yusukes@chromium.org | d257d18 | 2009-11-04 04:56:32 +0000 | [diff] [blame] | 1 | Sanitiser for OpenType |
| 2 | ---------------------- |
| 3 | |
| 4 | (Idea from Alex Russell) |
| 5 | |
| 6 | The CSS font-face property[1] is great for web typography. Having to use images |
| 7 | in order to get the correct typeface is a great sadness; one should be able to |
| 8 | use vectors. |
| 9 | |
| 10 | However, the TrueType renderers on many platforms have never been part of the |
| 11 | attack surface before and putting them on the front line is a scary proposition. |
| 12 | Esp on platforms like Windows where it's a closed-source blob running with high |
| 13 | privilege. |
| 14 | |
| 15 | Thus, the OpenType Sanitiser (OTS) is designed to parse and serialise OpenType |
| 16 | files, validating them and sanitising them as it goes. |
| 17 | |
| 18 | This is just an initial release. Do not use it in anger yet. |
| 19 | |
| 20 | [1] http://www.w3.org/TR/CSS2/fonts.html#font-descriptions |