Added mutations

Author: DaniilStepanov

utbot-framework/src/main/kotlin/org/utbot/engine/greyboxfuzzer/GreyBoxFuzzer.kt

@@ -13,7 +13,6 @@ import org.utbot.framework.util.sootMethod
 import org.utbot.instrumentation.ConcreteExecutor
 import java.lang.reflect.Field
 import java.lang.reflect.Method
-import java.lang.reflect.Modifier
 import kotlin.random.Random
 
 class GreyBoxFuzzer(
@@ -23,15 +22,15 @@ class GreyBoxFuzzer(
 ) {
 
     private val seeds = SeedCollector()
-    private val explorationStageIterations = 50
+    private val explorationStageIterations = 100
     private val exploitationStageIterations = 100
 
     //TODO make it return Sequence<UtExecution>
     suspend fun fuzz(): Sequence<UtExecution> {
         logger.debug { "Started to fuzz ${methodUnderTest.name}" }
         val javaClazz = methodUnderTest.classId.jClass
-        val javaMethod = methodUnderTest.sootMethod.toJavaMethod()!!
         val sootMethod = methodUnderTest.sootMethod
+        val javaMethod = sootMethod.toJavaMethod()!!
         val classFieldsUsedByFunc = sootMethod.getClassFieldsUsedByFunc(javaClazz)
         val methodLines = sootMethod.activeBody.units.map { it.javaSourceStartLineNumber }.filter { it != -1 }.toSet()
         val currentCoverageByLines = CoverageCollector.coverage
@@ -43,13 +42,12 @@ class GreyBoxFuzzer(
             javaMethod,
             explorationStageIterations,
             methodLines,
-            javaClazz,
             classFieldsUsedByFunc,
             methodUnderTest,
             currentCoverageByLines
         )
         logger.debug { "SEEDS AFTER EXPLORATION STAGE = ${seeds.seedsSize()}" }
-        //exploitationStage(exploitationStageIterations, javaClazz, methodLines, currentCoverageByLines)
+        exploitationStage(exploitationStageIterations, javaClazz, methodLines, currentCoverageByLines)
         //UtModelGenerator.reset()
         return sequenceOf()
     }
@@ -58,11 +56,32 @@ class GreyBoxFuzzer(
         method: Method,
         numberOfIterations: Int,
         methodLinesToCover: Set<Int>,
-        clazz: Class<*>,
         classFieldsUsedByFunc: Set<Field>,
         methodUnderTest: ExecutableId,
         prevMethodCoverage: Set<Int>
     ) {
+//        val param = method.parameters.first()
+//        val firstGenerator = GreyBoxFuzzerGenerators.generatorRepository.getOrProduceGenerator(param, 0)!!
+//        var generator = firstGenerator
+//        println("GENERATOR = $generator")
+//        val generatedValue = generator.generateImpl(GreyBoxFuzzerGenerators.sourceOfRandomness, GreyBoxFuzzerGenerators.genStatus)
+//        println("GENERATED VALUE = $generatedValue")
+//        generator.generationState = GenerationState.CACHE
+//        val valueFromCache = generator.generateImpl(GreyBoxFuzzerGenerators.sourceOfRandomness, GreyBoxFuzzerGenerators.genStatus)
+//        println("VALUE FROM CACHE = $valueFromCache")
+//        //generator = firstGenerator.copy()
+//        generator.generationState = GenerationState.MODIFY
+//        val modifiedValue = generator.generateImpl(GreyBoxFuzzerGenerators.sourceOfRandomness, GreyBoxFuzzerGenerators.genStatus)
+//        println("MODIFIED VALUE = $modifiedValue")
+//        //generator = firstGenerator.copy()
+//        generator.generationState = GenerationState.MODIFY
+//        val modifiedValue2 = generator.generateImpl(GreyBoxFuzzerGenerators.sourceOfRandomness, GreyBoxFuzzerGenerators.genStatus)
+//        println("MODIFIED VALUE = $modifiedValue2")
+//        //generator = firstGenerator.copy()
+//        generator.generationState = GenerationState.MODIFY
+//        val modifiedValue3 = generator.generateImpl(GreyBoxFuzzerGenerators.sourceOfRandomness, GreyBoxFuzzerGenerators.genStatus)
+//        println("MODIFIED VALUE = $modifiedValue3")
+//        exitProcess(0)
         val parametersToGenericsReplacer = method.parameters.map { it to GenericsReplacer() }
         val thisInstancesHistory = ArrayDeque<ThisInstance>()
         repeat(numberOfIterations) { iterationNumber ->
@@ -119,6 +138,7 @@ class GreyBoxFuzzer(
                         )
                     seeds.addSeed(Seed(thisInstance, generatedParameters, seedScore.toDouble()))
                     logger.debug { "Execution result: ${executionResult.result}" }
+                    logger.debug { "Seed score = $seedScore" }
                 } catch (e: Throwable) {
                     logger.debug(e) { "Exception while execution :(" }
                     thisInstancesHistory.clear()
@@ -140,24 +160,44 @@ class GreyBoxFuzzer(
                 .map { it.lineNumber }
                 //.filter { it in currentMethodLines }
                 .toSet()
+        val currentMethodCoverage = coverage.filter { it in currentMethodLines }
         executionResult.coverage.coveredInstructions.forEach { CoverageCollector.coverage.add(it) }
-        return (coverage - prevMethodCoverage).size
+        return (currentMethodCoverage - prevMethodCoverage).size
     }
 
