SMT2Test: From SMT Formulas to Effective Test Cases

Zhang, Chengyu; Su, Zhendong

doi:https://doi.org/10.3929/ethz-b-000702588

SMT2Test: From SMT Formulas to Effective Test Cases

OPEN ACCESS

Downloads

Full text (published version) (PDF, 824.16 KB)

Author / Producer

Zhang, Chengyu person

Su, Zhendong

Date

2024-10

Publication Type

Journal Article

ETH Bibliography

yes

OPEN ACCESS

Downloads

Full text (published version) (PDF, 824.16 KB)

Rights / License

Creative Commons Attribution 4.0 International north_east

Abstract

One of the primary challenges in software testing is generating high-quality test inputs and obtaining corresponding test oracles. This paper introduces a novel methodology to mitigate this challenge in testing program verifiers by employing SMT (Satisfiability Modulo Theories) formulas as a universal test case generator. The key idea is to transform SMT formulas into programs and link the satisfiability of the formulas with the safety property of the programs, allowing the satisfiability of the formulas to act as a test oracle for program verifiers. This method was implemented as a framework named SMT2Test, which enables the transformation of SMT formulas into Dafny and C programs. An intermediate representation was designed to augment the flexibility of this framework, streamlining the transformation for other programming languages and fostering modular transformation strategies. We evaluated the effectiveness of SMT2Test by finding defects in two program verifiers: the Dafny verifier and CPAchecker. Utilizing the SMT2Test framework with the SMT formulas from the SMT competition and SMT solver fuzzers, we discovered and reported a total of 14 previously unknown defects in these program verifiers that were not found by previous methods. After reporting, all of them have been confirmed, and 6 defects have been fixed. These findings show the effectiveness of our method and imply its potential application in testing other programming language infrastructures.

Permanent link

https://doi.org/10.3929/ethz-b-000702588

Publication status

published

External links

https://doi.org/10.1145/3689719 north_east

Journal / series

Proceedings of the ACM on Programming Languages north_east

Volume

8 (OOPSLA2)

Pages / Article No.

279

Publisher

Association for Computing Machinery

Subject

Software Testing; Program Verification; SMT Solving

Organisational unit

09628 - Su, Zhendong / Su, Zhendong check_circle

More

Show all metadata

SMT2Test: From SMT Formulas to Effective Test Cases

Downloads

Author / Producer

Date

Publication Type

ETH Bibliography

Citations

Altmetric

Downloads

Data

Rights / License

Abstract

Permanent link

Publication status

External links

Editor

Book title

Journal / series

Volume

Pages / Article No.

Publisher

Event

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

Organisational unit

Notes

Funding

Related publications and datasets

More