我有这个问题，我通过这种方式使用node-jose在 node.js 中创建了一个 JWE：const keystore = [  {    kty: 'oct',    kid: 'QLdRkgyMx_po0fPo5XnOzQQB4iTcyay36m_PA62SBiw',    k: 'A-OAikjssQZeLkj8N_2Xb9qPBG6lSq10YeLbiTF-kQuM_qKy08jwFqQwsLzn9fmNPkayM9uRg1lHBrPoK_fGtQ'  }]const ks = await jose.JWK.asKeyStore(keystore);const rawKey = ks.get(keystore[0].kid)const key = await jose.JWK.asKey(rawKey);const jwe = await jose.JWE      .createEncrypt({format: 'compact'}, key)      .update(payload)      .final();根据创建它的文档"alg": "PBES2-HS256+A128KW",  "enc": "A128CBC-HS256",，如果我在 jwt.io 中检查它，它就是。然后，我需要在 golang 中解密，所以我喜欢使用go-jose.v2：package mainimport (    "fmt"    "gopkg.in/square/go-jose.v2")const jweRaw string = "eyJhbGciOiJQQkVTMi1IUzI1NitBMTI4S1ciLCJlbmMiOiJBMTI4Q0JDLUhTMjU2Iiwia2lkIjoiUUxkUmtneU14X3BvMGZQbzVYbk96UVFCNGlUY3lheTM2bV9QQTYyU0JpdyIsInAyYyI6ODE5MiwicDJzIjoiaVktZEdKaWtYbUZCdXMwRFp5eHdIQSJ9.QkuIGmPojLDX-wpTVTjZRnA093fJRVM6OHkpmoQeyLubahOABg62WQ.z6dm86nWHcWgzmPXiuk0kg.7mOgYF6d9hgfXtTj9RUv7BNuYH-jBAs8px0boOFj1mke_JPetIT44yY7ceffFRfS2QYc6RQMtTvb7vdMArkqeB483g3-tcoCGWxafOb0VfVQHrPTdjpGMLF-9uIJw9z5.RA0Dn-B_Y3kvXYRvVTiNFQ"const kid string = "QLdRkgyMx_po0fPo5XnOzQQB4iTcyay36m_PA62SBiw"const k string = "A-OAikjssQZeLkj8N_2Xb9qPBG6lSq10YeLbiTF-kQuM_qKy08jwFqQwsLzn9fmNPkayM9uRg1lHBrPoK_fGtQ"func main() {    jwe, err1 := jose.ParseEncrypted(jweRaw)    if err1 != nil {        panic(err1)    }    fmt.Println("jwe", jwe)    bytes, err2 := jwe.Decrypt(jose.JSONWebKey{Algorithm: "PBES2-HS256+A128KW", Use: "A128CBC-HS256", KeyID: kid, Key: k})    if err2 != nil {        panic(err2)    }    fmt.Println("bytes", string(bytes))}但它会恐慌“恐慌：square/go-jose：密码原语中的错误”您可以在此处查看：https: //play.golang.org/p/qB3QNtGwBsK我已经尝试过https://github.com/lestrrat-go/jwx但是它不支持 PBES2-HS256+A128KW 算法谢谢。