useradd changes to /etc/sub[ug]id don't persist past next activation

[jameysharp]

Issue description

On a NixOS system with mutableUsers = true, the admin is supposed to be able to imperatively add users by running useradd.

The useradd command automatically allocates a UID and GID range for the new user if /etc/subuid or /etc/subgid exist, which they always do on NixOS.

However, all changes to these two files are overwritten on the next system reboot or nixos-rebuild, which to me seems counter to the intent of mutableUsers.

Steps to reproduce

useradd -m testuser
grep '^testuser:' /etc/sub[ug]id # should match
/run/current-system/activate
grep '^testuser:' /etc/sub[ug]id # nothing

Technical details

• system: "x86_64-linux"
• host os: Linux 5.1.14, NixOS, 19.09.git.6cc7e33 (Loris)
• sandbox: yes
• version: nix-env (Nix) 2.2.2

The channel info isn't meaningful because I built from a git checkout, not my normal channels, and I tested in a container that didn't have access to /nix/var anyway.

[stale]

Thank you for your contributions.

This has been automatically marked as stale because it has had no activity for 180 days.

If this is still important to you, we ask that you leave a comment below. Your comment can be as simple as "still important to me". This lets people see that at least one person still cares about this. Someone will have to do this at most twice a year if there is no other activity.

Here are suggestions that might help resolve this more quickly:

1. Search for maintainers and people that previously touched the related code and @ mention them in a comment.
2. Ask on the NixOS Discourse.
3. Ask on the #nixos channel on irc.freenode.net.