Open19
AmazonLinux2023 のアップデートを試してみる
古めの AmazonLinux2023 を立ち上げる。
AMI 名:al2023-ami-2023 を含む で検索して作成日が古いものを使用する。
とりあえず、以下の AMI を使ってみる
- AMI 名: al2023-ami-2023.3.20240312.0-kernel-6.1-arm64
- AMI ID: ami-0232d9a255d646213
- ソース: amazon/al2023-ami-2023.3.20240312.0-kernel-6.1-arm64
以下の設定でインスタンスを起動
- 名前
try-inspector - インスタンスタイプ
t4g.nano - キーペア
以前作成したもの - VPC
デフォルトのやつ - パブリック IP の自動割り当て
有効化 - セキュリティグループ
ssh 自分の IP
http 自分の IP - ユーザーデータ
#!/bin/bash
dnf install -y httpd
systemctl enable httpd.service
systemctl start httpd.service
ssh でログインした際のメッセージ
A newer release of "Amazon Linux" is available.
Version 2023.4.20240319:
Version 2023.4.20240401:
Version 2023.4.20240416:
Version 2023.4.20240429:
Version 2023.4.20240513:
Version 2023.4.20240528:
Run "/usr/bin/dnf check-release-update" for full release and version update info
, #_
~\_ ####_ Amazon Linux 2023
~~ \_#####\
~~ \###|
~~ \#/ ___ https://aws.amazon.com/linux/amazon-linux-2023
~~ V~' '->
~~~ /
~~._. _/
_/ _/
_/m/'
バージョン確認
$ cat /etc/os-release
NAME="Amazon Linux"
VERSION="2023"
ID="amzn"
ID_LIKE="fedora"
VERSION_ID="2023"
PLATFORM_ID="platform:al2023"
PRETTY_NAME="Amazon Linux 2023.3.20240312"
ANSI_COLOR="0;33"
CPE_NAME="cpe:2.3:o:amazon:amazon_linux:2023"
HOME_URL="https://aws.amazon.com/linux/amazon-linux-2023/"
DOCUMENTATION_URL="https://docs.aws.amazon.com/linux/"
SUPPORT_URL="https://aws.amazon.com/premiumsupport/"
BUG_REPORT_URL="https://github.com/amazonlinux/amazon-linux-2023"
VENDOR_NAME="AWS"
VENDOR_URL="https://aws.amazon.com/"
SUPPORT_END="2028-03-15"
最新のリポジトリバージョンを確認
sudo dnf check-release-update
実行結果
WARNING:
A newer release of "Amazon Linux" is available.
Available Versions:
Version 2023.4.20240319:
Run the following command to upgrade to 2023.4.20240319:
dnf upgrade --releasever=2023.4.20240319
Release notes:
https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.4.20240319.html
Version 2023.4.20240401:
Run the following command to upgrade to 2023.4.20240401:
dnf upgrade --releasever=2023.4.20240401
Release notes:
https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.4.20240401.html
Version 2023.4.20240416:
Run the following command to upgrade to 2023.4.20240416:
dnf upgrade --releasever=2023.4.20240416
Release notes:
https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.4.20240416.html
Version 2023.4.20240429:
Run the following command to upgrade to 2023.4.20240429:
dnf upgrade --releasever=2023.4.20240429
Release notes:
https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.4.20240429.html
Version 2023.4.20240513:
Run the following command to upgrade to 2023.4.20240513:
dnf upgrade --releasever=2023.4.20240513
Release notes:
https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.4.20240513.html
Version 2023.4.20240528:
Run the following command to upgrade to 2023.4.20240528:
dnf upgrade --releasever=2023.4.20240528
Release notes:
https://docs.aws.amazon.com/linux/al2023/release-notes/relnotes-2023.4.20240528.html
現在の最新の 2023.4.20240528
を --releasever
を指定してアップデートを確認
sudo dnf check-upgrade --releasever=2023.4.20240528
実行結果
Amazon Linux 2023 repository 54 MB/s | 24 MB 00:00
Last metadata expiration check: 0:00:07 ago on Sun Jun 9 14:59:47 2024.
