from tests to spec and back
play

From Tests to Spec (and Back) A report on work that other people - PowerPoint PPT Presentation

Jul 08, 2023 •174 likes •419 views

From Tests to Spec (and Back) A report on work that other people have done but where a lot still remains to be done. Juhan Ernits Kberneetika Instituut hel ilusal talvisel peval Kokl (05.02.2005) The Setting We assume, that we are

  1. From Tests to Spec (and Back) A report on work that other people have done but where a lot still remains to be done. Juhan Ernits Küberneetika Instituut Ühel ilusal talvisel päeval Kokõl (05.02.2005)

  2. The Setting We assume, that we are interested in programs that work as intended. Observational estimate of the current state of matters: There are lots of programs out there. Most of them do not have formal specifications but some of them behave more or less as expected. Some programs have test suites. Fewer programs are attributed with annotations. Most programs are actually checked whether they fulfil their initial intention by end users.

  3. Verification Error! Program State 1: State 2: State 3: State 4: State 5: Logic Model ... Checking OK [](P <>S) � Given a program and spec, build a model of the program and use logic model checking for checking the correspondence. The checker either returns “OK” or “Error” together with a trace to the error state

  4. Some Issues in Verification Verification needs the desired properties to be defined in some formal way. But the properties are often Unspecified; Specified in prose (which is difficult to parse); Specified ambiguously, e.g. “the program should work correctly”. There are other issues but they are not relevant here.

  5. Test Suites More and more software builders pay attention to assembling test suites for automatically testing their products. The difference between testing and verification: Testing explores some scenarios and specifies expected outcome; Verification explores all scenarios regarding some specific property. What if we say that the test suite is representative of the properties that we are interested in?

  6. An approach by J. Yang and D. Evans Inference Testing Inferred Execution Program Properties Traces Candidate Property Test Suite Patterns

  7. Temporal Properties Let us consider just one class of properties, e.g. temporal properties. Temporal properties are about the order of events in a system. E.g. A file should be opened before it is read from. When the subscriber picks up the phone, dial-tone is always generated. We assert that temporal properties are hard to write manually in formal ways, e.g. using temporal logic.

  8. Temporal Logic (cont.) We assert that temporal properties are hard to write in formal ways, e.g. using temporal logic. You disagree? Try writing down a formula for “ P triggers S between Q (e.g., end of system initialization) and R (start of system shutdown)”

  9. Temporal Logic (cont.) We assert that temporal properties are hard to write in formal ways, e.g. using temporal logic. You disagree? Try writing down a formula for “ P triggers S between Q (e.g., end of system initialization) and R (start of system shutdown)” []((Q & !R & <>R) -> (P -> (!R U (S & !R))) U R)

  10. Property Patterns (Dwyer et al.) Property Patterns Occurrence � ✂ ✁ ✄ ✁ Chain Absence Bounded Existence Precedence Response Universality Existence Chain Response Precedence This classification is a result of reading 500+ natural language specifications of real programs. The patterns are like templates (in temporal logic) where one can plug in specific P-s, Q-s, R-s and S-s, i.e. specific events.

  11. Response Pattern Property Patterns Occurrence � ✂ ✁ ✄ ✁ Chain Absence Bounded Existence Precedence Response Universality Existence Chain Response Precedence A state/event P must always be followed by a state/event Q within a scope Or as a Quantified Regular Expression [ -P ] * ( P [ -S ] * S [ -P ] * ) * SPPSPS SPSP �

  12. Refined Response Pattern (Yang et al.) Alternating PSPS For each /\ combination of two events MultiEffect MultiCause EffectFirst Stricter PSS PPS Decide if they SPS satisfy CauseFirst , /\ /\ /\ OneCause , or OneEffect OneCause CauseFirst OneEffect Find the strictest SPSS PPSS SPPS pattern Response SPPSPS

  13. Find the Strictest Pattern For any two events determine the strictest pattern: Trace 1: PSPS Trace 2: PPS All Traces + + + CauseFirst + - - OneCause + + + OneEffect CauseFirst /\ OneEffect -> MultiCause J. Yang et al.

  14. Implementation Instrumentation Inference Inferred Testing Instrumented Execution Program Properties Program Traces Candidate Property Test Suite Patterns The traces are generated by running the test suites on an instrumented program. The program is instrumented at all method entry and exit points. The current implementation is a 900 line Perl program. This approach should have alternative implementations!

  15. Results and Perspective By using this approach it is possible to compare the temporal behaviour of different implementations of the same specification. compare different versions of some program to reveal differences in temporal behaviour. use this in conjuction with verification to improve test suites. automatically specify certain system call patterns of operating systems???

