Fix out-of-bands access panics in curve_impl, add test

[zapu]

Specially crafted PGP message bundle could cause panic when X coordinate of curve25519 shared encryption key was less than 32 bytes.

[maxtaco]

Can we get this merged upstream? It is just PGP or can it happen outside of PGP?

[zapu]

It's just PGP and only our fork, upstream does not have cv25519 support. Entirely my fault for not checking buffer sizes as well.