Date post: | 04-Dec-2014 |
Category: |
Software |
Upload: | bob-binder |
View: | 332 times |
Download: | 2 times |
20140918 System Verification Associates © 2014 1
How to Release Rock-solid RESTful
APIs and Ice the Testing BackBlob
Unicom Next Generation Testing Conference
Chicago, September 18, 2014
Robert V. Binder
System Verification Associates
Enabling High Assurance
http://sysverif.com
20140918 System Verification Associates © 2014 2
Overview
• Background
• Advanced API Verification
• Dataflow Testing Model
• Model-based Testing Demo
• The Testing Twofer
• Q&A
20140918 System Verification Associates © 2014 3
Discovery Analysis Design Verification Support
BACKGROUND
20140918 System Verification Associates © 2014 4
You are here … Browser
HTTP Client
HTTP
Server
App
HTTP Client
App
SOAP Client
HTTP Client
Files
HTTP
Server
Service
SOAP Server
Service
SOAP Server
Files
SOAP API
REST API
20140918 System Verification Associates © 2014 5
Programmable Web’s Growing Roster
20140918 System Verification Associates © 2014 6
Google Trends: REST and SOAP
100
News Headline Occurrence, Monthly
SOAP API
REST API
20140918 System Verification Associates © 2014 7
So many APIs, so little time …
Why is this happening?
20140918 System Verification Associates © 2014 8
Challenges
• Usability
• Narrow developer focus
• Poor documentation
• Revenue prevention
• Assurance Fragmentation
• Functionality
• Security
• Performance
• Low reliability
• Ineffective testing
• Manual UI interaction
• Developer-centric, hand-coded unit testing
• Wheel spinning
• High QA expense
• Low quality
All-aspect approach needed
20140918 System Verification Associates © 2014 9
Discovery Analysis Design Verification Support
ADVANCED API VERIFICATION
20140918 System Verification Associates © 2014 10
Discovery Sprint
• Survey and catalog • API documentation
• Open and closed issues
• Social media views
• Codebase
• Usage logs
• Results • Strategy
• Test environment spec
• Report card
Discovery Analysis Design Verification Support
20140918 System Verification Associates © 2014 11
Analysis Sprint
• Workflow
• Construct usage profile
• Scrutinize documentation
• Abstract data model
• Results
• Doc issues
• Gap analysis
• Revised strategy
Discovery Analysis Design Verification Support
20140918 System Verification Associates © 2014 12
Design Sprint
• Workflow
• Configure virtual lab
• Behavior/data models
• Traffic capture/parsers
• Instantiate adapters
• Results
• Stable test environment
• All-aspect test model
• Revised strategy
Discovery Analysis Design Verification Support
20140918 System Verification Associates © 2014 13
Verification Sprint
• Workflow
• Model checking
• Generate/run test suites
• Collect traffic logs
• Analyze coverage
• Results
• All test artifacts
• Test coverage report
• Final report
• Briefing
Discovery Analysis Design Verification Support
20140918 System Verification Associates © 2014 14
Support
• As needed
• Incremental design review
• Usage monitoring
• CI and regression testing
• Results
• Continuity
• Protect investment
• Continuous improvement
Discovery Analysis Design Verification Support
20140918 System Verification Associates © 2014 15
Discovery Analysis Design Verification Support
DATAFLOW TESTING MODEL
20140918 System Verification Associates © 2014 16
System Under Test
Service
Browser
HTTP Client
HTTP
Server
App
SOAP Client
SOAP Server
HTTP Client
Files
Service HTTP
Server
SOAP Server
Files
App
HTTP Client
REST API
20140918 System Verification Associates © 2014 17
Test Configuration
Service
App
HTTP
Server
HTTP Client
Service HTTP
Server
Generated
Test Code
Test Model
REST API
20140918 System Verification Associates © 2014 18
REST = Methods + Resources + Parameters
Service App HTTP
Server HTTP Client
HTTP
Server Service
HTTP methods:
GET, PUT, POST, DELETE …
HTTP resources (URI):
http://foo.com/titles
HTTP returned payload, JSON format: {"firstName": "Bob", "lastName": "Binder", "books": [ { "title": "Testing Object-oriented"}, { "title": "Application Debugging"} ] }
Status Code:
200, 201, 400, 404
