Add the key share extension

[philipch07]

Description

This adds the supported_versions extension feature in accordance with DTLS v1.3 which refers to TLS 1.3 section 4.2.8, 4.2.8.1, and 4.2.8.2.

Note about the ci failures:
This currently uses a global variable to test that my current logic is valid, so it will break all the DTLS v1.2 tests. At the moment, this is blocked by #738 as it requires a proper config/switch. I'm not sure what the best way of setting the toggle would be in extensions.go, but hopefully my current approach makes some sense.

Reference issue

Closes #743.

[codecov]

Codecov Report

❌ Patch coverage is 90.80460% with 8 lines in your changes missing coverage. Please review.
✅ Project coverage is 81.43%. Comparing base (7a57e26) to head (293cc15).
⚠️ Report is 1 commits behind head on master.

Files with missing lines	Patch %	Lines
pkg/protocol/extension/key_share.go	92.94%	3 Missing and 3 partials ⚠️
pkg/protocol/extension/extension.go	0.00%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master     #749      +/-   ##
==========================================
+ Coverage   81.34%   81.43%   +0.09%     
==========================================
  Files         101      102       +1     
  Lines        5602     5689      +87     
==========================================
+ Hits         4557     4633      +76     
- Misses        672      679       +7     
- Partials      373      377       +4     

Flag	Coverage Δ
go	81.43% <90.80%> (+0.09%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[theodorsm]

Thanks for this draft! I have made some adjustments to your suggestion.

I have taken inspiration from the TLS 1.3 implementation in the standard library where they reuse TLS 1.2 types and extensions rather than renaming or creating new - this simplified the implementation a lot. Additionally, I think we should only stick to the groups supported by the standard library and the TLS 1.3 implementation.

Tests were a bit flaky with marshaling and unmarshaling in the same test. Therefore, I added tests with raw bytes captured from the NSS stack of Firefox with Wireshark (pro tip: you can copy bytes as a Go literal) and some handcrafted bytes.

[JoTurk]

@philipch07 @theodorsm thank you <3 i'm going to read the spec and submit a review this week 👍

[philipch07]

@theodorsm Thank you for the changes!! It's much cleaner now and I like the approach that you took regarding the renaming.

I wonder if there's a way that we can be extra clear in the docs about the renaming since the filename may be misleading for readers, but I don't have an answer to that off the top of my head. The comments that you added are still very useful.

[theodorsm]

@philipch07 thanks for the feedback. Regarding naming, we could change it to something like supported_groups_and_elliptic_curves. I think the comment is enough, as it will be shown to a developer using this package in the generated documentation and by LSP servers.

[philipch07]

@theodorsm That sounds good to me, and thanks for the updates. I'm looking forward to @joeturki's review and then I think we should be good to go if you're feeling good about it! I'm really happy to see the progress so far :)

[JoTurk]

two comments. sorry i lost track of this.

[theodorsm]

@JoTurk, thanks for the review! (no worries about forgetting) I have fixed your comments.

[philipch07]

@theodorsm Thanks for updating this! Sorry I was busy recently. I would approve it but I can't since I'm the PR author 😅

[JoTurk]

Thank you for the fixes theo, and welcome back :)