rizin icon indicating copy to clipboard operation
rizin copied to clipboard
verified publisher icon rizinorg

Legacy search commands refactoring

Open Rot127 opened this issue 3 months ago • 2 comments

Tracking issue for the search commands still using legacy search code.

  • [ ] /a analysis search. Waiting for RzArch and new analysis loop.
  • [ ] /cc Collision search. Needs rewrite. Multithreaded/GPU support?
  • [ ] /p Patterns search. Needs to be defined properly, then a rewrite. https://github.com/rizinorg/rizin/issues/5245
  • [ ] /d Search delta key. What is this?
  • [ ] /f/ Forward search. Should be removed.
  • [ ] /d No description. Should be removed.
  • [ ] /+ Construct the string with chunks. Splits string into chunks and searches it. If no match, split and search again.

Rot127 avatar Sep 09 '25 12:09 Rot127

Didn't find any test or documentation for /d - remove, same with /f/.

As for chunks, it splits the string into multiple chunks, so it could be reused e.g. in the ROP chain, if the whole string is not avaiable in the binary. Sometimes it might be helpful. But kinda rare. Or it can detect if the code forms the string on the fly. It splits the string into chunks of N length, if not found - further to chunks with N-1 length, and so on recursively.

notxvilka avatar Sep 25 '25 15:09 notxvilka

As for chunks, it splits the string into multiple chunks, so it could be reused e.g. in the ROP chain, if the whole string is not avaiable in the binary. Sometimes it might be helpful. But kinda rare. Or it can detect if the code forms the string on the fly. It splits the string into chunks of N length, if not found - further to chunks with N-1 length, and so on recursively.

Updated the description. Seems like a special case of /z. Think we can add it there.

Rot127 avatar Sep 26 '25 09:09 Rot127