Added support for Matter OTA firmware

[rhilseth]

This PR adds support for detecting Matter OTA firmware (https://docs.nordicsemi.com/bundle/ncs-latest/page/nrf/protocols/matter/overview/dfu.html#matter_ota_image_structure_and_transfer) and also extracting the firmware payload itself.

Example output for the file https://prod.ota-updates.bosch-smarthome.com/v1/updates/BTH-RAD/BTH-RAD_Prod_2.0.9.ota found via the DCL UI at https://webui.dcl.csa-iot.org/models

The test file in tests/inputs has been created manually with a dummy payload.

--------------------------------------------------------------------------------------------------------------------------------------------
DECIMAL                            HEXADECIMAL                        DESCRIPTION
--------------------------------------------------------------------------------------------------------------------------------------------
0                                  0x0                                Matter OTA firmware, total size: 786644 bytes, tlv header size: 68
                                                                      bytes, vendor id: 0x1209, product id: 0x3012, version: 2.00.09,
                                                                      payload size: 786560 bytes, digest type: 1, payload digest:
                                                                      9d4aac8bf87b4ce519318952a3736973e0427d867f3612d776dcd36340fdb574
760368                             0xB9A30                            CRC32 polynomial table, little endian
--------------------------------------------------------------------------------------------------------------------------------------------

[devttys0]

This looks good to me, aside from the noted sanity checks that should be performed to prevent crashes/exceptions in the event of malformed/corrupted data. Once those are addressed, I'll merge the PR. Thanks!

[devttys0]

By convention internal extractors should set result.success = true here, so that if the extractor will still return success if it is invoked as part of a dry-run (i.e., output_directory is None).

[rhilseth]

result.success is now set to true even when there is a dry run

[devttys0]

There is no guarantee that the values reported in the ota_stucture are sane, thus the calculated header_start / header_end values could cause a crash here. Consider using ota_data.get() and/or sanity checking the header_start and header_end values.

[rhilseth]

I changed this to using ota_data.get()

[devttys0]

Although field_offset is a small value, there does not appear to be any guarantee that data is at least field_offset bytes in size. Consider using data.get() or sanity checking the size of data.

[rhilseth]

I now use data.get() here as well.

[devttys0]

Consider using field_data.get() or sanity checking the size of field_data.

[rhilseth]

Using field_data.get() here.

[devttys0]

Consider using string_data.get() or sanity checking the size of string_data. Alternatively, you can simply pass string_data directly to get_cstring(), as it will terminate at the first null byte or the end of data, whichever comes first.

[rhilseth]

The TLV encoded strings aren't null-terminated in the headers I've seen. But I changed to using string_data.get() here as well

[devttys0]

Consider using field_data.get() or sanity checking the size of field_data.

[rhilseth]

Using field_data.get() now

[devttys0]

Consider using octet_string_data.get() or sanity checking the size of octet_string_data.

[rhilseth]

Using octet_string_data.get() here

[devttys0]

Consider sanity checking the offset value by using while common::is_offset_safe() here to prevent infinite loops, wrap-arounds, and out-of-bounds access.

[rhilseth]

I changed to using common::is_offset_safe()

Thanks for your review comments!