Google Git
Sign in
go/image/e6eecd499c2c22e58f3951ca087d4523a0b2860d^!/.
commit
e6eecd499c2c22e58f3951ca087d4523a0b2860d
[log]
author
Nigel Tao <nigeltao@golang.org>
Tue Jun 22 17:54:18 2021 +1000
committer
Nigel Tao <nigeltao@golang.org>
Tue Jun 22 09:29:29 2021 +0000
tree
a46da278086ec5dbec00008fea183236e97186d2
parent
775e3b0c77b940684efe0f152b6075671018854f [diff]
font/sfnt: fix parsing PostScript fonts' 4-byte numbers

Fixes golang/go#46836

Change-Id: Ie4ff2a9866d3f468d973e73857d6c44078c0695d
Reviewed-on: https://go-review.googlesource.com/c/image/+/329949
Trust: Nigel Tao <nigeltao@golang.org>
Run-TryBot: Nigel Tao <nigeltao@golang.org>
TryBot-Result: Go Bot <gobot@golang.org>
Reviewed-by: Rob Pike <r@golang.org>

diff --git a/font/sfnt/postscript.go b/font/sfnt/postscript.go
index b686e60..2a21997 100644
--- a/font/sfnt/postscript.go
+++ b/font/sfnt/postscript.go

@@ -795,6 +795,18 @@
 		}
 		number, hasResult = int32(u32(p.instructions[1:])), true
 		p.instructions = p.instructions[5:]
+		// 5177.Type2.pdf section 3.2 "Charstring Number Encoding" says "If the
+		// charstring byte contains the value 255... [this] number is
+		// interpreted as a Fixed; that is, a signed number with 16 bits of
+		// fraction".
+		//
+		// TODO: change the psType2CharstringsData.b.segments and
+		// psInterpreter.argStack data structures to optionally hold fixed
+		// point values, not just integer values. That's a substantial
+		// re-design, though. Until then, just round the 16.16 fixed point
+		// number to the closest integer value. This isn't just "number =
+		// ((number + 0x8000) >> 16)" because of potential overflow.
+		number = (number >> 16) + (1 & (number >> 15))
 	}
 
 	if hasResult {