feat(TLS): veriy client cert keyusage

[qzhuyan]

Fixes EMQX-9790

Summary

🤖 Generated by Copilot at 4da137c

This pull request adds a new SSL verification option for listeners, verify_peer_ext_key_usage, which allows the user to specify extended key usage values for the peer certificate. It implements this option in the emqx_const_v2, emqx_tls_lib, and emqx_listeners modules, and adds a new test suite emqx_listener_tls_verify_keyusage_SUITE to verify its functionality. It also modifies the emqx_test_tls_certs_helper module to support generating certificates with different extensions and key usages.

PR Checklist

Please convert it to a draft if any of the following conditions are not met. Reviewers may skip over until all the items are checked:

• Added tests for the changes
• Changed lines covered in coverage report
• Change log has been added to changes/{ce,ee}/(feat|perf|fix)-<PR-id>.en.md files
• For internal contributor: there is a jira ticket to track this change
• If there should be document changes, a PR to emqx-docs.git is sent, or a jira ticket is created to follow up
• Schema changes are backward compatible

[coveralls]

Pull Request Test Coverage Report for Build 4960883701

• 32 of 34 (94.12%) changed or added relevant lines in 3 files are covered.
• 24 unchanged lines in 5 files lost coverage.
• Overall coverage increased (+0.03%) to 74.882%

---

Changes Missing Coverage	Covered Lines	Changed/Added Lines	%
src/emqx_const_v2.erl	24	25	96.0%
src/emqx_tls_lib.erl	6	7	85.71%

Files with Coverage Reduction	New Missed Lines	%
apps/emqx_rule_engine/src/emqx_rule_engine.erl	1	70.72%
src/emqx_cm.erl	3	80.1%
src/emqx_sys_mon.erl	3	88.73%
apps/emqx_management/src/emqx_mgmt_data_backup.erl	8	66.03%
src/emqx_reason_codes.erl	9	90.0%

Totals
Change from base Build 4957394324:	0.03%
Covered Lines:	14864
Relevant Lines:	19850

---

💛 - Coveralls