amazon-linux-repo-s3.noarch 2023.4.20240528-0.amzn2023 amazonlinux
amazon-ssm-agent.aarch64 3.3.380.0-1.amzn2023 amazonlinux
awscli-2.noarch 2.15.30-1.amzn2023.0.1 amazonlinux
c-ares.aarch64 1.19.0-1.amzn2023.0.1 amazonlinux
curl-minimal.aarch64 8.5.0-1.amzn2023.0.4 amazonlinux
dnf.noarch 4.14.0-1.amzn2023.0.4 amazonlinux
dnf-data.noarch 4.14.0-1.amzn2023.0.4 amazonlinux
dnf-plugins-core.noarch 4.3.0-13.amzn2023.0.4 amazonlinux
dnf-utils.noarch 4.3.0-13.amzn2023.0.4 amazonlinux
ec2-utils.noarch 2.2.0-1.amzn2023.0.1 amazonlinux
expat.aarch64 2.5.0-1.amzn2023.0.4 amazonlinux
glibc.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-all-langpacks.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-common.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-gconv-extra.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-locale-source.aarch64 2.34-52.amzn2023.0.10 amazonlinux
gnutls.aarch64 3.8.0-380.amzn2023.0.6 amazonlinux
grub2-common.noarch 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-efi-aa64-ec2.aarch64 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-pc-modules.noarch 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-tools.aarch64 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-tools-minimal.aarch64 1:2.06-61.amzn2023.0.12 amazonlinux
httpd.aarch64 2.4.59-2.amzn2023 amazonlinux
httpd-core.aarch64 2.4.59-2.amzn2023 amazonlinux
httpd-filesystem.noarch 2.4.59-2.amzn2023 amazonlinux
httpd-tools.aarch64 2.4.59-2.amzn2023 amazonlinux
jq.aarch64 1.7.1-48.amzn2023.0.1 amazonlinux
kernel.aarch64 6.1.91-99.172.amzn2023 amazonlinux
kernel-livepatch-repo-s3.noarch 2023.4.20240528-0.amzn2023 amazonlinux
kernel-tools.aarch64 6.1.91-99.172.amzn2023 amazonlinux
krb5-libs.aarch64 1.21-3.amzn2023.0.4 amazonlinux
less.aarch64 608-2.amzn2023.0.2 amazonlinux
libblkid.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
libcomps.aarch64 0.1.20-1.amzn2023 amazonlinux
libcurl-minimal.aarch64 8.5.0-1.amzn2023.0.4 amazonlinux
libdnf.aarch64 0.69.0-8.amzn2023.0.5 amazonlinux
libfdisk.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
libibverbs.aarch64 48.0-1.amzn2023.0.1 amazonlinux
libmount.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
libnghttp2.aarch64 1.59.0-3.amzn2023.0.1 amazonlinux
librepo.aarch64 1.14.5-2.amzn2023.0.1 amazonlinux
libsmartcols.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
libsss_certmap.aarch64 2.9.4-1.amzn2023.0.1 amazonlinux
libsss_idmap.aarch64 2.9.4-1.amzn2023.0.1 amazonlinux
libsss_nss_idmap.aarch64 2.9.4-1.amzn2023.0.1 amazonlinux
libuuid.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
mod_http2.aarch64 2.0.27-1.amzn2023.0.2 amazonlinux
mod_lua.aarch64 2.4.59-2.amzn2023 amazonlinux
openssh.aarch64 8.7p1-8.amzn2023.0.10 amazonlinux
openssh-clients.aarch64 8.7p1-8.amzn2023.0.10 amazonlinux
openssh-server.aarch64 8.7p1-8.amzn2023.0.10 amazonlinux
python3.aarch64 3.9.16-1.amzn2023.0.8 amazonlinux
python3-dnf.noarch 4.14.0-1.amzn2023.0.4 amazonlinux
python3-dnf-plugins-core.noarch 4.3.0-13.amzn2023.0.4 amazonlinux
python3-hawkey.aarch64 0.69.0-8.amzn2023.0.5 amazonlinux
python3-libcomps.aarch64 0.1.20-1.amzn2023 amazonlinux
python3-libdnf.aarch64 0.69.0-8.amzn2023.0.5 amazonlinux
python3-libs.aarch64 3.9.16-1.amzn2023.0.8 amazonlinux
python3-rpm.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-build-libs.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-libs.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-plugin-selinux.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-plugin-systemd-inhibit.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-sign-libs.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
