cleanup: Delete unused packages

Signed-off-by: LogicalShark <maralder@google.com>

Minor doc fixes and typos

Use native build platform to speed up build times for multiarch builds.

chore: bump go to 1.25.6

Add Resource Annotations to L4 LB Service

An adapted copy of similar changes done to ingress-gce:
* two new GCE flags `enable-l4-deny-firewall` and `enable-l4-deny-firewall-rollback-cleanup`,
* adds deny firewall functionality with correct order for provisioning/cleanup, the new firewall is following the previous naming scheme and adds "-deny" suffix at the end,
* exports metric "number_of_l4_netlbs" including firewall deny state and general status,
* vendors in `cmpopts` for easier testing.

Deny firewall for external services

Integrated the test/e2e directory into the Go workspace to resolve module resolution and version skew issues.

Previously, running 'go test -c' within 'test/e2e' failed locally because:
1. The root 'go.work' file excluded './test/e2e', causing Go to treat it as a sub-package of the root module, which conflicted with the presence of 'test/e2e/go.mod'.
2. There was a version mismatch in 'test/e2e/go.mod' (Kubernetes v1.31.5 vs v1.34.2 in the root), leading to 'undefined' symbol errors when building without workspace mode.

Changes:
- Updated 'go.work' and 'tools/update_vendor.sh' to include './test/e2e'.
- Updated 'test/e2e/go.mod' to use Kubernetes v1.34.2 and renamed the module to 'k8s.io/cloud-provider-gcp/test/e2e' to match the directory structure.
- Fixed API compatibility issues in 'test/e2e/loadbalancer.go' (Scale API change) and 'test/e2e/network_tiers.go' (Logf format string).
- Updated 'test/e2e/firewall.go' to use the modern 'framework.GetControlPlaneNodes' helper.

Signed-off-by: LogicalShark <maralder@google.com>

Fix local build of e2e test binary

Update .gitignore to exclude local build artifacts

Signed-off-by: LogicalShark <maralder@google.com>

Add `make test` to replace `bazel test`

Migrates the release-tars build process from Bazel to Make

Signed-off-by: LogicalShark <maralder@google.com>

Sync go.work.sum in dependabot PRs

Because k8s deps are tightly coupled, they should ideally be updated together and isolated from other deps update. Also, clean up configs for obsolete directories.

…es#1052)

fix: move dependabot-sync.yml under workflows

instead of GitHub Actions.

Implement standard adaptiveipam gRPC server (daemon_server.go) to listen for pod IP allocation requests over a Unix Domain Socket. And implement rpc AllocatePodIP and DeallocatePodIP.
Implemented retries for DB errors within daemon serer.
Implement new methods in the Store to interface with the SQLite DB, supporting idempotency for all:
AddCIDR: Add CIDR blocks and seeds individual IP addresses.
AllocateIPv4: Find available IP slots and flips is_allocated to true.
ReleaseIPByOwner: Releases pod IP addresses by owner identifiers and sets cooldown period timestamp.
Threading model:

Each RPC request can call store concurrently to optimize request latency. The DB transactions guarantees thread safet between concurrent requests. Existing WAL mode and busy_timeout supports high concurrent read/write operations without locking.
No implementation for IPv6 yet.

…s#1069)

…n-to-emeritus

Move jprzychodzen to emeritus approvers

* fix: use commit SHA instead of tags for actions

I think k8s repos started to enforce using commit SHA (which makes sense from security perspective) because the workflow is currently failing with `The action actions/checkout@v4 is not allowed in kubernetes/cloud-provider-gcp because all actions must be pinned to a full-length commit SHA.`

Also update dependabot to handle github actions.

* fix: use commit SHA for actions/setup-go

…rce-specific mutex pool for GCE load balancer operations (except external) and protect with feature flag