2 Why We Need Model-Based Testing

More documents

Recommendations

Info

Systems with Finite Models 107 [StateInvariant] public static bool CalibrateInRange() { return (!CalibrateEnabled() || buffer == InRange); } Figure 6.8. Reactive system: state invariant for safety analysis. safety analysis requires that we identify states. We resolve this by describing the states where the action is enabled, instead of the action itself. In the unsafe states, the calibration action is enabled but the temperature is invalid. This Boolean expression is true in the unsafe states: CalibrateEnabled() && buffer != InRange // unsafe states It is often easier to describe the unsafe states first, as we did here. Negate the expression for unsafe states to obtain the safety condition. 4 !CalibrateEnabled() || buffer == InRange // safety condition We wrap this expression in a static method, label it with the [StateInvariant] attribute, and place it in the Controller class in the Reactive model program namespace (Figure 6.8). Now that we have defined the state invariant, exploration can find all of the unsafe states in the generated FSM. We command the mpv tool to explore the reactive system model program, and to count and display unsafe states: mpv /r:Controller.dll Reactive.Factory.Create /safetyCheckIsOn+ ... Figure 6.9 shows the generated FSM. We had to increase MaxTransitions to 300 to generate the true FSM. The mpv tool finds 239 transitions and 121 states, including 4 unsafe states. The unsafe states are marked but they are hard to find in Figure 6.9. They are easier to find in the mpv session, where we can magnify and scroll the graph. To check that the unsafe states found by exploration include the one we expect, we explore interactively. We reproduce the OutOfRangeMessageWhenIdle run we found by experimenting with the implementation (Chapter 3, Section 3.4). The FSM we generate shows a path to one of the unsafe states (Figure 6.10). This FSM contains the second trace we wrote in Chapter 5, Section 5.7.1. The unsafe state is the state labeled 105 near the bottom of the diagram, where Calibrate is enabled. 4 Here we apply De Morgan’s Law, which shows how to negate expressions involving and and or: !(p && q) == !p || !q. more free ebooks download links at: http://www.ebook-x.com
Page 2:
This page intentionally left blank
Page 6:
more free ebooks download links at:
Page 10:
CAMBRIDGE UNIVERSITY PRESS Cambridg
Page 14:
vi Contents 2.7 Some simple scenari
Page 18:
viii Contents 8.5 Limitations of of
Page 22:
x Contents V Appendices A Modeling
Page 26:
xii Preface specification, or appli
Page 30:
xiv Preface one of the main purpose
Page 34:
xvi Acknowledgments as evolving alg
Page 38:
Page 42:
4 Describe, Analyze, Test We also t
Page 46:
6 Describe, Analyze, Test do behave
Page 50:
8 Describe, Analyze, Test To use ct
Page 54:
10 Describe, Analyze, Test Concept
Page 58:
12 Describe, Analyze, Test testing
Page 62:
14 Why We Need Model-Based Testing
Page 66:
Page 70:
Page 74:
Page 78:
Page 82:
Page 86:
Page 90:
Page 94:
Page 98:
32 3 Why We Need Model-Based Analys
Page 102:
34 Why We Need Model-Based Analysis
Page 106:
Page 110:
Page 114:
Page 118:
Page 122:
Page 126:
Page 130:
Page 134:
Page 138:
Page 142:
54 Further Reading The standard ref
Page 146:
Page 150:
58 Model Programs system comprising
Page 154:
60 Model Programs Figure 5.2. Newsr
Page 158:
62 Model Programs reasonable work a
Page 162:
64 Model Programs 5.3.6 Select the
Page 166:
66 Model Programs } } static bool S
Page 170:
68 Model Programs Parameters and lo
Page 174:
70 Model Programs [Test] [Category(
Page 178:
72 Model Programs that the sequence
Page 182:
74 Model Programs ServerSend(212.0)
Page 186:
76 Model Programs using NModel; usi
Page 190:
78 Model Programs // ... continued
Page 194:
80 Model Programs } } // ... contin
Page 198: 82 Model Programs the set of argume
Page 202: 84 Model Programs Timeout(); Poll()
Page 206: 86 Model Programs using System; //
Page 210: 88 Model Programs // ... Reactive s
Page 214: 90 Model Programs // ... Reactive s
Page 218: 92 Model Programs } } // ... Reacti
Page 222: 94 6 Exploring and Analyzing Finite
Page 226: 96 Exploring and Analyzing Finite M
Page 230: 98 Exploring and Analyzing Finite M
Page 234: 100 Exploring and Analyzing Finite
Page 252: 75 Systems with Finite Models 109 T
Page 256: Systems with Finite Models 111 0 Co
Page 260: 4 Systems with Finite Models 113 Co
Page 264: 7 Structuring Model Programs with F
Page 268: ServerClose() Systems with Finite M
Page 272: Systems with Finite Models 119 name
Page 276: Systems with Finite Models 121 This
Page 280: 0 A() 1 B(2) 2 Systems with Finite
Page 284: Systems with Finite Models 125 0 C(
Page 288: 0 B(2) C() 1 Systems with Finite Mo
Page 292: Systems with Finite Models 129 Reca
Page 296: ClientSend() 7 Systems with Finite
Page 300:
0 ShowTitles() 1 SortByFirst() 2 So
