Adjust documents for clone_newcgroup change.

Change --enable_clone_newcgroup to --disable_clone_newcgroup.
Add comment about kernel version for clone_newcgroup option.

diff --git a/README.md b/README.md
index c2bc14a..195d034 100644 (file)
--- a/README.md
+++ b/README.md
@@ -430,8 +430,8 @@ Options:
        Don't use CLONE_NEWIPC
  --disable_clone_newuts 
        Don't use CLONE_NEWUTS
- --enable_clone_newcgroup 
-       Use CLONE_NEWCGROUP
+ --disable_clone_newcgroup 
+       Don't use CLONE_NEWCGROUP. Might be required for kernel versions < 4.6
  --uid_mapping|-U VALUE
        Add a custom uid mapping of the form inside_uid:outside_uid:count. Setting this requires newuidmap to be present
  --gid_mapping|-G VALUE

diff --git a/nsjail.1 b/nsjail.1
index 5064e68..f72816b 100644 (file)
--- a/nsjail.1
+++ b/nsjail.1
@@ -166,8 +166,8 @@ Don't use CLONE_NEWIPC
 \fB\-\-disable_clone_newuts\fR
 Don't use CLONE_NEWUTS
 .TP
-\fB\-\-enable_clone_newcgroup\fR
-Use CLONE_NEWCGROUP
+\fB\-\-disable_clone_newcgroup\fR
+Don't use CLONE_NEWCGROUP. Might be required for kernel versions < 4.6
 .TP
 \fB\-\-uid_mapping\fR|\fB\-U\fR VALUE
 Add a custom uid mapping of the form inside_uid:outside_uid:count. Setting this requires newuidmap to be present