Amazon Linux 2023 のRC版(RC0) が公開されました
2023年2月22日付で、Amazon Linux 2022 改め Amazon Linux 2023 の RC版 (RC0)が公開されました。
今回、2月24日に公開された Amazon Linux 2023 (RC0) の AMI を試す機会がありましたので、紹介させていただきます。
AMI
AWS東京リージョンで 公開されている Amazon Linux 2023 のAMI (al2023-ami-2023.0.20230222.1-kernel-6.1-x86_64) を利用しました。
Amazon マシンイメージ (AMI) のダッシュボードを利用する場合、以下検索条件で Amazon Linux 2023 の公式AMIが抽出可能でした。
- 所有者: 137112412989
- AMI名: 「al2023」を含む
セッションマネージャ
Amazon Linux 2023 のRC0のAMIでは、SSM Agent がデフォルトでインストールされるようになりました。
EC2インスタンスの起動時、IAM インスタンスプロフィール として、マネージドポリシー「AmazonSSMManagedInstanceCore」を含む IAMロールを利用する事で、 セッションマネージャを利用したリモート接続が可能になりました。
SE Linux
SE Linux は「Permissive」。監査ログ記録のみ実施するモードで有効化されていました。
Amazon Linux 2022 のプレビュー版のデフォルトは「Enforcing」、SE Linux のポリシーが強制される設定でした。
sh-5.2$ getenforce Permissive sh-5.2$ sestatus SELinux status: enabled SELinuxfs mount: /sys/fs/selinux SELinux root directory: /etc/selinux Loaded policy name: targeted Current mode: permissive Mode from config file: permissive Policy MLS status: enabled Policy deny_unknown status: allowed Memory protection checking: actual (secure) Max kernel policy version: 33
OSパッケージ確認
Amazon Linux 2023 (RC0)、主要パッケージの確認を試みました。
kernel
Amazon Linux 2022 のRC3.3 で採用されていた 5.15 から 6.1.32 になりました。
sh-5.2$ rpm -qi kernel Name : kernel Version : 6.1.12 Release : 19.43.amzn2023 Architecture: x86_64 Install Date: Fri Feb 24 04:49:03 2023 Group : System Environment/Kernel Size : 131366720 License : GPLv2 and Redistributable, no modification permitted Signature : RSA/SHA512, Thu Jan 1 00:00:00 1970, Key ID e951904ad832c631 Source RPM : kernel-6.1.12-19.43.amzn2023.src.rpm Build Date : Thu Feb 23 23:36:01 2023 Build Host : ip-10-0-49-80.us-west-2.compute.internal Packager : Amazon Linux Vendor : Amazon Linux URL : http://www.kernel.org/ Summary : The Linux kernel Description : The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc.
glibc
sh-5.2$ rpm -qi glibc Name : glibc Version : 2.34 Release : 52.amzn2023.0.2 Architecture: x86_64 Install Date: Fri Feb 24 04:48:28 2023 Group : Unspecified Size : 6218947 License : LGPLv2+ and LGPLv2+ with exceptions and GPLv2+ and GPLv2+ with exceptions and BSD and Inner-Net and ISC and Public Domain and GFDL Signature : RSA/SHA512, Thu Jan 1 00:00:00 1970, Key ID e951904ad832c631 Source RPM : glibc-2.34-52.amzn2023.0.2.src.rpm Build Date : Sat Jan 28 21:23:04 2023 Build Host : ip-10-0-61-64.us-west-2.compute.internal Packager : Amazon Linux Vendor : Amazon Linux URL : http://www.gnu.org/software/glibc/ Summary : The GNU libc libraries Description : The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important sets of shared libraries: the standard C library and the standard math library. Without these two libraries, a Linux system will not function.
openssl
sh-5.2$ rpm -qi openssl Name : openssl Epoch : 1 Version : 3.0.8 Release : 1.amzn2023.0.1 Architecture: x86_64 Install Date: Fri Feb 24 04:48:49 2023 Group : Unspecified Size : 1900503 License : ASL 2.0 Signature : RSA/SHA512, Thu Jan 1 00:00:00 1970, Key ID e951904ad832c631 Source RPM : openssl-3.0.8-1.amzn2023.0.1.src.rpm Build Date : Wed Feb 15 14:43:07 2023 Build Host : ip-10-0-48-138.us-west-2.compute.internal Packager : Amazon Linux Vendor : Amazon Linux URL : http://www.openssl.org/ Summary : Utilities from the general purpose cryptography library with TLS implementation Description : The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries which provide various cryptographic algorithms and protocols.
