Skip to content

Latest commit

 

History

History
72 lines (57 loc) · 6.06 KB

baseimage-exception-list.md

File metadata and controls

72 lines (57 loc) · 6.06 KB
Raw

Base Image Exception List

Theoretically, we expect to have all kubernetes images based on distroless (Please see this KEP for details). Due to the complexity and difficulty of rebasing all those images, we keep the exception list below to track the reasons and blockers about why certain images are not rebased.

Please feel free to edit this file when you find any updates. Links to detailed Reason are welcomed.

Release images

Release: debian-base

Image Name Reasons for exception
distroless-iptables Needed to supported images that require iptables

Release: distroless-iptables

Image Name Reasons for exception
kube-proxy Requires iptables

Release: go-runner

Image Name Reasons for exception
kube-apiserver go-runner (distroless++)[1][2]
kube-scheduler go-runner (distroless++)[1][2]
kubectl go-runner (distroless++)[1][2]

Non-release images

Image Name Base Image OWNER Supported? (Yes/No/Unknown) Reasons for exception
etcd debian-base https://github.com/kubernetes/kubernetes/blob/master/cluster/images/etcd/OWNERS Y Requires shell to do data migration
etcd-empty-dir-cleanup debian-base https://github.com/kubernetes/kubernetes/blob/master/cluster/images/etcd-empty-dir-cleanup/OWNERS U Requires shell to do some cleanup
fluentd-elasticsearch ruby:2.7-slim-buster https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/fluentd-elasticsearch/OWNERS U Requires shell to install fluentd via ruby
ip-masq-agent distroless-iptables https://github.com/kubernetes-sigs/ip-masq-agent/blob/master/OWNERS U Requires iptables
k8s-dns-dnsmasq-nanny debian-base https://github.com/kubernetes/dns/blob/master/OWNERS U Requires container debugging tooling
k8s-dns-kube-dns debian-base https://github.com/kubernetes/dns/blob/master/OWNERS U Requires container debugging tooling
k8s-dns-node-cache debian-base https://github.com/kubernetes/dns/blob/master/OWNERS U Requires container debugging tooling
k8s-dns-sidecar debian-base https://github.com/kubernetes/dns/blob/master/OWNERS U Requires container debugging tooling
kube-addon-manager debian-base https://github.com/kubernetes/kubernetes/blob/master/cluster/addons/addon-manager/OWNERS U Requires shell
node-problem-detector debian-base https://github.com/kubernetes/node-problem-detector/blob/master/OWNERS U Requires libsystemd0

Non-org images

Image Name Base Image OWNER Supported? (Yes/No/Unknown) Reasons for exception
fluentd-gcp-scaler debian-base U Requires shell and kubectl
stackdriver-logging-agent debian:buster U Requires fluentd