Using Runtime Testing to Detect Defects in Applications without Test Oracles Chris Murphy Columbia University November 10, 2008.

Slides:



Advertisements
Similar presentations
Testing Relational Database
Advertisements

Testing and Quality Assurance
SOFTWARE TESTING. INTRODUCTION  Software Testing is the process of executing a program or system with the intent of finding errors.  It involves any.
Towards Self-Testing in Autonomic Computing Systems Tariq M. King, Djuradj Babich, Jonatan Alava, and Peter J. Clarke Software Testing Research Group Florida.
Annoucements  Next labs 9 and 10 are paired for everyone. So don’t miss the lab.  There is a review session for the quiz on Monday, November 4, at 8:00.
Test-Driven Development and Refactoring CPSC 315 – Programming Studio.
10 Software Engineering Foundations of Computer Science ã Cengage Learning.
Lesson 17: Configuring Security Policies
Lecture 12 Reengineering Computer-aided Software Engineering Cleanroom Software Engineering.
1 Application of Metamorphic Testing to Supervised Classifiers Xiaoyuan Xie, Tsong Yueh Chen Swinburne University of Technology Christian Murphy, Gail.
Properties of Machine Learning Applications for Use in Metamorphic Testing Chris Murphy, Gail Kaiser, Lifeng Hu, Leon Wu Columbia University.
Automatic System Testing of Programs without Test Oracles
The In Vivo Testing Approach Christian Murphy, Gail Kaiser, Ian Vo, Matt Chu Columbia University.
Software Testing and Quality Assurance
On Effective Testing of Health Care Simulation Software Christian Murphy, M.S. Raunak, Andrew King, Sanjian Chen, Christopher Imbriano, Gail Kaiser, Insup.
Applications of Metamorphic Testing Chris Murphy University of Pennsylvania November 17, 2011.
Using JML Runtime Assertion Checking to Automate Metamorphic Testing in Applications without Test Oracles Christian Murphy, Kuang Shen, Gail Kaiser Columbia.
SE 555 Software Requirements & Specification Requirements Validation.
Distributed In Vivo Testing of Software Applications Matt Chu, Christian Murphy, Gail Kaiser Columbia University.
Parameterizing Random Test Data According to Equivalence Classes Chris Murphy, Gail Kaiser, Marta Arias Columbia University.
1 Software Testing and Quality Assurance Lecture 30 – Testing Systems.
Automatic Detection of Previously-Unseen Application States for Deployment Environment Testing and Analysis Chris Murphy, Moses Vaughan, Waseem Ilahi,
Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.
Software Testing Verification and validation planning Software inspections Software Inspection vs. Testing Automated static analysis Cleanroom software.
Dr. Pedro Mejia Alvarez Software Testing Slide 1 Software Testing: Building Test Cases.
Software Quality Assurance Lecture #8 By: Faraz Ahmed.
Using Runtime Information for Adapting Enterprise Java Beans Application Servers Mircea Trofin *, John Murphy ** Performance Engineering Laboratory * DCU,
Software Testing. Definition To test a program is to try to make it fail.
© 2012 IBM Corporation Rational Insight | Back to Basis Series Chao Zhang Unit Testing.
ECE 720T5 Winter 2014 Cyber-Physical Systems Rodolfo Pellizzoni.
Software Engineering Chapter 23 Software Testing Ku-Yaw Chang Assistant Professor Department of Computer Science and Information.
Chapter 8 – Software Testing Lecture 1 1Chapter 8 Software testing The bearing of a child takes nine months, no matter how many women are assigned. Many.
Problem Determination Your mind is your most important tool!
Testing Theory cont. Introduction Categories of Metrics Review of several OO metrics Format of Presentation CEN 5076 Class 6 – 10/10.
1 Software testing. 2 Testing Objectives Testing is a process of executing a program with the intent of finding an error. A good test case is in that.
Bug Localization with Machine Learning Techniques Wujie Zheng
Lecture on Computer Science as a Discipline. 2 Computer “Science” some people argue that computer science is not a science in the same sense that biology.
Software Requirements Engineering: What, Why, Who, When, and How
Testing -- Part II. Testing The role of testing is to: w Locate errors that can then be fixed to produce a more reliable product w Design tests that systematically.
Dr. Tom WayCSC Testing and Test-Driven Development CSC 4700 Software Engineering Based on Sommerville slides.
1 Test Selection for Result Inspection via Mining Predicate Rules Wujie Zheng
Week 14 Introduction to Computer Science and Object-Oriented Programming COMP 111 George Basham.
Unix Security Assessing vulnerabilities. Classifying vulnerability types Several models have been proposed to classify vulnerabilities in UNIX-type Oses.
CPSC 873 John D. McGregor Session 9 Testing Vocabulary.
Coevolutionary Automated Software Correction Josh Wilkerson PhD Candidate in Computer Science Missouri S&T.
CSC 480 Software Engineering Test Planning. Test Cases and Test Plans A test case is an explicit set of instructions designed to detect a particular class.
CPSC 871 John D. McGregor Module 8 Session 1 Testing.
Software Quality Assurance and Testing Fazal Rehman Shamil.
Agenda: Overview of Agile testing Difference between Agile and traditional Methodology Agile Development Methodologies Extreme Programming Test Driven.
Dynamic Testing.
1 Phase Testing. Janice Regan, For each group of units Overview of Implementation phase Create Class Skeletons Define Implementation Plan (+ determine.
Testing Overview Software Reliability Techniques Testing Concepts CEN 4010 Class 24 – 11/17.
SOFTWARE TESTING LECTURE 9. OBSERVATIONS ABOUT TESTING “ Testing is the process of executing a program with the intention of finding errors. ” – Myers.
Introduction to OOAD and UML
Advanced Computer Systems
Software Testing.
SOFTWARE TESTING Date: 29-Dec-2016 By: Ram Karthick.
Regression Testing with its types
Testing Tutorial 7.
Software Testing.
Configuration Fuzzing for Software Vulnerability Detection
John D. McGregor Session 9 Testing Vocabulary
The Development Process of Web Applications
Software Testing An Introduction.
Chapter 8 – Software Testing
John D. McGregor Session 9 Testing Vocabulary
John D. McGregor Session 9 Testing Vocabulary
Introduction to Software Testing
Test Case Test case Describes an input Description and an expected output Description. Test case ID Section 1: Before execution Section 2: After execution.
ECE 352 Digital System Fundamentals
Presentation transcript:

Using Runtime Testing to Detect Defects in Applications without Test Oracles Chris Murphy Columbia University November 10, 2008

Chris Murphy – Columbia University2 3 rd -year PhD student at Columbia University Advised by Prof. Gail Kaiser Research interests:  Software Testing  Computer Science Education  Computer-Supported Cooperative Work About Me

Chris Murphy – Columbia University3 Introduction This thesis addresses the problem of testing complex, highly configurable systems, particularly those without “test oracles” that indicate what the correct output should be for arbitrary input We adapt a technique that leverages built-in “pseudo-oracles” and perform testing in the deployment environment in order to address limitations regarding defects that reveal themselves only in certain states or with certain input data

Chris Murphy – Columbia University4 Overview Problem Statement & Requirements Approach & Hypotheses Model & Architecture Feasibility & Preliminary Results Related Work Expected Contributions

Chris Murphy – Columbia University5 Problem Statement Some applications, such as in Machine Learning, do not have test oracles for the general case Even if certain defects may be detectable, others can only be revealed as a result of particular input values, configurations, application states, or runtime environments that may not have been tested prior to deploying a software product

Chris Murphy – Columbia University6 Observation Even when there is no oracle in the general case, there can still be a limited subset of inputs such that:  they can at least reveal certain types of defects, e.g. catastrophic failures (crashes), and/or  the expected output can actually be known These inputs may be generated based on past inputs and their respective outputs, as in “Metamorphic Testing” [Chen ’98]

