Remove salt support for providers that no longer exist.

cluster/get-kube.sh

@@ -24,14 +24,6 @@
 #  Set KUBERNETES_PROVIDER to choose between different providers:
 #  Google Compute Engine [default]
 #   * export KUBERNETES_PROVIDER=gce; wget -q -O - https://get.k8s.io | bash
-#  Libvirt (with CoreOS as a guest operating system)
-#   * export KUBERNETES_PROVIDER=libvirt-coreos; wget -q -O - https://get.k8s.io | bash
-#  Vagrant (local virtual machines)
-#   * export KUBERNETES_PROVIDER=vagrant; wget -q -O - https://get.k8s.io | bash
-#  VMWare Photon Controller
-#   * export KUBERNETES_PROVIDER=photon-controller; wget -q -O - https://get.k8s.io | bash
-#  OpenStack-Heat
-#   * export KUBERNETES_PROVIDER=openstack-heat; wget -q -O - https://get.k8s.io | bash
 #
 #  Set KUBERNETES_RELEASE to choose a specific release instead of the current
 #    stable release, (e.g. 'v1.3.7').

cluster/saltbase/salt/base.sls

@@ -24,20 +24,6 @@ pkg-core:
       - git
 {% endif %}
 
-# Fix ARP cache issues on AWS by setting net.ipv4.neigh.default.gc_thresh1=0
-# See issue #23395
-{% if grains.get('cloud') == 'aws' %}
-# Work around Salt #18089: https://github.com/saltstack/salt/issues/18089
-# (we also have to give it a different id from the same fix elsewhere)
-99-salt-conf-with-a-different-id:
-  file.touch:
-    - name: /etc/sysctl.d/99-salt.conf
-
-net.ipv4.neigh.default.gc_thresh1:
-  sysctl.present:
-    - value: 0
-{% endif %}
-
 /usr/local/share/doc/kubernetes:
   file.directory:
     - user: root

cluster/saltbase/salt/cni/init.sls

@@ -24,18 +24,3 @@ cni-tar:
     - source_hash: md5=9534876FAE7DBE813CDAB404DC1F9219
     - archive_format: tar
     - if_missing: /home/kubernetes/bin
-
-{% if grains['cloud'] is defined and grains.cloud in [ 'vagrant' ]  %}
-# Install local CNI network plugins in a Vagrant environment
-cmd-local-cni-plugins:
-   cmd.run:
-      - name: |
-         cp -v /vagrant/cluster/network-plugins/cni/bin/* /home/kubernetes/bin/.
-         chmod +x /home/kubernetes/bin/*
-cmd-local-cni-config:
-   cmd.run:
-      - name: |
-         cp -v /vagrant/cluster/network-plugins/cni/config/* /etc/cni/net.d/.
-         chown root:root /etc/cni/net.d/*
-         chmod 744 /etc/cni/net.d/*
-{% endif -%}

cluster/saltbase/salt/docker/init.sls

@@ -344,37 +344,6 @@ net.ipv4.ip_forward:
 {% set override_deb_sha1='' %}
 {% set override_docker_ver='' %}
 
-{% elif grains.get('cloud', '') == 'aws'
-   and grains.get('os_family', '') == 'Debian'
-   and grains.get('oscodename', '') == 'jessie' -%}
-# TODO: Get from google storage?
-{% set docker_pkg_name='docker-engine' %}
-{% set override_docker_ver='1.11.2-0~jessie' %}
-{% set override_deb='docker-engine_1.11.2-0~jessie_amd64.deb' %}
-{% set override_deb_url='http://apt.dockerproject.org/repo/pool/main/d/docker-engine/docker-engine_1.11.2-0~jessie_amd64.deb' %}
-{% set override_deb_sha1='c312f1f6fa0b34df4589bb812e4f7af8e28fd51d' %}
-
-# Ubuntu presents as os_family=Debian, osfullname=Ubuntu
-{% elif grains.get('cloud', '') == 'aws'
-   and grains.get('os_family', '') == 'Debian'
-   and grains.get('oscodename', '') == 'trusty' -%}
-# TODO: Get from google storage?
-{% set docker_pkg_name='docker-engine' %}
-{% set override_docker_ver='1.11.2-0~trusty' %}
-{% set override_deb='docker-engine_1.11.2-0~trusty_amd64.deb' %}
-{% set override_deb_url='http://apt.dockerproject.org/repo/pool/main/d/docker-engine/docker-engine_1.11.2-0~trusty_amd64.deb' %}
-{% set override_deb_sha1='022dee31e68c6d572eaac750915786e4a6729d2a' %}
-
-{% elif grains.get('cloud', '') == 'aws'
-   and grains.get('os_family', '') == 'Debian'
-   and grains.get('oscodename', '') == 'wily' -%}
-# TODO: Get from google storage?
-{% set docker_pkg_name='docker-engine' %}
-{% set override_docker_ver='1.11.2-0~wily' %}
-{% set override_deb='docker-engine_1.11.2-0~wily_amd64.deb' %}
-{% set override_deb_url='http://apt.dockerproject.org/repo/pool/main/d/docker-engine/docker-engine_1.11.2-0~wily_amd64.deb' %}
-{% set override_deb_sha1='3e02f51fe18aa777eeb1676c3d9a75e5ea6d96c9' %}
-
 {% else %}
 {% set docker_pkg_name='lxc-docker-1.7.1' %}
 {% set override_docker_ver='1.7.1' %}
@@ -502,19 +471,8 @@ fix-systemd-docker-healthcheck-service:
 {% endif %}
 
 docker:
-# Starting Docker is racy on aws for some reason.  To be honest, since Monit
-# is managing Docker restart we should probably just delete this whole thing
-# but the kubernetes components use salt 'require' to set up a dag, and that
-# complicated and scary to unwind.
-# On AWS, we use a trick now... We don't start the docker service through Salt.
-# Kubelet or our health checker will start it.  But we use service.enabled,
-# so we still have a `service: docker` node for our DAG.
-{% if grains.cloud is defined and grains.cloud == 'aws' %}
-  service.enabled:
-{% else %}
   service.running:
     - enable: True
-{% endif %}
 # If we put a watch on this, salt will try to start the service.
 # We put the watch on the fixer instead
 {% if not pillar.get('is_systemd') %}

cluster/saltbase/salt/generate-cert/init.sls

@@ -1,17 +1,6 @@
 {% set master_extra_sans=grains.get('master_extra_sans', '') %}
-{% if grains.cloud is defined %}
-  {% if grains.cloud == 'gce' %}
-    {% set cert_ip='_use_gce_external_ip_' %}
-  {% endif %}
-  {% if grains.cloud == 'aws' %}
-    {% set cert_ip='_use_aws_external_ip_' %}
-  {% endif %}
-  {% if grains.cloud == 'azure-legacy' %}
-    {% set cert_ip='_use_azure_dns_name_' %}
-  {% endif %}
-  {% if grains.cloud == 'photon-controller' %}
-    {% set cert_ip=grains.ip_interfaces.eth0[0] %}
-  {% endif %}
+{% if grains.cloud is defined and grains.cloud == 'gce' %}
+  {% set cert_ip='_use_gce_external_ip_' %}
 {% endif %}
 
 # If there is a pillar defined, override any defaults.

cluster/saltbase/salt/generate-cert/make-ca-cert.sh

@@ -38,24 +38,6 @@ if [ "$cert_ip" == "_use_gce_external_ip_" ]; then
   cert_ip=$(curl -s -H Metadata-Flavor:Google http://metadata.google.internal./computeMetadata/v1/instance/network-interfaces/0/access-configs/0/external-ip)
 fi
 
-if [ "$cert_ip" == "_use_aws_external_ip_" ]; then
-  # If there's no public IP assigned (e.g. this host is running on an internal subnet in a VPC), then
-  # curl will happily spit out the contents of AWS's 404 page and an exit code of zero.
-  #
-  # The string containing the 404 page trips up one of easyrsa's calls to openssl later; whichever
-  # one creates the CA certificate, because the 404 page is > 64 characters.
-  if cert_ip=$(curl -f -s http://169.254.169.254/latest/meta-data/public-ipv4); then
-    :
-  else
-    cert_ip=$(curl -f -s http://169.254.169.254/latest/meta-data/local-ipv4)
-  fi
-fi
-
-if [ "$cert_ip" == "_use_azure_dns_name_" ]; then
-  cert_ip=$(uname -n | awk -F. '{ print $2 }').cloudapp.net
-  use_cn=true
-fi
-
 sans="IP:${cert_ip}"
 if [[ -n "${extra_sans}" ]]; then
   sans="${sans},${extra_sans}"

