manpage: add --execute_fd option

author John Vogel <jvogel4@stny.rr.com>

Wed, 18 Oct 2017 18:48:24 +0000 (14:48 -0400)

committer John Vogel <jvogel4@stny.rr.com>

Wed, 18 Oct 2017 18:48:24 +0000 (14:48 -0400)
author John Vogel <jvogel4@stny.rr.com>
Wed, 18 Oct 2017 18:48:24 +0000 (14:48 -0400)
committer John Vogel <jvogel4@stny.rr.com>
Wed, 18 Oct 2017 18:48:24 +0000 (14:48 -0400)
diff --git a/nsjail.1 b/nsjail.1

index c19051ef2bda4e026569245ebf856d58ba7f6f35..2c56ab2e2a4c25c0c6b79b3ffd1af2e54e74194d 100644 (file)
--- a/nsjail.1
+++ b/nsjail.1
@@ -34,6 +34,9 @@ Configuration file in the config.proto ProtoBuf format
  \fB\-\-exec_file\fR|\fB\-x\fR VALUE
  File to exec (default: argv[0])
  .TP
+\fB\-\-execute_fd\fR
+Use execveat() to execute a file-descriptor instead of executing the binary path. In such case argv[0]/exec_file denotes a file path before mount namespacing
+.TP
  \fB\-\-chroot\fR|\fB\-c\fR VALUE
  Directory containing / of the jail (default: none)
  .TP
author	John Vogel <jvogel4@stny.rr.com>
	Wed, 18 Oct 2017 18:48:24 +0000 (14:48 -0400)
committer	John Vogel <jvogel4@stny.rr.com>
	Wed, 18 Oct 2017 18:48:24 +0000 (14:48 -0400)