ext: lib: mbedtls: Upgrading mbedTLS library

The mbed TLS library in Zephyr is a downstream of an externally maintained

open source project.  The original upstream code can be found at:

https://tls.mbed.org/download/start/mbedtls-2.4.0-apache.tgz

https://tls.mbed.org/download/start/mbedtls-2.4.2-apache.tgz

At version  2.4.0

At version 2.4.2

The following is the license information for this code:

/**

 * \brief               Set the CMAC key and prepare to authenticate the input

 *                      data.

 *                      Should be called with an initialised cipher context.

 *                      Should be called with an initialized cipher context.

 *

 * \param ctx           Cipher context

 * \param ctx           Cipher context. This should be a cipher context,

 *                      initialized to be one of the following types:

 *                      MBEDTLS_CIPHER_AES_128_ECB, MBEDTLS_CIPHER_AES_192_ECB,

 *                      MBEDTLS_CIPHER_AES_256_ECB or

 *                      MBEDTLS_CIPHER_DES_EDE3_ECB.

 * \param key           CMAC key

 * \param keybits       length of the CMAC key in bits

 *                      (must be acceptable by the cipher)

int mbedtls_cipher_cmac_reset( mbedtls_cipher_context_t *ctx );

/**

 * \brief               Output = Generic_CMAC( hmac key, input buffer )

 * \brief               Output = Generic_CMAC( cmac key, input buffer )

 *

 * \param cipher_info   message digest info

 * \param key           CMAC key

#define ssl_set_arc4_support mbedtls_ssl_conf_arc4_support

#define ssl_set_authmode mbedtls_ssl_conf_authmode

#define ssl_set_bio mbedtls_ssl_set_bio

#define ssl_set_bio mbedtls_ssl_set_bio_timeout

#define ssl_set_ca_chain mbedtls_ssl_conf_ca_chain

#define ssl_set_cbc_record_splitting mbedtls_ssl_conf_cbc_record_splitting

#define ssl_set_ciphersuites mbedtls_ssl_conf_ciphersuites

 *          library/pkwrite.c

 *          library/x509_create.c

 *          library/x509write_crt.c

 *          library/mbedtls_x509write_csr.c

 *          library/x509write_csr.c

 */

#define MBEDTLS_ASN1_WRITE_C

 *

 * Enable the generic message digest layer.

 *

 * Module:  library/mbedtls_md.c

 * Module:  library/md.c

 * Caller:

 *

 * Uncomment to enable generic message digest wrappers.

 *

 * Enable the MD2 hash algorithm.

 *

 * Module:  library/mbedtls_md2.c

 * Module:  library/md2.c

 * Caller:

 *

 * Uncomment to enable support for (rare) MD2-signed X.509 certs.

 *

 * Enable the MD4 hash algorithm.

 *

 * Module:  library/mbedtls_md4.c

 * Module:  library/md4.c

 * Caller:

 *

 * Uncomment to enable support for (rare) MD4-signed X.509 certs.

 *

 * Enable the MD5 hash algorithm.

 *

 * Module:  library/mbedtls_md5.c

 * Caller:  library/mbedtls_md.c

 * Module:  library/md5.c

 * Caller:  library/md.c

 *          library/pem.c

 *          library/ssl_tls.c

 *

 *          library/rsa.c

 *          library/x509.c

 *          library/x509_create.c

 *          library/mbedtls_x509_crl.c

 *          library/mbedtls_x509_crt.c

 *          library/mbedtls_x509_csr.c

 *          library/x509_crl.c

 *          library/x509_crt.c

 *          library/x509_csr.c

 *          library/x509write_crt.c

 *          library/mbedtls_x509write_csr.c

 *          library/x509write_csr.c

 *

 * This modules translates between OIDs and internal values.