  16. Compare Different Versions of a Program Shared Difference Analyzer Dynamic Inference Properties Program Inferred Version 1 Properties 1 Inferred Program Different Properties 2 Version 2 Properties J. Yang

  17. Example: OpenSSL A widely used implementation of the Secure Socket Layer protocol Yang et al. looked at 6 different versions: [0.9.6, 0.9.7, 0.9.7a-d] The focus is on the handshake protocol. Manually instrumented server Modified client Executed each version of a server with 1000 randomly generated clients. J. Yang

  18. Client Server BEFORE+ACCEPT SR_CLNT_HELLO SW_SRVR_HELLO SW_CERT SW_KEY_EXCH SW_CERT_REQ SW_SRVR_DONE SW_FLUSH SR_CERT SR_KEY_EXCH SR_CERT_VRFY SR_FINISHED SW_CHANGE SW_FINISHED SW_FLUSH OK J. Yang

  19. Inferred Alternating Patterns 0.9.6 0.9.7 0.9.7a 0.9.7b 0.9.7c 0.9.7d Documented SR_KEY_EXCH → � � � � improvement SR_CERT_VRFY SW_CERT → � � � � � SW_KEY_EXCH SW_SRVR_DONE → � SR_CERT Race Fixed bug condition 7 alternating patterns same for all versions J.Yang

  20. Other Approaches to Automatic Spec Extraction Value relationships between variables Machine learning approach that discovers specifications a program must satisfy when interacting with an API Extraction of thread behaviour out of program code ...

  21. Conclusion Automatically inferring temporal properties has yielded practical results. Even simple property patterns reveal interesting properties. A lot still remains to be done! Like Looking at different property patterns; Building a property difference analyser (for program evolution); Improvement of test suites in conjunction with verification technology.

  22. References Jinlin Yang and David Evans, Dynamically inferring temporal properties. Proceedings of the ACM-SIGPLAN-SIGSOFT workshop on Program analysis for software tools and engineering. 2004. Matthew B. Dwyer, George S. Avrunin, James C. Corbett, Patterns in property specifications for finite-state verification. Proceedings of the 21st international conference on Software engineering. 1999. Jinlin Yang and David Evans, Automatically Inferring Temporal Properties for Program Evolution. Software Reliability Engineering, 2004. ISSRE 2004. Jinlin Yang's home page: http://www.cs.virginia.edu/~jy6q

  23. Thank you!

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

RSpec on Rails Tutorial https://ihower.tw 2016/8 Agenda Rails RSpec

RSpec on Rails Tutorial https://ihower.tw 2016/8 Agenda Rails RSpec

RSpec on Rails Tutorial https://ihower.tw 2016/8 Agenda Rails RSpec Model Spec, Routing Spec, Controller Spec, View Spec, Helper Spec Request Spec Feature Spec

945 views • 93 slides
SPEC MPI2007 Benchmarks for HPC Systems Ron Lieberman Dr. Matthias S. Mueller Chair, SPEC HPG

SPEC MPI2007 Benchmarks for HPC Systems Ron Lieberman Dr. Matthias S. Mueller Chair, SPEC HPG

SPEC MPI2007 Benchmarks for HPC Systems Ron Lieberman Dr. Matthias S. Mueller Chair, SPEC HPG Vice Chair, SPEC HPG HP-MPI Performance Deputy Director, CTO Hewlett-Packard Company Center for Information Services and High Performance

364 views • 20 slides
La La ser Spec Spec troscopy of Radioactive Atoms at the L ow E nergy B eamline Wilfried

La La ser Spec Spec troscopy of Radioactive Atoms at the L ow E nergy B eamline Wilfried

CORE Meeting, GSI, June 1 st 2005 La La ser Spec Spec troscopy of Radioactive Atoms at the L ow E nergy B eamline Wilfried Nrtershuser for the LaSpec collaboration University of Tbingen GSI Darmstadt Content Introduction and

511 views • 19 slides
Web &amp; TV Testing Task Force Mark Vickers Testing Use Cases 1. Now: Verify W3C spec

Web &amp; TV Testing Task Force Mark Vickers Testing Use Cases 1. Now: Verify W3C spec

Web &amp; TV Testing Task Force Mark Vickers Testing Use Cases 1. Now: Verify W3C spec development W3C WGs decide scope and extent 2. New: Improve consistency of web platform W3C builds tests to resolve platform inconsistencies 3. New:

230 views • 6 slides
GROVEDALE AVENUE BANNERMAN STREET ST. FIDELIS CATHOLIC ELEMENTARY SCHOOL RUSTIC ROAD SPEC ED

GROVEDALE AVENUE BANNERMAN STREET ST. FIDELIS CATHOLIC ELEMENTARY SCHOOL RUSTIC ROAD SPEC ED

GROVEDALE AVENUE BANNERMAN STREET ST. FIDELIS CATHOLIC ELEMENTARY SCHOOL RUSTIC ROAD SPEC ED SPEC ED SPEC ED SPEC ED CR1 WR WR STAIR C OFFICE KITCHEN ELEC GENERAL PURPOSE CUDOIAL WASTE ATRIUM LAN CUST STAIR A STOR WR WR WR

