github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2025-07-20 09:39:08 +00:00
Code Issues Projects Releases Wiki Activity

Update README to include privileged flag

Browse Source 
Without the privileged flag, the tcsd daemon does not have
access to the mounted host device files, especially the tpm
device file.

Signed-off-by: Pratik Mallya <pratik.mallya@gmail.com>
This commit is contained in:
Pratik Mallya 2018-03-06 01:25:20 -06:00
parent d7140d92a0
commit 8333ea0b5e
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
pkg/tss/README.md
View File

@ -22,14 +22,14 @@ services:
The above will launch `tcsd` listening on localhost only.
#### Docker
In regular docker or other container environment, start the container in the background. Be sure to map `/dev:/dev` and expose port `30003`.
In regular docker or other container environment, start the container in the background. Be sure to map `/dev:/dev` and expose port `30003`, and run with the privileged flag set to true. The privileged flag is required to allow the container access to device files on the host.
```
docker run -d -v /dev:/dev -p 30003:30003 secureapp/tcsd
docker run -d -v /dev:/dev --privileged=true -p 30003:30003 linuxkit/tss:{TAG}
```
### CLI Tools
To run the CLI tools, just run them:
```
docker run -it --rm secureapp/tcsd tpm_nvread
docker run -it --privileged=true --rm linuxkit/tss:{TAG} tpm_nvread
```