fix: contactKDF iteration count fixed for key sizes larger than 256 bits

lib/jwa/ecdh/derive.js

@@ -2,7 +2,7 @@ const { createHash } = require('crypto')
 const ecdhComputeSecret = require('./compute_secret')
 
 const concat = (key, length, value) => {
-  const iterations = Math.ceil(length / 256)
+  const iterations = Math.ceil(length / 32)
   let res
 
   for (let iter = 1; iter <= iterations; iter++) {

test/jwe/smoke.P-256K.test.js

@@ -26,7 +26,6 @@ const dKey = asKey(key)
 
 ;[...eKey.algorithms('wrapKey'), ...eKey.algorithms('deriveKey')].forEach((alg) => {
   ENCS.forEach((enc) => {
-    if (alg === 'ECDH-ES' && ['A192CBC-HS384', 'A256CBC-HS512'].includes(enc)) return
     test(`key ${type} > alg ${alg} > ${enc}`, success, eKey, dKey, alg, enc)
     test(`key ${type} > alg ${alg} > ${enc} (negative cases)`, failure, eKey, dKey, alg, enc)
   })

test/jwe/smoke.test.js

@@ -28,7 +28,6 @@ Object.entries(fixtures.PEM).forEach(([type, { private: key, public: pub }]) =>
 
   ;[...eKey.algorithms('wrapKey'), ...eKey.algorithms('deriveKey')].forEach((alg) => {
     ENCS.forEach((enc) => {
-      if (alg === 'ECDH-ES' && ['A192CBC-HS384', 'A256CBC-HS512'].includes(enc)) return
       test(`key ${type} > alg ${alg} > ${enc}`, success, eKey, dKey, alg, enc)
       test(`key ${type} > alg ${alg} > ${enc} (key as bare input)`, success, pub, key, alg, enc)
       if (keyObjectSupported) {
@@ -71,7 +70,6 @@ Object.entries(fixtures.PEM).forEach(([type, { private: key, public: pub }]) =>
   const eKey = asKey({ kty: 'RSA', e: rsa.e, n: rsa.n })
   eKey.algorithms('wrapKey').forEach((alg) => {
     ENCS.forEach((enc) => {
-      if (alg === 'ECDH-ES' && ['A192CBC-HS384', 'A256CBC-HS512'].includes(enc)) return
       test(`key RSA (min) > alg ${alg} > ${enc}`, success, eKey, dKey, alg, enc)
       test(`key RSA (min) > alg ${alg} > ${enc} (negative cases)`, failure, eKey, dKey, alg, enc)
     })