chore: remove iam:GetRole dependency

[jmdeal]

Fixes #N/A

Description
Drops the iam:GetRole dependency in favor of caching the result from iam:AddRoleToInstanceProfile. This isn't quite as airtight as the GetRole check since we'll still create an InstanceProfile each time the cache entry expires, so I've added a fail open attempt to delete the profile after a creation failure. If this does fail, we have the GC as a backstop.

How was this change tested?
make presubmit & /karpenter snapshot

Does this change impact docs?

• Yes, PR includes docs updates
• Yes, issue opened: #
• No

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[netlify]

✅ Deploy Preview for karpenter-docs-prod canceled.

Name	Link
🔨 Latest commit	76fbb3d
🔍 Latest deploy log	https://app.netlify.com/projects/karpenter-docs-prod/deploys/68b1d6777511050009acc415

[github-actions]

Preview deployment ready!

Preview URL: https://pr-8419.d18coufmbnnaag.amplifyapp.com

Built from commit 76fbb3dcc05733cb309985749bc53780945be639

[coveralls]

Pull Request Test Coverage Report for Build 17329251341

Warning: This coverage report may be inaccurate.

This pull request's base commit is no longer the HEAD commit of its target branch. This means it includes changes from outside the original pull request, including, potentially, unrelated coverage changes.

• For more information on this, see Tracking coverage changes with pull request builds.
• To avoid this issue with future PRs, see these Recommended CI Configurations.
• For a quick fix, rebase this PR at GitHub. Your next report should be accurate.

Details

• 56 of 91 (61.54%) changed or added relevant lines in 5 files are covered.
• 140 unchanged lines in 8 files lost coverage.
• Overall coverage decreased (-0.2%) to 67.188%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
pkg/fake/iamapi.go	2	9	22.22%
pkg/operator/operator.go	0	7	0.0%
pkg/providers/instanceprofile/instanceprofile.go	46	67	68.66%

Files with Coverage Reduction	New Missed Lines	%
pkg/fake/utils.go	2	95.09%
pkg/providers/instanceprofile/instanceprofile.go	2	78.49%
pkg/fake/ec2api.go	7	85.42%
pkg/fake/iamapi.go	9	57.69%
pkg/controllers/nodeclass/controller.go	11	68.55%
pkg/errors/errors.go	26	51.97%
pkg/controllers/nodeclass/validation.go	34	87.58%
test/pkg/environment/common/expectations.go	49	0.0%

Totals
Change from base Build 17246105559:	-0.2%
Covered Lines:	7611
Relevant Lines:	11328

---

💛 - Coveralls

[jmdeal]

/karpenter snapshot

[github-actions]

Snapshot successfully published to oci://021119463062.dkr.ecr.us-east-1.amazonaws.com/karpenter/snapshot/karpenter:0-f528a81f83cc19bfcc11e331a3f85fd23c2b6a0d.
To install you must login to the ECR repo with an AWS account:

aws ecr get-login-password --region us-east-1 | docker login --username AWS --password-stdin 021119463062.dkr.ecr.us-east-1.amazonaws.com

helm upgrade --install karpenter oci://021119463062.dkr.ecr.us-east-1.amazonaws.com/karpenter/snapshot/karpenter --version "0-f528a81f83cc19bfcc11e331a3f85fd23c2b6a0d" --namespace "kube-system" --create-namespace \
  --set "settings.clusterName=${CLUSTER_NAME}" \
  --set "settings.interruptionQueue=${CLUSTER_NAME}" \
  --set controller.resources.requests.cpu=1 \
  --set controller.resources.requests.memory=1Gi \
  --set controller.resources.limits.cpu=1 \
  --set controller.resources.limits.memory=1Gi \
  --wait

[jonathan-innis]

Nice work 🎉

[jonathan-innis]

LGTM 🚀

[jonathan-innis]

LGTM 🚀