https://bugs.openldap.org/show_bug.cgi?id=10277
--- Comment #3 from Howard Chu hyc@openldap.org --- (In reply to Ondřej Kuzník from comment #2)
On Thu, Oct 24, 2024 at 03:15:16PM +0000, openldap-its@openldap.org wrote:
The files in a back-ldif directory comprise a database, no different from any other database. If someone mucks with the DB contents directly, instead of using the provided tools, then they've intentionally corrupted their DB, and that's all their own problem.
Take for example removing ppolicy schema from cn=schema, cn=config will refuse to delete a Cft_schema entry and back-ldif will not renumber entries on its own. Moreover 2.5 will refuse to slapcat the DB (see this[0] email in -technical), what is the official remedy in this case?
[0]. https://lists.openldap.org/hyperkitty/list/openldap-technical@openldap.org/ thread/EJYPVGZLYC5BS3WESH6SOAUTJYZIYMJE/
Support for deleting Cft_schema entries should be added. Deleting individual schema elements is already supported, so deleting an entry just needs to be a wrapper around deleting all of its attributes.