
Ote Binary Stdout Contract	✅ Passed	This PR only modifies CI configuration files (YAML, JSON), OWNERS files, and a shell wrapper script. No Go source code or OTE test binaries are modified, so the OTE Binary Stdout Contract check is...
Ipv6 And Disconnected Network Test Compatibility	✅ Passed	PR contains only CI infrastructure changes (YAML configs, shell scripts, metadata) with no new Ginkgo e2e test code added; check is not applicable.
No-Weak-Crypto	✅ Passed	No weak cryptographic algorithms (MD5, SHA1, DES, RC4, 3DES, Blowfish, ECB), custom crypto implementations, or non-constant-time secret comparisons detected in this PR, which primarily updates CI c...
Container-Privileges	✅ Passed	No privileged container settings found in modified CI/CD configuration and step registry files; these are pipeline configs, not K8s manifests with security contexts.

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 2

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Inline comments:
In `@ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml`:
- Around line 239-240: VAULT_SECRET_PROFILE was changed to an int-rh value
without updating the step-level credential profile contracts, so runtime will
not find the mounted credentials; update the step credential declarations used
by the aro-hcp jobs to include the new "-rh" profile names (or revert
VAULT_SECRET_PROFILE to the original profile) so the step
contract/path-derivation logic exposes/mounts the declared profile;
specifically, ensure the steps that reference VAULT_SECRET_PROFILE (the
aro-hcp-persistent-e2e workflow and its related e2e/periodic/periodic-cleanup
job step definitions) declare and mount the "int-rh" (and any other migrated
"*-rh") profiles in their credentials/profile contract blocks to match the env
value.

In
`@ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-commands.sh`:
- Around line 14-20: When sourcing env_file="${SHARED_DIR}/aro-hcp-slot.env",
preserve the existing fallback behavior for CUSTOMER_SUBSCRIPTION so the script
won't fail under set -u if the env file doesn't set that variable: after
sourcing (inside the branch where env_file exists) export CUSTOMER_SUBSCRIPTION
using the current CUSTOMER_SUBSCRIPTION if present, otherwise read the
subscription from the cluster profile file (the same file used in the else
branch, referenced by CLUSTER_PROFILE_DIR/subscription-name); update the logic
in aro-hcp-test-persistent-commands.sh to perform this conditional export so
both the env file and the cluster-profile fallback are honored.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Repository YAML (base), Central YAML (inherited)

Review profile: CHILL

Plan: Enterprise

Run ID: 87e3db46-4ec4-4fe5-b556-1b24529ce291

📥 Commits

Reviewing files that changed from the base of the PR and between 684bae3 and 343dc44.

📒 Files selected for processing (10)

• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__e2e.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic-cleanup.yaml
• ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic.yaml
• ci-operator/step-registry/aro-hcp/persistent-e2e/OWNERS
• ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.metadata.json
• ci-operator/step-registry/aro-hcp/persistent-e2e/aro-hcp-persistent-e2e-workflow.yaml
• ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-commands.sh
• core-services/prow/02_config/_boskos.yaml
• core-services/prow/02_config/generate-boskos.py

[coderabbitai]

⚠️ Potential issue | 🟠 Major | 🏗️ Heavy lift

Root cause: VAULT_SECRET_PROFILE values were migrated to *-rh without matching step-level credential profile contract updates across all affected configs.
Affected files: ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml, ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__e2e.yaml, ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic.yaml, and ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main__periodic-cleanup.yaml.
All these jobs now rely on profile names that the referenced step contracts (and path derivation logic) do not currently show as mounted/declared, which can cause deterministic runtime auth/bootstrap failures.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@ci-operator/config/Azure/ARO-HCP/Azure-ARO-HCP-main.yaml` around lines 239 -
240, VAULT_SECRET_PROFILE was changed to an int-rh value without updating the
step-level credential profile contracts, so runtime will not find the mounted
credentials; update the step credential declarations used by the aro-hcp jobs to
include the new "-rh" profile names (or revert VAULT_SECRET_PROFILE to the
original profile) so the step contract/path-derivation logic exposes/mounts the
declared profile; specifically, ensure the steps that reference
VAULT_SECRET_PROFILE (the aro-hcp-persistent-e2e workflow and its related
e2e/periodic/periodic-cleanup job step definitions) declare and mount the
"int-rh" (and any other migrated "*-rh") profiles in their credentials/profile
contract blocks to match the env value.

[coderabbitai]

⚠️ Potential issue | 🟠 Major | ⚡ Quick win

Preserve the cluster-profile fallback for CUSTOMER_SUBSCRIPTION.

If Line 15 finds ${SHARED_DIR}/aro-hcp-slot.env but that file does not export CUSTOMER_SUBSCRIPTION, Line 24 aborts under set -u. The new branch makes the env file optional for discovery, but mandatory for this value.

Proposed fix

 env_file="${SHARED_DIR}/aro-hcp-slot.env"
 if [[ -f "${env_file}" ]]; then
     # shellcheck disable=SC1090
     source "${env_file}"
+    export CUSTOMER_SUBSCRIPTION="${CUSTOMER_SUBSCRIPTION:-$(< "${CLUSTER_PROFILE_DIR}/subscription-name")}"
     export LOCATION="${SELECTED_LOCATION:-${LOCATION:-}}"
 else
-    export CUSTOMER_SUBSCRIPTION; CUSTOMER_SUBSCRIPTION=$(cat "${CLUSTER_PROFILE_DIR}/subscription-name")
+    export CUSTOMER_SUBSCRIPTION="$(< "${CLUSTER_PROFILE_DIR}/subscription-name")"
 fi

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In
`@ci-operator/step-registry/aro-hcp/test/persistent/aro-hcp-test-persistent-commands.sh`
around lines 14 - 20, When sourcing env_file="${SHARED_DIR}/aro-hcp-slot.env",
preserve the existing fallback behavior for CUSTOMER_SUBSCRIPTION so the script
won't fail under set -u if the env file doesn't set that variable: after
sourcing (inside the branch where env_file exists) export CUSTOMER_SUBSCRIPTION
using the current CUSTOMER_SUBSCRIPTION if present, otherwise read the
subscription from the cluster profile file (the same file used in the else
branch, referenced by CLUSTER_PROFILE_DIR/subscription-name); update the logic
in aro-hcp-test-persistent-commands.sh to perform this conditional export so
both the env file and the cluster-profile fallback are honored.

[roivaz]

/pj-rehearse pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel

[openshift-merge-bot]

@roivaz: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[openshift-merge-bot]

@roivaz, pj-rehearse: unable prepare a candidate for rehearsal; rehearsals will not be run. This could be due to a branch that needs to be rebased. ERROR:

couldn't rebase candidate onto 687e0b99267cc233be7794a29c971d1b98f4dce4 due to conflicts

[openshift-merge-bot]

@roivaz, pj-rehearse: unable to determine affected jobs. This could be due to a branch that needs to be rebased. ERROR:

couldn't prepare candidate: couldn't rebase candidate onto 687e0b99267cc233be7794a29c971d1b98f4dce4 due to conflicts

Interacting with pj-rehearse

Comment: /pj-rehearse to run up to 5 rehearsals
Comment: /pj-rehearse skip to opt-out of rehearsals
Comment: /pj-rehearse {test-name}, with each test separated by a space, to run one or more specific rehearsals
Comment: /pj-rehearse more to run up to 10 rehearsals
Comment: /pj-rehearse max to run up to 25 rehearsals
Comment: /pj-rehearse auto-ack to run up to 5 rehearsals, and add the rehearsals-ack label on success
Comment: /pj-rehearse list to get an up-to-date list of affected jobs
Comment: /pj-rehearse abort to abort all active rehearsals
Comment: /pj-rehearse network-access-allowed to allow rehearsals of tests that have the restrict_network_access field set to false. This must be executed by an openshift org member who is not the PR author

Once you are satisfied with the results of the rehearsals, comment: /pj-rehearse ack to unblock merge. When the rehearsals-ack label is present on your PR, merge will no longer be blocked by rehearsals.
If you would like the rehearsals-ack label removed, comment: /pj-rehearse reject to re-block merging.

[openshift-merge-bot]

[REHEARSALNOTIFIER]
@roivaz: the pj-rehearse plugin accommodates running rehearsal tests for the changes in this PR. Expand 'Interacting with pj-rehearse' for usage details. The following rehearsable tests have been affected by this change:

