From bcd7520a48f77dad266b4a78575cf791439d5c73 Mon Sep 17 00:00:00 2001
From: Sungbae Yoo <sungbae.yoo@samsung.com>
Date: Fri, 26 Feb 2016 19:32:12 +0900
Subject: [PATCH] doc: Add the Korean description that automount is ignored
 when cgroup namespaces are supported.

Update for commit 4608594

Signed-off-by: Sungbae Yoo <sungbae.yoo@samsung.com>
---
 doc/ko/lxc-attach.sgml.in         | 25 +++++++++++--------------
 doc/ko/lxc.container.conf.sgml.in | 11 ++++++++++-
 2 files changed, 21 insertions(+), 15 deletions(-)
diff --git a/doc/ko/lxc-attach.sgml.in b/doc/ko/lxc-attach.sgml.in
index cc244d16e..b863dd76e 100644
--- a/doc/ko/lxc-attach.sgml.in
+++ b/doc/ko/lxc-attach.sgml.in
@@ -94,25 +94,22 @@ by Sungbae Yoo <sungbae.yoo at samsung.com>
     <para>
       <!--
       Previous versions of <command>lxc-attach</command> simply attached to the
-      specified namespaces of a container and ran a shell or the specified
-      command without allocating a pseudo terminal. This made them vulnerable to
+      specified namespaces of a container and ran a shell or the specified command
+      without first allocating a pseudo terminal. This made them vulnerable to
       input faking via a TIOCSTI <command>ioctl</command> call after switching
       between userspace execution contexts with different privilege levels. Newer
       versions of <command>lxc-attach</command> will try to allocate a pseudo
-      terminal master/slave pair and attach any standard file descriptors which
-      refer to a terminal to the slave side of the pseudo terminal before
-      executing a shell or command. <command>lxc-attach</command> will first try
-      to allocate a pseudo terminal in the container. Should this fail it will try
-      to allocate a pseudo terminal on the host before finally giving up. Note,
-      that if none of the standard file descriptors refer to a terminal
-      <command>lxc-attach</command> will not try to allocate a pseudo terminal.
-      Instead it will simply attach to the containers namespaces and run a shell
-      or the specified command.
+      terminal master/slave pair on the host and attach any standard file
+      descriptors which refer to a terminal to the slave side of the pseudo
+      terminal before executing a shell or command. Note, that if none of the
+      standard file descriptors refer to a terminal <command>lxc-attach</command>
+      will not try to allocate a pseudo terminal. Instead it will simply attach
+      to the containers namespaces and run a shell or the specified command.
       -->
-      ì´ì  ë²ì ì <command>lxc-attach</command>ë ë¨ìí ì»¨íì´ëì í¹ì  ë¤ìì¤íì´ì¤ì ë¶ì´, ìì ì¤ííê±°ë pseudo í°ë¯¸ë í ë¹ ìì´ í¹ì  ëªë ¹ì´ë¥¼ ì¤ííìë¤.
+      ì´ì  ë²ì ì <command>lxc-attach</command>ë ë¨ìí ì»¨íì´ëì í¹ì  ë¤ìì¤íì´ì¤ì ë¶ì´, ìì ì¤ííê±°ë ì²« ë²ì§¸ pseudo í°ë¯¸ë í ë¹ ìì´ í¹ì  ëªë ¹ì´ë¥¼ ì¤ííìë¤.
       ì´ë ë¤ë¥¸ í¹ê¶ ìì¤ì ê°ë ì¬ì©ì ìì­ ì»¨íì¤í¸ ê°ì ì íí TIOCSTI <command>ioctl</command>ë¥¼ í¸ì¶íì¬ ìë ¥ì ê°ë¡ì± ì ìë ì·¨ì½ì ì´ ìë¤.
-      ìë¡ì´ ë²ì ì <command>lxc-attach</command>ë ìì´ë ëªë ¹ì´ë¥¼ ì¤ííê¸° ì ì, pseudo í°ë¯¸ë ë§ì¤í°/ì¬ë ì´ë¸ ìì í ë¹íê³ , í°ë¯¸ëì ê°ë¦¬í¤ê³  ìë íì¤ ìì¶ë ¥ íì¼ ëì¤í¬ë¦½í°ë¤ì ì¬ë ì´ë¸ pseudo í°ë¯¸ëë¡ ë¶ì¸ë¤. <command>lxc-attach</command>ë ì²ìì ì»¨íì´ë ë´ë¶ì pseudo í°ë¯¸ëì í ë¹íë¤. ë§ì½ ì´ê²ì´ ì¤í¨íë©´, í¸ì¤í¸ì í ë¹íê³ , ì´ë§ì  ì¤í¨íë©´ í ë¹ì í¬ê¸°íë¤.
-      í°ë¯¸ëì ê°ë¦¬í¤ê³  ìë íì¤ ìì¶ë ¥ íì¼ ëì¤í¬ë¦½í°ê° ìì ììë¤ë©´, <command>lxc-attach</command>ë pseudo í°ë¯¸ë í ë¹ì ìëíì§ ìëë¤. ë¨ìí ì»¨íì´ë ë¤ìì¤íì´ì¤ì ë¶ì´ ìì´ë ì§ì í ëªë ¹ì´ë§ ì¤íí  ë¿ì´ë¤.
+      ìë¡ì´ ë²ì ì <command>lxc-attach</command>ë ìì´ë ëªë ¹ì´ë¥¼ ì¤ííê¸° ì ì, pseudo í°ë¯¸ë ë§ì¤í°/ì¬ë ì´ë¸ ìì í¸ì¤í¸ì í ë¹íê³  í°ë¯¸ëì ê°ë¦¬í¤ê³  ìë íì¤ ìì¶ë ¥ íì¼ ëì¤í¬ë¦½í°ë¤ì ì¬ë ì´ë¸ pseudo í°ë¯¸ëë¡ ë¶ì¸ë¤.
+      í°ë¯¸ëì ê°ë¦¬í¤ê³  ìë íì¤ ìì¶ë ¥ íì¼ ëì¤í¬ë¦½í°ê° ìì ììë¤ë©´, <command>lxc-attach</command>ë pseudo í°ë¯¸ë í ë¹ì ìëíì§ ììì ì£¼ìí´ì¼ íë¤. ë¨ìí ì»¨íì´ë ë¤ìì¤íì´ì¤ì ë¶ì´ ìì´ë ì§ì í ëªë ¹ì´ë§ ì¤íí  ë¿ì´ë¤.
     </para>
 
