o Gd:d;d;e7e/Z?Gdd?d?e8e/ZAGd@dAdAe8e/ZBGdBdCdCe8e/ZCGdDdEdEe7e/ZDGdFdGdGe7e/ZEGdHdIdIe7e/ZFGdJdKdKe9e/ZGGdLdMdMZHGdNdOdOeHZIGdPdQdQeIe/ZJGdRdSdSeIe/ZKGdTdUdUeIe/ZLGdVdWdWeHZMGdXdYdYeMe/ZNGdZd[d[eMe/ZOGd\d]d]eMe/ZPGd^d_d_eHZQGd`dadaeQe/ZRGdbdcdceQe/ZSGdddedeeQe/ZTGdfdgdgeHZUGdhdidieUe/ZVGdjdkdkeUe/ZWGdldmdmeUe/ZXGdndodoeHe/ZYGdpdqdqeHe/ZZGdrdsdseZZ[GdtdudueZZ\GdvdwdweZZ]Gdxdydye5e/Z^Gdzd{d{e5e/Z_Gd|d}d}e5e/Z`Gd~ddZaGdddeaZbGdddebe/ZcGdddebe/ZdGdddebe/ZeGdddeaZfGdddefe/ZgGdddefe/ZhGdddefe/ZiGddde8e/ZjGddde8e/ZkGddde8e/ZlGdddZmdS)N)ABCMetaabstractmethod)hexlify unhexlify)InvalidSignature)default_backend) constant_timehasheshmac)ec)padding)utils)Cipher algorithmsmodes) ConcatKDFHash) PBKDF2HMAC)aes_key_unwrap aes_key_wrap)PKCS7)InvalidCEKeyLength)InvalidJWAAlgorithm)InvalidJWEKeyLength)InvalidJWEKeyType)InvalidJWEOperation)base64url_decodebase64url_encode) json_decode)JWKi@Tc@sheZdZeeddZeeddZeeddZeeddZeed d Z ed d Z d S) JWAAlgorithmcCdS)zThe algorithm NameNselfr!r!K/root/parts/websockify/install/lib/python3.10/site-packages/jwcrypto/jwa.pyname7zJWAAlgorithm.namecCr )zA short descriptionNr!r"r!r!r$ description<r&zJWAAlgorithm.descriptioncCr )zThe algorithm key sizeNr!r"r!r!r$keysizeAr&zJWAAlgorithm.keysizecCr )zOne of 'alg', 'enc' or 'JWK'Nr!r"r!r!r$algorithm_usage_locationFr&z%JWAAlgorithm.algorithm_usage_locationcCr )zOne of 'sig', 'kex', 'enc'Nr!r"r!r!r$ algorithm_useKr&zJWAAlgorithm.algorithm_usecCs"z|jWSty|jYSw)zThe input key size) wrap_key_sizeAttributeErrorr(r"r!r!r$ input_keysizePs   zJWAAlgorithm.input_keysizeN) __name__ __module__ __qualname__propertyrr%r'r(r)r*r-r!r!r!r$r5s$     r) metaclasscCs t|dSN)lenxr!r!r$_bitsizeY r8cCs|dSr3r!r6r!r!r$_inbytes]sr:cCs"|ddkr tdtt|S)Nr4rzlength must be a multiple of 8) ValueErrorosurandomr:r6r!r!r$ _randombitsas r>cCs2d|}|ddd}t||dd|S)Nz{:x}r40)formatrrjust)nbitseilenr!r!r$ _encode_inths rHcCstt|dS)N)intr)rDr!r!r$ _decode_intnsrKc@eZdZddZddZdS)_RawJWScCtNNotImplementedErrorr#keypayloadr!r!r$signtz _RawJWS.signcCrNrOrPr#rSrT signaturer!r!r$verifywrVz_RawJWS.verifyNr.r/r0rUrYr!r!r!r$rMr rMc@0eZdZdZddZddZddZdd ZdS) _RawHMACNcCst|_||_dSrO)rbackendhashfnr#r_r!r!r$__init__s z_RawHMAC.__init__cCsDtrt||jkrt|jt|tj||j|jd}|||S)Nr^) default_enforce_hmac_key_lengthr8r(rr HMACr_r^update)r#rSrThr!r!r$ _hmac_setups  z_RawHMAC._hmac_setupcCs"t|d}|||}|SNrU)r get_op_keyrgfinalize)r#rSrTskeyrfr!r!r$rUs z _RawHMAC.signcCs(t|d}|||}||dSNrY)rrirgrY)r#rSrTrXvkeyrfr!r!r$rYs z_RawHMAC.verify)r.r/r0r(rargrUrYr!r!r!r$r]{s  r]c@s$eZdZddZddZddZdS)_RawRSAcC||_||_dSrO)padfnr_)r#rpr_r!r!r$ra z_RawRSA.