We have a new technical report fuzz testing of the robustness of application
programs on Mac OS X.
Title: An Empirical Study of the Robustness of MacOS Applications Using
Random Testing
Authors: Barton P. Miller, Gregory Cooksey, and Fredrick Moore
Abstract:
We report on the fourth in a series of studies on the reliability of application programs in the face of random input. Over the previous 15 years, we have studied the reliability of UNIX command line and X-Window based (GUI) applications and Windows applications. In this study, we apply our fuzz testing techniques to applications running on the Mac OS X operating system. We continue to use a simple, or even simplistic technique: unstructured black-box random testing, considering a failure to be a crash or hang. As in the previous three studies, the technique is crude but seems to be effective in locating bugs in real programs.
We tested the reliability of 135 command-line UNIX utilities and thirty graphical applications on Mac OS X by feeding random input to each. We report on application failures -- crashes (dumps core) or hangs (loops indefinitely) -- and, where source code is available, we identify the causes of these failures and categorize them. Our testing crashed only 7% of the command-line utilities, a considerably lower rate of failure than observed in almost all cases of previous studies. We found the GUI-based applications to be less reliable: of the thirty that we tested, only 8 did not crash or hang. Twenty others crashed, and two hung. These GUI results were noticeably worse than either of the previous Windows (Win32) or UNIX (X-Windows) studies.
You can fetch the paper at:
ftp://ftp.cs.wisc.edu/paradyn/technical_papers/Fuzz-MacOS.ps
ftp://ftp.cs.wisc.edu/paradyn/technical_papers/Fuzz-MacOS.pdf
Note that the software mentioned in the paper is not yet on the web, but will
be available within the week (as soon as we get the comments and formatting
cleaned up).
Comments and feedback are definitely welcome!
programs on Mac OS X.
Title: An Empirical Study of the Robustness of MacOS Applications Using
Random Testing
Authors: Barton P. Miller, Gregory Cooksey, and Fredrick Moore
Abstract:
We report on the fourth in a series of studies on the reliability of application programs in the face of random input. Over the previous 15 years, we have studied the reliability of UNIX command line and X-Window based (GUI) applications and Windows applications. In this study, we apply our fuzz testing techniques to applications running on the Mac OS X operating system. We continue to use a simple, or even simplistic technique: unstructured black-box random testing, considering a failure to be a crash or hang. As in the previous three studies, the technique is crude but seems to be effective in locating bugs in real programs.
We tested the reliability of 135 command-line UNIX utilities and thirty graphical applications on Mac OS X by feeding random input to each. We report on application failures -- crashes (dumps core) or hangs (loops indefinitely) -- and, where source code is available, we identify the causes of these failures and categorize them. Our testing crashed only 7% of the command-line utilities, a considerably lower rate of failure than observed in almost all cases of previous studies. We found the GUI-based applications to be less reliable: of the thirty that we tested, only 8 did not crash or hang. Twenty others crashed, and two hung. These GUI results were noticeably worse than either of the previous Windows (Win32) or UNIX (X-Windows) studies.
You can fetch the paper at:
ftp://ftp.cs.wisc.edu/paradyn/technical_papers/Fuzz-MacOS.ps
ftp://ftp.cs.wisc.edu/paradyn/technical_papers/Fuzz-MacOS.pdf
Note that the software mentioned in the paper is not yet on the web, but will
be available within the week (as soon as we get the comments and formatting
cleaned up).
Comments and feedback are definitely welcome!