quickcheck beyond the basics
play

QuickCheck: Beyond the Basics Dave Laing May 13, 2014 Basic - PowerPoint PPT Presentation

Sep 12, 2022 •423 likes •807 views

QuickCheck: Beyond the Basics Dave Laing May 13, 2014 Basic QuickCheck Some properties reverse_involutive :: [Int] -> Bool reverse_involutive xs = xs == (reverse . reverse) xs sort_idempotent :: [Int] -> Bool sort_idempotent xs =

  1. QuickCheck: Beyond the Basics Dave Laing May 13, 2014

  2. Basic QuickCheck

  3. Some properties reverse_involutive :: [Int] -> Bool reverse_involutive xs = xs == (reverse . reverse) xs sort_idempotent :: [Int] -> Bool sort_idempotent xs = sort xs == (sort . sort) xs map_reverse :: Blind (Int -> String) -> [Int] -> Bool map_reverse (Blind f) xs = (reverse . map f) xs == (map f . reverse) xs

  4. Potential pitfall 1 - exhaustion mod2_precondition :: [Int] -> Property mod2_precondition xs = all ((== 0) . (‘mod‘ 2)) xs ==> xs == map ((* 2) . (‘div‘ 2)) xs > mod2_precondition *** Gave up! Passed only 62 tests.

  5. Workaround newtype EvenList a = EvenList { getList :: [a] } deriving (Eq, Show) instance (Arbitrary a, Integral a) => Arbitrary (EvenList a) where arbitrary = EvenList <$> oneof [ return [] , liftM2 (:) (liftM (* 2) arbitrary) (liftM getList arbitrary) ]

  6. Workaround mod2_precondition :: EvenList Int -> Bool mod2_precondition (EvenList xs) = xs == map ((* 2) . (‘div‘ 2)) xs > quickCheck mod2_precondition +++ OK, passed 100 tests.

  7. Potential pitfall 2 - coverage mod2_precondition :: EvenList Int -> Property mod2_precondition (EvenList xs) = collect (length xs) $ xs == map ((* 2) . (‘div‘ 2)) xs > quickCheck mod2_precondition +++ OK, passed 100 tests. 41% 0 28% 1 12% 3 9% 2 4% 4 2% 7 2% 6 2% 5

  8. Workaround instance (Arbitrary a, Integral a) => Arbitrary (EvenList a) where arbitrary = EvenList <$> frequency [ (1, return []) , (4, liftM2 (:) (liftM (* 2) arbitrary) (liftM getList arbitrary)) ]

  9. Workaround > quickCheck mod2_precondition +++ OK, passed 100 tests. 17% 1 16% 2 15% 0 12% 4 12% 3 6% 5 5% 6 4% 7 3% 9 3% 12 3% 11 2% 8 1% 20 1% 14

  10. Workaround mod2_precondition :: EvenList Int -> Property mod2_precondition (EvenList xs) = cover ((> 2) . length $ xs) 50 "non-trivial" $ xs == map ((* 2) . (‘div‘ 2)) xs > quickCheck mod2_precondition +++ OK, passed 100 tests (only 49% non-trivial; not 50%). > quickCheck mod2_precondition +++ OK, passed 100 tests.

  11. Potential pitfall 3 - infinite structures data EvenTree a = Leaf | Node (EvenTree a) a (EvenTree a) deriving (Eq, Show) instance (Arbitrary a, Integral a) => Arbitrary (EvenTree a) where arbitrary = frequency [ (1, return Leaf) , (3, liftM3 Node arbitrary ((* 2) <$> arbitrary) arbitrary) ]

  12. Workaround instance (Arbitrary a, Integral a) => Arbitrary (EvenTree a) where arbitrary = sized arbTree arbTree :: (Arbitrary a, Integral a) => Int -> Gen (EvenTree a) arbTree 0 = return Leaf arbTree n = frequency [ (1, return Leaf) , (3, liftM3 Node shrub ((* 2) <$> arbitrary) shrub) ] where shrub = arbTree (n ‘div‘ 2)

  13. Testing from specifications

  14. An abstract queue empty :: Queue a isEmpty :: Queue a -> Bool peek :: Queue a -> a add :: a -> Queue a -> Queue a remove :: Queue a -> Queue a

  15. An algebraic specification isEmpty empty = True isEmpty (add x xq) = False peek (add x empty) = x peek (add x (add y yq)) = peek (add y yq) remove (add x empty) = empty remove (add x (add y yq)) = add x (remove (add y yq))

  16. A list-based queue type Queue a = [a] empty = [] -- empty :: Queue a isEmpty = null -- isEmpty :: Queue a -> Bool peek = head -- peek :: Queue a -> a add x xs = xs ++ [x] -- add :: a -> Queue a -> Queue a remove = tail -- remove :: Queue a -> Queue a

  17. The algebraic specification in QuickCheck -- isEmpty empty = True -- isEmpty (add x xq) = False emptyAssert :: Assertion emptyAssert = isEmpty empty @?= True nonEmptyProp :: Int -> Queue Int -> Bool nonEmptyProp x = not . isEmpty . add x

  18. The algebraic specification in QuickCheck -- peek (add x empty) = x -- peek (add x (add y yq)) = peek (add y yq) peekAddEmptyProp :: Int -> Bool peekaddEmptyProp x = peek (add x empty) == x peekAddNonEmptyProp :: Int -> Queue Int -> Property peekAddNonEmptyProp x xs = (not . isEmpty) xs ==> peek (add x xs) == peek xs

  19. The algebraic specification in QuickCheck -- remove (add x empty) = empty -- remove (add x (add y yq)) = add x (remove (add y yq)) removeAddEmptyProp :: Int -> Bool removeAddEmptyProp x = remove (add x empty) == empty removeAddNonEmptyProp :: Int -> Queue Int -> Property removeAddNonEmptyProp x xs = (not . isEmpty) xs ==> remove (add x xs) ‘equiv‘ add x (remove xs)

  20. Model-based testing

  21. A faster queue data Queue a = Queue [a] [a] empty = Queue [] [] isEmpty (Queue xs ys) = null xs peek (Queue (x : _) _) = x remove (Queue (_ : xs) ys) = mkValid xs ys add x (Queue xs ys) = mkValid xs (x : ys) mkValid [] ys = Queue (reverse ys) [] mkValid xs ys = Queue xs ys

  22. The setup import qualified FastQueue as F import qualified ListQueue as L toBasic :: F.Queue a -> L.Queue a valid :: F.Queue a -> Bool

  23. Testing the model emptyAssertion = toBasic F.empty @?= L.empty isEmptyProperty q = F.isEmpty q == (L.isEmpty . toBasic) q

  24. Testing the model peekProperty q = (not . F.isEmpty) q ==> F.peek q == (L.peek . toBasic) q addProperty x q = (toBasic . F.add x) q == (L.add x . toBasic) q removeProperty q = (not . F.isEmpty) q ==> (toBasic . F.remove) q == (L.remove . toBasic) q

  25. Testing monadic code

  26. General points • We want the ability to • generate an arbitrary list of actions that we can perform • carry out those actions in a context • We can model actions using the free monad version of the monad under test • We can use Arbitrary to generate a list of these actions • requires some thinking to make sure that we remain in a valid state

  27. General points data QueueF a k = Empty k | IsEmpty (Bool -> k) | Peek (a -> k) | Remove k | Add a k deriving (Functor) type Queue a r = Free (QueueF a) r add :: a -> Queue a () add x = liftF $ Add x () ...

  28. General points import qualified Queue.Free as F type Action a = F.Queue a () actions :: Arbitrary a => Int -> Gen [Action a] actions n = oneof $ [ return [] , liftM2 (:) (liftM F.add arbitrary) (actions (n + 1)) ] ++ if n == 0 then [] else [ liftM (F.remove :) (actions (n - 1)) , liftM (void F.peek :) (actions n) ]

  29. General points type Queue s a = STRef s (V.Vector a) perform :: Queue s a -> [Action a] -> ST s [a] perform sq = execWriterT . mapM_ step where step (Free (F.Peek _)) = do x <- lift . peek $ sq tell [x] step (Free (F.Add x _)) = lift . add x $ sq step (Free (F.Remove _)) = ...

  30. Monadic code and specifications • We want to be able to model a sequence of actions and get a trace of some observations of the internal state • If two sequences of actions gives the same trace of internal states in all contexts, they are observationally equivalent • Context matters • both before and after the property of interest

  31. Monadic code and specifications observe :: [Action a] -> ST s [a] observe xs = empty >>= \q -> perform q xs testEquiv xs ys = do forAll (actions 0) $ \prefix -> forAll (actions (delta (prefix ++ xs))) $ \suffix -> let o1 = runST $ observe (prefix ++ xs ++ suffix) o2 = runST $ observe (prefix ++ ys ++ suffix) in o1 == o2 addPeekProp m n = testEquiv [F.add m, F.add n, void F.peek] [F.add m, void F.peek, F.add n]

  32. Monadic code and models addProperty :: Int -> Property addProperty x = forAll (actions 0) $ \as -> runST $ do q <- empty void $ perform q as q’ <- toList q let l’ = L.add x q’ -- l’ = L.add x . toList add x q r’ <- toList q -- r’ = toList . ST.add x return $ l’ == r’ addProperty :: Int -> Property addProperty x = implements (L.add x) (ST.add x)

  33. Monadic QuickCheck API assert :: Monad m => Bool -> PropertyM m () pre :: Monad m => Bool -> PropertyM m () run :: Monad m => m a -> PropertyM m a pick :: (Monad m, Show a) => Gen a -> PropertyM m a

  34. Monadic QuickCheck API Before testEquiv xs ys = do forAll (actions 0) $ \prefix -> forAll (actions (delta (prefix ++ xs))) $ \suffix -> let o1 = runST $ observe (prefix ++ xs ++ suffix) o2 = runST $ observe (prefix ++ ys ++ suffix) in o1 == o2

  35. Monadic QuickCheck API After testEquiv xs ys = monadicST $ do prefix <- pick $ actions 0 suffix <- pick $ actions (delta (prefix ++ xs)) equivalent <- run $ liftM2 (==) (observe (prefix ++ xs ++ suffix)) (observe (prefix ++ ys ++ suffix)) assert equivalent

  36. Monadic code and pre-/post-conditions addPeek y = monadicST $ do prefix <- pick (actions 0) q <- run empty run . void $ perform q prefix hasElems <- run . liftM not . isEmpty $ q pre hasElems equivalent <- run $ do x <- peek q add y q x’ <- peek q return (x == x’) assert equivalent

  37. Conclusion • Usually iterations of working on code, tests, and spec • Really builds confidence in both code and understanding • Lots of fun

  38. Resources • QuickCheck papers • QuickCheck: A Lightweight Tool for Random Testing of Haskell Programs • Testing Monadic Code with QuickCheck • Books • Introduction to FP using Haskell by Bird • The Fun of Programming by Gibbons and de Moor • http://github.com/dalaing/ylj-quickcheck

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

QuickCheck John Hughes Chalmers University/Quviq AB What is QuickCheck? A library for

QuickCheck John Hughes Chalmers University/Quviq AB What is QuickCheck? A library for

Specification Based Testing with QuickCheck John Hughes Chalmers University/Quviq AB What is QuickCheck? A library for writing and testing properties of program code Some code: A property: Properties as Code A test data A

1.08k views • 72 slides
Be#er Tes(ng with Less Work: QuickCheck Tes(ng in Prac(ce

Be#er Tes(ng with Less Work: QuickCheck Tes(ng in Prac(ce

Be#er Tes(ng with Less Work: QuickCheck Tes(ng in Prac(ce John Hughes QuickCheck in a Nutshell Test case Test case Test case Proper(es Test

820 views • 49 slides
QuickCheck 11.11 The two boxes are on a frictionless surface. They had been sitting together at

QuickCheck 11.11 The two boxes are on a frictionless surface. They had been sitting together at

QuickCheck 11.11 The two boxes are on a frictionless surface. They had been sitting together at rest, but an explosion between them has just pushed them apart. How fast is the 2 kg box going? A. 1 m/s B. 2 m/s C. 4 m/s D. 8 m/s

834 views • 4 slides
QuickCheck 11.2 A 2.0 kg object moving to the right with speed 0.50 m/s experiences the force

QuickCheck 11.2 A 2.0 kg object moving to the right with speed 0.50 m/s experiences the force

QuickCheck 11.2 A 2.0 kg object moving to the right with speed 0.50 m/s experiences the force shown. What are the objects speed and direction after the force ends? A. 0.50 m/s left B. At rest C. 0.50 m/s right D. 1.0 m/s right E. 2.0 m/s

178 views • 4 slides
QuickCheck 24.12 A cylindrical Gaussian surface surrounds an infinite line of charge. The flux

