From 8333ea0b5ebc32812b6f1d21595084fe561ffe5d Mon Sep 17 00:00:00 2001
From: Pratik Mallya <mallya@us.ibm.com>
Date: Tue, 6 Mar 2018 01:25:20 -0600
Subject: [PATCH] Update README to include privileged flag

Without the privileged flag, the tcsd daemon does not have
access to the mounted host device files, especially the tpm
device file.

Signed-off-by: Pratik Mallya <pratik.mallya@gmail.com>
---
 pkg/tss/README.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/pkg/tss/README.md b/pkg/tss/README.md
index 4f002ebc3..eb772c346 100644
--- a/pkg/tss/README.md
+++ b/pkg/tss/README.md
@@ -22,14 +22,14 @@ services:
 The above will launch `tcsd` listening on localhost only.
 
 #### Docker
-In regular docker or other container environment, start the container in the background. Be sure to map `/dev:/dev` and expose port `30003`.
+In regular docker or other container environment, start the container in the background. Be sure to map `/dev:/dev` and expose port `30003`, and run with the privileged flag set to true. The privileged flag is required to allow the container access to device files on the host.
 
 ```
-docker run -d -v /dev:/dev -p 30003:30003 secureapp/tcsd
+docker run -d -v /dev:/dev --privileged=true -p 30003:30003 linuxkit/tss:{TAG}
 ```
 ### CLI Tools
 To run the CLI tools, just run them:
 
 ```
-docker run -it --rm secureapp/tcsd tpm_nvread
+docker run -it --privileged=true --rm linuxkit/tss:{TAG} tpm_nvread
 ```