From caf30f2731ecc73e347728bc8be689efcc1fccb7 Mon Sep 17 00:00:00 2001
From: KATOH Yasufumi <karma@jazz.email.ne.jp>
Date: Mon, 5 Jul 2021 11:44:30 +0900
Subject: [PATCH] doc: Add new idmap= option to Japanese lxc.container.conf(5)

Update for commit 1852be904823e3532af38efc5ef55d3fb931e616

Signed-off-by: KATOH Yasufumi <karma@jazz.email.ne.jp>
---
 doc/ja/lxc.container.conf.sgml.in | 24 +++++++++++++++++++++---
 1 file changed, 21 insertions(+), 3 deletions(-)
diff --git a/doc/ja/lxc.container.conf.sgml.in b/doc/ja/lxc.container.conf.sgml.in
index 9347a72aa..607a87a93 100644
--- a/doc/ja/lxc.container.conf.sgml.in
+++ b/doc/ja/lxc.container.conf.sgml.in
@@ -2001,9 +2001,26 @@ by KATOH Yasufumi <karma at jazz.email.ne.jp>
           <listitem>
             <para>
               <!--
-              extra mount options to use when mounting the rootfs.
-              -->
-              rootfs ããã¦ã³ãããã¨ãã«è¿½å ããããã¦ã³ããªãã·ã§ã³ã
+              Specify extra mount options to use when mounting the rootfs.
+                The format of the mount options corresponds to the
+                format used in fstab. In addition, LXC supports the custom
+                <option>idmap=</option> mount option. This option can be used
+                to tell LXC to create an idmapped mount for the container's
+                rootfs. This is useful when the user doesn't want to recursively
+                chown the rootfs of the container to match the idmapping of the
+                user namespace the container is going to use. Instead an
+                idmapped mount can be used to handle this.
+                The argument for
+                <option>idmap=</option>
+                can either be a path pointing to a user namespace file that
+                LXC will open and use to idmap the rootfs or the special value
+                "container" which will instruct LXC to use
+                the container's user namespace to idmap the rootfs.
+                -->
+                rootfs ããã¦ã³ãããã¨ãã«ä½¿ããã¦ã³ããªãã·ã§ã³ããã¦ã³ããªãã·ã§ã³ã®ãã©ã¼ãããã¯ fstab ã§ä½¿ããã©ã¼ãããã¨åãã§ãã
+                å ãã¦ãLXC ã§ã¯ç¬èªã® <option>idmap=</option> ãã¦ã³ããªãã·ã§ã³ãä½¿ãã¾ãããã®ãªãã·ã§ã³ãä½¿ãã¨ãLXC ã«å¯¾ãã¦ã³ã³ããã® rootfs ã idmapped ãã¦ã³ãããããã«æç¤ºã§ãã¾ãã
+                ããã¯ãã³ã³ãããä½¿ãã¦ã¼ã¶ã¼ååç©ºéã® ID ãããã³ã°ã¨ä¸è´ãããããã«ãã³ã³ããã® rootfs ãåå¸°çã« chown ããããªãå ´åã«å½¹ã«ç«ã¡ã¾ããä»£ããã« idmapped ãã¦ã³ããä½¿ãã¾ãã
+                <option>idmap=</option> ã®å¼æ°ã¯ãLXC ãéãã¦ rootfs ã idmap ããã®ã«ä½¿ãã¦ã¼ã¶ã¼ååç©ºéãã¡ã¤ã«ãæããã¹ããããã¯ "container" ã¨ããç¹å¥ãªå¤ã®ã©ã¡ããã§ãã"container" ã¨ããå¤ã¯ãã³ã³ããã®ã¦ã¼ã¶ã¼ååç©ºéãä½¿ã£ã¦ rootfs ã idmap ããããã« LXC ã«æç¤ºãã¾ãã
             </para>
           </listitem>
         </varlistentry>
@@ -4129,6 +4146,7 @@ by KATOH Yasufumi <karma at jazz.email.ne.jp>
         lxc.mount.fstab = /etc/fstab.complex
         lxc.mount.entry = /lib /root/myrootfs/lib none ro,bind 0 0
         lxc.rootfs.path = dir:/mnt/rootfs.complex
+        lxc.rootfs.options = idmap=container
         lxc.cap.drop = sys_module mknod setuid net_raw
         lxc.cap.drop = mac_override
       </programlisting>
-- 
2.47.2

