why is random testing effective for partition tolerance
play

Why Is Random Testing Effective for Partition Tolerance Bugs? Rupak - PowerPoint PPT Presentation

Sep 08, 2022 •468 likes •1.03k views

Why Is Random Testing Effective for Partition Tolerance Bugs? Rupak Majumdar, Filip Niksic Max Planck Institute for Software Systems (MPI-SWS) Despite Many Formal Approaches Despite Many Formal Approaches practitioners test their

  1. Why Is Random Testing Effective for Partition Tolerance Bugs? Rupak Majumdar, Filip Niksic Max Planck Institute for Software Systems (MPI-SWS)

  2. Despite Many Formal Approaches…

  3. Despite Many Formal Approaches… …practitioners test their code

  4. Despite Many Formal Approaches… …practitioners test their code …by providing random inputs.

  5. Despite Many Formal Approaches… …practitioners test their code …by providing random inputs. And despite our best judgement,

  6. Despite Many Formal Approaches… …practitioners test their code …by providing random inputs. And despite our best judgement, …testing is surprisingly e ff ective in finding bugs .

  7. Despite Many Formal Approaches… …practitioners test their code …by providing random inputs. And despite our best judgement, …testing is surprisingly e ff ective in finding bugs . We explore this unexpected e ff ectiveness 
 in testing distributed systems under partition faults.

  8. Jepsen: Call Me Maybe A framework for black-box testing of distributed systems 
 by randomly inserting network partition faults Analyses on http://jepsen.io/: etcd, Postgres, Redis, Riak, MongoDB, Cassandra, Kafka, RabbitMQ, Consul, Elasticsearch, Aerospike, Zookeeper, Chronos…

  9. 1. General Random Testing Framework 2. Randomly Testing Distributed Systems 3. Wider Context: Combinatorial Testing

  10. Tests and Goal Coverage Tests T Goals G

  11. Tests and Goal Coverage A test covers 
 some goals Tests T Goals G

  12. Tests and Goal Coverage A test covers 
 some goals Tests T Goals G Covering family = Set of tests that cover all goals

  13. Tests and Goal Coverage A test covers 
 some goals Tests T Goals G Covering family = Set of tests that cover all goals “Small” covering families = E ffi cient testing

  14. Random Testing Pick a random test from T Fix a goal from G Suppose P[ covers ] ≥ p Characterize covering families with respect to p and |G|

  15. Probabilistic Method Let G be the set of goals and P[ random covers ] ≥ p Theorem. There exists a covering family of size p -1 log|G| .

  16. Probabilistic Method Let G be the set of goals and P[ random covers ] ≥ p Theorem. There exists a covering family of size p -1 log|G| . Proof. P[ random does not cover ] ≤ 1 - p

  17. Probabilistic Method Let G be the set of goals and P[ random covers ] ≥ p Theorem. There exists a covering family of size p -1 log|G| . Proof. P[ random does not cover ] ≤ 1 - p P[ K independent do not cover ] ≤ (1 - p) K

  18. Probabilistic Method Let G be the set of goals and P[ random covers ] ≥ p Theorem. There exists a covering family of size p -1 log|G| . Proof. P[ random does not cover ] ≤ 1 - p P[ K independent do not cover ] ≤ (1 - p) K P[ K independent are not a covering family ] ≤ |G| (1 - p) K

  19. Probabilistic Method Let G be the set of goals and P[ random covers ] ≥ p Theorem. There exists a covering family of size p -1 log|G| . Proof. P[ random does not cover ] ≤ 1 - p P[ K independent do not cover ] ≤ (1 - p) K P[ K independent are not a covering family ] ≤ |G| (1 - p) K For K = p -1 log|G| , this probability is strictly less than 1 . Therefore, there must exist K tests that are a covering family!

  20. Probabilistic Method Let G be the set of goals and P[ random covers ] ≥ p Theorem. There exists a covering family of size p -1 log|G| . Theorem. For ϵ > 0 , a random family of p -1 log|G| + p -1 log ϵ -1 tests is a covering family with probability at least 1 - ϵ .

  21. Random Testing Framework 1. What are tests? 2. What are 
 testing goals? Tests T Goals G 3. What is the notion of coverage? 4. Can we bound P[ random covers ] ?

  22. 1. General Random Testing Framework 2. Randomly Testing Distributed Systems 3. Wider Context: Combinatorial Testing

  23. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n … Round 1: … Round 2:

  24. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n Round 1: … … Round 2:

  25. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n Round 1: … … Round 2:

  26. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n Round 1: … … Round 2:

  27. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n Round 1: … … Round 2:

  28. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n Round 1: … … Round 2:

  29. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? … 1 2 3 n Round 1: … … Round 2:

  30. Ninjas in Training In a dojo in Kaiserslautern, n ninjas are in training. Training is complete if for every pair of ninjas, there is a round where they are in opposing teams. How many rounds make the training complete? • Naïve: O(n 2 ) • Can you do it in log n rounds?

