/**
 * JWE (RFC 7516) encryption layer for vaults/1.0.
 *
 * Spec § EDV Usage requires JWE for content encryption before upload.
 * General JSON Serialization (RFC 7516 §7.2) gives one ciphertext with
 * many recipients without re-encrypting per peer.
 *
 *   - ECDH-ES (X25519) + Concat-KDF + A256GCM
 *   - pq-hybrid (X25519 + ML-KEM-768) registers via opt-in
 */
export { concatKdf } from './concatKdf';
export { encrypt } from './encrypt';
export { decrypt } from './decrypt';
export { register, resolveAlg, cekLengthForEnc } from './algs';
export { b64uEncode, b64uDecode } from './b64url';
export { ALG_ECDH_ES, ENC_A256GCM, JweAlgUnsupportedError, JweDecryptError, JweEncryptError, JweInvalidStructure, JweRecipientNotFound, type JweGeneralJson, type KeyAgreementResult, type Recipient, type RecipientFn, type SenderFn, } from './types';