From 8f39ec5436916a1462bd353f5dc69783eab1600f Mon Sep 17 00:00:00 2001
From: John Vogel <jvogel4@stny.rr.com>
Date: Fri, 27 Oct 2017 00:25:59 -0400
Subject: [PATCH] Adjust documents for clone_newcgroup change.

Change --enable_clone_newcgroup to --disable_clone_newcgroup.
Add comment about kernel version for clone_newcgroup option.
---
 README.md | 4 ++--
 nsjail.1  | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/README.md b/README.md
index c2bc14a..195d034 100644
--- a/README.md
+++ b/README.md
@@ -430,8 +430,8 @@ Options:
 	Don't use CLONE_NEWIPC
  --disable_clone_newuts 
 	Don't use CLONE_NEWUTS
- --enable_clone_newcgroup 
-	Use CLONE_NEWCGROUP
+ --disable_clone_newcgroup 
+	Don't use CLONE_NEWCGROUP. Might be required for kernel versions < 4.6
  --uid_mapping|-U VALUE
 	Add a custom uid mapping of the form inside_uid:outside_uid:count. Setting this requires newuidmap to be present
  --gid_mapping|-G VALUE
diff --git a/nsjail.1 b/nsjail.1
index 5064e68..f72816b 100644
--- a/nsjail.1
+++ b/nsjail.1
@@ -166,8 +166,8 @@ Don't use CLONE_NEWIPC
 \fB\-\-disable_clone_newuts\fR
 Don't use CLONE_NEWUTS
 .TP
-\fB\-\-enable_clone_newcgroup\fR
-Use CLONE_NEWCGROUP
+\fB\-\-disable_clone_newcgroup\fR
+Don't use CLONE_NEWCGROUP. Might be required for kernel versions < 4.6
 .TP
 \fB\-\-uid_mapping\fR|\fB\-U\fR VALUE
 Add a custom uid mapping of the form inside_uid:outside_uid:count. Setting this requires newuidmap to be present
-- 
2.34.1