/?au=binder
20140918 System Verification Associates © 2014 19
REST Dataflow Model – Normal Paths
alpha
Defined
Used
Gone
PUT/201
GET/200
PUT|POST/200
DELETE/200
DELETE/200 PUT|POST/200
GET/200
20140918 System Verification Associates © 2014 20
REST Dataflow Model – Method Errors
alpha
Defined
Used
Gone
DELETE|GET/404
DELETE|GET|PUT|POST/404
20140918 System Verification Associates © 2014 21
REST Dataflow Model – Parameter Errors
alpha
Defined
Used
Gone
PUT|POST|GET|DELETE
?garbage/400
PUT|POST|GET|DELETE
?garbage/400
20140918 System Verification Associates © 2014 22
REST Dataflow Model
alpha
Defined
Used
Gone
Test Pattern: Non-Modal Class
20140918 System Verification Associates © 2014 23
Input variation, all sequences
• Nominal values
• Boundary values
• Operator mutants
• Fuzzing, each/all
• Domain model
• Pairwise selection
• Sequence
randomization
Sounds like a lot of work!
20140918 System Verification Associates © 2014 24
Model-based Testing • Model-based testing tool
• Microsoft Research, 2001
• Test 500 MSFT APIs, 2007-12
• Robust and stable
• Visual Studio “power tool”
• C# code, not cartoons
• Generates standalone executable test suite
20140918 System Verification Associates © 2014 25
Demo
• Synthetic Client
• Model Program
• Coordination File
• Test Cases
SUT Host Test Host
Test Suite
HTTP
Server Synthetic
Client
Pass/Fail
Synthetic
Client
Interface
Spex
Rules
Spex
Cord
Test Modeling Test Execution
Service
Under
Test Explore/
Generate
20140918 System Verification Associates © 2014 26
Synthetic Client • The test model’s view of the SUT
• Static class wrapper for HTTP client
• Public methods correspond to SUT’s
HTTP methods and resources
• Manage server-side setup/cleanup
• Message serialize/deserialize
• Becomes part of the executable test
code assembly
• Example is a stub!
20140918 System Verification Associates © 2014 27
Model Program • [Rule]
• Determines when an action is called
• Selects argument values for the action call
• Computes expected results
• Updates its model state as needed
• Simulates environment and/or system under test
20140918 System Verification Associates © 2014 28
Cord File • Defines all model
actions
• action = Synthetic Client public method
• machine • Any action sequence
• Similar to regex
• May use other machines
• Model any use case, scenario, slice, etc.
• Many options
20140918 System Verification Associates © 2014 29
What is Exploration? • Find all action sequences and data
bindings that model program Rules and a machine allow
• Search loop
• Select a rule for a machine action
• If enabling condition true:
• Update model program state
• Return expected results
• Stop when all selected inputs used or size limit exceeded
20140918 System Verification Associates © 2014 30
Machine Exploration
• Shows all possible
action sequences for a
machine
• No data bindings
• Note similarity to
normal path dataflow
20140918 System Verification Associates © 2014 31
Model Program Exploration
• Rules + machine
• Rules add data
bindings, expected
results
• Many ways to
choose data values
20140918 System Verification Associates © 2014 32
Test Cases from an Exploration
• Spex chooses exploration steps
that end in accepting state
• Covers all states and steps at
least once
20140918 System Verification Associates © 2014 33
Generate Test Code
• Standalone code – does
not require model
• Run from VS Test
Explorer or command
line
20140918 System Verification Associates © 2014 34
SUT Host Test Host
Test Suite
HTTP
Server Synthetic
Client
Pass/Fail
Synthetic
Client
Interface
Spex Rules
Spex Cord
Test Modeling Test Execution
Service
Under
Test Explore/
Generate
20140918 System Verification Associates © 2014 35
Test Strategy
• Each resource path
• Interleave all DUG
variants
• Accepting sequence
• Wrong sequence
• Pairwise combination
• Parameters (path and value)
• Mutants, nominal, edge
• Security
• Interleave Fuzz cases
• Abuse case model
• All other HTTP methods
• Performance
• Virtual users/test drivers
• Randomize combos
20140918 System Verification Associates © 2014 36