selinux-policy.noarch 37.22-1.amzn2023.0.2 amazonlinux
selinux-policy-targeted.noarch 37.22-1.amzn2023.0.2 amazonlinux
sssd-client.aarch64 2.9.4-1.amzn2023.0.1 amazonlinux
sssd-common.aarch64 2.9.4-1.amzn2023.0.1 amazonlinux
sssd-kcm.aarch64 2.9.4-1.amzn2023.0.1 amazonlinux
strace.aarch64 6.8-1.amzn2023.0.1 amazonlinux
sudo.aarch64 1.9.15-1.p5.amzn2023.0.1 amazonlinux
system-release.noarch 2023.4.20240528-0.amzn2023 amazonlinux
update-motd.noarch 2.2-1.amzn2023 amazonlinux
util-linux.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
util-linux-core.aarch64 2.37.4-1.amzn2023.0.4 amazonlinux
yum.noarch 4.14.0-1.amzn2023.0.4 amazonlinux
Obsoleting Packages
grub2-tools-minimal.aarch64 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-tools.aarch64 1:2.06-61.amzn2023.0.11 @System
セキュリティアップデートのみを確認
sudo dnf check-upgrade --releasever=2023.4.20240528 --security
実行結果
Last metadata expiration check: 0:02:19 ago on Sun Jun 9 14:59:47 2024.
c-ares.aarch64 1.19.0-1.amzn2023.0.1 amazonlinux
curl-minimal.aarch64 8.5.0-1.amzn2023.0.4 amazonlinux
expat.aarch64 2.5.0-1.amzn2023.0.4 amazonlinux
glibc.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-all-langpacks.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-common.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-gconv-extra.aarch64 2.34-52.amzn2023.0.10 amazonlinux
glibc-locale-source.aarch64 2.34-52.amzn2023.0.10 amazonlinux
gnutls.aarch64 3.8.0-380.amzn2023.0.6 amazonlinux
httpd.aarch64 2.4.59-2.amzn2023 amazonlinux
httpd-core.aarch64 2.4.59-2.amzn2023 amazonlinux
httpd-filesystem.noarch 2.4.59-2.amzn2023 amazonlinux
httpd-tools.aarch64 2.4.59-2.amzn2023 amazonlinux
kernel.aarch64 6.1.91-99.172.amzn2023 amazonlinux
kernel-tools.aarch64 6.1.91-99.172.amzn2023 amazonlinux
krb5-libs.aarch64 1.21-3.amzn2023.0.4 amazonlinux
less.aarch64 608-2.amzn2023.0.2 amazonlinux
libcurl-minimal.aarch64 8.5.0-1.amzn2023.0.4 amazonlinux
libnghttp2.aarch64 1.59.0-3.amzn2023.0.1 amazonlinux
mod_http2.aarch64 2.0.27-1.amzn2023.0.2 amazonlinux
mod_lua.aarch64 2.4.59-2.amzn2023 amazonlinux
openssh.aarch64 8.7p1-8.amzn2023.0.10 amazonlinux
openssh-clients.aarch64 8.7p1-8.amzn2023.0.10 amazonlinux
openssh-server.aarch64 8.7p1-8.amzn2023.0.10 amazonlinux
python3.aarch64 3.9.16-1.amzn2023.0.8 amazonlinux
python3-libs.aarch64 3.9.16-1.amzn2023.0.8 amazonlinux
python3-rpm.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-build-libs.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-libs.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-plugin-selinux.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-plugin-systemd-inhibit.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
rpm-sign-libs.aarch64 4.16.1.3-29.amzn2023.0.6 amazonlinux
Obsoleting Packages
grub2-tools-minimal.aarch64 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-tools.aarch64 1:2.06-61.amzn2023.0.11 @System
httpd のバージョン確認
httpd -v
実行結果
Server version: Apache/2.4.58 (Amazon Linux)
Server built: Oct 24 2023 00:00:00
セキュリティアップデートのみ実行する。
アップデート中、どれくらい接続が切れるかを、以下のコマンドをマック上で実行して確認する。
url=http://18.181.191.150
while true; do TZ=JST-9 date; curl $url; sleep 1; done
以下は、AmazonLinux2023 上で実行
sudo dnf upgrade --releasever=2023.4.20240528 --security
1秒接続が切れた
Mon Jun 10 00:11:57 JST 2024
<html><body><h1>It works!</h1></body></html>
Mon Jun 10 00:11:58 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 19 ms: Couldn't connect to server
Mon Jun 10 00:11:59 JST 2024
<html><body><h1>It works!</h1></body></html>
httpd のバージョン
httpd -v
実行結果
Server version: Apache/2.4.59 (Amazon Linux)
Server built: Apr 18 2024 00:00:00
ログイン時のメッセージは変わらず
A newer release of "Amazon Linux" is available.