438 views • 6 slides
1 SPEC CPU Benchmark Other SPEC Benchmarks SPEC: Standard Performance Evaluation SPECviewperf

1 SPEC CPU Benchmark Other SPEC Benchmarks SPEC: Standard Performance Evaluation SPECviewperf

What Does Performance Mean? Response time Lecture 2: Performance Evaluation A simulation program finishes in 5 minutes Methods Throughput A web server serves 5 million request per Performance definition, benchmark, second summarizing

341 views • 4 slides
UI Presentation Design Spec Description So for this project we have a design spec for our UI,

UI Presentation Design Spec Description So for this project we have a design spec for our UI,

UI Presentation Design Spec Description So for this project we have a design spec for our UI, which gave us the requirements to achieve within the designs, those being user experience, usability and utility. The user experience is important as

514 views • 10 slides
Beyond Microbenchmarks The SPEC-RG Vision for A Comprehensive Serverless Benchmark Erwin van Eyk

Beyond Microbenchmarks The SPEC-RG Vision for A Comprehensive Serverless Benchmark Erwin van Eyk

Beyond Microbenchmarks The SPEC-RG Vision for A Comprehensive Serverless Benchmark Erwin van Eyk Joel Scheuner Simon Eismann Cristina L. Abad Alexandru Iosup HotCloudPerf @ ICPE 2020 SPEC RG CLOUD Serverless Activity Exploring

264 views • 22 slides
Measuring QoS in fixed and mobile networks Mari Ivona , spec. sci. E.E. Manager for Cable

Measuring QoS in fixed and mobile networks Mari Ivona , spec. sci. E.E. Manager for Cable

Measuring QoS in fixed and mobile networks Mari Ivona , spec. sci. E.E. Manager for Cable Distribution Systems Vujovi Ivan, spec. sci. E.E. Senior advisor for RF spectrum control &amp; monitoring Agency for Electronic Communications &amp;

781 views • 18 slides
Benchmark Design for Robust Profile-Directed Optimization SPEC Workshop 2007 Paul Berube and

Benchmark Design for Robust Profile-Directed Optimization SPEC Workshop 2007 Paul Berube and

Benchmark Design for Robust Profile-Directed Optimization SPEC Workshop 2007 Paul Berube and Jos Nelson Amaral University of Alberta NSERC Alberta Ingenuity iCore January 21, 2007 Paul Berube 1 In this talk SPEC: SPEC

616 views • 36 slides
Writing reliable end to end tests End to end browser tests They take a long time to run. Around

Writing reliable end to end tests End to end browser tests They take a long time to run. Around

Writing reliable end to end tests End to end browser tests They take a long time to run. Around 4-12 hours Long feedback cycles Tough to read or modify Flaky Not part of the development life cycle Unit tests are End to end important but they End

530 views • 38 slides
What is on the tests? What comes to mind when you think of this test? What is on the

What is on the tests? What comes to mind when you think of this test? What is on the

What is on the tests? What comes to mind when you think of this test? What is on the tests? Content What is on the tests? Content ELA Grammar, Writing skills, Vocabulary, Reading Comp What is on the tests? Content

565 views • 38 slides
Comparing User-Provided Tests to Developer-Provided Tests Ren Just, Chris Parnin, Ian Drosos,

Comparing User-Provided Tests to Developer-Provided Tests Ren Just, Chris Parnin, Ian Drosos,

Comparing User-Provided Tests to Developer-Provided Tests Ren Just, Chris Parnin, Ian Drosos, Michael D. Ernst ISSTA 2018 User-provided tests Developer-provided tests Found in bug reports Committed to repository One small test More tests,

757 views • 29 slides
COLLEGE TESTING Which tests do our students take? SAT ACT Subject Tests APs

COLLEGE TESTING Which tests do our students take? SAT ACT Subject Tests APs

COLLEGE TESTING Which tests do our students take? SAT ACT Subject Tests APs TOEFL Things to Know These tests are designed to measure college readiness for students. Colleges vary in the importance they place on

431 views • 26 slides
Pavement Preservation Overband Crack Seal ODOT Spec #423 Fog Seal ODOT Special

Pavement Preservation Overband Crack Seal ODOT Spec #423 Fog Seal ODOT Special

Pavement Preservation Overband Crack Seal ODOT Spec #423 Fog Seal ODOT Special Provision Onyx ODOT Special Provision Chip Seal ODOT Spec #422 Micro Surfacing ODOT Spec #421 Overband Crack Seal ODOT Spec #423

