Removed awk from kubeadm reset

[Klaven]

removed awk usage from kubeadm reset in favor of native golang calls
that are not vulnerable to expansion.

What type of PR is this?

Uncomment only one /kind <> line, hit enter to put that in a new line, and remove leading whitespaces from that line:

/kind api-change

/kind bug

/kind cleanup
/kind design
/kind documentation
/kind failing-test
/kind feature
/kind flake

What this PR does / why we need it:
This PR was created based on results from the security assessment,

Which issue(s) this PR fixes:

Fixes #
xref#/kubernetes/kubeadm/issues/1715

Special notes for your reviewer:

@neolit123 :
Wanted to get feedback. in it's current state it's not very testable. But at the same time I did not want to pollute the core change with changes not related to removing awk.

also, I would not expect a function called absoluteKubeletRunDirectory to unmount directories. but again thought this change would pollute the core change. If it is acceptable I will make a new PR later this week to address this.

Does this PR introduce a user-facing change?:

kubeadm reset: unmount directories under "/var/lib/kubelet" for linux only

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:

[Klaven]

Added WIP due to testing needing to be run on at least one of the other platforms. I should be able to do this over the weekend.

Tested on Ubuntu 18.04 server vm and successfully unmounted correct directories.

[Klaven]

/test pull-kubernetes-e2e-gce

[neolit123]

Added WIP due to testing needing to be run on at least one of the other platforms. I should be able to do this over the weekend.

i think it's fine to merge without testing !linux as its just a NOOP there.

Does this PR introduce a user-facing change?:
perhaps we should add a release note for this one:

kubeadm: unmount directories under "/var/lib/kubelet" for linux only

thanks.

/approve
/priority backlog
/assign @rosti
PTAL too.

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: Klaven, neolit123

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• cmd/kubeadm/OWNERS [neolit123]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[rosti]

Thanks @Klaven !
Overall, this looks OK, but we may need to think on better platform split for reset (WRT the Windows side of things).

[rosti]

The original call did not imply MNT_FORCE. Also, that flag is somewhat misleading. It is actually used to force unmount a filesystem, which is a remote one and the connection to the server is lost. It does not force unmount a filesystem if it has opened handles.

[Klaven]

I can remove this if you like. will have to be tonight as it will mean I need to retest it.

[Klaven]

this has been removed and tested. (testing methodology posted.) I agree, it's misleading and really not helpful in this case. Also not used on the original so even if we wanted to add it would probably be better to add in new PR.

[rosti]

Let's not do premature platform splitting in reset at this point. It's almost all Linux dependent and we need to have the whole picture in mind to take the best approach.

[neolit123]

but this function certainly should not run on _windows.go (NO-OP).

[Klaven]

@rosti I guess I don't understand, if I don't have this file the code will not pass checks because it does not have the functions used in the unmount_linux.go file on windows and mac. For both windows and mac this is a no-op. How are you wanting me to handle compiling for windows and linux if not with this file?

[rosti]

Ok, we can leave it like this for now, but we may need to redesign and rename the files.
The question is if we should place absoluteKubeletRunDirectory in the platform specific portions of cleanupnode.go? So the idea is to have cleanupnode_unix.go and cleanupnode_windows.go with absoluteKubeletRunDirectory and a few other things in it.

But, certainly, that must be done in another PR.

[Klaven]

my test: (with removal of force)

>  sudo cat /proc/mounts | grep /var/lib/kubelet
/dev/loop5 /var/lib/kubelet ext4 rw,relatime,data=ordered 0 0

> sudo kubeadm reset
....

>  sudo cat /proc/mounts | grep /var/lib/kubelet

[rosti]

A thing, that I've missed on the first run here is, that we need absoluteKubeletRunDirectory to be passed to unmountKubeletDirectory (instead of using a const there).

[neolit123]

+1

[rosti]

Thanks @Klaven !
Let's merge these as they are, but first, please, squash your commits.

[Klaven]

/test pull-kubernetes-kubemark-e2e-gce-big

[rosti]

/lgtm