Version 2023.4.20240319:
Version 2023.4.20240401:
Version 2023.4.20240416:
Version 2023.4.20240429:
Version 2023.4.20240513:
Version 2023.4.20240528:
Run "/usr/bin/dnf check-release-update" for full release and version update info
, #_
~\_ ####_ Amazon Linux 2023
~~ \_#####\
~~ \###|
~~ \#/ ___ https://aws.amazon.com/linux/amazon-linux-2023
~~ V~' '->
~~~ /
~~._. _/
_/ _/
_/m/'
マネコンからインスタンスを再起動
Mon Jun 10 00:16:12 JST 2024
<html><body><h1>It works!</h1></body></html>
Mon Jun 10 00:16:13 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 12 ms: Couldn't connect to server
Mon Jun 10 00:16:14 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 20 ms: Couldn't connect to server
Mon Jun 10 00:16:15 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 12 ms: Couldn't connect to server
Mon Jun 10 00:16:16 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 14 ms: Couldn't connect to server
Mon Jun 10 00:16:17 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 16 ms: Couldn't connect to server
Mon Jun 10 00:16:18 JST 2024
curl: (7) Failed to connect to 18.181.191.150 port 80 after 23 ms: Couldn't connect to server
Mon Jun 10 00:16:19 JST 2024
curl: (28) Failed to connect to 18.181.191.150 port 80 after 7787 ms: Couldn't connect to server
Mon Jun 10 00:16:28 JST 2024
<html><body><h1>It works!</h1></body></html>
15秒ほど通信断
再起動してもメッセージは変わらず
A newer release of "Amazon Linux" is available.
Version 2023.4.20240319:
Version 2023.4.20240401:
Version 2023.4.20240416:
Version 2023.4.20240429:
Version 2023.4.20240513:
Version 2023.4.20240528:
Run "/usr/bin/dnf check-release-update" for full release and version update info
, #_
~\_ ####_ Amazon Linux 2023
~~ \_#####\
~~ \###|
~~ \#/ ___ https://aws.amazon.com/linux/amazon-linux-2023
~~ V~' '->
~~~ /
~~._. _/
_/ _/
_/m/'
system-release
をアップデートしてインスタンスを再起動
sudo dnf upgrade --releasever=2023.4.20240528 system-release
ログインメッセージが変わった
, #_
~\_ ####_ Amazon Linux 2023
~~ \_#####\
~~ \###|
~~ \#/ ___ https://aws.amazon.com/linux/amazon-linux-2023
~~ V~' '->
~~~ /
~~._. _/
_/ _/
_/m/'
セキュリティアップデートのみを確認
sudo dnf check-upgrade --releasever=2023.4.20240528 --security
実行結果
Last metadata expiration check: 0:28:14 ago on Sun Jun 9 14:59:47 2024.
No security updates needed, but 43 updates available
Obsoleting Packages
grub2-tools-minimal.aarch64 1:2.06-61.amzn2023.0.12 amazonlinux
grub2-tools.aarch64 1:2.06-61.amzn2023.0.11 @System
Obsoleting Packages
grub2-tools-minimal.aarch64
grub2-tools-minimal.aarch64 をアップグレードすれば、上記の表示は消える
sudo dnf upgrade --releasever=2023.4.20240528 grub2-tools-minimal.aarch64
セキュリティアップデートのみを確認
sudo dnf check-upgrade --releasever=2023.4.20240528 --security
実行結果
Last metadata expiration check: 0:33:33 ago on Sun Jun 9 14:59:47 2024.
No security updates needed, but 38 updates available
Inspector にスキャンしてもらうためには、EC2 に AmazonSSMManagedInstanceCore
ポリシーが設定された IAM ロールをアタッチする必要がある。