 
     //TODO under construction
-    private fun exploitationStage(
+    private suspend fun exploitationStage(
         numberOfIterations: Int,
         clazz: Class<*>,
         methodLinesToCover: Set<Int>,
         prevMethodCoverage: Set<Int>
     ) {
         logger.debug { "Exploitation began" }
         repeat(numberOfIterations) {
+            logger.debug { "Mutation iteration $it" }
             val randomSeed = seeds.getRandomWeightedSeed() ?: return@repeat
-            val randomSeedArgs = randomSeed.arguments.toMutableList()
-            val randomParameter = randomSeedArgs.random()
-            Mutator.mutateParameter(randomParameter)
+            logger.debug { "Random seed params = ${randomSeed.parameters}" }
+            val mutatedSeed = Mutator.mutateSeed(randomSeed, GreyBoxFuzzerGenerators.sourceOfRandomness, GreyBoxFuzzerGenerators.genStatus)
+            logger.debug { "Mutated params = ${mutatedSeed.parameters}" }
+            val stateBefore = mutatedSeed.createEnvironmentModels()
+            try {
+                val executionResult = execute(stateBefore, methodUnderTest)
+                logger.debug { "Execution result: $executionResult" }
+                val seedScore =
+                    handleCoverage(
+                        executionResult,
+                        prevMethodCoverage,
+                        methodLinesToCover
+                    )
+                mutatedSeed.score = seedScore.toDouble()
+                seeds.addSeed(mutatedSeed)
+                logger.debug { "Execution result: ${executionResult.result}" }
+                logger.debug { "Seed score = $seedScore" }
+            } catch (e: Throwable) {
+                logger.debug(e) { "Exception while execution :(" }
+                return@repeat
+            }
         }
     }
 //    private suspend fun exploitationStage(

utbot-framework/src/main/kotlin/org/utbot/engine/greyboxfuzzer/generator/DataGenerator.kt

@@ -11,7 +11,6 @@ import org.utbot.framework.plugin.api.ClassId
 import org.utbot.framework.plugin.api.UtModel
 import org.utbot.framework.plugin.api.UtNullModel
 import org.utbot.framework.plugin.api.util.jClass
-import soot.SootMethod
 import java.lang.reflect.Parameter
 
 object DataGenerator {
@@ -22,20 +21,20 @@ object DataGenerator {
         clazz: Class<*>,
         random: SourceOfRandomness,
         status: GenerationStatus
-    ): UtModel? = generatorRepository.getOrProduceGenerator(clazz)?.generate(random, status)
+    ): UtModel? = generatorRepository.getOrProduceGenerator(clazz)?.generateImpl(random, status)
 
     fun generate(
         parameterTypeContext: ParameterTypeContext,
         random: SourceOfRandomness,
         status: GenerationStatus
-    ): UtModel? = generatorRepository.getOrProduceGenerator(parameterTypeContext, 0)?.generate(random, status)
+    ): UtModel? = generatorRepository.getOrProduceGenerator(parameterTypeContext, 0)?.generateImpl(random, status)
 
     fun generate(
         parameterTypeContext: ParameterTypeContext,
         random: SourceOfRandomness,
         status: GenerationStatus,
         depth: Int
-    ): UtModel? = generatorRepository.getOrProduceGenerator(parameterTypeContext, depth)?.generate(random, status)
+    ): UtModel? = generatorRepository.getOrProduceGenerator(parameterTypeContext, depth)?.generateImpl(random, status)
 
     fun generate(
         parameter: Parameter,
@@ -74,7 +73,7 @@ object DataGenerator {
         repeat(numberOfTries) {
             logger.debug { "Try $it" }
             try {
-                generatedValue = generator.generate(random, status)
+                generatedValue = generator.generateImpl(random, status)
                 return NormalMethodThisInstance(
                     generatedValue,
                     generator,
@@ -105,7 +104,7 @@ object DataGenerator {
         repeat(numberOfTries) {
             logger.debug { "Try $it" }
             try {
-                generatedValue = generator.generate(random, status)
+                generatedValue = generator.generateImpl(random, status)
                 return FParameter(
                     parameter,
                     null,

utbot-framework/src/main/kotlin/org/utbot/engine/greyboxfuzzer/generator/FParameter.kt

@@ -1,11 +1,13 @@
 package org.utbot.engine.greyboxfuzzer.generator
 
 import org.utbot.engine.greyboxfuzzer.mutator.Mutator
+import org.utbot.engine.greyboxfuzzer.util.copy
 import org.utbot.engine.greyboxfuzzer.util.getAllDeclaredFields
 import org.utbot.quickcheck.generator.Generator
 import org.utbot.external.api.classIdForType
 import org.utbot.framework.plugin.api.ClassId
 import org.utbot.framework.plugin.api.UtAssembleModel
+import org.utbot.framework.plugin.api.UtCompositeModel
 import org.utbot.framework.plugin.api.UtModel
 import org.utbot.framework.plugin.api.util.jClass
 import java.lang.reflect.Field
@@ -51,10 +53,29 @@ data class FParameter(
     fun regenerateFields() {
         regenerateFields(classId.jClass.getAllDeclaredFields())
     }
+
     fun regenerateFields(fieldsToRegenerate: List<Field>) {
         if (utModel is UtAssembleModel) {
             utModel = Mutator.regenerateFields(classId.jClass, utModel as UtAssembleModel, fieldsToRegenerate)
         }
     }
 
+    fun copy(): FParameter = FParameter(
+        parameter,
+        value,
+        utModel.copy(),
+        generator?.copy(),
+        classId,
+        fields
+    )
+
+    fun replaceUtModel(newUtModel: UtModel): FParameter = FParameter(
+        parameter,
+        value,
+        newUtModel,
+        generator?.copy(),
+        classId,
+        fields
+    )
+
 }

utbot-framework/src/main/kotlin/org/utbot/engine/greyboxfuzzer/generator/FThisInstance.kt

@@ -0,0 +1,33 @@
+package org.utbot.engine.greyboxfuzzer.generator
+
+import org.utbot.engine.greyboxfuzzer.util.copy
+import org.utbot.framework.plugin.api.ClassId
+import org.utbot.framework.plugin.api.UtModel
+import org.utbot.quickcheck.generator.Generator
+
+sealed interface ThisInstance {
+    val utModelForExecution: UtModel?
+    fun copy(): ThisInstance
+}
+
+data class NormalMethodThisInstance(
+    val utModel: UtModel,
+    val generator: Generator,
+    val classId: ClassId
+): ThisInstance {
+    override val utModelForExecution = utModel
+    override fun copy(): ThisInstance {
+        return NormalMethodThisInstance(
+            utModel.copy(),
+            generator.copy(),
+            classId
+        )
+    }
+}
+
+object StaticMethodThisInstance: ThisInstance {
+    override val utModelForExecution = null
+    override fun copy(): ThisInstance {
+        return StaticMethodThisInstance
+    }
+}