__init__cCs|d}|||j|jSrh)rirUrpr_r#rSrTrkr!r!r$rUs z _RawRSA.signcCs"|d}||||j|jdSrl)rirYrpr_r#rSrTrXpkeyr!r!r$rYs z_RawRSA.verifyN)r.r/r0rarUrYr!r!r!r$rns rnc@s0eZdZddZeddZddZddZd S) _RawECcCrorO)_curver_)r#curver_r!r!r$rarqz_RawEC.__init__cCs|jSrO)rvr"r!r!r$rwsz _RawEC.curvecCsJ|d|j}|j}||t|j}t|\}}t ||t ||Srh) rirvkey_sizerUr ECDSAr_ec_utilsdecode_dss_signaturerH)r#rSrTrksizerXrsr!r!r$rUs z _RawEC.signcCsp|d|j}|dt|d}|t|dd}ttt|dtt|d}|||t |j dS)NrYr@rI) rirvr5rzencode_dss_signaturerJrrYr ryr_)r#rSrTrXrtr}r~ enc_signaturer!r!r$rYsz _RawEC.verifyN)r.r/r0rar1rwrUrYr!r!r!r$rus   ruc@rL)_RawNonecCr )Nr!rRr!r!r$rUrVz _RawNone.signcCs$|ddks |dkrtddS)Nktyoctrz'The "none" signature cannot be verified)rirrWr!r!r$rYsz_RawNone.verifyNrZr!r!r!r$rr[rc0eZdZdZdZdZdZdZfddZZ S)_HS256HS256zHMAC using SHA-256algsigctt|tdSrO)superrrar SHA256r" __class__r!r$raz_HS256.__init__ r.r/r0r%r'r(r)r*ra __classcell__r!r!rr$rrcr)_HS384HS384zHMAC using SHA-384rrcrrO)rrrar SHA384r"rr!r$rarz_HS384.__init__rr!r!rr$rrrcr)_HS512HS512zHMAC using SHA-512rrcrrO)rrrar SHA512r"rr!r$rarz_HS512.__init__rr!r!rr$rrrcr)_RS256RS256zRSASSA-PKCS1-v1_5 using SHA-256rrctt|ttdSrO)rrrar PKCS1v15r rr"rr!r$raz_RS256.__init__rr!r!rr$rrrcr)_RS384RS384zRSASSA-PKCS1-v1_5 using SHA-384rrrcrrO)rrrar rr rr"rr!r$rarz_RS384.__init__rr!r!rr$rrrcr)_RS512RS512zRSASSA-PKCS1-v1_5 using SHA-512rrrcrrO)rrrar rr rr"rr!r$ra rz_RS512.__init__rr!r!rr$rrrcr)_ES256ES256zECDSA using P-256 and SHA-256rrrctt|dtdS)NzP-256)rrrar rr"rr!r$raz_ES256.__init__rr!r!rr$rrrcr)_ES256KES256Kz'ECDSA using secp256k1 curve and SHA-256rrrcr)N secp256k1)rrrar rr"rr!r$ra#rz_ES256K.__init__rr!r!rr$rrrcr)_ES384ES384zECDSA using P-384 and SHA-384rrrcr)NzP-384)rrrar rr"rr!r$ra/rz_ES384.__init__rr!r!rr$r'rrcr)_ES512ES512zECDSA using P-521 and SHA-512rrrcr)NzP-521)rrrar rr"rr!r$ra;rz_ES512.__init__rr!r!rr$r3rrcr)_PS256PS256z.RSASSA-PSS using SHA-256 and MGF1 with SHA-256rrrc4ttttjj}tt||tdSrO) r PSSMGF1r r digest_sizerrrar#rprr!r$raGz_PS256.__init__rr!r!rr$r?rrcr)_PS384PS384z.RSASSA-PSS using SHA-384 and MGF1 with SHA-384rrrcrrO) r rrr rrrrrarrr!r$raUrz_PS384.__init__rr!r!rr$rMrrcr)_PS512PS512z.RSASSA-PSS using SHA-512 and MGF1 with SHA-512rrrcrrO) r rrr rrrrrarrr!r$racrz_PS512.