use resourcemanger

Author: salrashid123

README.md

@@ -85,13 +85,9 @@ For TPM Signer, there are two modes of operation:
 
   The TPM device is managed externally outside of the signer.  You have to instantiate the TPM device ReadWriteCloser and client.Key outside of the library and pass that in.
 
-  The advantage of this is you control it opening and closing.  You must close the key and closer before calling another signing operation.  THis sounds ok but is problematic when dealing with long-running processes which may need to hang on to the tpm (for example you use the singer for an TLS server)
-
-  if you want to manage it externally, 
+  The advantage of this is you control it opening and closing.  You must close the key and closer before calling another signing operation.  
 
   ```golang
-    // this blocks access to the tpm by other processes
-    // until rwc.Close() is closed  
 	rwc, err := OpenTPM(*tpmPath)
 	rwr := transport.FromReadWriter(rwc)
 
@@ -117,7 +113,6 @@ For TPM Signer, there are two modes of operation:
 
   If the device is busy or the TPM is in use during invocation, the operation will fail.
 
-
   ```golang
 	r, err := saltpm.NewTPMCrypto(&saltpm.TPM{
 		TpmPath:      *tpmPath,

example/README.md

@@ -68,9 +68,9 @@ export PATH=$PATH:/usr/local/go/bin
 ```bash
 cd example/
 
-rm -rf /tmp/myvtpm && mkdir /tmp/myvtpm
-sudo swtpm socket --tpmstate dir=/tmp/myvtpm --tpm2 --server type=tcp,port=2321 --ctrl type=tcp,port=2322 --flags not-need-init,startup-clear
-export TPM2TOOLS_TCTI="swtpm:port=2321"
+# rm -rf /tmp/myvtpm && mkdir /tmp/myvtpm
+# sudo swtpm socket --tpmstate dir=/tmp/myvtpm --tpm2 --server type=tcp,port=2321 --ctrl type=tcp,port=2322 --flags not-need-init,startup-clear
+# export TPM2TOOLS_TCTI="swtpm:port=2321"
 
 
 ## RSA - no password

example/sign_verify_tpm/ecc/main.go

@@ -38,7 +38,7 @@ const ()
 */
 
 var (
-	tpmPath = flag.String("tpm-path", "127.0.0.1:2321", "Path to the TPM device (character device or a Unix socket).")
+	tpmPath = flag.String("tpm-path", "/dev/tpmrm0", "Path to the TPM device (character device or a Unix socket).")
 	handle  = flag.Uint("handle", 0x81008001, "rsa Handle value")
 )
 

example/sign_verify_tpm/policy/main.go

@@ -50,7 +50,7 @@ go run sign_verify_tpm/policy/main.go --handle=0x81008006
 */
 
 var (
-	tpmPath = flag.String("tpm-path", "127.0.0.1:2321", "Path to the TPM device (character device or a Unix socket).")
+	tpmPath = flag.String("tpm-path", "/dev/tpmrm0", "Path to the TPM device (character device or a Unix socket).")
 	handle  = flag.Uint("handle", 0x81008006, "rsa Handle value")
 	pcr     = flag.Int("pcr", 23, "PCR value")
 )

example/sign_verify_tpm/rsapss/main.go

@@ -38,7 +38,7 @@ const ()
 */
 
 var (
-	tpmPath = flag.String("tpm-path", "127.0.0.1:2321", "Path to the TPM device (character device or a Unix socket).")
+	tpmPath = flag.String("tpm-path", "/dev/tpmrm0", "Path to the TPM device (character device or a Unix socket).")
 	handle  = flag.Uint("handle", 0x81008001, "rsa Handle value")
 )
 

example/sign_verify_tpm/rsassa/main.go

@@ -37,7 +37,7 @@ const ()
 */
 
 var (
-	tpmPath = flag.String("tpm-path", "127.0.0.1:2321", "Path to the TPM device (character device or a Unix socket).")
+	tpmPath = flag.String("tpm-path", "/dev/tpmrm0", "Path to the TPM device (character device or a Unix socket).")
 	handle  = flag.Uint("handle", 0x81008001, "rsa Handle value")
 )
 

example/sign_verify_tpm/rsassa_managed/main.go

@@ -23,7 +23,7 @@ import (
 const ()
 
 var (
-	tpmPath = flag.String("tpm-path", "127.0.0.1:2321", "Path to the TPM device (character device or a Unix socket).")
+	tpmPath = flag.String("tpm-path", "/dev/tpmrm0", "Path to the TPM device (character device or a Unix socket).")
 	handle  = flag.Uint("handle", 0x81008001, "rsa Handle value")
 )