Software Testing, Verification and Validation 2022/2023

The Software Testing, Verification and Validation course is structured as a semester course and has been planned for 6 ECTS (1.5 hours per week of lectures and 1.5 hours per week of recitation classes). This document describes its organization, the program contents, bibliography, schedule, assessment components, and the teaching methodology for the 2022/2023 instance.

• Degree: Master in Informatics and Computing Engineering (M.EIC) / Master in Software Engineering (MESW)
• Course Unit: Software Testing, Verification and Validation
• Acronym: TVVS
• Curricular Year/Semester: 4th year, 1st semester
• European Credit Transfer System (ECTS): 6
• Instance: 2022/2023
• Official website: M.EIC’s link / MESW’s link
• Moodle: M.EIC’s link / MESW’s link
• Lectures (1 x 1.5 hours): Professor José Campos
• Recitation classes (1 x 1.5 hours): Professor José Campos
• Teaching language: Portuguese but suitable for English-speaking students

[Syllabus] [Schedule] [Assessment] [Lectures] [Recitation classes] [Assignments] [Miscellaneous]

Latest announcements

• December 16, 2022: exercises used in recitation class #9 are available in here.
• December 16, 2022: slides used in lecture #11 are available in here.
• December 6, 2022: slides used in lecture #10 are available in here.
• December 6, 2022: slides used in lecture #9 are available in here.
• December 2, 2022: description of assignment #9 is available in here.
• November 25, 2022: exercises used in recitation class #8 are available in here.
• November 23, 2022: slides used in lecture #8 are available in here.
• November 22, 2022: assignment #8’s deadline has been updated.
• November 18, 2022: exercises used in recitation class #7 are available in here.
• November 18, 2022: slides used in lecture #7 are available in here.
• November 12, 2022: description of assignment #8 is available in here.
• November 12, 2022: assignments’ deadlines have been updated.
• November 11, 2022: exercises used in recitation class #6 are available in here.
• November 9, 2022: slides used in lecture #6 are available in here.
• November 9, 2022: assignment #5’s description has been updated.
• October 29, 2022: updated lecture #5’s slides which are available in here.
• October 28, 2022: description of assignment #5 is available in here.
• October 28, 2022: exercises used in recitation class #5 are available in here.
• October 26, 2022: slides used in lecture #5 are available in here.
• October 22, 2022: assignment #4’s deadline postponed from October 28 to November 4.
• October 22, 2022: description of assignment #4 is available in here.
• October 22, 2022: exercises used in recitation class #4 are available in here.
• October 19, 2022: slides used in lecture #4 are available in here.
• October 14, 2022: description of assignment #3 is available in here.
• October 14, 2022: exercises used in recitation class #3 are available in here.
• October 12, 2022: slides used in lecture #3 are available in here.
• October 3, 2022: documentation of each project is available in here.
• September 30, 2022: exercises used in recitation class #2 are available in here.
• September 30, 2022: description of assignment #2 is available in here.
• September 28, 2022: slides used in lecture #2 are available in here.
• September 28, 2022: attempt to improve/clarify assignment #1’s description.
• September 23, 2022: working groups have been formed and projects have been assigned. The complete list of working groups and the project assigned to each one is available in here.
• September 23, 2022: description of assignment #1 is available in here.
• September 22, 2022: slides used in lecture #1 are available in here.
• September 13, 2022: uploaded a first draft of the course’s webpage.

Syllabus

Teaching language: Portuguese but suitable for English-speaking students.

Pre-requirements (aka prior knowledge): Knowledge in programming is required. Code examples are (typically) in Java, although easily transferrable to other programming languages.