cluster/saltbase/salt/kube-addons/init.sls

@@ -204,7 +204,7 @@ addon-dir-create:
     - group: root
     - mode: 755
 
-{% if pillar.get('enable_default_storage_class', '').lower() == 'true' and grains['cloud'] is defined and grains['cloud'] in ['aws', 'gce', 'openstack'] %}
+{% if pillar.get('enable_default_storage_class', '').lower() == 'true' and grains['cloud'] is defined and grains['cloud'] == 'gce' %}
 /etc/kubernetes/addons/storage-class/default.yaml:
   file.managed:
     - source: salt://kube-addons/storage-class/{{ grains['cloud'] }}/default.yaml

cluster/saltbase/salt/kube-apiserver/init.sls

@@ -1,4 +1,4 @@
-{% if grains['cloud'] is defined and grains.cloud in ['aws', 'gce', 'vagrant', 'photon-controller', 'openstack'] %}
+{% if grains['cloud'] is defined and grains.cloud == 'gce' %}
 # TODO: generate and distribute tokens on other cloud providers.
 /srv/kubernetes/known_tokens.csv:
   file.managed:

cluster/saltbase/salt/kube-apiserver/kube-apiserver.manifest

@@ -14,24 +14,14 @@
 {% set srv_sshproxy_path = "/srv/sshproxy" -%}
 
 {% if grains.cloud is defined -%}
-  {% if grains.cloud not in ['vagrant', 'photon-controller', 'azure-legacy'] -%}
-    {% set cloud_provider = "--cloud-provider=" + grains.cloud -%}
-  {% endif -%}
+  {% set cloud_provider = "--cloud-provider=" + grains.cloud -%}
 
-  {% if grains.cloud in [ 'openstack' ] and grains.cloud_config is defined -%}
-    {% set cloud_config = "--cloud-config=" + grains.cloud_config -%}
-  {% endif -%}
-
-  {% if grains.cloud in [ 'aws', 'gce' ] and grains.cloud_config is defined -%}
+  {% if grains.cloud == 'gce' and grains.cloud_config is defined -%}
     {% set cloud_config = "--cloud-config=" + grains.cloud_config -%}
     {% set cloud_config_mount = "{\"name\": \"cloudconfigmount\",\"mountPath\": \"" + grains.cloud_config + "\", \"readOnly\": true}," -%}
     {% set cloud_config_volume = "{\"name\": \"cloudconfigmount\",\"hostPath\": {\"path\": \"" + grains.cloud_config + "\", \"type\": \"FileOrCreate\"}}," -%}
   {% endif -%}
 
-  {% if grains.cloud in ['openstack'] -%}
-    {% set cloud_config_mount = "{\"name\": \"instanceid\",\"mountPath\": \"/var/lib/cloud/data/instance-id\",\"readOnly\": true}," -%}
-    {% set cloud_config_volume = "{\"name\": \"instanceid\",\"hostPath\": {\"path\": \"/var/lib/cloud/data/instance-id\"}}," -%}
-  {% endif -%}
 {% endif -%}
 
 {% set advertise_address = "" -%}
@@ -99,7 +89,7 @@
 {% set client_ca_file = "" -%}
 
 {% set secure_port = "6443" -%}
-{% if grains['cloud'] is defined and grains.cloud in [ 'aws', 'gce', 'vagrant', 'photon-controller', 'openstack']    %}
+{% if grains['cloud'] is defined and grains.cloud == 'gce' %}
   {% set secure_port = "443" -%}
   {% set client_ca_file = "--client-ca-file=/srv/kubernetes/ca.crt" -%}
 {% endif -%}
@@ -113,7 +103,7 @@
 {% set basic_auth_file = "" -%}
 {% set authz_mode = "" -%}
 {% set abac_policy_file = "" -%}
-{% if grains['cloud'] is defined and grains.cloud in [ 'aws', 'gce', 'vagrant', 'photon-controller', 'openstack']  %}
+{% if grains['cloud'] is defined and grains.cloud == 'gce' %}
   {% set token_auth_file = " --token-auth-file=/srv/kubernetes/known_tokens.csv" -%}
   {% set basic_auth_file = " --basic-auth-file=/srv/kubernetes/basic_auth.csv" -%}
   {% set authz_mode = " --authorization-mode=ABAC" -%}