radare2/TODO

 ____  ___ ____  ___ ____  ___  ______   ____
|  _ \/   \'   \/   \  _ \/ _ \ \__   | /    \
|    <  V  . T  . V      <   _/ .--'_/ |  ()  |
|_|\__|_|__|___/|_|_|_|\__\___/ |_____(_)____/

----------------------------------------[ todo 
33       decompilation               -- we need better code analysis, but basic decompilation will be in 0.5
29       bindiffing (graph)          -- nibble is working on this too, pancake has some binary diffing in C
26       better code analysis        -- nibble is mainly working on this now
25       windows support             -- please report bugs, pancake will
22       gdb remote support          -- not prioritary atm (volunteers?) linked to bochs/qemu
20       hardware breakpoints        -- no plans for next release..will probably be in 0.6
18       code emulation              -- some work has been done in r_vm, but needs much more refactoring
18       Debug programs in isolated environment
                                     -- this is simple issue, any volunteer?
14       threaded debugger           -- some work will be done, but dont expect big changes
13       radare scripting like in r1 -- please, report issues in mailing list or privmail
13       dalvik (android)            -- no plans, no hw, any volunteer? please ask for things to be done if you want to help on this
11       write support for RBin      -- nibble will work on this, but code analysis is prioritary atm
11       bochs and qemu support      -- very low priority, this depends on gdb support
9        pdb support                 -- any volunteer to convert pdb into radare script
9        RLine with autocompletion   -- no plans atm, but this feature will come eventually
8        signature support           -- DONE (volunteers to generate database
6        web interface               -- volunteers?
5        floating point debugger     -- very low priority at this point
3        osx support                 -- x86-32 and x86-64 hardware required, volunteers? read doc/osx fmi
3        extended dwarf support      -- zero priority for next release :)
----------------------------------------[ todo 

<{include libr/TODO}>
** See libr/*/TODO FMI

* Merge r_socket inside r_util ?
* Move disasm loop into r_print (r_print should depend on r_asm)

* visual byte cursor in disassembly

* stack analysis
* code analysis with r_parse
  RAnalAopArg {
    int size;
    int delta;
    int type;
  }
  r_anal_aop_arg_set ();
  r_anal_aop_arg_get ();
  r_anal_aop_arg_binmask ();

* Move 'r_syscall_t' stuff into r_debug
  - Sync r_core

* /main segfaults
 - this is because regexp dosnt works -- NEEDS FIX
 - overflows the console.. -- NEEDS FIX

* Finish to write manpages
  - manpages for r2, r2rc, r2rc-tool, rafind2 and rasign2 are missing

BUGS
====
  * anal fastargs
  * anal_x86_x86im vars 0xff...
  * console grep
  * x@esp&&x@eip  # BUG

* analyze push arguments before function calls
  - define number of arguments for given function
  - when the number of arguments differs between the calling
    and the result of the code analysis of the given function
    we should warn
    - this kind of warnings must be done with r_log_ functions
      so we hook it into a log file

* diff code analysis
  - diff two programs
     1st level:
        - check all functions EQUAL, DIFFERENT, REMOVED, ADDED
        - check all symbols
        - check all imports
        - check all strings
     2nd level:
        - basic block level diffing (output in graph mode)

* Implement process launcher wrapper
  - opens xterm and redirects stdin/stdout/stderr
  - Allows to change chroot
  - Allows to setup chroot
  - Define uid/gid

* is RCore->block and blocksize a RBuf ? refactor!11
 
* 'Vc' cursor mode makes color toggle

* radare2 -e dbg.engine=vm -d ls
  - load the program using r_bin in virtual space
  - initialize vm and set regs
  - debug backend should use the vm

* Script plugins
 - We should enable r_lib to implement plugins in any
   scripting language, so we can for example prepare
   a .c stub interface for python/perl/ruby/..
   - this requires a swig bridge
* Fix segfault when using '&&'. Lost allocated pointer * Fix some valgrind warnings - The debugger+visual is now working more stable * Comment 'strip -s' command in stripsyms.sh - We need a better way to configure all this stuff (spp?) 2009-04-02 00:07:58 +00:00			`____ ___ ____ ___ ____ ___ ______ ____`
			`\| _ \/ \' \/ \ _ \/ _ \ \__ \| / \`
			`\| < V . T . V < _/ .--'_/ \| () \|`
			`\|_\|\__\|_\|__\|___/\|_\|_\|_\|\__\___/ \|_____(_)____/`