Goals: The main objective of this course is to introduce students to the issues related to software quality, the terminology used in the Verification and Validation (VV) area, and to explore/practice different Verification and Validation techniques needed to build high-quality software systems. At the end of the semester, students are expected to be able to effectively design and to perform a Verification and Validation plan on a software project. More specifically, students are expected to be able to:

• Plan a Verification and Validation strategy that includes a selection of different techniques and tools.
• Design and develop tests at different levels (i.e., unit, integration, system) using standard and well-adopted tools that could effectively test complex software systems.
• Derive tests that deal with exceptional and corner cases by performing several different techniques (e.g., boundary analysis) as well as able to reflect on their limitations, when and when not to apply them in a given context.
• Measure and reflect on the efficiency of the developed tests by means of different test adequacy metrics (e.g., line, decision, condition, MC/DC coverage).
• Write maintainable test code by avoiding well-known test’s issues (e.g., flakiness, unreadable, slow, dependent, fat tests, etc.)

Programme: The programme for the 2022/2023 instance of the Software Testing, Verification and Validation course is organized as the following:

1. Introduction to Software Verification and Software Validation
2. Static Testing
3. Equivalence Class Partitioning / Category Partition
4. Boundary Value Analysis
5. Model-based Testing
6. Structural Testing (Line and Decision coverage)
7. Structural Testing (Path coverage) and Logical Coverage (Condition coverage)
8. Logical Coverage (Modified Condition/Decision Coverage (MC/DC))
9. Dataflow Testing
10. Mutation Testing
11. Integration Testing, System Testing, Acceptance Testing, and Regression Testing
12. Brief introduction to advanced software testing techniques, e.g., Search-based Software Testing

Note that this programme is subject to change and could be updated as the semester progresses, especially to help focus on requested topics or to support learning.

Teaching methods and learning activities: The continuous enrollment of students in this course is promoted through the study and discussion of the course topics distributed every week. To improve the regular and effective development of autonomous learning processes of each student, in-class and/or away assignments are given on a weekly basis. During the course, the students are expected to work in a pre-defined open-source project where they are required to apply the concepts presented during the course, in particular, different Verification and Validation strategies and tools.

Lecture classes are used to expose the concepts and fundamental aspects of Verification and Validation. Whenever possible, concepts are either formally exposed along with presentation and discussion of examples from real-life applications or introduced in the context of students’ assignments. Lecture classes are scheduled to work as a synchronous presential model, i.e., all lectures take place Wednesday 11:30am – 1:00pm at room B006.

Recitation classes are used to further help students understand the topics exposed in each lecture and to practice one or more Verification and Validation strategies and/or tools. Recitation classes can also be used to clarify and/or discuss any question related to students’ assignments. Recitation classes are scheduled to work as a synchronous presential model, i.e., all classes will take place Friday 11:30am – 1:00pm at room B107 (for M.EIC students) and Friday 9:30am – 11:00am at room B109 (for MESW students).

Bibliography: under development

• Maurício Aniche; Effective software testing, 1st Edition, 2022. ISBN: 978-1-633-43993-1
• Paul Ammann, Jeff Offutt; Introduction to Software Testing, 2nd Edition, 2016. ISBN: 978-1-107-17201-2
• Paul C. Jorgensen; Software Testing A Craftsman’s Approach, 4th Edition, 2013. ISBN: 978-1-466-56069-7
• Dorothy Graham, Rex Black, Erik van Veenendaal; Foundations of Software Testing: ISTQB Certification, 4th Edition, 2020. ISBN: 978-1-473-76479-8
• Ilene Burnstein; Practical Software Testing, 2003. ISBN: 978-0-387-95131-7
• Gordon Fraser and José Miguel Rojas; Software Testing, 2019. ISBN 978-3-030-00262-6
• Mark Utting; Practical Model-Based Testing, 2007. ISBN: 978-0-12-372501-1
• Tomek Kaczanowski; Bad Tests, Good Tests, 2013. ISBN: 978-8-393-84713-6
• Kent Beck; Test Driven Development: By Example, 2002. ISBN: 978-0-321-14653-3
• Petar Tahchiev, Felipe Leme, Vincent Massol, and Gary Gregory; JUnit 4.8 In Action, 2nd edition, 2010. ISBN: 978-1-935-18202-3
• Tomek Kaczanowski; Practical Unit Testing with JUnit and Mockito, 2019. ISBN: 978-8-393-48939-8
• Chak Shun Yu, Christoph Treude, Maurício Aniche; Comprehending Test Code: An Empirical Study, 2019. ISBN: 978-1-7281-3095-8
• Michal Young and Mauro Pezzè; Software testing and analysis: process, principles, and techniques, 2008. ISBN: 978-0-471-45593-6

Faculty:

• Professor José Campos
  • Webpage: https://jose.github.io
  • Email: jcmc[at]fe.up.pt

Communication:

Course’s staff to Students: All announcements are made through moodle.

