Skip to content

Swarm mode, mount tmpfs, how to remove noexec? #32131

New issue
New issue
Open
Enhancement
#46809
Open
Swarm mode, mount tmpfs, how to remove noexec?#32131
Enhancement
#46809
Labels
area/swarmexp/intermediatekind/enhancementEnhancements are not bugs or new features but can improve usability or performance.version/17.03
@luoyuhao0x58

Description

@luoyuhao0x58
luoyuhao0x58
opened on Mar 27, 2017

Description

Swarm mode, docker service create --mount type=tmpfs, how to remove noexec flag?

Steps to reproduce the issue:

  1. docker service create --mount type=tmpfs,destination=/data,tmpfs-size=100M -p:22 rastasheep/ubuntu-sshd:14.04
  2. ssh root@localhost -p 30000
  3. mount | grep /data

Describe the results you received:
tmpfs on /data type tmpfs (rw,nosuid,nodev,noexec,relatime,size=102400k)

Describe the results you expected:
I want to remove noexec flag, how? like, docker run -it --rm --tmpfs /data:exec bash

Additional information you deem important (e.g. issue happens only occasionally):

Output of docker version:

Client:
 Version:      17.03.0-ce
 API version:  1.26
 Go version:   go1.7.5
 Git commit:   60ccb22
 Built:        Thu Feb 23 10:53:04 2017
 OS/Arch:      linux/amd64

Server:
 Version:      17.03.0-ce
 API version:  1.26 (minimum version 1.12)
 Go version:   go1.7.5
 Git commit:   60ccb22
 Built:        Thu Feb 23 10:53:04 2017
 OS/Arch:      linux/amd64
 Experimental: false

Output of docker info:

Containers: 1
 Running: 1
 Paused: 0
 Stopped: 0
Images: 7
Server Version: 17.03.0-ce
Storage Driver: aufs
 Root Dir: /var/lib/docker/aufs
 Backing Filesystem: extfs
 Dirs: 72
 Dirperm1 Supported: false
Logging Driver: json-file
Cgroup Driver: cgroupfs
Plugins:
 Volume: local
 Network: bridge host macvlan null overlay
Swarm: active
 NodeID: 8t1tc9olkkkvto0m9ap20yg4q
 Is Manager: true
 ClusterID: mjf13s8g3luwoo579kbtkxvau
 Managers: 1
 Nodes: 2
 Orchestration:
  Task History Retention Limit: 5
 Raft:
  Snapshot Interval: 10000
  Number of Old Snapshots to Retain: 0
  Heartbeat Tick: 1
  Election Tick: 3
 Dispatcher:
  Heartbeat Period: 5 seconds
 CA Configuration:
  Expiry Duration: 3 months
 Node Address: 172.25.20.22
 Manager Addresses:
  172.25.20.22:2377
Runtimes: runc
Default Runtime: runc
Init Binary: docker-init
containerd version: 977c511eda0925a723debdc94d09459af49d082a
runc version: a01dafd48bc1c7cc12bdb01206f9fea7dd6feb70
init version: 949e6fa
Security Options:
 apparmor
Kernel Version: 3.13.0-98-generic
Operating System: Ubuntu precise (12.04.5 LTS)
OSType: linux
Architecture: x86_64
CPUs: 2
Total Memory: 993.5 MiB
Name: docker0
ID: HPTL:DPNP:QNJ6:6K5R:NFNT:CMFE:RWWP:TWAW:5DAO:LZXV:DEKY:5VKZ
Docker Root Dir: /var/lib/docker
Debug Mode (client): false
Debug Mode (server): true
 File Descriptors: 44
 Goroutines: 136
 System Time: 2017-03-27T10:03:52.81516827Z
 EventsListeners: 1
Username: huozic
Registry: https://index.docker.io/v1/
Experimental: false
Insecure Registries:
 127.0.0.0/8
Live Restore Enabled: false

**Additional environment details (AWS, VirtualBox, physical, etc.): **
VirtualBox 5.1.16 r113841
ubuntu 12.04 3.13.0-98-generic

Metadata

Metadata

Assignees

No one assigned

    Labels

    area/swarmexp/intermediatekind/enhancementEnhancements are not bugs or new features but can improve usability or performance.version/17.03

    Type

    Enhancement

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions