Implement Mutex::try_lock
#71
Conversation
There was a problem hiding this comment.
I think all the broken tests are because we have an extra yield point now, so existing schedules don't replay (in which case we should bump the minor version on the next release) and some of the tests that count context switches are now wrong.
This extra yield point also makes the clock_condvar_notify_all_dfs test extremely slow; wonder if we can do something about that.
I fixed all tests.
I just did an experiment on my local machine. On the current main branch, |
bkragl
force-pushed
the
try_lock
branch
2 times, most recently
from
210b857
to
ca23ea6
Compare
src/sync/mutex.rs
Outdated
|
|
||
| // Update the vector clock stored in the Mutex, because future threads that manage to | ||
| // acquire the lock have a causal dependency on this failed `try_lock`. | ||
| ExecutionState::with(|s| state.clock.update(s.get_clock(me))); |
There was a problem hiding this comment.
I just realized that I had made an implicit optimization with vector clock updates. When a thread successfully acquires a lock (using lock()), it does not update the Mutex's clock with its own clock at the time of acquisition. This was fine in the absence of try_lock, as all other threads would be blocked anyway. But with try_lock, the Mutex's clock has to be updated with the thread's clock in both the else branch below (line 142) and in the lock() call above (line 103).
There was a problem hiding this comment.
In try_lock that update was already done in the successful case, so I factored it out from the if branch to be done in both cases.
| /// T0 blocks). The following computation tree illustrates all interleavings. | ||
| /// | ||
| /// ``` | ||
| /// digraph G { |
Without `try_lock` it was easier to justify context switches, because acquire was a right mover (we only needed a context switch before) and release was a left mover (we only needed a context switch after). However, with `try_lock` that is not the case anymore. This commit argues why we need a context switch at the end of `lock` and `try_lock` (both in the success and failure case), and why we do not need a context switch at the beginning of `try_lock` and `MutexGuard::drop`.
src/sync/mutex.rs
Outdated
| // Note that we only need a context switch when we are blocked, but not if the lock is | ||
| // available. Consider that there is another thread `t` that also wants to acquire the | ||
| // lock. At the last context switch (where we were chosen), `t` must have been already | ||
| // runnable and could have been chosen by the scheduler instead. Also, if we want to | ||
| // re-acquiring the lock immediately after having it released, we know that the release | ||
| // had a context switch that allowed other threads to acquire in between. |
There was a problem hiding this comment.
With this change I think we can move self.waiters.insert(me) above into the branch, and that probably lends itself to a cleaner way to handle the state here.
Also, is it true that if we don't enter this branch, then state.waiters == {me} (or {} if you move that insert)? Maybe we should assert that invariant.
src/sync/mutex.rs
Outdated
| // runnable and could have been chosen by the scheduler instead. Also, if we want to | ||
| // re-acquiring the lock immediately after having it released, we know that the release |
There was a problem hiding this comment.
| // runnable and could have been chosen by the scheduler instead. Also, if we want to | |
| // re-acquiring the lock immediately after having it released, we know that the release | |
| // runnable and could have been chosen by the scheduler instead. Also, if we want to | |
| // re-acquire the lock immediately after releasing it, we know that the release |
tests/basic/condvar.rs
Outdated
|
|
||
| #[test] | ||
| #[should_panic(expected = "nothing to get")] | ||
| fn replay_roducer_consumer_broken1() { |
There was a problem hiding this comment.
| fn replay_roducer_consumer_broken1() { | |
| fn replay_producer_consumer_broken1() { |
tests/basic/condvar.rs
Outdated
|
|
||
| #[test] | ||
| #[should_panic(expected = "deadlock")] | ||
| fn replay_roducer_consumer_broken2() { |
There was a problem hiding this comment.
| fn replay_roducer_consumer_broken2() { | |
| fn replay_producer_consumer_broken2() { |
tests/basic/mutex.rs
Outdated
| add_thread.join().unwrap(); | ||
| mul_thread.join().unwrap(); | ||
|
|
||
| let value = *lock.try_lock().unwrap(); |
There was a problem hiding this comment.
might be slightly more idiomatic/explicit to do
let value = Arc::try_unwrap(lock).unwrap().into_inner().unwrap();(and same thing in the other tests) -- we're not trying to test anything about try_lock here
tests/basic/mutex.rs
Outdated
| #[test] | ||
| #[should_panic(expected = "tried to acquire a Mutex it already holds")] | ||
| fn double_lock() { | ||
| check(|| { |
There was a problem hiding this comment.
trying to get rid of the round-robin scheduler:
| check(|| { | |
| check_dfs(|| { |
tests/basic/mutex.rs
Outdated
|
|
||
| #[test] | ||
| fn double_try_lock() { | ||
| check(|| { |
There was a problem hiding this comment.
| check(|| { | |
| check_dfs(|| { |
Without
try_lockit was easier to justify context switches, becauseacquire was a right mover (we only needed a context switch before) and
release was a left mover (we only needed a context switch after).
However, with
try_lockthat is not the case anymore. This commitargues why we need a context switch at the end of
lockandtry_lock(both in the success and failure case), and why we do not need a context
switch at the beginning of
try_lockandMutexGuard::drop.By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.