Skip to content

/AWS1/CL_LMD=>CREATEFUNCTION()

About CreateFunction

Creates a Lambda function. To create a function, you need a deployment package and an execution role. The deployment package is a .zip file archive or container image that contains your function code. The execution role grants the function permission to use Amazon Web Services, such as Amazon CloudWatch Logs for log streaming and X-Ray for request tracing.

If the deployment package is a container image, then you set the package type to Image. For a container image, the code property must include the URI of a container image in the Amazon ECR registry. You do not need to specify the handler and runtime properties.

If the deployment package is a .zip file archive, then you set the package type to Zip. For a .zip file archive, the code property specifies the location of the .zip file. You must also specify the handler and runtime properties. The code in the deployment package must be compatible with the target instruction set architecture of the function (x86-64 or arm64). If you do not specify the architecture, then the default value is x86-64.

When you create a function, Lambda provisions an instance of the function and its supporting resources. If your function connects to a VPC, this process can take a minute or so. During this time, you can't invoke or modify the function. The State, StateReason, and StateReasonCode fields in the response from GetFunctionConfiguration indicate when the function is ready to invoke. For more information, see Lambda function states.

A function has an unpublished version, and can have published versions and aliases. The unpublished version changes when you update your function's code and configuration. A published version is a snapshot of your function code and configuration that can't be changed. An alias is a named resource that maps to a version, and can be changed to map to a different version. Use the Publish parameter to create version 1 of your function from its initial configuration.

The other parameters let you configure version-specific and function-level settings. You can modify version-specific settings later with UpdateFunctionConfiguration. Function-level settings apply to both the unpublished and published versions of the function, and include tags (TagResource) and per-function concurrency limits (PutFunctionConcurrency).

You can use code signing if your deployment package is a .zip file archive. To enable code signing for this function, specify the ARN of a code-signing configuration. When a user attempts to deploy a code package with UpdateFunctionCode, Lambda checks that the code package has a valid signature from a trusted publisher. The code-signing configuration includes set of signing profiles, which define the trusted publishers for this function.

If another Amazon Web Services account or an Amazon Web Service invokes your function, use AddPermission to grant permission by creating a resource-based Identity and Access Management (IAM) policy. You can grant permissions at the function level, on a version, or on an alias.

To invoke your function directly, use Invoke. To invoke your function in response to events in other Amazon Web Services, create an event source mapping (CreateEventSourceMapping), or configure a function trigger in the other service. For more information, see Invoking Lambda functions.

Method Signature

IMPORTING

Required arguments:

IV_FUNCTIONNAME TYPE /AWS1/LMDFUNCTIONNAME /AWS1/LMDFUNCTIONNAME

The name or ARN of the Lambda function.

Name formats

  • Function namemy-function.

  • Function ARNarn:aws:lambda:us-west-2:123456789012:function:my-function.

  • Partial ARN123456789012:function:my-function.

The length constraint applies only to the full ARN. If you specify only the function name, it is limited to 64 characters in length.

IV_ROLE TYPE /AWS1/LMDROLEARN /AWS1/LMDROLEARN

The Amazon Resource Name (ARN) of the function's execution role.

IO_CODE TYPE REF TO /AWS1/CL_LMDFUNCTIONCODE /AWS1/CL_LMDFUNCTIONCODE

The code for the function.

Optional arguments:

IV_RUNTIME TYPE /AWS1/LMDRUNTIME /AWS1/LMDRUNTIME

The identifier of the function's runtime. Runtime is required if the deployment package is a .zip file archive.

The following list includes deprecated runtimes. For more information, see Runtime deprecation policy.

IV_HANDLER TYPE /AWS1/LMDHANDLER /AWS1/LMDHANDLER

The name of the method within your code that Lambda calls to run your function. Handler is required if the deployment package is a .zip file archive. The format includes the file name. It can also include namespaces and other qualifiers, depending on the runtime. For more information, see Lambda programming model.

IV_DESCRIPTION TYPE /AWS1/LMDDESCRIPTION /AWS1/LMDDESCRIPTION

A description of the function.

IV_TIMEOUT TYPE /AWS1/LMDTIMEOUT /AWS1/LMDTIMEOUT

The amount of time (in seconds) that Lambda allows a function to run before stopping it. The default is 3 seconds. The maximum allowed value is 900 seconds. For more information, see Lambda execution environment.

IV_MEMORYSIZE TYPE /AWS1/LMDMEMORYSIZE /AWS1/LMDMEMORYSIZE

The amount of memory available to the function at runtime. Increasing the function memory also increases its CPU allocation. The default value is 128 MB. The value can be any multiple of 1 MB.

IV_PUBLISH TYPE /AWS1/LMDBOOLEAN /AWS1/LMDBOOLEAN

Set to true to publish the first version of the function during creation.

IO_VPCCONFIG TYPE REF TO /AWS1/CL_LMDVPCCONFIG /AWS1/CL_LMDVPCCONFIG

For network connectivity to Amazon Web Services resources in a VPC, specify a list of security groups and subnets in the VPC. When you connect a function to a VPC, it can access resources and the internet only through that VPC. For more information, see Configuring a Lambda function to access resources in a VPC.

IV_PACKAGETYPE TYPE /AWS1/LMDPACKAGETYPE /AWS1/LMDPACKAGETYPE

The type of deployment package. Set to Image for container image and set to Zip for .zip file archive.

IO_DEADLETTERCONFIG TYPE REF TO /AWS1/CL_LMDDEADLETTERCONFIG /AWS1/CL_LMDDEADLETTERCONFIG

A dead-letter queue configuration that specifies the queue or topic where Lambda sends asynchronous events when they fail processing. For more information, see Dead-letter queues.

IO_ENVIRONMENT TYPE REF TO /AWS1/CL_LMDENVIRONMENT /AWS1/CL_LMDENVIRONMENT

Environment variables that are accessible from function code during execution.

IV_KMSKEYARN TYPE /AWS1/LMDKMSKEYARN /AWS1/LMDKMSKEYARN

The ARN of the Key Management Service (KMS) customer managed key that's used to encrypt your function's environment variables. When Lambda SnapStart is activated, Lambda also uses this key is to encrypt your function's snapshot. If you deploy your function using a container image, Lambda also uses this key to encrypt your function when it's deployed. Note that this is not the same key that's used to protect your container image in the Amazon Elastic Container Registry (Amazon ECR). If you don't provide a customer managed key, Lambda uses a default service key.

IO_TRACINGCONFIG TYPE REF TO /AWS1/CL_LMDTRACINGCONFIG /AWS1/CL_LMDTRACINGCONFIG

Set Mode to Active to sample and trace a subset of incoming requests with X-Ray.

IT_TAGS TYPE /AWS1/CL_LMDTAGS_W=>TT_TAGS TT_TAGS

A list of tags to apply to the function.

IT_LAYERS TYPE /AWS1/CL_LMDLAYERLIST_W=>TT_LAYERLIST TT_LAYERLIST

A list of function layers to add to the function's execution environment. Specify each layer by its ARN, including the version.

IT_FILESYSTEMCONFIGS TYPE /AWS1/CL_LMDFILESYSTEMCONFIG=>TT_FILESYSTEMCONFIGLIST TT_FILESYSTEMCONFIGLIST

Connection settings for an Amazon EFS file system.

IO_IMAGECONFIG TYPE REF TO /AWS1/CL_LMDIMAGECONFIG /AWS1/CL_LMDIMAGECONFIG

Container image configuration values that override the values in the container image Dockerfile.

IV_CODESIGNINGCONFIGARN TYPE /AWS1/LMDCODESIGNINGCONFIGARN /AWS1/LMDCODESIGNINGCONFIGARN

To enable code signing for this function, specify the ARN of a code-signing configuration. A code-signing configuration includes a set of signing profiles, which define the trusted publishers for this function.

IT_ARCHITECTURES TYPE /AWS1/CL_LMDARCHITECTURESLST_W=>TT_ARCHITECTURESLIST TT_ARCHITECTURESLIST

The instruction set architecture that the function supports. Enter a string array with one of the valid values (arm64 or x86_64). The default value is x86_64.

IO_EPHEMERALSTORAGE TYPE REF TO /AWS1/CL_LMDEPHEMERALSTORAGE /AWS1/CL_LMDEPHEMERALSTORAGE

The size of the function's /tmp directory in MB. The default value is 512, but can be any whole number between 512 and 10,240 MB. For more information, see Configuring ephemeral storage (console).

IO_SNAPSTART TYPE REF TO /AWS1/CL_LMDSNAPSTART /AWS1/CL_LMDSNAPSTART

The function's SnapStart setting.

IO_LOGGINGCONFIG TYPE REF TO /AWS1/CL_LMDLOGGINGCONFIG /AWS1/CL_LMDLOGGINGCONFIG

The function's Amazon CloudWatch Logs configuration settings.

RETURNING

OO_OUTPUT TYPE REF TO /AWS1/CL_LMDFUNCTIONCONF /AWS1/CL_LMDFUNCTIONCONF