Bump pycryptodome from 3.8.2 to 3.9.0

[dependabot-preview]

Bumps pycryptodome from 3.8.2 to 3.9.0.

Changelog

Sourced from pycryptodome's changelog.

3.9.0 (27 August 2019)

New features

• Add support for loading PEM files encrypted with AES256-CBC.
• Add support for XChaCha20 and XChaCha20-Poly1305 ciphers.
• Add support for bcrypt key derivation function (Crypto.Protocol.KDF.bcrypt).
• Add support for left multiplication of an EC point by a scalar.
• Add support for importing ECC and RSA keys in the new OpenSSH format.

Resolved issues

• GH#312: it was not possible to invert an EC point anymore.
• GH#316: fix printing of DSA keys.
• GH#317: DSA.generate() was not always using the randfunc input.
• GH#285: the MD2 hash had block size of 64 bytes instead of 16; as result the HMAC construction gave incorrect results.

Commits

• c8bd2af Update Changelog
• 5d70e87 Bump version
• b6450d5 Clarify that default nonce length for GCM is not widespread
• 4a61be3 Update the Changelog
• e99decc block size of md2 is 16 according to RFC 1319
• 7760550 Merge pull request #310 from beholders-eye/patch-1
• 910eccf Fix GH#317: DSA.generate() was not always using the randfunc parameter
• c8ae74f Improve Poly1305 documentation
• e4df252 Merge branch 'openssh'
• c68a584 Update typing information
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

---

⚠️ Dependabot won't automerge this PR as it didn't detect CI on it ⚠️

You have automerging enabled for this repo but Dependabot didn't detect any CI statuses or checks. You can disable automerging on this repo from here.

[dependabot-preview]

Superseded by #27.