Augment RETRY validation token

[andrewkdinh]

Adds fields to the QUIC RETRY packet validation token: timestamp, remote_addr, odcid, & rscid.

Also adds functionality to validate the token once returned by the client. Checks that the client address matches and that the token isn't expired (10 seconds for tokens from RETRY packets and 60 minutes for tokens from NEW_TOKEN packets, which may be configurable in the future).

Loosely based on quic-go: https://github.com/quic-go/quic-go/blob/master/internal/handshake/token_generator.go

Currently, a few tests never complete because the server receives the initial request but is unable to fetch the remote address of the client to create the RETRY token (the remote address of the peer is always NULL, which I'm assuming is an issue with the test itself). I'm currently working on resolving this: openssl/project#933

Note that this does not encrypt the token yet (openssl/project#928). Also, NEW_TOKEN_packets aren't sent by the server yet (openssl/project#929).

Fixes openssl/project#912

Checklist

• documentation is added or updated
• tests are added or updated

[andrewkdinh]

I believe the failing coding style check is a known issue. It complains whether or not I have a { for the else if statement.

    if (hdr.token == NULL) {
        port_send_retry(port, &e->peer, &hdr);
        goto undesirable;
    } else if (port_validate_token(&hdr, port, &e->peer, &odcid, &scid) != 1)
        goto undesirable;

[andrewkdinh]

Most recent force-push rebases this branch on top of the changes from #26066. CI will not pass yet, as I need to update the data files for quicapitest.

Also adds a check to check the new DCID against one in the header to completely replace #26067. @nhorman

[nhorman]

I believe the failing coding style check is a known issue. It complains whether or not I have a { for the else if statement.

    if (hdr.token == NULL) {
        port_send_retry(port, &e->peer, &hdr);
        goto undesirable;
    } else if (port_validate_token(&hdr, port, &e->peer, &odcid, &scid) != 1)
        goto undesirable;

The failure is because of the lack of braces around the else clause. Coding style has a rule that says, in an of/else pair, if you need curly braces around either branch, you should add them around both

[andrewkdinh]

@nhorman The style check fails whether or not I have the curly braces around the else if statement (which is what I have currently)

[Sashan]

I think changes are heading in right direction. Some of my suggestion can be done in follow-up PR.

[andrewkdinh]

Implemented all the suggested changes. Please re-review @Sashan @nhorman

[t8m]

@mattcaswell @nhorman please reconfirm

[nhorman]

ack, approval holds

[Sashan]

I think this should go in. looks good to me.

[openssl-machine]

This pull request is ready to merge

[t8m]

Squashed and merged to the feature branch. Thank you.