   </refsect1>
diff --git a/doc/ko/lxc.container.conf.sgml.in b/doc/ko/lxc.container.conf.sgml.in
index 4b168858a..7ea67c04b 100644
--- a/doc/ko/lxc.container.conf.sgml.in
+++ b/doc/ko/lxc.container.conf.sgml.in
@@ -1233,7 +1233,7 @@ proc proc proc nodev,noexec,nosuid 0 0
 	          the container's own cgroup into that directory.
 	          The container will be able to write to its own
 	          cgroup directory, but not the parents, since they
-	          will be remounted read-only
+	          will be remounted read-only.
 	        </para>
                 -->
                 <para>
@@ -1360,6 +1360,15 @@ proc proc proc nodev,noexec,nosuid 0 0
 	        </para>
 	      </listitem>
 	    </itemizedlist>
+            <para>
+              <!--
+              If cgroup namespaces are enabled, then any <option>cgroup</option>
+              auto-mounting request will be ignored, since the container can
+              mount the filesystems itself, and automounting can confuse the
+              container init.
+              -->
+              cgroup ë¤ìì¤íì´ì¤ê° ì¬ì© ê°ë¥í ê²½ì°, <option>cgroup</option> ë§ì´í¸ ìµìë¤ì ì ë¶ ë¬´ìë  ê²ì´ë¤. ì»¨íì´ëê° ì§ì  íì¼ìì¤íì ë§ì´í¸íê¸° ëë¬¸ì´ë©°, ì»¨íì´ë ì´ê¸°íì í´ë¹ ìµìì´ í¼ëì ì¤ ì ìê¸° ëë¬¸ì´ë¤.
+            </para>
 	    <para>
               <!--
 	      Note that if automatic mounting of the cgroup filesystem
-- 
2.47.2

