| title: | Breaking Things For Money |
|---|---|
| data-transition-duration: | 500 |
| css: | thetestpeople.css |
Lead Technical Consultant @ The Test People
@agjasimpson
github.com/tonysimpson
#breakingpycon
Senior Technical Consultant @ The Test People
@qwertyface
#breakingpycon
- Testing consultancy based in Yorkshire (offices Leeds, London, Gibraltar).
- Company prides itself on its innovation and technical delivery.
- #44 on the 'Sunday Times Tech Track 100 2013', #1 in Yorkshire.
@thetestpeople
- Performance Testing.
- Managed Functional Testing Teams.
- Test Automation.
- Agile and CI/CD consultancy.
A few brief stories of some interesting projects we've done in Python.
Note
- A few stories from the trenches
- About tools we’ve written to address needs we faced
- All internal tools – no github links – sorry!
If your application is not broken you're not using enough Pynamite!
Note
- Load testing engagement
- Typically use tools
- Some tied to HTTP only,
- some have plugins to support additional protocols,
- But all have a request response oriented HTTP view of the world
- but all are islands of functionality - you can't use cool features from one with another
- too expensive and inflexible to allow TTP to do the more challenging projects.
- Our need:
- Streaming video server
- which is Definitely not HTTP
- Typically use tools
Note
- Struggled with an existing open source tool
- Hard to use with our network topology
- Made of bugs
- Basically no reporting - So we were going to be using matplotlib anyway
- So I said...
"I could write something better than this!"
"...in a day!"
"… In Bash!"
Note
And we did, but in Python
- Flask (extension mechanism)
- Erlang OTP (process management, messaging, let it crash and restart it, isolated processes)
- Python Web Frameworks (project scaffolding and packaging, dev server/runner)
Note
Tony
- Somewhat inspired by python microframeworks
- Plain old functions - wired together by something very conceptually simple
- Architecture inspired by erlang
- Video Streaming
- Warehouse Management Systems
- Legacy Applications
- Flash and Silverlight
- Data Warehouse Infrastructure
- Network Attached Devices
- Uncommon and Bespoke Protocols
Note
Peter
- ZeroMQ
- Distutils / Setuptools / easy_install
- Boto
- IPython Notebook
- Matplotlib
- Docopt
- Paramiko
Or how Tony spent days staring at a massive 'B' and a massive number '8'
Note
- Client wanted to compare their product to others
- Financial services - latency counts (or is perceived to)
- Clients were all sorts of stuff: Flash, .net & WPF, Silverlight, Flash, Flash
- Can’t build in automation libs
- No standard framework
Gawker is a "poor mans OCR" - bitmap based character matching
Note
- Screen scraping * Sounds pretty easy * We probably know what fonts we’re using * And all we’re really interested in is numbers * Of known length * in known positions
- Put together very quickly (< 1 week)
- Worked … acceptably
Problems
Note
- Fancy Financial apps love gradient backgrounds
- Fonts aren’t as “standard” as you’d think - flash seems to have its own renderer!
- Antialiasing
- Performance
- “Training” became an issue
---
Note
- Numpy is one of the coolest things ever - Its like an ancient technology we’ve found buried in the desert - mere mortals like us are really unworthy of it.
- Lots of little image manipulation bits:
- Edge detection
- Thresholding
- Colourspace manipulation
- Lots of little image manipulation bits with numpy
- Using the Win32 APIs through ctypes is really easy
- And numpy and Win32 combine really well (the buffer protocol) for great justice.
Computer vision based UI automation library
Note
- Our team are gaining a reputation for solving hard problems (thanks to Tony)
- 90% of automation is easy – webdriver / windows automation APIs / build in the appropriate library for your target platform
- But Increasingly we’re getting asked to solve problems others have given up on
- And proving we can bring something under automation quickly is commercially very useful.
- Logical next step after geist
- visual automation... The nuclear option
- Sikuli
- Expresser
Both good tools
Note
- Previously aware of Sikuli and Expresser
- Both use OpenCV for image matching
- OpenCV is a fantastic, mathsy, black box.
- Expresser and sikuli use the templateMatch() function from openCV. Here’s the documentation.
