1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
|
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd">
<article>
<articleinfo>
<title>Beautiful XMPP Testing</title>
<author>
<firstname>Remko</firstname>
<surname>Tronçon</surname>
</author>
<date>April 2009</date>
<bibliorelation type="ispartof">Beautiful Testing</bibliorelation>
</articleinfo>
<para>At my first job interview, one of the interviewers asked me
if I knew what “unit testing” was and whether I used it before. Although I had
been developing an XMPP-based instant messaging (IM) client for years, I had to
admit that I only vaguely knew what it was, and that I hardly did
any automated testing at all. I had a perfectly good reason, though:
since XMPP
clients are all about XML data, networks, and user interaction, they don’t
lend themselves well to any form of automated testing. A few months
after the interview, the experience of working in an agile environment
made me realize how weak that excuse was. It took only a couple of months
more to discover
how beautiful tests could be, <emphasis>especially</emphasis> in
environments such as XMPP, where you would least expect them to be.</para>
<section>
<title>Introduction</title>
<para>The <firstterm>eXtensible Messaging and Presence
Protocol</firstterm> (XMPP) is an open, XML-based networking protocol for
real-time communication. Only a decade after starting out as an instant
messaging solution under the name <emphasis>Jabber</emphasis>, XMPP is
today being applied in a broad variety of applications, much beyond instant
messaging. These applications include social networking, multimedia
interaction (such as voice and video), micro-blogging, gaming, and much
more.</para>
<para>In this text, I will try to share my enthusiasm about testing in the
XMPP world, more specifically in the <application>Swift</application> IM
client (<ulink url="http://swift.im"><uri>http://swift.im</uri></ulink>).
Swift is only one of the many XMPP implementations out there, and may not
be the only one that applies the testing methods described here.
However, it might be the client that takes most pride in beautiful
tests.</para>
<para>So, what do I consider to be “beautiful testing”?
As you probably discovered by now, opinions
on the subject greatly vary. My point of view, being a software developer, is
that beauty in tests is about the <emphasis>code</emphasis> behind
the tests. Naturally,
beautiful tests look good aesthetically, so layout plays a role.
However, we all know that <emphasis>true</emphasis> beauty is actually
found within. Beauty in tests is about simplicity; it’s about being
able to understand what a test (and the system being tested) does with a
mere glance at the code, even with little or no prior knowledge about the
class or component they test; it’s about robustness, and not having to fix
dozens of tests on every change; it’s about having fun both reading
<emphasis>and</emphasis> writing the tests.</para>
<para>
As you might expect, there will be a lot of code in the text
that follows. And since I’m taking inspiration from Swift, which is
written in C++, the examples in this text will be written in C++ as well. Using a
language like Ruby or Python probably would have made the tests look more
attractive, but I stand by my point that true beauty in tests goes beyond
shallow looks.</para>
</section>
<section id="Section-Intro">
<title>XMPP 101</title>
<para>
Before diving into the details of XMPP implementation testing, let’s
first have a quick crash course about how XMPP works.</para>
<figure id="Figure-Architecture">
<title>The decentralized architecture of the XMPP Network. Clients
connect to servers from different domains, which in turn connect
to each other.</title>
<mediaobject>
<imageobject role="html">
<imagedata fileref="img/Architecture.png" format="PNG" width="100%" align="center"/>
</imageobject>
<imageobject role="fo">
<imagedata fileref="img/Architecture.png" format="PNG" width="75%" scalefit="1" align="center"/>
</imageobject>
</mediaobject>
</figure>
<para>The XMPP network consists of a series of interconnected
servers with clients connecting to them, as shown in
<xref linkend="Figure-Architecture"/>. The job of XMPP is to route
small “packets” of XML between these entities on the network. For example,
Alice, who is connected to the <literal>wonderland.lit</literal> server,
may want to send a message to her sister, who is connected to the
<literal>realworld.lit</literal> server. To do that, she puts her
message into a small snippet of XML:
<programlisting><![CDATA[<message from="alice@wonderland.lit/RabbitHole"
to="sister@realworld.lit">
<body>Hi there</body>
</message>]]></programlisting>
She then delivers this message to her server, which forwards it to
the <literal>realworld.lit</literal> server, which in turn delivers it
to her sister’s client.</para>
<para>Every entity on the XMPP network is addressed
using a <firstterm>Jabber ID</firstterm> (JID). A JID has the form
<literal>username@domain/resource</literal>, where
<literal>domain</literal> is the domain name of the XMPP server,
and <literal>username</literal> identifies an account on that server.
