DOCSLIB.ORG

Modelling and Verification of Concurrent Programs Using Uppaal

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
Modelling and Verification of Concurrent Programs Using Uppaal MODELLING AND VERIFICATION OF CONCURRENT PROGRAMS USING UPPAAL Franco Cicirelli, Libero Nigro, Francesco Pupo Laboratorio di Ingegneria del Software Dipartimento di Elettronica Informatica e Sistemistica Università della Calabria 87036 Rende (CS) – Italy Email: [email protected], {l.nigro,f.pupo}@unical.it KEYWORDS network of timed automata (Alur and Dill, 1994), to Modelling and verification, simulation, concurrency, animate it in simulation to check qualitative behaviour mutual exclusion, synchronizers, timed automata, thus making a preliminary debug, and to prove UPPAAL, Java. (provided the model is not too large) functional/temporal properties of the system at hand ABSTRACT through model checking (Clarke et al., 2000)(Cicirelli et al., 2007)(Cicirelli et al., 2009)(Furfaro and Nigro, This paper describes the design and implementation of a 2007). The approach is similar but independent and library of reusable UPPAAL template processes which original with respect to that described in (Hamber and support reasoning and property checking of concurrent Vaandrager, 2008). A key factor of the work described programs, e.g. to be realized in the Java programming in this paper concerns the development of concurrent language. The stimulus to the development of the structures and synchronizers which are inspired by the library originated in the context of a systems concurrent package of the Java programming language. programming undergraduate course. The library, The UPPAAL toolbox was chosen because it is popular, though, can be of help to general practitioners of it is continually improved and it is efficient (in space concurrent programming which nowadays are and time) in the handling of large model state graphs. challenged to exploiting the potentials of modern multi- Moreover, the toolbox offers a friendly graphical user core architectures. The paper describes the library and interface which facilitates reasoning upon model demonstrates its usage to modelling and exhaustive behaviour. verification of mutual exclusion and common This paper describes (part of) the developed library and concurrent structures and synchronizers. UPPAAL was demonstrates its usefulness by studying mutual chosen because it is a popular and continually improved exclusion algorithms and by showing some common toolbox based on timed automata and model checking concurrent synchronizers which are available in the and it is provided of a user-friendly graphical interface Java programming language. Concurrent models are which proves very important for debugging and then applied to a sample problem. The approach makes property assessment of concurrent models. Java was it simple to transform a concurrent solution model into a considered as target implementation language because corresponding Java implementation. The solutions, of its diffusion among application developers. though, can be ported to other languages as well. Finally, conclusions are drawn with an indication of INTRODUCTION further work. Current technological trend on multi-core machines MUTUAL EXCLUSION ALGORITHMS challenges developers to exploit concurrency in general purpose applications which can have a performance Concurrent processes accessing shared data require two gain from the computational parallelism offered by kinds of mechanisms (see e.g. (Stallings, modern personal computers. However, as students and 2005)(Silberschatz et al., 2010)): mutual exclusion developers know, concurrent programs are hard to which guarantees only one process at a time can enter design and difficult to debug. Common experimented its critical section, and synchronization, i.e. the problems include race conditions, deadlocks and possibility for a process in a critical section to suspend starvation (Stallings, 2005)(Silberschatz et al, 2010). its execution when the data values do not permit the Motivated by the desire to help students of a systems process to complete its operations. In this section the programming undergraduate course to have a more focus is on mutual exclusion based on busy-waiting by critical approach to concurrent programming, authors “pure software” solutions (other solutions can be based have designed and prototyped a reausable library of on the hardware support, e.g. test and set instructions or UPPAAL (Bengtsson and Yi, 2003)(Behrmann et al., the interrupt system). Such mutual exclusion algorithms 2004) template processes. The library enables a are normally discussed in a systems programming concurrent solution to be formally modelled as a course for introducing students to race conditions and Proceedings 25th European Conference on Modelling and Simulation ©ECMS Tadeusz Burczynski, Joanna Kolodziej Aleksander Byrski, Marco Carvalho (Editors) ISBN: 978-0-9564944-2-9 / ISBN: 978-0-9564944-3-6 (CD) interference problems among concurrent processes. In which every single instruction is modeled and timed the following, algorithms for N>2 processes are (e.g. each instruction