On Wed, 28 Jun 2023 22:48:01 +0900 Tetsuo Handa wrote: > syzbot is reporting uninit-value at aes_encrypt(), for block cipher assumes > that bytes to encrypt/decrypt is multiple of block size for that cipher but > tls_alloc_encrypted_msg() is not initializing padding bytes when > required_size is not multiple of block cipher's block size. Sounds odd, so crypto layer reads beyond what we submitted as the buffer? I don't think the buffer needs to be aligned, so the missing bits may well fall into a different (unmapped?) page. This needs more careful investigation. Always zeroing the input is just covering up the real issue.
