Rocky Linux
Rocky Linux is an open-source, community-driven enterprise operating system designed to be 100% bug-for-bug compatible with Red Hat Enterprise Linux (RHEL), providing a stable, production-ready Linux distribution with a 10-year support lifecycle at no cost.[1] It rebuilds directly from RHEL sources to ensure full compatibility for enterprise workloads, including support for architectures such as x86_64, aarch64, ppc64le, s390x, and recently added RISC-V.[1] As of November 2025, the latest general availability release is Rocky Linux 10.1, released in November 2025, with ongoing support for versions 9.7 (November 2025) and earlier releases like 8.10.[2][3] Rocky Linux was founded in December 2020 by Gregory Kurtzer, a co-founder of the original CentOS project, in direct response to Red Hat's announcement that it would discontinue the traditional CentOS Linux distribution in favor of CentOS Stream, a rolling-release model upstream of RHEL.[4] The project's name pays tribute to Rocky McGaugh, an early CentOS co-founder who had passed away, and its GitHub repository quickly became one of the top-trending projects worldwide by December 12, 2020.[4] The first stable release, version 8.4 codenamed "Green Obsidian," arrived on June 21, 2021, marking the project's commitment to recreating a downstream, binary-compatible version of RHEL to fulfill the original goals of CentOS as a free alternative for production environments.[4] Governed by the Rocky Enterprise Software Foundation (RESF), a non-profit organization, Rocky Linux emphasizes open governance, public contributions, and adherence to the United Nations Open Source Principles, earning recognition as a Digital Public Good in 2024.[5][6] The distribution supports a wide ecosystem of packages via repositories, including security updates and errata synchronized with RHEL, and is available in various formats such as installation media, containers, cloud images, and live ISOs for x86_64 and aarch64 architectures.[7] Its community-driven model fosters collaboration among sponsors, partners, and users, ensuring long-term sustainability without vendor lock-in.[1]Overview
Definition and Purpose
Rocky Linux is a community-driven, open-source enterprise operating system designed for stability and long-term deployment in production environments.[1][8] It is developed under the oversight of the Rocky Enterprise Software Foundation (RESF), which organizes efforts to deliver enterprise-grade software solutions through collaborative open-source practices.[8] The primary purpose of Rocky Linux is to offer a free, binary-compatible alternative to Red Hat Enterprise Linux (RHEL), enabling users to access enterprise-grade Linux functionality without proprietary vendor lock-in or subscription costs.[1][9] This initiative aligns with RESF's mission to build a global community focused on developing secure, stable, and integral open-source solutions for enterprise needs, while promoting knowledge sharing, inclusivity, and cross-sector collaboration.[8] Central to its design is a commitment to bug-for-bug compatibility with RHEL, ensuring that applications, hardware support, and system behaviors remain identical to those in the upstream distribution.[1][10] In the broader Linux ecosystem, Rocky Linux serves as a response to evolving dynamics in proprietary distributions, providing a stable, community-led option for organizations seeking reliable open-source alternatives.[9][8]Compatibility Model
Rocky Linux achieves bug-for-bug compatibility with Red Hat Enterprise Linux (RHEL) through an exact replication of RHEL's source code rebuild process, resulting in identical binaries, configurations, and behaviors.[1] This approach ensures that Rocky Linux mirrors RHEL's functionality, including any existing bugs, to provide enterprise-grade predictability and reliability without introducing deviations.[1] The rebuild process utilizes RHEL source code obtained from multiple public sources, including CentOS Stream repositories, pristine upstream packages, and RHEL source RPMs (SRPMs), which are then compiled into Rocky Linux packages without any modifications.[11] By adhering strictly to this unmodified rebuild methodology, Rocky Linux maintains 100% compatibility while leveraging open source distribution channels to access the necessary code.[11] This compatibility model has significant implications for users, enabling seamless migration from RHEL or CentOS Linux via straightforward tools and scripts that replace repositories and update packages with minimal disruption.[12] It also allows Rocky Linux to support RHEL-certified hardware and software ecosystems, permitting organizations to avoid RHEL's subscription costs while retaining full access to compatible enterprise tools and applications.[13] In contrast to upstream RHEL, which incorporates proprietary additions from Red Hat, Rocky Linux excludes these elements to ensure complete openness, with all components distributed under the GNU General Public License (GPL) and other open source licenses.[1] This focus on pure open source distribution promotes community accessibility and modifiability without commercial restrictions.[1]History
Founding
