CI: harden ci-deps-image downloads against stalled mirror connections

[julek-wolfssl]

A single stalled apt mirror connection once hung the ubuntu-24.04-full /
ubuntu-22.04-full download for ~20 min (they normally finish in a few),
tripping the 20-min job timeout and leaving those tags stale. The per-package
retry() only re-runs on a non-zero exit, so a hang never tripped it.

Defends in depth in .github/workflows/ci-deps-image.yml:

• apt drops a stalled connection after 30s and retries it
  (Acquire::http/https::Timeout, Acquire::Retries).
• each apt-get is wrapped in timeout so a wedged process is hard-killed and
  retry() re-runs it from scratch.
• raise the build job timeout 20 → 60 min as a final backstop.

[Copilot]

Pull request overview

This PR hardens the ci-deps-image workflow against stalled apt mirror connections that can hang downloads long enough to hit the job timeout and leave ubuntu-22.04-full / ubuntu-24.04-full tags stale.

Changes:

• Adds apt acquire timeouts and retry options to drop stalled connections quickly.
• Wraps apt-get update and per-package apt-get install --download-only in timeout so hangs become retryable failures.
• Increases the job-level timeout from 20 → 60 minutes as a final backstop.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[github-actions]

retest this please

[github-actions]

MemBrowse Memory Report

No memory changes detected for:

• gcc-arm-cortex-m0plus
• gcc-arm-cortex-m3
• gcc-arm-cortex-m4
• gcc-arm-cortex-m4-baremetal
• gcc-arm-cortex-m4-crypto-only
• gcc-arm-cortex-m4-dtls13
• gcc-arm-cortex-m4-min-ecc
• gcc-arm-cortex-m4-openssl-compat
• gcc-arm-cortex-m4-pkcs7
• gcc-arm-cortex-m4-pq
• gcc-arm-cortex-m4-rsa-only
• gcc-arm-cortex-m4-sp-math
• gcc-arm-cortex-m4-tls12
• gcc-arm-cortex-m4-tls13
• gcc-arm-cortex-m7
• gcc-arm-cortex-m7-pq
• gcc-arm-cortex-m7-tls13
• linuxkm-pie
• linuxkm-standard
• stm32-sim-stm32h753