Bump github.com/cloudflare/circl from 1.3.2 to 1.3.3

[dependabot]

Bumps github.com/cloudflare/circl from 1.3.2 to 1.3.3.

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.3.3

New Features

• ASCON light-weight authenticated encryption.
• Hybrid KEM for HPKE based on Kyber and X25519.
• CIRCL can be compiled both as static and dynamic linking modes.

Security

• Fixes error-handling on rand readers.

What's Changed

• Use untyped consts for Kyber params by @​tmthrgd in cloudflare/circl#398
• zk/dl: adds prefixed labels and updates nomenclature. by @​armfazh in cloudflare/circl#396
• Bumping Go version. by @​armfazh in cloudflare/circl#399
• kem: add P-256 + Kyber768Draft00 hybrid by @​bwesterb in cloudflare/circl#402
• ckem: pass xof to elliptic.GenerateKey directly by @​bwesterb in cloudflare/circl#403
• Adding Ascon, an AEAD lightweight cipher. by @​armfazh in cloudflare/circl#400
• Add Ascon-80pq to cipher\ascon by @​dhcgn in cloudflare/circl#404
• ascon: update formulas and check for API compatibility by @​armfazh in cloudflare/circl#406
• all: enables dynamic linking, removes R15 is clobbered by @​armfazh in cloudflare/circl#407
• ascon: Removes table of constants. by @​armfazh in cloudflare/circl#408
• tkn20: prevent panics on key gen errors by @​tmthrgd in cloudflare/circl#409
• expander,tkn20: remove superfluous Reset calls by @​tmthrgd in cloudflare/circl#410
• Updating stdlib crypto library. by @​armfazh in cloudflare/circl#413
• Reduce x/crypto and x/sys versions to match Go 1.20 by @​Lekensteyn in cloudflare/circl#414
• Make ascon cipher go routine safe by @​enj in cloudflare/circl#416
• tkn20,kyber,x25519,x448: plug constant-time leaks by @​tmthrgd in cloudflare/circl#411
• Check for crypto/rand errors and ReadFull io.Readers by @​bwesterb in cloudflare/circl#417
• Fix encapsulation seed size by @​chris-wood in cloudflare/circl#419
• Add X25519Kyber768Draft00 experimental HPKE KEM by @​chris-wood in cloudflare/circl#421
• hpke: Adding NonceSize function to AEAD. by @​armfazh in cloudflare/circl#424
• hpke: Address always nil parameter. by @​armfazh in cloudflare/circl#425
• hpke: update and move xyber768d00 test vectors by @​bwesterb in cloudflare/circl#426
• hpke: fix encapsulation seed in test for xyber by @​bwesterb in cloudflare/circl#428
• Remove scalar sha3 amd64 assembly by @​bwesterb in cloudflare/circl#429
• Add HPKE benchmarks by @​chris-wood in cloudflare/circl#434

New Contributors

• @​tmthrgd made their first contribution in cloudflare/circl#398
• @​dhcgn made their first contribution in cloudflare/circl#404
• @​Lekensteyn made their first contribution in cloudflare/circl#414
• @​enj made their first contribution in cloudflare/circl#416

Full Changelog: cloudflare/circl@v1.3.2...v1.3.3

Commits

• 3bef500 Releasing CIRCL v1.3.3
• 4002baf Add HPKE benchmarks
• 7955403 Remove scalar sha3 amd64 assembly
• aef7250 hpke: fix encapsulation seed in test for xyber
• 808526a hpke: update and move xyber768d00 test vectors
• c7845aa Address always nil parameter.
• 2475a3f Adding NonceSize function to AEAD.
• eaec71f Add X25519Kyber768Draft00 experimental HPKE KEM
• f0db288 Fix encapsulation seed size
• f4c0e87 Update go-ristretto dep
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @decentralgabe.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[decentralgabe]

@dependabot squash and merge

[codecov-commenter]

Codecov Report

Merging #375 (d15d295) into main (d231d5b) will decrease coverage by 2.43%.
The diff coverage is 51.37%.

❗ Current head d15d295 differs from pull request most recent head 3efe39f. Consider uploading reports for the commit 3efe39f to get more accurate results

@@            Coverage Diff             @@
##             main     #375      +/-   ##
==========================================
- Coverage   59.25%   56.83%   -2.43%     
==========================================
  Files          55       65      +10     
  Lines        6840     6900      +60     
==========================================
- Hits         4053     3921     -132     
- Misses       2076     2283     +207     
+ Partials      711      696      -15     

Impacted Files	Coverage Δ
did/model.go	90.48% <ø> (+1.19%)	⬆️
did/pkh/resolver.go	0.00% <0.00%> (ø)
did/web/resolver.go	0.00% <0.00%> (ø)
did/util.go	25.38% <2.56%> (-38.62%)	⬇️
did/resolution/resolver.go	16.95% <3.85%> (ø)
did/ion/operations.go	52.61% <33.33%> (ø)
did/key/key.go	48.26% <36.00%> (ø)
did/peer/peer2.go	47.47% <47.47%> (ø)
credential/exchange/verification.go	59.26% <50.00%> (ø)
credential/jwt.go	40.43% <50.00%> (ø)
... and 13 more

... and 1 file with indirect coverage changes