Sikuli and Xpresser use OpenCV matchTemplate with CV_TM_CCOEFF_NORMED
Note
- To get things done quickly we need easy debugging, which means we need understanding
- So we hired a maths graduate.
- Adam! What does this mean?
- Failing understanding, we'll settle for intuition
Convolution on Wikipedia [http://en.wikipedia.org/wiki/Convolution]
Note
- Template matching usually uses something called the convolution theorem.
- Convolution: [switch to Wikipedia] maths… maths… maths… Ah… intuition.
- Convoluton “slides” one function over another, and gives a measure
of their how much they intersect at each position.
- So matches are at maxima.
- Kinda easy to see how this would be relevant
- If images were functions
- Sounds slow though
- The convolution theorm basically says there's a cheap way to do this using FFTs.
import numpy
from numpy.fft import rfft2, irfft2
from PIL import Image
peter_grey = numpy.array(Image.open('static/peter.png')).astype(numpy.float64) / 255
width, height = 200, 200
single_pixel = numpy.zeros((height, width), numpy.float64)
single_pixel[22, 36] = 1
single_peter = irfft2(rfft2(single_pixel) * rfft2(peter_grey, single_pixel.shape))
width, height = 2000, 2000
lots_of_pixels = numpy.zeros((height, width), numpy.float64)
lots_of_pixels[zip(*[(random.randint(0, width-1),
random.randint(0, width-1)) for i in range(40)])] = 1
lots_of_peter = irfft2(rfft2(lots_of_pixels) * rfft2(peter_grey,
lots_of_pixels.shape))single_conv = irfft2(rfft2(single_peter) * rfft2(peter_grey[::-1, ::-1],
single_peter.shape))
found_single_peter = single_conv > (single_conv.max() * 0.98)
lots_conv = irfft2(rfft2(lots_of_peter) * rfft2(peter_grey[::-1, ::-1],
lots_of_peter.shape))
found_lots_of_peter = lots_conv > (single_conv.max() * 0.98)
To get round the problems of FFT based convolution you need to investigate edge detection and image thresholding - but that's a much longer talk.
- NumPy
- IPython Notebook
- CTypes with Win32
- Matplotlib
- NumPy
- PIL
- Leeds brewery Midnight Bell and Saltaire Blonde
- Whiteboard
The problem:
- Large performance test of a trading system
- Hairy Flash based application
- Custom widget set
- Only really works in Internet Explorer (8)
Approach:
- Library of image finding code (Geist)
- Python bindings for some useful Win32 functions (for typing, clicking etc.)
- Database of template images - unit tested against known screenshots
- "OCR" for reading values (Gawker)
- Nice straightforward scripts written in Python
- Pynamite
- Hundreds of Windows EC2 instances
Result:
- Happy customer
- Good engagement
- More work - for other parts of TTP
The tool that we may or may not decide to call huk
Note
- Last test was a success, but leaves a lot of questions unanswered
- Really want to "see" messages being sent
- Just one Problem...
- The messaging is encrypted.
- The "standard" solution: Proxy server
- But proxies suck
- Plan B: Be inside Internet Explorer.
- Get handle for process
- Allocate memory within address space of process
- Write DLL name into memory
- Start new thread, running LoadLibrary function, passing name as argument.
Amazingly this works
Note
- Fairly standard trick
- Lots of websites with green text on black backgrounds mention it.
- What's novel is the The DLL we used...
- Inject Python27.dll
- We then run
Py_Initialize()- And run
PyRun_SimpleScript(), passing script name.
- Making use of Windows hot patching mechanism for now
- Other approaches possible too.
- CTypes has support for generating function pointers from python functions.
DIGIT_MAP = {i:j for i,j in zip('0123456789','6514798023')}
SET_WINDOW_TEXT_A = """
BOOL WINAPI SetWindowTextA(
_In_ HWND hWnd,
_In_opt_ LPCSTR lpString
);
"""
@hook(ctypes.windll.user32, SET_WINDOW_TEXT_A)
def SetWindowTextA(hWnd, lpString):
text = ''.join([c if not c.isdigit() else DIGIT_MAP[c] for c in lpString])
print("Got %r using %r" % (lpString,text))
return SetWindowTextA.unhooked(hWnd, text)END