https://bugzilla.suse.com/show_bug.cgi?id=1228863 https://bugzilla.suse.com/show_bug.cgi?id=1228863#c49 --- Comment #49 from Alberto Planas Dominguez <aplanas@suse.com> --- (In reply to Marc Thomas from comment #46) This seems to be a different issue:

Failed to add OR policy to TPM: tpm:parameter(1):value is out of range or is not correct for the context

This means that somehow there are more combination of components that the maximum allowed by PolicyOR (that is 8). This is a limitation of the TPM2 PolicyOR, but that we reach this limit is a bug in sdbootutil.

The only way to fix this for me was a re-enroll of the TPM via the guide. After these steps the machine boots normally without asking for the recovery.

I understand then that we cannot reproduce the PolicyOR error message now? -- You are receiving this mail because: You are on the CC list for the bug.