From: costin <costin@13f79535-47bb-0310-9956-ffa450edef68>
Date: Tue, 10 Nov 2009 04:54:34 +0000 (+0000)
Subject: Invalidate the session - so it can't be resumed.
X-Git-Url: https://git.internetallee.de/?a=commitdiff_plain;h=378f4b024805f1ab6e73aac295651102800ac0e2;p=tomcat7.0

Invalidate the session - so it can't be resumed.
Not sure what else we can do using this hook - we could switch to SSLEngine, but that's pretty large change.


git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@834340 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java b/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java
index 0697c07db..74df1d9ea 100644
--- a/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java
+++ b/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java
@@ -178,6 +178,7 @@ public class JSSESocketFactory
             if (completed) {
                 try {
                     log.warn("SSL renegotiation is disabled, closing connection");
+                    event.getSession().invalidate();
                     event.getSocket().close();
                 } catch (IOException e) {
                     // ignore