amazon-ssm-agent
sh-5.2$ rpm -qi amazon-ssm-agent Name : amazon-ssm-agent Version : 3.1.1927.0 Release : 1.amzn2023 Architecture: x86_64 Install Date: Fri Feb 24 04:49:07 2023 Group : Amazon/Tools Size : 104022431 License : ASL 2.0 Signature : RSA/SHA512, Thu Jan 1 00:00:00 1970, Key ID e951904ad832c631 Source RPM : amazon-ssm-agent-3.1.1927.0-1.amzn2023.src.rpm Build Date : Fri Feb 17 23:21:34 2023 Build Host : ip-10-0-48-138.us-west-2.compute.internal Packager : Amazon.com, Inc. <http://aws.amazon.com> Vendor : Amazon.com URL : http://docs.aws.amazon.com/ssm/latest/APIReference/Welcome.html Summary : Manage EC2 Instances using SSM APIs Description : This package provides Amazon SSM Agent for managing EC2 Instances using SSM APIs
awscli-2
sh-5.2$ rpm -qi awscli-2 Name : awscli-2 Version : 2.9.19 Release : 1.amzn2023.0.1 Architecture: noarch Install Date: Fri Feb 24 04:49:05 2023 Group : Unspecified Size : 96061250 License : ASL 2.0 and MIT Signature : RSA/SHA512, Thu Jan 1 00:00:00 1970, Key ID e951904ad832c631 Source RPM : awscli-2-2.9.19-1.amzn2023.0.1.src.rpm Build Date : Wed Feb 15 16:47:16 2023 Build Host : ip-10-0-49-80.us-west-2.compute.internal Packager : Amazon Linux Vendor : Amazon Linux URL : https://github.com/aws/aws-cli Summary : Universal Command Line Environment for AWS, Version 2 Description : This package provides version 2 of the unified command line interface to Amazon Web Services. sh-5.2$ aws --version aws-cli/2.9.19 Python/3.9.16 Linux/6.1.12-19.43.amzn2023.x86_64 source/x86_64.amzn.2023 prompt/off
python3
sh-5.2$ rpm -qi python3 Name : python3 Version : 3.9.16 Release : 1.amzn2023.0.2 Architecture: x86_64 Install Date: Fri Feb 24 04:48:32 2023 Group : Unspecified Size : 33316 License : Python Signature : RSA/SHA512, Thu Jan 1 00:00:00 1970, Key ID e951904ad832c631 Source RPM : python3.9-3.9.16-1.amzn2023.0.2.src.rpm Build Date : Sun Jan 29 03:34:43 2023 Build Host : ip-10-0-41-222.us-west-2.compute.internal Packager : Amazon Linux Vendor : Amazon Linux URL : https://www.python.org/ Summary : Python 3.9 interpreter Description : Python 3.9 is an accessible, high-level, dynamically typed, interpreted programming language, designed with an emphasis on code readability. It includes an extensive standard library, and has a vast ecosystem of third-party libraries. The python3 package provides the "python3" executable: the reference interpreter for the Python language, version 3. The majority of its standard library is provided in the python3-libs package, which should be installed automatically along with python3. The remaining parts of the Python standard library are broken out into the python3-tkinter and python3-test packages, which may need to be installed separately. Documentation for Python is provided in the python3-docs package. Packages containing additional libraries for Python are generally named with the "python3-" prefix.
httpd, nginx, php
Amazon Linux 2023 のリポジトリで提供される httpd、nginx、php は以下が利用可能でした。
sh-5.2$ dnf info httpd Last metadata expiration check: 0:26:19 ago on Sat Feb 25 11:56:23 2023. Available Packages Name : httpd Version : 2.4.54 Release : 3.amzn2023.0.4 Architecture : x86_64 Size : 46 k Source : httpd-2.4.54-3.amzn2023.0.4.src.rpm Repository : amazonlinux Summary : Apache HTTP Server URL : https://httpd.apache.org/ License : ASL 2.0 Description : The Apache HTTP Server is a powerful, efficient, and extensible : web server. sh-5.2$ dnf info nginx Last metadata expiration check: 0:26:01 ago on Sat Feb 25 11:56:23 2023. Available Packages Name : nginx Epoch : 1 Version : 1.22.1 Release : 1.amzn2023.0.3 Architecture : x86_64 Size : 40 k Source : nginx-1.22.1-1.amzn2023.0.3.src.rpm Repository : amazonlinux Summary : A high performance web server and reverse proxy server URL : https://nginx.org License : BSD Description : Nginx is a web server and a reverse proxy server for HTTP, SMTP, POP3 and : IMAP protocols, with a strong focus on high concurrency, performance and low : memory usage. sh-5.2$ dnf info php8.1 Last metadata expiration check: 0:27:15 ago on Sat Feb 25 11:56:23 2023. Available Packages Name : php8.1 Version : 8.1.14 Release : 1.amzn2023.0.2 Architecture : x86_64 Size : 15 k Source : php8.1-8.1.14-1.amzn2023.0.2.src.rpm Repository : amazonlinux Summary : PHP scripting language for creating dynamic web sites URL : http://www.php.net/ License : PHP and Zend and BSD and MIT and ASL 1.0 and NCSA and Boost Description : PHP 8.1 is an HTML-embedded scripting language. PHP 8.1 attempts to make it : easy for developers to write dynamically generated web pages. PHP 8.1 also : offers built-in database integration for several commercial and : non-commercial database management systems, so writing a : database-enabled webpage with PHP 8.1 is fairly simple. The most common : use of PHP 8.1 coding is probably as a replacement for CGI scripts.
まとめ
AWS が提供する Amazon Linux 2、そのサポート期間は 2025年6月まで延長されましたが、 2025年以降、AWSの Linux OS サポートや、 新しいOSライブラリを必要とする場合、 今回リリースされた Amazon Linux 2023 のRC版をお試しください。