Skip to main content

Bug-Free Software? Go For It!


This post is a prettied-up version of the notes for my talk at the second Cambridge Exploratory Workshop on Testing last weekend. The topic for the workshop was When Testing Went Wrong

Cold fusion is a type of nuclear reaction that, if it were possible, would provide a cheap, clean and safe form of energy. In 1989 two scientists, Fleischmann and Pons, made worldwide headlines when they claimed to have generated cold fusion in a test tube in their lab. Unfortunately, subsequent attempts to replicate their results failed, other scientists started to publicly doubt the experimental methodology, and the evidence presented was eventually debunked.

Cold fusion is a bit of a scientific joke. Which means that if you are a researcher in that field - now also called Low Energy Nuclear Reactions - you are likely to have a credibility problem before you even start. And, further, that kind of credibility issue will put many off from even starting. Which is a shame because the potential payoff  in this area is high and the cost of it being wrong is relatively low.

In a fascinating article in Aeon magazine, Huw Price, a Philosophy professor at Cambridge University, writes about how, even if unlikely, cold fusion is not theoretically impossible, and that the apparent orthodox scientific opinion on it is not based on science:
Cold fusion is tainted, and the taint is contagious … So the subject is stuck in a place that is largely inaccessible to reason – a reputation trap, we might call it.
This is echoed by Harry Collins in Are We All Scientific Experts Now?:
There is always enough room to interpret data in more than one way ... We need to know motivations as much as we need to know results if we are to understand science.
Science is not pure. It is not driven only by evidence. Collins observes that, particularly at the cutting edge of research, scientists can easily split into camps. These camps agree on the result, but don't agree on what it means. When this is the case, when there is room for more than one interpretation, then - since scientists are human - it's natural for there to be human biases and prejudices at play. And those factors, those frailties, those foibles include things like reputation, preconception and peer pressure.

You might have seen Bob Marshall blogging and tweeting about whether we really need testers, and using the hashtag #NoTesting? He is provocative:
So, do we have to test, despite the customer being unkeen to pay for it? Despite it adding little or no value from the customer’s point of view? 
And he provokes, for example, reactions like this from Albert Gareev
Recently I've been observing some new silly ideas about testing – on how to do as less of it as possible or not do it at all. I don’t bother posting links here – reading those isn't worth the time.
To me, there can be value in wondering what Marshall is getting at (which Gareev also does). Engaging with someone with an apparently fundamental opposition to you can be elucidating. A contrary position can make us see our own position in a new light and it's healthy to do that sometimes.

There was an interesting (to most testers anyway, I'd hope)  headline out of Princeton earlier this year: Computer scientists launch campaign to guarantee bug-free software. What's your gut reaction to that? Something like this, perhaps? You can’t get rid of bugs …  and it’s stupid to even think you might be able to!

But read behind the headline only a little way and you will find that the project is trying to write formal (mathematical logical) specifications for software building blocks, such as a C compiler or an OS, and then chain together such components using consistent specifications.

Doesn't a formal spec just shift the specification problem? It still has to be written, right? Perhaps, but a formal language can be reasoned about; proofs can be created for aspects of it; other tools can be brought to bear on it in a way that they cannot with user stories or other (natural language) devices for specification.

For sure, it's a non-trivial problem. And perhaps it won't work. And perhaps it will even prove to have been misguided. And, absolutely, it won't catch the class of bugs that are do to with the specification being for something other than what the users actually want. But should that mean that we shouldn't pursue this line? A line that has (relative to all the research being done) low cost, potentially high benefit.

James Bach might put this kind of effort into the Analytical School. For example:
The Analytical School way is to limit themselves to laboratory contexts where the numbers apply or trying to change projects to fit the assumptions of the numbers [...]  I have a fondness for the Analytical School, but I'm not an academic, so I have to live in a world where I must solve the problems that come to me, rather than the ones I choose.
He and Cem Kaner, founders of the Context-Driven School of testing, have publicly disagreed here. Kaner says:
I think it’s a Bad Idea to alienate, ignore, or marginalize people who do hard work on interesting problems.
Bach speaks to this:
One of the things that concerns Cem is the polarization of the craft. He doesn’t like it, anymore. I suppose he wants more listening to people who have different views about whether there are best practices or not. To me, that’s unwise.
And Kaner responds:
 I've learned a lot from people who would never associate themselves with context-driven testing.
And, in fact he actively engages folk outside of the context-driven community, such as with Rex Black, who many would regard as a Factory Schooler. 

When thought leaders like Bach and Kaner, both of whom contribute so much to the community and craft of testing, say these kinds of things it's wise to listen. They clearly fall into two different camps on this topic, but they would both, I'm sure, encourage us to think critically about what we are hearing from them, and to take our own view, for ourselves.

So, to the question that CEWT #2 is posing: when does testing go wrong?  Maybe in ways like this:
  • When we look inwards too much: if we stay in our own bubble we risk lack of exposure to useful information, to things that can help us make connections.
  • When we don’t apply critical thinking: we should strive to understand our sources and the degree of confidence we have in them, and in which areas we think that confidence is justified.
  • When we don’t consider human factors: we should ask ourselves why something is being claimed. 
  • When we create reputation traps: we should be wary of closing off topics for others. Sure, we may legitimately have nothing to learn; but others might.
Like the scientists mentioned up top, testers are humans, and we have, do, and will continue to make these kinds of mistakes. Testing will always go wrong because it is done by people.

But that's also the good news: people have the capacity to observe this happening and attempt to take action to avoid or mitigate it. I want to give myself a chance of spotting approaches that are appropriate to whatever context I find myself in and I think (and perhaps this is my bias) that a sensible way to go about this is to be open to information from anywhere.

This doesn't mean that I have to accept everything or even that I shouldn't be sceptical of everything. Nor that I have to give equal time, effort or respect to everything. It doesn't mean that I can't take someone else's word for something, but I challenge myself to have considered whether that's sensible this time, for this thing.

So, if you want to tell me that you're going to find a way guarantee bug-free software, I say go for it. But when you do, explain what you did and show me the results you got and don't be surprised if I question them and your motivation.

Here's my slides:

Comments

Popular posts from this blog

Can Code, Can't Code, Is Useful

The Association for Software Testing is crowd-sourcing a book,  Navigating the World as a Context-Driven Tester , which aims to provide  responses to common questions and statements about testing from a  context-driven perspective . It's being edited by  Lee Hawkins  who is  posing questions on  Twitter ,   LinkedIn , Mastodon , Slack , and the AST  mailing list  and then collating the replies, focusing on practice over theory. I've decided to  contribute  by answering briefly, and without a lot of editing or crafting, by imagining that I'm speaking to someone in software development who's acting in good faith, cares about their work and mine, but doesn't have much visibility of what testing can be. Perhaps you'd like to join me?   --00-- "If testers can’t code, they’re of no use to us" My first reaction is to wonder what you expect from your testers. I am immediately interested in your working context and the way

Meet Me Halfway?

  The Association for Software Testing is crowd-sourcing a book,  Navigating the World as a Context-Driven Tester , which aims to provide  responses to common questions and statements about testing from a  context-driven perspective . It's being edited by  Lee Hawkins  who is  posing questions on  Twitter ,   LinkedIn , Mastodon , Slack , and the AST  mailing list  and then collating the replies, focusing on practice over theory. I've decided to  contribute  by answering briefly, and without a lot of editing or crafting, by imagining that I'm speaking to someone in software development who's acting in good faith, cares about their work and mine, but doesn't have much visibility of what testing can be. Perhaps you'd like to join me?   --00-- "Stop answering my questions with questions." Sure, I can do that. In return, please stop asking me questions so open to interpretation that any answer would be almost meaningless and certa

Not Strictly for the Birds

  One of my chores takes me outside early in the morning and, if I time it right, I get to hear a charming chorus of birdsong from the trees in the gardens down our road, a relaxing layered soundscape of tuneful calls, chatter, and chirrupping. Interestingly, although I can tell from the number and variety of trills that there must be a large number of birds around, they are tricky to spot. I have found that by staring loosely at something, such as the silhouette of a tree's crown against the slowly brightening sky, I see more birds out of the corner of my eye than if I scan to look for them. The reason seems to be that my peripheral vision picks up movement against the wider background that direct inspection can miss. An optometrist I am not, but I do find myself staring at data a great deal, seeking relationships, patterns, or gaps. I idly wondered whether, if I filled my visual field with data, I might be able to exploit my peripheral vision in that quest. I have a wide monito

Testing (AI) is Testing

Last November I gave a talk, Random Exploration of a Chatbot API , at the BCS Testing, Diversity, AI Conference .  It was a nice surprise afterwards to be offered a book from their catalogue and I chose Artificial Intelligence and Software Testing by Rex Black, James Davenport, Joanna Olszewska, Jeremias Rößler, Adam Leon Smith, and Jonathon Wright.  This week, on a couple of train journeys around East Anglia, I read it and made sketchnotes. As someone not deeply into this field, but who has been experimenting with AI as a testing tool at work, I found the landscape view provided by the book interesting, particularly the lists: of challenges in testing AI, of approaches to testing AI, and of quality aspects to consider when evaluating AI.  Despite the hype around the area right now there's much that any competent tester will be familiar with, and skills that translate directly. Where there's likely to be novelty is in the technology, and the technical domain, and the effect of