Students to Course’s staff: Students should feel free to contact the course’s staff by e-mail if they have any question related to the course or use moodle’s forum, M.EIC’s link / moodle’s forum, MESW’s link instead if they think their question may be interesting for others. Course’s staff is committed to answer any question as quickly as possible and are happy to set up ad hoc in person or Zoom meetings whenever possible. Note that any contact by e-mail must be through the official university’s e-mail address (i.e., @fe.up.pt or @g.uporto.pt). Any e-mail received from a non @fe.up.pt or @g.uporto.pt address would ignored by the course’s staff and therefore not answered.

Schedule

• Office hours: Wednesday 2:30pm – 3:30pm at room D107
• Lectures: Wednesday 11:30am – 1:00pm at room B006
• Recitation classes:
  • 2MEIC01 (for M.EIC students), Friday 11:30am – 1:00pm at room B107
  • 1MESW01 (for MESW students), Friday 9:30am – 11:00am at room B109

Effort required to complete this course: The amount of work required to successfully complete this course corresponds to 6 ECTS (European Credit Transfer System), i.e., 6 ECTS x 27 hours each = 162 hours of work from day one to the end of the semester. Of these 162 hours, 42 hours (25.9%) corresponds to the time spent in classes. The remaining 120 hours must be devoted to autonomous work, that is 8.6 hours/week, on average, considering a 14 weeks semester.

Students should feel free to give the course’s staff feedback on how much time the course is taking for them.

Assessment

The grading of each student is be based on the following components:

• 9 project assignments (A: A1, A2, A3, A4, A5, A6, A7, A8, A9)
• 1 final exam (E)

The final grade is calculated according to the formula: Grade = 50% x ((A1 + A2 + A3 + A4 + A5 + A6 + A7 + A8 + A9) / 9) + 50% x Exam (E)

To successfully complete this course, students must achieve:

• A minimum mark of 47.5% in the ‘Assignments’ (A) component
• A minimum mark of 47.5% in the final ‘Exam’ (E)

Note: students with a special status (e.g., part-time, athletic, etc) which are allowed to not attend classes, must complete all components successfully as any other regular student.

Project Assignments

To put in practice the theoretical fundamentals of Verification and Validation strategies presented in each lecture class and informally exemplified in each recitation class, students (in groups of two) must apply different VV strategies on a pre-assigned open-source project.

That is, every week (starting on the 3rd week), and until further notice, each group of two students must apply the VV strategy discussed in the previous week on a pre-assigned open-source project.

Here is a description of the procedure.

1. On week N, Wednesday 1:00pm – 3:00pm, the course’s staff introduces students to a Verification or Validation strategy X. On the same week N, Friday 11:30am – 1:00pm (for M.EIC students) and Friday 9:30am – 11:00am (for MESW students), the course’s staff present some tools that may assist developers / testers at performing X.

2. On week N, Friday 1:01pm, each group may start performing X on their pre-assigned open-source project.

3. On week N+1 (consult the assignments section for more info), Friday 11:59:00pm, each group must upload to moodle a copy of the tests developed for their project. It is only required that one element of each group submit the developed solution.

Find the list of groups and more details of the assigned open-source projects in here.

Late work policy: Any homework submitted after the official deadline may receive feedback but no score. Exceptions to this policy could be made only in extraordinary circumstances, e.g., in case of a family or medical emergency. Exceptions would be subject of consideration by the course’s staff if requested at least 3 days before each assignment’s deadline.

Exam

A final written 120 minutes exam covering all topics mentioned during the course will take place January 19, 2023 at 2:30pm (room B338) and February 2, 2023 at 2:30pm (room B329).

Academic integrity

As a future IT professional, we expect from students an irreproachable attitude, in both ethical and moral terms, as regulated by the University policy on academic integrity ((PT) Código Ético de Conduta Académica da U.Porto). Students may contact directly the U.Porto’s Ethics Committee for more information on this.

Some of the assignments are designed to be done in groups of two students. We expect that group members collaborate with one another, but that groups work independently from one another, not exchanging results with other groups. Within groups, we expect that students are honest about their contribution to the group’s work. This implies not taking credit for others’ work and not covering for group members that have not contributed to the group.

The rest of this academic integrity content is taken from the policy used in CMU’s course 17-313 and 15-214, which is in here reused almost directly except a few minor modifications.

“Students may not copy any part of a solution to a problem that was written by another student, or was developed together with another student, or was copied from another unauthorized source such as the Internet. Students may not look at another student’s solution, even if they have completed their own, nor may they knowingly give their solution to another student or leave their solution where another student can see it.

Here are some examples of behavior that are inappropriate:

• Copying or retyping, or referring to, files or parts of files (such as source code, written text, or unit tests) from another person or source (whether in final or draft form, regardless of the permissions set on the associated files) while producing your own. This is true even if your version includes minor modifications such as style or variable name changes or minor logic modifications.
• Getting help that you do not fully understand, and from someone whom you do not acknowledge on your solution.
• Writing, using, or submitting a program that attempts to alter or erase grading information or otherwise compromise security of course resources.
• Lying to course staff.
• Giving copies of work to others, or allowing someone else to copy or refer to your code or written assignment to produce their own, either in draft or final form. This includes making your work publicly available in a way that other students (current or future) can access your solutions, even if others’ access is accidental or incidental to your goals.
• Coaching others step-by-step without them understanding your help.

If any of your work contains any statement that was not written by you, you must put it in quotes and cite the source. If you are paraphrasing an idea you read elsewhere, you must acknowledge the source. Using existing material without proper citation is plagiarism, a form of cheating. If there is any question about whether the material is permitted, you must get permission in advance. Note that we will be using automated systems to detect software plagiarism.

It is not considered cheating to clarify vague points in the assignments, lectures, lecture notes; to give help or receive help in using the computer systems, compilers, debuggers, profilers, or other facilities; or to discuss ideas at a very high level, without referring to or producing code.

Any violation of this policy is considered a fraud. The minimum penalty for students, or groups of students, caught in a fraud such as plagiarism (either as plagiarists and plagiarized) will have a zero grade in the correspondent assignment, quiz, or any other formal evaluation. Such incidents will also be reported through University channels, with possible additional disciplinary actions (see the above-linked University policy on academic integrity).

Some assignments are specifically noted as group projects. For those, interpret ‘you’ in the preceding paragraphs as ‘you and your partner(s)’.”

Student should feel free to reach out the course’s staff for any question or clarification about this policy.

Lectures

Lecture classes are scheduled to work as a synchronous presential model, i.e., all lectures take place Wednesday 11:30am – 1:00pm at room B006. The following schedule describes the planing status for the course and the covered concepts. Note that it is subject to change and could be updated as the semester progresses, especially to help focus on requested topics or support learning.

Recitation classes

Recitation classes are scheduled to work as a synchronous presential model, i.e., all classes will take place Friday 11:30am – 1:00pm at room B107 (for M.EIC students) and Friday 9:30am – 11:00am at room B109 (for MESW students).

Assignments

Assignment #1

The main goal of assignment #1 is to perform static testing in an open-source project. In general, we expect you to select two static testing tools, integrate the selected tools in your project’s build system, perform static testing, and report your findings. In detail:

• All open-source projects selected for assignment #1 are maven-based projects, thus it is expected you to integrate two static testing tools (e.g., Checkstyle, SpotBugs, PMD, and ErrorProne) in the project’s build system (aka pom.xml file). Useful resources:
  • Guide to Configuring Maven Plug-ins
  • Apache Maven Checkstyle Plugin
  • Using the SpotBugs Maven Plugin
  • Apache Maven PMD Plugin
  • ErrorProne’s installation procedure
• Configure the static testing tools taking into account your project characteristics. For example, assuming you selected SpotBugs (which checks for more than 400 bug patterns), perhaps some patterns are more related to your project and should be enabled/configured, and perhaps some other patterns are not so related/interesting to your project and should be disabled.
• Perform static testing and produce a test report.
• Randomly select 5 of the many bugs reported by each static testing tool. Note that in the context of assignment #1 we are interested in “correct positive” and “false positive” bugs (see pdf for a description of each concept).
• Address/Fix those 5x2 bugs. Note that there are essential three ways to address/fix an issue reported by a static tool:
  • Disable specific rule(s). For example, if a rule X that is enabled by default does not apply to your project’s context, perhaps it could be disabled.
  • Adapt the rules of the tool to not report that issue. For example, if a project uses 4 spaces to indent code but the tool is, by default, configured to check whether 2 spaces are used, then, the rules should be adapted but not the source code. If a project uses a mix of 2 and 4 spaces, then you should first consistently use a number of spaces in the project and then configure the tool to check that specific number of spaces.
  • Modify the source code so that the issue / warning / violation is no longer reported.
• (re-)Perform static testing and produce a new test report.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Brief description of your project. For example, What is it? How is the source-code organized?
• Brief description of what static testing is and why do you think it is import and relevant.
• Brief description of the static testing tool used in this assignment and how was it configured for your project. Your description must explain, e.g., why did you enabled or disabled any default configuration or bug pattern.
• Brief description of the report produced by the static testing tool.
• Brief description of the 5x2 randomly selected bugs.
• Brief description of how those 5x2 bugs were addressed/fixed. Tip: provide examples before and after fixing those bugs.

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
  • Exceptional alternative: in case you cannot access tmoodle, please submit your solution in either here M.EIC or here MESW.
• Deadline: September 30, 2022 11:59:00pm.
• Grades: available on October 7, 2022; discussion on October 12, 2022 2:30pm – 3:30pm at room D107.

Assignment #2

The main goal of assignment #2 is to perform black-box testing in an open-source project. In general, we expect you to perform ‘Category-Partition’ in your pre-assigned project, write unit test cases using the JUnit framework, and report your findings. In detail:

• Select 5 different functions in package X. By different we mean different number of parameters, different type of arguments, and/or different output. As an example, X might mean:
  • jpass.util for the JPass project
  • com.todotxt.todotxttouch.util for the jdotxt project
  • de.dominik_geyer.jtimesched.project for the jTimeSched
• Perform ‘Category-Partition’ on each functions input’s/output’s.
• Write unit test cases using the JUnit framework. Note: in maven projects, tests must be developed under src/test/java.

Note: It is suggested you look at the project’s documentation, rather than looking at the project’s source code while performing ‘Category-Partition’. The documentation of each project is available in here.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Which functions have you selected for testing and why.
• What is the purpose of each function.
• Step-by-step of the ‘Category-Partition’ algorithm for each function.
• Brief description of the unit tests generated for each category.
• Brief description of the outcome of each unit test and whether any test results in a failure (and why).

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
• Deadline: October 07, 2022 11:59:00pm.
• Grades: available on October 14 21, 2022; discussion on October 19 26, 2022 2:30pm – 3:30pm at room D107.

Assignment #3

The main goal of assignment #3 is to perform black-box testing in an open-source project. In general, we expect you to perform ‘Boundary Value Analysis’ in your pre-assigned project, write unit test cases using the JUnit framework, and report your findings. In detail:

• Select 3 different functions from any package. By different we mean different number of parameters, different type of arguments, and/or different output. Note: it could be a subset of the ones you used in assignment #2.
• Perform ‘Boundary Value Analysis’.
• Write unit test cases using the JUnit framework. Note: in maven projects, tests should be developed under src/test/java.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Which functions have you selected for testing and why.
• What is the purpose of each function.
• Step-by-step of the ‘Boundary Value Analysis’ for each function.
• Brief description of the unit tests generated for each ‘boundary’.
• Brief description of the outcome of each unit test and whether any test results in a failure (and why).

