12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758 |
- #ifndef CFUZZ_H_
- #define CFUZZ_H_
- //the int len_* fields are only used for copying the data to a packet,
- //so no fuzzing on those fields! Fuzzing should only be done on u_char datatypes
- //Information element
- typedef struct {
- u_char id;
- u_char len;
- int len_data;
- u_char *data;
- } infoElem;
- //Probe response frame
- typedef struct {
- int len_radioTapHdr; //usually 32 bytes
- u_char *radioTapHdr;
- int len_type; //1 byte
- u_char *type; //Protocol version, type and subtype
- int len_flags; //1 byte
- u_char *flags; //to DS, from DS, more Frag, Retry, Pwr Mgt, more Data, WEP, Order
- int len_duration; //2 bytes
- u_char *duration;
- int len_destAddr; //6 bytes
- u_char *destAddr;
- int len_sourceAddr; //6 bytes
- u_char *sourceAddr;
- int len_bssAddr; //6 bytes
- u_char *bssAddr;
- int len_seqNr; //2 bytes
- u_char *seqNr;
- int len_timeStamp; //8 bytes
- u_char *timeStamp;
- int len_beaconInterval; //2 bytes
- u_char *beaconInterval;
- int len_capabInfo; //2 bytes
- u_char *capabInfo;
- int len_taggedParams; //variable size
- infoElem *taggedParams;
- int len_fsc; //4 bytes
- u_char *fsc;
- } probeResponse;
- #endif
|