Description of problem: I'm trying to create an instance under non-root user, but the instance fails to start with the following error: Failed to start ns-slapd: "[08/Dec/2022:06:29:47.991585733 -0500] - ERR - slapd_bootstrap_config - The default password storage scheme could not be read or was not found in the file /home/user/test/etc/dirsrv/slapd-localhost/dse.ldif. It is mandatory. Version-Release number of selected component (if applicable): 389-ds-base-2.1.5-4.module+el9dsrv+16995+8a75ed16.x86_64 How reproducible: always Steps to Reproduce: $ mkdir -p bin $ dscreate ds-root $HOME/test $HOME/bin $ cat /tmp/inst.inf [general] [slapd] instance_name = localhost root_password = password [backend-userroot] create_suffix_entry = True sample_entries = yes suffix = dc=example,dc=com $ hash -r $ dscreate from-file /tmp/inst.inf Actual results: Starting installation ... Validate installation settings ... Create file system structures ... Create self-signed certificate database ... Non privileged user cannot use semanage, will not relabel ports or files. Perform SELinux labeling ... setxattr failed: /home/user/test/var/lib/dirsrv/slapd-localhost/bak: Operation not permitted setxattr failed: /home/user/test/etc/dirsrv/slapd-localhost: Operation not permitted setxattr failed: /home/user/test/etc/dirsrv/slapd-localhost/schema: Operation not permitted setxattr failed: /home/user/test/etc/dirsrv/slapd-localhost: Operation not permitted setxattr failed: /home/user/test/etc/dirsrv/slapd-localhost/schema: Operation not permitted setxattr failed: /home/user/test/var/lib/dirsrv/slapd-localhost/db: Operation not permitted setxattr failed: /home/user/test/var/lib/dirsrv/slapd-localhost/ldif: Operation not permitted setxattr failed: /home/user/test/run/lock/dirsrv/slapd-localhost: Operation not permitted setxattr failed: /home/user/test/var/log/dirsrv/slapd-localhost: Operation not permitted setxattr failed: /home/user/test/dev/shm/slapd-localhost: Operation not permitted setxattr failed: /home/user/test/run/dirsrv: Operation not permitted setxattr failed: /home/user/test/etc/dirsrv/slapd-localhost/schema: Operation not permitted setxattr failed: /home/user/test/tmp: Operation not permitted Non privileged user cannot use semanage, will not relabel ports or files. Failed to start ns-slapd: "[08/Dec/2022:06:29:47.991585733 -0500] - ERR - slapd_bootstrap_config - The default password storage scheme could not be read or was not found in the file /home/user/test/etc/dirsrv/slapd-localhost/dse.ldif. It is mandatory. " Command '['/usr/sbin/ns-slapd', '-D', '/home/user/test/etc/dirsrv/slapd-localhost', '-i', '/home/user/test/run/dirsrv/slapd-localhost.pid']' returned non-zero exit status 1. Non privileged user cannot use semanage, will not relabel ports or files. Error: Instance creation failed! Failed to start DS Expected results: Instance should be created successfully Additional info:
The recent change of the default password scheme caused a regression That is because ds_create root disables the Rust plugins but now that DS is always built with Rust we should keep them..
Build tested: 389-ds-base-2.3.5-1.module+el9dsrv+19320+04706864.x86_64 $ mkdir -p bin $ dscreate ds-root $HOME/test $HOME/bin $ cat /tmp/inst.inf [general] [slapd] instance_name = localhost root_password = password [backend-userroot] create_suffix_entry = True sample_entries = yes suffix = dc=example,dc=com $ hash -r $ dscreate from-file /tmp/inst.inf $ ps -ef | grep [n]s-slapd user 9614 1 2 07:59 ? 00:00:00 /usr/sbin/ns-slapd -D /home/user/test/etc/dirsrv/slapd-localhost -i /home/user/test/run/dirsrv/slapd-localhost.pid Instance is created and successfully started. Marking as VERIFIED.