Announcement

**Nuc!eoN** · 09 July 2023, 07:19 AM

Bitmap font support would be nice imo.

**tildearrow** · 09 July 2023, 07:22 AM

A virtual machine......
....in the font rendering engine.

What.

**tildearrow** · 09 July 2023, 07:23 AM

Also, typo:

Originally posted by phoronix View Post

HarfBuzz's new documentation around this WwebAssembly shaper explains:

**uid313** · 09 July 2023, 08:12 AM

So will there be malware embedded in fonts now?

**markg85** · 09 July 2023, 09:52 AM

What i'm curious about is... What the hell do WASM and font rendering (oke, shaping to be precise) have anything todo with each other?
In my, perhaps naive, thought the two are completely unrelated. Anything that renders fonts (including shaping) should run deep within internal browser libraries or be triggered from therein. In chrome that's is probably triggered inside the Skia library.

Now i can "get" it if WASM means that they optimize it with a set of assembly instructions comparable to wasm, but i don't get it if wasm actually means on the web.

**fitzie** · 09 July 2023, 10:42 AM

Originally posted by markg85 View Post

What i'm curious about is... What the hell do WASM and font rendering (oke, shaping to be precise) have anything todo with each other?
In my, perhaps naive, thought the two are completely unrelated. Anything that renders fonts (including shaping) should run deep within internal browser libraries or be triggered from therein. In chrome that's is probably triggered inside the Skia library.

Now i can "get" it if WASM means that they optimize it with a set of assembly instructions comparable to wasm, but i don't get it if wasm actually means on the web.

fonts are able to influence shaping by packing metadata into the font. the knobs are not as flexible as if the font creator can understand the exact situation the font is in when in use. therefore this experiment from harfbuzz.

I hope distros compile this feature out (or I will), until there is some usage of this by windows/macos. I can imagine this being used for cache timing attacks, or worse, exfil/watermarks.

**ssokolow** · 09 July 2023, 11:20 AM

Originally posted by tildearrow View Post

A virtual machine......
....in the font rendering engine.

What.

Didn't TrueType font hinting already have something like that? Wasn't that why, for a long time, Fedora's font rendering sucked unless you compiled your own for patent-related reasons?

**domih** · 09 July 2023, 11:25 AM

Originally posted by uid313 View Post

So will there be malware embedded in fonts now?

Yes and there will be a new font called Fontanyl.

**creative** · 09 July 2023, 11:48 AM

Originally posted by uid313 View Post

So will there be malware embedded in fonts now?

It's possible, which is sort of hilarious because lots applications have dependencies for it. I have known about stuff like this since about 2018 but at the time it had more to do with imperceptible stuff in images rendered on the web. Most distributions have security patches already applied concerning this engine/library. There is so much stuff out there though, that if discovered lots of people would have meltdowns over. Getting on the web is almost like taking a risk of endangerment traveling via roads and highways, hazards are always there of various types.

Announcement

HarfBuzz 8.0 Released - Introduces Shaper For WebAssembly Within Font Files

HarfBuzz 8.0 Released - Introduces Shaper For WebAssembly Within Font Files

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment