1<testcase> 2<info> 3<keywords> 4HTTP 5HTTP GET 6followlocation 7</keywords> 8</info> 9# 10# Server-side 11<reply> 12<data> 13HTTP/1.1 302 OK swsclose 14Location: ../../../../../../../510002 15Date: Thu, 09 Nov 2010 14:50:00 GMT 16Connection: close 17 18</data> 19<data2> 20HTTP/1.1 200 OK swsclose 21Location: this should be ignored 22Date: Thu, 09 Nov 2010 14:50:00 GMT 23Connection: close 24 25body 26</data2> 27<datacheck> 28HTTP/1.1 302 OK swsclose 29Location: ../../../../../../../510002 30Date: Thu, 09 Nov 2010 14:50:00 GMT 31Connection: close 32 33HTTP/1.1 200 OK swsclose 34Location: this should be ignored 35Date: Thu, 09 Nov 2010 14:50:00 GMT 36Connection: close 37 38body 39</datacheck> 40</reply> 41 42# 43# Client-side 44<client> 45<server> 46http 47</server> 48 <name> 49HTTP follow redirect with excessive ../ 50 </name> 51 <command> 52http://%HOSTIP:%HTTPPORT/we/are/all/twits/51 -L 53</command> 54</client> 55 56# 57# Verify data after the test has been "shot" 58<verify> 59<strip> 60^User-Agent:.* 61</strip> 62<protocol> 63GET /we/are/all/twits/51 HTTP/1.1 64Host: %HOSTIP:%HTTPPORT 65Accept: */* 66 67GET /510002 HTTP/1.1 68User-Agent: curl/7.10 (i686-pc-linux-gnu) libcurl/7.10 OpenSSL/0.9.6c ipv6 zlib/1.1.3 69Host: %HOSTIP:%HTTPPORT 70Accept: */* 71 72</protocol> 73</verify> 74</testcase> 75