39 '/&([A-Za-z0-9\x80-\xff]+);
41 |&\#[xX]([0-9A-Fa-f]+);
358 if ( self::$attribsRegex ===
null ) {
359 $spaceChars =
'\x09\x0a\x0c\x0d\x20';
360 $space =
"[{$spaceChars}]";
361 $attrib =
"[^{$spaceChars}\/>=]";
362 $attribFirst =
"(?:{$attrib}|=)";
363 self::$attribsRegex =
364 "/({$attribFirst}{$attrib}*)
367 # The attribute value: quoted or alone
387 if ( self::$attribNameRegex ===
null ) {
388 $attribFirst =
"[:_\p{L}\p{N}]";
389 $attrib =
"[:_\.\-\p{L}\p{N}]";
390 self::$attribNameRegex =
"/^({$attribFirst}{$attrib}*)$/sxu";
404 static $htmlpairsStatic, $htmlsingle, $htmlsingleonly, $htmlnest, $tabletags,
405 $htmllist, $listtags, $htmlsingleallowed, $htmlelementsStatic, $staticInitialised;
410 if ( !$staticInitialised || $staticInitialised != $globalContext ) {
411 $htmlpairsStatic = [ # Tags that must be closed
412 'b',
'bdi',
'del',
'i',
'ins',
'u',
'font',
'big',
'small',
'sub',
'sup',
'h1',
413 'h2',
'h3',
'h4',
'h5',
'h6',
'cite',
'code',
'em',
's',
414 'strike',
'strong',
'tt',
'var',
'div',
'center',
415 'blockquote',
'ol',
'ul',
'dl',
'table',
'caption',
'pre',
416 'ruby',
'rb',
'rp',
'rt',
'rtc',
'p',
'span',
'abbr',
'dfn',
417 'kbd',
'samp',
'data',
'time',
'mark'
420 'br',
'wbr',
'hr',
'li',
'dt',
'dd',
'meta',
'link'
423 # Elements that cannot have close tags. This is (not coincidentally)
424 # also the list of tags for which the HTML 5 parsing algorithm
425 # requires you to "acknowledge the token's self-closing flag", i.e.
426 # a self-closing tag like <br/> is not an HTML 5 parse error only
429 'br',
'wbr',
'hr',
'meta',
'link'
432 $htmlnest = [ # Tags that can be nested--??
433 'table',
'tr',
'td',
'th',
'div',
'blockquote',
'ol',
'ul',
434 'li',
'dl',
'dt',
'dd',
'font',
'big',
'small',
'sub',
'sup',
'span',
435 'var',
'kbd',
'samp',
'em',
'strong',
'q',
'ruby',
'bdo'
437 $tabletags = [ # Can only appear inside table, we will close them
440 $htmllist = [ # Tags used by list
443 $listtags = [ # Tags that can appear in a list
449 'is deprecated since MediaWiki 1.35',
'1.35',
false,
false );
450 $htmlsingle[] =
'img';
451 $htmlsingleonly[] =
'img';
454 $htmlsingleallowed = array_unique( array_merge( $htmlsingle, $tabletags ) );
455 $htmlelementsStatic = array_unique( array_merge( $htmlsingle, $htmlpairsStatic, $htmlnest ) );
457 # Convert them all to hashtables for faster lookup
458 $vars = [
'htmlpairsStatic',
'htmlsingle',
'htmlsingleonly',
'htmlnest',
'tabletags',
459 'htmllist',
'listtags',
'htmlsingleallowed',
'htmlelementsStatic' ];
460 foreach ( $vars as $var ) {
461 $$var = array_flip( $$var );
463 $staticInitialised = $globalContext;
466 # Populate $htmlpairs and $htmlelements with the $extratags and $removetags arrays
467 $extratags = array_flip( $extratags );
468 $removetags = array_flip( $removetags );
469 $htmlpairs = array_merge( $extratags, $htmlpairsStatic );
470 $htmlelements = array_diff_key( array_merge( $extratags, $htmlelementsStatic ), $removetags );
473 'htmlpairs' => $htmlpairs,