Test name	Repo	Type	Reason
pull-ci-Azure-ARO-HCP-main-integration-e2e-parallel	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-integration-e2e-parallel-ocp-fast	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-integration-e2e-parallel-ocp-nightly	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-integration-e2e-parallel-ocp-stable	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel-ocp-fast	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel-ocp-nightly	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel-ocp-stable	Azure/ARO-HCP	presubmit	Ci-operator config changed
pull-ci-Azure-ARO-HCP-main-prod-e2e-parallel	Azure/ARO-HCP	presubmit	Registry content changed
pull-ci-Azure-ARO-HCP-main-prod-e2e-parallel-ocp-stable	Azure/ARO-HCP	presubmit	Registry content changed
pull-ci-Azure-ARO-HCP-main-prod-e2e-parallel-ocp-fast	Azure/ARO-HCP	presubmit	Registry content changed
pull-ci-Azure-ARO-HCP-main-prod-e2e-parallel-ocp-nightly	Azure/ARO-HCP	presubmit	Registry content changed
pull-ci-Azure-ARO-HCP-main-e2e-parallel	Azure/ARO-HCP	presubmit	Registry content changed
pull-ci-Azure-ARO-HCP-main-e2e-parallel-1-wave	Azure/ARO-HCP	presubmit	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-cleanup-delete-expired-dev-ci-shard0-resource-groups	N/A	periodic	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-integration-e2e-parallel	N/A	periodic	Ci-operator config changed
periodic-ci-Azure-ARO-HCP-main-periodic-cleanup-delete-expired-dev-pers-resource-groups	N/A	periodic	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-cleanup-delete-expired-integration-resource-groups	N/A	periodic	Ci-operator config changed
periodic-ci-Azure-ARO-HCP-main-periodic-cleanup-delete-expired-dev-ci-shard1-resource-groups	N/A	periodic	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-cleanup-delete-expired-dev-ci-shard2-resource-groups	N/A	periodic	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-stage-e2e-parallel	N/A	periodic	Ci-operator config changed
periodic-ci-Azure-ARO-HCP-main-periodic-prod-e2e-parallel-ocp-nightly	N/A	periodic	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-prod-e2e-parallel	N/A	periodic	Registry content changed
periodic-ci-Azure-ARO-HCP-main-periodic-cleanup-delete-expired-stage-resource-groups	N/A	periodic	Ci-operator config changed
periodic-ci-Azure-ARO-HCP-main-periodic-stage-e2e-parallel-ocp-nightly	N/A	periodic	Ci-operator config changed

A total of 27 jobs have been affected by this change. The above listing is non-exhaustive and limited to 25 jobs.

A full list of affected jobs can be found here

Interacting with pj-rehearse

Comment: /pj-rehearse to run up to 5 rehearsals
Comment: /pj-rehearse skip to opt-out of rehearsals
Comment: /pj-rehearse {test-name}, with each test separated by a space, to run one or more specific rehearsals
Comment: /pj-rehearse more to run up to 10 rehearsals
Comment: /pj-rehearse max to run up to 25 rehearsals
Comment: /pj-rehearse auto-ack to run up to 5 rehearsals, and add the rehearsals-ack label on success
Comment: /pj-rehearse list to get an up-to-date list of affected jobs
Comment: /pj-rehearse abort to abort all active rehearsals
Comment: /pj-rehearse network-access-allowed to allow rehearsals of tests that have the restrict_network_access field set to false. This must be executed by an openshift org member who is not the PR author

Once you are satisfied with the results of the rehearsals, comment: /pj-rehearse ack to unblock merge. When the rehearsals-ack label is present on your PR, merge will no longer be blocked by rehearsals.
If you would like the rehearsals-ack label removed, comment: /pj-rehearse reject to re-block merging.

[roivaz]

/pj-rehearse pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel

[openshift-merge-bot]

@roivaz: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[roivaz]

/pj-rehearse pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel

[openshift-merge-bot]

@roivaz: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[roivaz]

/pj-rehearse pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel

[openshift-merge-bot]

@roivaz: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[raelga]

/lgtm
/approve

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: raelga, roivaz

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• ci-operator/config/Azure/ARO-HCP/OWNERS [raelga,roivaz]
• ci-operator/step-registry/aro-hcp/OWNERS [raelga,roivaz]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[roivaz]

/pj-rehearse pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel

[openshift-merge-bot]

@roivaz: now processing your pj-rehearse request. Please allow up to 10 minutes for jobs to trigger or cancel.

[roivaz]

/hold

Blocked until we get DSv3 SKU restriction lifted in the new STG subscription (support req ID 2606160050001594) or we somehow switch the SKU for this particular sub.

[openshift-ci]

@roivaz: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
ci/rehearse/Azure/ARO-HCP/main/stage-e2e-parallel	f2ed65c	link	unknown	/pj-rehearse pull-ci-Azure-ARO-HCP-main-stage-e2e-parallel

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.