Hi Martin, Generally speaking, it is not allow to sign multiple policy lists with same key, it is by design for security reasons.
Regards, -Ning -----Original Message----- From: Wilck, Martin [mailto:martin.wi...@ts.fujitsu.com] Sent: Tuesday, February 16, 2016 6:01 AM To: tboot-devel@lists.sourceforge.net Subject: [tboot-devel] LCP policy with two signed policy lists Hello, is it forbidden to use a PO policy with two policy lists signed by the same key? I was experimenting with LCP and consistently encountering errors (TXT reset) with this configuration. I am attaching a dump of the policy data and a corresponding tboot log. The same policy works fine if I don't sign the lists. It also works if I put both elements into a single list and use that either unsigned, signed, or both combined. But whenever I use two signed policy lists, AC SINIT resets. Any ideas? Regards Martin ------------------------------------------------------------------------------ Site24x7 APM Insight: Get Deep Visibility into Application Performance APM + Mobile APM + RUM: Monitor 3 App instances at just $35/Month Monitor end-to-end web transactions and take corrective actions now Troubleshoot faster and improve end-user experience. Signup Now! http://pubads.g.doubleclick.net/gampad/clk?id=272487151&iu=/4140 _______________________________________________ tboot-devel mailing list tboot-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tboot-devel