From: "Dmitry A. Kazakov" <mailbox@dmitry-kazakov.de>
Subject: Re: Launching background job from Ada.Real_Time.Timing_Events
Date: Fri, 3 Jun 2016 14:15:57 +0200
Date: 2016-06-03T14:15:57+02:00 [thread overview]
Message-ID: <nirseu$2rj$1@gioia.aioe.org> (raw)
In-Reply-To: nirkmf$np9$1@dont-email.me
On 03/06/2016 12:03, Alejandro R. Mosteo wrote:
> On 03/06/16 09:26, Dmitry A. Kazakov wrote:
>> On 02/06/2016 23:25, Alejandro R. Mosteo wrote:
>>
>>> I'm sorry but I don't follow your explanation. To make things simpler,
>>> let's consider only the 1-to-1 case. How's this protected used without a
>>> blocking operation?
>>
>> If you have FIFO, a lock-free implementation is a buffer with one read
>> and one write index (mod buffer length). The read index never advances
>> beyond the write index. Reader updates the read index and looks at the
>> write index, and conversely the writer. Indices must have pragma Atomic,
>> and the buffer not cached. For example:
>>
>> http://www.dmitry-kazakov.de/ada/components.htm#10.1.1
>
> Thanks, I was unsure if you referred to using a lock-free data type, or
> if it could be trivially done with the standard Ada containers with some
> well-known pattern I was ignorant of.
Yes, but the larger point was that using a standard container protected
by either a monitor task or else by a protected interlocking object is
IMO a better design that a specialized container in a protected object.
> I'll take a look at your library, I'm very interested in lock-free
> containers.
>
> A friend working on hardware architectures recently told me that a
> widely-used lock-free library (in the c++ world) had been proven with
> SPARK-like methods to be buggy. Alas, I can't remember names/dates.
That is quite possible, however I don't know what technique they used
for making proofs. It is much about the semantics of the language
constructs in presence of concurrent access. I am not sure about so many
things even in Ada. I can imagine proving an implementation wrong, but
the reverse might be exceptionally tricky. I remember reading some
papers about this stuff, that used formal mathematical proofs, it was
very complicated. I believe one could use a brute-force enumeration of
possible accesses in some simulated time for making the proof in SPARK
environment.
--
Regards,
Dmitry A. Kazakov
http://www.dmitry-kazakov.de
prev parent reply other threads:[~2016-06-03 12:15 UTC|newest]
Thread overview: 13+ messages / expand[flat|nested] mbox.gz Atom feed top
2016-05-24 14:22 Launching background job from Ada.Real_Time.Timing_Events Alejandro R. Mosteo
2016-05-24 14:39 ` Mark Lorenzen
2016-05-24 15:06 ` Alejandro R. Mosteo
2016-05-24 22:21 ` Jeffrey R. Carter
2016-06-02 21:13 ` Alejandro R. Mosteo
2016-06-02 23:16 ` Jeffrey R. Carter
2016-05-24 23:52 ` Jeffrey R. Carter
2016-06-02 21:22 ` Alejandro R. Mosteo
2016-05-25 7:23 ` Dmitry A. Kazakov
2016-06-02 21:25 ` Alejandro R. Mosteo
2016-06-03 7:26 ` Dmitry A. Kazakov
2016-06-03 10:03 ` Alejandro R. Mosteo
2016-06-03 12:15 ` Dmitry A. Kazakov [this message]
replies disabled
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox