M467: Support Crypto RSA H/W

1.  Crypto RSA H/W supports 1024/2048/3072/4096 key bits. Fall back to software implementation for other key bits.
2.  For decrypt, if MBEDTLS_RSA_NO_CRT isn't defined, go CRT, or normal.
3.  For decrypt, when blinding (f_rng != NULL), enable SCAP mode.
4.  Recover from Crypto RSA H/W failure:
    (1) Enable timed-out wait to escape from RSA H/W trap
    (2) On RSA H/W timeout, stop this RSA H/W operation
    (3) Fall back to S/W implementation on failure

NOTE: RSA 4096 key bits can fail with default mbedtls configuration MBEDTLS_MPI_MAX_SIZE.
      Enlarge MBEDTLS_MPI_MAX_SIZE to 1024 or larger if this feature is required.
NOTE: Fixed in BSP RSA driver, for non-CRT+SCAP mode, temporary buffer for MADDR6 requires to be key length plus 128 bits.
NOTE: Fixed in BSP RSA driver, DMA buffer must be 4-word aligned, or RSA H/W will trap.

Author: ccli8

connectivity/drivers/mbedtls/TARGET_NUVOTON/TARGET_M460/CMakeLists.txt

@@ -15,6 +15,7 @@ target_sources(mbed-mbedtls
     INTERFACE
         aes/aes_alt.c
         ecp/ecp_internal_alt.c
+        rsa/crypto_rsa_hw.c
         rsa/rsa_alt.c
         sha/sha1_alt.c
         sha/sha256_alt.c

connectivity/drivers/mbedtls/TARGET_NUVOTON/TARGET_M460/mbedtls_device.h

@@ -38,6 +38,6 @@
 #define MBEDTLS_ECP_RANDOMIZE_MXZ_ALT
 #define MBEDTLS_ECP_NORMALIZE_MXZ_ALT
 
-//#define MBEDTLS_RSA_ALT
+#define MBEDTLS_RSA_ALT
 
 #endif /* MBEDTLS_DEVICE_H */