474 'htmlsingle' => $htmlsingle,
475 'htmlsingleonly' => $htmlsingleonly,
476 'htmlnest' => $htmlnest,
477 'tabletags' => $tabletags,
478 'htmllist' => $htmllist,
479 'listtags' => $listtags,
480 'htmlsingleallowed' => $htmlsingleallowed,
481 'htmlelements' => $htmlelements,
497 $args = [], $extratags = [], $removetags = []
500 $htmlpairs = $tagData[
'htmlpairs'];
501 $htmlsingle = $tagData[
'htmlsingle'];
502 $htmlsingleonly = $tagData[
'htmlsingleonly'];
503 $htmlnest = $tagData[
'htmlnest'];
504 $tabletags = $tagData[
'tabletags'];
505 $htmllist = $tagData[
'htmllist'];
506 $listtags = $tagData[
'listtags'];
507 $htmlsingleallowed = $tagData[
'htmlsingleallowed'];
508 $htmlelements = $tagData[
'htmlelements'];
510 # Remove HTML comments
512 $bits = explode(
'<', $text );
513 $text = str_replace(
'>',
'>', array_shift( $bits ) );
515 # this might be possible using remex tidy itself
516 foreach ( $bits as $x ) {
517 if ( preg_match( self::ELEMENT_BITS_REGEX, $x, $regs ) ) {
518 list( , $slash,
$t, $params, $brace, $rest ) = $regs;
521 $t = strtolower(
$t );
522 if ( isset( $htmlelements[
$t] ) ) {
523 if ( is_callable( $processCallback ) ) {
524 call_user_func_array( $processCallback, [ &$params,
$args ] );
527 if ( $brace ==
'/>' && !( isset( $htmlsingle[
$t] ) || isset( $htmlsingleonly[
$t] ) ) ) {
532 if ( !self::validateTag( $params,
$t ) ) {
538 if ( $brace ===
'/>' && !isset( $htmlsingleonly[
$t] ) ) {
539 # Interpret self-closing tags as empty tags even when
540 # HTML 5 would interpret them as start tags. Such input
541 # is commonly seen on Wikimedia wikis with this intention.
545 $rest = str_replace(
'>',
'>', $rest );
546 $text .=
"<$slash$t$newparams$brace$rest";
551 $text .=
'<' . str_replace(
'>',
'>', $x );
566 while ( ( $start = strpos( $text,
'<!--' ) ) !==
false ) {
567 $end = strpos( $text,
'-->', $start + 4 );
568 if ( $end ===
false ) {
569 # Unterminated comment; bail out
575 # Trim space and newline if the comment is both
576 # preceded and followed by a newline
577 $spaceStart = max( $start - 1, 0 );
578 $spaceLen = $end - $spaceStart;
579 while ( substr( $text, $spaceStart, 1 ) ===
' ' && $spaceStart > 0 ) {
583 while ( substr( $text, $spaceStart + $spaceLen, 1 ) ===
' ' ) {
586 if ( substr( $text, $spaceStart, 1 ) ===
"\n"
587 && substr( $text, $spaceStart + $spaceLen, 1 ) ===
"\n" ) {
588 # Remove the comment, leading and trailing
589 # spaces, and leave only one newline.
590 $text = substr_replace( $text,
"\n", $spaceStart, $spaceLen + 1 );
592 # Remove just the comment.
593 $text = substr_replace( $text,
'', $start, $end - $start );
614 if ( $element ==
'meta' || $element ==
'link' ) {
615 if ( !isset( $params[
'itemprop'] ) ) {
619 if ( $element ==
'meta' && !isset( $params[
'content'] ) ) {
623 if ( $element ==
'link' && !isset( $params[
'href'] ) ) {
649 self::attributesAllowedInternal( $element ) );
671 if ( isset( $allowed[0] ) ) {
674 wfDeprecated( __METHOD__ .
