# # This test is crafted to reproduce oss-fuzz bug # https://crbug.com/oss-fuzz/17954 # HTTP HTTP GET HTTP proxy followlocation # # Server-side HTTP/1.1 302 OK Location: http://example.net/there/it/is/../../tes t case=/%TESTNUMBER0002? yes no Date: Tue, 09 Nov 2010 14:49:00 GMT Content-Length: 0 HTTP/1.1 200 OK Location: this should be ignored Date: Tue, 09 Nov 2010 14:49:00 GMT Content-Length: 5 body HTTP/1.1 302 OK Location: http://example.net/there/it/is/../../tes t case=/%TESTNUMBER0002? yes no Date: Tue, 09 Nov 2010 14:49:00 GMT Content-Length: 0 HTTP/1.1 200 OK Location: this should be ignored Date: Tue, 09 Nov 2010 14:49:00 GMT Content-Length: 5 body # # Client-side http HTTP redirect with dotdots and whitespaces in absolute Location: URL http://example.com/please/../gimme/%TESTNUMBER?foobar#hello -L -x http://%HOSTIP:%HTTPPORT proxy # # Verify data after the test has been "shot" GET http://example.com/gimme/%TESTNUMBER?foobar HTTP/1.1 Host: example.com User-Agent: curl/%VERSION Accept: */* Proxy-Connection: Keep-Alive GET http://example.net/there/tes%20t%20case=/%TESTNUMBER0002?+yes+no HTTP/1.1 Host: example.net User-Agent: curl/%VERSION Accept: */* Proxy-Connection: Keep-Alive