Skip to content

[subset] --obfuscate-names can drop or scramble names used outside of the name table #3773

New issue
New issue
Closed
#3853
Closed
[subset] --obfuscate-names can drop or scramble names used outside of the name table#3773
#3853
@Hoolean

Description

@Hoolean
Hoolean
opened on Feb 20, 2025

The fonttools subsetter has an option for obfuscating names to make web fonts unusable as system fonts without modification.

This only targets specific standard names, with font-specific names (IDs 256+) left alone:

fonttools/Lib/fontTools/subset/__init__.py

Lines 3013 to 3025 in 598b974

if options.obfuscate_names:
namerecs = []
for n in self.names:
if n.nameID in [1, 4]:
n.string = ".\x7f".encode("utf_16_be") if n.isUnicode() else ".\x7f"
elif n.nameID in [2, 6]:
n.string = "\x7f".encode("utf_16_be") if n.isUnicode() else "\x7f"
elif n.nameID == 3:
n.string = ""
elif n.nameID in [16, 17, 18]:
continue
namerecs.append(n)
self.names = namerecs

When building dependent tables such as fvar and STAT, however, fonttools will seek to reuse existing name records: for example, an fvar instance named Regular may reuse the 'Font Subfamily' name (ID 2) instead of creating an identical but font-specific entry (ID 256+) in order to save space.

This is desirable and spec-compliant, but as a side-effect means that later fonttools scrambling will reach outside of the name entry into any fvar and STAT entries that reused the name ID, and scramble their names too as an unintended consequence.

Where this happens, should we make duplicates in the font-specific area (ID 256+) and redirect other tables to them, or are we confident that none of these name IDs are exposed in the environments in which names may wish to be obfuscated (e.g. browsers)?

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions