Update CRT submodules to latest releases

[monthonk]

Description of change

Pull in various bug fixes from the CRT including

• Add 'Content-Length: 0' header on multipart upload creation  aws-c-s3#428
• Refactor ECSCredentialsProvider Part 1 aws-c-auth#236
• Refactor ECSCredentialsProvider Part 2 aws-c-auth#235
• Fix STS Credentials Provider to use regional endpoint if possible aws-c-auth#237

We also need to exclude more test/document files from crate mountpoint-s3-crt-sys as it's becoming too large.

Full CRT changelog

Submodule mountpoint-s3-crt-sys/crt/aws-c-auth 0de6b271..ef9cfa19:
  > Fix STS Credentials Provider to use regional endpoint if possible (#237)
  > Refactor ECSCredentialsProvider Part 1 (#236)
  > Update ECS Credentials Provider to add support for AWS_CONTAINER_AUTHORIZATION_TOKEN_FILE (#233)
Submodule mountpoint-s3-crt-sys/crt/aws-c-cal 314fc555..45f82ed8:
  > Adds a way to keep a more detailed state of a symetric cipher (#184)
  > Fix handling of empty plaintext for AES (#183)
  > Move aws-lc shutdown to destructor from cleanup (#182)
  > CI test: Apple: explicitly include & link to CoreFoundation (#181)
Submodule mountpoint-s3-crt-sys/crt/aws-c-common ae7b067d..24e23967:
  > Fix host parsing for IPv6 URI (#1112)
  > Remove promise class (#1110)
  > satisfy some signed vs unsigned comparison warnings (#809)
  > chore: make CBMC stubs with zero parameters proper declarations (#1107)
  > memtrace: Fix underflow when stack_depth < FRAMES_TO_SKIP (#873)
  > Fix invalid cpu_id for RHEL_5 (#1106)
  > Move is ipv4/ipv6 functions from Aws-c-sdkutils to Aws-c-common (#1105)
  > Clarity updates for uint64_t hash helper (#1104)
  > Add list membership API and uint64 hash utilities (#1103)
  > Switch test harness to print errors in decimal (#1100)
Submodule mountpoint-s3-crt-sys/crt/aws-c-io bf2d7223..47be63c8:
  > Update Expired Certs (#636)
  > aws_tls_connection_options_copy comment update following #eaa583a or #475 (#482)
  > Remove setenv (#634)
Submodule mountpoint-s3-crt-sys/crt/aws-c-s3 f222ada3..cc06c419:
  > Add 'Content-Length: 0' header on multipart upload creation  (#428)
  > Make test_s3_range_requests less flaky (#423)
  > Remove Dashboard and S3 Benchmark Stack (#427)
Submodule mountpoint-s3-crt-sys/crt/aws-c-sdkutils 638fdd65..8c7af71f:
  > Remove is ipv4/ipv6 functions utils from sdkutils to c-common (#39)
Submodule mountpoint-s3-crt-sys/crt/aws-lc 4e690737..2c031134:
  > v1.26.0 Release Preparation (#1572)
  > Minor functions to build with Ruby's cipher module (#1564)
  > Changed SSL_client_hello_get0_ciphers to align with OpenSSL behavior (#1542)
  > ppc64le: EVP_has_aes_hardware is false w/ no-asm (#1566)
  > OpenBSD 7.4 and 7.5 Support (#1437)
  > Remove comments about overread for entropy generation (#1551)
  > Migrate from __FreeBSD__ to __FreeBSD_version (#1562)
  > Centralize handling of s2n-bignum alt/non-alt function selection (#1547)
  > CI for other MacOS versions (#1558)
  > Cleanup remaing duplicate symbol definitions and turn Wredundant-decls on (#1561)
  > Fix ec2 CI testing framework (#1541)
  > Update x25519_test.cc array initialization to avoid a bug with a GCC 13 warning (#1555)
  > Remove duplicate X509_OBJECT_new and X509_OBJECT_free declarations (#1560)
  > Avoid 'z' format with MSVCRT (#1559)
  > Add dependency to python3-six in github action grpc (#1554)
  > Link porting guide table to header documentation (#1540)
  > Basic GH CI build/test with full range of gcc/clang (#1546)
  > Add SHA3-256 KAT to FIPS self-test (#1549)
  > Add EC point add/dbl to speed.cc (#1545)
  > Fix the NTP integration test (NTP website changed) (#1548)
  > Fix skipped tests in Mariadb integration CI (#1533)
  > Support vpinsrq in delocater (#1543)
  > Remove redundant test exec libraries (#1544)
  > [ML-KEM] Add experimental support for ML-KEM-512-IPD (#1516)
  > Upstream merge 2024 04 16 (#1535)
  > Define OPENSSL_NO_TLS_PHA, typedef PSK callback signatures (#1526)
  > AWS-LC v1.25.0 (#1537)
  > Release build for MinGW CI; Fix GCC 12/13 warnings (#1536)
  > Adding OPENSSL_secure_zalloc and BIO_s_secmem (#1476)
  > Upstream merge 2024 04 11 (#1527)
  > Update EVP cipher APIs to gracefully handle null EVP_CIPHER_CTX (#1398)
  > Added u16 endian loading/storing functions, SSL_CIPHER_find, and SSL_client_hello_get0_ciphers (#1482)
  > Bump to v1.24.1 (#1534)
  > MinGW: mitigate potential abort on rwlocks using PTHREAD_RWLOCK_INITIALIZER (#1530)
  > `rand_fork_unsafe_buffering_enabled` always 0 on Windows (#1528)
  > Remove guard for big-endian support (#1531)
  > Bump mysql integration CI to 8.3 (#1508)
  > Add non-fips/fips ci for gcc-10 on ubuntu (#1525)
  > Add macho parser for use by C inject_hash (#1435)
  > Align GitHub workflow/job run conditions (#1532)
  > Use larger ARM hosts for long CodeBuild jobs (#1529)
  > Document no-op functions and flags in AWS-LC (#1473)
  > Fix python CI patches (#1524)
  > Bump to v1.24.0 (#1522)
  > aws-lc-rs CI step must use CMake to build (#1523)
  > allow empty lists in SSL_CTX_set_ciphersuites (#1511)
  > add support for X509_get_signature_info (#1504)
  > CI for compiling w/ Clang on Windows (#1520)
  > Add NULL checks to EVP_MD_CTX_cleanse/cleanup (#1519)
  > Upstream merge 2024-03-21 (#1506)
  > RSA key pair-wise consistency test with approved APIs (#1518)
  > Clarify documentation around SSL_MODE_NO_AUTO_CHAIN (#1509)
  > Fix CPython patches (#1515)
  > Upstream merge 2024 03 18 (#1501)
  > [ML-KEM] Import ml-kem-ipd source code from Crystals repo (#1514)
  > Upstream merge 2024-03-11 (#1488)
  > Support for MinGW on Windows (#1492)
  > Cherry-pick 3 RSA related commits from upstream (#1510)
  > TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 cipher suite support (#1455)
  > Various minor functions to support mysql 8.3 (#1496)
  > Always install libdecrepit for BoringSSL benchmark (#1513)
  > Attempt to fix rust sanity check (#1512)
  > Add integration CI for tpm2-tools (#1487)
  > RSA key check consolidation part 2 (#1502)
  > Fix overscoped json policies in CI (#1494)
  > Update patches and build methods for integration CI (#1507)
  > Update the BoringSSL benchmark to install libdecrepit (#1505)
  > Only enable dilithium and secp256k1 benchmark if AWS-LC API supports it (#1495)
  > Adding No-op functions required for NodeJS compatability (#1474)
  > Error Codes for NodeJS compatibility added (#1475)
  > Provide an API to turn off blinding for RSA (#1479)
  > Add ASN1_i2d_bio and ASN1_i2d_bio_of back (#1486)
Submodule mountpoint-s3-crt-sys/crt/s2n-tls 38d769c9..e7ba5b3e:
  > chore(bindings): release 0.2.4 (#4530)
  > nix gdb/lldb utils (#4460)
  > binding: Add s2n_connection_get_session on the Connection (#4522)
  > chore: update s2n-core team (#4520)
  > fix: Python integ tests are flaky on arm (#4512)
  > ci: Nix libcrypto helpers (#4422)
  > ci: Remove actions-rs (#4514)
  > chore(bindings): Pin `zeroize` to avoid MSRV increase (#4519)
  > feat: add missing numbered security policies (#4511)
  > docs(bindings): fix client hello doc tests (#4495)
  > docs: add more warnings about security policy defaults (#4507)
  > feat: add basic support for certificate_authorities (#4506)
  > fix: Fix redundant code (#4504)
  > chore: Rust bindings bump v1.4.12 (#4505)
  > fix(sidetrail): Invalid stream cipher struct in proof wrapper (#4484)
  > refactor: rename error + extension iana for consistency (#4503)
  > feat: Serialization Rust APIs (#4493)
  > refactor: combine TLS1.2 and TLS1.3 sig scheme representations (#4498)
  > feat: Release C APIs for serialization (#4501)
  > fix: Wipe conn->in on all record parse failures (#4499)
  > chore(bindings): release 0.2.2 (#4497)
  > feat(binding): add key update request api (#4469)
  > tests: Serialization feature with post-handshake features (#4489)
  > fix: add missing TLS1.3 p521 sig schemes (#4496)
  > fix: correct broken early data test (#4494)
  > fix: better errors for all client auth failures (#4492)
  > feat: add s2n_peek_buffered (#4490)
  > feat: reduce read syscalls to improve performance (#4485)
  > feat: connection serialization (#4468)
  > chore(bindings): release 0.2.1 (#4486)
  > fix(bindings): print cargo commands to stdout (#4482)

Relevant issues: #853, #859, #861

Does this change impact existing behavior?

No

---

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license and I agree to the terms of the Developer Certificate of Origin (DCO).