Kill-safe synchronization abstractions

Matthew Flatt; Robert Bruce Findler

doi:10.1145/996893.996849

Kill-safe synchronization abstractions

Matthew Flatt^*, Robert Bruce Findler

^*Corresponding author for this work

Computer Science

Research output: Contribution to journal › Article › peer-review

7 Scopus citations

Abstract

When an individual task can be forcefully terminated at any time, cooperating tasks must communicate carefully. For example, if two tasks share an object, and if one task is terminated while it manipulates the object, the object may remain in an inconsistent or frozen state that incapacitates the other task. To support communication among terminable tasks, language run-time systems (and operating systems) provide kill-safe abstractions for inter-task communication. No kill-safe guarantee is available, however, for abstractions that are implemented outside the run-time system. In this paper, we show how a run-time system can support new kill-safe abstractions without requiring modification to the run-time system, and without requiring the run-time system to trust any new code. Our design frees the run-time implementor to provide only a modest set of synchronization primitives in the trusted computing base, while still allowing tasks to communicate using sophisticated abstractions.

Original language	English (US)
Pages (from-to)	47-58
Number of pages	12
Journal	ACM SIGPLAN Notices
Volume	39
Issue number	6
DOIs	https://doi.org/10.1145/996893.996849
State	Published - Jun 2004

Keywords

Design
Languages

ASJC Scopus subject areas

Software
Computer Graphics and Computer-Aided Design

Access to Document

10.1145/996893.996849

Cite this

@article{7cdea00610374b56b404d6d544d5a947,

title = "Kill-safe synchronization abstractions",

abstract = "When an individual task can be forcefully terminated at any time, cooperating tasks must communicate carefully. For example, if two tasks share an object, and if one task is terminated while it manipulates the object, the object may remain in an inconsistent or frozen state that incapacitates the other task. To support communication among terminable tasks, language run-time systems (and operating systems) provide kill-safe abstractions for inter-task communication. No kill-safe guarantee is available, however, for abstractions that are implemented outside the run-time system. In this paper, we show how a run-time system can support new kill-safe abstractions without requiring modification to the run-time system, and without requiring the run-time system to trust any new code. Our design frees the run-time implementor to provide only a modest set of synchronization primitives in the trusted computing base, while still allowing tasks to communicate using sophisticated abstractions.",

keywords = "Design, Languages",

author = "Matthew Flatt and Findler, {Robert Bruce}",

year = "2004",

month = jun,

doi = "10.1145/996893.996849",

language = "English (US)",

volume = "39",

pages = "47--58",

journal = "ACM SIGPLAN Notices",

issn = "0362-1340",

publisher = "Association for Computing Machinery (ACM)",

number = "6",

}

TY - JOUR

T1 - Kill-safe synchronization abstractions

AU - Flatt, Matthew

AU - Findler, Robert Bruce

PY - 2004/6

Y1 - 2004/6

N2 - When an individual task can be forcefully terminated at any time, cooperating tasks must communicate carefully. For example, if two tasks share an object, and if one task is terminated while it manipulates the object, the object may remain in an inconsistent or frozen state that incapacitates the other task. To support communication among terminable tasks, language run-time systems (and operating systems) provide kill-safe abstractions for inter-task communication. No kill-safe guarantee is available, however, for abstractions that are implemented outside the run-time system. In this paper, we show how a run-time system can support new kill-safe abstractions without requiring modification to the run-time system, and without requiring the run-time system to trust any new code. Our design frees the run-time implementor to provide only a modest set of synchronization primitives in the trusted computing base, while still allowing tasks to communicate using sophisticated abstractions.

AB - When an individual task can be forcefully terminated at any time, cooperating tasks must communicate carefully. For example, if two tasks share an object, and if one task is terminated while it manipulates the object, the object may remain in an inconsistent or frozen state that incapacitates the other task. To support communication among terminable tasks, language run-time systems (and operating systems) provide kill-safe abstractions for inter-task communication. No kill-safe guarantee is available, however, for abstractions that are implemented outside the run-time system. In this paper, we show how a run-time system can support new kill-safe abstractions without requiring modification to the run-time system, and without requiring the run-time system to trust any new code. Our design frees the run-time implementor to provide only a modest set of synchronization primitives in the trusted computing base, while still allowing tasks to communicate using sophisticated abstractions.

KW - Design

KW - Languages

UR - http://www.scopus.com/inward/record.url?scp=4544326195&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=4544326195&partnerID=8YFLogxK

U2 - 10.1145/996893.996849

DO - 10.1145/996893.996849

M3 - Article

AN - SCOPUS:4544326195

SN - 0362-1340

VL - 39

SP - 47

EP - 58

JO - ACM SIGPLAN Notices

JF - ACM SIGPLAN Notices

IS - 6

ER -

Kill-safe synchronization abstractions

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this