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
• Deadline: October 21, 2022 11:59:00pm.
• Grades: available on October 28, 2022; discussion on November 2, 2022 2:30pm – 3:30pm at room D107.

Assignment #4

The main goal of assignment #4 is to perform black-box testing in an open-source project. In general, we expect you to perform ‘Model-based Software Testing’ in your pre-assigned project, write system test cases using the QF-Test tool (download link available in here), and report your findings. In detail:

• Select 3 different use cases of your pre-assigned software project. Each use case must be composed by at least 3 different states.
• Perform ‘Model-based Software Testing’.
• Implement the derived set of test cases using the QF-Test tool. Note all states and transitions must be exercised at least one.
• Develop at least 3 “sneak path” (i.e., a path in the state machine that should not exist) as test cases using the QF-Test tool.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Which use cases have you selected for testing and why.
• Derive the state machine, transition tree, and transition table of each use case. Note: write a brief description of each diagram.
• Brief description of each test developed on the QF-Test tool.
• Brief description of the outcome of each test and whether any test results in a failure (and why).
• In English (mandatory), detail feedback/opinion of the QF-Test tool.

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
• Deadline: October 28 November 4, 2022 11:59:00pm.
• Grades: available on November 4 November 11, 2022; discussion on November 9 November 16, 2022 2:30pm – 3:30pm at room D107.

Assignment #5

The main goal of assignment #5 is to perform white-box testing in an open-source project. In general, we expect you to perform ‘Structural Testing’ testing in your pre-assigned project, write unit test cases using the JUnit framework, collect code coverage using the JaCoCo Code Coverage Library for Java, and report your findings. In detail:

• Configure your Maven project to use the JaCoCo library and to report code coverage when one runs mvn test.
• Take all unit tests developed in Assignment #2 and Assignment #3 and collect their coverage at line and branch level.
• Assess which parts of the source of the code are not exercised by any test, which parts of the source of the code are exercised by at least one test but not fully exercised, and which parts of the source of the code are fully exercised by all tests.
• In case the unit tests developed in Assignment #2 and Assignment #3 do not achieve 100% line and/or branch coverage of all classes (all but the ones related to the GUI), develop new tests such that line and branch coverage of your project is at least 90%. Note that we are not asking for condition coverage, i.e., your tests should cover the true and false outcome of an if statement but not necessarily all trues and falses of all conditions in an if statement.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Line and branch coverage of the unit tests you developed in Assignment #2 and Assignment #3.
• Brief description of the tests you have developed, in this assignment, to increase project’s code coverage.
• Brief description of the outcome of each test and whether any test results in a failure (and why).
• Brief description of the JUnit features explored by your tests, e.g., parameterized tests (with the @ParameterizedTest annotation), assert expected exceptions (with the @Test(expected = ...) annotation), type of asserts (assertTrue, assertNull, …), etc.
• Line and branch coverage of the unit tests you have developed in this assignment.

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
• Deadline: November 11, 2022 11:59:00pm.
• Grades: available on November 18, 2022; discussion on November 23, 2022 2:30pm – 3:30pm at room D107.

Assignment #8

The main goal of assignment #8 is to perform white-box testing in an open-source project. In general, we expect you to perform ‘Dataflow Testing’ in your pre-assigned project, write unit test cases using the JUnit framework, and report your findings. In detail:

• Select 3 different functions from any package. By different we mean different number and type of variables in each function’s body code.
• Perform ‘Dataflow Testing’, in particular, all-defs, all-c-uses, all-p-uses, and all-uses.
• Write unit test cases using the JUnit framework. Note: in maven projects, tests should be developed under src/test/java.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Which functions have you selected for testing and why.
• What is the purpose of each function.
• Step-by-step of the ‘Dataflow Testing’ for each function and each variable. We are interesting in seeing a tabular summary for each variable, as the one presented in lecture #9 and all paths for each coverage criteria: all-defs, all-c-uses, all-p-uses, and all-uses.
• Brief description of the unit tests generated for each coverage criteria.
• Brief description of the outcome of each unit test and whether any test results in a failure (and why).

