SUSE-RU-2026:0996-1: moderate: Recommended update for rust-keylime

SLE-UPDATES null at suse.de
Tue Mar 24 21:12:25 UTC 2026 


# Recommended update for rust-keylime

Announcement ID: SUSE-RU-2026:0996-1  
Release Date: 2026-03-24T13:31:26Z  
Rating: moderate  
References:

  * bsc#1259963

  
Affected Products:

  * SUSE Linux Enterprise Micro 5.5

  
  
An update that has one fix can now be installed.

## Description:

This update for rust-keylime fixes the following issues:

  * Suggests only the IMA policy package, and keep it as example (bsc#1259963)
  * Add a patch to re-generate TSS bindings
  * Update to version 0.2.9+8:
    * build(deps):
      * bump thiserror from 2.0.17 to 2.0.18
      * bump docker/login-action from 3 to 4
      * bump docker/metadata-action from 5 to 6
      * bump docker/build-push-action from 6 to 7
      * bump actions/upload-artifact from 6 to 7
      * bump mockoon/cli-action from 2 to 3
      * bump http from 1.3.1 to 1.4.0
      * bump serde from 1.0.219 to 1.0.228
      * bump clap from 4.5.45 to 4.5.54
      * bump actix-web from 4.11.0 to 4.12.1
    * Remove generate-bindings feature from tss-esapi
    * Use port constants instead of hardcoded values in tests
    * push-attestation:
      * use registrar TLS port when TLS is enabled
      * drop support for mTLS to registrar
      * drop mTLS support and require PoP authentication
      * drop self-signed mTLS certificate generation
    * dist: Make the services to conflict with each other
    * cargo:
      * bump tracing_subscriber to version 0.3.20
      * bump time to version 0.3.47
    * Update reqwest from 0.12 to 0.13
    * auth:
      * load CA certificate in authentication client
      * reuse existing ContextInfo to avoid duplicate TPM objects
    * packit: add missing e2e tests
    * registrar: rename insecure option to disable_tls
    * config:
      * add missing config options to keylime-agent.conf
      * add support for "default" in registrar_api_versions option
      * add support for "default" in registrar_tls_ca_cert option
      * drop unused config options and constants
    * resilient_client: reauthenticate if a 403 error is received

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * SUSE Linux Enterprise Micro 5.5  
    zypper in -t patch SUSE-SLE-Micro-5.5-2026-996=1

## Package List:

  * SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
    * rust-keylime-debuginfo-0.2.9+8-150500.3.14.1
    * rust-keylime-0.2.9+8-150500.3.14.1

## References:

  * https://bugzilla.suse.com/show_bug.cgi?id=1259963

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20260324/916dd4c9/attachment.htm>

More information about the sle-updates mailing list