Automated Test Generation for IEC 61131-3 ST Programs via Dynamic Symbolic Execution

2019 International Symposium on Theoretical Aspects of Software Engineering (TASE) Pub Date : 2019-07-01 DOI:10.1109/TASE.2019.00004

Li Hao, Jianqi Shi, Ting Su, Yanhong Huang

{"title":"Automated Test Generation for IEC 61131-3 ST Programs via Dynamic Symbolic Execution","authors":"Li Hao, Jianqi Shi, Ting Su, Yanhong Huang","doi":"10.1109/TASE.2019.00004","DOIUrl":null,"url":null,"abstract":"A programmable logic controller (PLC) is essentially a computer dedicated to industrial control which is widely used in the field of global automation control. However, PLC software bugs can result in economic losses and even personal safety issues. PLC software must be thoroughly tested regarding function, structure, safety, and other aspects to avoid accidents. Existing PLC tools are mainly based on the manual setting of input data, which is not only unable to be well automated but also cannot provide information about code coverage. This paper presents an automated test case generation approach for a Structured Text (ST) language to reduce the cost of testing, using dynamic symbolic execution. We apply this method to implement the coverage-based automated test case generation tool STAutoTester. We have evaluated STAutoTester on 21 programs. The experimental results show that STAutoTester can effectively handle these programs. For 11 ST programs, STAutoTester reduces, on average, 87.5% of generated test cases compared to SYMPLC.","PeriodicalId":183749,"journal":{"name":"2019 International Symposium on Theoretical Aspects of Software Engineering (TASE)","volume":"74 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 International Symposium on Theoretical Aspects of Software Engineering (TASE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TASE.2019.00004","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

Abstract

A programmable logic controller (PLC) is essentially a computer dedicated to industrial control which is widely used in the field of global automation control. However, PLC software bugs can result in economic losses and even personal safety issues. PLC software must be thoroughly tested regarding function, structure, safety, and other aspects to avoid accidents. Existing PLC tools are mainly based on the manual setting of input data, which is not only unable to be well automated but also cannot provide information about code coverage. This paper presents an automated test case generation approach for a Structured Text (ST) language to reduce the cost of testing, using dynamic symbolic execution. We apply this method to implement the coverage-based automated test case generation tool STAutoTester. We have evaluated STAutoTester on 21 programs. The experimental results show that STAutoTester can effectively handle these programs. For 11 ST programs, STAutoTester reduces, on average, 87.5% of generated test cases compared to SYMPLC.

查看原文本刊更多论文

通过动态符号执行的IEC 61131-3 ST程序自动测试生成

可编程逻辑控制器(PLC)本质上是专用于工业控制的计算机，广泛应用于全球自动化控制领域。但是，PLC软件漏洞会造成经济损失甚至人身安全问题。PLC软件必须经过功能、结构、安全等方面的彻底测试，避免发生事故。现有的PLC工具主要是基于人工设置输入数据，不仅不能很好地实现自动化，而且不能提供代码覆盖率的信息。本文提出了一种用于结构化文本(ST)语言的自动化测试用例生成方法，使用动态符号执行来减少测试成本。我们应用这个方法来实现基于覆盖率的自动化测试用例生成工具STAutoTester。我们已经在21个程序上评估了STAutoTester。实验结果表明，STAutoTester可以有效地处理这些程序。对于11个ST程序，与SYMPLC相比，STAutoTester平均减少了87.5%的生成测试用例。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2019 International Symposium on Theoretical Aspects of Software Engineering (TASE)

自引率

0.00%

发文量