Adjust API

Author: noboruma

conn.go

@@ -738,14 +738,13 @@ func (c *Conn) processHandshakePacket(pkt *packet, dtlsHandshake *handshake.Hand
 				SequenceNumber: pkt.record.Header.SequenceNumber,
 			}
 
-			hs := recordlayer.FixedHeaderSize + len(cidHeader.ConnectionID)
-			rawPacket = make([]byte, hs+len(rawInner))
-			err = cidHeader.MarshalInto(rawPacket)
+			rawPacket = make([]byte, cidHeader.MarshalSize()+len(rawInner))
+			_, err = cidHeader.MarshalTo(rawPacket)
 			if err != nil {
 				return nil, err
 			}
 			pkt.record.Header = *cidHeader
-			copy(rawPacket[hs:], rawInner)
+			copy(rawPacket[cidHeader.MarshalSize():], rawInner)
 		} else {
 			recordlayerHeader := &recordlayer.Header{
 				Version:        pkt.record.Header.Version,
@@ -755,15 +754,14 @@ func (c *Conn) processHandshakePacket(pkt *packet, dtlsHandshake *handshake.Hand
 				SequenceNumber: seq,
 			}
 
-			hs := recordlayer.FixedHeaderSize + len(recordlayerHeader.ConnectionID)
-			rawPacket = make([]byte, hs+len(handshakeFragment))
-			err = recordlayerHeader.MarshalInto(rawPacket)
+			rawPacket = make([]byte, recordlayerHeader.MarshalSize()+len(handshakeFragment))
+			_, err = recordlayerHeader.MarshalTo(rawPacket)
 			if err != nil {
 				return nil, err
 			}
 
 			pkt.record.Header = *recordlayerHeader
-			copy(rawPacket[hs:], handshakeFragment)
+			copy(rawPacket[recordlayerHeader.MarshalSize():], handshakeFragment)
 		}
 
 		if pkt.shouldEncrypt {
@@ -787,6 +785,11 @@ func (c *Conn) fragmentHandshake(dtlsHandshake *handshake.Handshake) ([][]byte,
 	}
 
 	contentFragments := splitBytes(content, c.maximumTransmissionUnit)
+	if len(contentFragments) == 0 {
+		contentFragments = [][]byte{
+			{},
+		}
+	}
 
 	offset := 0
 	fragmentedHandshakes := make([][]byte, 0, len(contentFragments))
@@ -804,7 +807,7 @@ func (c *Conn) fragmentHandshake(dtlsHandshake *handshake.Handshake) ([][]byte,
 		offset += contentFragmentLen
 
 		fragmentedHandshake := make([]byte, handshake.HeaderLength+len(contentFragment))
-		err := headerFragment.MarshalInto(fragmentedHandshake)
+		_, err := headerFragment.MarshalTo(fragmentedHandshake)
 		if err != nil {
 			return nil, err
 		}
@@ -1018,7 +1021,7 @@ func (c *Conn) handleIncomingPacket(
 		if header.ContentType == protocol.ContentTypeConnectionID {
 			originalCID = true
 			ip := &recordlayer.InnerPlaintext{}
-			if err := ip.Unmarshal(buf[header.Size():]); err != nil { //nolint:govet
+			if err := ip.Unmarshal(buf[header.MarshalSize():]); err != nil { //nolint:govet
 				c.log.Debugf("unpacking inner plaintext failed: %s", err)
 
 				return false, false, nil, nil

pkg/crypto/ciphersuite/cbc.go

@@ -68,8 +68,8 @@ func NewCBC(
 
 // Encrypt encrypt a DTLS RecordLayer message.
 func (c *CBC) Encrypt(pkt *recordlayer.RecordLayer, raw []byte) ([]byte, error) {
-	payload := raw[pkt.Header.Size():]
-	raw = raw[:pkt.Header.Size()]
+	payload := raw[pkt.Header.MarshalSize():]
+	raw = raw[:pkt.Header.MarshalSize()]
 	blockSize := c.writeCBC.BlockSize()
 
 	// Generate + Append MAC
@@ -110,7 +110,8 @@ func (c *CBC) Encrypt(pkt *recordlayer.RecordLayer, raw []byte) ([]byte, error)
 	raw = append(raw, payload...)
 
 	// Update recordLayer size to include IV+MAC+Padding
-	binary.BigEndian.PutUint16(raw[pkt.Header.Size()-2:], uint16(len(raw)-pkt.Header.Size())) //nolint:gosec //G115
+	binary.BigEndian.PutUint16(raw[pkt.Header.MarshalSize()-2:],
+		uint16(len(raw)-pkt.Header.MarshalSize())) //nolint:gosec //G115
 
 	return raw, nil
 }
@@ -123,7 +124,7 @@ func (c *CBC) Decrypt(header recordlayer.Header, in []byte) ([]byte, error) {
 	if err := header.Unmarshal(in); err != nil {
 		return nil, err
 	}
-	body := in[header.Size():]
+	body := in[header.MarshalSize():]
 
 	switch {
 	case header.ContentType == protocol.ContentTypeChangeCipherSpec:
@@ -171,7 +172,7 @@ func (c *CBC) Decrypt(header recordlayer.Header, in []byte) ([]byte, error) {
 		return nil, errInvalidMAC
 	}
 
-	return append(in[:header.Size()], body[:dataEnd]...), nil
+	return append(in[:header.MarshalSize()], body[:dataEnd]...), nil
 }
 
 func (c *CBC) hmac(

pkg/crypto/ciphersuite/chacha20poly1305.go

@@ -51,8 +51,8 @@ func NewChaCha20Poly1305(localKey, localWriteIV, remoteKey, remoteWriteIV []byte
 
 // Encrypt encrypts a DTLS RecordLayer message.
 func (c *ChaCha20Poly1305) Encrypt(pkt *recordlayer.RecordLayer, raw []byte) ([]byte, error) {
-	payload := raw[pkt.Header.Size():]
-	raw = raw[:pkt.Header.Size()]
+	payload := raw[pkt.Header.MarshalSize():]
+	raw = raw[:pkt.Header.MarshalSize()]
 
 	var nonce [chachaNonceLength]byte
 	copy(nonce[:], c.localWriteIV)
@@ -80,7 +80,7 @@ func (c *ChaCha20Poly1305) Encrypt(pkt *recordlayer.RecordLayer, raw []byte) ([]
 	copy(result, raw)
 	copy(result[len(raw):], encrypted)
 
-	binary.BigEndian.PutUint16(result[pkt.Header.Size()-2:], uint16(len(encrypted))) //nolint:gosec
+	binary.BigEndian.PutUint16(result[pkt.Header.MarshalSize()-2:], uint16(len(encrypted))) //nolint:gosec
 
 	return result, nil
 }
@@ -108,7 +108,7 @@ func (c *ChaCha20Poly1305) Decrypt(header recordlayer.Header, in []byte) ([]byte
 	}
 
 	// NOTE: ChaCha20-Poly1305 has NO explicit nonce in the record
-	ciphertext := in[header.Size():]
+	ciphertext := in[header.MarshalSize():]
 
 	var additionalData []byte
 	if header.ContentType == protocol.ContentTypeConnectionID {
@@ -122,5 +122,5 @@ func (c *ChaCha20Poly1305) Decrypt(header recordlayer.Header, in []byte) ([]byte
 		return nil, fmt.Errorf("%w: %v", errDecryptPacket, err) //nolint:errorlint
 	}
 
-	return append(in[:header.Size()], plaintext...), nil
+	return append(in[:header.MarshalSize()], plaintext...), nil
 }

pkg/crypto/ciphersuite/chacha20poly1305_test.go

@@ -51,7 +51,7 @@ func FuzzChaCha20Poly1305_RoundTrip(f *testing.F) {
 
 		var parsedHdr recordlayer.Header
 		require.NoError(t, parsedHdr.Unmarshal(dec))
-		got := dec[parsedHdr.Size():]
+		got := dec[parsedHdr.MarshalSize():]
 
 		require.Equal(t, plain, got)
 	})
@@ -117,7 +117,7 @@ func FuzzChaCha20Poly1305_Bidirectional_RoundTrip(f *testing.F) {
 		var parsedHdrA recordlayer.Header
 		require.NoError(t, parsedHdrA.Unmarshal(decAonB))
 
-		gotA := decAonB[parsedHdrA.Size():]
+		gotA := decAonB[parsedHdrA.MarshalSize():]
 		require.Equal(t, pA, gotA)
 
 		// B -> A
@@ -144,7 +144,7 @@ func FuzzChaCha20Poly1305_Bidirectional_RoundTrip(f *testing.F) {
 		var parsedHdrB recordlayer.Header
 		require.NoError(t, parsedHdrB.Unmarshal(decBonA))
 
-		gotB := decBonA[parsedHdrB.Size():]
+		gotB := decBonA[parsedHdrB.MarshalSize():]
 		require.Equal(t, pB, gotB)
 	})
 }

pkg/crypto/ciphersuite/ciphersuite.go

@@ -73,8 +73,8 @@ func newAEAD(
 
 // encrypt encrypts a DTLS RecordLayer message.
 func (a *aead) encrypt(pkt *recordlayer.RecordLayer, raw []byte) ([]byte, error) {
-	payload := raw[pkt.Header.Size():]
-	raw = raw[:pkt.Header.Size()]
+	payload := raw[pkt.Header.MarshalSize():]
+	raw = raw[:pkt.Header.MarshalSize()]
 
 	// Get nonce buffer from pool
 	noncePtr := a.nonceBufferPool.Get().(*[]byte) // nolint:forcetypeassert
@@ -93,19 +93,20 @@ func (a *aead) encrypt(pkt *recordlayer.RecordLayer, raw []byte) ([]byte, error)
 		additionalData = generateAEADAdditionalData(&pkt.Header, len(payload))
 	}
 	finalSize := len(raw) + 8 + len(payload) + a.tagLength
-	r := make([]byte, finalSize)
-	copy(r, raw)
-	copy(r[len(raw):], nonce[4:])
+	out := make([]byte, finalSize)
+	copy(out, raw)
+	copy(out[len(raw):], nonce[4:])
 
-	a.localAEAD.Seal(r[len(raw)+8:len(raw)+8], nonce, payload, additionalData)
+	a.localAEAD.Seal(out[len(raw)+8:len(raw)+8], nonce, payload, additionalData)
 
 	// Update recordLayer size to include explicit nonce
-	binary.BigEndian.PutUint16(r[pkt.Header.Size()-2:], uint16(len(r)-pkt.Header.Size())) //nolint:gosec //G115
+	binary.BigEndian.PutUint16(out[pkt.Header.MarshalSize()-2:],
+		uint16(len(out)-pkt.Header.MarshalSize())) //nolint:gosec //G115
 
 	// Return nonce buffer to pool
 	a.nonceBufferPool.Put(noncePtr)
 
-	return r, nil
+	return out, nil
 }
 
 // decrypt decrypts a DTLS RecordLayer message.
@@ -117,7 +118,7 @@ func (a *aead) decrypt(header recordlayer.Header, in []byte) ([]byte, error) {
 	case header.ContentType == protocol.ContentTypeChangeCipherSpec:
 		// Nothing to encrypt with ChangeCipherSpec
 		return in, nil
-	case len(in) <= (8 + header.Size()):
+	case len(in) <= (8 + header.MarshalSize()):
 		return nil, errNotEnoughRoomForNonce
 	}
 
@@ -126,8 +127,8 @@ func (a *aead) decrypt(header recordlayer.Header, in []byte) ([]byte, error) {
 	nonce := *noncePtr
 
 	copy(nonce[:4], a.remoteWriteIV[:4])
-	copy(nonce[4:], in[header.Size():header.Size()+8])
-	out := in[header.Size()+8:]
+	copy(nonce[4:], in[header.MarshalSize():header.MarshalSize()+8])
+	out := in[header.MarshalSize()+8:]
 
 	var additionalData []byte
 	if header.ContentType == protocol.ContentTypeConnectionID {
@@ -146,7 +147,7 @@ func (a *aead) decrypt(header recordlayer.Header, in []byte) ([]byte, error) {
 	// Return nonce buffer to pool
 	a.nonceBufferPool.Put(noncePtr)
 
-	return append(in[:header.Size()], out...), nil
+	return append(in[:header.MarshalSize()], out...), nil
 }
 
 func generateAEADAdditionalData(h *recordlayer.Header, payloadLen int) []byte {

pkg/crypto/ciphersuite/gcm_test.go

@@ -51,7 +51,7 @@ func FuzzGCM_RoundTrip(f *testing.F) {
 
 		var parsedHdr recordlayer.Header
 		require.NoError(t, parsedHdr.Unmarshal(dec))
-		got := dec[parsedHdr.Size():]
+		got := dec[parsedHdr.MarshalSize():]
 
 		require.Equal(t, plain, got)
 	})
@@ -117,7 +117,7 @@ func FuzzGCM_Bidirectional_RoundTrip(f *testing.F) {
 		var parsedHdrA recordlayer.Header
 		require.NoError(t, parsedHdrA.Unmarshal(decAonB))
 
-		gotA := decAonB[parsedHdrA.Size():]
+		gotA := decAonB[parsedHdrA.MarshalSize():]
 		require.Equal(t, pA, gotA)
 
 		// B -> A
@@ -144,7 +144,7 @@ func FuzzGCM_Bidirectional_RoundTrip(f *testing.F) {
 		var parsedHdrB recordlayer.Header
 		require.NoError(t, parsedHdrB.Unmarshal(decBonA))
 
-		gotB := decBonA[parsedHdrB.Size():]
+		gotB := decBonA[parsedHdrB.MarshalSize():]
 		require.Equal(t, pB, gotB)
 	})
 }

pkg/protocol/alert/alert.go

@@ -145,28 +145,28 @@ func (a Alert) ContentType() protocol.ContentType {
 	return protocol.ContentTypeAlert
 }
 
-// Size returns the minimal buffer size required for MarshalInto.
-func (a Alert) Size() int {
+// MarshalSize returns the minimal buffer size required for MarshalTo.
+func (a Alert) MarshalSize() int {
 	return 2
 }
 
 // Marshal returns the encoded alert.
 func (a *Alert) Marshal() ([]byte, error) {
-	out := make([]byte, a.Size())
-	err := a.MarshalInto(out)
+	out := make([]byte, a.MarshalSize())
+	_, err := a.MarshalTo(out)
 
 	return out, err
 }
 
-// MarshalInto returns the encoded alert.
-func (a *Alert) MarshalInto(out []byte) error {
-	if len(out) < a.Size() {
-		return errBufferTooSmall
+// MarshalTo returns the encoded alert.
+func (a *Alert) MarshalTo(out []byte) (int, error) {
+	if len(out) < a.MarshalSize() {
+		return 0, errBufferTooSmall
 	}
 	out[0] = byte(a.Level)
 	out[1] = byte(a.Description)
 
-	return nil
+	return 2, nil
 }
 
 // Unmarshal populates the alert from binary data.

pkg/protocol/application_data.go

@@ -20,20 +20,20 @@ func (a ApplicationData) ContentType() ContentType {
 // Marshal encodes the ApplicationData to binary.
 func (a *ApplicationData) Marshal() ([]byte, error) {
 	out := make([]byte, len(a.Data))
-	err := a.MarshalInto(out)
+	_, err := a.MarshalTo(out)
 
 	return out, err
 }
 
-// MarshalInto encodes the ApplicationData to binary into a pre-allocated buffer.
-func (a *ApplicationData) MarshalInto(out []byte) error {
+// MarshalTo encodes the ApplicationData to binary into a pre-allocated buffer.
+func (a *ApplicationData) MarshalTo(out []byte) (int, error) {
 	copy(out, a.Data)
 
-	return nil
+	return len(a.Data), nil
 }
 
-// Size returns the size required for MarshalInto.
-func (a ApplicationData) Size() int {
+// MarshalSize returns the size required for MarshalTo.
+func (a ApplicationData) MarshalSize() int {
 	return len(a.Data)
 }
 

pkg/protocol/change_cipher_spec.go

@@ -15,27 +15,27 @@ func (c ChangeCipherSpec) ContentType() ContentType {
 	return ContentTypeChangeCipherSpec
 }
 
-// Size returns the minimal buffer size required for MarshalInto.
-func (c ChangeCipherSpec) Size() int {
+// MarshalSize returns the minimal buffer size required for MarshalTo.
+func (c ChangeCipherSpec) MarshalSize() int {
 	return 1
 }
 
 // Marshal encodes the ChangeCipherSpec to binary.
 func (c *ChangeCipherSpec) Marshal() ([]byte, error) {
 	out := make([]byte, 1)
-	err := c.MarshalInto(out)
+	_, err := c.MarshalTo(out)
 
 	return out, err
 }
 
-// MarshalInto encodes the ChangeCipherSpec to binary into a pre-allocated buffer.
-func (c *ChangeCipherSpec) MarshalInto(out []byte) error {
-	if len(out) < c.Size() {
-		return errBufferTooSmall
+// MarshalTo encodes the ChangeCipherSpec to binary into a pre-allocated buffer.
+func (c *ChangeCipherSpec) MarshalTo(out []byte) (int, error) {
+	if len(out) < c.MarshalSize() {
+		return 0, errBufferTooSmall
 	}
 	out[0] = 0x01
 
-	return nil
+	return 1, nil
 }
 
 // Unmarshal populates the ChangeCipherSpec from binary.

pkg/protocol/content.go

@@ -21,7 +21,7 @@ const (
 type Content interface {
 	ContentType() ContentType
 	Marshal() ([]byte, error)
-	MarshalInto([]byte) error
+	MarshalTo([]byte) (int, error)
 	Unmarshal(data []byte) error
-	Size() int
+	MarshalSize() int
 }