ohh, this is nice, and removes a whole bunch of (generated) code. IIRC this was added because of actual things going awry when parsing binary from the wire - but I dont thing we have a test for this :-(

To put it another way if you can show me a binary unpack test that would hit this if and it would still work with your PR it will certainly be merged. Might be fiddly to actually make that sort of packet though...

I'm not quite sure what you mean. Removing the ifs and making truncated messages (ones that would have hit them) invalid is the intentional here. Or do you mean some other if?

I have already provided (as of the second commit in this PR) an example test with an MX record where the rrdata section has been truncated to just 2 bytes, which covers just the preference uint16 and has no space for the following MX name field. Previously, this would have hit the if off == len(msg) and have been considered valid. Currently, it is treated as invalid due to there not being enough space for the following fields.
Perhaps a different RR type with more than 2 fields would have been a better example.
None the less, I'd like to point out that had the rrdata been truncated to 1 byte instead, it would have errored out before as well, due to unpackUint16 refusing to unpack a single byte into a uint16.

Is there some reason why splicing arbitrary RRs at field bounds like that should be considered valid? Splicing at points besides those bounds was already invalid.
If there is some reason why this should be considered valid, then it should at least be made clear in some way.

https://codeberg.org/miekg/dns used @tmthrgd cryptobyte.String which neatly solves this.

I'm not going to merge such an invasive PR here