1. No category

Lecture 8

Informatics 43
Introduction to Software Engineering
Lecture 8
Duplication of course material for any commercial purpose without the explicit written
permission of the professor is prohibited.
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 1
Today’s Lecture
• Quality assurance
• Testing
• Structural Testing
• Specification-based Testing
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 2
What Do These Have in Common?
•
•
•
•
•
•
•
•
•
SDCL
Airbus 320
Audi 5000
Mariner 1 launch
AT&T telephone network
Ariane 5
Word 3.0 for MAC
Radiation therapy machine
NSA
Y2K
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 3
They All Failed!
•
•
•
•
•
•
•
•
•
SDCL
Airbus 320
Audi 5000
Mariner 1 launch
AT&T telephone network
Ariane 5
Word 3.0 for MAC
Radiation therapy machine
NSA
Y2K
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 4
They All Failed!
•
Airbus 320
– http://catless.ncl.ac.uk/Risks/10.02.html#subj1.1
•
Audi 5000
–
–
•
“unintended” acceleration problem
A figure of speech: “We’re Audi 5000!”
Mariner 1 launch
– http://catless.ncl.ac.uk/Risks/5.73.html#subj2.1
•
AT&T telephone network
–
•
Ripple effect, from switch to switch, network down/dark for 2-3 days
Ariane 5
– http://catless.ncl.ac.uk/Risks/18.24.html#subj2.1
•
Word 3.0 for MAC
–
•
“Plagued with bugs”, replaced for free later Word 3.0.1
Radiation therapy machine
– http://courses.cs.vt.edu/~cs3604/lib/Therac_25/Therac_5.html
•
NSA
–
•
SDCL
Spy computer crash, system down/dark for a couple of days
Y2K
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 5
Impact of Failures
• Not just “out there”
–
–
–
–
Space shuttle
Mariner 1
Ariane 5
NSA
• But also “at home”
–
–
–
–
–
Your car
Your call to your mom
Your wireless network, social network, mobile app
Your homework
Your hospital visit
Peter Neumann’s Risks Digest: http://catless.ncl.ac.uk/Risks
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 6
Verification and Validation
• Verification
– Ensure software meets specifications
– Internal consistency
– “Are we building the product right?”
• Validation
– Ensure software meets customer’s intent
– External consistency
– “Are we building the right product?”
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 7
Software Qualities
•
•
•
•
•
•
SDCL
Correctness
Reliability
Efficiency
Integrity
Usability
Maintainability
Software Design and
Collaboration Laboratory
•
•
•
•
•
•
Testability
Flexibility
Portability
Reusability
Interoperability
Performance, etc.
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 8
Quality Assurance
• Assure that each of the software qualities is met
– Goals set in requirements specification
– Goals realized in implementation
• Sometimes easy, sometimes difficult
– Portability versus safety
• Sometimes immediate, sometimes delayed
– Understandability versus evolvability
• Sometimes provable, sometimes doubtful
– Size versus correctness
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 9
An Idealized View of QA
Complete formal specification
of problem to be solved
Correctness-preserving transformation
Design, in formal notation
Correctness-preserving transformation
Code, in verifiable language
Correctness-preserving transformation
Executable machine code
Correctness-preserving transformation
Execution on verified hardware
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 10
A Realistic View of QA
Mixture of formal and
informal specifications
Manual transformation
Design, in mixed notation
Manual transformation
Code, in C++, Java, Ada, …
Compilation by commercial compiler
(Intel Pentium-based) machine code
Commercial firmware
Execution on commercial hardware
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 11
First Complication
Real needs
Actual
Specification
“Correct”
Specification
No matter how sophisticated the QA process, the
problem of creating the initial specification remains
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 12
Second Complication
• Complex data communications
– Electronic fund transfer
• Distributed processing
– Web search engine
• Stringent performance objectives
– Air traffic control system
• Complex processing
– Medical diagnosis system
Sometimes, the software system is extremely
complicated making it tremendously difficult to perform QA
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 13
Third Complication
Project
Management
Quality Assurance
Group
Development
Group
It is difficult to divide the particular responsibilities
involved when performing quality assurance
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 14
Fourth Complication
• Quality assurance lays out the rules
– You will check in your code every day
– You will comment your code
– You will…
• Quality assurance also uncovers the faults
– Taps developers on their fingers
– Creates image of “competition”
• Quality assurance is viewed as cumbersome, “heavy”
– “Just let me code”
Quality assurance has a negative connotation
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 15
Available Techniques
• Formal program verification
• Static analysis of program properties
– Concurrent programs: deadlock, starvation, fairness
– Performance: min/max response time
• Code reviews and inspections
• Testing
Most techniques are geared towards verifying correctness
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 16
Reminder: Use the Principles
• Rigor and formality
• Separation of concerns
– Modularity
– Abstraction
• Anticipation of change
• Generality
• Incrementality
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 17
Testing
• Exercise a module, collection of modules, or system
– Use predetermined inputs (“test case”)
– Capture actual outputs
– Compare actual outputs to expected outputs
• Actual outputs equal to expected outputs

