k8s: Fix potential edge case where a second cluster could get started

[a-robinson]

• Add an init container that checks for whether any other peers exist
• Re-enable the tolerate-unready-endpoints option. It's bprashanth's
  recommendation, and makes the init container less likely to miss
  anything.
• Switch from joining cockroachdb to joining cockroachdb-public.
  This is needed due to re-enabling tolerate-unready-endpoints.

I wish we could just directly re-use the peer-finder container without
having to wrap it, but I already burned too much time trying to get it
to accepts non-trivial commands in its --on-start parameter. Almost
everything I tried would just get treated to a "No such file or
directory" error.

@tschottdorf @bprashanth

---

This change is

[tbg]

LGTM

[tbg]

Is there a link to some docs you could put in here to explain "how things work"? In particular, cockroach-k8s-init will be run with what parameters and what stdin?

The cockroach-k8s-init container has an entry point /peer-finder, but then there's also the on-start.sh script which does the actual work but it's not clear how it's invoked. A short overview would be helpful.

[a-robinson]

Done.

[jseldess]

@a-robinson, I can't quite tell: Is there any impact here on our kubernetes docs? https://www.cockroachlabs.com/docs/orchestrate-cockroachdb-with-kubernetes.html

[a-robinson]

@jseldess - nope, this shouldn't require any docs changes. All it's really doing from the user's perspective is fixing an edge case that could only come up if the first node lost its data.

[a-robinson]

Alright, these same changes made it through review in the core k8s repo (kubernetes/kubernetes#35922) and through initial review in the charts repo (helm/charts#167), so I think it's good to go.