relay: Wipe secret material in ExtOrPort handling

Signed-off-by: David Goulet <dgoulet@torproject.org>

diff --git a/src/feature/relay/ext_orport.c b/src/feature/relay/ext_orport.c
index 89b287b0b4fefe1cfb7cd10ebdd2cf48311ffbf3..76cd9bdea6ce0388ec407f6200f783454a694688 100644 (file)
--- a/src/feature/relay/ext_orport.c
+++ b/src/feature/relay/ext_orport.c
@@ -285,6 +285,9 @@ handle_client_auth_nonce(const char *client_nonce, size_t client_nonce_len,
            EXT_OR_PORT_AUTH_NONCE_LEN);
   }
 
+  memwipe(server_hash, 0, sizeof(server_hash));
+  memwipe(server_nonce, 0, sizeof(server_nonce));
+
   *reply_out = reply;
   *reply_len_out = reply_len;