Discovery Analysis Design Verification Support
THE TESTING TWOFER
20140918 System Verification Associates © 2014 37
The Testing BackBlob Total
Number
of Test
Cases
Sprint 1
Available
Test Time
Manual Test
Cases not
executed
Automated Test
Cases not
maintained
Total Developed
Test Cases
Sprint 2 Sprint 3 Sprint 4
20140918 System Verification Associates © 2014 38
The Attack of the Testing BackBlob
Coming soon … to a scrum near you
20140918 System Verification Associates © 2014 39
Test Asset Size
Model
Test Code
Adapters
Model-based Testing Behavior Driven Development
20140918 System Verification Associates © 2014 40
Test Asset Maintenance Load
Model
Test Code
Adapters
Model-based Testing Behavior Driven Development
20140918 System Verification Associates © 2014 41
The Testing Twofer
Rock Solid APIs
• Documentation Scrutiny
• Fact-based Evaluation
• Multi-dimensional testing
• Dataflow coverage
• Everything wrong at least once
• Fuzzing
• Repeat at scale
Icing the BackBlob
• Develop/maintain model
• Regenerate test suites
20140918 System Verification Associates © 2014 42
Q & A
#MoreModelsLessTests
http://sysverif.com
20140918 System Verification Associates © 2014 43
Discovery Analysis Design Verification Support
ETC.
Say what you do, do what you say
20140918 System Verification Associates © 2014 44
Robert V. Binder
Robert Binder is a high-assurance entrepreneur.
He has developed hundreds of application systems and advanced automated testing solutions. As test process architect for Microsoft’s Open Protocol Initiative, he lead the application of model-based testing to all of Microsoft’s server-side APIs. He is the author of the definitive Testing Object-Oriented Systems: Models, Patterns, and Tools and two other books. He holds a US patent for model-based testing of mobile systems.
• MS, EECS, University of Illinois at Chicago
• MBA, University of Chicago
• BA, University of Chicago
20140918 System Verification Associates © 2014 45
System Verification Associates Enabling High Assurance
• Chicago- based consulting boutique
• Clients are typically software development organizations for whom system failure is not an option.
• We assist clients in achieving high reliability and effectiveness in their IT processes and systems.
• Founded in 2009 and led by Robert V. Binder
• http://sysverif.com
• Advanced API Verification Datasheet
• Supported Microsoft’s Open Protocols project with a team of experts; Robert Binder served process architect, leading the technical work of over 300 staff located in Redmond, China, India, and Argentina.
• Assessed and improved software process at several FDA-regulated product companies, balancing quality management system compliance and Agile practices.
• Developed model-based testing solutions for high-frequency trading and aerospace applications.
• Helped software service and product companies articulate unique high-value messaging for innovative services.
• Conducted and published the Model-based Testing User Survey of 2012 and 2014 (forthcoming.)
20140918 System Verification Associates © 2014 46
Does My API Suck? Your documentation is incomplete, wrong,
misleading, or just plain incomprehensible.
Users complain that coding simple use cases is just too much hassle.
Users often rely on workarounds—they FTP files instead of using your API’s getFile.
Your API is unbalanced or incomplete—you can turn something on, but not off.
Your API’s service crashes or responds with garbage when messages are out of order or contain invalid data.
Version mismatches have unpredictable results.
No one is really sure what will happen with edge cases and they don’t want to know.
Your API allows your service to be hacked with common attack vectors.
Your service supports several protocols (REST, SOAP,…) or formats (JSON, XML,…), but behavior and data isn’t consistent
Your API doesn’t provide useful feedback—good and bad input all get the same response.
Your service is so awesome that it draws traffic spikes, but then your server chokes and dies.
Buggy APIs are eating the world