Closed Bug 82089 Opened 24 years ago Closed 24 years ago

nsBidiUtilsImp::ArabicShaping should be turn on

Categories

(Core :: Layout: Text and Fonts, defect)

Product:
Core
Component:
Layout: Text and Fonts
Type:
defect
Priority:
Not set
Severity:
major

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: ftang, Assigned: mkaply)

References

Details

Attachments

(4 files)

patch in -u form
5.25 KB, patch
Details | Diff | Splinter Review
same patch in diff -c form (easier for review)
6.62 KB, patch
Details | Diff | Splinter Review
2nd patch in -c form
7.92 KB, patch
Details | Diff | Splinter Review
same 2nd patch in -u form
6.14 KB, patch
Details | Diff | Splinter Review
In intl/unicharutil/src/nsBidiUtilsImp.cpp The function nsBidiUtilsImp::ArabicShaping is currently #ifdef FULL_ARABIC_SHAPING out. We need to turn that on. This code is currently used by non bidi system to render arabic. There are only one place call this function In layout/base/src/nsBidiPresUtils.cpp nsBidiPresUtils::FormatUnicodeText I think this routine is more important than nsBidiUtilsImp::Conv_FE_06 , nsBidiUtilsImp::Conv_FE_06_WithReverse and nsBidiUtilsImp::Conv_06_FE_WithReverse so I think we handle these cases seperately will increase the speed of turn this one on.
I. We need documentation for any if statement and while loop to explain what it try to do. problem lines in that function 1. 297 if(src-2 >= (aString)){ 298 for(p=src-2; (eTr == leftNoTrJ) && (CHAR_IS_ARABIC(*(p+1))) /*&& (p >= (aString))*/; p--) 299 leftNoTrJ = GetJoiningClass(*(p)) ; 300 } p may be < aString which may cause ABR (array boundary read) in purify and crash 2. 305 if(src+2 <= (aString+aLen-1)){ 306 for(p=src+2; (eTr == rightNoTrJ) && (CHAR_IS_ARABIC(*(src+1))); p++) 307 rightNoTrJ = GetJoiningClass(*(p)) ; 308 } should this be (CHAR_IS_ARABIC(*(src+1))) or (CHAR_IS_ARABIC(*(p+1))) ? p may > aString+aLen-1 which will cause ABR in purify 3. 319 if(src-2 >= (aString)){ 320 for(p=src-2; (eTr == leftNoTrJ) && (CHAR_IS_ARABIC(*(p+1))); p--) 321 leftNoTrJ = GetJoiningClass(*(p)) ; 322 } same thing, no code guarantee p+1 >= aString and p>= aString this will cause ABR in purify and crash One thing I don't understand is we are looking forward (src++) the buffer. and 293 if ((eTr != leftJ) || ((leftJ == eTr) && 294 ( ( (src-1) >= aString ) && !CHAR_IS_ARABIC(*(src-1))))) 295 leftNoTrJ = thisJ; 296 297 if(src-2 >= (aString)){ 298 for(p=src-2; (eTr == leftNoTrJ) && (CHAR_IS_ARABIC(*(p+1))) /*&& (p >= (aString))*/; p--) 299 leftNoTrJ = GetJoiningClass(*(p)) ; 300 } is finding leftNoTrJ based on p < src, Why we need to do this ? Why can we remember condictional assign thisJ to leftNoTrJ after we get formB for the next loop ? leftNoTrJ = eNJ; // we know the character before calling ArabicShaping is not Arabic before the while loop and add if(eTr != thisJ) leftNoTrJ = thisJ; in the end of the while loop after 310 formB = PresentationFormB(*src, DecideForm(leftNoTrJ, thisJ, rightNoTrJ)); We can replace line 293-300 and 315-322 by adding and adding if(eTr != thisJ) leftNoTrJ = thisJ;
The other problem we have with this routine is that we didn't check the output buffer length in the while loop. we should add PRUnichar* aBufEnd = aBuf + *aBufLen; before the while loop and add if(dest >= aBufEnd) { NS_ASSERTION((dest < aBufEnd), "no enough output buffer"); return NS_OUT_OF_MEMORY; } in both the beginning of the while loop and before the second call to PresentationFormB
Blocks: 81194
QA Contact: andreasb → mahar
Attached patch patch in -u formSplinter Review
sorry, the patch is bad. Ignore them
simon/mkaply- can you get some one in IBM Egypt to review and verify my 2nd patch ? If there are problem, please describe what the problem is and provide test cases. Thanks.
This depends on adding the ICU shaping in
Severity: normal → major
Depends on: 82383
arabic shaping code change. Reassign to mkaply.
Assignee: simon → mkaply
Component: Internationalization → BiDi Hebrew & Arabic
Mass-move all BiDi Hebrew and Arabic qa to me, zach@zachlipton.com. Thank you Gilad for your service to this component, and best of luck to you in the future. Sholom.
QA Contact: mahar → zach
Assign QA back to mahar.
QA Contact: zach → mahar
This bug has been superseded by bug 92797
Status: NEW → RESOLVED
Closed: 24 years ago
Resolution: --- → FIXED
Component: Layout: BiDi Hebrew & Arabic → Layout: Text
QA Contact: mahar → layout.fonts-and-text
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: