lock/server: Check if the lock server itself is skewed back. (#3447)

8 years ago · b28ff50126
parent 3fe2d77b70
commit b28ff50126
1 changed files with 3 additions and 1 deletions
--- a/cmd/lock-rpc-server-common.go
+++ b/cmd/lock-rpc-server-common.go
@ -58,9 +58,11 @@ func (l *lockServer) removeEntry(name, uid string, lri *[]lockRequesterInfo) boo
 }
 // Validate lock args.
 // - validate time stamp.
 // - validate jwt token.
 func (l *lockServer) validateLockArgs(args *LockArgs) error {
 	curTime := time.Now().UTC()
-	if curTime.Sub(args.Timestamp) > globalMaxSkewTime {
+	if curTime.Sub(args.Timestamp) > globalMaxSkewTime || args.Timestamp.Sub(curTime) > globalMaxSkewTime {
 		return errServerTimeMismatch
 	}
 	if !isRPCTokenValid(args.Token) {