TraceIntoBeyondTraceCoverage/TraceIntoBeyondTraceRecord/tibt

Perform StepInto until the program reaches somewhere outside the trace coverage. This is similar to ticnd tr.hitcount(cip)==0&&arg1, arg2 except that it achieves higher performance by avoiding the expression function invocation.

Usage example: If you want to find out the forking point of the program when different inputs are provided, first enable or re-enable trace coverage to clean trace coverage data. Then you trace while input A is provided. Finally you provide input B and execute TraceIntoBeyondTraceRecord command. The program will be paused where the instruction is never executed before.

arguments

[arg1] The break condition of tracing. When this condition is satisfied, tracing will stop regardless of EIP/RIP location. If this argument is not specified then tracing will be unconditional.

[arg2] The maximun steps before the debugger gives up. If this argument is not specified, the default value will be 50000.

result

This command does not set any result variables.