 */

 * Module:  library/pem.c

 * Caller:  library/dhm.c

 *          library/pkparse.c

 *          library/mbedtls_x509_crl.c

 *          library/mbedtls_x509_crt.c

 *          library/mbedtls_x509_csr.c

 *          library/x509_crl.c

 *          library/x509_crt.c

 *          library/x509_csr.c

 *

 * Requires: MBEDTLS_BASE64_C

 *

 * Module:  library/pem.c

 * Caller:  library/pkwrite.c

 *          library/x509write_crt.c

 *          library/mbedtls_x509write_csr.c

 *          library/x509write_csr.c

 *

 * Requires: MBEDTLS_BASE64_C

 *

 * Enable the generic public (asymetric) key parser.

 *

 * Module:  library/pkparse.c

 * Caller:  library/mbedtls_x509_crt.c

 *          library/mbedtls_x509_csr.c

 * Caller:  library/x509_crt.c

 *          library/x509_csr.c

 *

 * Requires: MBEDTLS_PK_C

 *

 *

 * Enable the RIPEMD-160 hash algorithm.

 *

 * Module:  library/mbedtls_ripemd160.c

 * Caller:  library/mbedtls_md.c

 * Module:  library/ripemd160.c

 * Caller:  library/md.c

 *

 */

#define MBEDTLS_RIPEMD160_C

 *

 * Enable the SHA1 cryptographic hash algorithm.

 *

 * Module:  library/mbedtls_sha1.c

 * Caller:  library/mbedtls_md.c

 * Module:  library/sha1.c

 * Caller:  library/md.c

 *          library/ssl_cli.c

 *          library/ssl_srv.c

 *          library/ssl_tls.c

 *

 * Enable the SHA-224 and SHA-256 cryptographic hash algorithms.

 *

 * Module:  library/mbedtls_sha256.c

 * Module:  library/sha256.c

 * Caller:  library/entropy.c

 *          library/mbedtls_md.c

 *          library/md.c

 *          library/ssl_cli.c

 *          library/ssl_srv.c

 *          library/ssl_tls.c

 *

 * Enable the SHA-384 and SHA-512 cryptographic hash algorithms.

 *

 * Module:  library/mbedtls_sha512.c

 * Module:  library/sha512.c

 * Caller:  library/entropy.c

 *          library/mbedtls_md.c

 *          library/md.c

 *          library/ssl_cli.c

 *          library/ssl_srv.c

 *

 * Enable X.509 core for using certificates.

 *

 * Module:  library/x509.c

 * Caller:  library/mbedtls_x509_crl.c

 *          library/mbedtls_x509_crt.c

 *          library/mbedtls_x509_csr.c

 * Caller:  library/x509_crl.c

 *          library/x509_crt.c

 *          library/x509_csr.c

 *

 * Requires: MBEDTLS_ASN1_PARSE_C, MBEDTLS_BIGNUM_C, MBEDTLS_OID_C,

 *           MBEDTLS_PK_PARSE_C

 *

 * Enable X.509 certificate parsing.

 *

 * Module:  library/mbedtls_x509_crt.c

 * Module:  library/x509_crt.c

 * Caller:  library/ssl_cli.c

 *          library/ssl_srv.c

 *          library/ssl_tls.c

 *

 * Enable X.509 CRL parsing.

 *

 * Module:  library/mbedtls_x509_crl.c

 * Caller:  library/mbedtls_x509_crt.c

 * Module:  library/x509_crl.c

 * Caller:  library/x509_crt.c

 *

 * Requires: MBEDTLS_X509_USE_C

 *

 *

 * Enable X.509 Certificate Signing Request (CSR) parsing.

 *

 * Module:  library/mbedtls_x509_csr.c

 * Module:  library/x509_csr.c

 * Caller:  library/x509_crt_write.c

 *

 * Requires: MBEDTLS_X509_USE_C

 * \return         0 if successful, or an MBEDTLS_ERR_RSA_XXX error code

 *

 * \note           This function does NOT take care of message

 *                 padding. Also, be sure to set input[0] = 0 or assure that

 *                 padding. Also, be sure to set input[0] = 0 or ensure that

 *                 input is smaller than N.

 *

 * \note           The input and output buffers must be large