net: factor out header validation

[akhinvasara-jumptrading]

This PR centralizes network header validation. The XDP tile guarantees that packets sent downstream will have passed validation.

For ease of review/reversability of desired, the first commit performs the refactor. The second commit changes the reported xdp metrics to take advantage of the new error codes.

The RX perf impact of this change is slightly positive (tested using Pktgen-DPDK from rd-merenguel1 (mlx5) to rd-chachal1 on (mlx5):
before: 8.617 Mpps
After: 8.713 Mpps

[ripatel-fd]

Can you revert these header additions?

[akhinvasara-jumptrading]

I added them so that users of any net headers can just include fd_net_headers, as the name implies. But if you would still prefer all users to individually include the particular headers they need, I'll revert - lmk?

[ripatel-fd]

Suggested change

	fd_ip4_hdr_validate( fd_ip4_hdr_t const * hdr,
	fd_ip4_hdr_check_len( fd_ip4_hdr_t const * hdr,

[akhinvasara-jumptrading]

It additionally checks version and that the protocol is allowed - does this check_len name still make sense? I'll stage the change for now, but don't love it.

[ripatel-fd]

Could you add a fuzzer for this function?

The fuzzer should pass random inputs to data / data_sz, and then validate that:

• opt_payload and opt_payload_sz are in bounds of data and data_sz
• opt_eth is in bounds
• opt_ip4 is in bounds
• opt_udp is in bounds

[akhinvasara-jumptrading]

A full fuzz target in the style of fuzz_quic_wire? Or a unit test that that does a bunch of random sampling?