QuickCheck 24.12 A cylindrical Gaussian surface surrounds an infinite line of charge. The flux

QuickCheck 24.12 A cylindrical Gaussian surface surrounds an infinite line of charge. The flux e through the two flat ends of the cylinder is A. 0 2 2 rE B. 2 r 2 E C. 2 rLE D. E. It will require an integration to find

697 views • 6 slides
Ch 22 HW due Friday, January 17 @ 23:59 QuickCheck 23.2 What is the direction of the

Ch 22 HW due Friday, January 17 @ 23:59 QuickCheck 23.2 What is the direction of the

Ch 22 HW due Friday, January 17 @ 23:59 QuickCheck 23.2 What is the direction of the electric field at the dot? E. The field is zero. QuickCheck 23.2 What is the direction of the electric field at the dot? E. The field is zero.

246 views • 7 slides
QuickCheck 4.2 A heavy red ball is released from rest 2.0 m above a flat, horizontal surface. At

QuickCheck 4.2 A heavy red ball is released from rest 2.0 m above a flat, horizontal surface. At

QuickCheck 4.2 A heavy red ball is released from rest 2.0 m above a flat, horizontal surface. At exactly the same instant, a yellow ball with the same mass is fired horizontally at 3.0 m/s. Which ball hits the ground first? A. The red ball

1.01k views • 4 slides
Quiz #2 Friday, March 20 QuickCheck 28.14 The three bulbs are identical and the two

Quiz #2 Friday, March 20 QuickCheck 28.14 The three bulbs are identical and the two

Ch 26 HW due Friday, March 6 (today) @ 23:59 Quiz #2 Friday, March 20 QuickCheck 28.14 The three bulbs are identical and the two batteries are identical. Compare the brightnesses of the bulbs. A B C A. A C B B. C.

338 views • 7 slides
Graphical editing support for QuickCheck models Thomas Arts, Kirill Bogdanov, Alex Gerdes, John

Graphical editing support for QuickCheck models Thomas Arts, Kirill Bogdanov, Alex Gerdes, John

Graphical editing support for QuickCheck models Thomas Arts, Kirill Bogdanov, Alex Gerdes, John Hughes This project has received funding from the EU FP7 Collaborative project PROWESS , grant number 317820, http://www.prowessproject.eu

127 views • 12 slides
QuickCheck John Hughes DEMO Registry tests on multiple nodes 40000 35000 30000 Tests per

QuickCheck John Hughes DEMO Registry tests on multiple nodes 40000 35000 30000 Tests per

QuickCheck John Hughes DEMO Registry tests on multiple nodes 40000 35000 30000 Tests per minute 25000 20000 15000 10000 5000 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 Nodes Four core/8HT SkyLake i7

1.29k views • 29 slides
Testing monadic programs using QuickCheck and state machine based models Stevan Andjelkovic

Testing monadic programs using QuickCheck and state machine based models Stevan Andjelkovic

Testing monadic programs using QuickCheck and state machine based models Stevan Andjelkovic 2018.2.23, BOBKonf (Berlin) Introduction Property based testing in general How to apply property based testing to stateful and concurrent

474 views • 18 slides
due Friday, January 31 @ 23:59 Quiz #1 Friday, January 31 QuickCheck 24.8 Which spherical

due Friday, January 31 @ 23:59 Quiz #1 Friday, January 31 QuickCheck 24.8 Which spherical

Ch 24 HW due Friday, January 31 @ 23:59 Quiz #1 Friday, January 31 QuickCheck 24.8 Which spherical Gaussian surface has the larger electric flux? A. Surface A B. Surface B C. They have the same flux. D. Not enough information

379 views • 8 slides
Why Do I Need These Basics ? These basics will get you into the RCMP way of thinking You

Why Do I Need These Basics ? These basics will get you into the RCMP way of thinking You

Why Do I Need These Basics ? These basics will get you into the RCMP way of thinking You might call it a Paradigm Shift Be a progressive, proactive and innovative organization Provide the highest quality service through dynamic

701 views • 43 slides
QuickCheck 10.2 Starting from rest, a marble first rolls down a steeper hill, then down a less

QuickCheck 10.2 Starting from rest, a marble first rolls down a steeper hill, then down a less

QuickCheck 10.2 Starting from rest, a marble first rolls down a steeper hill, then down a less steep hill of the same height. For which is it going faster at the bottom? A. Faster at the bottom of the steeper hill. B. Faster at the bottom

