Replace gcloud and gsutil shell invocations with client libraries in tools/kops

[hdp617]

The tools/kops utility currently relies on executing external CLI commands (gcloud and gsutil) for various GCP operations in pkg/kops/gcp.go. This approach introduces external dependencies, makes error handling brittle, and is less efficient than direct API calls.
We should refactor these methods to use the GCP go client libraries.

Current Usage (pkg/kops/gcp.go)

1. Account Discovery:

   saCmd := exec.Command("gcloud", "config", "list", "--format", "value(core.account)")

2. SSH Configuration:

   cmd := exec.Command("gcloud", "compute", "--project="+c.GCPProject, "config-ssh", "--ssh-key-file="+c.SSHPrivateKey)

3. GCS Bucket Management (gsutil):
   • gsutil ls to check if the bucket exists.
   • gsutil mb to create the bucket.
   • gsutil ubla set off to disable uniform bucket-level access.
   • gsutil iam ch to set IAM permissions.

Proposed Changes

Refactor pkg/kops/gcp.go to use the client libraries.

1. Replace gcloud config list:
   • Use cloud.google.com/go/compute/metadata.
2. Replace gcloud compute config-ssh:
   • Use cloud.google.com/go/compute/apiv1.
3. Replace gsutil:
   • Use cloud.google.com/go/storage.

[k8s-ci-robot]

This issue is currently awaiting triage.

If the repository mantainers determine this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.