This document is a part of UnitTestBot roadmap for the nearest future. We plan to decompose the whole UnitTestBot mechanism into the following standalone systems.
Entry points:
org.utbot.fuzzing.Fuzzingfuzzextension function
Exit point:
overridden Fuzzing#run method
Probable fields of use (without significant implementation changes):
- Test generation
- Taint analysis
- Finding security vulnerabilities
- Static analysis validation
- Automatic input minimization
- Specific input-output search
Probable fields of use (without significant implementation changes):
- Test generation
- Taint analysis
- Type inference
A more abstract interface can be extracted. For instance, we can use the interface to solve type constraints for Python or other languages. Currently, there are two levels of abstraction:
- Java-oriented abstraction that is intended to mimic heap and stack memory.
- More low-level and less Java-coupled API to store constraints for Z3 solver.
There is a room for improvement, namely we can extract more high-level abstraction, which can be extended for different languages.
Entry points:
org.utbot.engine.Memoryorg.utbot.engine.state.LocalVariableMemoryorg.utbot.engine.SymbolicValue
Exit point:
org.utbot.engine.Resolver → UtModel
Another level of abstraction is UtExpression. Basically, it is a thin abstraction over Z3 solver.
An implementation that allows UtAssembleModel to keep information about object creation in a human-readable format. Otherwise, the object state should be initiated with Reflection or sufficient constructor call. The synthesizing process is built upon the UnitTestBot symbolic execution memory model and is supposed to preserve construction information during the analysis process.
Entry and exit point:
org.utbot.framework.synthesis.Synthesizer
We use an outdated approach with the Soot framework. It is not worth being extracted as a separate service. A good substitution is the JacoDB library. Currently, this library provides an API to work with Java code, send queries, provide custom indexes, and so on.
The current domain of code generation is specific for generating tests, though it could be reused for other purposes. Currently, the engine can be used to generate tests for different test frameworks. One can use the code generator to generate test templates inside the IntelliJ-based IDEs.
Entry and exit point:
org.utbot.framework.codegen.generator.CodeGenerator#generateAsStringWithTestReport
Note that for Spring projects SpringCodeGenerator is used. It supports both unit and integration tests generation.
UnitTestBot represents the result of analysis using SARIF — the format that is widely used in the GitHub community. SARIF allows users to easily represent the results in the built-in GitHub viewer. Additionally, we provide our own SARIF report visualizer for IntelliJ IDEA.
Entry and exit point:
org.utbot.gradle.plugin.GenerateTestsAndSarifReportTask