From 378f4b024805f1ab6e73aac295651102800ac0e2 Mon Sep 17 00:00:00 2001
From: costin <costin@13f79535-47bb-0310-9956-ffa450edef68>
Date: Tue, 10 Nov 2009 04:54:34 +0000
Subject: [PATCH] Invalidate the session - so it can't be resumed. Not sure
 what else we can do using this hook - we could switch to SSLEngine, but
 that's pretty large change.

git-svn-id: https://svn.apache.org/repos/asf/tomcat/trunk@834340 13f79535-47bb-0310-9956-ffa450edef68
---
 java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java | 1 +
 1 file changed, 1 insertion(+)

diff --git a/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java b/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java
index 0697c07db..74df1d9ea 100644
--- a/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java
+++ b/java/org/apache/tomcat/util/net/jsse/JSSESocketFactory.java
@@ -178,6 +178,7 @@ public class JSSESocketFactory
             if (completed) {
                 try {
                     log.warn("SSL renegotiation is disabled, closing connection");
+                    event.getSession().invalidate();
                     event.getSocket().close();
                 } catch (IOException e) {
                     // ignore
-- 
2.11.0