move balancer creation out to a separate cr

[doy-materialize]

Motivation

simplify our resource management (this should help ensure balancer stuff is decoupled from the environmentd rollout code)

Tips for reviewer

sorry about the size - most of this is just moving code around but it wasn't really easy to make a single pr smaller than this

Checklist

• This PR has adequate test coverage / QA involvement has been duly considered. (trigger-ci for additional test/nightly runs)
• This PR has an associated up-to-date design doc, is a design doc (template), or is sufficiently small to not require a design.
• If this PR evolves an existing $T ⇔ Proto$T mapping (possibly in a backwards-incompatible way), then it is tagged with a T-proto label.
• If this PR will require changes to cloud orchestration or tests, there is a companion cloud PR to account for those changes that is tagged with the release-blocker label (example).
• If this PR includes major user-facing behavior changes, I have pinged the relevant PM to schedule a changelog post.

[jubrad]

I think we should add an orchestratord test for this.
test/orchestratord/mzcompose.py

Perhaps not now, but at some point we'll also want to update our automatic doc generation to include balancerd and console

[jubrad]

Should we be able to determine this from the environment name.

[doy-materialize]

not in general - we have a specific naming convention in cloud, but it's not required for self-managed

[jubrad]

I think something like UpstreamTargetting might be more in line with the terminology used in proxies.

[doy-materialize]

should i also change the field names? pub static_upstream_targetting: Option<StaticUpstreamTargettingConfig> or something like that?

[jubrad]

Is this needed before we merge, or just before we adopt the new model in cloud?

[doy-materialize]

i think we can wait to figure this out for a future pr

[jubrad]

Are these exclusive? If so should this be an enum?

[doy-materialize]

yeah - i was considering that but i'm not super sure how tagged union style enums work in the context of a crd (like how would it look in the resource yaml?), and we're also already deriving Default on the crd struct which would also be awkward (we could probably change that but not sure what else that would require). i imagine we're probably going to be iterating on all of these crds going forward, i'm not super worried about being able to write the migration logic or something like that if necessary in the future.

[jubrad]

Fair enough. Would it be worth clarifying that this resource is in development... clearly the resource is v1alpha1 but that might be a bit undercut by the materialize CRD also being v1alpha1.

[jubrad]

Not for this PR but I would love it if this was configurable so we could use ed25519 here, I think it would drastically reduce CPU usage on balancers.. I think this PR will make making that configurable way easier.

[doy-materialize]

yeah, that would definitely be nice!

[doy-materialize]

we already have tests that the balancerd pods are created correctly - is there something specific you think we should test about the crd?

[jubrad]

we already have tests that the balancerd pods are created correctly - is there something specific you think we should test about the crd?

I was thinking a test that explicitly created the balancerd CR, but perhaps something that does some validation of the CR that gets created, or ensure delete logic cleans up assoicated CRs and sub resources.