fix(ota): Fix OTA decryption when HW acceleration is not available

[lucasssvaz]

Description of Change

This PR aims to fix decryption of images when using non-Hardware-Accelerated functions form mbedtls by removing a useless mbedtls_aes_setkey_dec call.

This pull request also improves the documentation and clarity of the ESP32 flash encryption and decryption logic in Updater.cpp, making the cryptographic implementation easier to understand and maintain. The changes focus on adding detailed comments explaining the key tweaking and decryption algorithms, clarifying the reasoning behind certain cryptographic choices, and cleaning up the code for readability.

Enhanced documentation and clarity for ESP32 flash encryption

• Added a comprehensive comment block to the _cryptKeyTweak function, explaining the concept of address-based key tweaking, its security benefits, configuration options via _cryptCfg, and how it matches ESP32's hardware flash encryption scheme.
• Improved inline comments throughout _cryptKeyTweak to clarify how address bits are mixed into the key, the role of the pattern array, and the logic for partial tweaking based on _cryptCfg.

Improved documentation and explanation for decryption logic

• Added a detailed comment block to _decryptBuffer, describing the ESP32 flash encryption scheme, the involutory transform (using AES encryption for both encrypt and decrypt), the rationale for byte reversal, and how key tweaking is applied per flash region.
• Enhanced step-by-step comments within _decryptBuffer to clarify the process: block byte reversal, key tweaking, AES encryption (for decryption), and reversing the result back to plaintext.

Code readability and maintainability improvements

• Removed redundant calls to mbedtls_aes_setkey_dec and clarified that only mbedtls_aes_setkey_enc is needed due to the involutory nature of the encryption scheme.
• Cleaned up and reorganized code blocks for better logical flow, making the cryptographic process easier to follow.

Test Scenarios

Tested locally with ESP32 and ESP32-C2

Related links

Closes #12217

[github-actions]

	Messages
📖	🎉 Good Job! All checks are passing!

👋 Hello lucasssvaz, we appreciate your contribution to this project!

---

📘 Please review the project's Contributions Guide for key guidelines on code, documentation, testing, and more.

---

🖊️ Please also make sure you have read and signed the Contributor License Agreement for this project.

---

Click to see more instructions ...

This automated output is generated by the PR linter DangerJS, which checks if your Pull Request meets the project's requirements and helps you fix potential issues.

DangerJS is triggered with each push event to a Pull Request and modify the contents of this comment.

Please consider the following:
- Danger mainly focuses on the PR structure and formatting and can't understand the meaning behind your code or changes.
- Danger is not a substitute for human code reviews; it's still important to request a code review from your colleagues.
- To manually retry these Danger checks, please navigate to the Actions tab and re-run last Danger workflow.

Review and merge process you can expect ...

We do welcome contributions in the form of bug reports, feature requests and pull requests.

1. An internal issue has been created for the PR, we assign it to the relevant engineer.
2. They review the PR and either approve it or ask you for changes or clarifications.
3. Once the GitHub PR is approved we do the final review, collect approvals from core owners and make sure all the automated tests are passing.
- At this point we may do some adjustments to the proposed change, or extend it by adding tests or documentation.
4. If the change is approved and passes the tests it is merged into the default branch.

Generated by 🚫 dangerJS against ebadd1a

[github-actions]

Test Results

 90 files   90 suites   27m 37s ⏱️
 67 tests  67 ✅ 0 💤 0 ❌
683 runs  683 ✅ 0 💤 0 ❌

Results for commit ebadd1a.

♻️ This comment has been updated with latest results.

[github-actions]

Memory usage test (comparing PR against master branch)

The table below shows the summary of memory usage change (decrease - increase) in bytes and percentage for each target.

Memory	FLASH [bytes]		FLASH [%]		RAM [bytes]		RAM [%]
Target	DEC	INC	DEC	INC	DEC	INC	DEC	INC
ESP32	💚 -20	0	0.00	0.00	0	0	0.00	0.00
ESP32C3	💚 -14	0	0.00	0.00	0	0	0.00	0.00
ESP32C5	💚 -14	0	0.00	0.00	0	0	0.00	0.00
ESP32C6	💚 -14	0	0.00	0.00	0	0	0.00	0.00
ESP32H2	💚 -14	0	0.00	0.00	0	0	0.00	0.00
ESP32P4	💚 -16	0	0.00	0.00	0	0	0.00	0.00
ESP32S2	💚 -20	0	0.00	0.00	0	0	0.00	0.00
ESP32S3	💚 -44	0	0.00	0.00	0	0	0.00	0.00

Click to expand the detailed deltas report [usage change in BYTES]

Target	ESP32		ESP32C3		ESP32C5		ESP32C6		ESP32H2		ESP32P4		ESP32S2		ESP32S3
Example	FLASH	RAM	FLASH	RAM	FLASH	RAM	FLASH	RAM	FLASH	RAM	FLASH	RAM	FLASH	RAM	FLASH	RAM
libraries/ArduinoOTA/examples/BasicOTA	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -20	0
libraries/ArduinoOTA/examples/SignedOTA	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/HTTPUpdate/examples/httpUpdate	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/HTTPUpdate/examples/httpUpdateSPIFFS	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/HTTPUpdate/examples/httpUpdateSecure	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	0	0	💚 -16	0
libraries/HTTPUpdateServer/examples/WebUpdater	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/Update/examples/AWS_S3_OTA_Update	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/Update/examples/HTTP_Client_AES_OTA_Update	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/Update/examples/HTTP_Server_AES_OTA_Update	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/Update/examples/OTAWebUpdater	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -12	0
libraries/Update/examples/SD_Update	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	💚 -14	0	💚 -16	0	💚 -16	0	💚 -16	0
libraries/Update/examples/Signed_OTA_Update	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/WebServer/examples/HttpAdvancedAuth	💚 -20	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/WebServer/examples/HttpAuthCallback	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -20	0
libraries/WebServer/examples/HttpAuthCallbackInline	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -20	0	💚 -44	0
libraries/WebServer/examples/HttpBasicAuth	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/WebServer/examples/HttpBasicAuthSHA1	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	0	0	💚 -12	0
libraries/WebServer/examples/HttpBasicAuthSHA1orBearerToken	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -16	0
libraries/WebServer/examples/WebUpdate	💚 -16	0	💚 -14	0	💚 -14	0	💚 -14	0	-	-	💚 -14	0	💚 -16	0	💚 -24	0