* Added doodle results in main TODO file * Added r_flags.vapi in r2-swig - Add example usage - Add missing r_core.deps - There are some bugs there while accessing inner fields of RCore :/ 2010-04-09 17:13:35 +02:00			`----------------------------------------[ todo`
			`33 decompilation -- we need better code analysis, but basic decompilation will be in 0.5`
			`29 bindiffing (graph) -- nibble is working on this too, pancake has some binary diffing in C`
			`26 better code analysis -- nibble is mainly working on this now`
			`25 windows support -- please report bugs, pancake will`
			`22 gdb remote support -- not prioritary atm (volunteers?) linked to bochs/qemu`
			`20 hardware breakpoints -- no plans for next release..will probably be in 0.6`
			`18 code emulation -- some work has been done in r_vm, but needs much more refactoring`
			`18 Debug programs in isolated environment`
			`-- this is simple issue, any volunteer?`
			`14 threaded debugger -- some work will be done, but dont expect big changes`
			`13 radare scripting like in r1 -- please, report issues in mailing list or privmail`
			`13 dalvik (android) -- no plans, no hw, any volunteer? please ask for things to be done if you want to help on this`
			`11 write support for RBin -- nibble will work on this, but code analysis is prioritary atm`
			`11 bochs and qemu support -- very low priority, this depends on gdb support`
			`9 pdb support -- any volunteer to convert pdb into radare script`
			`9 RLine with autocompletion -- no plans atm, but this feature will come eventually`
			`8 signature support -- DONE (volunteers to generate database`
			`6 web interface -- volunteers?`
			`5 floating point debugger -- very low priority at this point`
			`3 osx support -- x86-32 and x86-64 hardware required, volunteers? read doc/osx fmi`
			`3 extended dwarf support -- zero priority for next release :)`
* Fix segfault when using '&&'. Lost allocated pointer * Fix some valgrind warnings - The debugger+visual is now working more stable * Comment 'strip -s' command in stripsyms.sh - We need a better way to configure all this stuff (spp?) 2009-04-02 00:07:58 +00:00			`----------------------------------------[ todo`
* Major refactoring patch - Remove plugin prefixes - It was unnecessary complicated - Remove unused code - Some RAPIfication - Rename _set( methods into _use( - Simplify some string processing - r_parse is working again - Sync all those api changes in r_core - External static plugin lists moved to .c - Fix some cast-related segfaults in core * Review the r_search API - RAPIfication - Allow to pass NULL as binmask - Added TODO with some more ideas 2009-09-24 12:29:05 +02:00
* Fix segfault when using '&&'. Lost allocated pointer * Fix some valgrind warnings - The debugger+visual is now working more stable * Comment 'strip -s' command in stripsyms.sh - We need a better way to configure all this stuff (spp?) 2009-04-02 00:07:58 +00:00			`<{include libr/TODO}>`
* Do not ask to save project when project file is "" * Clean and refactor of the TODO 2010-04-07 11:07:59 +02:00			`** See libr/*/TODO FMI`
* Initial working implementation of the r_diff with delta in C - Uses the mercurial's C algorithm for delta diffing - Remove r_diff_lines .. do we need a line-level diffing tool? - Remove -l flag from radiff2 * Rename RIo to RIO * Added r_reg_arena_new () to simplify arena creation - Some sanity fixes in r_reg arena.c * Add -C in rasm2 to output in C string format * Initial working implementation of r_debug_execute to inject code in child process and restore memory and registers - Returns %a0 register value in ut64 * Added 'c' command to r_core - to compare -- just dummy - Will use r_diff - if rdiff callback returns NULL, we must stop scanning - old r_diff_buffers_delta is now named buffers_radiff - Added test files in diff/t/{file1,file2} * Added doc/plugins documentation file * Fix ${EXT_SO} in bin/p and asm/p (dejavu?) * Added dummy asm_gas r_asm plugin * Various random syntax fixes * Rename 'dbg.ptrace' to 'dbg.native' * Added r_debug_io_bind () to sync dbg and bp io_bind * r_debug_map_list is now in a nicer format * Append ${EXT_EXE} in diff/t * Add missing util/log.c and vapi/r_line.vapi --HG-- rename : libr/debug/p/debug_ptrace.c => libr/debug/p/debug_native.c rename : libr/debug/p/ptrace.mk => libr/debug/p/native.mk 2010-02-05 12:21:37 +01:00
* strnlen helper in format/elf/elf.c is now static inline * Some random syntax cleanups * Fixes some warnings in r_socket on w32 2010-04-14 13:28:56 +02:00			`* Merge r_socket inside r_util ?`
* Initial refactoring work for 'pd' and 'pD' commands - Colorize bytes and offset when scr.color=true - Still needs to be moved to r_print - Needs cleanup, optimization and simplification 2010-04-14 22:28:45 +02:00			`* Move disasm loop into r_print (r_print should depend on r_asm)`
* strnlen helper in format/elf/elf.c is now static inline * Some random syntax cleanups * Fixes some warnings in r_socket on w32 2010-04-14 13:28:56 +02:00
* Fix one-byte overflow in r_cons_memcat * Fix flagSort command (fS) - sort by name is now done by strcmp - str_hash and str_hash64 are not enought * Use r_cons in flag/t .. we must drop this dependency * Add 'all-flagspaces' entry in Vt menu - When switching back to visual mode, the print mode is not lost * Some code cleanup 2010-04-09 13:24:40 +02:00			`* visual byte cursor in disassembly`
* Initial working implementation of the signatures - Support raw search - Allow to check for each analyzed function .zc@@fcn - Added 'zc' and 'zp' commands - Remove 'az' commands 2010-04-08 15:48:53 +02:00
* Do not ask to save project when project file is "" * Clean and refactor of the TODO 2010-04-07 11:07:59 +02:00			`* stack analysis`
			`* code analysis with r_parse`
* Fix one-byte overflow in r_cons_memcat * Fix flagSort command (fS) - sort by name is now done by strcmp - str_hash and str_hash64 are not enought * Use r_cons in flag/t .. we must drop this dependency * Add 'all-flagspaces' entry in Vt menu - When switching back to visual mode, the print mode is not lost * Some code cleanup 2010-04-09 13:24:40 +02:00			`RAnalAopArg {`
			`int size;`
			`int delta;`
			`int type;`
			`}`
			`r_anal_aop_arg_set ();`
			`r_anal_aop_arg_get ();`
			`r_anal_aop_arg_binmask ();`
* Do not ask to save project when project file is "" * Clean and refactor of the TODO 2010-04-07 11:07:59 +02:00
			`* Move 'r_syscall_t' stuff into r_debug`
			`- Sync r_core`
* Implement 'wc' command to list, commit and reset cache changes - Added doc/iocache with a usage session of 'wc' command - Needs io.cache=true - This is the replacement of the 'undo' feature of radare1 - Removed cache-related code from the r_vm module 2010-03-30 23:12:19 +02:00
			`* /main segfaults`
			`- this is because regexp dosnt works -- NEEDS FIX`
			`- overflows the console.. -- NEEDS FIX`

