static lock capabilities for deadlock freedom
play

Static Lock Capabilities for Deadlock-Freedom Colin S. Gordon - PowerPoint PPT Presentation

May 25, 2023 •49 likes •649 views

Static Lock Capabilities for Deadlock-Freedom Colin S. Gordon csgordon@cs.washington.edu University of Washington TLDI, January 28, 2012 Joint work with Michael D. Ernst and Dan Grossman Colin S. Gordon (University of Washington) Lock

  1. Static Lock Capabilities for Deadlock-Freedom Colin S. Gordon csgordon@cs.washington.edu University of Washington TLDI, January 28, 2012 Joint work with Michael D. Ernst and Dan Grossman Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 1 / 16

  2. Verifying Deadlock Freedom Deadlock A cycle of threads, each blocked waiting for a resource held by the next thread in the cycle. T 1 → T 2 → . . . → T n , T 1 = T n Goal Statically verify deadlock freedom for fine-grained locking Balanced binary trees Array elements Resizable hash tables Circular lists Approach A static (capability) type system Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 2 / 16

  3. Deadlock-Free Code Assuming n2 == n1 . left and n3 == n1 . right: n1 Thread1 : sync n2 {} ւ ց Thread2 : sync n3 {} n2 n3 Thread3 : sync n1 { sync n1 . left { sync n1 . right {}}} Thread4 : sync n1 { sync n1 . right { sync n1 . left {}}} Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 3 / 16

  4. Deadlock-Free Code Assuming n2 == n1 . left and n3 == n1 . right: n1 Thread1 : sync n2 {} ւ ց Thread2 : sync n3 {} n2 n3 Thread3 : sync n1 { sync n1 . left { sync n1 . right {}}} Thread4 : sync n1 { sync n1 . right { sync n1 . left {}}} Prior static approaches require either: A total ordering on n1 ’s children (rejects T3 or T4), or Disallow interior pointers ( n2 , n3 , rejecting T1 and T2) Lock capabilities impose neither restriction. Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 3 / 16

  5. Lock Capabilities Lock Capability A static capability that permits acquiring additional locks Baked into a type-and-effect system Proved sound (they prevent deadlock) Straightforward extensions Scale to handle a set of diverse structures ◮ with the help of some extensions to plumb singleton types Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 4 / 16

  6. Intuition: Tree-Based Ordering Fine-grained locking in a binary tree: Acquiring one lock while holding none avoids deadlock; “First lock is free” Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 5 / 16

  7. Intuition: Tree-Based Ordering Fine-grained locking in a binary tree: Acquiring one lock while holding none avoids deadlock; “First lock is free” Following tree order deeply through the tree avoids deadlock. Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 5 / 16

  8. Intuition: Tree-Based Ordering Fine-grained locking in a binary tree: Acquiring one lock while holding none avoids deadlock; “First lock is free” Following tree order deeply through the tree avoids deadlock. Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 5 / 16

  9. Intuition: Tree-Based Ordering Fine-grained locking in a binary tree: Acquiring one lock while holding none avoids deadlock; “First lock is free” Following tree order deeply through the tree avoids deadlock. Assuming children are acquired only while holding the parent lock, locking siblings avoids deadlock . Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 5 / 16

  10. Intuition: Tree-Based Ordering Fine-grained locking in a binary tree: Acquiring one lock while holding none avoids deadlock; “First lock is free” Following tree order deeply through the tree avoids deadlock. Assuming children are acquired only while holding the parent lock, locking siblings avoids deadlock . Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 5 / 16

  11. Generalizing Beyond Trees Trees → Tree-shaped Partial Orders In an immutable tree-shaped partial ordering, a thread may acquire a lock l when: It holds no other locks, or It holds a lock l ′ and l is a child of l ′ Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 6 / 16

  12. Generalizing Beyond Trees Trees → Tree-shaped Partial Orders In an immutable tree-shaped partial ordering, a thread may acquire a lock l when: It holds no other locks, or It holds a lock l ′ and l is a child of l ′ Notice: No ordering imposed between siblings No restriction on aliases Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 6 / 16

  13. Generalizing Beyond Trees Trees → Tree-shaped Partial Orders In an immutable tree-shaped partial ordering, a thread may acquire a lock l when: It holds no other locks, or It holds a lock l ′ and l is a child of l ′ Notice: No ordering imposed between siblings No restriction on aliases Harder: Early lock releases Modifying the partial order Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 6 / 16

  14. Lock Capabilities c l a s s TreeNode { guardedBy � this � TreeNode left ; guardedBy � this � TreeNode right ; } Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 7 / 16

  15. Lock Capabilities ← − Parent lock x grants capability � x � c l a s s TreeNode { guardedBy � this � TreeNode left ; guardedBy � this � TreeNode right ; } Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 7 / 16

  16. Lock Capabilities ← − Parent lock x grants capability � x � ← − Child type includes the guarding capability : x . right : guardedBy � x � TreeNode c l a s s TreeNode { guardedBy � this � TreeNode left ; guardedBy � this � TreeNode right ; } Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 7 / 16

  17. Lock Capabilities ← − Parent lock x grants capability � x � ← − Child type includes the guarding capability : x . right : guardedBy � x � TreeNode lock ( x ) in lock ( x . right ) in . . . May only acquire lock of type guardedBy � x � when holding lock x (or no locks at all). c l a s s TreeNode { guardedBy � this � TreeNode left ; guardedBy � this � TreeNode right ; } Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 7 / 16

  18. Lock Capabilities ← − Parent lock x grants capability � x � ← − Child type includes the guarding capability : x . right : guardedBy � x � TreeNode lock ( x ) in lock ( x . right ) in . . . May only acquire lock of type guardedBy � x � when holding lock x (or no locks at all). c l a s s TreeNode { guardedBy � this � TreeNode left ; Deadlock freedom follows from the guardedBy � this � TreeNode right ; } capability granting relation being a forest Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 7 / 16

  19. Structures with Cycles A forest-shaped capability granting relation doesn’t require forest-shaped data structures. For example, here is a circular list: This circular list has cycles in the heap, but a tree-shaped capability granting relation. Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 8 / 16

  20. Structures with Cycles A forest-shaped capability granting relation doesn’t require forest-shaped data structures. For example, here is a circular list: This circular list has cycles in the heap, but a tree-shaped capability granting relation. Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 8 / 16

  21. Supporting Mutable Structures Lock relationships can change dynamically, so we need: Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 9 / 16

  22. Supporting Mutable Structures Lock relationships can change dynamically, so we need: Strong Updates = ⇒ weakened form of uniqueness Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 9 / 16

  23. Supporting Mutable Structures Lock relationships can change dynamically, so we need: Strong Updates = ⇒ weakened form of uniqueness Preserving Acyclicity = ⇒ track shape of capability-granting relation Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 9 / 16

  24. Supporting Mutable Structures Lock relationships can change dynamically, so we need: Strong Updates = ⇒ weakened form of uniqueness Preserving Acyclicity = ⇒ track shape of capability-granting relation Releasing Out-Of-Order = ⇒ restrictions on lock acquisition Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 9 / 16

  25. Supporting Mutable Structures Lock relationships can change dynamically, so we need: Strong Updates = ⇒ weakened form of uniqueness Preserving Acyclicity = ⇒ track shape of capability-granting relation Releasing Out-Of-Order = ⇒ restrictions on lock acquisition ◮ No time to discuss out-of-order releases Colin S. Gordon (University of Washington) Lock Capabilities for Deadlock Freedom TLDI’12 9 / 16

Recommend

Static Deadlock Detection for Java Libraries Amy Williams , William Thies, and Michael D. Ernst

Static Deadlock Detection for Java Libraries Amy Williams , William Thies, and Michael D. Ernst

Static Deadlock Detection for Java Libraries Amy Williams , William Thies, and Michael D. Ernst Massachusetts Institute of Technology Deadlock Each deadlocked thread attempts to acquire a lock held by another thread Can halt entire

1.2k views • 63 slides
Starvation and Deadlock Starvation The reader/writer lock example illustrates starvation : under

Starvation and Deadlock Starvation The reader/writer lock example illustrates starvation : under

Starvation and Deadlock Starvation The reader/writer lock example illustrates starvation : under load, a writer will be stalled forever by a stream of readers. Example : a one-lane bridge . Wait for oncoming car to exit the bridge before

344 views • 7 slides
Lockout: Efficient Tes0ng for Deadlock Bugs Ali Kheradmand,

Lockout: Efficient Tes0ng for Deadlock Bugs Ali Kheradmand,

Lockout: Efficient Tes0ng for Deadlock Bugs Ali Kheradmand, Baris Kasikci, George Candea 1 Deadlock Set of threads Each holding a lock

642 views • 20 slides
Synchronization 4: Deadlock, Misc Lock Issues 1 Changelog Changes made in this version not seen

Synchronization 4: Deadlock, Misc Lock Issues 1 Changelog Changes made in this version not seen

Synchronization 4: Deadlock, Misc Lock Issues 1 Changelog Changes made in this version not seen in fjrst lecture: 4 October: livelock: move slides earlier (next to abort discussion) 4 October: revocable locks, Linux OOM killer: move slides

1.65k views • 126 slides
Deadlock 12/1/16 Two topics today Deadlock: What it is. How it can happen. How to

Deadlock 12/1/16 Two topics today Deadlock: What it is. How it can happen. How to

Deadlock 12/1/16 Two topics today Deadlock: What it is. How it can happen. How to deal with it. Assembly support for atomicity: Test-and-set Compare-and-swap What is Deadlock? not necessarily Deadlock is a problem

456 views • 34 slides
Parameterized Verification of Deadlock Freedom in Symmetric Cache Coherence Protocols Brad Bingham

Parameterized Verification of Deadlock Freedom in Symmetric Cache Coherence Protocols Brad Bingham

Parameterized Verification of Deadlock Freedom in Symmetric Cache Coherence Protocols Brad Bingham 1 Jesse Bingham 2 Mark Greenstreet 1 1 University of British Columbia, Canada 2 Intel Corporation, U.S.A. November 2, 2011 FMCAD Outline What is

1.24k views • 27 slides
Deadlock Questions? ! What is a deadlock? CSCI [4|6]730 ! What causes a deadlock? Operating

Deadlock Questions? ! What is a deadlock? CSCI [4|6]730 ! What causes a deadlock? Operating

Deadlock Questions? ! What is a deadlock? CSCI [4|6]730 ! What causes a deadlock? Operating Systems ! How do you deal with (potential) deadlocks? Deadlock Maria Hybinette, UGA Maria Hybinette, UGA Deadlock: What is a deadlock? Example

257 views • 13 slides
Verifying Deadlock Freedom Duy-Khanh LE , Wei-Ngan CHIN, Yong-Meng TEO {leduykha,chinwn,teoym}

Verifying Deadlock Freedom Duy-Khanh LE , Wei-Ngan CHIN, Yong-Meng TEO {leduykha,chinwn,teoym}

An Expressive Framework for Verifying Deadlock Freedom Duy-Khanh LE , Wei-Ngan CHIN, Yong-Meng TEO {leduykha,chinwn,teoym} [at] comp.nus.edu.sg 11 th International Symposium on Automated Technology for Verification and Analysis (ATVA), Hanoi,

734 views • 42 slides
Decoupling Lock-Free Data Structures from Memory Reclamation for Static Analysis [POPL'19]

Decoupling Lock-Free Data Structures from Memory Reclamation for Static Analysis [POPL'19]

Decoupling Lock-Free Data Structures from Memory Reclamation for Static Analysis [POPL'19] Roland Meyer and Sebastian Wol ff TU Braunschweig, Germany Lock-free Queue (Michael&Scott) void dequeue() { Head a while (true) { head =

838 views • 46 slides
Proving Lock-Freedom Easily and Automatically Xiao Jia 1 Wei Li 1 Viktor Vafeiadis 2 1 Shanghai

Proving Lock-Freedom Easily and Automatically Xiao Jia 1 Wei Li 1 Viktor Vafeiadis 2 1 Shanghai

Proving Lock-Freedom Easily and Automatically Xiao Jia 1 Wei Li 1 Viktor Vafeiadis 2 1 Shanghai Jiao Tong University 2 Max Planck Institute for Software Systems (MPI-SWS) CPP15, 14 January 2015 Blocking synchronisation 3 H : 9 2 n :=

745 views • 25 slides
Proving linearizability & lock-freedom Viktor Vafeiadis MPI-SWS Michael & Scott

Proving linearizability & lock-freedom Viktor Vafeiadis MPI-SWS Michael & Scott

Proving linearizability & lock-freedom Viktor Vafeiadis MPI-SWS Michael & Scott non-blocking queue head tail null X 1 2 3 CAS compare & swap CAS (address, expectedValue, newValue) { atomic { if ( *address ==

1.03k views • 49 slides
Resource Allocat ion and Deadlock Handling What s in a deadlock Deadlock: A set of blocked

Resource Allocat ion and Deadlock Handling What s in a deadlock Deadlock: A set of blocked

Resource Allocat ion and Deadlock Handling What s in a deadlock Deadlock: A set of blocked pr ocesses each wait ing f or an event (e.g. a r esour ce t o become available) t hat only anot her pr ocess in t he set can cause 2 Examples

530 views • 41 slides
Chapter 8: Deadlock Questions? What is a deadlock? CSCI [4|6]730 What causes a

Chapter 8: Deadlock Questions? What is a deadlock? CSCI [4|6]730 What causes a

Chapter 8: Deadlock Questions? What is a deadlock? CSCI [4|6]730 What causes a deadlock? Operating Systems How do you deal with (potential) deadlocks? Deadlock 2 Maria Hybinette, UGA Maria Hybinette, UGA Deadlock: What

320 views • 13 slides
Synchronized Progress in Interconnection Networks (SPIN) : A new theory for deadlock freedom

Synchronized Progress in Interconnection Networks (SPIN) : A new theory for deadlock freedom

ISCA 2018 Session 8B: Interconnection Networks Synchronized Progress in Interconnection Networks (SPIN) : A new theory for deadlock freedom Aniruddh Ramrakhyani Tushar Krishna Georgia Tech Georgia Tech (aniruddh@gatech.edu)

2.23k views • 39 slides
Deadlocks & Deadlock Detection Main Memory Management Deadlock Prevention

Deadlocks & Deadlock Detection Main Memory Management Deadlock Prevention

CSE 421/521 - Operating Systems Roadmap Fall 2011 Deadlocks Lecture - XII Resource Allocation Graphs Deadlocks & Deadlock Detection Main Memory Management Deadlock Prevention Deadlock Avoidance Deadlock

280 views • 6 slides
Resource Allocation and Deadlock Resource Allocation and Deadlock Handling Conditions for

Resource Allocation and Deadlock Resource Allocation and Deadlock Handling Conditions for

Resource Allocation and Deadlock Resource Allocation and Deadlock Handling Conditions for Deadlock [Coffman-etal 1971] 4 conditions must hold simultaneously for a deadlock to occur: deadlock to occur: Mutual exclusion: only one process at

520 views • 31 slides
Deadlock CS 450 : Operating Systems Michael Lee <lee@iit.edu> deadlock |dedlk| noun 1

Deadlock CS 450 : Operating Systems Michael Lee <lee@iit.edu> deadlock |dedlk| noun 1

Deadlock CS 450 : Operating Systems Michael Lee <lee@iit.edu> deadlock |dedlk| noun 1 [in sing. ] a situation, typically one involving opposing parties, in which no progress can be made : an attempt to break the deadlock . - New

2.27k views • 119 slides
Last Class: Deadlocks Necessary conditions for deadlock: Mutual exclusion Hold and

Last Class: Deadlocks Necessary conditions for deadlock: Mutual exclusion Hold and

Last Class: Deadlocks Necessary conditions for deadlock: Mutual exclusion Hold and wait No preemption Circular wait Ways of handling deadlock Deadlock detection and recovery Deadlock prevention Deadlock

925 views • 20 slides
1 Pitfalls of Lock-Based Protocols (Cont.) The Two-Phase Locking Protocol The potential for

1 Pitfalls of Lock-Based Protocols (Cont.) The Two-Phase Locking Protocol The potential for

Concurrency Control Lock-Based Protocols Timestamp-Based Protocols Lecture 9 Concurrency Control Validation-Based Protocols Multiple Granularity Multiversion Schemes Deadlock Handling Chapter 16 Insert and Delete

780 views • 8 slides
Chapter 8: Deadlocks System Model Deadlock Characterization Methods for Handling

Chapter 8: Deadlocks System Model Deadlock Characterization Methods for Handling

Chapter 8: Deadlocks System Model Deadlock Characterization Methods for Handling Deadlocks Deadlock Prevention Deadlock Avoidance Deadlock Detection Recovery from Deadlock Combined Approach to Deadlock Handling

632 views • 41 slides
Chapter 8: Deadlocks System Model Deadlock Characterization Methods for Handling

Chapter 8: Deadlocks System Model Deadlock Characterization Methods for Handling

Chapter 8: Deadlocks System Model Deadlock Characterization Methods for Handling Deadlocks Deadlock Prevention Deadlock Avoidance Deadlock Detection Recovery from Deadlock Combined Approach to Deadlock Handling

621 views • 21 slides
Quantitative Reasoning for Proving Lock-Freedom Jan Ho ff mann, Michael Marmar, and Zhong Shao

Quantitative Reasoning for Proving Lock-Freedom Jan Ho ff mann, Michael Marmar, and Zhong Shao

Quantitative Reasoning for Proving Lock-Freedom Jan Ho ff mann, Michael Marmar, and Zhong Shao Quantitative Reasoning for Proving Lock-Freedom Jan Ho ff mann, Michael Marmar, and Zhong Shao Mike is at LICS too. Quantitative Reasoning for

875 views • 85 slides
Deadlock Prevention and Avoidance Synchronization is Difficult 7L. Higher level synchronization

Deadlock Prevention and Avoidance Synchronization is Difficult 7L. Higher level synchronization

4/29/2018 Deadlock Prevention and Avoidance Synchronization is Difficult 7L. Higher level synchronization recognizing potential critical sections 7M. Lock-Free operations potential combinations of events interactions with other

298 views • 11 slides
Static Code Analysis on Networking Code: Identifying the capabilities of finding implementation

Static Code Analysis on Networking Code: Identifying the capabilities of finding implementation

RP1 Presenter: Ivar Slotboom Supervisor: Wouter van Dongen , DongIT UvA/SNE Static Code Analysis on Networking Code: Identifying the capabilities of finding implementation flaws using Abstract Syntax Trees RP1 4th of July, 2019 Presenter:

439 views • 20 slides

More recommend