FROM debian:buster-slim

# > cni.go:364] [...] exec: "iptables": executable file not found in $PATH
# > docker_sandbox.go:394] failed to read pod IP from plugin/docker: networkPlugin cni [...]: unexpected command output nsenter: failed to execute ip: No such file or directory
RUN apt-get update && apt-get install --yes --no-install-recommends \
    ca-certificates \
    curl \
    iproute2 \
    iptables

# k8s.gcr.io/kube-proxy:v1.17.0 uses legacy iptables
RUN update-alternatives --set iptables /usr/sbin/iptables-legacy

ARG KUBERNETES_VERSION=v1.17.0
RUN curl --location https://dl.k8s.io/$KUBERNETES_VERSION/kubernetes-node-linux-amd64.tar.gz \
    | tar -xvz --directory=/usr/local/bin --strip-components=3 kubernetes/node/bin/kubelet

#RUN apt-get install --yes --no-install-recommends strace
#ENTRYPOINT ["strace", "-f"]

# --healthz-port
HEALTHCHECK CMD [ "$(curl --silent --show-error http://localhost:10248/healthz)" = "ok" ] || exit 1