AWS re:Invent 2025 - Amazon Linux: latest features and AWS optimizations (CMP303)
Source: Dev.to
Introduction
AWS re:Invent 2025 session CMP303 – Amazon Linux: latest features and AWS optimizations presented by Sree Sunku (Sr. Product Manager) and Frédérick Lefebvre (Principal Engineer). The talk covered the 15‑year evolution of Amazon Linux, key updates in Amazon Linux 2023 (AL2023), upcoming timelines, and the roadmap for the next major release.
Amazon Linux Overview
Amazon Linux is a general‑purpose Linux distribution created, maintained, and optimized by AWS. It is container‑ready and integrates tightly with AWS services such as EKS, ECS, CloudInit, IAM, and CloudWatch, making it the most popular OS on AWS.
Why Customers Choose Amazon Linux
- AWS Optimization – Pre‑installed AWS tools and CloudInit defaults reduce configuration effort.
- Security – Regular security patches and bug fixes; extensive CVE evaluation (see section below).
- Operational Simplicity – Native integrations for networking, IAM roles, EBS, monitoring, and logging enable “just works” instance launches.
- Compliance‑Ready – Supports FIPS, DISA STIG, and other regulatory hardening out of the box.
- Cost Efficiency – No licensing fees; includes built‑in AWS support, lowering total cost of ownership.
Evolution Timeline
| Year | Release | Highlights |
|---|---|---|
| 2010 | Amazon Linux 1 (AL1) | First cloud‑native Linux distribution from AWS. |
| 2017 | Amazon Linux 2 (AL2) | Long‑term support, enhanced stability and security; became the most widely used AWS OS. |
| 2023 | Amazon Linux 2023 (AL2023) | Modern defaults, improved security, new features (see below). |
| 2027 (planned) | Next Amazon Linux version | Automated kernel updates, smoother upgrades, stronger AI/ML workload support. |
Critical announcement: Amazon Linux 2 support ends June 30 2026.
Amazon Linux 2023 (AL2023) – Key Innovations
Security Enhancements
- 1,500 security fixes delivered since launch.
- CVE Management: The Amazon Linux team continuously evaluates new CVEs, prioritizing those affecting core open‑source components and delivering timely patches.
- FIPS Validation: Completed for AL2023, enabling use in environments requiring Federal Information Processing Standards.
- DISA STIG Automation: Built‑in automation to apply Defense Information Systems Agency Security Technical Implementation Guides.
Kernel Lifecycle
- Extended maintenance: Kernel now receives a 4‑year maintenance window.
- New SSM parameters let customers query and control kernel update behavior.
Performance & Compatibility
- OpenSSL 3.2: Up to 15× faster cryptographic performance compared with previous versions.
- Graphical Desktop Support: Officially supported desktop environments for development and testing workloads.
- NVIDIA Repository Integration: Simplified GPU driver installation for compute‑intensive workloads.
Package Ecosystem – SPAL
- Supplementary Packages for Amazon Linux (SPAL): Thousands of EPEL‑rebuilt packages now available, expanding the software catalog without compromising security or stability.
End‑of‑Support Timeline for Amazon Linux 2
- June 30 2026: Final date for security updates and bug fixes.
- Customers are encouraged to plan migration to AL2023 or the upcoming 2027 release well before this deadline.
Future Roadmap (2027 Release)
- Automated Kernel Updates: Seamless, rolling kernel upgrades with minimal disruption.
- Simplified Upgrade Path: Tools and documentation to ease migration from AL2/AL2023.
- Enhanced AI/ML Support: Optimizations for popular frameworks (TensorFlow, PyTorch) and better GPU driver handling.
Closing
The session highlighted Amazon Linux’s continuous evolution, its deep integration with AWS services, and the commitment to security, compliance, and performance. Attendees were urged to adopt AL2023 now and begin planning for the 2027 release to stay ahead of the upcoming end‑of‑support date for Amazon Linux 2.