  31. Ninjas in Training More generally, n ninjas are training in k teams. Training is complete if for every choice of k ninjas, there is a round where they are each in different team. How many rounds make the training complete? … 1 2 3 n … Round 1: … Round 2:

  32. Ninjas in Training More generally, n ninjas are training in k teams. Training is complete if for every choice of k ninjas, there is a round where they are each in different team. How many rounds make the training complete? … 1 2 3 n … Round 1: … Round 2:

  33. Ninjas in Training More generally, n ninjas are training in k teams. Training is complete if for every choice of k ninjas, there is a round where they are each in different team. How many rounds make the training complete? … 1 2 3 n … Round 1: … Round 2:

  34. Ninjas in Training More generally, n ninjas are training in k teams. Training is complete if for every choice of k ninjas, there is a round where they are each in different team. How many rounds make the training complete? … 1 2 3 n … Round 1: … Round 2:

  35. Ninjas in Training More generally, n ninjas are training in k teams. Training is complete if for every choice of k ninjas, there is a round where they are each in different team. How many rounds make the training complete? … 1 2 3 n … Round 1: … Round 2:

  36. Ninjas in Training More generally, n ninjas are training in k teams. Training is complete if for every choice of k ninjas, there is a round where they are each in different team. How many rounds make the training complete? • Naïve: O(n k ) • Can you do it in k k+1 (k!) -1 log n rounds?

  37. From Training Ninjas to 
 Distributed Systems with Partition Faults ninjas nodes in a network teams blocks in a partition rounds partitions covering family complete training

  38. Splitting Coverage Given n nodes and k ≤ n : • Tests are partitions of nodes into k blocks: P = {B 1 , …, B k } • Testing goals are sets of k nodes: S = {x 1 , …, x k } • P covers S if P splits S: x 1 ∈ B 1 , …, x k ∈ B k Covering families are called k-splitting families here 


  39. A Bug in Chronos • A distributed fault-tolerant job scheduler • Works in conjunction with Mesos and Zookeeper • Three special nodes: Chronos leader, Mesos leader, Zookeeper leader Mesos leader Zookeeper Chronos leader leader

  40. A Bug in Chronos • A distributed fault-tolerant job scheduler • Works in conjunction with Mesos and Zookeeper • Three special nodes: Chronos leader, Mesos leader, Zookeeper leader Mesos leader Zookeeper Chronos leader leader

  43. Splitting Coverage Given n nodes and k ≤ n : • Number of partitions with k blocks: � n ≈ k n k k ! ≈ n k • Number of sets of k nodes: � n � k k ! p = k n − k • Splitting a set with a random partition: k } ≈ k ! { n k k By the general theorem, there exists a k -splitting family 
 of size k k+1 (k!) -1 log n

  44. Effectiveness of Jepsen Theorem. For ϵ > 0 , a random family of partitions of size 
 k k+1 (k!) -1 log n + k k (k!) -1 log ϵ -1 is a k -splitting family with probability at least 1 - ϵ . For Chronos, with n = 5 , k = 2 , ϵ = 0.2 : a family of 10 randomly chosen partitions is splitting with probability 80%

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Kernel Density Adaptive Random Testing Matthew Patrick and Yue Jia 13 April 2015 Outline

Kernel Density Adaptive Random Testing Matthew Patrick and Yue Jia 13 April 2015 Outline

Kernel Density Adaptive Random Testing Matthew Patrick and Yue Jia 13 April 2015 Outline Diversification and Intensification Kernel Density Adaptive Random Testing (KD-ART) Is KD-ART more effective than ART? Finding the optimal

503 views • 26 slides
Learning objectives Understand the rationale for systematic (non- random) selection of test

Learning objectives Understand the rationale for systematic (non- random) selection of test

Learning objectives Understand the rationale for systematic (non- random) selection of test cases Understand the basic concept of partition testing Functional testing and its underlying assumptions Understand why functional test

220 views • 5 slides
Belton IS Belton ISD Random Drug Random Drug Testing Program Testing Program Who i Who is

Belton IS Belton ISD Random Drug Random Drug Testing Program Testing Program Who i Who is

Belton IS Belton ISD Random Drug Random Drug Testing Program Testing Program Who i Who is included? s included? Students in grades 9 -12 who choose to participate in extracurricular activities offered. Academic/Vocational Events

709 views • 31 slides
I. FAQ S Q. What is partition? Partition is a proceeding in equity to determine the way in

I. FAQ S Q. What is partition? Partition is a proceeding in equity to determine the way in

Partition Actions: Everything You Never Realized You Ought to Know About Them William J. Maffucci, J.D. Partition is a hoary proceeding. I say that mischievously, hoping that the phonetics will fool a few readers into thinking that the topic