One user can be connected to the server with multiple instances of
a client; the <literal>resource</literal> part of the JID gives a unique
name to every connected instance. In some cases, the resource part can
be left out, which means the server can route the message to whichever
connected instance it deems best.</para>
<para>The small packets of XML that are routed through the network are
called <firstterm>stanzas</firstterm>, and fall into three categories:
<firstterm>message</firstterm> stanzas, <firstterm>presence</firstterm>
stanzas, and <firstterm>info/query</firstterm> stanzas. Each type
of stanza is routed differently by servers, and handled differently by
clients:
<itemizedlist>
<listitem>
<para><firstterm>Message</firstterm> stanzas provide a basic
mechanism to get information from one entity to
another. As the name implies, message stanzas are
typically used to send (text) messages to each other.</para>
</listitem>
<listitem>
<para><firstterm>Presence</firstterm> stanzas “broadcast” information
from one entity to many entities on the network. For example, Alice may
want to notify all of her friends that she is currently not available
for communication, so she sends out the following presence stanza:
<programlisting><![CDATA[<presence from="alice@wonderland.lit/Home">
<show>away</show>
<status>Down the rabbit hole!</status>
</presence>]]></programlisting>
Her server then forwards this stanza to each of her contacts, informing
them of Alice’s unavailability.</para>
</listitem>
<listitem>
<para><firstterm>Info/query</firstterm> (IQ) stanzas provide a mechanism
for request/response interactions between entities, typically
used to query or change information on a given entity. For example,
Alice could be interested in knowing what client version her
sister is using. She therefore sends the following stanza to
her sister:
<programlisting><![CDATA[<iq type="get" id="aad8a"]]> <co id="cob-iq-id" linkends="co-iq-id"/><![CDATA[
from="alice@wonderland.lit/RabbitHole" to="sister@realworld.lit/Home">
<query xmlns="jabber:iq:version"/>]]> <co id="cob-iq-payload" linkends="co-iq-payload"/><![CDATA[
</iq>]]></programlisting>
<calloutlist>
<callout arearefs="cob-iq-id" id="co-iq-id">
<para>The unique identifier of the stanza is used to match an
incoming IQ result to the original IQ request.</para>
</callout>
<callout arearefs="cob-iq-payload" id="co-iq-payload">
<para>An empty child element (or <firstterm>payload</firstterm>)
in a specific namespace indicates what type of information
is requested (in this case, software version information).</para>
</callout>
</calloutlist>
Upon receiving this request, her sister’s client immediately responds
with the name and version of her client software:
<programlisting><![CDATA[<iq type="result" id="aad8a"]]> <co id="cob-iqresp-id" linkends="co-iqresp-id"/><![CDATA[
from="sister@realworld.lit/Home" to="alice@wonderland.lit/RabbitHole">
<query xmlns="jabber:iq:version">]]> <co id="cob-iqresp-payload" linkends="co-iqresp-payload"/><![CDATA[
<name>Swift</name>
<version>1.0</version>
</query>
</iq>]]></programlisting>
<calloutlist>
<callout arearefs="cob-iqresp-id" id="co-iqresp-id">
<para>The <literal>id</literal> attribute of the response matches
the one from the request.</para>
</callout>
<callout arearefs="cob-iqresp-payload" id="co-iqresp-payload">
<para>The response’s payload contains the result of the query.</para>
</callout>
</calloutlist>
</para>
</listitem>
</itemizedlist>
Stanzas carry information in their <firstterm>payloads</firstterm>, which
are added as child elements of the stanza. For example, a message can
have a <literal>body</literal> payload containing the body text of
the message. Different types of payloads are handled differently.
By using XML namespaces for payloads, the XMPP protocol can easily be
extended to support a virtually unlimited amount of information types,
without having to worry about conflicting payload element names.
For example,
many of the early XMPP protocol extensions (including the software version
protocol used in the examples) use the <literal>query</literal>
payload. By using namespaces such as
<literal>jabber:iq:version</literal>, entities know which type of
protocol they are dealing with when they receive a <literal>query</literal>
payload, and they know how to interpret the payload.</para>
<para>This section only scratched the surface of XMPP, just enough to
get you through the rest of this text. If you want to learn
more about how XMPP works and what you can do with it, have a look
at <citetitle>XMPP: The Definitive Guide</citetitle>
<citation><biblioref linkend="XMPP-TDG"/></citation>, or visit
<ulink url="http://xmpp.org"><uri>http://xmpp.org</uri></ulink>.</para>
</section>
<section>
<title>Testing XMPP Protocols</title>
<para>
One of the important aspects of an XMPP application, be it client or
server, is the actual implementation of the XMPP
<emphasis>protocols</emphasis>. Every XMPP implementation needs to at
least implement the XMPP core protocols, as standardized by the IETF in
<citation><biblioref linkend="RFC3920"/></citation> and
<citation><biblioref linkend="RFC3921"/></citation>. These protocols
provide the basic building blocks for XMPP, describing how an XMPP
connection is set up, and what you can send over it. On top of the
core protocols, the XMPP Standards Foundation created an ever-growing list
of <firstterm>XMPP Extension Protocols</firstterm> (XEPs). These
specifications describe how to extend the core protocol for very specific
features, ranging from simple things such as requesting the software
version of another client (standardized in <citation><biblioref linkend="XEP-0092"/></citation>), up to complex protocols for
negotiating audio/video conference calls between clients,
transferring files, and so on.
</para>
<para>This text focuses on testing the functionality of XMPP protocol
implementations,
answering questions such as “Does my client correctly respond to
incoming requests?”, “Does my client send the right requests at the right
time?”, “Can my client handle this specific response on this request?”,
and so on. We start out by looking at the most simple request-response
protocols, after which we gradually move up the ladder to more complex
protocols. While the complexity of the protocols increases, the level at
which the tests are written becomes higher at well, moving from very
specific unit tests up to full system tests. Although testing is
mainly described
from the perspective of a client developer, most of the
approaches used here apply to server testing as well.</para>
</section>
<section>
<title>Unit Testing Simple Request-Response Protocols</title>
<para>
Many of the XMPP protocols are simple: one side sends an
IQ request, the other side receives the request, processes it, and
responds with an IQ result.
An example of such a simple request-response protocol is the
software version protocol illustrated earlier.
An implementation of this protocol consists of two parts:
<itemizedlist>
<listitem><para>
The <emphasis>initiator</emphasis> implementation
sends a software version request and processes the corresponding
response when it comes in.</para>
</listitem>
<listitem>
<para>
The <emphasis>responder</emphasis> listens for incoming software
version requests and responds to them.</para>
</listitem>
</itemizedlist>
These implementations are typically implemented locally in one
class for the initiator and one for the responder.<footnote><para>
Some implementations are even known to put both responder and initiator
implementations in one class. Don’t try this at home, kids!</para></footnote>
For example, <xref linkend="Example-VersionResponder"/> shows
how a <literal>VersionResponder</literal> class is instantiated
in a client to respond to incoming software version requests. All
this class does is listen for an incoming IQ query of
the type <literal>jabber:iq:version</literal>, and respond with the
values set through <literal>setVersion</literal>. The
class uses the central <literal>XMPPClient</literal> class to send
data to and receive data from the XMPP connection.
</para>
<example id="Example-VersionResponder">
<title>Using <literal>VersionResponder</literal> to listen
and respond to software version requests.</title>
<programlisting><![CDATA[class MyClient {
MyClient() {
xmppClient = new XMPPClient("alice@wonderland.lit", "mypass");
versionResponder = new VersionResponder(xmppClient);
versionResponder->setVersion("Swift", "0.1");
xmppClient->connect();
}
]]>…<![CDATA[
};]]></programlisting>
</example>
<para>
Since the implementation of request-response protocols are local to
one class, <emphasis>unit testing</emphasis> is a good way to test
the functionality of the protocol implementation. So, let’s see how
we can unit test the <literal>VersionResponder</literal>
class.
</para>
<para>
First, we need to make sure we can create an isolated
instance of <literal>Responder</literal>. The only dependency the
class has is the <literal>XMPPClient</literal>, a class that
sets up and manages the XMPP connection. Setting up and managing
a connection involves quite some work, and in turn brings in
other dependencies, such as network interaction, authentication,
encryption mechanisms, and so on. Luckily, all
<literal>VersionResponder</literal> needs to be able to do is
send and receive data from a data stream. It therefore only needs
to depend on a <literal>DataChannel</literal> interface, which
provides a method to send data and a signal to receive data,
as shown in <xref linkend="Example-DataChannel"/>. This interface,
implemented by <literal>Client</literal>, can be easily mocked in
our unit test.
</para>
<example id="Example-DataChannel">
<title>Abstracting out data interaction in a
<literal>DataChannel</literal> interface. The
<literal>XMPPClient</literal> class is a concrete implementation of
this interface.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/DataChannel.h.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>
Now that we have all the ingredients for testing our
<literal>VersionResponder</literal>, let’s have a first attempt at
writing a unit test. <xref linkend="Example-VersionResponderTest-XML"/>
shows how we can test the basic behavior of the responder, using a
mock data channel to generate and catch incoming and outgoing data
respectively.
</para>
<example id="Example-VersionResponderTest-XML">
<title>Testing <literal>VersionResponder</literal> using raw
serialized XML data.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/VersionResponderTest_V1.Tests.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>On first sight, this unit test
doesn’t look too bad: it’s
relatively short, easy to understand, structured according to the rules
of unit testing style, and isolates testing of the protocol from the
low-level network aspects of XMPP. However, the beauty of this test is
only skin-deep, as the test turns out to be pretty
<emphasis>fragile</emphasis>. To see this, we need to look at how XMPP
implementations generate the response to a request.</para>
<para>Whenever an XMPP client generates an XML stanza, it typically
constructs the XML of the stanza by building up a structured document
(e.g., using a <citetitle>Document Object Model</citetitle> <citation><biblioref linkend="DOM"/></citation> API), and then
<firstterm>serializes</firstterm> this document into a textual XML
representation, which is then sent over the network. In <xref linkend="Example-DataChannel"/>, our test records exactly the serialized XML stanza generated by
the responder being tested, and then compares it to a piece of XML that it expects.
The problem with this approach is that the same XML element can be
serialized in different correct ways. For example, we could have
switched the order of the <literal>from</literal> and
<literal>type</literal> attribute of the <literal><iq/></literal>
element, and still have a logically equivalent stanza. This means that
the smallest change to the way stanzas are serialized could break
<emphasis>all</emphasis> tests.</para>
<para>One solution to avoid the fragility caused by XML serialization is
to ensure that serialized stanzas are always in <citetitle>Canonical
XML</citetitle> <citation><biblioref linkend="XML-C14n"/></citation>
form. By normalizing away non-meaningful properties such as attribute order
and whitespace, this subset of XML ensures that two equivalent XML
stanzas can be compared in a stable way, thus solving the fragility
of our tests. Unfortunately, since XMPP implementations typically use
off-the-shelf XML implementations, they often have no control over how
XML is serialized, and as such cannot make use of this trick to compare
stanzas.</para>
<para>The solution most XMPP implementations take to verify responses is
to check the structured DOM form of the response instead of
comparing the serialized form. As shown in <xref linkend="Example-VersionResponder-Structured"/>, this means that our
<literal>VersionResponder</literal> no longer uses an
interface to send raw data, but instead depends on a more structured
<literal>XMLElementChannel</literal> interface to send and receive stanzas
as XML element data structures.</para>
<!--
<example id="Example-StanzaChannel">
<title>An abstract <literal>StanzaChannel</literal> interface for
sending and receiving stanzas.</title>
<programlisting><![CDATA[class StanzaChannel {
public:
void sendStanza(const Stanza& stanza) = 0;
signal <void (const Stanza&)> onStanzaReceived;
};]]></programlisting>
</example>-->
<example id="Example-VersionResponder-Structured">
<title>Testing <literal>VersionResponder</literal> using the structured XML representation. This test is no longer influenced by changes in the way the
XML stanzas are serialized for transferring (e.g., different
attribute order, extra whitespace, etc.).</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/VersionResponderTest_V2.Tests.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>A downside of this test is that it is slightly less appealing
than the one from <xref linkend="Example-VersionResponderTest-XML"/>.
For this one test, the fact that the test has become less compact and
readable is only a small price to pay. However,
suppose now that we also want to test the case where the
user didn’t provide a version to the version responder, in which
case we want to send back “Unknown version” as a version string.
This test would in fact look exactly as
<xref linkend="Example-VersionResponder-Structured"/>, except
that the call to <literal>setVersion</literal> will pass an empty
string instead of <literal>"1.0"</literal>, and that the test
would compare the version to <literal>"Unknown version"</literal>.
Needless to say that this is a lot of duplicated code just to test
a small difference in behavior, which will only get worse the more
complex our protocol is (and hence the more tests it needs).
</para>
<para>A first part of the duplication lays in checking whether the
responder sends an <literal><iq/></literal> stanza of type
<literal>result</literal>, whether it is addressed to the sender
of the original stanza, and whether the identifier matches that of
the request. This part can be easily factored out into a
“generic” responder base class, and tested separately.</para>
<para>A second problem with our test is the fact that we need to
analyze the structure of the XML to extract the values we want to
test. The real underlying problem here is the fact that
our tests are testing two things at once:
the <emphasis>logic</emphasis> of the protocol (i.e.,
<emphasis>what</emphasis> it should respond), and the
<emphasis>representation</emphasis> of the responses (i.e.,
<emphasis>how</emphasis> the request and response is represented in
XML).</para>
<para>To separate the logic from the representation in our test, we
adapt our <literal>VersionResponder</literal> to work on a high-level
<literal>IQ</literal> data structure, which in turn contains high-level
<literal>Payload</literal> data structures representing the payloads
they carry. Using these abstract data structures, we can now focus
on testing the <literal>VersionResponder</literal>’s functionality,
without worrying about how the <literal>IQ</literal> and
<literal>Payload</literal> data structures are actually represented
in XML. The resulting test can be seen in
<xref linkend="Example-VersionResponderTest-Logic"/>.</para>
<example id="Example-VersionResponderTest-Logic">
<title>Testing the logic of <literal>VersionResponder</literal>.
The actual (XML) representation of the stanzas sent and
received by <literal>VersionResponder</literal> are no longer
explicitly present in this test, making the test resistant
against changes in representation.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/VersionResponderTest_V3.Tests.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>
The conversion from the <literal>VersionPayload</literal> structure to
XML can now be tested independently, as illustrated in <xref
linkend="Example-VersionPayloadSerializerTest"/>. Although this
test still isn’t very attractive, the clutter coming from the
representational part no longer impacts the tests for the more
important behavioral part of the protocol.
</para>
<example id="Example-VersionPayloadSerializerTest">
<title>Testing the conversion of <literal>VersionPayload</literal> to
XML.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/VersionPayloadSerializerTest.Tests.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>In this section, we discussed how to test a simple IQ-based
request/response protocol. In our first attempt, we tested the protocol
at the
lowest level possible, by analyzing the actual data sent over the wire.
Subsequent versions tested the logic of the protocol at a higher, more
structured level, up to the point where the logic of the responder was
tested independently of the actual representation of the data sent over
the network. Although it might seem overkill to separate the XML parsing
and serializing from the actual data structure for a simple protocol like
the one shown here, it makes testing the more complex (multistage) protocols from
the next sections a lot cleaner.</para>
</section>
<section>
<title>Unit Testing Multistage Protocols</title>
<para>So far, the class of protocols we have considered were rather simple:
one side sent out a request, the other side responded, and we were done.
Although many of the XMPP protocols fall within this category,
there are several others that consist of multiple iterations
of these request-response cycles. These protocols start by doing a
request, and then take subsequent steps based on the response of previous
requests. Testing these types of protocols is the focus of this
section.</para>
<para>Besides person-to-person conversations, XMPP also allows users
to join chat “rooms” to communicate with multiple people at once.
Whenever a user wants to join such a
<emphasis>Multi-user Chat</emphasis> (<emphasis>MUC</emphasis> for short),
an IM client needs to detect the
MUC rooms that are available on a server, and present this list to the
server. Obtaining this list requires a chain of multiple
<firstterm>service discovery</firstterm> (often called
<firstterm>disco</firstterm> in the XMPP world) requests.
For example, let’s assume Alice wants to get a list of all the available
rooms on the <literal>wonderland.lit</literal> server. She starts
by requesting all the available services of her server, which is done
by sending a <literal>disco#items</literal> request to the server:
<programlisting><![CDATA[<iq type="get" id="muc-1" to="wonderland.lit">
<query xmlns="http://jabber.org/protocol/disco#items"/>
</iq>]]></programlisting>
The server then responds with the list of all its services:
<programlisting><![CDATA[<iq type="result" id="muc-1"
from="wonderland.lit" to="alice@wonderland.lit/RabbitHole">
<query xmlns="http://jabber.org/protocol/disco#items">
<item jid="pubsub.wonderland.lit" />
<item jid="rooms.wonderland.lit" />
</query>
</iq>]]></programlisting>
Alice now needs to determine which one of these services provides
chat rooms. She therefore sends a <literal>disco#info</literal> request
to each service, asking them which protocols they support:
<programlisting><![CDATA[<iq type="get" id="muc-2" to="pubsub.wonderland.lit">
<query xmlns="http://jabber.org/protocol/disco#info"/>
</iq>
<iq type="get" id="muc-3" to="rooms.wonderland.lit">
<query xmlns="http://jabber.org/protocol/disco#info"/>
</iq>]]></programlisting>
The first service responds:
<programlisting><![CDATA[<iq type="result" id="muc-2"
from="pubsub.wonderland.lit" to="alice@wonderland.lit/RabbitHole">
<query xmlns="http://jabber.org/protocol/disco#info">
<feature var="http://jabber.org/protocol/pubsub" />
</query>
</iq>]]></programlisting>
This service seems to support the only PubSub protocol (feature),
which is not
what Alice was looking for. The second service, however, responds with
the following feature list:
<programlisting><![CDATA[<iq type="result" id="muc-3"
from="rooms.wonderland.lit" to="alice@wonderland.lit/RabbitHole">
<query xmlns="http://jabber.org/protocol/disco#info">
<feature var="http://jabber.org/protocol/muc" />
</query>
</iq>]]></programlisting>
Bingo! Now that she found the MUC service, all she needs to do is ask
for the list of rooms, which is done using another <literal>disco#items</literal> request:
<programlisting><![CDATA[<iq type="get" id="muc-4" to="rooms.wonderland.lit">
<query xmlns="http://jabber.org/protocol/disco#items"/>
</iq>]]></programlisting>
This request results in the list of all the MUC rooms on the
<literal>rooms.wonderland.lit</literal> server (in this case, a
tea party and a room for discussing croquet):
<programlisting><![CDATA[<iq type="result" id="muc-4"
from="rooms.wonderland.lit" to="alice@wonderland.lit/RabbitHole">
<query xmlns="http://jabber.org/protocol/disco#items">
<item jid="teaparty@rooms.wonderland.lit" />
<item jid="croquet@rooms.wonderland.lit" />
</query>
</iq>]]></programlisting>
</para>
<para>
As you can tell from this scenario, a lot of stanzas are
going back and forth. Things become even more complex if you take into
consideration that every step can result in an error response from
the responding entity. Testing this protocol therefore involves
multiple tests for determining whether our client can handle every type
of response from the server, both successful and unsuccessful. Luckily,
because of the high level at which we test our protocols, creating
a test for one scenario can be very compact and straightforward.
For example, a test for the “happy” error-less scenario described
earlier is shown in <xref linkend="Example-RoomDiscovererTest"/>.
</para>
<example id="Example-RoomDiscovererTest">
<title>Testing <literal>RoomDiscoverer</literal>.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/RoomDiscovererTest.Tests.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>
The test specifies what responses should be sent for both
<literal>disco#info</literal> and <literal>disco#items</literal>
queries directed to specific JIDs. The <literal>RoomDiscoverer</literal>
(which is the class that is responsible for discovering rooms) is then
put in action, after which the test checks whether it indeed discovered
both MUC rooms (and didn’t accidentally include the PubSub service
items). Not only is the test simple, but the auxiliary methods used
by this test (including the fixture setup and tear down) can be
kept very simple as well, as can be seen in
<xref linkend="Example-RoomDiscovererTest-Fixture"/>.
</para>
<example id="Example-RoomDiscovererTest-Fixture">
<title>Setting up the <literal>RoomDiscovererTest</literal> fixture.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/RoomDiscovererTest.FixtureDefinition.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>
In this section, I showed how you can apply the high level of testing
described in the previous section on more complex, multistage
protocols. Because the tests aren’t cluttered
by low-level protocol representational details, the tests can focus
on testing the actual logic of the protocol, allowing the number of
tests to grow, without compromising the beauty of the protocol
test suite.
</para>
</section>
<section>
<title>Testing Session Initialization</title>
<para>
By looking at both the single- and multistage request/response
protocols from the previous sections, we covered most of the
XMPP protocols out there. Although the level of testing for these
protocols was already rather high, some protocols are still
so complex that even testing at the level of “abstract” payloads
results in too much clutter for a beautiful test. These are
typically protocols that have a complex state diagram, and
possibly even require user input during the process. We therefore
bring in a higher level of testing: <firstterm>scenario testing</firstterm>.
</para>
<para>
One of the most complex protocols in XMPP is <firstterm>session
initialization</firstterm>. Session initialization in an IM client
involves creating a connection to the server, negotiating parameters
of the connection (e.g., using stream compression for lower bandwidth
consumption, encrypting the stream for better security, and so on),
and finally authenticating with the server (typically involving
sending a username and password to the server). Which parameters to
negotiate with the server depends on what features the client and the
server support, and also on the user preferences of the client. For example,
a server might not support stream encryption; depending on whether
the user has stated that he only wants to communicate over an
encrypted connection, the client should either report an error or
fall back on an unencrypted connection, respectively.
</para>
<para>
Testing all the possible code paths in session initialization
requires a concise way of describing a session initialization scenario.
<xref linkend="Example-SessionTest-Encrypt"/> shows such a scenario
test where the client encrypts the connection. By introducing
helper methods describing what the client is supposed to send and
what the server would send in response, we can clearly see how
the encryption scenario is supposed to happen. It is easy to create
scenarios for error conditions such as the server not supporting
encryption (as shown in <xref linkend="Example-SessionTest-EncryptWithoutServerSupport"/>),
and even to test the client’s reaction to failing network connections
(shown in <xref linkend="Example-SessionTest-FailingConnection"/>).
Moreover, creating these helper methods doesn’t require all that
much code, as they only involve setting expectations and
responses on payloads, which can be written at the same level
as the sections before.
</para>
<example id="Example-SessionTest-Encrypt">
<title>Testing session encryption negotiation.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/SessionTest.TestEncrypt.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<example id="Example-SessionTest-EncryptWithoutServerSupport">
<title>Testing session failure due to the server not supporting encryption.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/SessionTest.TestEncryptWithoutServerSupport.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<example id="Example-SessionTest-FailingConnection">
<title>Testing session failure due to a failing connection.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/SessionTest.TestFailingConnection.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>
With scenario-based testing, it is possible to test the most complex
class of protocols, covering all their corner cases. Although many
of the corner cases of each “stage” in such protocols can be
tested separately in isolation, scenarios are still needed to test
the interaction between the multiple stages of the protocol.
</para>
</section>
<section>
<title>Automated Interoperability Testing</title>
<para>
By using unit tests to test our protocols in isolation (without a
real network connection to an XMPP server), we were able to test
all corner cases of a protocol while keeping our tests clean,
simple, fast, and reliable. However, an XMPP client doesn’t live
in isolation; its purpose is to eventually connect to a
<emphasis>real</emphasis> XMPP server and talk to
<emphasis>real</emphasis> clients. Testing an XMPP client in the
real world is important for several reasons.
First of all, it allows you to check the functionality of your
application at a larger scale than the local unit testing, ensuring
that all the components work together correctly. Second,
by communicating with other XMPP protocol implementations, you can
test whether your interpretation of the protocol specification
is correct. Finally, by testing your client against many different
XMPP implementations, you are able to ensure interoperability with a
wide collection of XMPP software. Unless you are developing a
dedicated client to connect to only one specific server, testing
interoperability with other clients and servers is very important in
an open, heterogeneous network such as XMPP.