* Do not ask to save project when project file is "" * Clean and refactor of the TODO 2010-04-07 11:07:59 +02:00			`* Finish to write manpages`
			`- manpages for r2, r2rc, r2rc-tool, rafind2 and rasign2 are missing`
* Release and bump version 0.4 * Use posix shell for libr/rpathstrip.sh 2010-03-25 23:57:15 +01:00
* Added csr code analysis plugin - Cleaned up version from r1 code - Build asm.csr and anal.csr by default * Added 'dsu' command. step until * Remove vala and swig checks in configure.acr --HG-- rename : libr/asm/arch/csr/csr_disasm/dis.c => libr/asm/arch/csr/dis.c rename : libr/asm/arch/csr/csr_disasm/dis.h => libr/asm/arch/csr/dis.h 2010-03-23 12:30:04 +01:00			`BUGS`
			`====`
			`* anal fastargs`
* r_anal - Add r_anal_strmask - Add nopcode (opcode count) to RAnalAop * r_util - Fix constant types in r_types_base * Add r_anal stuff to TODO 2010-05-16 14:04:08 +02:00			`* anal_x86_x86im vars 0xff...`
* Added csr code analysis plugin - Cleaned up version from r1 code - Build asm.csr and anal.csr by default * Added 'dsu' command. step until * Remove vala and swig checks in configure.acr --HG-- rename : libr/asm/arch/csr/csr_disasm/dis.c => libr/asm/arch/csr/dis.c rename : libr/asm/arch/csr/csr_disasm/dis.h => libr/asm/arch/csr/dis.h 2010-03-23 12:30:04 +01:00			`* console grep`
			`* x@esp&&x@eip # BUG`

* Initial split of r_search_keyword * Fix -soname of osx linker (-install_name) * Added OSX build instructions in doc/osx 2010-04-05 22:49:22 +02:00			`* analyze push arguments before function calls`
			`- define number of arguments for given function`
			`- when the number of arguments differs between the calling`
			`and the result of the code analysis of the given function`
			`we should warn`
			`- this kind of warnings must be done with r_log_ functions`
			`so we hook it into a log file`