test case succeeds
• Actual outputs not equal to expected outputs

test case fails
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 18
V-Model of Development and Testing
Develop Requirements
Requirements Review
Execute System Tests
Develop Acceptance Tests
Acceptance Test Review
Design
Design Review
Execute Integration Tests
Develop Integration Tests
Integration Tests Review
Code
Code Review
Execute Unit Tests
Develop Unit Tests
Unit Tests Review
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 19
Testing Terminology
• Failure
– Incorrect or unexpected output
– Symptom of a fault
• Fault
– Invalid execution state
– Symptom of an error
– May or may not produce a failure
• Error
– Defect or anomaly in source code
– Commonly referred to as a “bug”
– May or may not produce a fault
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 20
Testing Goals
• Reveal failures/faults/errors
• Locate failures/faults/errors
• Show system correctness
– Within the limits of optimistic inaccuracy
• Improve confidence that the system performs as specified
(verification)
• Improve confidence that the system performs as desired
(validation)
Program testing can be used to show the presence
of bugs, but never to show their absence [Dijkstra]
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 21
Levels of Testing
• Unit testing
– Testing of a single code unit
– Requires use of test drivers
• Integration testing
– Testing of interfaces among integrated units
• Incremental
• “Big bang”
– Often requires test drivers and test stubs
• Acceptance testing
– Testing of complete system for satisfaction of requirements
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 22
Test Tasks
• Devise test cases
– Target specific areas of the system
– Create specific inputs
– Create expected outputs
• Choose test cases
– Not all need to be run all the time
• Regression testing
• Run test cases
– Can be labor intensive
– Opportunity for automation
All in a systematic, repeatable, and accurate manner
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 23
Test Automation
• Opportunities
– Test execution
– Scaffolding
• Executing test cases
– Most repetitive, non-creative aspect of the test process
– Design once, execute many times
– Tool support available
• jUnit for java, xUnit in general
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 24
Scaffolding
• Term borrowed from construction, civil engineering
• Additional code to support development
– But usually not included or visible in the deployed/shipped code
– Not experienced by the end user
• Test driver
– A function or program (“main”) for driving a test
• Test stub
– A replacement of the “real code” that’s being called by the program
• Test harness
– A replacement of any (possibly many) other parts of deployed system
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 25
Test Oracles
• Provide a mechanism for deciding whether a test case
execution succeeds or fails
• Critical to testing
– Used in white box testing
– Used in black box testing
• Difficult to automate
– Typically relies on humans
– Typically relies on human intuition
– Formal specifications may help
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 26
Oracle Example: Cosine
• Your test execution shows cos(0.5) = 0.87758256189
• You have to decide whether this answer is correct?
• You need an oracle
–
–
–
–
SDCL
Draw a triangle and measure the sides
Look up cosine of 0.5 in a book
Compute the value using Taylor series expansion
Check the answer with your desk calculator
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 27
Two Approaches
• White box testing
–
–
–
–
Structural testing
Test cases designed, selected, and ran based on structure of the code
Scale: tests the nitty-gritty
Drawbacks: need access to source
• Black box testing
–
–
–
–
SDCL
Specification-based testing
Test cases designed, selected, and ran based on specifications
Scale: tests the overall system behavior
Drawback: less systematic
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 28
Structural Testing
• Use source code to derive test cases
– Build a graph model of the system
• Control flow
• Data flow
– State test cases in terms of graph coverage
• Choose test cases that guarantee different types of coverage
–
–
–
–
–
SDCL
Node coverage
Edge coverage
Loop coverage
Condition coverage
Path coverage
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 29
Example: Building the program graph
1 Node getSecondElement() {
2
Node head = getHead();
3
if (head == null)
4
5
6
7
return null;
if (head.next == null)
return null;
return head.next.node;
8 }
1
SDCL
Software Design and
Collaboration Laboratory
2
3
4
5
6
Department of Informatics, UC Irvine
7
sdcl.ics.uci.edu 30
Example: Averaging homework grades!
1 float homeworkAverage(float[] scores) {
2
float min = 99999;
3
float total = 0;
4
for (int i = 0 ; i < scores.length ; i++) {
5
if (scores[i] < min)
6
min = scores[i];
7
total += scores[i];
8
}
9
total = total – min;
10
return total / (scores.length – 1);
11 }
1
SDCL
Software Design and
Collaboration Laboratory
2
3
4
5
6
7
Department of Informatics, UC Irvine
8
9
10
sdcl.ics.uci.edu 31
Node Coverage
• Select test cases such that every node in the graph is visited
– Also called statement coverage
• Guarantees that every statement in the source code is executed at least
