[ANN] PropCheck.jl

Sukera · July 11, 2023, 12:39pm

PropCheck.jl

Hello everyone! After more than 4 years of WIP development, I’m very excited to announce PropCheck.jl, a property based testing framework loosely inspired by QuickCheck & Hedgehog. It features type based generation, composition of generators, map/filter of generated instances and automatic test-case shrinking/minimization. There are quite a lot of planned features, so please do check out the documentation! Some of these are quite a bit harder to do than others, so please be patient with me Contributions are always welcome though - I hope the internals are clear enough, though some parts definitely need more devdocs

A very early version of this package was used in the past to find an unreachable reached catastrophic failure in Julia itself!

Due to the time already spent on developing this package, the currently latest version is 0.9.2, supporting Julia versions 1.6 and newer.

FAQ

What is property based testing?

In a nutshell, property based testing means thinking about the (mathematical) properties you as a developer would like your code to have, and then testing/checking in some way whether these properties hold. This needn’t be exhaustive - just for +(::Int64, Int64) there are already 2^128 possible input bitpatterns, too many to practically check completely. In a sense, property based testing as employed by PropCheck.jl is a form of fuzzing.

Why property based testing?

Aren’t unit tests sufficient? Well… No! If you can’t be sure that your code obeys the properties you would like it to have, you can get disastrously wrong results. In the worst case, you can end up drawing wrong conclusions from your scientific models, or crash your server in production due to a faulty assumption.

Not knowing about the desired properties & testing for them can lead to things like this - quoting Hillel Wayne (who specializes in formal methods):

In 2010 Carmen Reinhart and Kenneth Rogoff published Growth in a Time of Debt. It’s arguably one of the most influential economics papers of the decade, convincing the IMF to push austerity measures in the European debt crisis. It was a very, very big deal.

In 2013 they shared their code with another team, who quickly found a bug. Once corrected, the results disappeared.

Greece took on austerity because of a software bug. That’s pretty fucked up.

(This quote is from his article How do we trust science code?)

For a basic introduction to property based testing and how it relates to Julia in particular, please check out this section in the docs!

What about formal specifications?

While efforts regarding formal specifications & machine checkable proofs are comendable, I think we can get quite far with property based testing & fuzzing before we need to tackle the dragon that is formal methods & verification. PropCheck.jl is decidedly not in the formal verification camp - it’s not an interface to SAT or SMT solvers, but a fuzzer. Said differently, property based testing + fuzzing are a fuzzy, statistical subset of full formal verification. You can think of running fuzzing tests as increasing confidence in the correctness of your code each time you run your testsuite, due to different inputs being chosen.

That being said, if this package becomes obsolete due to tremendous advances in formal methods & verification in Julia, I’ll happily retire this package to the annals of history

What about package XYZ?

There are a number of other codebases related to property based testing (for example, JCheck.jl, QuickCheck.jl or RandomizedPropertyTest.jl) but to my eyes, they are either very old (10+ years!) and don’t support modern Julia, don’t support shrinking or don’t really compose their generators well, due to being based on QuickCheck. PropCheck.jl, while certainly taking inspiration from QuickCheck, is using a mixed approach, focusing on integrated shrinking. This has advantages and disadvantages, but from my experience with the package so far, the current architecture is pretty extensible and works much better than a plain implementation of QuickCheck (Julia is much less focused on types than Haskell is, after all; much of the information we have about a type is implicit & not guaranteed, and even with that, some type based shrinks are just plain bad, due to even their types not capturing the full semantics of the produced values). Most of the features currently in PropCheck.jl came about because I ran into an issue that I wanted to solve when testing a different codebase - hence, the package is already at 0.9.1

One issue with developing a package in private for such a long time is that it can happen that I’m missing an obvious use/fatal error case that I just didn’t think about/haven’t encountered due to knowing the “happy path” of the package, so to speak - so please do give the package a try and report errors, bugs & feature requests at the issue tracker!

Finally, I’d like to thank the fine folks at the JuliaLang Zulip, in particular @Mason, @jakobnissen, jar and Michael Fiano (not sure about the discourse names, sorry!) for giving the first draft of the documentation a good look-over and spotting some issues

Krastanov · July 11, 2023, 1:34pm

I am eager to start using this tool – I have wanted a quickcheck-like tool in julia for a while.

Could you consider making an “official” badge for it so that my repositories can proudly announce they are being tested in this fashion? And so that we can advertise and popularize PropCheck. Similar to JET and Aqua:

I personally like the JET one better.

Sukera · July 11, 2023, 4:12pm

I’m looking forward to your feedback!

Oh dear - I haven’t thought about that at all I’m afraid there isn’t as pretty a logo as for JET.jl (yet?), so this will have to wait a bit - sorry! Happy to take suggestions though

jules · July 11, 2023, 4:26pm

Something, something, propeller with Julia colors

Krastanov · July 11, 2023, 4:49pm

Funny thing is, the “JET logo” is just the standard unicode emoji for a plane as discussed here: Logo or Readme badge similar to Aqua's · Issue #375 · aviatesk/JET.jl · GitHub (It is not official, it is just what I was able to make with minimal effort). Kinda like this

Sukera · July 11, 2023, 6:21pm

Yes, I tried fiddling with the shields.io link a bit once I saw how it works Trouble is, “PropCheck” is quite a bit more abstract than “JET”, so there isn’t a direct emoji to use.

