Process synchronization in Linux Kernel

Synchronization Primitives
Summary of Synchronization Primitives
Per-CPU variables
Atomic Operations
Optimization Barriers & Memory Barriers
Semaphores
Spin Locks
- Read/Write Spin Locks
SeqLocks
Read Copy Update (RCU)

As we have discussed earlier about process synchronization, lets discuss about process synchronization primitives offered in Linux Kernel.

This blog is summary of this article

Synchronization Primitives

Per-CPU variables
Atomic Operation
Memory barrier
Spin Lock
Semaphore
SeqLocks
Local Interrupt disabling
Local softirq disabling
Read-Copy-Update

Summary of Synchronization Primitives

Technique	Description	Scope
Per-CPU variables	Duplicate a data structure among the CPUs	`All CPUs`
Atomic operation	Atomic read-modify-write instruction to a counter	`All CPUs`
Memory barrier	Avoid instruction reordering	`Local CPU` or `All CPUs`
Spin lock	Lock with busy wait	`All CPUs`
Semaphore	Lock with blocking wait (sleep)	`All CPUs`
Seqlocks	Lock based on an access counter	`All CPUs`
Local interrupt disabling	Forbid interrupt handling on a single CPU	`Local CPU`
Local softirq disabling	Forbid deferrable function handling on a single CPU	`Local CPU`
Read-copy-update (RCU)	Lock-free access to shared data structures through pointers	`All CPUs`

Per-CPU variables

The best synchronization technique consists in designing the kernel so as to avoid the need for synchronization in the first place.

Basically, a per-CPU variable is an array of data structures, one element per each CPU in the system.

A CPU should not access the elements of the array corresponding to the other CPUs.

Pros

Freely read and modify its own element without fear of race conditions.
It avoids cache line snooping and invalidations, which are costly operations.

Snooping and Invalidations - Snooping is the process where the individual caches monitor address lines, for accesses to memory locations that they have cached. When a write operation is observed to a location that a cache has a copy of, the cache controller invalidates its own copy of the snooped memory location.

Cons

It can only be used when it make sense to logically split the data across the CPUs of the system
Do not provide protection against access from asynchronous functions such as interrupt handlers and deferrable functions.
Per-CPU variables are variables are prone to race conditions caused by kernel preemption, both in uniprocessor and multiprocessor systems.

Problem What would happen if a kernel control path gets the address of its local copy of a per-CPU variable, and then it is preempted and moved to another CPU: the address still refers to the element of the previous CPU.

As a general rule, a kernel control path should access a per-CPU variable with kernel preemption disabled.

Atomic Operations

Problem Several assembly language instructions are of type “read-modify-write” i.e. memory location is accessed twice first to read the old value and second time to write a new value

Detailed explanation
Suppose that two kernel control paths running on two CPUs try to “read-modify-write” the same memory location at the same time by executing nonatomic operations.
At first, both CPUs try to read the same location, but the memory arbiter (a hardware circuit that serializes accesses to the RAM chips) steps in to grant access to one of them and delay the other. However, when the first read operation has completed, the delayed CPU reads exactly the same (old) value from the memory location. Both CPUs then try to write the same (new) value to the memory location; again, the bus memory access is serialized by the memory arbiter, and eventually both write operations succeed. However, the global result is incorrect because both CPUs write the same (new) value. Thus, the two interleaving “read-modify-write” operations act as a single one.

Solution Reason for problem here is that Both CPU’s try to access memory location at the same time. If operation of “read-modify-write” can be made atomic then problem would be solved i.e. Every such operation must be executed in a single instruction without being interrupted in the middle and avoiding accesses to the same memory location by other CPUs.

Read-modify-write assembly language instructions are atomic if no other processor has taken the memory bus after the read and before the write. Memory bus stealing never happens in a uniprocessor system.
For multiprocessor system, Read-modify-write assembly language instructions whose opcode is prefixed by the Lock Byte (0xf0) are atomic.
Other processors cannot access the memory location while the locked instruction is being executed.

Sample functions: atomic-read(v), atomic-set(v,i), atomic-add(i,v), atomic-sub(i,v) etc…

Optimization Barriers & Memory Barriers

Compilers optimize the code for efficient usage of CPU time and memory but this optimizations could be disastrous sometimes when dealing with shared data.

It can never be guaranteed that instructions will be performed in the same order in which they appear in source code mainly because reordering by compiler to optimize and CPU executing several instructions in parallel. This might lead to reordering of memory access patterns.

To avoid this behavior we need a synchronization primitive at two levels

Synchronization primitive at Compiler level - Optimization barrier
Synchronization primitive at CPU level - Memory barrier

In linux barrier() macro acts as an optimization barrier.

Optimization barrier primitive ensures that assembly language instructions of C statements mentioned before barrier() and assembly language instructions of C statements mentioned after, remains in the same sequence.

But, Optimization barrier cannot control in which fashion instructions will be executed by CPU.

A memory barrier primitive ensures that the operations placed before the primitive are finished before starting the operations placed after the primitive. Read memory barrier act only on instructions that read from memory, while Write memory barriers act only on instructions that write to memory.

Semaphores

Please visit Semaphore Page

Spin Locks

When a kernel control path must access a shared data structure or enter a critical section it need to acquire a lock.
Spin Locks are a special kind of lock designed to work in a multiprocessor environment.

If kernel control path finds Spin Lock Open it acquires the lock and continue execution else it Spin around repeatedly executing tight instruction loop, until the lock is released.

The waiting kernel control path keeps running on the CPU, even if it has nothing to do besides waste time. Kernel preemption is disabled in CR protected by Spin Locks. Spin locks are usually convenient, because many kernel resources are locked for a fraction of a millisecond only; therefore, it would be far more time-consuming to release the CPU and reacquire it later.
Kernel preemption is still enabled during the busy wait phase, thus a process waiting for a spin lock to be released could be replaced by a higher priority process.

Macro	Description
spin-lock-init()	Set the spin lock to 1 (unlocked)
spin-lock()	Cycle until spin lock becomes 1 (unlocked), then set it to 0 (locked)
spin-unlock()	Set the spin lock to 1 (unlocked)
spin-unlock-wait()	Wait until the spin lock becomes 1 (unlocked)
spin-is-locked()	Return 0 if the spin lock is set to 1 (unlocked); 1 otherwise
spin-trylock()	Set the spin lock to 0 (locked), and return 1 if the previous value of the lock was 1; 0 otherwise

Spin Lock with kernel preemption

 1//Invokes preempt-disable() to disable kernel preemption.
 2
 3; Intel syntax
 4
 5locked:                      ; The lock variable. 1 = locked, 0 = unlocked.
 6dd      0
 7
 8spin-lock:
 9mov     eax(new), 1     ; Set the EAX register to 1.
10
11xchg    eax(new), [locked]
12; Atomically swap the EAX register with
13;  the lock variable.
14; This will always store 1 to the lock, leaving
15;  previous value in the EAX register.
16
17test    eax(new), eax(prev)
18; Test EAX with itself. Among other things, this will
19;  set the processor's Zero Flag if EAX is 0.
20; If EAX is 0, then the lock was unlocked and
21;  we just locked it.
22; Otherwise, EAX is 1 and we didn't acquire the lock.
23
24//   Enable kernel preemption preempt-enable() 
25
26jnz     spin-lock       ; Jump back to the MOV instruction if the Zero Flag is
27;  not set; the lock was previously locked, and so
28; we need to spin until it becomes unlocked.
29
30ret                     ; The lock has been acquired, return to the calling
31;  function.
32
33spin-unlock:
34mov     eax, 0          ; Set the EAX register to 0.
35
36xchg    eax, [locked]   ; Atomically swap the EAX register with
37;  the lock variable.
38
39ret                     ; The lock has been released.

In case of kernel preemption, the first step is to disable kernel preemption, preempt-disable() In the above example Lock is 1 and Unlock is 0

In EAX register we push “1” as we wish to acquire lock.
xchg command will exchange value from EAX register to lock variable but not vice versa. So by step 2, EAX register has value of “1” and lock variable also has value of “1”. This is an atomic operation.
Step 3, test or validate the current value of lock. If current value of lock(EAX prev) is “1“ i.e. processor zero flag is already set, hence lock is not available.
Enable kernel preemption and Jump(Spin) back.
In Step 3, if current value of lock (EAX prev) is “0” then set it with “1” i.e. Lock has been acquired.

It might happen that process can spin for a long time. If the break-lock field is set then owning process can learn whether there are other processes waiting for the lock. It may decide to release it prematurely to allow other processes.

Read/Write Spin Locks

Read Spin Locks is used to increase the concurrency within kernel.

Idea is that allow several kernel control path to access same data structure for “Read” using Read Spin Locks. No kernel control path can modify the data structure using Read Spin Locks.

To modify shared data structure kernel control path needs to acquire Write Spin Locks. Write Spin Lock is granted when no kernel control path have Read Spin Locks.

Reader and Writer Spin Locks have same priority in this case.

SeqLocks

In Read/Write spin locks reader and write have same priority. Reader must wait until the writer has finished and vice versa.

SeqLocks are similar to read/write locks except that they give a much higher priority to writers: in fact a writer is allowed to proceed even when readers are active.

Writer never waits but reader may be forced to read the data several times until it get valid copy. Each reader must read sequence counter twice i.e. before and after reading the data and then check whether sequence counter values are same. If its not equal then it means that writer must has become active and has increased the sequence counter, thus implicitly telling the reader that the data just read is not valid.

Every time writer acquire and release sequence lock it must increment sequence counter. When counter is odd means writer is in progress and when counter is even means writer is done.
When a reader enters a critical region, it does not need to disable kernel preemption; on the other hand, the writer automatically disables kernel preemption when entering the critical region, because it acquires the spin lock.

SeqLocks must not be used for

The data structure to be protected does not include pointers that are modified by the writers and dereferenced by the readers (otherwise, a writer could change the pointer under the nose of the readers)
The code in the critical regions of the readers does not have side effects (otherwise, multiple reads would have different effects from a single read)

Read Copy Update (RCU)

This technique is designed to protect data structures that are mostly accessed for reading by several CPUs.
The key idea consists of limiting the scope of RCU as follows:

Only data structures that are dynamically allocated and referenced by means of pointers can be protected by RCU.
No kernel control path can sleep inside a critical region protected by RCU.

Writer

When a writer wants to update the data structure, it dereferences the pointer and makes a copy of the whole data structure.
Next, the writer modifies the copy.
Once finished, the writer changes the pointer to the data structure so as to make it point to the updated copy.

Because changing the value of the pointer is an atomic operation, each reader or writer sees either the old copy or the new one: no corruption in the data structure may occur.

Memory barrier is required to ensure that the updated pointer is seen by the other CPUs only after the data structure has been modified.

Spin lock is coupled with RCU to forbid the concurrent execution of writers.

Problem Old copy of the data structure cannot be freed right away when the writer updates the pointer. In fact, the readers that were accessing the data structure when the writer started its update could still be reading the old copy. The old copy can be freed only after all (potential) readers on the CPUs have executed.