Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Avoid re-using register in ticketlock #514

Merged
merged 3 commits into from
Sep 21, 2023
Merged

Avoid re-using register in ticketlock #514

merged 3 commits into from
Sep 21, 2023

Conversation

hernanponcedeleon
Copy link
Owner

The idea of the final condition is to check that each lock reads a different ticket. While I think in a correct implementation, we would still check original-read-r1-T0 + != original-read-r1-T1, I don't think this is guaranteed if the mutual exclusion does not hold.

This PR solves the issue by simply using a fresh register for the release store.

@hernan-poncedeleon
Avoid re-using register in ticketlock
9d18612 
Signed-off-by: Hernan Ponce de Leon <hernanl.leon@huawei.com>
@hernan-poncedeleon
Really fresh register
0bc28d4 
Signed-off-by: Hernan Ponce de Leon <hernanl.leon@huawei.com>
@ThomasHaas
Copy link
Collaborator

I don't really see a big difference in the new and the old code. In both cases, 0:r1 != 1:r1 simply by atomicity of the RMW instructions (i.e., you do not even need to care about proper synchronisation). So the condition that both are different is trivially satisfied I would say.
Anyway, that means this PR is fine :)

@hernanponcedeleon
Copy link
Owner Author

You are right that the first two conditions are trivially satisfied. I now know what confused me. Initially I only had the conditions about the critical sections and even the correct code was failing. This is because one thread could acquire the lock and the other fails. Since the initial code of registers matches what I was expecting not to be read from x, then it was possible to match the final state.

I added these extra conditions to try to force that each lock acquire succeeds (this could also be solved if the initial value of x would be different than the initial value of registers), but the condition is wrong.
The correct query should be exists (P0:r1 == P0:r2 /\ P1:r1 == P1:r2 /\ P0:r3 == 0 /\ P1:r3 == 0).

I will update this.

@hernan-poncedeleon
Force both lock acquires to succeed
0406ffa 
Signed-off-by: Hernan Ponce de Leon <hernanl.leon@huawei.com>
@ThomasHaas
Copy link
Collaborator

I see. I think this is because we evaluate litmus assertions even for executions that do not terminate properly.
I guess the way litmus assertions are intended, they should never get evaluated for incomplete executions, i.e., those that hit bound events or are stuck in spinloops.
We could modify our assertion encoding for litmus so as to only consider complete executions and then you wouldn't need to those lock acquisition conditions anymore.

@hernanponcedeleon
Copy link
Owner Author

That is orthogonal to the changes in here. I'll tackle that problem in a different PR.

@ThomasHaas
Copy link
Collaborator

Of course. You can go ahead and merge.

@hernanponcedeleon hernanponcedeleon merged commit 2be80b3 into development Sep 21, 2023
1 check passed
@hernanponcedeleon hernanponcedeleon deleted the fix-ticketlock branch September 21, 2023 13:30
@hernanponcedeleon hernanponcedeleon mentioned this pull request Sep 25, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ThomasHaas ThomasHaas ThomasHaas approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@hernanponcedeleon @ThomasHaas @hernan-poncedeleon