352 views • 4 slides
Qt 3D Basics Kvin Ottens, Software Craftsman at KDAB Qt 3D Basics Feature Set Entity

Qt 3D Basics Kvin Ottens, Software Craftsman at KDAB Qt 3D Basics Feature Set Entity

Qt 3D Basics Kvin Ottens, Software Craftsman at KDAB Qt 3D Basics Feature Set Entity Component System? Kezaco? Hello Donut Qt 3D ECS Explained Input Handling Drawing Basics Beyond the Tip of the Iceberg The Future of Qt 3D Qt 3D Basics

872 views • 50 slides
MCIS/UA PHP Training 2003 Chapter 2 Language Basics PHP Basics PHP applications should have

MCIS/UA PHP Training 2003 Chapter 2 Language Basics PHP Basics PHP applications should have

MCIS/UA PHP Training 2003 Chapter 2 Language Basics PHP Basics PHP applications should have a .php extension. All statements end with a semicolon PHP Basics Commands are case insensitive (but are usually typed in lowercase) print

852 views • 46 slides
Shake n Bake Neil Mitchell https://github.com/ndmitchell/{shake,bake} Build n

Shake n Bake Neil Mitchell https://github.com/ndmitchell/{shake,bake} Build n

Shake n Bake Neil Mitchell https://github.com/ndmitchell/{shake,bake} Build n Integrate In Haskell shake bake CMake Shake build system Expressive, Robust, Fast Haskell EDSL 1000s of tests Faster than Monadic 100s of

347 views • 33 slides
Free Theorems about Monadic Code Janis Voigtl ander University of Bonn EWCE11 Functional

Free Theorems about Monadic Code Janis Voigtl ander University of Bonn EWCE11 Functional

Free Theorems about Monadic Code Janis Voigtl ander University of Bonn EWCE11 Functional Programming and Reasoning Goodies of (pure) FP: declarative abstraction/modularity referential transparency 1 Functional Programming

1.65k views • 149 slides
t Prr

t Prr

t Prr tt st rtt

1.18k views • 69 slides
Advances in Programming Languages APL9: Monads and I/O Ian Stark School of Informatics The

Advances in Programming Languages APL9: Monads and I/O Ian Stark School of Informatics The

Advances in Programming Languages APL9: Monads and I/O Ian Stark School of Informatics The University of Edinburgh Monday 8 February Semester 2 Week 5 N I V E U R S E I H T T Y O H F G R E

463 views • 33 slides
Monads Advanced functional programming - Lecture 2 Wouter Swierstra 1 In this lecture A

Monads Advanced functional programming - Lecture 2 Wouter Swierstra 1 In this lecture A

Monads Advanced functional programming - Lecture 2 Wouter Swierstra 1 In this lecture A number of useful programming patterns. We will see a similarity between seemingly different concepts. 2 The Maybe type data Maybe a = Nothing |

1.01k views • 72 slides
Test Data Generators Based on original slides by Koen Claessen and John Hughes Repeating

Test Data Generators Based on original slides by Koen Claessen and John Hughes Repeating

Test Data Generators Based on original slides by Koen Claessen and John Hughes Repeating Instructions doTwice io = An instruction to do a &lt;- io compute the given b &lt;- io result return (a,b) dont io = return () Main&gt; doTwice

623 views • 47 slides
Two-way cost automata and cost logi c s o v er infinite trees Achim Blumens a th 1 , T hom a s C ol

Two-way cost automata and cost logi c s o v er infinite trees Achim Blumens a th 1 , T hom a s C ol

Two-way cost automata and cost logi c s o v er infinite trees Achim Blumens a th 1 , T hom a s C ol c om b et 2 , D enis K uper b erg 3 , Pa wel Pa rys 3 , a nd M i c h a el Va nden B oom 4 1 TU Da rmst a dt, 2 U niversit e Pa ris D iderot, 3 U

616 views • 33 slides
Mechanizing Abstract Interpretation Thesis Defense David Darais University of Maryland Software

Mechanizing Abstract Interpretation Thesis Defense David Darais University of Maryland Software

Mechanizing Abstract Interpretation Thesis Defense David Darais University of Maryland Software Reliability The Usual Story } Program Testing Analysis Compiler Operating System Hardware 3 The Usual Story } Program .

1.81k views • 143 slides

More recommend