K8SPG-911: Revert pg_tde support (#1504)

* Revert "K8SPG-911: Add pg_tde support (#1440)"

This reverts commit 8675ac6.

* fix unit tests

---------

Co-authored-by: Viacheslav Sarzhan <slava.sarzhan@percona.com>

Author: egegunes

build/crd/crunchy/generated/postgres-operator.crunchydata.com_postgresclusters.yaml

@@ -13594,53 +13594,6 @@ spec:
                 type: boolean
               extensions:
                 properties:
-                  pg_tde:
-                    properties:
-                      enabled:
-                        type: boolean
-                      vault:
-                        properties:
-                          caSecret:
-                            description: Name of the secret that contains the CA certificate
-                              for SSL verification.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                          host:
-                            description: Host of Vault server.
-                            type: string
-                          mountPath:
-                            default: secret/data
-                            description: The mount point on the Vault server where
-                              the key provider should store the keys.
-                            type: string
-                          tokenSecret:
-                            description: Name of the secret that contains the access
-                              token with read and write access to the mount path.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                        required:
-                        - host
-                        - tokenSecret
-                        type: object
-                    type: object
-                    x-kubernetes-validations:
-                    - message: vault is required for enabling pg_tde
-                      rule: '!has(self.enabled) || (has(self.enabled) && self.enabled
-                        == false) || has(self.vault)'
                   pgAudit:
                     type: boolean
                   pgRepack:
@@ -13652,11 +13605,6 @@ spec:
                   pgvector:
                     type: boolean
                 type: object
-                x-kubernetes-validations:
-                - message: to disable pg_tde first set enabled=false without removing
-                    vault and wait for pod restarts
-                  rule: '!has(oldSelf.pg_tde) || !has(oldSelf.pg_tde.vault) || !has(oldSelf.pg_tde.enabled)
-                    || !oldSelf.pg_tde.enabled || has(self.pg_tde.vault)'
               image:
                 description: |-
                   The image name to use for PostgreSQL containers. When omitted, the value
@@ -31023,10 +30971,6 @@ spec:
                     description: The PostgreSQL system identifier reported by Patroni.
                     type: string
                 type: object
-              pgTDERevision:
-                description: Identifies the pg_tde configuration that have been installed
-                  into PostgreSQL.
-                type: string
               pgbackrest:
                 description: Status information for pgBackRest
                 properties:

build/crd/percona/generated/pgv2.percona.com_perconapgclusters.yaml

@@ -13693,8 +13693,6 @@ spec:
                 description: The specification of extensions.
                 properties:
                   builtin:
-                    description: 'Deprecated: Use extensions.<extension> instead.
-                      This field will be removed after 2.11.0.'
                     properties:
                       pg_audit:
                         type: boolean
@@ -13724,78 +13722,6 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
-                  pg_audit:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_repack:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_stat_monitor:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_stat_statements:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_tde:
-                    properties:
-                      enabled:
-                        type: boolean
-                      vault:
-                        properties:
-                          caSecret:
-                            description: Name of the secret that contains the CA certificate
-                              for SSL verification.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                          host:
-                            description: Host of Vault server.
-                            type: string
-                          mountPath:
-                            default: secret/data
-                            description: The mount point on the Vault server where
-                              the key provider should store the keys.
-                            type: string
-                          tokenSecret:
-                            description: Name of the secret that contains the access
-                              token with read and write access to the mount path.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                        required:
-                        - host
-                        - tokenSecret
-                        type: object
-                    type: object
-                    x-kubernetes-validations:
-                    - message: vault is required for enabling pg_tde
-                      rule: '!has(self.enabled) || (has(self.enabled) && self.enabled
-                        == false) || has(self.vault)'
-                  pgvector:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
                   storage:
                     properties:
                       bucket:
@@ -13878,11 +13804,6 @@ spec:
                         type: string
                     type: object
                 type: object
-                x-kubernetes-validations:
-                - message: to disable pg_tde first set enabled=false without removing
-                    vault and wait for pod restarts
-                  rule: '!has(oldSelf.pg_tde) || !has(oldSelf.pg_tde.vault) || !has(oldSelf.pg_tde.enabled)
-                    || !oldSelf.pg_tde.enabled || has(self.pg_tde.vault)'
               image:
                 description: The image name to use for PostgreSQL containers.
                 type: string

