nss-systemd: resolve root/nobody statically

Let's extend nss-systemd to also synthesize user/group entries for the UIDs/GIDs 0 and 65534 which have special kernel meaning. Given that nss-systemd is listed in /etc/nsswitch.conf only very late any explicit listing in /etc/passwd or /etc/group takes precedence. This functionality is useful in minimal container-like setups that lack /etc/passwd files (or only have incompletely populated ones).
author: Lennart Poettering <lennart@poettering.net> 2016-07-27 13:14:01 +0200
committer: Lennart Poettering <lennart@poettering.net> 2016-08-04 23:08:05 +0200
commit: 2129011e92feee93383b450bb2d20008786b90a0 (patch)
tree: fa48bcefe0eca788937b771c947875e208571722 /man/nss-systemd.xml
parent: 136dc4c4350dfcb1d61ceaac982d0d0a8e6e3863 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/man/nss-systemd.xml b/man/nss-systemd.xml
index 4228372e51..56d26e7d1f 100644
--- a/man/nss-systemd.xml
+++ b/man/nss-systemd.xml
@@ -61,6 +61,10 @@
     <citerefentry><refentrytitle>systemd.exec</refentrytitle><manvolnum>5</manvolnum></citerefentry> for details on
     this option.</para>
 
+    <para>This module also ensures that the root and nobody users and groups (i.e. the users/groups with the UIDs/GIDs
+    0 and 65534) remain resolvable at all times, even if they aren't listed in <filename>/etc/passwd</filename> or
+    <filename>/etc/group</filename>, or if these files are missing.</para>
+
     <para>To activate the NSS module, add <literal>systemd</literal> to the lines starting with
     <literal>passwd:</literal> and <literal>group:</literal> in <filename>/etc/nsswitch.conf</filename>.</para>
author	Lennart Poettering <lennart@poettering.net>	2016-07-27 13:14:01 +0200
committer	Lennart Poettering <lennart@poettering.net>	2016-08-04 23:08:05 +0200
commit	2129011e92feee93383b450bb2d20008786b90a0 (patch)
tree	fa48bcefe0eca788937b771c947875e208571722 /man/nss-systemd.xml
parent	136dc4c4350dfcb1d61ceaac982d0d0a8e6e3863 (diff)