consumes 1 time unit) is instead considered. Examples include the Bakery algorithm and advocated in (Hamber and Vaandrager, 2008). Fig. 2 the Eisenberg and McGuire algorithm ((Silberschatz et shows the proposed UPPAAL model for the generic al., 2010) page 302). Fig. 1 shows a pseudo code of the Process of Eisenberg and McGuire algorithm. Duration generic process according to the Eisenberg and of the critical section is supposed to be in the [2,6] time McGuire algorithm. interval. The template Process receives its unique id i as parameter. //shared variables used by the algorithm The use of committed locations mirrors the assumption enum pState {idle, want_in, in_cs} that instructions executed during the entry/exit part are pState flag[n]; //all elements initialized to idle supposed to be time negligible with respect to the int[0,n-1] turn; //no particular initialization critical section duration. Of particular concern is the //ith process realization of the busy-waiting during the enter part. int[0,n] j; do{ //enter part The process enters the Busy_Wait location from which while(true){ it exits at each change of shared variables. To this flag[i]=want_in; //I want to enter my critical section purpose a broadcast channel check is used. The process j=turn; //give priority to non idle processes, if there which enters or exits from its critical section forces all //are any, from turn to i clockwise processes in busy waiting to reconsider their situation. while(j!=i){ //busy waiting The following global UPPAAL declarations were used: if( flag[j]!=idle ) j=turn; else j=(j+1)%n; const int N=5; //number of processes } typedef int[0,N-1] pid; //process identifier subtype flag[i]=in_cs; //I "enter" my cs typedef int[0,2] pState; j=0; broadcast chan check; //it there exists in the entire ring a const int idle=0; //process with in_cs status ? const int want_in=1; while( (j<n) && (j==i ||flag[j]!=in_cs) ) j++; const int in_cs=2; if( (j>=n) && (turn==i || flag[turn]==idle) ) pid turn; /*no*/ break; pState flag[N]={idle,idle,idle,idle,idle}; //yes, waits clock x[N]; //process clocks } clock y[N]; //decoration clocks turn=i; //its my turn //critical_section The system declaration section consists only of: //exit part //starting from me (turn==i) //search the first not idle process system Process; j=(turn+1)%n; while( flag[j]==idle ) j=(j+1)%n; which ensures, due to the pid parameter of the Process turn=j; //give it its turn template, that N instances of the template are created to flag[i]=idle; populate the model. These instances have names //non_critical_section Process(0), ..., Process(N-1). }while(true) Table 1 shows the queries used to verify the mutual Figure 1. Eisenberg and McGuire mutual exclusion exclusion algorithm. Query 1 verifies the absence of algorithm for N processes deadlocks. Queries 2 and 3 check, with different syntax, the fundamental mutual exclusion property: no more Now the goal is to model in UPPAAL the algorithm in than one process can find itself into the critical section. Fig. 1 and proving it fulfils all the three basic Queries 4 and 5 respectively determine minimal and properties: (a) only one process at a time can enter its maximal delay when waiting for entering the critical critical section, (b) a process waiting for entering its section. Query 4 is not satisfied if a value greater than 0 critical section would not delay infinitely (absence of is used. Query 5 is not satisfied if a value lesser than 24 starvation), (c) no assumption is made about the relative is used. Decoration clocks y[i] are reset when a process speed of the processes. The modelling strategy starts the enter part of the protocol and measure the purposely allows to concentrate on the essential of the elapsed time of waiting. Obviously, queries 4 and 5 algorithm while ensuring a certain efficiency of the have the same conclusion for any process i. It is model checking. The model abstracts away the duration guaranteed that the waiting time is bounded and of the single instructions carried out during the entry amounts as upper bound to (N-1) critical sections. section and the exit section of the protocol, thus making Queries 6 and 7 check progress properties. In particular, it possible to determine the delay time of a process query 6 guarantees that a process which starts the enter waiting to enter its critical section, in terms of the part of the protocol, eventually enters the critical section number and duration of critical sections executed by (this is of course also confirmed by bounded waiting other processes. The “high resolution” approach, in time). Similarly, query 7 says that a process which starts the enter part of the protocol always comes back to be self-explanatory. This algorithm too ensures a home (Non_CS location). bounded waiting time of at most (N-1) critical sections. Table 1 CATALOG OF REUSABLE CONCURRENT Query Result MODELS 1 A[] !deadlock satisfied E<> Process(0).In_CS+Process(1).In_CS+ Mutual exclusion algorithms like those shown in the not 2 Process(2).In_CS+Process(3).In_CS+ previous section can be the basis for implementing high satisfied Process(4).In_CS>1 level concurrent structures.