I quite like the idea with props in different colors; I hadn’t noticed that it could be read like that too! Perhaps a logo in some form of schematic or blueprint, to tie it to the “check properties” theme?

tbeason · July 11, 2023, 6:53pm

Pretty common for boat and airplane propellers to have 3 blades. Wonder if you could take a simple looking one and make each blade one of the Julia colors (so that it looks like the 3 dots logo)?

mrufsvold · July 13, 2023, 9:34pm

github.com/Seelengrab/PropCheck.jl

PropCheck Logo

opened 03:51AM - 13 Jul 23 UTC

mrufsvold

I saw a conversation on Discourse about a logo for a PropCheck package badge. I'…d been meaning to try my hand at some Luxor.jl, and thought this might be a good way to learn. No sweat if it isn't want you're looking for, just wanted to share in case it is helpful to you: <details> <summary>The code to generate</summary> ```julia using Luxor avg(x,y) = (x+y)/2 function parabolic_ish(start::Point, vertex::Point, stop::Point) curve( Point(start.x, avg(start.y, vertex.y)), Point(avg(start.x, vertex.x), vertex.y), vertex ) curve( Point(avg(vertex.x, stop.x), vertex.y), Point(stop.x, avg(stop.y, vertex.y)), stop ) end @draw begin background("black") inner_r = 50 space = 40 total_r = inner_r + space blade_base_w = 40 half_w = blade_base_w / 2 blade_x_start = sqrt((total_r)^2 - (half_w)^2) blade_len = 380 max_drag = 100 inner_curve_w = ((blade_len - blade_x_start) / 2.3) + blade_x_start inner_curve_midpoint = avg(inner_curve_w, blade_x_start) * 1.1 blur_curve_mid_x = avg(inner_curve_w, blade_len) colors = ("purple", "red", "green") rotate(π/6) for i in 1:3 sethue(colors[i]) move(Point(blade_x_start, -half_w)) # outer curve of the blade curve( Point(blade_len * 1.2, -(half_w + 200)), Point(blade_len + 90, max_drag - 100), Point(blade_len, max_drag)) # "blur" curve outer parabolic_ish( Point(blade_len, max_drag), Point(avg(blade_len, blur_curve_mid_x), 20), Point(blur_curve_mid_x, max_drag*.7) ) # "blur" curve inner parabolic_ish( Point(blur_curve_mid_x, max_drag*.7), Point(avg(blur_curve_mid_x, inner_curve_w), 20), Point(inner_curve_w, max_drag*.4) ) # inner most curve on bottom of blade parabolic_ish( Point(inner_curve_w, max_drag*.4), Point(avg(inner_curve_w, blade_x_start), 20), Point(blade_x_start, half_w) ) arc(Point(0,0), total_r, sin(half_w/total_r), sin(half_w/total_r)) fillpath() rotate(2π/3) closepath() end rotate((π/3)) strokepath() sethue("white") move(Point(0,0)) sector(inner_r, total_r, 0, 2*π, :fill) # circle(Point(0,0), inner_r, :fill) end 1000 1000 ``` </details> ![image](https://github.com/Seelengrab/PropCheck.jl/assets/86363075/b9d864de-2cdf-4767-8b3d-db7def92b86f)

I took a crack at a propeller logo. But I’m not graphic designer if someone wants to improve it!

I couldn’t find documentation about the color codes for the Julia dots. If someone could point me to that, I’d appreciate it!

nandoconde · July 14, 2023, 5:55am

@cormullion

kapple · July 14, 2023, 7:50am

I’ve read through some of the documentation, and I am really loving this idea! I always feel disgusted by my test blocks looking like this:

@testset "equality" for x in rand(10)
    @test f(x) == g(x)
end

I’ll try to integrate it into my projects and see how I go.

kapple · July 14, 2023, 7:53am

Is something like this what you’re looking for?

http://juliagraphics.github.io/Colors.jl/stable/namedcolors/#Colors.JULIA_LOGO_COLORS

cormullion · July 14, 2023, 8:15am

Nice!

Colours are in Colors.jl as Colors.JULIA_LOGO_COLORS, - Named Colors · Colors

Roger_Powell · July 14, 2023, 11:26am

Brilliant!

rafael.guerra · July 14, 2023, 12:59pm

mrufsvold · July 14, 2023, 1:33pm

Amazing!!

Sukera · July 16, 2023, 12:15pm

After some (surprisingly little) work, I’ve just released 0.9.2 - which now supports Julia version 1.6 and up This should make it possible to integrate PropCheck.jl into existing testsuites with relative ease, without having to make special considerations regarding LTS or such.

jacobusmmsmit · July 16, 2023, 4:10pm

If we’re going for propeller designs for the logo, it would be cool to use a toroidal propeller, which both look a bit more like the Julia logo (from top down), and are considered significant upgrades to traditional propellers in noise pollution.

I realise that this adds nothing to the discussion given that Rafael has already made a great logo

mrufsvold · July 16, 2023, 4:41pm

I don’t know, mentioning technology that represents a significant improvement even though everyone has already decided to go another direction is kinda on brand for Julians

rafael.guerra · July 16, 2023, 6:15pm

One toroidal version:

Krastanov · July 17, 2023, 1:23am

A usage question:

For some of the types in a library of mine I already have uniform random samplers. Should I use them to create PropCheck.generate methods or should I only rely on map/filter/interleave?