' with sequential array',
'1.35' );
675 $allowed = array_flip( $allowed );
680 foreach ( $attribs as $attribute => $value ) {
681 # Allow XML namespace declaration to allow RDFa
682 if ( preg_match( self::XMLNS_ATTRIBUTE_PATTERN, $attribute ) ) {
683 if ( !preg_match( self::EVIL_URI_PATTERN, $value ) ) {
684 $out[$attribute] = $value;
690 # Allow any attribute beginning with "data-"
692 # * Disallow data attributes used by MediaWiki code
693 # * Ensure that the attribute is not namespaced by banning
696 !preg_match(
'/^data-[^:]*$/i', $attribute ) &&
697 !array_key_exists( $attribute, $allowed )
698 ) || self::isReservedDataAttribute( $attribute ) ) {
702 # Strip javascript "expression" from stylesheets.
703 # https://msdn.microsoft.com/en-us/library/ms537634.aspx
704 if ( $attribute ==
'style' ) {
708 # Escape HTML id attributes
709 if ( $attribute ===
'id' ) {
713 # Escape HTML id reference lists
714 if ( $attribute ===
'aria-describedby'
715 || $attribute ===
'aria-flowto'
716 || $attribute ===
'aria-labelledby'
717 || $attribute ===
'aria-owns'
724 if ( $attribute ===
'rel' || $attribute ===
'rev'
726 || $attribute ===
'about' || $attribute ===
'property'
727 || $attribute ===
'resource' || $attribute ===
'datatype'
728 || $attribute ===
'typeof'
730 || $attribute ===
'itemid' || $attribute ===
'itemprop'
731 || $attribute ===
'itemref' || $attribute ===
'itemscope'
732 || $attribute ===
'itemtype'
735 if ( preg_match( self::EVIL_URI_PATTERN, $value ) ) {
740 # NOTE: even though elements using href/src are not allowed directly, supply
741 # validation code that can be used by tag hook handlers, etc
742 if ( $attribute ===
'href' || $attribute ===
'src' || $attribute ===
'poster' ) {
743 if ( !preg_match( $hrefExp, $value ) ) {
749 if ( $attribute ===
'tabindex' && $value !==
'0' ) {
756 $out[$attribute] = $value;
759 # itemtype, itemid, itemref don't make sense without itemscope
760 if ( !array_key_exists(
'itemscope', $out ) ) {
761 unset( $out[
'itemtype'] );
762 unset( $out[
'itemid'] );
763 unset( $out[
'itemref'] );
765 # TODO: Strip itemprop if we aren't descendants of an itemscope or pointed to by an itemref.
785 return (
bool)preg_match(
'/^data-(ooui|mw|parsoid)/i', $attr );
799 $out = array_merge( $a, $b );
800 if ( isset( $a[
'class'] ) && isset( $b[
'class'] )
801 && is_string( $a[
'class'] ) && is_string( $b[
'class'] )
802 && $a[
'class'] !== $b[
'class']
804 $classes = preg_split(
'/\s+/',
"{$a['class']} {$b['class']}",
805 -1, PREG_SPLIT_NO_EMPTY );
806 $out[
'class'] = implode(
' ', array_unique( $classes ) );
833 if ( !$decodeRegex ) {
834 $space =
'[\\x20\\t\\r\\n\\f]';
835 $nl =
'(?:\\n|\\r\\n|\\r|\\f)';
837 $decodeRegex =
"/ $backslash
839 ($nl) | # 1. Line continuation
840 ([0-9A-Fa-f]{1,6})$space? | # 2. character number
841 (.) | # 3. backslash cancelling special meaning
842 () | # 4. backslash at end of string
845 $value = preg_replace_callback( $decodeRegex,
846 [ __CLASS__,
'cssDecodeCallback' ], $value );
851 if ( !preg_match(
'! ^ \s* /\* [^*\\/]* \*/ \s* $ !x', $value ) ) {
862 $commentPos = strpos( $value,
'/*' );
863 if ( $commentPos !==
false ) {
864 $value = substr( $value, 0, $commentPos );
893 if ( preg_match(
'/[\000-\010\013\016-\037\177]/', $value ) ||
894 strpos( $value, UtfNormal\Constants::UTF8_REPLACEMENT ) !==
false ) {
895 return '/* invalid control char */';
896 } elseif ( preg_match(
906 | attr\s*\([^)]+[\s,]+url
909 return '/* insecure input */';
923 $char = UtfNormal\Utils::codepointToUtf8( hexdec(
$matches[2] ) );
929 if ( $char ==
"\n" || $char ==
'"' || $char ==
"'" || $char ==
'\\' ) {
932 return '\\' . dechex( ord( $char ) ) .
' ';
961 if ( trim( $text ) ==
'' ) {
981 $encValue = htmlspecialchars( $text, ENT_QUOTES );
986 $encValue = strtr( $encValue, [
1007 # French spaces, last one Guillemet-left
1008 # only if there is something before the space
1009 # and a non-word character after the punctuation.
1010 '/(?<=\S) (?=[?:;!%»›](?!\w))/u' =>
"$space",
1011 # French spaces, Guillemet-right
1012 '/([«‹]) /u' =>
"\\1$space",
1014 return preg_replace( array_keys( $fixtags ), array_values( $fixtags ), $text );
1026 # Templates and links may be expanded in later parsing,
1027 # creating invalid or dangerous output. Suppress this.
1028 $encValue = strtr( $encValue, [
1036 "''" =>
'''',
1037 'ISBN' =>
'ISBN',
1039 'PMID' =>
'PMID',
1044 # Armor against French spaces detection (T5158)
1048 $encValue = preg_replace_callback(
1051 return str_replace(
':',
':',
$matches[1] );
1085 public static function escapeId( $id, $options = [] ) {
1087 $options = (array)$options;
1095 $id = urlencode( strtr( $id,
' ',
'_' ) );
1096 $id = strtr( $id, $replace );
1098 if ( !preg_match(
'/^[a-zA-Z]/', $id ) && !in_array(
'noninitial', $options ) ) {
1124 if ( $mode === self::ID_PRIMARY ) {
1125 throw new UnexpectedValueException(
'$wgFragmentMode is configured with no primary mode' );
1151 throw new UnexpectedValueException(
'$wgFragmentMode is configured with no primary mode' );
1189 if ( $mode ===
'html5' ) {
1190 $id = preg_replace(
'/%([a-fA-F0-9]{2})/',
'%25$1', $id );
1209 $id = str_replace( [
"\t",
"\n",
"\f",
"\r",
" " ],
'_', $id );
1218 $id = urlencode( str_replace(
' ',
'_', $id ) );
1219 $id = strtr( $id, $replace );
1222 throw new InvalidArgumentException(
"Invalid mode '$mode' passed to '" . __METHOD__ );
1238 # Explode the space delimited list string into an array of tokens
1239 $references = preg_split(
'/\s+/',
"{$referenceString}", -1, PREG_SPLIT_NO_EMPTY );
1241 # Escape each token as an id
1242 foreach ( $references as &$ref ) {
1246 # Merge the array back to a space delimited list string
1247 # If the array is empty, the result will be an empty string ('')
1248 $referenceString = implode(
' ', $references );
1250 return $referenceString;
1266 return rtrim( preg_replace(
1267 [
'/(^[0-9\\-])|[\\x00-\\x20!"#$%&\'()*+,.\\/:;<=>?@[\\]^`{|}~]|\\xC2\\xA0/',
'/_+/' ],
1281 # It seems wise to escape ' as well as ", as a matter of course. Can't
1282 # hurt. Use ENT_SUBSTITUTE so that incorrectly truncated multibyte characters
1283 # don't cause the entire string to disappear.
1284 $html = htmlspecialchars( $html, ENT_QUOTES | ENT_SUBSTITUTE );
1297 if ( trim( $text ) ==
'' ) {
1302 if ( !preg_match_all(
1303 self::getAttribsRegex(),
1306 PREG_SET_ORDER ) ) {
1311 foreach ( $pairs as $set ) {
1312 $attribute = strtolower( $set[1] );
1315 if ( !preg_match( self::getAttribNameRegex(), $attribute ) ) {
1322 $value = preg_replace(
'/[\t\r\n ]+/',
' ', $value );
1323 $value = trim( $value );
1340 foreach ( $assoc_array as $attribute => $value ) {
1341 $encAttribute = htmlspecialchars( $attribute );
1344 $attribs[] =
"$encAttribute=\"$encValue\"";
1346 return count( $attribs ) ?
' ' . implode(
' ', $attribs ) :
'';
1358 if ( isset( $set[5] ) ) {
1361 } elseif ( isset( $set[4] ) ) {
1364 } elseif ( isset( $set[3] ) ) {
1367 } elseif ( !isset( $set[2] ) ) {
1368 # In XHTML, attributes must have a value so return an empty string.
1369 # See "Empty attribute syntax",
1370 # https://www.w3.org/TR/html5/syntax.html#syntax-attribute-name
1373 throw new MWException(
"Tag conditions not met. This should never happen and is a bug." );
1382 return trim( preg_replace(
1383 '/(?:\r\n|[\x20\x0d\x0a\x09])+/',
1397 return trim( preg_replace(
'/[ _]+/',
' ', $section ) );
1416 return preg_replace_callback(
1417 self::CHAR_REFS_REGEX,
1418 [ self::class,
'normalizeCharReferencesCallback' ],
1435 if ( $ret ===
null ) {
1436 return htmlspecialchars(
$matches[0] );
1453 if ( isset( self::HTML_ENTITY_ALIASES[$name] ) ) {
1454 return '&' . self::HTML_ENTITY_ALIASES[$name] .
';';
1455 } elseif ( in_array( $name, [
'lt',
'gt',
'amp',
'quot' ] ) ) {
1457 } elseif ( isset( self::HTML_ENTITIES[$name] ) ) {
1458 return '&#' . self::HTML_ENTITIES[$name] .
';';
1460 return "&$name;";
1469 $point = intval( $codepoint );
1470 if ( self::validateCodepoint( $point ) ) {
1471 return sprintf(
'&#%d;', $point );
1482 $point = hexdec( $codepoint );
1483 if ( self::validateCodepoint( $point ) ) {
1484 return sprintf(
'&#x%x;', $point );
1497 # U+000C is valid in HTML5 but not allowed in XML.
1498 # U+000D is valid in XML but not allowed in HTML5.
1499 # U+007F - U+009F are disallowed in HTML5 (control characters).
1500 return $codepoint == 0x09
1501 || $codepoint == 0x0a
1502 || ( $codepoint >= 0x20 && $codepoint <= 0x7e )
1503 || ( $codepoint >= 0xa0 && $codepoint <= 0xd7ff )
1504 || ( $codepoint >= 0xe000 && $codepoint <= 0xfffd )
1505 || ( $codepoint >= 0x10000 && $codepoint <= 0x10ffff );
1516 return preg_replace_callback(
1517 self::CHAR_REFS_REGEX,
1518 [ self::class,
'decodeCharReferencesCallback' ],
1533 $text = preg_replace_callback(
1534 self::CHAR_REFS_REGEX,
1535 [ self::class,
'decodeCharReferencesCallback' ],
1542 return MediaWikiServices::getInstance()->getContentLanguage()->normalize( $text );
1560 # Last case should be an ampersand by itself
1572 if ( self::validateCodepoint( $codepoint ) ) {
1573 return UtfNormal\Utils::codepointToUtf8( $codepoint );
1575 return UtfNormal\Constants::UTF8_REPLACEMENT;
1588 if ( isset( self::HTML_ENTITY_ALIASES[$name] ) ) {
1589 $name = self::HTML_ENTITY_ALIASES[$name];
1591 if ( isset( self::HTML_ENTITIES[$name] ) ) {
1592 return UtfNormal\Utils::codepointToUtf8( self::HTML_ENTITIES[$name] );
1607 return $list[$element] ?? [];
1620 if ( $allowed !==
null ) {
1626 $merge =
function ( $a, $b, $c = [] ) {
1627 return array_merge( $a, array_flip( $b ), array_flip( $c ) );
1629 $common = $merge( [], [
1649 # These attributes are specified in section 9 of
1657 # Microdata. These are specified by
1666 $block = $merge( $common, [
'align' ] );
1668 $tablealign = [
'align',
'valign' ];
1676 'nowrap', # deprecated
1677 'width', # deprecated
1678 'height', # deprecated
1679 'bgcolor', # deprecated
1682 # Numbers refer to sections in HTML 4.01 standard describing the element.
1683 # See: https://www.w3.org/TR/html4/
1687 'center' => $common, # deprecated
1706 'strong' => $common,
1717 'blockquote' => $merge( $common, [
'cite' ] ),
1718 'q' => $merge( $common, [
'cite' ] ),
1728 'br' => $merge( $common, [
'clear' ] ),
1730 # https://www.w3.org/TR/html5/text-level-semantics.html#the-wbr-element
1734 'pre' => $merge( $common, [
'width' ] ),
1737 'ins' => $merge( $common, [
'cite',
'datetime' ] ),
1738 'del' => $merge( $common, [
'cite',
'datetime' ] ),
1741 'ul' => $merge( $common, [
'type' ] ),
1742 'ol' => $merge( $common, [
'type',
'start',
'reversed' ] ),
1743 'li' => $merge( $common, [
'type',
'value' ] ),
1751 'table' => $merge( $common,
1752 [
'summary',
'width',
'border',
'frame',
1753 'rules',
'cellspacing',
'cellpadding',
1758 'caption' => $block,
1766 'colgroup' => $merge( $common, [
'span' ] ),
1767 'col' => $merge( $common, [
'span' ] ),
1770 'tr' => $merge( $common, [
'bgcolor' ], $tablealign ),
1773 'td' => $merge( $common, $tablecell, $tablealign ),
1774 'th' => $merge( $common, $tablecell, $tablealign ),
1777 # NOTE: <a> is not allowed directly, but this list of allowed
1778 # attributes is used from the Parser object
1779 'a' => $merge( $common, [
'href',
'rel',
'rev' ] ), # rel/rev esp.
for RDFa
1782 # Not usually allowed, but may be used for extension-style hooks
1783 # such as <math> when it is rasterized, or if $wgAllowImageTag is
1785 'img' => $merge( $common, [
'alt',
'src',
'width',
'height',
'srcset' ] ),
1786 # Attributes for A/V tags added in T163583 / T133673
1787 'audio' => $merge( $common, [
'controls',
'preload',
'width',
'height' ] ),
1788 'video' => $merge( $common, [
'poster',
'controls',
'preload',
'width',
'height' ] ),
1789 'source' => $merge( $common, [
'type',
'src' ] ),
1790 'track' => $merge( $common, [
'type',
'src',
'srclang',
'kind',
'label' ] ),
1798 'strike' => $common,
1803 'font' => $merge( $common, [
'size',
'color',
'face' ] ),
1807 'hr' => $merge( $common, [
'width' ] ),
1809 # HTML Ruby annotation text module, simple ruby only.
1810 # https://www.w3.org/TR/html5/text-level-semantics.html#the-ruby-element
1815 'rt' => $common, # $merge( $common, [
'rbspan' ] ),
1818 # MathML root element, where used for extensions
1819 # 'title' may not be 100% valid here; it's XHTML
1820 # https://www.w3.org/TR/REC-MathML/
1821 'math' => $merge( [], [
'class',
'style',
'id',
'title' ] ),
1824 'figure' => $common,
1825 'figure-inline' => $common, # T118520
1826 'figcaption' => $common,
1828 # HTML 5 section 4.6
1831 # HTML5 elements, defined by:
1832 # https://html.spec.whatwg.org/multipage/semantics.html#the-data-element
1833 'data' => $merge( $common, [
'value' ] ),
1834 'time' => $merge( $common, [
'datetime' ] ),
1842 'meta' => $merge( [], [
'itemprop',
'content' ] ),
1843 'link' => $merge( [], [
'itemprop',
'href',
'title' ] ),
1863 $tokenizer =
new RemexHtml\Tokenizer\Tokenizer( $handler, $html, [
1864 'ignoreErrors' =>
true,
1866 'ignoreNulls' =>
true,
1867 'skipPreprocess' =>
true,
1869 $tokenizer->execute();
1870 $text = $handler->getResult();
1886 $out =
"<!DOCTYPE html [\n";
1887 foreach ( self::HTML_ENTITIES as $entity => $codepoint ) {
1888 $out .=
"<!ENTITY $entity \"&#$codepoint;\">";
1899 # Normalize any HTML entities in input. They will be
1900 # re-escaped by makeExternalLink().
1903 # Escape any control characters introduced by the above step
1904 $url = preg_replace_callback(
'/[\][<>"\\x00-\\x20\\x7F\|]/',
1905 [ __CLASS__,
'cleanUrlCallback' ], $url );
1907 # Validate hostname portion
1909 if ( preg_match(
'!^([^:]+:)(//[^/]+)?(.*)$!iD', $url,
$matches ) ) {
1910 list( , $protocol, $host, $rest ) =
$matches;
1916 \\s| # general whitespace
1917 \xc2\xad| # 00ad SOFT HYPHEN
1918 \xe1\xa0\x86| # 1806 MONGOLIAN TODO SOFT HYPHEN
1919 \xe2\x80\x8b| # 200b ZERO WIDTH SPACE
1920 \xe2\x81\xa0| # 2060 WORD JOINER
1921 \xef\xbb\xbf| # feff ZERO WIDTH NO-BREAK SPACE
1922 \xcd\x8f| # 034f COMBINING GRAPHEME JOINER
1923 \xe1\xa0\x8b| # 180b MONGOLIAN FREE VARIATION SELECTOR ONE
1924 \xe1\xa0\x8c| # 180c MONGOLIAN FREE VARIATION SELECTOR TWO
1925 \xe1\xa0\x8d| # 180d MONGOLIAN FREE VARIATION SELECTOR THREE
1926 \xe2\x80\x8c| # 200c ZERO WIDTH NON-JOINER
1927 \xe2\x80\x8d| # 200d ZERO WIDTH JOINER
1928 [\xef\xb8\x80-\xef\xb8\x8f] # fe00-fe0f VARIATION SELECTOR-1-16
1931 $host = preg_replace( $strip,
'', $host );
1934 if ( substr_compare(
"//%5B", $host, 0, 5 ) === 0 &&
1935 preg_match(
'!^//%5B([0-9A-Fa-f:.]+)%5D((:\d+)?)$!', $host,
$matches )
1942 return $protocol . $host . $rest;
1986 if ( !
Hooks::runner()->onIsValidEmailAddr( $addr, $result ) ) {
1993 $rfc5322_atext =
"a-z0-9!#$%&'*+\\-\/=?^_`{|}~";
1994 $rfc1034_ldh_str =
"a-z0-9\\-";
1996 $html5_email_regexp =
"/
1998 [$rfc5322_atext\\.]+ # user part which is liberal :p
2000 [$rfc1034_ldh_str]+ # First domain part
2001 (\\.[$rfc1034_ldh_str]+)* # Following part prefixed with a dot
2005 return (
bool)preg_match( $html5_email_regexp, $addr );
1.8.18