Rocky Linux was announced on December 8, 2020, by Gregory Kurtzer, the co-founder of the original CentOS project, in direct response to Red Hat's simultaneous announcement that it would discontinue CentOS Linux and transition to CentOS Stream as a rolling-release development platform.[4] This shift by Red Hat, which accelerated the end-of-life for CentOS 8 to December 31, 2021, left a void for enterprises and developers seeking a stable, binary-compatible alternative to Red Hat Enterprise Linux (RHEL) without the upstream volatility of CentOS Stream.[14] Kurtzer named the project after his late CentOS co-founder Rocky McGaugh, aiming to recreate the community-driven, production-ready RHEL clone that CentOS had originally provided.[4] To provide a structured and sustainable framework for the project, Kurtzer established the Rocky Enterprise Software Foundation (RESF) as a non-profit organization dedicated to overseeing Rocky Linux's development and ensuring its long-term viability.[15] Founded in early 2021, RESF was designed to foster balanced community governance while accommodating enterprise needs, vendors, and commercial interests, thereby protecting the project's independence and promoting open-source principles.[16] The foundation positioned itself as the host for Rocky Linux, handling legal, financial, and organizational aspects to allow the technical community to focus on building a reliable operating system.[4] The project's launch quickly attracted a robust early team, drawing heavily from former CentOS contributors who shared Kurtzer's vision for a stable RHEL-compatible distribution.[17] Within days of the announcement, over 650 volunteers had expressed interest in contributing, signaling strong community support and the rapid assembly of developers experienced in RHEL ecosystem tooling and packaging.[18] This influx of talent from the CentOS diaspora, combined with new volunteers, laid the groundwork for collaborative efforts on GitHub, where the repository became one of the platform's top-trending projects by mid-December 2020.[4]Major Milestones
The first release candidate of Rocky Linux was made available on April 30, 2021, initiating a structured testing phase for the distribution's initial version and allowing early community feedback on compatibility and stability.[4] This milestone followed the project's announcement in late 2020 and represented a critical step toward delivering a viable alternative to CentOS Linux. Subsequently, on June 21, 2021, Rocky Linux 8.4 achieved general availability as the project's inaugural stable release, supporting both x86_64 and ARM64 architectures and establishing its bug-for-bug compatibility with Red Hat Enterprise Linux.[19] This release marked the transition from development to production readiness, enabling widespread adoption in enterprise environments.[20] In 2022, the Rocky Enterprise Software Foundation (RESF) underwent significant organizational evolution, including the election of its first board of directors from December 7 to 21, which formalized governance and expanded representation to include project leaders and industry experts.[21] Concurrently, partnerships such as with CIQ for infrastructure and build support were solidified, providing enhanced resources for reproducible builds and cloud deployments.[22] These changes strengthened the foundation's ability to sustain long-term development.[23] By 2025, Rocky Linux had advanced to major version releases, with Rocky Linux 9 launched on July 14, 2022, introducing a new reproducible build system called Peridot to verify source code integrity.[24] On March 12, 2025, the RESF endorsed the United Nations Open Source Principles, reinforcing the project's commitment to open governance.[5] The release of Rocky Linux 10 on June 11, 2025, further enhanced ARM64 support alongside initial official compatibility for RISC-V architectures, following an announcement of RISC-V support on May 21, 2025, and deeper integrations with cloud providers like Google Cloud and AWS for seamless deployment.[2][25] Amid these achievements, Rocky Linux navigated key challenges, including legal clarifications in 2023 regarding access to Red Hat's source code following restrictions on non-GPL components; the project affirmed its rights under open-source licenses to obtain necessary binaries via alternative channels like CentOS Stream.[11] This resolution, combined with robust community expansion to over 5,000 contributors, underscored the distribution's resilience and growing ecosystem.[26]Technical Features
Core Components
Rocky Linux employs the upstream Linux kernel versions that align with those in Red Hat Enterprise Linux (RHEL) for each major release, ensuring binary compatibility and stability through backported patches rather than adopting every upstream change.[27][28] For instance, Rocky Linux 9 utilizes kernel version 5.14 with stability-focused backports, while Rocky Linux 10 defaults to kernel 6.12.0, incorporating selective enhancements for enterprise reliability without introducing upstream instability.[27][29] The distribution's package management system relies on DNF (Dandified YUM) as the primary tool, with YUM maintained as a compatibility alias for legacy scripts and commands.[30] Repositories are structured to mirror RHEL exactly, enabling seamless integration with EPEL for additional community packages and AppStream for modular application streams, thus preserving dependency resolution and update paths.[31][32] At its foundation, Rocky Linux is built around RPM (Red Hat Package Manager) for software packaging and distribution, which handles installation, updates, and verification of binaries and libraries.[32] The system initializes via systemd, the default service and process manager that oversees boot processes, service dependencies, and resource control in a unified manner.[33] Workstation variants include optional spins featuring GNOME as the standard desktop environment or KDE Plasma for users preferring its customizable interface.[34][35] Hardware compatibility in Rocky Linux spans multiple architectures, including x86_64-v3 (for Intel Haswell or AMD equivalent or later processors), aarch64 (ARM64) for ARM-based systems, ppc64le for IBM Power little-endian platforms, s390x for IBM Z mainframes, and riscv64 for RISC-V systems, with built-in drivers supporting enterprise-grade hardware from vendors like IBM and Dell.[27][36] This multi-architecture support facilitates deployment across diverse server and cloud environments while maintaining RHEL-equivalent driver integration.[37]Security and Stability