__init__rr!r!rr$r[rrc@ eZdZdZdZdZdZdZdS)_Nonenonez%No digital signature or MAC performedrrrNr.r/r0r%r'r(r)r*r!r!r!r$ri rc@rL) _RawKeyMgmtcCrNrOrP)r#rSbitsizecekheadersr!r!r$wraptrVz_RawKeyMgmt.wrapcCrNrOrP)r#rSrekrr!r!r$unwrapwrVz_RawKeyMgmt.unwrapN)r.r/r0rrr!r!r!r$rrr[rc@s,eZdZddZddZddZddZd S) _RSAcCs ||_dSrO)rprr!r!r$ra}s z _RSA.__init__cC0t|ts td|ddkrtd|ddS)Nkey is not a JWK objectrRSA isinstancerr;rr#rSr!r!r$ _check_key  z_RSA._check_keycCs8|||s t|}|d}|||j}||dS)NwrapKeyrr)rr>riencryptrpr#rSrrrrkrr!r!r$rs   z _RSA.wrapcCs@|||d}|||j}t||krt|t||S)N unwrapKey)rridecryptrpr8rr#rSrrrrrr!r!r$rs   z _RSA.unwrapN)r.r/r0rarrrr!r!r!r$r{s  rcs<eZdZdZdZdZdZdZfddZfdd Z Z S) _Rsa15RSA1_5zRSAES-PKCS1-v1_5rrkexcrrO)rrrar rr"rr!r$rarz_Rsa15.__init__csH||t|}ztt|||||}tdty#|YSw)NDummy)rr>rrrr; Exceptionr#rSrrrrrr!r$rs  z _Rsa15.unwrap) r.r/r0r%r'r(r)r*rarrr!r!rr$rs rcr)_RsaOaepRSA-OAEPz#RSAES OAEP using default parametersrrrc,tt|ttttddSrO)rrrar OAEPrr SHA1r"rr!r$ra z_RsaOaep.__init__rr!r!rr$rrrcr) _RsaOaep256 RSA-OAEP-256z.RSAES OAEP using SHA-256 and MGF1 with SHA-256rrrcrrO)rrrar rrr rr"rr!r$rarz_RsaOaep256.__init__rr!r!rr$rrrc@r\) _AesKwNcC t|_dSrOrr^r"r!r!r$rar9z_AesKw.__init__cC\t|ts td|ddkrtd|dt||}t||jkr,t|jt||SNrrr rrr;rrrir8r(rr#rSoprr!r!r$_get_key  z_AesKw._get_keycCs0||d}|s t|}t||t}||dS)Nrr)rr>rrrr!r!r$rs  z _AesKw.wrapcCs8||d}t||t}t||krt|t||S)Nr)rrrr8rrr!r!r$rs  z _AesKw.unwrapr.r/r0r(rarrrr!r!r!r$rs  rc@r)_A128KWA128KWzAES Key Wrap using 128-bit keyrrNrr!r!r!r$rrrc@r)_A192KWA192KWzAES Key Wrap using 192-bit keyrrNrr!r!r!r$rrrc@r)_A256KWA256KWzAES Key Wrap using 256-bit keyrrrNrr!r!r!r$rrrc@r\) _AesGcmKwNcCrrOrr"r!r!r$rar9z_AesGcmKw.__init__cCrrrrr!r!r$rrz_AesGcmKw._get_keyc Csv||d}|s t|}td}tt|t||jd}|}| || } |j } || t |t | ddS)Nr`rb)ivtag)rrheader) rr>rrAESrGCMr^ encryptorrerjrr) r#rSrrrrrcipherrrrr!r!r$r s z_AesGcmKw.wrapc Cs||d}d|vrtdt|d}d|vrtdt|d}tt|t|||jd}| } | || } t | |krKt |t | | S)Nrrz&Invalid Header, missing "iv" parameterrz'Invalid Header, missing "tag" parameterrb)rr;rrrrrrr^ decryptorrerjr8r) r#rSrrrrrrrrrr!r!r$r0s    z_AesGcmKw.unwraprr!r!r!r$rs  rc@r) _A128GcmKw A128GCMKWz+Key wrapping with AES GCM using 128-bit keyrrrNrr!r!r!r$rCrrc@r) _A192GcmKw A192GCMKWz+Key wrapping with AES GCM using 192-bit keyrrrNrr!r!r!r$rLrrc@r) _A256GcmKw A256GCMKWz+Key wrapping with AES GCM using 256-bit keyrrrNrr!r!r!r$r Urr c@s8eZdZdZdZdZddZddZddZdd Z dS) _Pbes2HsAesKwNcCt|_tttd|_dSN)rrrrr^rrraeskwmapr"r!r!r$radz_Pbes2HsAesKw.__init__c Cs|tkrtdt|tst|tr|}n |d}nt|}t|jdd|}|j dkr7t }n|j dkrAt }n|j dkrKt }ntdt|t|j|||jd}||} t| |jkrpt|jt| td d t| d S) NzInvalid p2c value, too largeutf8rrrzUnknown Hash Size) algorithmlengthsalt iterationsr^rencrusek)default_max_pbkdf2_iterationsr;rrbytesencoderrir%hashsizer rrrrr:r(r^deriver8rr5r) r#rrSp2sp2cplainrhashalgkdfrr!r!r$rhs,            z_Pbes2HsAesKw._get_keyc Csi}d|vrt|d}t|dkrtdn td}t||d<d|vr*|d}nd}||d<||d|||}|j|j} | ||||} t|dkrS|| d <| S) Nr r4z'Invalid Salt, must be 8 or more octectsrr!i rrr) rr5r;r>rrrr(r) r#rSrrr ret_headerr r!kekaeskwretr!r!r$rs$     z_Pbes2HsAesKw.wrapc Csfd|vrtdd|vrtdt|d}|d}||d|||}|j|j}|||||S)Nr z'Invalid Header, missing "p2s" parameterr!z'Invalid Header, missing "p2c" parameterr)r;rrrr(r) r#rSrrrr r!r&r'r!r!r$rs z_Pbes2HsAesKw.unwrap) r.r/r0r%r(rrarrrr!r!r!r$r ^s r c@$eZdZdZdZdZdZdZdZdS)_Pbes2Hs256A128KwPBES2-HS256+A128KWz-PBES2 with HMAC SHA-256 and "A128KW" wrappingrrrrN r.r/r0r%r'r(r)r*rr!r!r!r$r*r*c@r))_Pbes2Hs384A192KwPBES2-HS384+A192KWz-PBES2 with HMAC SHA-384 and "A192KW" wrappingrrrrNr,r!r!r!r$r.r-r.c@r))_Pbes2Hs512A256KwPBES2-HS512+A256KWz-PBES2 with HMAC SHA-512 and "A256KW" wrappingrrrrNr,r!r!r!r$r0r-r0c@s8eZdZdZdZdZdZdZddZdd Z d d Z d S) _Directdirz$Direct use of a shared symmetric keyrrrcCrrrrr!r!r$rrz_Direct._check_keycCsF|||r |dfSt|d}t||krt|t|d|iS)Nrr)rrrir8r)r#rSrrrrr!r!r$rs  z _Direct.wrapcCsF|||dkr tdt|d}t||kr!t|t||S)NzInvalid Encryption Key.r)rr;rrir8rrr!r!r$rs  z_Direct.unwrapN) r.r/r0r%r'r(r)r*rrrr!r!r!r$r2s r2c@sHeZdZdZdZdZdZdZddZdd Z d d Z d d Z ddZ dS)_EcdhEsECDH-ESzECDH-ES using Concat KDFrrNcCr r rr"r!r!r$rarz_EcdhEs.__init__cCsZt|ts td|ddvrtd|d|ddkr)|ddvr+td|ddSdS) Nrr)ECOKPz EC or OKPr8crv)X25519X448zX25519 or X448rrr!r!r$rs    z_EcdhEs._check_keyc Cstdt|}|t|d7}d|vrt|dnd}|tdt|7}||7}d|vr5t|dnd}|tdt|7}||7}|td|7}t|tjr\| t |} n| |} t t t|||jd} | | S)Nz>Irapur4apv)rr otherinfor^)structpackr5rrrrr EllipticCurvePrivateKeyexchangeECDHrr rr:r^r) r#privkeypubkeyrrrr>r<r= shared_keyckdfr!r!r$_derives$   z_EcdhEs._derivec Cs|||j}|jdur|durtd|d}|}n|d}tj|d|dd}||d|d|||}|jdurDd |i} n|j|j} td dt|d } | | |||} d t | i| d <| S)Nz"ECDH-ES cannot use an existing CEKrrrr9)rr9rrrrrepkr) rr(rrgeneraterHrirrrr export_public) r#rSrrrdk_sizerrIdkr(r'r&r!r!r$r"s(     z _EcdhEs.wrapc Csd|vrtd|||j}|jdur|d}|}n|d}td i|d}||d|d|||}|jdur?