Page 304:
Command() 9 12 33 58 Systems with F
Page 308:
8 Testing Closed Systems In this ch
Page 312:
62 63 61 60 31 Systems with Finite
Page 316:
Systems with Finite Models 141 Test
Page 320:
Systems with Finite Models 143 usin
Page 324:
Systems with Finite Models 145 Here
Page 328:
Systems with Finite Models 147 When
Page 332:
Systems with Finite Models 149 in C
Page 336:
Systems with Finite Models 151 test
Page 340:
Part III Systems with Complex State
Page 344:
10 Modeling Systems with Structured
Page 348:
Systems with Complex State 157 limi
Page 352:
10.3.1 Sets Systems with Complex St
Page 356:
Systems with Complex State 161 Set
Page 360:
Systems with Complex State 163 syst
Page 364:
Systems with Complex State 165 Sequ
Page 368:
Systems with Complex State 167 10.3
Page 372:
Systems with Complex State 169 Bag
Page 376:
Systems with Complex State 171 Edit
Page 380:
Systems with Complex State 173 Clie
Page 384:
Systems with Complex State 175 } {
Page 388:
Systems with Complex State 177 } }
Page 392:
Systems with Complex State 179 } re
Page 396:
13 11 Commit("bob") 12 Systems with
Page 400:
11 Analyzing Systems with Complex S
Page 404:
Systems with Complex State 185 rela
Page 408:
Systems with Complex State 187 We m
Page 412:
Systems with Complex State 189 11.2
Page 416:
12 Testing Systems with Complex Sta
Page 420:
Systems with Complex State 193 This
Page 424:
Systems with Complex State 195 usin
Page 428:
Page 432:
Systems with Complex State 199 The
Page 436:
Page 440:
Systems with Complex State 203 Afte
Page 444:
Systems with Complex State 205 if (
Page 448:
Systems with Complex State 207 seve
Page 452:
Systems with Complex State 209 # fa
Page 456:
Systems with Complex State 211 the
Page 460:
Delete("") Systems with Complex Sta
Page 464:
Systems with Complex State 215 Test
Page 468:
Systems with Complex State 217 "b".
Page 472:
13 Further Reading There are many e
Page 476:
Part IV Advanced Topics more free e
Page 480:
14 Compositional Modeling We have s
Page 484:
Advanced Topics 225 Only a subset o
Page 488:
Advanced Topics 227 namespace SP {
Page 492:
Advanced Topics 229 FSM(0, Acceptin
Page 496:
Page 500:
Page 504:
Advanced Topics 235 ResSetup Cancel
Page 508:
Advanced Topics 237 ReqSetup(3, _)
Page 512:
Page 516:
Advanced Topics 241 14.3 Properties
Page 520:
Advanced Topics 243 values "Inactiv
Page 524:
Advanced Topics 245 14.4 Modeling t
Page 528:
15 Modeling Objects In the previous
Page 532:
Advanced Topics 249 } } public over
Page 536:
Advanced Topics 251 This example sh
Page 540:
Advanced Topics 253 15.3 Object IDs
Page 544:
Advanced Topics 255 namespace Payro
Page 548:
Advanced Topics 257 0 CreateEmploye
Page 552:
16 Reactive Systems This chapter di
Page 556:
Advanced Topics 261 Client Server R
Page 560:
4 Advanced Topics 263 3 Add("b") Dr
Page 564:
Advanced Topics 265 namespace SPImp
Page 568:
Advanced Topics 267 condition can b
Page 572:
Advanced Topics 269 TestResult RunT
Page 576:
Advanced Topics 271 action. When ex
Page 580:
A1 A2 Advanced Topics 273 a R(0) b
Page 584:
17 Further Reading There is a lot o
Page 588:
Advanced Topics 277 that linearizes
Page 592:
Part V Appendices more free ebooks
Page 596:
A Modeling Library Reference A mode
Page 600:
Appendices 283 namespace MyModelPro
Page 604:
Appendices 285 • If the target me
Page 608:
Appendices 287 The example above de
Page 612:
Appendices 289 where name is a stri
Page 616:
Appendices 291 } { } static Set pen
Page 620:
Appendices 293 GreaterThan(Compound
Page 624:
Appendices 295 Forall(Predicate) Un
Page 628:
Appendices 297 Methods The followin
Page 632:
Appendices 299 Syntax public sealed
Page 636:
Appendices 301 of elements. The dat
Page 640:
Appendices 303 Add(T) Creates a bag
Page 644:
Appendices 305 Second The second va
Page 648:
Appendices 307 The Action data type
Page 652:
Appendices 309 B.1.3 Options /?, /h
Page 656:
Appendices 311 B.2 Offline test gen
Page 660:
Appendices 313 accepting state is r
Page 664:
C Glossary Undefined terms The foll
Page 668:
Appendices 317 assurance method. A
Page 672:
Appendices 319 decrementing action
Page 676:
Appendices 321 finitize. To write a
Page 680:
Appendices 323 IUT. Implementation
Page 684:
Appendices 325 oracle. The authorit
Page 688:
Appendices 327 sandbox. Atest harne
Page 692:
Appendices 329 stopping rule. A rul
Page 696:
Appendices 331 wait action.Anintern
Page 700:
Bibliography J.-R. Abrial. The B Bo
Page 704:
Bibliography 335 E. M. Clarke, O. G
Page 708:
Bibliography 337 D. Lee and M. Yann
Page 712:
Bibliography 339 J. Woodcock and M.
Page 716:
Index a priori testing. See offline
Page 720:
Index 343 Common Language Infrastru
Page 724:
Index 345 IOCO theory, 277 isomorph
Page 728:
Index 347 safety requirement, 34, 1
Page 732:
Index 349 unshared action, 123-124,
show all

2 Why We Need Model-Based Testing

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?