config/crd/bases/pgv2.percona.com_perconapgclusters.yaml

@@ -14332,8 +14332,6 @@ spec:
                 description: The specification of extensions.
                 properties:
                   builtin:
-                    description: 'Deprecated: Use extensions.<extension> instead.
-                      This field will be removed after 2.11.0.'
                     properties:
                       pg_audit:
                         type: boolean
@@ -14363,78 +14361,6 @@ spec:
                     description: PullPolicy describes a policy for if/when to pull
                       a container image
                     type: string
-                  pg_audit:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_repack:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_stat_monitor:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_stat_statements:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
-                  pg_tde:
-                    properties:
-                      enabled:
-                        type: boolean
-                      vault:
-                        properties:
-                          caSecret:
-                            description: Name of the secret that contains the CA certificate
-                              for SSL verification.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                          host:
-                            description: Host of Vault server.
-                            type: string
-                          mountPath:
-                            default: secret/data
-                            description: The mount point on the Vault server where
-                              the key provider should store the keys.
-                            type: string
-                          tokenSecret:
-                            description: Name of the secret that contains the access
-                              token with read and write access to the mount path.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                        required:
-                        - host
-                        - tokenSecret
-                        type: object
-                    type: object
-                    x-kubernetes-validations:
-                    - message: vault is required for enabling pg_tde
-                      rule: '!has(self.enabled) || (has(self.enabled) && self.enabled
-                        == false) || has(self.vault)'
-                  pgvector:
-                    properties:
-                      enabled:
-                        type: boolean
-                    type: object
                   storage:
                     properties:
                       bucket:
@@ -14517,11 +14443,6 @@ spec:
                         type: string
                     type: object
                 type: object
-                x-kubernetes-validations:
-                - message: to disable pg_tde first set enabled=false without removing
-                    vault and wait for pod restarts
-                  rule: '!has(oldSelf.pg_tde) || !has(oldSelf.pg_tde.vault) || !has(oldSelf.pg_tde.enabled)
-                    || !oldSelf.pg_tde.enabled || has(self.pg_tde.vault)'
               image:
                 description: The image name to use for PostgreSQL containers.
                 type: string

config/crd/bases/postgres-operator.crunchydata.com_postgresclusters.yaml

@@ -13554,53 +13554,6 @@ spec:
                 type: boolean
               extensions:
                 properties:
-                  pg_tde:
-                    properties:
-                      enabled:
-                        type: boolean
-                      vault:
-                        properties:
-                          caSecret:
-                            description: Name of the secret that contains the CA certificate
-                              for SSL verification.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                          host:
-                            description: Host of Vault server.
-                            type: string
-                          mountPath:
-                            default: secret/data
-                            description: The mount point on the Vault server where
-                              the key provider should store the keys.
-                            type: string
-                          tokenSecret:
-                            description: Name of the secret that contains the access
-                              token with read and write access to the mount path.
-                            properties:
-                              key:
-                                type: string
-                              name:
-                                type: string
-                            required:
-                            - key
-                            - name
-                            type: object
-                        required:
-                        - host
-                        - tokenSecret
-                        type: object
-                    type: object
-                    x-kubernetes-validations:
-                    - message: vault is required for enabling pg_tde
-                      rule: '!has(self.enabled) || (has(self.enabled) && self.enabled
-                        == false) || has(self.vault)'
                   pgAudit:
                     type: boolean
                   pgRepack:
@@ -13612,11 +13565,6 @@ spec:
                   pgvector:
                     type: boolean
                 type: object
-                x-kubernetes-validations:
-                - message: to disable pg_tde first set enabled=false without removing
-                    vault and wait for pod restarts
-                  rule: '!has(oldSelf.pg_tde) || !has(oldSelf.pg_tde.vault) || !has(oldSelf.pg_tde.enabled)
-                    || !oldSelf.pg_tde.enabled || has(self.pg_tde.vault)'
               image:
                 description: |-
                   The image name to use for PostgreSQL containers. When omitted, the value
@@ -30921,10 +30869,6 @@ spec:
                     description: The PostgreSQL system identifier reported by Patroni.
                     type: string
                 type: object
-              pgTDERevision:
-                description: Identifies the pg_tde configuration that have been installed
-                  into PostgreSQL.
-                type: string
               pgbackrest:
                 description: Status information for pgBackRest
                 properties: