<div class="container">
<h1>Recommended update for rust-keylime</h1>
<table class="table table-striped table-bordered">
<tbody>
<tr>
<th>Announcement ID:</th>
<td>SUSE-RU-2026:0996-1</td>
</tr>
<tr>
<th>Release Date:</th>
<td>2026-03-24T13:31:26Z</td>
</tr>
<tr>
<th>Rating:</th>
<td>moderate</td>
</tr>
<tr>
<th>References:</th>
<td>
<ul>
<li style="display: inline;">
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1259963">bsc#1259963</a>
</li>
</ul>
</td>
</tr>
<tr>
<th>Affected Products:</th>
<td>
<ul class="list-group">
<li class="list-group-item">SUSE Linux Enterprise Micro 5.5</li>
</ul>
</td>
</tr>
</tbody>
</table>
<p>An update that has one fix can now be installed.</p>
<h2>Description:</h2>
<p>This update for rust-keylime fixes the following issues:</p>
<ul>
<li>Suggests only the IMA policy package, and keep it as example (bsc#1259963)</li>
<li>Add a patch to re-generate TSS bindings</li>
<li>Update to version 0.2.9+8:<ul>
<li>build(deps):<ul>
<li>bump thiserror from 2.0.17 to 2.0.18</li>
<li>bump docker/login-action from 3 to 4</li>
<li>bump docker/metadata-action from 5 to 6</li>
<li>bump docker/build-push-action from 6 to 7</li>
<li>bump actions/upload-artifact from 6 to 7</li>
<li>bump mockoon/cli-action from 2 to 3</li>
<li>bump http from 1.3.1 to 1.4.0</li>
<li>bump serde from 1.0.219 to 1.0.228</li>
<li>bump clap from 4.5.45 to 4.5.54</li>
<li>bump actix-web from 4.11.0 to 4.12.1</li>
</ul>
</li>
<li>Remove generate-bindings feature from tss-esapi</li>
<li>Use port constants instead of hardcoded values in tests</li>
<li>push-attestation:<ul>
<li>use registrar TLS port when TLS is enabled</li>
<li>drop support for mTLS to registrar</li>
<li>drop mTLS support and require PoP authentication</li>
<li>drop self-signed mTLS certificate generation</li>
</ul>
</li>
<li>dist: Make the services to conflict with each other</li>
<li>cargo:<ul>
<li>bump tracing_subscriber to version 0.3.20</li>
<li>bump time to version 0.3.47</li>
</ul>
</li>
<li>Update reqwest from 0.12 to 0.13</li>
<li>auth:<ul>
<li>load CA certificate in authentication client</li>
<li>reuse existing ContextInfo to avoid duplicate TPM objects</li>
</ul>
</li>
<li>packit: add missing e2e tests</li>
<li>registrar: rename insecure option to disable_tls</li>
<li>config:<ul>
<li>add missing config options to keylime-agent.conf</li>
<li>add support for "default" in registrar_api_versions option</li>
<li>add support for "default" in registrar_tls_ca_cert option</li>
<li>drop unused config options and constants</li>
</ul>
</li>
<li>resilient_client: reauthenticate if a 403 error is received</li>
</ul>
</li>
</ul>
<h2>Patch Instructions:</h2>
<p>
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".<br/>
Alternatively you can run the command listed for your product:
</p>
<ul class="list-group">
<li class="list-group-item">
SUSE Linux Enterprise Micro 5.5
<br/>
<code>zypper in -t patch SUSE-SLE-Micro-5.5-2026-996=1</code>
</li>
</ul>
<h2>Package List:</h2>
<ul>
<li>
SUSE Linux Enterprise Micro 5.5 (aarch64 ppc64le s390x x86_64)
<ul>
<li>rust-keylime-debuginfo-0.2.9+8-150500.3.14.1</li>
<li>rust-keylime-0.2.9+8-150500.3.14.1</li>
</ul>
</li>
</ul>
<h2>References:</h2>
<ul>
<li>
<a href="https://bugzilla.suse.com/show_bug.cgi?id=1259963">https://bugzilla.suse.com/show_bug.cgi?id=1259963</a>
</li>
</ul>
</div>