Postman Curlections

My team has been building a new service over the last few months. Until recently all the data it needs has been ingested at startup and our focus has been on the logic that processes the data, architecture, and infrastructure. This week we introduced a couple of new endpoints that enable the creation (through an HTTP POST) and update (PUT) of the fundamental data type (we call it a definition ) that the service operates on. I picked up the task of smoke testing the first implementations. I started out by asking the system under test to show me what it can do by using Postman to submit requests and inspecting the results. It was the kinds of things you'd imagine, including: submit some definitions (of various structure, size, intent, name, identifiers, etc) resubmit the same definitions (identical, sharing keys, with variations, etc) retrieve the submitted definitions (using whatever endpoints exist to show some view of them) compare definitions I submitted fro

Testers are Gate-Crashers

  The Association for Software Testing is crowd-sourcing a book,  Navigating the World as a Context-Driven Tester , which aims to provide  responses to common questions and statements about testing from a  context-driven perspective . It's being edited by  Lee Hawkins  who is  posing questions on  Twitter ,   LinkedIn , Mastodon , Slack , and the AST  mailing list  and then collating the replies, focusing on practice over theory. I've decided to  contribute  by answering briefly, and without a lot of editing or crafting, by imagining that I'm speaking to someone in software development who's acting in good faith, cares about their work and mine, but doesn't have much visibility of what testing can be. Perhaps you'd like to join me?   --00-- "Testers are the gatekeepers of quality" Instinctively I don't like the sound of that, but I wonder what you mean by it. Perhaps one or more of these? Testers set the quality sta

Vanilla Flavour Testing

I have been pairing with a new developer colleague recently. In our last session he asked me "is this normal testing?" saying that he'd never seen anything like it anywhere else that he'd worked. We finished the task we were on and then chatted about his question for a few minutes. This is a short summary of what I said. I would describe myself as context-driven . I don't take the same approach to testing every time, except in a meta way. I try to understand the important questions, who they are important to, and what the constraints on the work are. With that knowledge I look for productive, pragmatic, ways to explore whatever we're looking at to uncover valuable information or find a way to move on. I write test notes as I work in a format that I have found to be useful to me, colleagues, and stakeholders. For me, the notes should clearly state the mission and give a tl;dr summary of the findings and I like them to be public while I'm working not just w

Build Quality

  The Association for Software Testing is crowd-sourcing a book,  Navigating the World as a Context-Driven Tester , which aims to provide  responses to common questions and statements about testing from a  context-driven perspective . It's being edited by  Lee Hawkins  who is  posing questions on  Twitter ,   LinkedIn , Mastodon , Slack , and the AST  mailing list  and then collating the replies, focusing on practice over theory. I've decided to  contribute  by answering briefly, and without a lot of editing or crafting, by imagining that I'm speaking to someone in software development who's acting in good faith, cares about their work and mine, but doesn't have much visibility of what testing can be. Perhaps you'd like to join me?   --00-- "When the build is green, the product is of sufficient quality to release" An interesting take, and one I wouldn't agree with in general. That surprises you? Well, ho

Make, Fix, and Test

A few weeks ago, in A Good Tester is All Over the Place , Joep Schuurkes described a model of testing work based on three axes: do testing yourself or support testing by others be embedded in a team or be part of a separate team do your job or improve the system It resonated with me and the other testers I shared it with at work, and it resurfaced in my mind while I was reflecting on some of the tasks I've picked up recently and what they have involved, at least in the way I've chosen to address them. Here's three examples: Documentation Generation We have an internal tool that generates documentation in Confluence by extracting and combining images and text from a handful of sources. Although useful, it ran very slowly or not at all so one of the developers performed major surgery on it. Up to that point, I had never taken much interest in the tool and I could have safely ignored this piece of work too because it would have been tested by

The Best Laid Test Plans

The Association for Software Testing is crowd-sourcing a book,  Navigating the World as a Context-Driven Tester , which aims to provide  responses to common questions and statements about testing from a  context-driven perspective . It's being edited by  Lee Hawkins  who is  posing questions on  Twitter ,   LinkedIn , Mastodon , Slack , and the AST  mailing list  and then collating the replies, focusing on practice over theory. I've decided to  contribute  by answering briefly, and without a lot of editing or crafting, by imagining that I'm speaking to someone in software development who's acting in good faith, cares about their work and mine, but doesn't have much visibility of what testing can be. Perhaps you'd like to join me?   --00-- "What's the best format for a test plan?" I'll side-step the conversation about what a test plan is and just say that the format you should use is one that works for you, your coll