deploy: add CSIDriver object and remove attacher

```bash

cd deploy/kubernetes

kubectl create -f provisioner.yaml

kubectl create -f attacher.yaml

kubectl create -f driver.yaml

kubectl create -f csi-s3.yaml

```

requirements:

  k8s_version: ">=1.13"

images:

  - full: images.attacher

  - full: images.registrar

  - full: images.provisioner

  - full: images.csi

apiVersion: v1

kind: ServiceAccount

metadata:

  name: csi-attacher-sa

  namespace: {{ .Release.Namespace }}

---

kind: ClusterRole

apiVersion: rbac.authorization.k8s.io/v1

metadata:

  name: external-attacher-runner

rules:

  - apiGroups: [""]

    resources: ["secrets"]

    verbs: ["get", "list"]

  - apiGroups: [""]

    resources: ["events"]

    verbs: ["get", "list", "watch", "update"]

  - apiGroups: [""]

    resources: ["persistentvolumes"]

    verbs: ["get", "list", "watch", "update"]

  - apiGroups: [""]

    resources: ["nodes"]

    verbs: ["get", "list", "watch"]

  - apiGroups: ["storage.k8s.io"]

    resources: ["csinodes"]

    verbs: ["get", "list", "watch"]

  - apiGroups: ["storage.k8s.io"]

    resources: ["volumeattachments"]

    verbs: ["get", "list", "watch", "update", "patch"]

  - apiGroups: ["storage.k8s.io"]

    resources: ["volumeattachments/status"]

    verbs: ["patch"]

---

kind: ClusterRoleBinding

apiVersion: rbac.authorization.k8s.io/v1

metadata:

  name: csi-attacher-role

subjects:

  - kind: ServiceAccount

    name: csi-attacher-sa

    namespace: {{ .Release.Namespace }}

roleRef:

  kind: ClusterRole

  name: external-attacher-runner

  apiGroup: rbac.authorization.k8s.io

---

# needed for StatefulSet

kind: Service

apiVersion: v1

metadata:

  name: csi-attacher-s3

  namespace: {{ .Release.Namespace }}

  labels:

    app: csi-attacher-s3

spec:

  selector:

    app: csi-attacher-s3

  ports:

    - name: csi-s3-dummy

      port: 65535

---

kind: StatefulSet

apiVersion: apps/v1

metadata:

  name: csi-attacher-s3

  namespace: {{ .Release.Namespace }}

spec:

  serviceName: "csi-attacher-s3"

  replicas: 1

  selector:

    matchLabels:

      app: csi-attacher-s3

  template:

    metadata:

      labels:

        app: csi-attacher-s3

    spec:

      serviceAccount: csi-attacher-sa

      tolerations:

        - key: node-role.kubernetes.io/master

          operator: Exists

        - key: CriticalAddonsOnly

          operator: Exists

      containers:

        - name: csi-attacher

          image: {{ .Values.images.attacher }}

          args:

            - "--v=4"

            - "--csi-address=$(ADDRESS)"

          env:

            - name: ADDRESS

              value: {{ .Values.kubeletPath }}/plugins/ru.yandex.s3.csi/csi.sock

          imagePullPolicy: "IfNotPresent"

          volumeMounts:

            - name: socket-dir

              mountPath: {{ .Values.kubeletPath }}/plugins/ru.yandex.s3.csi

      volumes:

        - name: socket-dir

          hostPath:

            path: {{ .Values.kubeletPath }}/plugins/ru.yandex.s3.csi

            type: DirectoryOrCreate

apiVersion: storage.k8s.io/v1

kind: CSIDriver

metadata:

  name: ru.yandex.s3.csi

spec:

  attachRequired: false

  podInfoOnMount: true

  fsGroupPolicy: File # added in Kubernetes 1.19, this field is GA as of Kubernetes 1.23

  volumeLifecycleModes: # added in Kubernetes 1.16, this field is beta

    - Persistent

---

images:

  # Source: quay.io/k8scsi/csi-attacher:v3.0.1

  attacher: cr.yandex/crp9ftr22d26age3hulg/yandex-cloud/csi-s3/csi-attacher:v3.0.1

  # Source: quay.io/k8scsi/csi-node-driver-registrar:v1.2.0

  registrar: cr.yandex/crp9ftr22d26age3hulg/yandex-cloud/csi-s3/csi-node-driver-registrar:v1.2.0

  # Source: quay.io/k8scsi/csi-provisioner:v2.1.0