Rocky Linux incorporates robust security features inherited from its compatibility with Red Hat Enterprise Linux (RHEL), including SELinux enabled by default in enforcing mode to provide mandatory access control that confines processes and limits potential damage from exploits.[38] Firewalld serves as the default firewall management tool, offering dynamic zone-based configuration for network traffic control and simplifying rule management through command-line or graphical interfaces.[39] The distribution synchronizes its security patching with RHEL via the Rocky Linux Security Advisories (RLSA) system, ensuring timely remediation of Common Vulnerabilities and Exposures (CVEs) through backported fixes that maintain package stability.[40] To enhance stability, Rocky Linux employs a point release model, delivering minor updates that incorporate bug fixes and security patches without introducing upstream changes that could disrupt binary compatibility or application workflows.[41] This approach prioritizes long-term reliability, with each major version receiving 10 years of support, including five years of full updates followed by extended security maintenance.[1] For auditing and compliance, Rocky Linux supports paths to FIPS 140-3 certification, particularly for versions 8 and 9, enabling organizations to meet cryptographic standards for sensitive environments through validated modules.[42] It also integrates OpenSCAP for automated security compliance scanning, allowing users to evaluate systems against standards like DISA STIG profiles directly from official repositories.[43] A distinctive aspect of Rocky Linux's security ecosystem is its community-driven errata process, managed by the Rocky Enterprise Software Foundation (RESF) in collaboration with CIQ, which utilizes the Apollo system to generate and distribute patches more rapidly for non-critical issues while upholding RHEL equivalence.[44][45] This open process fosters transparency and quicker community contributions to vulnerability resolution.[46]Releases
Version Timeline
Rocky Linux maintains a release cadence closely aligned with Red Hat Enterprise Linux, issuing major versions approximately every three years to ensure binary compatibility and feature parity. Point releases within each major series deliver incremental updates, primarily addressing bug fixes, security vulnerabilities, and minor enhancements, with updates typically occurring every six months—for example, the Rocky Linux 8 series progressed from 8.5 through 8.10. The project initially focused on x86_64 architecture support, expanding to aarch64 beginning with Rocky Linux 8.5 in November 2021 and adding ppc64le support starting with Rocky Linux 9.0 in July 2022.[47][24] The first stable release, Rocky Linux 8.4, marked the project's general availability milestone in June 2021.[19]| Version | Release Date | Architectures | Key Notes |
|---|---|---|---|
| 8.4 | June 21, 2021 | x86_64 | Initial stable release, derived from RHEL 8.4.[19] |
| 8.10 | May 31, 2024 | x86_64, aarch64 | Final point release in the 8 series, incorporating cumulative security and stability updates.[48] |
| 9.0 | July 14, 2022 | x86_64, aarch64, ppc64le, s390x | Major version introducing expanded architecture support.[24] |
| 9.4 | May 9, 2024 | x86_64, aarch64, ppc64le, s390x | Point release with updated packages and security fixes.[49] |
| 9.5 | November 19, 2024 | x86_64, aarch64, ppc64le, s390x | Point release including Podman 5.0, Cockpit file management, and updates to Apache, Node.js, GCC.[50] |
| 9.6 | June 4, 2025 | x86_64, aarch64, ppc64le, s390x | Point release with security fixes and package enhancements.[51] |
| 10.0 | June 11, 2025 | x86_64, aarch64, ppc64le, s390x, riscv64 | Major version introducing official RISC-V (riscv64) support, raising x86_64 baseline to v3, and removing 32-bit packages.[2] |
Support Policies
Rocky Linux provides a structured support lifecycle for its major versions, ensuring long-term stability and security for users. Each major release receives 10 years of total support, divided into two primary phases: 5 years of full support followed by 5 years of maintenance support.[41] This policy aligns with the upstream Red Hat Enterprise Linux (RHEL) timelines to maintain binary compatibility, though Rocky Linux does not include an extended life phase beyond the initial 10 years.[41][52] During the full support phase, which lasts the first 5 years and includes minor releases every 6 months (typically in May and November), Rocky Linux delivers comprehensive updates encompassing security fixes, bug resolutions, new features, and software rebases.[41] This phase concludes with the .10 minor version (e.g., 8.10 or 9.10), after which the distribution transitions to maintenance support. In the maintenance phase, support focuses on security updates and critical maintenance fixes, without introducing new features or major rebases, extending usability for legacy deployments until the end-of-life (EOL) date.[41] At EOL, typically 10 years from the major version's release (e.g., Rocky Linux 8 reaches EOL on May 31, 2029), no further updates are provided, and users are encouraged to migrate to a supported version.[41] Updates are disseminated through errata releases synchronized closely with upstream sources, appearing on official mirrors within 24-48 hours for critical patches and within 7 days for minor releases.[41] Users can apply these updates using package management tools such as DNF, which supports automated upgrades via commands likednf update to keep systems current without manual intervention.[41] This mechanism ensures seamless integration across deployment environments.
The support policy applies uniformly to official variants, including Server, Workstation, and Minimal installations, providing consistent lifecycle coverage for enterprise and desktop use cases.[41] Community-maintained spins, however, may adhere to different support schedules determined by their respective maintainers, potentially offering shorter or extended timelines based on project needs.[41]