Kafkacrypto

This is a bugfix and enhancement release:
1. Make seek_to_beginning and seek_to_end function correctly and have consistent calling convention in both confluent_kafka and kafka_python wrappers.
1. Add support for passing confluent-specific parameters to consumer subscribe call in confluent_kafka_wrapper.
1. Fix listener callback functionality in confluent_kafka_wrapper.

This is a bufix release to correct a single issue with consuming topics:

- Add support for seeking to beginning/end of TopicPartitions on assignment. This makes sure a kafkacrypto object correctly consumes all chains/allowlist/denylist messages (rather than only consuming them once a new message is produced to them).

This fixes a bug with intermittent consumers/producers not properly updating their signing chains.

This release corrects one typo in the forward-compatibility logic and description for librdkafka in confluent_kafka_wrapper.

This is a bufix release with a single change to ensure forward compatibility with the upcoming libkrdkafka 1.9.0:

- Update confluent_kafka_wrapper to properly handle errors due to commits with no offset in the synchronous case.

This ensures compatibility with a bugfix entailing behavior change in librdkafka regarding the behavior of commit calls with topics that are subscribed but not yet assigned.

This is a bufix release. Changes:

- Scope custom flush work-around in confluent_kafka wrapper to only affected versions. See [librdkafka3633](https://github.com/edenhill/librdkafka/issues/3633).
- Make confluent_kafka consumer commit wrapper synchronous to match kafka-python API expectations.
- Add commit_async handler to confluent_kafka wrapper.
- Fix missing lock acquire in __update_spk_chain.

This is a bufix release. Changes:

* Enhance AtomicFile fsync behavior on Mac platforms to use FULLSYNC to ensure data is committed to stable storage.
* Enhance AtomicFile to use exclusive locking to harmonize errors between linux/bsd/unix and windows.
* Enhance AtomicFile to flush directory metadata to reduce time to atomic operation being on stable storage.
* Add close operations to KafkaCrypto, Ratchet, KeyGenerator, and KafkaCryptoStore. Allows reuse of a single config file in different unit tests from a single process.

Only the first of these fixes an issue that had potential to result in data corruption (and only on Mac platforms). Two round trip tests are also now public.