Chris Murphy – Columbia University7 Metamorphic Testing Originally designed as an approach for creating follow-up test cases based on those that have not revealed any defects If input x produces output f(x), then the function’s “metamorphic properties” are used to guide a transformation function t, which is applied to produce t(x) We can then predict the expected value of f(t(x)) based on the known value of f(x) If f(t(x)) is not as expected, then a defect exists

Chris Murphy – Columbia University8 Metamorphic Testing Example Anomaly-based network intrusion detection systems build a “model” of normal behavior In some cases, the model may consider the byte distribution of data in the incoming network packet; anything deemed anomalous causes an alert We cannot know a priori whether a particular packet should cause an alert However, if we permute the order of the bytes, the result (anomalous or not) should be the same as for the original packet, since the system only considers the distribution of the bytes

Chris Murphy – Columbia University9 Proposed Approach To address the problem of functions and/or applications that have no test oracle, we use Metamorphic Testing In such applications, to reveal defects that are dependent on input data, configuration, application state, or the runtime environment, we continue Metamorphic Testing in the field, after deployment and during actual usage

Chris Murphy – Columbia University10 Approach Details Initial input/output pairs are taken from actual executions We cannot know whether the output is correct but we at least know that the input is something that comes up in practice, and is useful as a valid test case We then apply “metamorphic properties” to get test input, so that we should be able to predict the test output Although we cannot know whether the test output is correct either, if it is not as predicted then there is a defect Since this runs in the field, we have to ensure that users don't notice this testing, e.g. see the test output, experience a sudden performance lag, etc.

Chris Murphy – Columbia University11 Hypotheses 1. For programs that do not have a test oracle, conducting Metamorphic Testing within the context of the application running in the field can reveal defects that would not ordinarily otherwise be found 2. This can be done without affecting the application state from the users’ perspective, and with minimal performance overhead

Chris Murphy – Columbia University12 1. Automated Metamorphic System Testing: Conducts system-level Metamorphic Testing in the deployment environment 2. Metamorphic Runtime Checking: A separate testing technique that, for individual units (functions), supports the execution of Metamorphic Tests that are executed “from within” the context of the running application Proposed Model

Chris Murphy – Columbia University13 Automated Metamorphic System Testing Checks that the metamorphic properties of the entire system hold after execution Treats the application as a black box Multiple invocations run in parallel, and results are compared upon completion User only sees output from the “original” invocation

Chris Murphy – Columbia University14

Chris Murphy – Columbia University15 Amsterdam: Automated Metamorphic System Testing Framework Metamorphic properties are specified in XML  Input transformation  Runtime options  Output comparison Framework provides out-of-box support for numerous transformation and comparison functions but is extendable to support custom operations Additional invocations are executed in parallel in separate sandboxes that have their own virtual execution environment

Chris Murphy – Columbia University16 Metamorphic Runtime Checking For individual units (functions), we check whether the metamorphic properties hold as the application is running, using actual input from real executions and the application’s current state Function arguments are modified according to the metamorphic properties Function is called again (in an isolated sandbox) with the new input Outputs are compared

Chris Murphy – Columbia University17 Create a sandbox for the test Run a pre-test? Function foo is about to be executed Execute preTestFoo Execute foo no yes Record success/failure Run a post-test? Execute postTestFoo yes no Create a sandbox for the test Record success/failure Program continues

Chris Murphy – Columbia University18 Foundation: In Vivo Testing To facilitate testing “from within” a running program, we will extend In Vivo Testing [Chu ICST’08] In Vivo Tests are analogous to unit tests but they test from within the context of the running application as it executes in the deployment environment, as opposed to a clean slate They test that sequences of actions produce the expected results, no matter what the configuration, state, or runtime environment

Chris Murphy – Columbia University19 Complementary Testing Approaches Metamorphic Testing addresses a limitation of In Vivo Testing:  The need for a test oracle In Vivo Testing addresses some limitations of Metamorphic Testing:  Availability of initial test data  Detecting defects that only appear in certain states, configurations, or environments; or occur only intermittently