Load more

Recommended publications
  • An Introduction to Linux IPC
    An introduction to Linux IPC Michael Kerrisk © 2013 linux.conf.au 2013 http://man7.org/ Canberra, Australia [email protected] 2013-01-30 http://lwn.net/ [email protected] man7 .org 1 Goal ● Limited time! ● Get a flavor of main IPC methods man7 .org 2 Me ● Programming on UNIX & Linux since 1987 ● Linux man-pages maintainer ● http://www.kernel.org/doc/man-pages/ ● Kernel + glibc API ● Author of: Further info: http://man7.org/tlpi/ man7 .org 3 You ● Can read a bit of C ● Have a passing familiarity with common syscalls ● fork(), open(), read(), write() man7 .org 4 There’s a lot of IPC ● Pipes ● Shared memory mappings ● FIFOs ● File vs Anonymous ● Cross-memory attach ● Pseudoterminals ● proc_vm_readv() / proc_vm_writev() ● Sockets ● Signals ● Stream vs Datagram (vs Seq. packet) ● Standard, Realtime ● UNIX vs Internet domain ● Eventfd ● POSIX message queues ● Futexes ● POSIX shared memory ● Record locks ● ● POSIX semaphores File locks ● ● Named, Unnamed Mutexes ● System V message queues ● Condition variables ● System V shared memory ● Barriers ● ● System V semaphores Read-write locks man7 .org 5 It helps to classify ● Pipes ● Shared memory mappings ● FIFOs ● File vs Anonymous ● Cross-memory attach ● Pseudoterminals ● proc_vm_readv() / proc_vm_writev() ● Sockets ● Signals ● Stream vs Datagram (vs Seq. packet) ● Standard, Realtime ● UNIX vs Internet domain ● Eventfd ● POSIX message queues ● Futexes ● POSIX shared memory ● Record locks ● ● POSIX semaphores File locks ● ● Named, Unnamed Mutexes ● System V message queues ● Condition variables ● System V shared memory ● Barriers ● ● System V semaphores Read-write locks man7 .org 6 It helps to classify ● Pipes ● Shared memory mappings ● FIFOs ● File vs Anonymous ● Cross-memoryn attach ● Pseudoterminals tio a ● proc_vm_readv() / proc_vm_writev() ● Sockets ic n ● Signals ● Stream vs Datagram (vs uSeq.
    [Show full text]
  • Multithreading Design Patterns and Thread-Safe Data Structures
    Lecture 12: Multithreading Design Patterns and Thread-Safe Data Structures Principles of Computer Systems Autumn 2019 Stanford University Computer Science Department Lecturer: Chris Gregg Philip Levis PDF of this presentation 1 Review from Last Week We now have three distinct ways to coordinate between threads: mutex: mutual exclusion (lock), used to enforce critical sections and atomicity condition_variable: way for threads to coordinate and signal when a variable has changed (integrates a lock for the variable) semaphore: a generalization of a lock, where there can be n threads operating in parallel (a lock is a semaphore with n=1) 2 Mutual Exclusion (mutex) A mutex is a simple lock that is shared between threads, used to protect critical regions of code or shared data structures. mutex m; mutex.lock() mutex.unlock() A mutex is often called a lock: the terms are mostly interchangeable When a thread attempts to lock a mutex: Currently unlocked: the thread takes the lock, and continues executing Currently locked: the thread blocks until the lock is released by the current lock- holder, at which point it attempts to take the lock again (and could compete with other waiting threads). Only the current lock-holder is allowed to unlock a mutex Deadlock can occur when threads form a circular wait on mutexes (e.g. dining philosophers) Places we've seen an operating system use mutexes for us: All file system operation (what if two programs try to write at the same time? create the same file?) Process table (what if two programs call fork() at the same time?) 3 lock_guard<mutex> The lock_guard<mutex> is very simple: it obtains the lock in its constructor, and releases the lock in its destructor.
    [Show full text]
  • Semaphores Semaphores (Basic) Semaphore General Vs. Binary
    Concurrent Programming (RIO) 20.1.2012 Lesson 6 Synchronization with HW support • Disable interrupts – Good for short time wait, not good for long time wait – Not good for multiprocessors Semaphores • Interrupts are disabled only in the processor used • Test-and-set instruction (etc) Ch 6 [BenA 06] – Good for short time wait, not good for long time wait – Nor so good in single processor system • May reserve CPU, which is needed by the process holding the lock – Waiting is usually “busy wait” in a loop Semaphores • Good for mutex, not so good for general synchronization – E.g., “wait until process P34 has reached point X” Producer-Consumer Problem – No support for long time wait (in suspended state) Semaphores in C--, Java, • Barrier wait in HW in some multicore architectures – Stop execution until all cores reached barrier_waitinstruction Linux, Minix – No busy wait, because execution pipeline just stops – Not to be confused with barrier_wait thread operation 20.1.2012 Copyright Teemu Kerola 2012 1 20.1.2012 Copyright Teemu Kerola 2012 2 Semaphores (Basic) Semaphore semaphore S public create initial value integer value semafori public P(S) S.value private S.V Edsger W. Dijkstra V(S) http://en.wikipedia.org/wiki/THE_operating_system public private S.list S.L • Dijkstra, 1965, THE operating system queue of waiting processes • Protected variable, abstract data type (object) • P(S) WAIT(S), Down(S) – Allows for concurrency solutions if used properly – If value > 0, deduct 1 and proceed • Atomic operations – o/w, wait suspended in list (queue?) until released – Create (SemaName, InitValue) – P, down, wait, take, pend, • V(S) SIGNAL(S), Up(S) passeren, proberen, try, prolaad, try to decrease – If someone in queue, release one (first?) of them – V, up, signal, release, post, – o/w, increase value by one vrijgeven, verlagen, verhoog, increase 20.1.2012 Copyright Teemu Kerola 2012 3 20.1.2012 Copyright Teemu Kerola 2012 4 General vs.
    [Show full text]
  • CSC 553 Operating Systems Multiple Processes
    CSC 553 Operating Systems Lecture 4 - Concurrency: Mutual Exclusion and Synchronization Multiple Processes • Operating System design is concerned with the management of processes and threads: • Multiprogramming • Multiprocessing • Distributed Processing Concurrency Arises in Three Different Contexts: • Multiple Applications – invented to allow processing time to be shared among active applications • Structured Applications – extension of modular design and structured programming • Operating System Structure – OS themselves implemented as a set of processes or threads Key Terms Related to Concurrency Principles of Concurrency • Interleaving and overlapping • can be viewed as examples of concurrent processing • both present the same problems • Uniprocessor – the relative speed of execution of processes cannot be predicted • depends on activities of other processes • the way the OS handles interrupts • scheduling policies of the OS Difficulties of Concurrency • Sharing of global resources • Difficult for the OS to manage the allocation of resources optimally • Difficult to locate programming errors as results are not deterministic and reproducible Race Condition • Occurs when multiple processes or threads read and write data items • The final result depends on the order of execution – the “loser” of the race is the process that updates last and will determine the final value of the variable Operating System Concerns • Design and management issues raised by the existence of concurrency: • The OS must: – be able to keep track of various processes
    [Show full text]
  • Lesson-9: P and V SEMAPHORES
    Inter-Process Communication and Synchronization of Processes, Threads and Tasks: Lesson-9: P and V SEMAPHORES Chapter-9 L9: "Embedded Systems - Architecture, Programming and Design", 2015 Raj Kamal, Publs.: McGraw-Hill Education 1 1. P and V SEMAPHORES Chapter-9 L9: "Embedded Systems - Architecture, Programming and Design", 2015 Raj Kamal, Publs.: McGraw-Hill Education 2 P and V semaphores • An efficient synchronisation mechanism • POSIX 1003.1.b, an IEEE standard. • POSIX─ for portable OS interfaces in Unix. • P and V semaphore ─ represents an integer in place of binary or unsigned integers Chapter-9 L9: "Embedded Systems - Architecture, Programming and Design", 2015 Raj Kamal, Publs.: McGraw-Hill Education 3 P and V semaphore Variables • The semaphore, apart from initialization, is accessed only through two standard atomic operations─ P and V • P (for wait operation)─ derived from a Dutch word ‘Proberen’, which means 'to test'. • V (for signal passing operation)─ derived from the word 'Verhogen' which means 'to increment'. Chapter-9 L9: "Embedded Systems - Architecture, Programming and Design", 2015 Raj Kamal, Publs.: McGraw-Hill Education 4 P and V Functions for Semaphore P semaphore function signals that the task requires a resource and if not available waits for it. V semaphore function signals which the task passes to the OS that the resource is now free for the other users. Chapter-9 L9: "Embedded Systems - Architecture, Programming and Design", 2015 Raj Kamal, Publs.: McGraw-Hill Education 5 P Function─ P (&Sem1) 1. /* Decrease the semaphore variable*/ sem_1 = sem_1 1; 2. /* If sem_1 is less than 0, send a message to OS by calling a function waitCallToOS.
