Allow disabling particular driver services

[rfranzke]

What type of PR is this?
/kind feature

What this PR does / why we need it:
This PR adds the new zone field to the GCE cloud config and makes the controller server independent of the GCE metadata service if both project-id and zone are present in the config.
Also, it adds two new command line flags run-controller-service and run-node-service (both default to true) which allow to particularly disable individual services if not required.

This enables the use-case of running the CSI controllers (csi-provisioner, csi-attacher, etc., + the driver controller) separately outside of the cluster, and not necessarily on an GCE compute instance.

Does this PR introduce a user-facing change?:

It is now possible to disable the controller service by setting `--run-controller-service=false`. Similarly, it is possible to disable the node service by setting `--run-node-service=false`. The latter enables running the controller server of the GCE PD driver separately/outside of the cluster it is serving. Also, if both `project-id` and `zone` are specified in the GCE cloud config then the controller server does no longer try to contact the GCE metadata service.

[k8s-ci-robot]

Welcome @rfranzke!

It looks like this is your first PR to kubernetes-sigs/gcp-compute-persistent-disk-csi-driver 🎉. Please refer to our pull request process documentation to help your PR have a smooth ride to approval.

You will be prompted by a bot to use commands during the review process. Do not be afraid to follow the prompts! It is okay to experiment. Here is the bot commands documentation.

You can also check if kubernetes-sigs/gcp-compute-persistent-disk-csi-driver has its own contribution guidelines.

You may want to refer to our testing guide if you run into trouble with your tests not passing.

If you are having difficulty getting your pull request seen, please follow the recommended escalation practices. Also, for tips and tricks in the contribution process you may want to read the Kubernetes contributor cheat sheet. We want to make sure your contribution gets all the attention it needs!

Thank you, and welcome to Kubernetes. 😃

[k8s-ci-robot]

Hi @rfranzke. Thanks for your PR.

I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[rfranzke]

/assign @msau42

[msau42]

/ok-to-test
/assign @davidz627

[rfranzke]

/retest

[rfranzke]

@davidz627 @msau42 @jingxu97 any feedback for this PR?

[hantaowang]

why have SetupGCEDriver1 take runAsController as a *bool instead of just the bool? Seems weird because then in all tests you declare a bool and then take the address of it, despite the bool being a built in type.

Another nit is that (correct me if im wrong) but I don't think runAsController can ever be a nil pointer since it defaults to false.

Its been a while since I've looked at this code but it looks like your changes to pkg/gce-cloud-provider/compute/gce.go and renaming gceConfigFilePath are separate from the goal of this PR.

[rfranzke]

why have SetupGCEDriver1 take runAsController as a *bool instead of just the bool? Seems weird because then in all tests you declare a bool and then take the address of it, despite the bool being a built in type.
Another nit is that (correct me if im wrong) but I don't think runAsController can ever be a nil pointer since it defaults to false.

Thanks, valid feedback, I improved it, PTAL.

Its been a while since I've looked at this code but it looks like your changes to pkg/gce-cloud-provider/compute/gce.go

Yes, they are related to the goal. Without this change you can't run the driver in the controller mode on a non-GCE instance.

and renaming gceConfigFilePath are separate from the goal of this PR.

This is not related to the goal. If it matters that much I can also keep it as it was before.

[davidz627]

mostly looks good, this is something we've been thinking about for a while so thank you for picking it up :)

[rfranzke]

Thanks for your feedback @davidz627, can you now check again? I updated the PR based on your suggestions. Please double-check the docs section.

[rfranzke]

/retest

[davidz627]

@rfranzke I think I understand what you're trying to do now - please let me know if I'm mistaken. I've added comments for both "using local or client configuration" (what I think you're trying to do). As well as for "disabling certain driver services" (what this PR description and title led me to believe as the goal)

[rfranzke]

Hi again, meanwhile I had time to update the PR.

I was first trying to implement @davidz627's suggestion (#449 (comment)), however, I reached a point where it became clear that this isn't enough for my use-case.

Just to reiterate: I want to allow running the controller server of the GCE PD CSI driver separately/outside of the cluster that it is serving - potentially not even on a GCE instance.
With only adding zone to the GCE cloud config and making the controller server independent of the GCE metadata service this would not be possible because the node server would still be activated - and it is relying on the metadata service.

I reached out to @davidz627 via Slack and we agreed on introducing the earlier discussed run-controller-service and run-node-service flags that allow disabling the particular services individually. This enables use-cases like mine, but probably even more.

TL;DR - The PR now comprises two commits:

1. Making the controller service independent of the GCE metadata service if both project-id and zone are specified in its config
2. Allow disabling the controller and/or node service via command line flags

The tests are now clearly instantiating only the objects that are really needed for the various servers (e.g., the identity server test does no longer create a fake metadata service).

Please take a look, I'm happy to get your feedback on this.

[davidz627]

2 small comments, LGTM besides those two!!
Thanks for the iterations. This looks brilliant :)

[rfranzke]

/retest

[davidz627]

/lgtm

[davidz627]

nice

[davidz627]

/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: davidz627, rfranzke

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [davidz627]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment