forked from chromium/chromium
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
in_session_auth: Check PIN availability after each auth
The lock screen checks PIN availability after each auth so it could hide the PIN input field and prompts the user for their password for correct UX. WebAuthn dialog currently tries to match this behavior by keeping a PIN attempt counter, but that's incorrect because the incorrect attempt count is not necessarily 0 when the dialog is summoned. Fix the implementation by checking PIN availability again after each authentication failure to determine whether PIN field should be disabled, instead of by keeping a counter. The mentioned WebauthnPINLockout test to test this behavior is added in https://crrev.com/c/3721192. Bug: b:237244202 Test: manual test that "too many attempts" appear after lockout Test: run the newly added WebauthnPINLockout test Change-Id: I7a05881d67b40287eb048cd664b610c6bbe57453 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/3726427 Reviewed-by: Elie Maamari <emaamari@google.com> Reviewed-by: Xiyuan Xia <xiyuan@chromium.org> Commit-Queue: Howard Yang <hcyang@google.com> Cr-Commit-Position: refs/heads/main@{#1018709}
- Loading branch information
1 parent
95a334f
commit a7820f7
Showing
5 changed files
with
95 additions
and
41 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters