@@ -205,18 +205,16 @@ def on_decrypt(self, decryption_materials, encrypted_data_keys):
205205 if decryption_materials .data_encryption_key is not None :
206206 return decryption_materials
207207
208- if not (
208+ if (
209209 edk .key_provider .provider_id == _PROVIDER_ID
210210 and edk .key_provider .key_info .decode ("utf-8" ) == self ._key_id
211211 ):
212- continue
213-
214- decryption_materials = _try_aws_kms_decrypt (
215- client_supplier = self ._client_supplier ,
216- decryption_materials = decryption_materials ,
217- grant_tokens = self ._grant_tokens ,
218- encrypted_data_key = edk ,
219- )
212+ decryption_materials = _try_aws_kms_decrypt (
213+ client_supplier = self ._client_supplier ,
214+ decryption_materials = decryption_materials ,
215+ grant_tokens = self ._grant_tokens ,
216+ encrypted_data_key = edk ,
217+ )
220218
221219 return decryption_materials
222220
@@ -250,15 +248,13 @@ def on_decrypt(self, decryption_materials, encrypted_data_keys):
250248 if decryption_materials .data_encryption_key is not None :
251249 return decryption_materials
252250
253- if edk .key_provider .provider_id != _PROVIDER_ID :
254- continue
255-
256- decryption_materials = _try_aws_kms_decrypt (
257- client_supplier = self ._client_supplier ,
258- decryption_materials = decryption_materials ,
259- grant_tokens = self ._grant_tokens ,
260- encrypted_data_key = edk ,
261- )
251+ if edk .key_provider .provider_id == _PROVIDER_ID :
252+ decryption_materials = _try_aws_kms_decrypt (
253+ client_supplier = self ._client_supplier ,
254+ decryption_materials = decryption_materials ,
255+ grant_tokens = self ._grant_tokens ,
256+ encrypted_data_key = edk ,
257+ )
262258
263259 return decryption_materials
264260
0 commit comments