Introduce apiserver.config.k8s.io/v1 and use standard method for parsing encryption config file

[stlaz]

What this PR does / why we need it:
This PR reworks handling of the configuration file for encryption at rest. Now it uses a standard approach for parsing and also it supports versioning. Also bumps encryption config to v1 (see #63032 (comment) for reasons)

/sig auth
/release-note-none
CC @simo5 @marrrvin @luxas

Fixes: #61420
Fixes: #61599

Obsoletes PR #63032

The API server encryption configuration file format has graduated to stable and moved to `apiVersion: apiserver.config.k8s.io/v1` and `kind: EncryptionConfiguration`.

[stlaz]

/release-note-none

[neolit123]

/ok-to-test
probably best to add a release note for this.

[stlaz]

/retest
Thanks, I'll add a release note on the way.

[stlaz]

Added a release note.

[stlaz]

CC @liggitt @sttts @ericchiang as you were reviewing the original PR, too.

[sttts]

apiserverconfigv1

[sttts]

apiserverconfigv1

[dims]

/milestone v1.12

We need this for 1.12 right? please clear milestone if not

[liggitt]

apologies for the delay on this and #63032 ... the bandwidth for component config review in 1.12 got consumed by the coarse-grained changes to split by component (#67233). I anticipate more progress being made on the apiserver config bits post-freeze.

[liggitt]

/lgtm
/approve

[liggitt]

staging godeps need updating (hack/update-staging-godeps.sh)

[liggitt]

cc @immutableT for gce encryption config change. can you review and tag the appropriate approver?

[stlaz]

Updated godeps. Hopefully everything will be alright now.

[liggitt]

/lgtm

[liggitt]

/assign @mikedanese
for approval of cluster/gce changes

[mikedanese]

/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: liggitt, mikedanese, stlaz

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• cluster/gce/OWNERS [mikedanese]
• staging/src/k8s.io/apiserver/pkg/apis/OWNERS [liggitt]
• staging/src/k8s.io/apiserver/pkg/server/options/encryptionconfig/OWNERS [liggitt]
• test/OWNERS [liggitt,mikedanese]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[cjwagner]

Please add the appropriate priority/* label to this PR.

[liggitt]

/priority important-soon

[liggitt]

@stlaz can you open a PR against https://github.com/kubernetes/website/tree/dev-1.13 updating the documentation around the encryption config file, noting the apiVersion and kind as of 1.13?

[liggitt]

/retest

[AishSundar]

/priority critical-urgent
/remove-priority important-soon

[k8s-ci-robot]

@stlaz: The following test failed, say /retest to rerun them all:

Test name	Commit	Details	Rerun command
pull-kubernetes-e2e-gke	628d1fe	link	/test pull-kubernetes-e2e-gke

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[stlaz]

@liggitt I will open a doc PR later today.