Synchronization..or: the trickiest bit of this course.

Slides:



Advertisements
Similar presentations
Ken Birman 1. Refresher: Dekers Algorithm Assumes two threads, numbered 0 and 1 CSEnter(int i) { int J = i^1; inside[i] = true; turn = J; while(inside[J]
Advertisements

1 Chapter 5 Concurrency: Mutual Exclusion and Synchronization Principals of Concurrency Mutual Exclusion: Hardware Support Semaphores Readers/Writers Problem.
Ch 7 B.
Ch. 7 Process Synchronization (1/2) I Background F Producer - Consumer process :  Compiler, Assembler, Loader, · · · · · · F Bounded buffer.
Silberschatz, Galvin and Gagne ©2007 Operating System Concepts with Java – 7 th Edition, Nov 15, 2006 Chapter 6 (a): Synchronization.
Chapter 6: Process Synchronization
Silberschatz, Galvin and Gagne ©2013 Operating System Concepts – 9 th Edition Chapter 5: Process Synchronization.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 6: Process Synchronization.
Process Synchronization. Module 6: Process Synchronization Background The Critical-Section Problem Peterson’s Solution Synchronization Hardware Semaphores.
CH7 discussion-review Mahmoud Alhabbash. Q1 What is a Race Condition? How could we prevent that? – Race condition is the situation where several processes.
1 Semaphores and Monitors CIS450 Winter 2003 Professor Jinhua Guo.
Concurrency in Shared Memory Systems Synchronization and Mutual Exclusion.
Race Conditions. Isolated & Non-Isolated Processes Isolated: Do not share state with other processes –The output of process is unaffected by run of other.
Classic Synchronization Problems
Race Conditions Critical Sections Deker’s Algorithm.
Critical Sections with lots of Threads. Announcements CS 414 Homework due today.
Silberschatz, Galvin and Gagne  Operating System Concepts Chapter 7: Process Synchronization Background The Critical-Section Problem Synchronization.
Avishai Wool lecture Introduction to Systems Programming Lecture 4 Inter-Process / Inter-Thread Communication.
Race Conditions Critical Sections Dekker’s Algorithm.
Chapter 6: Process Synchronization. Outline Background Critical-Section Problem Peterson’s Solution Synchronization Hardware Semaphores Classic Problems.
OS Spring’04 Concurrency Operating Systems Spring 2004.
Semaphores. Announcements No CS 415 Section this Friday Tom Roeder will hold office hours Homework 2 is due today.
Language Support for Concurrency. 2 Common programming errors Process i P(S) CS P(S) Process j V(S) CS V(S) Process k P(S) CS.
Synchronization Principles. Race Conditions Race Conditions: An Example spooler directory out in 4 7 somefile.txt list.c scores.txt Process.
Classical Synchronization Problems. Paradigms for Threads to Share Data We’ve looked at critical sections –Really, a form of locking –When one thread.
Synchronization Prof. Sirer CS 4410 Cornell University.
Language Support for Concurrency. 2 Announcements CS 415 project 1 due today! CS 414 homework 2 available due next week Midterm will be first week in.
IPC and Classical Synchronization Problems
02/17/2010CSCI 315 Operating Systems Design1 Process Synchronization Notice: The slides for this lecture have been largely based on those accompanying.
Critical Sections with lots of Threads. Announcements CS 4411 project due yesterday, Wednesday, Sept 17 th CS 4410 Homework 2 available, due Tuesday,
Synchronization..or: the trickiest bit of this course.
Race Conditions CS550 Operating Systems. Review So far, we have discussed Processes and Threads and talked about multithreading and MPI processes by example.
Instructor: Umar KalimNUST Institute of Information Technology Operating Systems Process Synchronization.
Classical Synchronization Problems. Announcements CS 414 grades and solutions available in CMS soon. –Average 74.3 –High of 95. –Score out of 100 pts.
Classical Synchronization Problems. Announcements CS 4410 #1 grades and solutions available in CMS soon. –Average 54, stddev 9.7 –High of 70. –Score out.
1 Race Conditions/Mutual Exclusion Segment of code of a process where a shared resource is accessed (changing global variables, writing files etc) is called.
Monitor Solutions to Classical Problems. 2 Announcements CS 415 Projects graded. –Mean 80.7, High 90 out of 90 CS 414 Homework due Monday.
Operating Systems CSE 411 CPU Management Oct Lecture 13 Instructor: Bhuvan Urgaonkar.
Silberschatz, Galvin and Gagne ©2007 Operating System Concepts with Java – 7 th Edition, Nov 15, 2006 Chapter 6(b): Synchronization.
Nachos Phase 1 Code -Hints and Comments
Critical Problem Revisit. Critical Sections Mutual exclusion Only one process can be in the critical section at a time Without mutual exclusion, results.
CSC321 Concurrent Programming: §5 Monitors 1 Section 5 Monitors.
Silberschatz, Galvin and Gagne  Operating System Concepts Chapter 7: Process Synchronization Background The Critical-Section Problem Synchronization.
1 Concurrency: Mutual Exclusion and Synchronization Chapter 5.
Lecture 6: Synchronization (II) – Semaphores and Monitors
CSE 451: Operating Systems Winter 2012 Semaphores and Monitors Mark Zbikowski Gary Kimura.
CSE 451: Operating Systems Winter 2014 Module 8 Semaphores, Condition Variables, and Monitors Mark Zbikowski Allen Center 476 ©
CS399 New Beginnings Jonathan Walpole. 2 Concurrent Programming & Synchronization Primitives.
1 Condition Variables CS 241 Prof. Brighten Godfrey March 16, 2012 University of Illinois.
13/03/07Week 21 CENG334 Introduction to Operating Systems Erol Sahin Dept of Computer Eng. Middle East Technical University Ankara, TURKEY URL:
Operating Systems Lecture Notes Synchronization Matthew Dailey Some material © Silberschatz, Galvin, and Gagne, 2002.
Concurrency in Shared Memory Systems Synchronization and Mutual Exclusion.
Synchronization CSCI 3753 Operating Systems Spring 2005 Prof. Rick Han.
Process Synchronization CS 360. Slide 2 CS 360, WSU Vancouver Process Synchronization Background The Critical-Section Problem Synchronization Hardware.
Operating System Concepts and Techniques Lecture 13 Interprocess communication-2 M. Naghibzadeh Reference M. Naghibzadeh, Operating System Concepts and.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition Chapter 6: Process Synchronization.
Critical Sections with lots of Threads. Refresher: Deker’s Algorithm Assumes two threads, numbered 0 and 1 CSEnter(int i) { int J = i^1; inside[i] = true;
Chapter 6 Synchronization Dr. Yingwu Zhu. The Problem with Concurrent Execution Concurrent processes (& threads) often access shared data and resources.
Background on the need for Synchronization
© 2013 Gribble, Lazowska, Levy, Zahorjan
Prof. Sirer and Van Renesse CS 4410 Cornell University
Race Conditions Critical Sections Dekker’s Algorithm
CSE 451: Operating Systems Autumn 2010 Module 8 Semaphores, Condition Variables, and Monitors Ed Lazowska Allen Center 570.
© 2013 Gribble, Lazowska, Levy, Zahorjan
Critical section problem
CSE 451: Operating Systems Autumn Lecture 8 Semaphores and Monitors
CSE 451: Operating Systems Autumn Module 8 Semaphores and Monitors
CSE 451: Operating Systems Winter Module 7 Semaphores and Monitors
CSE 153 Design of Operating Systems Winter 19
CS333 Intro to Operating Systems
Presentation transcript:

Synchronization..or: the trickiest bit of this course.

Announcements Homework 1 grades & solutions are now in CMS Hardcopies can be had in the Homework Handback Room (Upson 360, 10-12am, 2-4pm) Regrading request, policies, etc..

Oh dear lord… (out of 75!!!)

Threads share global memory When a process contains multiple threads, they have –Private registers and stack memory (the context switching mechanism needs to save and restore registers when switching from thread to thread) –Shared access to the remainder of the process “state”

some slides taken from Mendel Rosenblum's lecture at Stanford Two threads, one counter Popular web server Uses multiple threads to speed things up. Simple shared state error: –each thread increments a shared counter to track number of hits What happens when two threads execute concurrently? … hits = hits + 1; …

Shared counters Possible result: lost update! One other possible result: everything works.  Difficult to debug Called a “race condition” hits = read hits (0) hits = read hits (0) T1 T2 hits = 1 hits = 0 time

Race conditions Def: a timing dependent error involving shared state –Whether it happens depends on how threads scheduled –In effect, once thread A starts doing something, it needs to “race” to finish it because if thread B looks at the shared memory region before A is done, A’s change will be lost. Hard to detect: –All possible schedules have to be safe Number of possible schedule permutations is huge Some bad schedules? Some that will work sometimes? –they are intermittent Timing dependent = small changes can hide bug

If i is shared, and initialized to 0 –Who wins? –Is it guaranteed that someone wins? –What if both threads run on identical speed CPU executing in parallel Scheduler assumptions Process b: while(i > -10) i = i - 1; print “B won!”; Process a: while(i < 10) i = i +1; print “A won!”;

Scheduler Assumptions Normally we assume that –A scheduler always gives every executable thread opportunities to run In effect, each thread makes finite progress –But schedulers aren’t always fair Some threads may get more chances than others –To reason about worst case behavior we sometimes think of the scheduler as an adversary trying to “mess up” the algorithm

Critical Section Goals Threads do some stuff but eventually might try to access shared data CSEnter(); Critical section CSExit(); T1 T2 time CSEnter(); Critical section CSExit(); T1 T2

Critical Section Goals Perhaps they loop (perhaps not!) T1 T2 CSEnter(); Critical section CSExit(); T1 T2 CSEnter(); Critical section CSExit();

Critical Section Goals We would like –Safety: No more than one thread can be in a critical section at any time. –Liveness: A thread that is seeking to enter the critical section will eventually succeed –Fairness: If two threads are both trying to enter a critical section, they have equal chances of success … in practice, fairness is rarely guaranteed

Solving the problem CSEnter() { while(inside) continue; inside = true; } A first idea: –Have a boolean flag, inside. Initially false. CSExit() { inside = false; } Now ask: –Is this Safe? Live? Fair? Code is unsafe: thread 0 could finish the while test when inside is false, but then 1 might call CSEnter() before 0 can set inside to true!

Solving the problem: Take 2 CSEnter(int i) { inside[i] = true; while(inside[J]) continue; } A different idea (assumes just two threads): –Have a boolean flag, inside[i]. Initially false. CSExit(int i) { Inside[i] = false; } Now ask: –Is this Safe? Live? Fair? Code isn’t live: with bad luck, both threads could be looping, with 0 looking at 1, and 1 looking at 0

Solving the problem: Take 3 CSEnter(int i) { while(turn != i) continue; } How about introducing a turn variable? CSExit(int i) { turn = J; } Now ask: –Is this Safe? Live? Fair? Code isn’t live: thread 1 can’t enter unless thread 0 did first, and vice-versa. But perhaps one thread needs to enter many times and the other fewer times, or not at all

Dekker’s Algorithm (1965) CSEnter(int i) { inside[i] = true; while(inside[J]) { if (turn == J) { inside[i] = false; while(turn == J) continue; inside[i] = true; } }} CSExit(int i) { turn = J; inside[i] = false; }

Napkin analysis of Dekker’s algorithm: Safety: No process will enter its CS without setting its inside flag. Every process checks the other process inside flag after setting its own. If both are set, the turn variable is used to allow only one process to proceed. Liveness: The turn variable is only considered when both processes are using, or trying to use, the resource Fairness: The turn variable ensures alternate access to the resource when both are competing for access

Peterson’s Algorithm (1981) CSEnter(int i) { inside[i] = true; turn = J; while(inside[J] && turn == J) continue; } CSExit(int i) { inside[i] = false; } Simple is good!!

Napkin analysis of Peterson’s algorithm: Safety (by contradiction): –Assume that both processes (Alan and Shay) are in their critical section (and thus have their inside flags set). Since only one, say Alan, can have the turn, the other (Shay) must have reached the while() test before Alan set his inside flag. –However, after setting his inside flag, Alan gave away the turn to Shay. Shay has already changed the turn and cannot change it again, contradicting our assumption. Liveness & Fairness => the turn variable.

Can we generalize to many threads? Obvious approach won’t work: Issue: Who’s turn next? CSEnter(int i) { inside[i] = true; for(J = 0; J < N; J++) while(inside[J] && turn == J) continue; } CSExit(int i) { inside[i] = false; }

Bakery “concept” Think of a popular store with a crowded counter, perhaps the pastry shop in Montreal’s fancy market –People take a ticket from a machine –If nobody is waiting, tickets don’t matter –When several people are waiting, ticket order determines order in which they can make purchases

Bakery Algorithm: “Take 1” int ticket[n]; int next_ticket; CSEnter(int i) { ticket[i] = ++next_ticket; for(J = 0; J < N; J++) while(ticket[J] && ticket[J] < ticket[i]) continue; } CSExit(int i) { ticket[i] = 0; } Oops… access to next_ticket is a problem!

Bakery Algorithm: “Take 2” int ticket[n]; CSEnter(int i) { ticket[i] = max(ticket[0], … ticket[N-1])+1; for(J = 0; J < N; J++) while(ticket[J] && ticket[j] < ticket[i]) continue; } CSExit(int i) { ticket[i] = 0; } Oops… two could pick the same value! Just add 1 to the max!

Bakery Algorithm: “Take 3” If i, j pick same ticket value, id’s break tie: (ticket[J] < ticket[i]) || (ticket[J]==ticket[i] && J<i) Notation: (B,J) < (A,i) to simplify the code: (B<A || (B==A && J<i)), e.g.: (ticket[J],J) < (ticket[i],i)

Bakery Algorithm: “Take 4” int ticket[N]; CSEnter(int i) { ticket[i] = max(ticket[0], … ticket[N-1])+1; for(J = 0; J < N; J++) while(ticket[J] && (ticket[J],J) < (ticket[i],i)) continue; } CSExit(int i) { ticket[i] = 0; } Oops… i could look at J when J is still storing its ticket, and J could have a lower id than me.

Bakery Algorithm: Almost final int ticket[N]; boolean choosing[N] = false; CSEnter(int i) { choosing[i] = true; ticket[i] = max(ticket[0], … ticket[N-1])+1; choosing[i] = false; for(J = 0; J < N; J++) { while(choosing[J]) continue; while(ticket[J] && (ticket[J],J) < (ticket[i],i)) continue; } CSExit(int i) { ticket[i] = 0; }

Bakery Algorithm: Issues? What if we don’t know how many threads might be running? –The algorithm depends on having an agreed upon value for N –Somehow would need a way to adjust N when a thread is created or one goes away Also, technically speaking, ticket can overflow! –Solution: Change code so that if ticket is “too big”, set it back to zero and try again.

Bakery Algorithm: Final int ticket[N]; /* Important: Disable thread scheduling when changing N */ boolean choosing[N] = false; CSEnter(int i) { do { ticket[i] = 0; choosing[i] = true; ticket[i] = max(ticket[0], … ticket[N-1])+1; choosing[i] = false; } while(ticket[i] >= MAXIMUM); for(J = 0; J < N; J++) { while(choosing[J]) continue; while(ticket[J] && (ticket[J],J) < (ticket[i],i)) continue; } CSExit(int i) { ticket[i] = 0; }

How do real systems do it? Some real systems actually use algorithms such as the bakery algorithm –A good choice where busy-waiting isn’t going to be super- inefficient –For example, if you have enough CPUs so each thread has a CPU of its own Some systems disable interrupts briefly when calling CSEnter and CSExit Some use hardware “help”: atomic instructions

Critical Sections with Atomic Hardware Primitives Process i While(test_and_set(&lock)); Critical Section lock = false; Share: int lock; Initialize: lock = false; Problem: Does not satisfy liveness (bounded waiting) (see book for correct solution) Assumes that test_and_set is compiled to a special hardware instruction that sets the lock and returns the OLD value (true: locked; false: unlocked)

Presenting critical sections to users CSEnter and CSExit are possibilities But more commonly, operating systems have offered a kind of locking primitive We call these semaphores

Semaphores Non-negative integer with atomic increment and decrement Integer ‘S’ that (besides init) can only be modified by: –P(S) or S.wait(): decrement or block if already 0 –V(S) or S.signal(): increment and wake up process if any These operations are atomic semaphore S; P(S) { while(S ≤ 0) ; S--; } V(S) { S++; } Some systems use the operation wait() instead of P() These systems use the operation signal() instead of V()

Semaphores Non-negative integer with atomic increment and decrement Integer ‘S’ that (besides init) can only be modified by: –P(S) or S.wait(): decrement or block if already 0 –V(S) or S.signal(): increment and wake up process if any Can also be expressed in terms of queues: semaphore S; P(S) { if (S ≤ 0) { stop thread, enqueue on wait list, run something else; } S--; } V(S) { S++; if(wait-list isn’t empty) { dequeue and start one process }}

Summary: Implementing Semaphores Can use –Multithread synchronization algorithms shown earlier –Could have a thread disable interrupts, put itself on a “wait queue”, then context switch to some other thread (an “idle thread” if needed) The O/S designer makes these decisions and the end user shouldn’t need to know

Semaphore Types Counting Semaphores: –Any integer –Used for synchronization Binary Semaphores –Value is limited to 0 or 1 –Used for mutual exclusion (mutex) Shared: semaphore S Init: S = 1; Process i P(S); Critical Section V(S);

Classical Synchronization Problems

Paradigms for Threads to Share Data We’ve looked at critical sections –Really, a form of locking –When one thread will access shared data, first it gets a kind of lock –This prevents other threads from accessing that data until the first one has finished –We saw that semaphores make it easy to implement critical sections

Reminder: Critical Section Classic notation due to Dijkstra: Semaphore mutex = 1; CSEnter() { P(mutex); } CSExit() { V(mutex); } Other notation (more familiar in Java): CSEnter() { mutex.wait(); } CSExit() { mutex.signal(); }

Bounded Buffer This style of shared access doesn’t capture two very common models of sharing that we would also like to support Bounded buffer: –Arises when two or more threads communicate with some threads “producing” data that others “consume”. –Example: preprocessor for a compiler “produces” a preprocessed source file that the parser of the compiler “consumes”

Readers and Writers In this model, threads share data that some threads “read” and other threads “write”. Instead of CSEnter and CSExit we want –StartRead…EndRead; StartWrite…EndWrite Goal: allow multiple concurrent readers but only a single writer at a time, and if a writer is active, readers wait for it to finish

Producer-Consumer Problem Start by imagining an unbounded (infinite) buffer Producer process writes data to buffer –Writes to In and moves rightwards Consumer process reads data from buffer –Reads from Out and moves rightwards –Should not try to consume if there is no data OutIn Need an infinite buffer

Producer-Consumer Problem Bounded buffer: size ‘N’ –Access entry 0… N-1, then “wrap around” to 0 again Producer process writes data to buffer –Must not write more than ‘N’ items more than consumer “ate” Consumer process reads data from buffer –Should not try to consume if there is no data 01 In Out N-1

Producer-Consumer Problem A number of applications: –Data from bar-code reader consumed by device driver –Data in a file you want to print consumed by printer spooler, which produces data consumed by line printer device driver –Web server produces data consumed by client’s web browser Example: so-called “pipe” ( | ) in Unix > cat file | sort | uniq | more > prog | sort Thought questions: where’s the bounded buffer? How “big” should the buffer be, in an ideal world?

Producer-Consumer Problem Solving with semaphores –We’ll use two kinds of semaphores –We’ll use counters to track how much data is in the buffer One counter counts as we add data and stops the producer if there are N objects in the buffer A second counter counts as we remove data and stops a consumer if there are 0 in the buffer –Idea: since general semaphores can count for us, we don’t need a separate counter variable Why do we need a second kind of semaphore? –We’ll also need a mutex semaphore

Producer-Consumer Problem Shared: Semaphores mutex, empty, full; Init: mutex = 1; /* for mutual exclusion*/ empty = N; /* number empty buf entries */ full = 0; /* number full buf entries */ Producer do {... // produce an item in nextp... P(empty); P(mutex);... // add nextp to buffer... V(mutex); V(full); } while (true); Consumer do { P(full); P(mutex);... // remove item to nextc... V(mutex); V(empty);... // consume item in nextc... } while (true);

Readers-Writers Problem Courtois et al 1971 Models access to a database –A reader is a thread that needs to look at the database but won’t change it. –A writer is a thread that modifies the database Example: making an airline reservation –When you browse to look at flight schedules the web site is acting as a reader on your behalf –When you reserve a seat, the web site has to write into the database to make the reservation

Readers-Writers Problem Many threads share an object in memory –Some write to it, some only read it –Only one writer can be active at a time –Any number of readers can be active simultaneously Key insight: generalizes the critical section concept One issue we need to settle, to clarify problem statement. –Suppose that a writer is active and a mixture of readers and writers now shows up. Who should get in next? –Or suppose that a writer is waiting and an endless of stream of readers keeps showing up. Is it fair for them to become active? We’ll favor a kind of back-and-forth form of fairness: –Once a reader is waiting, readers will get in next. –If a writer is waiting, one writer will get in next.

Readers-Writers (Take 1) Shared variables: Semaphore mutex, wrl; integer rcount; Init: mutex = 1, wrl = 1, rcount = 0; Writer do { P(wrl);... /*writing is performed*/... V(wrl); }while(TRUE); Reader do { P(mutex); rcount++; if (rcount == 1) P(wrl); V(mutex);... /*reading is performed*/... P(mutex); rcount--; if (rcount == 0) V(wrl); V(mutex); }while(TRUE);

Readers-Writers Notes If there is a writer –First reader blocks on wrl –Other readers block on mutex Once a reader is active, all readers get to go through –Which reader gets in first? The last reader to exit signals a writer –If no writer, then readers can continue If readers and writers waiting on wrl, and writer exits –Who gets to go in first? Why doesn’t a writer need to use mutex ?

Does this work as we hoped? If readers are active, no writer can enter –The writers wait doing a P(wrl) While writer is active, nobody can enter –Any other reader or writer will wait But back-and-forth switching is buggy: –Any number of readers can enter in a row –Readers can “starve” writers With semaphores, building a solution that has the desired back-and-forth behavior is really, really tricky! –We recommend that you try, but not too hard…

Common programming errors Process i P(S) CS P(S) Process j V(S) CS V(S) Process k P(S) CS A typo. Process I will get stuck (forever) the second time it does the P() operation. Moreover, every other process will freeze up too when trying to enter the critical section! A typo. Process J won’t respect mutual exclusion even if the other processes follow the rules correctly. Worse still, once we’ve done two “extra” V() operations this way, other processes might get into the CS inappropriately! Whoever next calls P() will freeze up. The bug might be confusing because that other process could be perfectly correct code, yet that’s the one you’ll see hung when you use the debugger to look at its state!

More common mistakes Conditional code that can break the normal top-to-bottom flow of code in the critical section Often a result of someone trying to maintain a program, e.g. to fix a bug or add functionality in code written by someone else P(S) if(something or other) return; CS V(S)

What if buffer is full? Producer do {... // produce an item in nextp... P(mutex); P(empty);... // add nextp to buffer... V(mutex); V(full); } while (true); What’s wrong? Shared: Semaphores mutex, empty, full; Init: mutex = 1; /* for mutual exclusion*/ empty = N; /* number empty bufs */ full = 0; /* number full bufs */ Consumer do { P(full); P(mutex);... // remove item to nextc... V(mutex); V(empty);... // consume item in nextc... } while (true); Oops! Even if you do the correct operations, the order in which you do semaphore operations can have an incredible impact on correctness

Language Support for Concurrency

Revisiting semaphores! Semaphores are very “low-level” primitives –Users could easily make small errors –Similar to programming in assembly language Small error brings system to grinding halt –Very difficult to debug Also, we seem to be using them in two ways –For mutual exclusion, the “real” abstraction is a critical section –But the bounded buffer example illustrates something different, where threads “communicate” using semaphores Simplification: Provide concurrency support in compiler –Monitors

Monitors Hoare 1974 Abstract Data Type for handling/defining shared resources Comprises: –Shared Private Data The resource Cannot be accessed from outside –Procedures that operate on the data Gateway to the resource Can only act on data local to the monitor –Synchronization primitives Among threads that access the procedures

Monitor Semantics Monitors guarantee mutual exclusion –Only one thread can execute monitor procedure at any time “in the monitor” –If second thread invokes monitor procedure at that time It will block and wait for entry to the monitor  Need for a wait queue –If thread within a monitor blocks, another can enter Effect on parallelism?

Structure of a Monitor Monitor monitor_name { // shared variable declarations procedure P1(....) {.... } procedure P2(....) {.... }. procedure PN(....) {.... } initialization_code(....) {.... } For example: Monitor stack { int top; void push(any_t *) {.... } any_t * pop() {.... } initialization_code() {.... } only one instance of stack can be modified at a time

Synchronization Using Monitors Defines Condition Variables: –condition x; –Provides a mechanism to wait for events Resources available, any writers 3 atomic operations on Condition Variables –x.wait(): release monitor lock, sleep until woken up  condition variables have waiting queues too –x.notify(): wake one process waiting on condition (if there is one) No history associated with signal –x.broadcast(): wake all processes waiting on condition Useful for resource manager Condition variables are not Boolean –If(x) then { } does not make sense

Producer Consumer using Monitors Monitor Producer_Consumer { any_t buf[N]; int n = 0, tail = 0, head = 0; condition not_empty, not_full; void put(char ch) { if(n == N) wait(not_full); buf[head%N] = ch; head++; n++; signal(not_empty); } char get() { if(n == 0) wait(not_empty); ch = buf[tail%N]; tail++; n--; signal(not_full); return ch; } What if no thread is waiting when signal is called? Signal is a “no-op” if nobody is waiting. This is very different from what happens when you call V() on a semaphore – semaphores have a “memory” of how many times V() was called!

Types of wait queues Monitors have several kinds of “wait” queues –Condition variable: has a queue of threads waiting on the associated condition Thread goes to the end of the queue –Entry to the monitor: has a queue of threads waiting to obtain mutual exclusion so they can enter Again, a new arrival goes to the end of the queue –So-called “urgent” queue: threads that were just woken up using signal(). New arrival normally goes to the front of this queue

Producer Consumer using Monitors Monitor Producer_Consumer { condition not_full; /* other vars */ condition not_empty; void put(char ch) { wait(not_full);... signal(not_empty); } char get() {... } }

Condition Variables & Semaphores Condition Variables != semaphores Access to monitor is controlled by a lock –Wait: blocks on thread and gives up the lock To call wait, thread has to be in monitor, hence the lock Semaphore P() blocks thread only if value less than 0 –Signal: causes waiting thread to wake up If there is no waiting thread, the signal is lost V() increments value, so future threads need not wait on P() Condition variables have no history However they can be used to implement each other

Language Support Can be embedded in programming language: –Synchronization code added by compiler, enforced at runtime –Mesa/Cedar from Xerox PARC –Java: synchronized, wait, notify, notifyall –C#: lock, wait (with timeouts), pulse, pulseall Monitors easier and safer than semaphores –Compiler can check, lock implicit (cannot be forgotten) Why not put everything in the monitor?

Monitor Solutions to Classical Problems

Producer Consumer using Monitors Monitor Producer_Consumer { any_t buf[N]; int n = 0, tail = 0, head = 0; condition not_empty, not_full; void put(char ch) { if(n == N) wait(not_full); buf[head%N] = ch; head++; n++; signal(not_empty); } char get() { if(n == 0) wait(not_empty); ch = buf[tail%N]; tail++; n--; signal(not_full); return ch; }

Reminders: Subtle aspects Notice that when a thread calls wait(), if it blocks it also automatically releases the monitor’s mutual exclusion lock This is an elegant solution to an issue seen with semaphores –Caller has mutual exclusion and wants to call P(not_empty)… but this call might block –If we just do the call, the solution deadlocks… –But if we first call V(mutex), we get a race condition!

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Understanding the Solution A writer can enter if there are no other active writers and no readers are waiting

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Understanding the Solution A reader can enter if –There are no writers active or waiting So we can have many readers active all at once Otherwise, a reader waits (maybe many do)

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Understanding the Solution When a writer finishes, it checks to see if any readers are waiting –If so, it lets one of them enter –That one will let the next one enter, etc… Similarly, when a reader finishes, if it was the last reader, it lets a writer in (if any is there)

Readers and Writers Monitor ReadersNWriters { int WaitingWriters, WaitingReaders,NReaders, NWriters; Condition CanRead, CanWrite; Void BeginWrite() { if(NWriters == 1 || NReaders > 0) { ++WaitingWriters; wait(CanWrite); --WaitingWriters; } NWriters = 1; } Void EndWrite() { NWriters = 0; if(WaitingReaders) Signal(CanRead); else Signal(CanWrite); } Void BeginRead() { if(NWriters == 1 || WaitingWriters > 0) { ++WaitingReaders; Wait(CanRead); --WaitingReaders; } ++NReaders; Signal(CanRead); } Void EndRead() { if(--NReaders == 0) Signal(CanWrite); }

Understanding the Solution It wants to be fair –If a writer is waiting, readers queue up –If a reader (or another writer) is active or waiting, writers queue up –… this is mostly fair, although once it lets a reader in, it lets ALL waiting readers in all at once, even if some showed up “after” other waiting writers

Subtle aspects? The code is “simplified” because we know there can only be one writer at a time It also takes advantage of the fact that signal is a no-op if nobody is waiting Where do we see these ideas used? –In the “EndWrite” code (it signals CanWrite without checking for waiting writers) –In the EndRead code (same thing) –In StartRead (signals CanRead at the end)

Comparison with Semaphores With semaphores we never did have a “fair” solution of this sort –In fact it can be done, but the code is quite tricky Here the straightforward solution works in the desired way! –Monitors are less error-prone and also easier to understand –C# and Java primitives should typically be used in this manner, too…

To conclude Race conditions are a pain! We studied several ways to handle them –Each has its own pros and cons Support in Java, C# has simplified writing multithreaded applications Some new program analysis tools automate checking to make sure your code is using synchronization correctly –The hard part for these is to figure out what “correct” means! –None of these tools would make sense of the bounded buffer (those in the business sometimes call it the “unbounded bugger”)