bkpaas-auth not compatible with cryptography 43.0.0+

[narasux]

bkpaas-auth sdk 中指定的 cryptography 版本是 *

bkpaas-python-sdk/sdks/bkpaas-auth/pyproject.toml

Line 22 in 17a16b8

cryptography = "*"

但是从 43.0.0 版本开始，cryptography 移除了 GetCipherByName 方法，导致 bkpaas-auth 2.1.0 版本 import 时会直接报错

File "....py", line 20, in <module>
    from bkpaas_auth.core.encoder import user_id_encoder
  File "/usr/local/lib/python3.11/site-packages/bkpaas_auth/core/encoder.py", line 5, in <module>
    from cryptography.hazmat.backends.openssl.backend import GetCipherByName, backend
ImportError: cannot import name 'GetCipherByName' from 'cryptography.hazmat.backends.openssl.backend' (/usr/local/lib/python3.11/site-packages/cryptography/hazmat/backends/openssl/backend.py)

注：cryptography 在 43.0.1 中修复了一个中危漏洞：GHSA-h4gh-qq45-vh27

[narasux]

https://cryptography.io/en/latest/changelog/

通过继承修改 key_sizes 的可选值的方式，在新版本 cryptography 中行不通（原先的 ARC4 可用）

class _ARC4(algorithms.ARC4):
    key_sizes = frozenset(range(40, 2049, 4))

https://github.com/pyca/cryptography/blob/260a61e796879ecd78dff37410d33bab49cb339d/src/rust/src/backend/cipher_registry.rs#L301