|S|j|j} tddt|d} | | |||} | S) NrIz'Invalid Header, missing "epk" parameterrrrrrrr!) r;rr(rrHrirrr) r#rSrrrrLrrIrMr'r&rr!r!r$r<s&    z_EcdhEs.unwrap) r.r/r0r%r'r)r*r(rarrHrrr!r!r!r$r5s # r5c@r)_EcdhEsAes128KwECDH-ES+A128KWz.ECDH-ES using Concat KDF and "A128KW" wrappingrrrNrr!r!r!r$rNTrrNc@r)_EcdhEsAes192KwECDH-ES+A192KWz.ECDH-ES using Concat KDF and "A192KW" wrappingrrrNrr!r!r!r$rP]rrPc@r)_EcdhEsAes256KwECDH-ES+A256KWz.ECDH-ES using Concat KDF and "A256KW" wrappingrrrNrr!r!r!r$rRfrrRc@0eZdZdZdZdZdZdZddZdd Z dS) _EdDsaEdDSAz'EdDSA using Ed25519 or Ed448 algorithmsrrNcCs$|ddvr|d}||St)Nr9Ed25519Ed448rU)rirUrQrrr!r!r$rUws   z _EdDsa.signcCs&|ddvr|d}|||St)Nr9rWrY)rirYrQrsr!r!r$rY}s   z _EdDsa.verify r.r/r0r%r'r)r*r(rUrYr!r!r!r$rUo rUc@rT) _Ed25519rXzEdDSA using Ed25519rrNcC.|ddkr td|d|d}||S)Nr9rXrUrrirUrrr!r!r$rU   z _Ed25519.signcC0|ddkr td|d|d}|||S)Nr9rXrYrrirYrsr!r!r$rY   z_Ed25519.verifyrZr!r!r!r$r\r[r\c@rT) _Ed448rYzEdDSA using Ed448rrNcCr])Nr9rYrUr^rrr!r!r$rUr_z _Ed448.signcCr`)Nr9rYrYrarsr!r!r$rYrbz _Ed448.verifyrZr!r!r!r$rcr[rcc@rL)_RawJWEcCrNrOrP)r#raadmr!r!r$rrVz_RawJWE.encryptcCrNrOrP)r#rrerrFtr!r!r$rrVz_RawJWE.decryptN)r.r/r0rrr!r!r!r$rdr[rdc@r\) _AesCbcHmacSha2NcCs(t|_||_tjj|_|jd|_dS)Nr@) rr^r_rr block_size blocksizer(r+r`r!r!r$ras z_AesCbcHmacSha2.__init__cCsdtt|d}tj||j|jd}|||||||||}|dt|j S)N@rb) rHr8r rdr_r^rerjr:r()r#rrerrFalrfrfr!r!r$_macs    z_AesCbcHmacSha2._macc Cst|t|jkr td|dt|j}|t|jd}t|j}tt |t ||j d}| }t|j} | || } || |} ||||| } || | fS) Encrypt according to the selected encryption and hashing functions. :param k: Encryption key :param aad: Additional Authentication Data :param m: Plaintext Returns a dictionary with the computed data. Invalid input key sizeNrb)r5r:r+r;r(r>rjrrrrCBCr^rrpadderrerjrm) r#rrerfhkeyekeyrrrrq padded_datarFrgr!r!r$rs   z_AesCbcHmacSha2.encryptc Cst|t|jkr td|dt|j}|t|jd}t||||||s/tdt t |t ||jd}|} | || } t|j} | | | S)A Decrypt according to the selected encryption and hashing functions. :param k: Encryption key :param aad: Additional Authenticated Data :param iv: Initialization Vector :param e: Ciphertext :param t: Authentication Tag Returns plaintext or raises an error roNzFailed to verify MACrb)r5r:r+r;r(rbytes_eqrmrrrrrrpr^rrerjrrjunpadder) r#rrerrFrgrrdkeyrrdrwr!r!r$rs z_AesCbcHmacSha2.decrypt)r.r/r0r(rarmrrr!r!r!r$rhs  rhc0eZdZdZdZdZdZdZfddZZ S) _A128CbcHs256 A128CBC-HS256z&AES_128_CBC_HMAC_SHA_256 authenticatedrrcrrO)rr{rar rr"rr!r$rarz_A128CbcHs256.__init__rr!r!rr$r{rr{crz) _A192CbcHs384 A192CBC-HS384z&AES_192_CBC_HMAC_SHA_384 authenticatedrrcrrO)rr}rar rr"rr!r$rarz_A192CbcHs384.__init__rr!r!rr$r}rr}crz) _A256CbcHs512 A256CBC-HS512z&AES_256_CBC_HMAC_SHA_512 authenticatedrrcrrO)rrrar rr"rr!r$ra(rz_A256CbcHs512.__init__rr!r!rr$r rrc@s(eZdZdZddZddZddZdS)_AesGcmNcCst|_|j|_dSrO)rr^r(r+r"r!r!r$ra0s z_AesGcm.__init__cCsTtd}tt|t||jd}|}||| || }|||j fS)rnrrb) r>rrrrrr^rauthenticate_additional_datarerjr)r#rrerfrrrrFr!r!r$r5s   z_AesGcm.encryptcCsBtt|t|||jd}|}||||| S)rurb) rrrrrr^rrrerj)r#rrerrFrgrrr!r!r$rHs   z_AesGcm.decrypt)r.r/r0r(rarrr!r!r!r$r,s  rc@ eZdZdZdZdZdZdZdS)_A128GcmA128GCMzAES GCM using 128-bit keyrrNrr!r!r!r$rZrrc@r)_A192GcmA192GCMzAES GCM using 192-bit keyrrNrr!r!r!r$rcrrc@r)_A256GcmA256GCMzAES GCM using 256-bit keyrrNrr!r!r!r$rlrrcr)_BP256R1BP256R1zsECDSA using Brainpool256R1 curve and SHA-256 (unregistered, custom-defined in breach of IETF rules by gematik GmbH)rrrcr)NzBP-256)rrrar rr"rr!r$rarz_BP256R1.__init__rr!r!rr$rurcr)_BP384R1BP384R1zsECDSA using Brainpool384R1 curve and SHA-384 (unregistered, custom-defined in breach of IETF rules by gematik GmbH)rrrcr)NzBP-384)rrrar rr"rr!r$rarz_BP384R1.__init__rr!r!rr$rrrcr)_BP512R1BP512R1zsECDSA using Brainpool512R1 curve and SHA-512 (unregistered, custom-defined in breach of IETF rules by gematik GmbH)rrrcr)NzBP-512)rrrar rr"rr!r$rarz_BP512R1.__init__rr!r!rr$rrrc @s.eZdZdZidededededede de d e d e d e d ed edededededeidededededededededededede de!d e"d!e#d"e$d#e%e&e'e(e)e*e+e,e-e.d$ Z/e0d.d&d'Z1e0d(d)Z2e0d*d+Z3e0d,d-Z4d%S)/JWAzSJWA Signing Algorithms. This class provides access to all JWA algorithms. rrrrrrrrrrrrrrrrrrrrr3r6rOrQrSrVrrr r+r/r1r|r~) rrrrrrrrXrYNcCs&|j|}|dur|j|krt|SrO)algorithms_registryr*KeyError)clsr%rrr!r!r$instantiate_algs zJWA.instantiate_algcC.z|j|ddWStytd|dw)Nrrz(%s is not a valid Signing algorithm namerrrrr%r!r!r$ signing_alg zJWA.signing_algcCr)Nrrz/%s is not a valid Key Management algorithm namerrr!r!r$ keymgmt_algrzJWA.keymgmt_algcCr)Nrrz+%s is not a valid Encryption algorithm namerrr!r!r$encryption_algrzJWA.encryption_algrO)5r.r/r0__doc__rrrrrrrrrrrrrrrrrrrrr2r5rNrPrRrUrrr r*r.r0r{r}rrrrrrrr\rcr classmethodrrrrr!r!r!r$rs      !"#.   r)nr<r?abcrrbinasciirrcryptography.exceptionsrcryptography.hazmat.backendsrcryptography.hazmat.primitivesrr r )cryptography.hazmat.primitives.asymmetricr r r rz&cryptography.hazmat.primitives.ciphersrrr,cryptography.hazmat.primitives.kdf.concatkdfr)cryptography.hazmat.primitives.kdf.pbkdf2r&cryptography.hazmat.primitives.keywraprr&cryptography.hazmat.primitives.paddingrjwcrypto.commonrrrrrrrr jwcrypto.jwkrrrcrr8r:r>rHrKrMr]rnrurrrrrrrrrrrrrrrrrrrrrrrrrrrr r r*r.r0r2r5rNrPrRrUr\rcrdrhr{r}rrrrrrrrrr!r!r!r$s                $              #   4   L   !k    Q   .