Work around broken SSH login by disabling PAM for Fedora and Oracle (#82)

* Change: Disable PAM for Oracle to work around broken SSH login

* Change: Disable PAM for Fedora to work around broken SSH login

Author: n-thumann

operating_systems/fedora/Dockerfile

@@ -11,7 +11,9 @@ RUN if [ "$UPDATED" = true ]; then dnf upgrade -y; fi \
     && echo "demo:demo" | chpasswd \
     && ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N "" \
     && ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key -N "" \
-    && ssh-keygen -t ed25519 -f /etc/ssh/ssh_host_ed25519_key -N ""
+    && ssh-keygen -t ed25519 -f /etc/ssh/ssh_host_ed25519_key -N "" \
+    # Workaround to fix SSH login (see VTA-641)
+    && echo "UsePAM no" > /etc/ssh/sshd_config.d/01-disable-usepam.conf
 
 CMD [ "/usr/sbin/sshd", "-D" ]
 

operating_systems/oraclelinux/Dockerfile

@@ -9,7 +9,10 @@ RUN if [ "$UPDATED" = true ]; then yum upgrade -y && yum clean all; fi \
     && echo "demo" | passwd --stdin demo \
     && ssh-keygen -t rsa -f /etc/ssh/ssh_host_rsa_key -N "" \
     && (ssh-keygen -t ecdsa -f /etc/ssh/ssh_host_ecdsa_key -N "" || true) \
-    && (ssh-keygen -t ed25519 -f /etc/ssh/ssh_host_ed25519_key -N "" || true)
+    && (ssh-keygen -t ed25519 -f /etc/ssh/ssh_host_ed25519_key -N "" || true) \
+    # Workaround to fix SSH login (see VTA-641)
+    && if [ -d /etc/ssh/sshd_config.d ]; then echo "UsePAM no" > /etc/ssh/sshd_config.d/01-disable-usepam.conf; \
+    else sed -i "s/UsePAM yes/UsePAM no/" /etc/ssh/sshd_config; fi
 
 CMD [ "/usr/sbin/sshd", "-D" ]