Need to figure out why TestCleanupMountsAfterDaemonAndContainerKill and TestCleanupMountsAfterDaemonCrash fail

OK, I got it now why these two tests are failing!

The reason is, all the mounts are now in the private namespace, except for one used for container's /dev/shm. With this patch, this last mount is gone so test is not finding anything.

The solution is to check whether there are any container mounts visible from the host system after container start -- if not, skip the test.

This one is now ready for the prime time

Powerpc test case failure is unrelated, nevertheless I figured it out and fixed the test case.

The following failure is most probably unrelated as I am seeing it in other PRs. I'll take a look nevertheless.

12:29:56 ----------------------------------------------------------------------
12:29:56 FAIL: check_test.go:366: DockerSwarmSuite.TearDownTest
12:29:56 
12:29:56 check_test.go:371:
12:29:56     d.Stop(c)
12:29:56 daemon/daemon.go:395:
12:29:56     t.Fatalf("Error while stopping the daemon %s : %v", d.id, err)
12:29:56 ... Error: Error while stopping the daemon d704ce7bc07d4 : exit status 130
12:29:56 
12:29:56 
12:29:56 ----------------------------------------------------------------------
12:29:56 PANIC: docker_api_swarm_service_test.go:201: DockerSwarmSuite.TestAPISwarmServicesUpdateStartFirst
12:29:56 
12:29:56 [d704ce7bc07d4] waiting for daemon to start
12:29:56 [d704ce7bc07d4] daemon started
12:29:56 
12:29:56 [d704ce7bc07d4] daemon started
12:29:56 Attempt #2: daemon is still running with pid 19775
12:29:56 Attempt #3: daemon is still running with pid 19775
12:29:56 Attempt #4: daemon is still running with pid 19775
12:29:56 [d704ce7bc07d4] exiting daemon
12:29:56 ... Panic: Fixture has panicked (see related PANIC)
12:29:56 
12:29:56 ----------------------------------------------------------------------

I worry about changing the default.
If the goal is to eliminate issues with EBUSY, shouldn't we dig deeper into the cause of these leaks? This isn't really fixing mount leaks, just making it less likely in the default configuration.

We discussed this in the maintainers meeting and it came up "well is Kubernetes depending on shared IPC" ... I believe it is and this will break them... and even if not it's a good example of how this could break people.

note: I mentioned on the call maybe they are using exec but that just doesn't make any sense because they couldn't start containers with different images in the pod, which is required for the pod scenario.

@kolyshkin This wasn't confusing at all. Just that it's wrong to break existing users, which is what this does.

We disscused this with @thaJeztah and @cpuguy83 on maintainers meeting today. What needs to be added is:

• a changelog entry explaining the new default;
• a fix for clients API < 1.41: if new container ipc mode is empty AND compiled-in daemon default is not changed, use "shareable".

For the API version; upcoming release will be API v1.40, so if it gets merged before that, it's gonna be API < 1.40

I'll revisit this one once #38700 is merged.

OK I just came to realization that #38700 needs to be merged into this one, for the reasons that I am too lazy to describe right now. Also that @cpuguy83 and @thaJeztah was right from the start asking to forcefully set IpcMode: shareable for older clients.

I have also added an item into API version history explaining the new default, and a way to change it back.

I think this PR is ready for prime time, aside from the fact that it currently includes #38843; I will rebase once it's merged.

01:16:03.313 FAIL: docker_api_swarm_test.go:297: DockerSwarmSuite.TestAPISwarmLeaderElection

is a well-known flaky test (#32673), rebuilding

Derek add label: rebuild/janky

Rebased on top of merged #38843