From 835a8b999282b4eebfd12631973ee659ae5de1a6 Mon Sep 17 00:00:00 2001
From: Ryan Boren <ryan@git.wordpress.org>
Date: Fri, 13 Jan 2006 07:28:47 +0000
Subject: [PATCH] kses regex tweakage for better comment filtering.  fixes
 #2130

git-svn-id: https://develop.svn.wordpress.org/trunk@3429 602fd350-edb4-49c9-b593-d223f7449a82
---
 wp-includes/kses.php | 11 +++++------
 1 file changed, 5 insertions(+), 6 deletions(-)

diff --git a/wp-includes/kses.php b/wp-includes/kses.php
index a662b2e833..97ffe0cc3d 100644
--- a/wp-includes/kses.php
+++ b/wp-includes/kses.php
@@ -77,10 +77,7 @@ function wp_kses_split($string, $allowed_html, $allowed_protocols)
 # matches stray ">" characters.
 ###############################################################################
 {
-	return preg_replace('%(<!--.*?-->)|(<'.# EITHER: <
-	'[^>]*'.# things that aren't >
-	'(>|$)'.# > or end of string
-	'|>)%e', # OR: just a >
+	return preg_replace('%((<!--.*?(-->|$))|(<[^>]*(>|$)|>))%e',
 	"wp_kses_split2('\\1', \$allowed_html, ".'$allowed_protocols)', $string);
 } # function wp_kses_split
 
@@ -98,10 +95,12 @@ function wp_kses_split2($string, $allowed_html, $allowed_protocols)
 		return '&gt;';
 	# It matched a ">" character
 
-	if (preg_match('%^<!--(.*)-->$%', $string, $matches)) {
-		$string = $matches[1];
+	if (preg_match('%^<!--(.*?)(-->)?$%', $string, $matches)) {
+		$string = str_replace(array('<!--', '-->'), '', $matches[1]);
 		while ( $string != $newstring = wp_kses($string, $allowed_html, $allowed_protocols) )
 			$string = $newstring;
+		if ( $string == '' )
+			return '';
 		return "<!--{$string}-->";
 	}
 	# Allow HTML comments