Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 17 November 2006.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 17 November 2006."— Presentation transcript:

1 The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 17 November 2006

2 Dan Grossman, Software Transactions2 Atomic An easier-to-use and harder-to-implement primitive lock acquire/release(behave as if) no interleaved computation; no unfair starvation void deposit(int x){ synchronized(this){ int tmp = balance; tmp += x; balance = tmp; }} void deposit(int x){ atomic { int tmp = balance; tmp += x; balance = tmp; }}

3 17 November 2006Dan Grossman, Software Transactions3 Why now? You are unleashing small-scale parallel computers on the programming masses Threads and shared memory remaining a key model –Most common if not the best Locks and condition variables not enough –Cumbersome, error-prone, slow Transactions should be a hot area, and it is…

4 17 November 2006Dan Grossman, Software Transactions4 A big deal Software-transactions research broad… Programming languages PLDI, POPL, ICFP, OOPSLA, ECOOP, HASKELL, … Architecture ISCA, HPCA, ASPLOS, MSPC, … Parallel programming PPoPP, PODC, … … and coming together TRANSACT (at PLDI06)

5 17 November 2006Dan Grossman, Software Transactions5 Viewpoints Software transactions good for: Software engineering (avoid races & deadlocks) Performance (optimistic “no conflict” without locks) Research should be guiding: New hardware with transactional support Inevitable software support –Legacy/transition –Semantic mismatch between a PL and an ISA –May be fast enough

6 17 November 2006Dan Grossman, Software Transactions6 Today Issues in language design and semantics 1.Transactions for software evolution 2.Transactions for strong isolation [Nov06] * 3.The need for a memory model [MSPC06a] ** Software-implementation techniques 1.On one core [ICFP05] 2.Without changing the virtual machine [MSPC06b] 3.Static optimizations for strong isolation [Nov06]* * Joint work with Intel PSL ** Joint work with Manson and Pugh

7 17 November 2006Dan Grossman, Software Transactions7 Atomic An easier-to-use and harder-to-implement primitive lock acquire/release(behave as if) no interleaved computation; no unfair starvation void deposit(int x){ synchronized(this){ int tmp = balance; tmp += x; balance = tmp; }} void deposit(int x){ atomic { int tmp = balance; tmp += x; balance = tmp; }}

8 17 November 2006Dan Grossman, Software Transactions8 Code evolution Having chosen “self-locking” today, hard to add a correct transfer method tomorrow void deposit(…) { synchronized(this) { … }} void withdraw(…) { synchronized(this) { … }} int balance(…) { synchronized(this) { … }} void transfer(Acct from, int amt) { synchronized(this) { //race if(from.balance()>=amt && amt < maxXfer) { from.withdraw(amt); this.deposit(amt); }

9 17 November 2006Dan Grossman, Software Transactions9 Code evolution Having chosen “self-locking” today, hard to add a correct transfer method tomorrow void deposit(…) { synchronized(this) { … }} void withdraw(…) { synchronized(this) { … }} int balance(…) { synchronized(this) { … }} void transfer(Acct from, int amt) { synchronized(this) { synchronized(from) { //deadlock (still) if(from.balance()>=amt && amt < maxXfer) { from.withdraw(amt); this.deposit(amt); } }} }

10 17 November 2006Dan Grossman, Software Transactions10 Code evolution Having chosen “self-locking” today, hard to add a correct transfer method tomorrow void deposit(…) { atomic { … }} void withdraw(…) { atomic { … }} int balance(…) { atomic { … }} void transfer(Acct from, int amt) { //race if(from.balance()>=amt && amt < maxXfer) { from.withdraw(amt); this.deposit(amt); } }

11 17 November 2006Dan Grossman, Software Transactions11 Code evolution Having chosen “self-locking” today, hard to add a correct transfer method tomorrow void deposit(…) { atomic { … }} void withdraw(…) { atomic { … }} int balance(…) { atomic { … }} void transfer(Acct from, int amt) { atomic { //correct (for any field maxXfer) if(from.balance()>=amt && amt < maxXfer){ from.withdraw(amt); this.deposit(amt); }

12 17 November 2006Dan Grossman, Software Transactions12 Lesson Locks do not compose; transactions do

13 17 November 2006Dan Grossman, Software Transactions13 Today Issues in language design and semantics 1.Transactions for software evolution 2.Transactions for strong isolation [Nov06] * 3.The need for a memory model [MSPC06a] ** Software-implementation techniques 1.On one core [ICFP05] 2.Without changing the virtual machine [MSPC06b] 3.Static optimizations for strong isolation [Nov06]* * Joint work with Intel PSL ** Joint work with Manson and Pugh

14 17 November 2006Dan Grossman, Software Transactions14 “Weak” atomicity Common belief: “Weak” means nontransactional code can interpose reads/writes with transactions Same bugs arise with lock-based code Strict segregation of transactional vs. non-transactional data sufficient to avoid races atomic { y = 1; x = 3; y = x; } x = 2; print(y); //1? 2? initially y==0 Joint work with Intel PSL

15 17 November 2006Dan Grossman, Software Transactions15 Segregation Segregation is not necessary in lock-based code –Even under relaxed memory models (Example from [Rajwar/Larus] and [Hudson et al]) sync(lk) { r = ptr; ptr = new C(); } r.f == r.g;//true sync(lk) { ++ptr.f; ++ptr.g; } initially ptr.f == ptr.g ptr f g Joint work with Intel PSL

16 17 November 2006Dan Grossman, Software Transactions16 “Weak” atomicity redux “Weak” really means nontransactional code bypasses the transaction mechanism… Weak STMs violate isolation on example: Eager-updates (one update visible before abort) Lazy-updates (one update visible after commit) Imposes correctness burdens on programmers that locks do not Joint work with Intel PSL

17 17 November 2006Dan Grossman, Software Transactions17 Lesson “Weak” is worse than most think; it can require segregation where locks do not Corollary: “Strong” has easier semantics –especially for a safe language Joint work with Intel PSL

18 17 November 2006Dan Grossman, Software Transactions18 Today Issues in language design and semantics 1.Transactions for software evolution 2.Transactions for strong isolation [Nov06] * 3.The need for a memory model [MSPC06a] ** Software-implementation techniques 1.On one core [ICFP05] 2.Without changing the virtual machine [MSPC06b] 3.Static optimizations for strong isolation [Nov06]* * Joint work with Intel PSL ** Joint work with Manson and Pugh

19 17 November 2006Dan Grossman, Software Transactions19 Relaxed memory models Modern languages don’t provide sequential consistency 1.Lack of hardware support 2.Prevents otherwise sensible & ubiquitous compiler transformations (e.g., copy propagation) So safe languages need two complicated definitions 1.What is “properly synchronized”? 2.What can compiler and hardware do with “bad code”? (Unsafe languages need (1)) A flavor of simplistic ideas and the consequences… Joint work with Manson,Pugh

20 17 November 2006Dan Grossman, Software Transactions20 Simplistic ideas “Properly synchronized”  All thread-shared mutable memory accessed in transactions Consequence: Data-handoff code deemed “bad” //Producer tmp1=new C(); tmp1.x=42; atomic { q.put(tmp1); } //Consumer atomic { tmp2=q.get(); } tmp2.x++; Joint work with Manson,Pugh

21 17 November 2006Dan Grossman, Software Transactions21 Simplistic ideas There exists a total “happens-before” order among all transactions Consequence: atomic has barrier semantics, making dubious code correct x = 1; y = 1; r = y; s = x; assert(s>=r);//invalid initially x==y==0 Joint work with Manson,Pugh

22 17 November 2006Dan Grossman, Software Transactions22 Simplistic ideas There exists a total “happens-before” order among all transactions Consequence: atomic has barrier semantics, making dubious code correct and real implementations wrong x = 1; atomic { } y = 1; r = y; atomic { } s = x; assert(s>=r);//valid? initially x==y==0 Joint work with Manson,Pugh

23 17 November 2006Dan Grossman, Software Transactions23 Simplistic ideas There exists a total “happens-before” order among transactions with conflicting memory accesses Consequence: “memory access” now in the language definition; dead-code elim must be careful x = 1; atomic {z=1;} y = 1; r = y; atomic {tmp=0*z;} s = x; assert(s>=r);//valid? initially x==y==0 Joint work with Manson,Pugh

24 17 November 2006Dan Grossman, Software Transactions24 Lesson It is not clear when transactions are ordered, but languages need memory models Corollary: This could/should delay adoption of transactions in well-specified languages Shameless provocation: architectures need memory models too! (Please?!) Joint work with Manson,Pugh

25 17 November 2006Dan Grossman, Software Transactions25 Today Issues in language design and semantics 1.Transactions for software evolution 2.Transactions for strong isolation [Nov06] * 3.The need for a memory model [MSPC06a] ** Software-implementation techniques 1.On one core [ICFP05] 2.Without changing the virtual machine [MSPC06b] 3.Static optimizations for strong isolation [Nov06]* * Joint work with Intel PSL ** Joint work with Manson and Pugh

26 17 November 2006Dan Grossman, Software Transactions26 Interleaved execution The “uniprocessor (and then some)” assumption: Threads communicating via shared memory don't execute in “true parallel” Important special case: Uniprocessors still exist Multicore may assign one core to an app Many concurrent apps don’t need a multiprocessor (e.g., a document editor) Many language implementations assume it (e.g., OCaml, DrScheme)

27 17 November 2006Dan Grossman, Software Transactions27 Implementing atomic Key pieces: Execution of an atomic block logs writes If scheduler pre-empts a thread in atomic, rollback the thread Duplicate code so non-atomic code is not slowed by logging Smooth interaction with GC

28 17 November 2006Dan Grossman, Software Transactions28 Logging example Executing atomic block: build LIFO log of old values: y:0z:?x:0y:2 Rollback on pre-emption: Pop log, doing assignments Set program counter and stack to beginning of atomic On exit from atomic: drop log int x=0, y=0; void f() { int z = y+1; x = z; } void g() { y = x+1; } void h() { atomic { y = 2; f(); g(); }

29 17 November 2006Dan Grossman, Software Transactions29 Logging efficiency Keep the log small: Don’t log reads (key uniprocessor advantage) Need not log memory allocated after atomic entered –Particularly initialization writes Need not log an address more than once –To keep logging fast, switch from array to hashtable after “many” (50) log entries y:0z:?x:0y:2

30 17 November 2006Dan Grossman, Software Transactions30 Duplicating code Duplicate code so callees know to log or not: For each function f, compile f_atomic and f_normal Atomic blocks and atomic functions call atomic functions Function pointers compile to pair of code pointers int x=0, y=0; void f() { int z = y+1; x = z; } void g() { y = x+1; } void h() { atomic { y = 2; f(); g(); }

31 17 November 2006Dan Grossman, Software Transactions31 Representing closures/objects Representation of function-pointers/closures/objects an interesting (and pervasive) design decision OCaml: headercode ptrfree variables… add 3, push, …

32 17 November 2006Dan Grossman, Software Transactions32 Representing closures/objects Representation of function-pointers/closures/objects an interesting (and pervasive) design decision One approach: bigger closures headercode ptr1free variables… add 3, push, … code ptr2 add 3, push, … Note: atomic is first-class, so it is just one of these too!

33 17 November 2006Dan Grossman, Software Transactions33 Representing closures/objects Representation of function-pointers/closures/objects an interesting (and pervasive) design decision Alternate approach: slower calls in atomic headercode ptr1free variables… add 3, push, … code ptr2 add 3, push, … Note: Same overhead as OO dynamic dispatch

34 17 November 2006Dan Grossman, Software Transactions34 Interaction with GC What if GC occurs mid-transaction? The log is a root (in case of rollback) Moving objects is fine –Rollback produces equivalent state –Naïve hardware solutions may log/rollback GC! What about rolling back the allocator? Don’t bother: after rollback, objects allocated in transaction are unreachable –Naïve hardware solutions may log/rollback initialization writes!

35 17 November 2006Dan Grossman, Software Transactions35 Evaluation Strong atomicity for Caml at little cost –Already assumes a uniprocessor –See the paper for “in the noise” performance Mutable data overhead Rare rollback not in atomicin atomic readnone writenonelog (2 more writes)

36 17 November 2006Dan Grossman, Software Transactions36 Lesson Implementing (strong) atomicity in software for a uniprocessor is so efficient it deserves special-casing Note: Don’t run other multicore services on a uni either

37 17 November 2006Dan Grossman, Software Transactions37 Today Issues in language design and semantics 1.Transactions for software evolution 2.Transactions for strong isolation [Nov06] * 3.The need for a memory model [MSPC06a] ** Software-implementation techniques 1.On one core [ICFP05] 2.Without changing the virtual machine [MSPC06b] 3.Static optimizations for strong isolation [Nov06]* * Joint work with Intel PSL ** Joint work with Manson and Pugh

38 17 November 2006Dan Grossman, Software Transactions38 … … System Architecture foo.ajava Polyglot Our compiler javac class files AThread. java AThread. java Our “run-time” Note: Preserves separate compilation

39 17 November 2006Dan Grossman, Software Transactions39 Key pieces A field read/write first acquires ownership of object –In transaction, a write also logs the old value –No synchronization if already own object Polling for releasing ownership –Transactions rollback before releasing Some Java cleverness for efficient logging Lots of details for other Java features

40 17 November 2006Dan Grossman, Software Transactions40 Acquiring ownership All objects have an owner field class AObject extends Object { Thread owner; //who owns the object void acq(){…} //owner=caller (blocking) } Field accesses become method calls Read/write barriers that acquire ownership –Then do the read or write –In transaction, log between acquire and write Calls simplify/centralize code (JIT will inline)

41 17 November 2006Dan Grossman, Software Transactions41 Read-barrier D x; static D get_x(C o){ o.acq(); return o.x; } //also two setters //some field-read e.x //field in class C D x; C.get_x(e)

42 17 November 2006Dan Grossman, Software Transactions42 Important fast-path If thread already owns an object, no synchronization Does not require sequential consistency With “owner=currentThread()” in constructor, thread- local objects never incur synchronization Else add object to owner’s “to release” set and wait –Synchronization on owner field and “to release” set –Also fanciness if owner is dead or blocked void acq(){ if(owner==currentThread()) return; … }

43 17 November 2006Dan Grossman, Software Transactions43 Releasing ownership Must “periodically” check “to release” set –If in transaction, first rollback Retry later (backoff to avoid livelock) –Set owners to null Source-level “periodically” –Insert call to check() on loops and non-leaf calls –Trade-off synchronization and responsiveness: int count = 1000; //thread-local void check(){ if(--count >= 0) return; count=1000; really_check(); }

44 17 November 2006Dan Grossman, Software Transactions44 But what about…? Modern, safe languages are big… See paper & tech. report for: constructors, primitive types, static fields, class initializers, arrays, native calls, exceptions, condition variables, library classes, …

45 17 November 2006Dan Grossman, Software Transactions45 Lesson Transactions for high-level programming languages do not need low-level implementations But good performance does tend to need parallel readers, which is future work. 

46 17 November 2006Dan Grossman, Software Transactions46 Today Issues in language design and semantics 1.Transactions for software evolution 2.Transactions for strong isolation [Nov06] * 3.The need for a memory model [MSPC06a] ** Software-implementation techniques 1.On one core [ICFP05] 2.Without changing the virtual machine [MSPC06b] 3.Static optimizations for strong isolation [Nov06]* * Joint work with Intel PSL ** Joint work with Manson and Pugh

47 17 November 2006Dan Grossman, Software Transactions47 Strong performance problem Recall uniprocessor overhead: not in atomicin atomic readnone writenonesome With parallelism: not in atomicin atomic readnone iff weaksome writenone iff weaksome Joint work with Intel PSL

48 17 November 2006Dan Grossman, Software Transactions48 Optimizing away barriers Thread local Immutable Not accessed in transaction New: static analysis for not-accessed-in-transaction … Joint work with Intel PSL

49 17 November 2006Dan Grossman, Software Transactions49 Not-accessed-in-transaction Revisit overhead of not-in-atomic for strong atomicity, given information about how data is used in atomic Yet another client of pointer-analysis in atomic no atomic access no atomic write atomic write readnone some writenonesome not in atomic Joint work with Intel PSL

50 17 November 2006Dan Grossman, Software Transactions50 Analysis details Whole-program, context-insensitive, flow-insensitive –Scalable, but needs whole program Can be done before method duplication –Keep lazy code generation without losing precision Given pointer information, just two more passes 1.How is an “abstract object” accessed transactionally? 2.What “abstract objects” might a non-transactional access use? Joint work with Intel PSL

51 17 November 2006Dan Grossman, Software Transactions51 Static counts Not the point, but good evidence Usually better than thread-local analysis AppAccessTotalNAIT or TLNAIT onlyTL only SpecJVM98Read12671 8796 0 Write 9885 7961 0 TspRead 106 93 89 0 Write 36 17 16 0 JBBRead 804 798 364 24 Write 621 575 131 344 Barrier removed by Joint work with Intel PSL

52 17 November 2006Dan Grossman, Software Transactions52 Experimental Setup High-performance strong STM from Intel PSL StarJIT –IR and optimizations for transactions and isolation barriers –Inlined isolation barriers ORP –Transactional method cloning –Run-time optimizations for strong isolation McRT –Run-time for weak and strong STM Joint work with Intel PSL

53 17 November 2006Dan Grossman, Software Transactions53 Benchmarks Tsp Joint work with Intel PSL

54 17 November 2006Dan Grossman, Software Transactions54 Benchmarks JBB Joint work with Intel PSL

55 17 November 2006Dan Grossman, Software Transactions55 Lesson The cost of strong isolation is in nontransactional barriers and compiler optimizations help a lot

56 17 November 2006Dan Grossman, Software Transactions56 Lessons 1.Locks do not compose; transactions do 2.“Weak” is worse than most think; can require segregation where locks do not 3.Unclear when transactions are ordered, but languages need memory models 4.Strong atomicity in software for a uniprocessor is so efficient it deserves special-casing 5.Transactions for high-level programming languages do not need low-level implementations 6.The cost of strong isolation is in nontransactional barriers and compiler optimizations help a lot

57 17 November 2006Dan Grossman, Software Transactions57 Related work Work at UW complements other pieces of the puzzle… Efficient transaction “engines” in hw, sw, hybrid Semantics of closed, open, parallel nesting Irrevocable actions (e.g., I/O) –We provide and use a pragmatic transaction- aware foreign-function interface [ICFP05]

58 17 November 2006Dan Grossman, Software Transactions58 Credit Uniprocessor: Michael Ringenburg Source-to-source: Benjamin Hindman Barrier-removal: Steven Balensiefer, Kate Moore Memory-model issues: Jeremy Manson, Bill Pugh High-performance strong STM: Tatiana Shpeisman, Vijay Menon, Ali-Reza Adl-Tabatabai, Richard Hudson, Bratin Saha wasp.cs.washington.edu

Download ppt "The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 17 November 2006."

Similar presentations

Design and Implementation Issues for Atomicity Dan Grossman University of Washington Workshop on Declarative Programming Languages for Multicore Architectures.

Design and Implementation Issues for Atomicity Dan Grossman University of Washington Workshop on Declarative Programming Languages for Multicore Architectures.
Transaction Management: Concurrency Control CS634 Class 17, Apr 7, 2014 Slides based on “Database Management Systems” 3 rd ed, Ramakrishnan and Gehrke.

Transaction Management: Concurrency Control CS634 Class 17, Apr 7, 2014 Slides based on “Database Management Systems” 3 rd ed, Ramakrishnan and Gehrke.
Enabling Speculative Parallelization via Merge Semantics in STMs Kaushik Ravichandran Santosh Pande College.

Enabling Speculative Parallelization via Merge Semantics in STMs Kaushik Ravichandran Santosh Pande College.
Goldilocks: Efficiently Computing the Happens-Before Relation Using Locksets Tayfun Elmas 1, Shaz Qadeer 2, Serdar Tasiran 1 1 Koç University, İstanbul,

Goldilocks: Efficiently Computing the Happens-Before Relation Using Locksets Tayfun Elmas 1, Shaz Qadeer 2, Serdar Tasiran 1 1 Koç University, İstanbul,
D u k e S y s t e m s Time, clocks, and consistency and the JMM Jeff Chase Duke University.

D u k e S y s t e m s Time, clocks, and consistency and the JMM Jeff Chase Duke University.
Chapter 6: Process Synchronization

Chapter 6: Process Synchronization
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 6: Process Synchronization.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 6: Process Synchronization.
Programming-Language Approaches to Improving Shared-Memory Multithreading: Work-In-Progress Dan Grossman University of Washington Microsoft Research, RiSE.

Programming-Language Approaches to Improving Shared-Memory Multithreading: Work-In-Progress Dan Grossman University of Washington Microsoft Research, RiSE.
Concurrency 101 Shared state. Part 1: General Concepts 2.

Concurrency 101 Shared state. Part 1: General Concepts 2.
Transactional Memory (TM) Evan Jolley EE 6633 December 7, 2012.

Transactional Memory (TM) Evan Jolley EE 6633 December 7, 2012.
“THREADS CANNOT BE IMPLEMENTED AS A LIBRARY” HANS-J. BOEHM, HP LABS Presented by Seema Saijpaul CS-510.

“THREADS CANNOT BE IMPLEMENTED AS A LIBRARY” HANS-J. BOEHM, HP LABS Presented by Seema Saijpaul CS-510.
Summer School on Language-Based Techniques for Concurrent and Distributed Software Software Transactions: Software Implementations Dan Grossman University.

Summer School on Language-Based Techniques for Concurrent and Distributed Software Software Transactions: Software Implementations Dan Grossman University.
Software Transactions: A Programming-Languages Perspective Dan Grossman University of Washington 28 February 2008.

Software Transactions: A Programming-Languages Perspective Dan Grossman University of Washington 28 February 2008.
The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 8 September 2006.

The Why, What, and How of Software Transactions for More Reliable Concurrency Dan Grossman University of Washington 8 September 2006.
Atomicity via Source-to-Source Translation Benjamin Hindman Dan Grossman University of Washington 22 October 2006.

Atomicity via Source-to-Source Translation Benjamin Hindman Dan Grossman University of Washington 22 October 2006.
My programming-languages view of TM: Research and Conjectures Dan Grossman University of Washington June 2008.

My programming-languages view of TM: Research and Conjectures Dan Grossman University of Washington June 2008.
Software Transactions: A Programming-Languages Perspective Dan Grossman University of Washington 27 March 2008.

Software Transactions: A Programming-Languages Perspective Dan Grossman University of Washington 27 March 2008.
CS510 Advanced OS Seminar Class 10 A Methodology for Implementing Highly Concurrent Data Objects by Maurice Herlihy.

CS510 Advanced OS Seminar Class 10 A Methodology for Implementing Highly Concurrent Data Objects by Maurice Herlihy.
Programming Language Semantics Java Threads and Locks Informal Introduction The Java Specification Language Chapter 17.

Programming Language Semantics Java Threads and Locks Informal Introduction The Java Specification Language Chapter 17.
CS510 Concurrent Systems Class 2 A Lock-Free Multiprocessor OS Kernel.

CS510 Concurrent Systems Class 2 A Lock-Free Multiprocessor OS Kernel.

Similar presentations

Ads by Google