884 views • 69 slides
WHAT CAN WE DO WHEN WE LACK ADEQUATE TESTS ? 58 th CREST Open Workshop Breakout discussion

WHAT CAN WE DO WHEN WE LACK ADEQUATE TESTS ? 58 th CREST Open Workshop Breakout discussion

WHAT CAN WE DO WHEN WE LACK ADEQUATE TESTS ? 58 th CREST Open Workshop Breakout discussion summary CREATE TESTS EvoSuite Record real world usage Re-use tests from tests across (compatible) components Metamorphic testing

513 views • 6 slides
Geo-Replicated Transaction Commit in 3 Message Delays Robert Escriva VMWare June 9, 2017

Geo-Replicated Transaction Commit in 3 Message Delays Robert Escriva VMWare June 9, 2017

Geo-Replicated Transaction Commit in 3 Message Delays Robert Escriva VMWare June 9, 2017 Geo-Replicated Transaction ,Commit in 3 Message Delays 1 / 45 Geo-Replication: A 539-Mile-High View Geo-replicated distributed systems have

606 views • 60 slides
Overview of Language-Based Security Bibliography Dan Grossman 13 October 2004 Papers are

Overview of Language-Based Security Bibliography Dan Grossman 13 October 2004 Papers are

Overview of Language-Based Security Bibliography Dan Grossman 13 October 2004 Papers are organized by topic, in the order of the presentation. There are more papers here than discussed in the presentation. Language-based security is a big

373 views • 8 slides
Unique Maximum Facial Colorings Vesna Andova Bernard Lidick y Borut Lu zar Riste Kacy

Unique Maximum Facial Colorings Vesna Andova Bernard Lidick y Borut Lu zar Riste Kacy

Unique Maximum Facial Colorings Vesna Andova Bernard Lidick y Borut Lu zar Riste Kacy Messerschmidt Skrekovski AMS Sectional meeting #1132 Buffalo, NY Sep 16, 2017 Graph Coloring Definition A (proper) coloring of a graph G is a

1.36k views • 63 slides
Propagators: An Introduction George Wilson Data61/CSIRO george.wilson@data61.csiro.au 14th

Propagators: An Introduction George Wilson Data61/CSIRO george.wilson@data61.csiro.au 14th

Propagators: An Introduction George Wilson Data61/CSIRO george.wilson@data61.csiro.au 14th November 2017 What? Why? R 2 R 3 V 1 Beginnings as early as the 1970s at MIT R 1 Guy L. Steele Jr. Gerald J. Sussman Richard Stallman

1.58k views • 141 slides
A sample paper that we are writing in the class Ali Ahmadi, Jafar Mohammadi October 26, 2019 2

A sample paper that we are writing in the class Ali Ahmadi, Jafar Mohammadi October 26, 2019 2

A sample paper that we are writing in the class Ali Ahmadi, Jafar Mohammadi October 26, 2019 2 Contents 1 Chapter Title 9 1.1 Another section . . . . . . . . . . . . . . . . . . . . . . . . . . 9 1.2 Introduction . . . . . . . . . . . .

236 views • 23 slides
Gifted for the Good of the group 1 Corinthians 12 1 Corinthians 12 1 Corinthians 12 1

Gifted for the Good of the group 1 Corinthians 12 1 Corinthians 12 1 Corinthians 12 1

1 Corinthians Gifted for the Good of the group 1 Corinthians 12 1 Corinthians 12 1 Corinthians 12 1 Corinthians 12 Gifted for the good of the group Now you are the body of Christ, Now you are the body of Christ, Now you are the body of

208 views • 20 slides
II Corinthians 12:1-11 Canal Days Canal Days Fishing on soccer pitch Fishing on soccer pitch

II Corinthians 12:1-11 Canal Days Canal Days Fishing on soccer pitch Fishing on soccer pitch

II Corinthians 12:1-11 Canal Days Canal Days Fishing on soccer pitch Fishing on soccer pitch Grazing Goat Grazing Goat Dog with a Cone Dog with a Cone My grace is enough; it s all you need. My strength comes into its own in your

502 views • 23 slides
CHURCH MATTERS A Series on 1 Corinthians 1 CORINTHIANS 4:14-21 ESV 14 I do not write these

CHURCH MATTERS A Series on 1 Corinthians 1 CORINTHIANS 4:14-21 ESV 14 I do not write these

CHURCH MATTERS A Series on 1 Corinthians 1 CORINTHIANS 4:14-21 ESV 14 I do not write these things to make you ashamed, but to admonish you as my beloved children. 15 For though you have countless guides in Christ, you do not have many fathers.

362 views • 8 slides

More recommend