306 views • 14 slides
Random Testing in PVS Sam Owre owre@csl.sri.com URL: http://www.csl.sri.com/~owre/ Computer

Random Testing in PVS Sam Owre owre@csl.sri.com URL: http://www.csl.sri.com/~owre/ Computer

Random Testing in PVS Sam Owre owre@csl.sri.com URL: http://www.csl.sri.com/~owre/ Computer Science Laboratory SRI International Menlo Park, CA August 21, 2006 Sam Owre AFM06 presentation: 1 Random Testing in

569 views • 10 slides
Faults Found by Random Testing WanChi Chio Justin Molinyawe Introduction Why apply random

Faults Found by Random Testing WanChi Chio Justin Molinyawe Introduction Why apply random

Faults Found by Random Testing WanChi Chio Justin Molinyawe Introduction Why apply random testing to object oriented software? Cost-efficient in terms of implementation effort and execution time. Introduction (Cont.)

651 views • 24 slides
Annulus SLE partition functions and martingale-observables Joint work with Nam-Gyu Kang, Hee-Joon

Annulus SLE partition functions and martingale-observables Joint work with Nam-Gyu Kang, Hee-Joon

Annulus SLE partition functions and martingale-observables Joint work with Nam-Gyu Kang, Hee-Joon Tak Sung-Soo Byun Seoul National University Random Conformal Geometry and Related Fields June 18, 2018 Outline 1 Annulus SLE partition functions

833 views • 35 slides
Towards Effective Partition Management for Large Graphs Shengqi Yang, Xifeng Yan, Bo Zong and

Towards Effective Partition Management for Large Graphs Shengqi Yang, Xifeng Yan, Bo Zong and

Towards Effective Partition Management for Large Graphs Shengqi Yang, Xifeng Yan, Bo Zong and Arijit Khan (UC Santa Barbara) Presenter: Xiao Meng Motivation - How to manage large graphs? Increasing demand for large graph management on

430 views • 30 slides
Random matrices: Distribution of the least singular value (via Property Testing) Van H. Vu

Random matrices: Distribution of the least singular value (via Property Testing) Van H. Vu

Random matrices: Distribution of the least singular value (via Property Testing) Van H. Vu Department of Mathematics Rutgers vanvu@math.rutgers.edu (joint work with T. Tao, UCLA) 1 Let be a real or complex-valued random variable and M n (

594 views • 31 slides
Stochastic Simulation Testing random number generaters Bo Friis Nielsen Applied Mathematics and

Stochastic Simulation Testing random number generaters Bo Friis Nielsen Applied Mathematics and

Stochastic Simulation Testing random number generaters Bo Friis Nielsen Applied Mathematics and Computer Science Technical University of Denmark 2800 Kgs. Lyngby Denmark Email: bfn@imm.dtu.dk Testing random number generaters Testing

452 views • 24 slides
Testing atomicity Finding race conditions by random testing John Hughes "We know there is a

Testing atomicity Finding race conditions by random testing John Hughes "We know there is a

Testing atomicity Finding race conditions by random testing John Hughes "We know there is a lurking bug somewhere in the dets code. We have got 'bad object' and 'premature eof' every other month the last year. We have not been able to

584 views • 29 slides
Discrete Random Variables October 7, 2010 Discrete Random Variables Random Variables In many

Discrete Random Variables October 7, 2010 Discrete Random Variables Random Variables In many

Discrete Random Variables October 7, 2010 Discrete Random Variables Random Variables In many situations, we are interested in numbers associated with the outcomes of a random experiment. For example: Testing cars from a production line, we are

489 views • 38 slides
Testing High-Dimensional Distributions: Subcube Conditioning, Random Restrictions, and Mean

Testing High-Dimensional Distributions: Subcube Conditioning, Random Restrictions, and Mean

Testing High-Dimensional Distributions: Subcube Conditioning, Random Restrictions, and Mean Testing Cl ement Canonne (IBM Research) February 25, 2020 Joint work with Xi Chen, Gautam Kamath, Amit Levi, and Erik Waingarten 1 Outline

935 views • 60 slides
Minimal k -partition for the p -norm of the eigenvalues V. Bonnaillie-No el DMA, CNRS, ENS

Minimal k -partition for the p -norm of the eigenvalues V. Bonnaillie-No el DMA, CNRS, ENS

Definition 2-partition Properties 3-partition k -partitions Conclusion Minimal k -partition for the p -norm of the eigenvalues V. Bonnaillie-No el DMA, CNRS, ENS Paris joint work with B. Bogosel, B. Helffer, C. L ena, G. Vial Calculus

527 views • 50 slides
IT1100 : Introduction to Operating Systems Chapter 15 What is a partition? A partition is just a

