Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / phosphor-user-manager / fba4bb174a33b78074578f2b42749dd0fad15272
commitfba4bb174a33b78074578f2b42749dd0fad15272[log] [tgz]
authorJiaqing Zhao <jiaqing.zhao@intel.com>Fri Jun 24 01:30:57 2022 +0800
committerRatan Gupta <ratankgupta31@gmail.com>Thu Aug 18 08:00:14 2022 +0000
tree10f11dd9b720032b48f18ab43fb476b9a118bf40
parent8557d32051a2b28c136e0fe65491b00442e87a6d [diff]
Check time when getting UserLockedForFailedAttempt

In pam_tally2, the user is unlocked after unlock_time seconds. But
phosphor-user-manager only checks the login failure attempts and sets
UserLockedForFailedAttempt to true when it exceeds the max attempts
allowed. This patch fixes this issue by adding a comparison of current
time and the last login failure time.

Tested:
Login with wrong password for {MaxLoginAttemptBeforeLockout} times,
verified UserLockedForFailedAttempt is changed to true. Then wait for
{AccountUnlockTimeout} seconds, it becomes to false.

Change-Id: If8427e5644e0cd88758b0266973feb50a9831fe1
Signed-off-by: Jiaqing Zhao <jiaqing.zhao@intel.com>
1 file changed
tree: 10f11dd9b720032b48f18ab43fb476b9a118bf40
  1. docs/
  2. phosphor-ldap-config/
  3. subprojects/
  4. test/
  5. .clang-format
  6. .gitignore
  7. bootstrap.sh
  8. configure.ac
  9. file.hpp
  10. LICENSE
  11. mainapp.cpp
  12. Makefile.am
  13. meson.build
  14. meson_options.txt
  15. nslcd
  16. OWNERS
  17. phosphor-nslcd-cert-config.conf
  18. shadowlock.hpp
  19. user_mgr.cpp
  20. user_mgr.hpp
  21. users.cpp
  22. users.hpp