    [Show full text]
  • Shared Memory Programming: Threads, Semaphores, and Monitors
    Shared Memory Programming: Threads, Semaphores, and Monitors CPS343 Parallel and High Performance Computing Spring 2020 CPS343 (Parallel and HPC) Shared Memory Programming: Threads, Semaphores, and MonitorsSpring 2020 1 / 47 Outline 1 Processes The Notion and Importance of Processes Process Creation and Termination Inter-process Communication and Coordination 2 Threads Need for Light Weight Processes Differences between Threads and Processes Implementing Threads 3 Mutual Exclusion and Semaphores Critical Sections Monitors CPS343 (Parallel and HPC) Shared Memory Programming: Threads, Semaphores, and MonitorsSpring 2020 2 / 47 Outline 1 Processes The Notion and Importance of Processes Process Creation and Termination Inter-process Communication and Coordination 2 Threads Need for Light Weight Processes Differences between Threads and Processes Implementing Threads 3 Mutual Exclusion and Semaphores Critical Sections Monitors CPS343 (Parallel and HPC) Shared Memory Programming: Threads, Semaphores, and MonitorsSpring 2020 3 / 47 What is a process? A process is a program in execution. At any given time, the status of a process includes: The code that it is executing (e.g. its text). Its data: The values of its static variables. The contents of its stack { which contains its local variables and procedure call/return history. The contents of the various CPU registers { particularly the program counter, which indicates what instruction the process is to execute next. Its state { is it currently able to continue execution, or must further execution wait until some event occurs (e.g. the completion of an IO operation it has requested)? CPS343 (Parallel and HPC) Shared Memory Programming: Threads, Semaphores, and MonitorsSpring 2020 4 / 47 What is a process? The chief task of an operating system is to manage a set of processes.
    [Show full text]
  • Software Transactional Memory with Interactions 3
    Software Transactional Memory with Interactions⋆ Extended Version Marino Miculan1 and Marco Peressotti2 1 University of Udine [email protected] 2 University of Southern Denmark [email protected] Abstract Software Transactional memory (STM) is an emerging ab- straction for concurrent programming alternative to lock-based synchron- izations. Most STM models admit only isolated transactions, which are not adequate in multithreaded programming where transactions need to interact via shared data before committing. To overcome this limitation, in this paper we present Open Transactional Memory (OTM), a pro- gramming abstraction supporting safe, data-driven interactions between composable memory transactions. This is achieved by relaxing isolation between transactions, still ensuring atomicity. This model allows for loosely-coupled interactions since transaction merging is driven only by accesses to shared data, with no need to specify participants beforehand. 1 Introduction Modern multicore architectures have emphasized the importance of abstractions supporting correct and scalable multi-threaded programming. In this model, threads can collaborate by interacting on shared data structures, such as tables, message queues, buffers, etc., whose access must be regulated to avoid inconsist- encies. Traditional lock-based mechanisms (like semaphores and monitors) are notoriously difficult and error-prone, as they easily lead to deadlocks, race con- ditions and priority inversions; moreover, they are not composable and hinder parallelism, thus reducing efficiency and scalability. Transactional memory (TM) has emerged as a promising abstraction to replace locks [5, 20]. The basic idea is to mark blocks of code as atomic; then, execution of each block will appear either as if it was executed sequentially and instantaneously at some unique point in time, or, if aborted, as if it did not execute at all.
    [Show full text]
  • Semaphores Cosc 450: Programming Paradigms 06
    CoSc 450: Programming Paradigms 06 Semaphores CoSc 450: Programming Paradigms 06 Semaphore Purpose: To prevent inefficient spin lock of the await statement. Idea: Instead of spinning, the process calls a method that puts it in a special queue of PCBs, the “blocked on semaphore” queue. 71447_CH08_Chapter08.qxd 1/28/09 12:27 AM Page 422 422 Chapter 8 Process Management The PCB contains additional information to help the operating system schedule the CPU. An example is a unique process identification number assigned by the system, labeled Process ID in Figure 8.18, that serves to reference the process. Sup- pose a user wants to terminate a process before it completes execution normally, and he knows the ID number is 782. He could issue a KILL(782) command that would cause the operating system to search through the queue of PCBs, find the PCB with ID 782, remove it from the queue, and deallocate it. Another example of information stored in the PCB is a record of the total amount of CPU time used so far by the suspended process. If the CPU becomes available and the operating system must decide which of several suspended processes gets the CPU, it can use the recorded time to make a fairFigure decision. 8.19 As a job progresses through the system toward completion, it passes through several states, as Figure 8.19 shows. The figure is in the form of a state transition diagram and is another example of a finite state machine. Each transition is labeled with the event that causes the change of state.
    [Show full text]
  • Low Contention Semaphores and Ready Lists
    View metadata, citation and similar papers at core.ac.uk brought to you by CORE provided by Purdue E-Pubs Purdue University Purdue e-Pubs Department of Computer Science Technical Reports Department of Computer Science 1980 Low Contention Semaphores and Ready Lists Peter J. Denning T. Don Dennis Jeffrey Brumfield Report Number: 80-332 Denning, Peter J.; Dennis, T. Don; and Brumfield, Jeffrey, "Low Contention Semaphores and Ready Lists" (1980). Department of Computer Science Technical Reports. Paper 261. https://docs.lib.purdue.edu/cstech/261 This document has been made available through Purdue e-Pubs, a service of the Purdue University Libraries. Please contact [email protected] for additional information. LOW CONTENTION SEMAPHORES AND READY LISTS Peter J. Denning T. Don Dennis Jeffrey Brumfield Computer Sciences Department Purdue University W. Lafayette, IN 47907 CSD-TR-332 February 1980 Revised June 1980 Abstract. A method for reducing sema­ phore and ready list contention in mul­ tiprocessor operating systems is described. Its correctness is esta­ blished. Its performance is compared with conventional implementations. A method of implementing the ready list with a ring network is proposed and evaluated. This work was supported in part by NSF Grant MCS78­ 01729 at Purdue University. June 18, 1980 - 2 - THE PROBLEM Modern operating systems implement semaphores for synchron- izing multiple concurrent processes. Unless the primitive opera- tions for starting, stopping, and scheduling processes and for manipulating semaphores are well supported by the hardware, con- text switching and interprocess signaling can be major overheads [1]. To avoid these overheads, many operating systems use fast, but unreliable ad hoc methods for synchronizing processes.
    [Show full text]
  • Semaphores (Dijkstra 1965)
    Semaphores (Dijkstra 1965) n Semaphores have a non-negative integer value, and support two operations: n semaphore->P(): an atomic operation that waits for semaphore Semaphores & Monitors to become positive, then decrements it by 1 n semaphore->V(): an atomic operation that increments semaphore by 1, waking up a waiting P, if any. n Semaphores are like integers except: Arvind Krishnamurthy (1) non-negative values; Spring 2004 (2) only allow P&V --- can’t read/write value except to set it initially; (3) operations must be atomic: -- two P’s that occur together can’t decrement the value below zero. -- thread going to sleep in P won’t miss wakeup from V, even if they both happen at about the same time. Implementing semaphores Using interrupts P means “test” (proberen in Dutch) V means “increment” (verhogen in Dutch) class Semaphore { int value = 0; } n Binary semaphores: Semaphore::P() { n Like a lock; can only have value 0 or 1 (unlike the previous Disable interrupts; Semaphore::V() { “counting semaphore” which can be any non-negative integers) while (value == 0) { Disable interrupts; Enable interrupts; value++; Disable interrupts; Enable interrupts; } } n How to implement semaphores? Standard tricks: value = value - 1; Enable interrupts; n Can be built using interrupts disable/enable } n Or using test-and-set n Use a queue to prevent unnecessary busy-waiting n Question: Can we build semaphores using just locks? Using test&set How to use semaphores n Binary semaphores can be used for mutual exclusion: class Semaphore { int value = 0; initial value of 1; P() is called before the critical section; and V() is called after the int guard = 0; } critical section.
    [Show full text]
  • Synchronization
    Synchronization CS 4410 Operating Systems [R. Agarwal, L. Alvisi, A. Bracy, M. George, E. Sirer, R. Van Renesse] • Foundations • Semaphores • Monitors & Condition Variables 2 Semaphores • Definition • Binary Semaphores • Counting Semaphores • Classic Sync. Problems (w/Semaphores) - Producer-Consumer (w/ a bounded buffer) - Readers/Writers Problem • Classic Mistakes with Semaphores 3 What is a Semaphore? [Dijkstra 1962] Dijkstra introduced in the THE Operating System Stateful: • a value (incremented/decremented atomically) • a queue • a lock Interface: • Init(starting value) • P (procure): decrement, “consume” or “start using” • V (vacate): increment, “produce” or “stop using” No operation to read the value! Dutch 4410: P = Probeer (‘Try'), V = Verhoog ('Increment', 'Increase by one') 4 Semantics of P and V P(): P() { • wait until value >0 while(n <= 0) ; • when so, decrement n -= 1; value by 1 } V(): V() { • increment value by 1 n += 1; } These are the semantics, but how can we make this efficient? (doesn’t this look like a spinlock?!?) 5 Implementation of P and V P(): P() { • block (sit on Q) til n > 0 while(n <= 0) • when so, decrement value by 1 ; n -= 1; V(): } • increment value by 1 • resume a thread waiting on Q V() { (if any) n += 1; } Okay this looks efficient, but how is this safe? 6 Implementation of P and V P() { P(): acquire(&guard); • block (sit on Q) til n > 0 while(n <= 0) { waiting.enq(self); • when so, decrement value by 1 release(&guard); sleep(); acquire(&guard); V(): } • increment value by 1 n -= 1; release(&guard);
    [Show full text]
  • Parallel Programming Models III (Pdf)
    Shared Memory Programming Models III Stefan Lang Interdisciplinary Center for Scientific Computing (IWR) University of Heidelberg INF 368, Room 532 D-69120 Heidelberg phone: 06221/54-8264 email: [email protected] WS 15/16 Stefan Lang (IWR) Simulation on High-Performance Computers WS15/16 1/36 Shared Memory Programming Models III Communication by shared memory Semaphore rep. Reader-Writer problem PThreads Active Objects Stefan Lang (IWR) Simulation on High-Performance Computers WS15/16 2/36 Semaphore A semaphore is an abstraction of a synchronisation variable, that enables the elegant solution of multiple of synchronisation problems Up-to-now all programs have used active waiting. This is very inefficient under quasi-parallel processing of multiple processes on one processor (multitasking). The semaphore enables to switch processes into an idle state. We understand a semaphore as abstract data type: Data structure with operations, that fulfill particular properties: A semaphore S has a non-negative integer value value(S), that is assigned during creation of the Semaphore with the value init. For a semaphore S two operations P(S) and V(S) are defined with: P(S) decrements the value of S by one if value(S) > 0, otherwise the process blocks as long as another process executes a Voperation on S. V(S) frees another process from a Poperation if one is waiting (are several waiting one is selected), otherwise the value of S is incremented by one. Voperations never block! Stefan Lang (IWR) Simulation on High-Performance Computers WS15/16 3/36 Readers/Writers Problem ReadersLeser WritersSchreiber DatabaseDatenbank Two classes of processes, readers and writers, access a common database.
    [Show full text]