Chris Murphy – Columbia University20 Columbus: Metamorphic Runtime Checking Framework Tests (specifications of metamorphic properties) are written by developers, then select components of the application are instrumented with tests at compile-time Configuration includes: probability of running a test for each function; maximum number of concurrent tests; action to take when test fails; whether to assign tests to separate processor/core Test sandbox can be created by simple “fork” or by creating a virtual execution environment

Chris Murphy – Columbia University21 Preliminary Results Identified categories of metamorphic properties in the domain of Machine Learning Detected defects with Metamorphic System Testing Detected defects with In Vivo Testing Detected defects with Metamorphic Runtime Checking

Chris Murphy – Columbia University22 Categories of Metamorphic Properties [Murphy SEKE’08] Additive: Increase (or decrease) numerical values by a constant Multiplicative: Multiply numerical values by a constant Permutative: Randomly permute the order of elements in a set Invertive: Reverse the order of elements in a set Inclusive: Add a new element to a set Exclusive: Remove an element from a set ML apps such as ranking, classification, and anomaly detection exhibit these properties

Chris Murphy – Columbia University23 Feasibility: Metamorphic System Testing We performed system-level metamorphic testing on various types of Machine Learning applications [Murphy SEKE’08] Detected previously-unknown defects in a real-world network intrusion detection system However, this testing was not automated: inputs were modified with one-off scripts and outputs were compared manually

Chris Murphy – Columbia University24 Feasibility: In Vivo Testing We have previously developed an implementation of the In Vivo Testing framework for Java applications called Invite [Chu ICST’08] Targeted towards applications in which defects were not obvious to the user (not necessarily those without test oracles) Detected known defects in OSCache that were not found by traditional unit tests Uses “fork” to create new processes for sandbox

Chris Murphy – Columbia University25 We have developed a system by which functions’ metamorphic properties are specified using an extension to JML Specifications converted into metamorphic unit tests by a tool called Corduroy [Murphy ’08]  tests run using JML Runtime Assertion Checking Detected defects in WEKA and RapidMiner machine learning toolkits Feasibility: Metamorphic Runtime Checking

Chris Murphy – Columbia University26 Related Work: Absence of Oracles Pseudo-oracles [Davis ACM’81] Testing non-testable programs [Weyuker TCJ’82] Overview of approaches [Baresi ’01]  Embedded assertion languages  Extrinsic interface contracts  Pure specification languages  Trace checking & log file analysis Using metamorphic testing [Chen JIST’02]

Chris Murphy – Columbia University27 Related Work: Testing in the Field Perpetual Testing [Osterweil QW’96] Gamma [Orso ISSTA’02] Skoll [Memon ICSE’04] Cooperative Bug Isolation [Liblit RAMSS’04] Failure-Oblivious Computing [Rinard OSDI’04] Security systems that monitor for errors

Chris Murphy – Columbia University28 Methodology (1) To further demonstrate feasibility, we will conduct Automated Metamorphic System Testing and Metamorphic Runtime Checking on real-world Machine Learning applications as they run under normal operation in the field We will also show that certain defects would not ordinarily have been detected by using Metamorphic Testing (or other techniques) prior to deployment

Chris Murphy – Columbia University29 Methodology (2) To show that our testing approach advances the state of the art in testing applications that have no test oracle, we will compare it to other techniques that could be used to address this same problem  Symbolic execution  Model checking  Program invariants  Formal specification languages

Chris Murphy – Columbia University30 Expected Contributions 1. Automated Metamorphic System Testing and a testing framework called Amsterdam 2. Metamorphic Runtime Checking and a testing framework called Columbus 3. A set of guidelines for assisting the formulation and specification of metamorphic properties

Chris Murphy – Columbia University31 Using Runtime Testing to Detect Defects in Applications without Test Oracles Chris Murphy

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.