once
• Selects minimal number of test cases
Test case: { 2 }
1
SDCL
Software Design and
Collaboration Laboratory
2
3
4
5
6
7
Department of Informatics, UC Irvine
8
9
10
sdcl.ics.uci.edu 32
Edge Coverage
• Select test cases such that every edge in the graph is visited
– Also called branch coverage
• Guarantees that every branch in the source code is executed at least once
• More thorough than node coverage
– More likely to reveal logical errors
Test case: { 1, 2 }
1
SDCL
Software Design and
Collaboration Laboratory
2
3
4
5
6
7
Department of Informatics, UC Irvine
8
9
10
sdcl.ics.uci.edu 33
Other Coverage Criteria
• Loop coverage
– Select test cases such that every loop boundary and interior is tested
• Boundary: 0 iterations
• Interior: 1 iteration and > 1 iterations
– Watch out for nested loops
– Less precise than edge coverage
• Condition coverage
– Select test cases such that all conditions are tested
• if (a > b || c > d) …
– More precise than edge coverage
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 34
Other Coverage Criteria
• Path coverage
– Select test cases such that every path in the graph is visited
– Loops are a problem
• 0, 1, average, max iterations
• Most thorough…
• …but is it feasible?
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 35
Challenges
• Structural testing can cover all nodes or edges without
revealing obvious faults
– No matter what input, program always returns 0
• Some nodes, edges, or loop combinations may be infeasible
– Unreachable/unexecutable code
• “Thoroughness”
– A test suite that guarantees edge coverage also guarantees node
coverage…
– …but it may not find as many faults as a different test suite that only
guarantees node coverage
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 36
More Challenges
•
•
•
•
•
•
•
•
SDCL
Interactive programs
Listeners or event-driven programs
Concurrent programs
Exceptions
Self-modifying programs
Mobile code
Constructors/destructors
Garbage collection
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 37
Specification-Based Testing
• Use specifications to derive test cases
– Requirements
– Design
– Function signature
• Based on some kind of input domain
• Choose test cases that guarantee a wide range of coverage
–
–
–
–
SDCL
Typical values
Boundary values
Special cases
Invalid input values
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 38
“Some Kind of Input Domain”
• Determine a basis for dividing the input domain into
subdomains
– Subdomains may overlap
• Possible bases
–
–
–
–
–
Size
Order
Structure
Correctness
Your creative thinking
• Select test cases from each subdomain
– One test case may suffice
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 39
Example
1 float homeworkAverage(float[] scores) {
2
3
float total = 0;
4
for (int i = 0 ; i < scores.length ; i++) {
5
if (scores[i] < min)
6
min = scores[i];
7
total += scores[i];
8
}
9
total = total – min;
10
return total / (scores.length – 1);
11 }
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 40
Possible Bases
• Array length
–
–
–
–
Empty array
One element
Two or three elements
Lots of elements
Input domain: float[]
Basis: array length
small
one
large
SDCL
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
empty
sdcl.ics.uci.edu 41
Possible Bases
• Position of minimum score
– Smallest element first
– Smallest element in middle
– Smallest element last
Input domain: float[]
Basis: position of minima
somewhere in middle
first
SDCL
Software Design and
Collaboration Laboratory
last
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 42
Possible Bases
• Number of minima
– Unique minimum
– A few minima
– All minima
Input domain: float[]
Basis: number of minima
1 minimum
SDCL
Software Design and
Collaboration Laboratory
all data equal
2 minima
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 43
Testing Matrix
Test case
(input)
SDCL
Software Design and
Collaboration Laboratory
Basis
(subdomain)
Department of Informatics, UC Irvine
Expected
output
Notes
sdcl.ics.uci.edu 44
homeworkAverage 1
Test case
(input)
()
Empty
One
Small
Large
x
(87.3)
(90,95,85)
(80,81,82,83,
84,85,86,87,
88,89,90,91)
SDCL
Basis: Array length
Software Design and
Collaboration Laboratory
Expected
output
0.0
x
87.3
x
Notes
99999!
crashes!
92.5
x
Department of Informatics, UC Irvine
86.0
sdcl.ics.uci.edu 45
homeworkAverage 2
Test case
(input)
(80,87,88,89)
Position of minimum
First
Middle
Last
x
Expected
output
88.0
(87,88,80,89)
x
88.0
(99,98,0,97,96)
x
97.5
(87,88,89,80)
SDCL
Software Design and
Collaboration Laboratory
Notes
x
Department of Informatics, UC Irvine
88.0
sdcl.ics.uci.edu 46
homeworkAverage 3
Test case
(input)
(80,87,88,89)
Number of minima
One
Several
All
x
Expected
output
88.0
(87,86,86,88)
x
87.0
(99,98,0,97,0)
x
73.5
(88,88,88,88)
SDCL
Software Design and
Collaboration Laboratory
Notes
x
Department of Informatics, UC Irvine
88.0
sdcl.ics.uci.edu 47
How to Avoid Problems of Structural Testing
•
•
•
•
•
•
•
•
SDCL
Interactive programs
Listeners or event-driven programs
Concurrent programs
Exceptions
Self-modifying programs
Mobile code
Constructors/destructors
Garbage collection
Software Design and
Collaboration Laboratory
Department of Informatics, UC Irvine
sdcl.ics.uci.edu 48

 Download  Report

Paperzz.com

Your Paperzz

© Copyright 2025 Paperzz