cert: use MeshRootCertificate on startup

[keithmattix]

Description:
Use MRC to initialize certificate manager on startup. Fixes #4713

Testing done:
Added unit test to verify that the MRC is used during startup

Affected area:

Functional Area
Certificate Management	[X]

Please answer the following questions with yes/no.

1. Does this change contain code from or inspired by another project? no

   • Did you notify the maintainers and provide attribution? no

2. Is this a breaking change? no

3. Has documentation corresponding to this change been updated in the osm-docs repo (if applicable)? no

[codecov-commenter]

Codecov Report

Merging #4816 (6589808) into main (5ab34a3) will decrease coverage by 0.04%.
The diff coverage is 73.14%.

@@            Coverage Diff             @@
##             main    #4816      +/-   ##
==========================================
- Coverage   68.54%   68.49%   -0.05%     
==========================================
  Files         224      225       +1     
  Lines       16170    16325     +155     
==========================================
+ Hits        11083    11182      +99     
- Misses       5035     5091      +56     
  Partials       52       52              

Flag	Coverage Δ
unittests	68.49% <73.14%> (-0.05%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
cmd/osm-controller/osm-controller.go	13.76% <0.00%> (+0.16%)	⬆️
pkg/certificate/types.go	100.00% <ø> (ø)
pkg/certificate/providers/mrc.go	35.48% <35.48%> (ø)
cmd/osm-bootstrap/osm-bootstrap.go	48.05% <50.00%> (+1.22%)	⬆️
pkg/certificate/manager.go	77.43% <65.85%> (-10.36%)	⬇️
pkg/certificate/fake_manager.go	71.64% <94.44%> (+3.89%)	⬆️
pkg/certificate/providers/config.go	76.96% <95.83%> (+1.45%)	⬆️
pkg/certificate/providers/compat.go	71.42% <100.00%> (-28.58%)	⬇️
... and 4 more

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 5ab34a3...6589808. Read the comment docs.

[nojnhuh]

If osm-bootstrap always creates a MRC, will this branch ever be hit?

[keithmattix]

@jaellio can correct me, but I think we're still allowing customers to NOT use MRCs and to keep using MeshConfigs for a couple of releases (configurable somehow through helm?). I'm totally down to remove the logic if that's not the case and we're making a hard cut in v1.2. I'm just trying to be mindful of backwards compatibility

[jaellio]

Right now a MRC is always created by osm-bootstrap. If we want to support the option of not using the MRC created on startup to configure the Manager, maybe it would be best to make using the MRC an opt in option on install?

[keithmattix]

I don't have strong opinions either way. If we ARE making a hard cut though, we're likely going to want some documentation on the change and instructions on how to switch

[nojnhuh]

LGTM once conflicts are resolved.