IT1100 : Introduction to Operating Systems Chapter 15 What is a partition? A partition is just a

IT1100 : Introduction to Operating Systems Chapter 15 What is a partition? A partition is just a logical division of your hard drive. This is done to put data in different locations for flexibility, scalability, ease of administration, and a

262 views • 7 slides
SOCIAL JUSTICE 101: Based on Materials from Teaching Tolerance About Teaching Tolerance

SOCIAL JUSTICE 101: Based on Materials from Teaching Tolerance About Teaching Tolerance

SOCIAL JUSTICE 101: Based on Materials from Teaching Tolerance About Teaching Tolerance Founded in 1991, Teaching Tolerance is dedicated to reducing prejudice, improving intergroup relations and supporting equitable school experiences for

389 views • 22 slides
Fault Tolerance, Replication, and Consistency 1 Motivation: Hadoop Cluster 2 Motivation:

Fault Tolerance, Replication, and Consistency 1 Motivation: Hadoop Cluster 2 Motivation:

Fault Tolerance, Replication, and Consistency 1 Motivation: Hadoop Cluster 2 Motivation: Hadoop Cluster Mostly retired desktops Intel Core 2: launched in 2008 Support is gathering old servers 3 Motivation: Hadoop Cluster Mostly retired

383 views • 35 slides
AFT: A Serverless Fault- Tolerance Shim Vikram Sreekanti , Chenggang Wu, Saurav Chhatrapati,

AFT: A Serverless Fault- Tolerance Shim Vikram Sreekanti , Chenggang Wu, Saurav Chhatrapati,

AFT: A Serverless Fault- Tolerance Shim Vikram Sreekanti , Chenggang Wu, Saurav Chhatrapati, Joseph E. Gonzalez, Joseph M. Hellerstein, Jose M. Faleiro RISE Lab, UC Berkeley 04/29/2020 Fault-Tolerance in Serverless Computing FaaS programs

93 views • 8 slides
Fault Tolerant Distributed Main Memory Systems CompSci 590.04

Fault Tolerant Distributed Main Memory Systems CompSci 590.04

Fault Tolerant Distributed Main Memory Systems CompSci 590.04 Instructor: Ashwin Machanavajjhala Lecture 16 : 590.04 Fall 15 1 Recap: Map Reduce ma p ! ! ,

641 views • 30 slides
Distributed Systems Fault Tolerance Paul Krzyzanowski Except as otherwise noted, the content of

Distributed Systems Fault Tolerance Paul Krzyzanowski Except as otherwise noted, the content of

Distributed Systems Fault Tolerance Paul Krzyzanowski Except as otherwise noted, the content of this presentation is licensed under the Creative Commons Attribution 2.5 License. Page Faults Deviation from expected behavior Due to a

188 views • 18 slides
Automated combination of tolerance and control flow integrity countermeasures against multiple

Automated combination of tolerance and control flow integrity countermeasures against multiple

Automated combination of tolerance and control flow integrity countermeasures against multiple fault attacks on embedded systems Thierno Barry PhD Candidate in security of Embedded Systems at CEA ( the French Atomic Energy Commission )

681 views • 18 slides
Cross Link Insertion for Improving Tolerance to Variations in Clock Network Synthesis Tarun

Cross Link Insertion for Improving Tolerance to Variations in Clock Network Synthesis Tarun

Cross Link Insertion for Improving Tolerance to Variations in Clock Network Synthesis Tarun Mittal Cheng-Kok Koh School of Electrical and Computer Engineering Purdue University Presentation Flow Introduction Comparison of link

678 views • 43 slides
Adjustable flat layouts for Two- Failure Tolerant Storage Systems Thomas Schwarz, SJ Marquette

Adjustable flat layouts for Two- Failure Tolerant Storage Systems Thomas Schwarz, SJ Marquette

Adjustable flat layouts for Two- Failure Tolerant Storage Systems Thomas Schwarz, SJ Marquette University Motivation Storage device batches fail at di ff erent rates Example: Backblaze: 1163 Seagate Barracuda 7200.14 disks failed

511 views • 18 slides
NOVA-Fortis: A Fault-Tolerant Non- Volatile Main Memory File System Jian Andiry Xu, Lu Zhang ,

NOVA-Fortis: A Fault-Tolerant Non- Volatile Main Memory File System Jian Andiry Xu, Lu Zhang ,

NOVA-Fortis: A Fault-Tolerant Non- Volatile Main Memory File System Jian Andiry Xu, Lu Zhang , Amirsaman Memaripour, Akshatha Gangadharaiah, Amit Borase, Tamires Brito Da Silva, Andy Rudoff (Intel), Steven Swanson Non-Volatile Systems Laboratory

1.01k views • 71 slides

More recommend