Passkey improvements

[varjolintu]

Makes some improvements to the Passkeys implementation:

• Respects the sameOriginWithAncestors. If the origin does not match, the request are ignored.
• Only basic checks are done here. Everything else is moved to KeePassXC side to ensure it's safer to use from 3rd party clients.
• Timeouts are already set here instead of KeePassXC.
• Adds a lifetime timer (with a greater timeout than the actual request). When credential creation is requested and some unexpected error happens or credential is excluded, the timer will run out. This prevents possible requests from a fraudulent site that tries to figure out which credentials are registered.
• Throw specific exceptions for errors.

Corresponding KeePassXC side PR: keepassxreboot/keepassxc#10318

[droidmonkey]

Need to also add an https/certificate validity check if that is possible. See #2122

[varjolintu]

I cannot get the Microsoft Passkeys creation to work with Firefox (macOS). It always popups the OS' own Passkeys prompt instead. I thought it might be related to this bug https://bugzilla.mozilla.org/show_bug.cgi?id=1878598 but after setting that option to false, I get a different prompt from Firefox.

I'm still trying to disable few other options too and see if it helps.

EDIT: Nope.

[Ortham]

Hi, I'm still going through the corresponding KeePassXC changes (I've just gotten through the create credentials flow, still have get to go), but I spotted some issues and some things I'm not sure about in this PR.

[Ortham]

I just spotted one redundant if condition in your changes.

[droidmonkey]

Adding a final approval, works great