Amazon Linux 2023 のRC版(RC0) が公開されました

Amazon Linux 2 後継OS、Amazon Linux 2022 改め Amazon Linux 2023 の RC版 (RC0)が公開されました。

#Amazon Linux 2022

#Amazon EC2

#AWS

#Amazon Linux 2023

suzuki.ryo

2023.02.25

この記事は公開されてから1年以上経過しています。情報が古い可能性がありますので、ご注意ください。

2023年2月22日付で、Amazon Linux 2022 改め Amazon Linux 2023 の RC版 (RC0)が公開されました。

Amazon Linux 2023 release notes update 2023-02-22

今回、2月24日に公開された Amazon Linux 2023 (RC0) の AMI を試す機会がありましたので、紹介させていただきます。

AMI

AWS東京リージョンで公開されている Amazon Linux 2023 のAMI (al2023-ami-2023.0.20230222.1-kernel-6.1-x86_64) を利用しました。

Amazon マシンイメージ (AMI) のダッシュボードを利用する場合、以下検索条件で Amazon Linux 2023 の公式AMIが抽出可能でした。

検索条件

所有者: 137112412989
AMI名: 「al2023」を含む

セッションマネージャ

Amazon Linux 2023 のRC0のAMIでは、SSM Agent がデフォルトでインストールされるようになりました。

EC2インスタンスの起動時、IAM インスタンスプロフィールとして、マネージドポリシー「AmazonSSMManagedInstanceCore」を含む IAMロールを利用する事で、セッションマネージャを利用したリモート接続が可能になりました。

SE Linux

SE Linux は「Permissive」。監査ログ記録のみ実施するモードで有効化されていました。

Amazon Linux 2022 のプレビュー版のデフォルトは「Enforcing」、SE Linux のポリシーが強制される設定でした。

sh-5.2$ getenforce
Permissive

sh-5.2$ sestatus
SELinux status:                 enabled
SELinuxfs mount:                /sys/fs/selinux
SELinux root directory:         /etc/selinux
Loaded policy name:             targeted
Current mode:                   permissive
Mode from config file:          permissive
Policy MLS status:              enabled
Policy deny_unknown status:     allowed
Memory protection checking:     actual (secure)
Max kernel policy version:      33

OSパッケージ確認

Amazon Linux 2023 (RC0)、主要パッケージの確認を試みました。

kernel

Amazon Linux 2022 のRC3.3 で採用されていた 5.15 から 6.1.32 になりました。

sh-5.2$ rpm -qi kernel
Name        : kernel
Version     : 6.1.12
Release     : 19.43.amzn2023
Architecture: x86_64
Install Date: Fri Feb 24 04:49:03 2023
Group       : System Environment/Kernel
Size        : 131366720
License     : GPLv2 and Redistributable, no modification permitted
Signature   : RSA/SHA512, Thu Jan  1 00:00:00 1970, Key ID e951904ad832c631
Source RPM  : kernel-6.1.12-19.43.amzn2023.src.rpm
Build Date  : Thu Feb 23 23:36:01 2023
Build Host  : ip-10-0-49-80.us-west-2.compute.internal
Packager    : Amazon Linux
Vendor      : Amazon Linux
URL         : http://www.kernel.org/
Summary     : The Linux kernel
Description :
The kernel package contains the Linux kernel (vmlinuz), the core of any
Linux operating system.  The kernel handles the basic functions
of the operating system: memory allocation, process allocation, device
input and output, etc.

glibc

sh-5.2$ rpm -qi glibc
Name        : glibc
Version     : 2.34
Release     : 52.amzn2023.0.2
Architecture: x86_64
Install Date: Fri Feb 24 04:48:28 2023
Group       : Unspecified
Size        : 6218947
License     : LGPLv2+ and LGPLv2+ with exceptions and GPLv2+ and GPLv2+ with exceptions and BSD and Inner-Net and ISC and Public Domain and GFDL
Signature   : RSA/SHA512, Thu Jan  1 00:00:00 1970, Key ID e951904ad832c631
Source RPM  : glibc-2.34-52.amzn2023.0.2.src.rpm
Build Date  : Sat Jan 28 21:23:04 2023
Build Host  : ip-10-0-61-64.us-west-2.compute.internal
Packager    : Amazon Linux
Vendor      : Amazon Linux
URL         : http://www.gnu.org/software/glibc/
Summary     : The GNU libc libraries
Description :
The glibc package contains standard libraries which are used by
multiple programs on the system. In order to save disk space and
memory, as well as to make upgrading easier, common system code is
kept in one place and shared between programs. This particular package
contains the most important sets of shared libraries: the standard C
library and the standard math library. Without these two libraries, a
Linux system will not function.

openssl

sh-5.2$ rpm -qi openssl
Name        : openssl
Epoch       : 1
Version     : 3.0.8
Release     : 1.amzn2023.0.1
Architecture: x86_64
Install Date: Fri Feb 24 04:48:49 2023
Group       : Unspecified
Size        : 1900503
License     : ASL 2.0
Signature   : RSA/SHA512, Thu Jan  1 00:00:00 1970, Key ID e951904ad832c631
Source RPM  : openssl-3.0.8-1.amzn2023.0.1.src.rpm
Build Date  : Wed Feb 15 14:43:07 2023
Build Host  : ip-10-0-48-138.us-west-2.compute.internal
Packager    : Amazon Linux
Vendor      : Amazon Linux
URL         : http://www.openssl.org/
Summary     : Utilities from the general purpose cryptography library with TLS implementation
Description :
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
protocols.

amazon-ssm-agent

sh-5.2$ rpm -qi amazon-ssm-agent
Name        : amazon-ssm-agent
Version     : 3.1.1927.0
Release     : 1.amzn2023
Architecture: x86_64
Install Date: Fri Feb 24 04:49:07 2023
Group       : Amazon/Tools
Size        : 104022431
License     : ASL 2.0
Signature   : RSA/SHA512, Thu Jan  1 00:00:00 1970, Key ID e951904ad832c631
Source RPM  : amazon-ssm-agent-3.1.1927.0-1.amzn2023.src.rpm
Build Date  : Fri Feb 17 23:21:34 2023
Build Host  : ip-10-0-48-138.us-west-2.compute.internal
Packager    : Amazon.com, Inc. <http://aws.amazon.com>
Vendor      : Amazon.com
URL         : http://docs.aws.amazon.com/ssm/latest/APIReference/Welcome.html
Summary     : Manage EC2 Instances using SSM APIs
Description :
This package provides Amazon SSM Agent for managing EC2 Instances using SSM APIs

awscli-2

sh-5.2$ rpm -qi awscli-2
Name        : awscli-2
Version     : 2.9.19
Release     : 1.amzn2023.0.1
Architecture: noarch
Install Date: Fri Feb 24 04:49:05 2023
Group       : Unspecified
Size        : 96061250
License     : ASL 2.0 and MIT
Signature   : RSA/SHA512, Thu Jan  1 00:00:00 1970, Key ID e951904ad832c631
Source RPM  : awscli-2-2.9.19-1.amzn2023.0.1.src.rpm
Build Date  : Wed Feb 15 16:47:16 2023
Build Host  : ip-10-0-49-80.us-west-2.compute.internal
Packager    : Amazon Linux
Vendor      : Amazon Linux
URL         : https://github.com/aws/aws-cli
Summary     : Universal Command Line Environment for AWS, Version 2
Description :

This package provides version 2 of the unified command line
interface to Amazon Web Services.

sh-5.2$ aws --version
aws-cli/2.9.19 Python/3.9.16 Linux/6.1.12-19.43.amzn2023.x86_64 source/x86_64.amzn.2023 prompt/off

python3

sh-5.2$ rpm -qi python3
Name        : python3
Version     : 3.9.16
Release     : 1.amzn2023.0.2
Architecture: x86_64
Install Date: Fri Feb 24 04:48:32 2023
Group       : Unspecified
Size        : 33316
License     : Python
Signature   : RSA/SHA512, Thu Jan  1 00:00:00 1970, Key ID e951904ad832c631
Source RPM  : python3.9-3.9.16-1.amzn2023.0.2.src.rpm
Build Date  : Sun Jan 29 03:34:43 2023
Build Host  : ip-10-0-41-222.us-west-2.compute.internal
Packager    : Amazon Linux
Vendor      : Amazon Linux
URL         : https://www.python.org/
Summary     : Python 3.9 interpreter
Description :
Python 3.9 is an accessible, high-level, dynamically typed, interpreted
programming language, designed with an emphasis on code readability.
It includes an extensive standard library, and has a vast ecosystem of
third-party libraries.

The python3 package provides the "python3" executable: the reference
interpreter for the Python language, version 3.
The majority of its standard library is provided in the python3-libs package,
which should be installed automatically along with python3.
The remaining parts of the Python standard library are broken out into the
python3-tkinter and python3-test packages, which may need to be installed
separately.

Documentation for Python is provided in the python3-docs package.

Packages containing additional libraries for Python are generally named with
the "python3-" prefix.

httpd, nginx, php

Amazon Linux 2023 のリポジトリで提供される httpd、nginx、php は以下が利用可能でした。

sh-5.2$ dnf info httpd

Last metadata expiration check: 0:26:19 ago on Sat Feb 25 11:56:23 2023.
Available Packages
Name         : httpd
Version      : 2.4.54
Release      : 3.amzn2023.0.4
Architecture : x86_64
Size         : 46 k
Source       : httpd-2.4.54-3.amzn2023.0.4.src.rpm
Repository   : amazonlinux
Summary      : Apache HTTP Server
URL          : https://httpd.apache.org/
License      : ASL 2.0
Description  : The Apache HTTP Server is a powerful, efficient, and extensible
             : web server.

sh-5.2$ dnf info nginx

Last metadata expiration check: 0:26:01 ago on Sat Feb 25 11:56:23 2023.
Available Packages
Name         : nginx
Epoch        : 1
Version      : 1.22.1
Release      : 1.amzn2023.0.3
Architecture : x86_64
Size         : 40 k
Source       : nginx-1.22.1-1.amzn2023.0.3.src.rpm
Repository   : amazonlinux
Summary      : A high performance web server and reverse proxy server
URL          : https://nginx.org
License      : BSD
Description  : Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and
             : IMAP protocols, with a strong focus on high concurrency, performance and low
             : memory usage.


sh-5.2$ dnf info php8.1
Last metadata expiration check: 0:27:15 ago on Sat Feb 25 11:56:23 2023.
Available Packages
Name         : php8.1
Version      : 8.1.14
Release      : 1.amzn2023.0.2
Architecture : x86_64
Size         : 15 k
Source       : php8.1-8.1.14-1.amzn2023.0.2.src.rpm
Repository   : amazonlinux
Summary      : PHP scripting language for creating dynamic web sites
URL          : http://www.php.net/
License      : PHP and Zend and BSD and MIT and ASL 1.0 and NCSA and Boost
Description  : PHP 8.1 is an HTML-embedded scripting language. PHP 8.1 attempts to make it
             : easy for developers to write dynamically generated web pages. PHP 8.1 also
             : offers built-in database integration for several commercial and
             : non-commercial database management systems, so writing a
             : database-enabled webpage with PHP 8.1 is fairly simple. The most common
             : use of PHP 8.1 coding is probably as a replacement for CGI scripts.