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
• Deadline: December 2, 2022 11:59:00pm.
• Grades: available on December 9, 2022; discussion on December 14, 2022 2:30pm – 3:30pm at room D107.

Assignment #9

The main goal of assignment #9 is to perform white-box testing in an open-source project. In general, we expect you to perform ‘Mutation’ testing in your pre-assigned project, write unit test cases using the JUnit framework, collect mutation score coverage using the PIT library for Java, and report your findings. In detail:

• Configure your Maven project to use the PIT library for Java and to report mutation score.
• Take all unit tests developed in all assignments and collect their mutation score.
• Analyze which mutants survive to your unit test cases and which parts of the source code has the most not-killed mutants.
• Identify, if any, equivalent mutants.
• In case the unit tests developed in all previous assignments do not achieve 100% mutation score (exclude classes/mutants in classes related to the GUI), develop new test cases to increase the mutation score of your set of tests. Make an extra effort to increase the mutation score as much as possible.

In the end, you should write an informal report (either a PDF or a markdown file) (either in Portuguese or English) where you must discuss and explain, in your own words, the following:

• Mutation score of the unit tests you developed in all assignments.
• Equivalent mutants, if any.
• Brief description of test cases developed to increase project’s mutation score.

What should you submit/deliver? Place your informal report (either a PDF or a markdown file) in your project directory and zip the entire directory. The zip file must be named as groupXX_projectYY.zip, where XX is your group identifier (e.g., 03) and YY is your project identifier (e.g., 02). Note: reports in any other format than PDF or MD, submissions named incorrectly, i.e., with an invalid identifier, with an incomplete identifier, and/or with an incorrect extension (e.g., anything else than zip) will have a 10% penalization in their final score.

• Link to submit it: M.EIC’s moodle / MESW’s moodle.
• Deadline: December 9, 2022 11:59:00pm.
• Grades: available on December 16, 2022; discussion on date to be announced.

Projects

Each of the following projects require:

• Java installed on your machine and available through the command line. Disclaimer: each project has been successfully compiled and executed under Java-11. Each project may or may not work on other versions of Java. Let us know whether it does not work under Java-X, where X is a version higher than 11.
• Apache Maven to be installed on your machine and available through the command line. In case Maven is not installed, please follow the following steps:
  • Download apache-maven-3.8.6-bin.zip
  • Extract apache-maven-3.8.6-bin.zip
  • On Windows, augment your environment variables with the full path to the <extracted directory>/bin. On Linux/MacOS, run export PATH="<extracted directory>/bin:$PATH". (You might have to run the export everytime you restart the computer. For a more permanent solution, please consider adding that command to your bash profile.)

Bundle and execution

To bundle the project’s source code and all its dependencies, you must run mvn package. This command should create the

• target/jdotxt-0.4.9-SNAPSHOT-jar-with-dependencies.jar file for the jdotxt project.
• target/jtimesched-1.2-SNAPSHOT-jar-with-dependencies.jar file for the jTimeSched project.
• target/jpass-0.1.21-SNAPSHOT.jar file for the JPass project.

which could then be executed as

• java -jar target/jdotxt-0.4.9-SNAPSHOT-jar-with-dependencies.jar
• java -jar target/jtimesched-1.2-SNAPSHOT-jar-with-dependencies.jar
• java -jar target/jpass-0.1.21-SNAPSHOT.jar

Groups

Here is the list of groups and the assigned open-source projects.

Miscellaneous

• Wikipedia – Software Testing
• International Software Testing Qualifications Board (ISTQB)
• International Software Testing Qualifications Board (ISTQB) – Glossary
• Software Testing @ Guru99
• Live Manual Testing Project: Online Software Testing Practice – “This project will put you in a corporate setting. You will be testing a demo banking website. You will create & execute test cases online and have an opportunity to compare it with sample test cases created by our experts in real-time.”
• Free Software Testing Live Project: Insurance Domain – “The BFSI (Banking, Financial services and Insurance) sector is the biggest consumer of IT services. It is very likely you will be assigned to a project in Insurance domain. This practice exercise will take you through the steps to check an Insurance Application. You can compare with sample test cases created by our experts in real-time.”