/*
* Lamport non-atomic #1
* =====================
*
* Lamport mutual exclusion protocol with nonatomic operations.
*
* *tags*: mutual exclusion, C++98
*
* Description
* -----------
*
* This program implements the Lamport's One-Bit mutual exclusion algorithm and
* alongside with that simulates a computational environment in which execution
* of an operation on a shared variable has its duration and may be concurrent.
* For the One-bit algorithm it is sufficient to consider single-writer nonatomic
* shared variables only. If a write of a communication variable is concurrent with
* another operation on that same variable, then the other operation must be a read.
* A read of a shared variable that is concurrent with a write of the same variable
* is allowed to return any value from the domain of the variable. A read that does
* not overlap such a write simply returns the variable's current value.
*
* Non-determinism caused by non-atomicity Lamport reduced simply by using only
* one-bit long shared variables as well as skipping redundant writes (the new value
* is the same as the old one) wherever possible.
*
* The One-Bit algorithm ensures exclusion using the *Wait-Die scheme*. Higher-priority
* thread (thread with lower id) waits for lower-priority thread, but in order to
* break a symmetry and hence prevent from deadlock, thread with lower priority
* dies if some higher-priority thread is also attempting to enter the critical
* section. But when compiled with macro `BUG` defined, thread with lower priority
* doesn't die properly and may cause deadlock.
*
* Unfortunately, the algorithm is not starvation-free, because an unfortunate
* process can wait for an infinitely long time as processes of lower index repeatedly
* execute their critical sections (for solution see lamport_nonatomic2.cpp).
*
* ### References: ###
*
* 1. The mutual exclusion problem: partII -- statement and solutions.
*
* @article{
* Lamport:1986:MEP:5383.5385,
* author = {Lamport, Leslie},
* title = {The mutual exclusion problem: partII -- statement and solutions},
* journal = {J. ACM},
* issue_date = {April 1986},
* volume = {33},
* number = {2},
* month = apr,
* year = {1986},
* issn = {0004-5411},
* pages = {327--348},
* numpages = {22},
* publisher = {ACM},
* address = {New York, NY, USA},
* }
*
* Parameters
* ----------
*
* - `BUG`: if defined than the algorithm is incorrect and violates the deadlock-free property
* - `NUM_OF_THREADS`: a number of threads requesting to enter the critical section
*
* LTL Properties
* --------------
*
* - `progress`: if a thread requests to enter a critical section, it will eventually be allowed to do so
* - `exclusion`: critical section can only be executed by one process at a time
*
* Verification
* ------------
*
* - all available properties with the default values of parameters:
*
* $ divine compile --llvm lamport_nonatomic1.cpp
* $ divine verify -p assert lamport_nonatomic1.bc -d
* $ divine verify -p safety lamport_nonatomic1.bc -d
* $ divine verify -p progress lamport_nonatomic1.bc --fair -d
* $ divine verify -p exclusion lamport_nonatomic1.bc -d
*
* - introducing a bug:
*
* $ divine compile --llvm --cflags="-DBUG" lamport_nonatomic1.cpp -o lamport_nonatomic1-bug.bc
* $ divine verify -p safety lamport_nonatomic1-bug.bc -d
*
* - customizing the number of threads:
*
* $ divine compile --llvm --cflags="-DNUM_OF_THREADS=5" lamport_nonatomic1.cpp
* $ divine verify -p progress lamport_nonatomic1.bc --fair -d
* $ divine verify -p exclusion lamport_nonatomic1.bc -d
*
* Execution
* ---------
*
* $ clang++ -lpthread -o lamport_nonatomic1.exe lamport_nonatomic1.cpp
* $ ./lamport_nonatomic1.exe
*/
#ifndef NUM_OF_THREADS
#define NUM_OF_THREADS 2
#endif
#include <pthread.h>
#include <stdlib.h>
#include <assert.h>
#ifdef __divine__ // verification
#include "divine.h"
LTL(progress, G(wait0 -> F(critical0in)) && G(wait1 -> F(critical1in)));
LTL(exclusion, G((critical0in -> (!critical1in W critical0out)) && (critical1in -> (!critical0in W critical1out))));
#else // native execution
#define AP( x )
#define __divine_choice( x ) ( rand() % ( x ) )
#endif
enum APs { wait0, critical0in, critical0out, wait1, critical1in, critical1out };
volatile int _critical = 0;
void critical() {
assert( !_critical );
_critical = 1;
assert( _critical );
_critical = 0;
}
struct NonAtomicBit {
bool bit;
int state;
bool read() {
if ( state != -1 )
return ( __divine_choice( 2 ) == 1 );
return bit;
}
void write( bool value ) {
state = value;
bit = ( state == 1 );
state = -1;
}
NonAtomicBit () : bit( 0 ), state( -1 ) {}
};
NonAtomicBit entering[NUM_OF_THREADS];
void *thread( void *arg ) {
long id = reinterpret_cast< long >( arg );
int i;
if ( id == 0 )
AP( wait0 );
if ( id == 1 )
AP( wait1 );
Start:
entering[id].write( true );
for ( i = 0; i < id; i++ )
if ( entering[i].read() ) {
// Die (in the terminology of the Wait-Die scheme).
#ifndef BUG
// Without this line a deadlock can occur.
entering[id].write( false );
#endif
while ( entering[i].read() );
goto Start;
}
for ( i = id+1; i < NUM_OF_THREADS; i++ )
// Wait for the lower priority thread to get inactive.
while ( entering[i].read() );
// The critical section goes here...
if ( id == 0 )
AP( critical0in );
if ( id == 1 )
AP( critical1in );
critical();
if ( id == 0 )
AP( critical0out );
if ( id == 1 )
AP( critical1out );
// Leave the critical section.
entering[id].write( false );
return NULL;
}
int main() {
pthread_t threads[NUM_OF_THREADS];
for ( int i = 0; i < NUM_OF_THREADS; i++ ) {
pthread_create( &threads[i], 0, thread, reinterpret_cast< void* >( i ) );
}
for ( int i = 0; i < NUM_OF_THREADS; i++ ) {
pthread_join( threads[i], NULL );
}
return 0;
}