* Some sorting of TODOs * Disable asm.x86.nasm assembly on non-intel syntax * rpathstrip after install (should fix debian issue) 2010-03-25 21:14:28 +01:00			`* diff code analysis`
			`- diff two programs`
			`1st level:`
			`- check all functions EQUAL, DIFFERENT, REMOVED, ADDED`
			`- check all symbols`
			`- check all imports`
			`- check all strings`
			`2nd level:`
			`- basic block level diffing (output in graph mode)`

* Huge refactoring on r_syscall - Integrated with core 'as' command. as? for help - Display formatted parametters of syscalls - Needs to fully implement this everywhere - Syscall argument parsing is not yet complete (<4args) - r_debug_arg_{set\|get} * Implement continue until syscall on Linux debugger backend * Lot of syntax cleanup to use the new code convention - Clean r_sign, r_search, r_syscall * Define global R_SYS_ARCH, _OS and _BITS - Handle asm.os and asm.arch to hook r_syscall plugins - Display 8 or 16 zeros depending on asm.bits - Added r_str_filter () to filter nonprintable chars --HG-- rename : libr/search/stripstr.c => libr/search/strings.c 2010-03-04 01:46:25 +01:00			`* Implement process launcher wrapper`
			`- opens xterm and redirects stdin/stdout/stderr`
			`- Allows to change chroot`
			`- Allows to setup chroot`
			`- Define uid/gid`

* Initial working implementation of the r_diff with delta in C - Uses the mercurial's C algorithm for delta diffing - Remove r_diff_lines .. do we need a line-level diffing tool? - Remove -l flag from radiff2 * Rename RIo to RIO * Added r_reg_arena_new () to simplify arena creation - Some sanity fixes in r_reg arena.c * Add -C in rasm2 to output in C string format * Initial working implementation of r_debug_execute to inject code in child process and restore memory and registers - Returns %a0 register value in ut64 * Added 'c' command to r_core - to compare -- just dummy - Will use r_diff - if rdiff callback returns NULL, we must stop scanning - old r_diff_buffers_delta is now named buffers_radiff - Added test files in diff/t/{file1,file2} * Added doc/plugins documentation file * Fix ${EXT_SO} in bin/p and asm/p (dejavu?) * Added dummy asm_gas r_asm plugin * Various random syntax fixes * Rename 'dbg.ptrace' to 'dbg.native' * Added r_debug_io_bind () to sync dbg and bp io_bind * r_debug_map_list is now in a nicer format * Append ${EXT_EXE} in diff/t * Add missing util/log.c and vapi/r_line.vapi --HG-- rename : libr/debug/p/debug_ptrace.c => libr/debug/p/debug_native.c rename : libr/debug/p/ptrace.mk => libr/debug/p/native.mk 2010-02-05 12:21:37 +01:00			`* is RCore->block and blocksize a RBuf ? refactor!11`
* Add 'r_io_undo' * Added deinitializators for r_io_cache 2009-09-08 18:16:52 +00:00
* cleanup the TODO file * Added cfg.debug config variable * Fix the basic stuff for r.dbg.reg api integrated with core * Failover into the plugin breakpoint implementation to support non memory breakpoints like API ones or hardware ones * Added initial non-working version of the gdbwrap debug plugin - We need to design an IO plugin for gdbwrap too (or a way to change the IO based on the debug plugin) 2009-04-17 11:42:45 +00:00			`* 'Vc' cursor mode makes color toggle`
* Move buf_hex memcpy in r_asm instead of dupped code in every plugin - Plugins needs to be synced * Added x86nasm assembler backend to handle x86-64 - Not yet working. Pretty buggy :) * Fix support of building static plugins for r_bp - Statically link r_bp_x86 by default * Implement ugly r_sys_cmd_str() command in r_util 2009-04-13 22:47:02 +00:00
* More work on visual core - Added initial cursor support - Q also for quit - Added visual prompt * Added date.c * Move cursor responsability to r_print * Make r_cons_invert work also for noncolor terminals * Added r_num_minmax_swap_i in r_util 2009-02-09 12:42:54 +01:00			`* radare2 -e dbg.engine=vm -d ls`
			`- load the program using r_bin in virtual space`
			`- initialize vm and set regs`
			`- debug backend should use the vm`
* Fix warn in javasm.c * Fix asm_x86 makefile rule dup * Fix build of x86_bea plugin * Add asm.offset and asm.bytes in r_core 2009-03-09 02:03:32 +00:00
			`* Script plugins`
			`- We should enable r_lib to implement plugins in any`
			`scripting language, so we can for example prepare`
			`a .c stub interface for python/perl/ruby/..`
* Do not ask to save project when project file is "" * Clean and refactor of the TODO 2010-04-07 11:07:59 +02:00			`- this requires a swig bridge`