libraries/SocketWrapper: Support loading CA certs from the file system.

[iabdalkader]

Main changes:

Update CA data:

Use a curated list of certificates that covers most of the Internet. This reduces the certificates size to 20KBs which can be loaded on all boards. The certs file is generated with: https://github.com/arduino/cacert-utils/

Support loading CA certs from the file system.

This patch adds support for automatically loading CA certificates from the filesystem. The file system certs are loaded on the first call to connectSSL(), once, and shared between all sockets.

If filesystem support is not enabled, or CA loading fails, the connection proceeds without error.

Custom CA certificates can still be passed via the 'cert' parameter, and both filesystem and custom certificates are registered with using different TLS tags. This allows users to add their own certs without recreating the whole file.

Testing

Enabled and tested on C33.

[pillo79]

Are the changes to C33 config needed to sync that with other boards, or should these be applied more commonly?

Otherwise LGTM!

[iabdalkader]

Are the changes to C33 config needed to sync that with other boards, or should these be applied more commonly?

Those options are going to be required by every board and at least 80KBs of heap for mbedtls, if we want to parse and load all of the certificates. I only enabled it for C33 because that's the only one I tested.

Note, I've managed to reduce the certs size from 64KBs to 20KBs with https://github.com/arduino/cacert-utils/ the file we have right now needs 140KBs of heap for mbedtls, and at least 64KBs of system heap.

[iabdalkader]

@pillo79 Please don't merge this yet, it's not intended for the next release.