</para>
<para>
Because IM clients are driven by a user interface, testing
interoperability between two clients is typically done manually:
both clients are started, they connect to a server, an operation is
triggered through the user interface of one client, and the other client
is checked to determine whether it responds correctly to the operation. Fully automating
UI-driven features is very hard.
</para>
<para>
Testing client-to-server interoperability is somewhat easier than testing
client-to-client communication. By creating a small headless test program
on top of the client’s XMPP protocol implementation, we can test whether
the basic XMPP functionality of the backend works correctly, and even
test complex protocols such as session initialization in action. For
example, consider the test program in <xref
linkend="Example-ClientTest"/>. This program logs into the server,
fetches the user’s contact list (also called
<firstterm>roster</firstterm>), and returns successfully if it received
the contact list from the server. By running this program, we can test
whether most parts of our XMPP client’s backend work: network connection,
session initialization, stream compression, stream encryption, sending IQ
requests, notifications of IQ responses, and so on.
</para>
<example id="Example-ClientTest">
<title>A test program to connect to a server and request the roster. The JID and password of the account are passed through the environment.</title>
<include xmlns="http://www.w3.org/2001/XInclude" href="generated/ClientTest.TestClient.cpp.xml" xpointer="xpointer(//programlisting|//calloutlist)"/>
</example>
<para>
A program similar to the one from <xref linkend="Example-ClientTest"/>
is run as part of Swift’s automated test suite. We use a few different
server implementations on every run, passing
the test JID and password of each server through the environment. If
<literal>ClientTest</literal> fails due to a bug in a protocol
implementation, a new unit test is added and the protocol is fixed.
If the bug is due to a certain combination of protocols not being
handled properly (either by the client or by the server), a scenario
test is added to reproduce the scenario, after which either the client
bug is fixed or the client is adapted to work around a specific
server implementation bug.
</para>
<para>
When using automated tests like the one just described, a project is of course
always limited to testing against the implementations
it has access to. Although it is always possible to test against the
handful of free XMPP server implementations out there, testing against
implementations from commercial vendors isn’t always straightforward. To
make it easier for the XMPP community to test their implementations
against each other, there has been an initiative to create
a centralized place (<uri>http://interop.xmpp.org</uri>) that provides access to
test accounts on all server implementations out there, including ones
from commercial vendors.<footnote><para>Unfortunately, this initiative
has currently
been put on hold for more urgent matters, but it will hopefully be revived
soon.</para></footnote> This initiative paves the way to easy,
automated interoperability testing for XMPP projects.
</para>
</section>
<section>
<title>Diamond in the Rough: Testing XML Validity</title>
<para>
When testing the functionality of our protocol in the previous sections,
we separated the stanza representation from the actual logic of the
protocol to improve the focus of our tests. This split made testing the
logic of the protocol straightforward and clean. Unfortunately, testing
the representational part that converts the abstract stanzas into XML and
back is still tedious and error-prone. One of the things that needs
to be checked is whether every variation of the payload
transforms correctly to a standards-compliant
XML element. For example, for the version payload we used earlier,
we need to test the representation of a payload with and without
a version number. Vice versa, the transformation from XML to a
payload data structure needs to be tested for every possible
compliant XML element. It would be handy if we could automatically check
whether our XML parser and serializer handles all of the possible
variations of payloads and stanzas allowed by the protocol standard.
</para>
<para>
A possible approach for testing XML parsers and serializers is
automated <emphasis>XML Validation</emphasis>.
Every protocol specification published by the XMPP Standards Foundation
comes with an <emphasis>XML Schema</emphasis>. This schema describes the
syntax and constraints of the XML used in the protocol. For example, it
specifies the names of the XML elements that can occur in the payload,
the names and types of the attributes of these elements, the number of
times an element can occur, and so on. Such XML schemas are typically used
to test whether a piece of XML is syntactically valid according to the
rules specified in the schema. Unfortunately, the XMPP schemas currently
serve only a descriptive purpose, and are only used to document the
protocol. This is why using the XMPP schemas in automated processes
(such as validity checking) is still mostly unexplored terrain. However,
there has been interest lately in making normative XML schemas, which
would open up some more possibilities for making the tedious
testing of XMPP parsing and serialization more pleasant and, who knows,
even beautiful!
</para>
</section>
<section>
<title>Conclusion</title>
<para>
In our quest to create beautiful tests for checking XMPP protocol
implementations, we started out by testing simple request-response
protocols at the lowest level: the data sent over the network stream.
After discovering that
this form of testing does not really scale well, we abstracted out
the protocol to a higher level, up to the point where the tests
used only high-level data structures. By testing protocol behavior on a high level,
we were able to write tests for more complex protocols without
compromising the clarity of the tests. For the most complex protocols,
writing scenarios helped to cover all of the possible situations that
can arise in a protocol session. Finally, since XMPP is an open protocol
with many different implementations, it’s very important to test an
XMPP application on the real network, to ensure interoperability with
other implementations. By running small test programs regularly,
we were able to test the system in its entirety, and check whether
our implementation of the protocol plays together nicely with other
entities on the network.
</para>
<para>
The focus of the text has mostly been on testing the protocol
functionality in
XMPP implementations, as this is probably the most important
part of quality control in XMPP. However, many other forms
of testing exist in the XMPP world besides protocol tests. For example,
performance testing is very crucial in the world of XMPP servers. Simple
test scripts or programs like the ones described earlier can be used to
generate a high load on the server, and to test whether the server can handle
increasing amounts of traffic. In XMPP clients, on the other hand,
testing the user interface’s functionality is very important. Although
automated UI testing is known to be hard, many complex parts, such as
contact list representation, can be unit tested in isolation, which
can avoid bugs in vital pieces of client code.
</para>
<para>
Although it’s already possible to write simple, clean, and thorough tests
for many aspects of XMPP, there’s still a lot of beauty in testing
waiting to be discovered. If you have suggestions or ideas, or want to
help working on improving testing in the XMPP community, feel free
to stop by <ulink
url="http://xmpp.org"><uri>http://xmpp.org</uri></ulink> and join the
conversation!
</para>
</section>
<bibliography>
<title>Bibliography</title>
<biblioentry id="XMPP-TDG">
<abbrev>XMPP-TDG</abbrev>
<title><ulink url="http://oreilly.com/catalog/9780596157197/">XMPP: The
Definitive Guide</ulink></title>
<author>
<firstname>Peter</firstname>
<surname>Saint-Andre</surname>
</author>
<author>
<firstname>Kevin</firstname>
<surname>Smith</surname>
</author>
<author>
<firstname>Remko</firstname>
<surname>Tronçon</surname>
</author>
</biblioentry>
<biblioentry id="RFC3920">
<abbrev>RFC 3920</abbrev>
<title><ulink url="http://www.ietf.org/rfc/rfc3920.txt">Extensible Messaging and Presence Protocol: Core</ulink></title>
<author>
<firstname>Peter</firstname>
<surname>Saint-Andre</surname>
</author>
</biblioentry>
<biblioentry id="RFC3921">
<abbrev>RFC 3921</abbrev>
<title><ulink url="http://www.ietf.org/rfc/rfc3921.txt">Extensible Messaging and Presence Protocol: Instant Messaging and Presence</ulink></title>
<author>
<firstname>Peter</firstname>
<surname>Saint-Andre</surname>
</author>
</biblioentry>
<biblioentry id='XEP-0092'>
<abbrev>XEP-0092</abbrev>
<title><ulink url='http://www.xmpp.org/extensions/xep-0092.html'>Software Version</ulink></title>
<author>
<firstname>Peter</firstname>
<surname>Saint-Andre</surname>
</author>
</biblioentry>
<biblioentry id="DOM">
<abbrev>DOM</abbrev>
<title><ulink url="http://www.w3.org/2002/07/26-dom-article.html">The
W3C Document Object Model (DOM)</ulink></title>
<author>
<surname>Philippe Le Hégaret</surname>
</author>
</biblioentry>
<biblioentry id="XML-C14n">
<abbrev>XML-C14n</abbrev>
<title><ulink url="http://www.w3.org/TR/xml-C14n.html">Canonical
XML</ulink></title>
<author>
<surname>John Boyer</surname>
</author>
</biblioentry>
</bibliography>
<colophon>
<title>About the Author</title>
<para>
<emphasis role="bold">Remko Tronçon</emphasis> is a member of
the <ulink url="http://xmpp.org">XMPP Standards Foundation</ulink>’s
council, coauthor of several XMPP protocol
extensions, and former lead developer of <ulink
url="http://psi-im.org">Psi</ulink>, developer of the <ulink
url="http://swift.im">Swift</ulink> Jabber/XMPP project, and a
coauthor of the book <ulink
url="http://oreilly.com/catalog/9780596521264"><citetitle>XMPP: The
Definitive Guide</citetitle></ulink>. He holds a Ph.D. in
engineering (computer science) from the Katholieke Universiteit
Leuven. His blog can be found at <ulink
url="http://el-tramo.be"><uri>http://el-tramo.be</uri></ulink>.
</para>
</colophon>
<colophon>
<title>About this Article</title>
<para>
The original version of this article appeared as a chapter in <ulink
url="http://oreilly.com/catalog/9780596159825"><citetitle>Beautiful
Testing</citetitle></ulink>.
</para>
</colophon>
<colophon>
<title>Copyright</title>
<para>
This work is licensed under a <ulink url="http://creativecommons.org/licenses/by/3.0/">Creative Commons Attribution 3.0
License</ulink>.
</para>
</colophon>
</article>
|
