From 0abb891ac4ae00c0598559be542a524e1437784e Mon Sep 17 00:00:00 2001
From: Mateusz Malisz <maliszmat@outlook.com>
Date: Mon, 28 Dec 2020 17:28:12 -0800
Subject: [PATCH] Mamalisz/fix chage shadow (#500)

* Check shadow file inside the installChroot, not setupChroot
---
 .../imagegen/installutils/installutils.go      | 18 ++++++++++--------
 1 file changed, 10 insertions(+), 8 deletions(-)

diff --git a/toolkit/tools/imagegen/installutils/installutils.go b/toolkit/tools/imagegen/installutils/installutils.go
index e42406dec35..2a960704a14 100644
--- a/toolkit/tools/imagegen/installutils/installutils.go
+++ b/toolkit/tools/imagegen/installutils/installutils.go
@@ -862,8 +862,9 @@ func addUsers(installChroot *safechroot.Chroot, users []configuration.User) (err
 	if !rootUserAdded {
 		logger.Log.Debugf("No root user entry found in config file. Setting root password to never expire.")
 
-		// Ignore updating if there is no shadow file to update
-		if exists, ferr := file.PathExists(shadowFile); ferr != nil {
+		// Ignore updating if there is no shadow file to update in the target image
+		installChrootShadowFile := filepath.Join(installChroot.RootDir(), shadowFile)
+		if exists, ferr := file.PathExists(installChrootShadowFile); ferr != nil {
 			logger.Log.Error("Error accessing shadow file.")
 			return ferr
 		} else if !exists {
@@ -887,10 +888,11 @@ func createUserWithPassword(installChroot *safechroot.Chroot, user configuration
 	)
 
 	var (
-		hashedPassword string
-		stdout         string
-		stderr         string
-		salt           string
+		hashedPassword          string
+		stdout                  string
+		stderr                  string
+		salt                    string
+		installChrootShadowFile = filepath.Join(installChroot.RootDir(), shadowFile)
 	)
 
 	// Get the hashed password for the user
@@ -926,7 +928,7 @@ func createUserWithPassword(installChroot *safechroot.Chroot, user configuration
 			logger.Log.Warnf("Ignoring UID for (%s) user, using default", rootUser)
 		}
 
-		if exists, ferr := file.PathExists(shadowFile); ferr != nil {
+		if exists, ferr := file.PathExists(installChrootShadowFile); ferr != nil {
 			logger.Log.Error("Error accessing shadow file.")
 			err = ferr
 			return
@@ -961,7 +963,7 @@ func createUserWithPassword(installChroot *safechroot.Chroot, user configuration
 	// Update password expiration
 	if user.PasswordExpiresDays != 0 {
 		// Ignore updating if there is no shadow file to update
-		if exists, ferr := file.PathExists(shadowFile); ferr != nil {
+		if exists, ferr := file.PathExists(installChrootShadowFile); ferr != nil {
 			logger.Log.Error("Error accessing shadow file.")
 			err = ferr
 			return