PKCS#11 CKM_AES_CBC_PAD decryption can fail
Review Request #2444 — Created Nov. 7, 2019 and submitted
Invocation of C_Decrypt() on ciphertext encrypted with the CKM_AES_CBC_PAD mechanism can fail
crypto tests were updated to test for the scenarios that were encountered originally. Additional tests written to fix long standing CTR mode bugs (review soon to come) that cover a broader number of scenarios also confirm no issues after the fix.
IPS changes look good, and I already reviewed the rest in-house for Joyent.