Use “thread” rather than “process” #122
Conversation
|
Whilst there is room for improvement in the wording here, I don't entirely agree with this change. Conceptually, at least (it may be different in environments where memory is flat-mapped with a single page mapping shared by all processes), a process consists of one or more threads of execution. Threads may either execute concurrently (on multiple compute elements in the system) or serially (being switched under the control of an operating system). With the exception of the stack and thread-local storage the memory is managed and shared across all threads of the process. I don't think it makes sense to say that the heap is managed by a thread - it's managed across the entire process. Stack and thread-local data are /normally/ private to the thread, but a thread may export the addresses of certain objects to other threads, provided that it can guarantee that the contents of those objects exists and is stable at the times that other threads might access it. |
|
Of course, there is also 'shared memory': memory that is shared by two or more processes. How such sharing is done is, I think, beyond the scope of the AAPCS and into the realms of platform-specific behaviour. |
Yeah, the new wording was trying to capture that (but clearly failed :-)). The claim wasn't that the thread “owns” these areas of memory in any sense, or that they're private to the thread. It was just that a thread (potentially) has access to these areas of memory. That's why it says:
The point with the second sentence is that, if thread T1 shares a stack object S with thread T2, S is not part of stack memory from T2's point of view. The distinction is important because of the later requirements about which stack addresses a thread/process is allowed to access. If we said that S was in “stack memory” even from T2's point of view, an access to S would be out of bounds (and so invalid) for T2. So it feels like we might be saying the same thing, but in different ways. Like you say, there are a few possible variations, and I don't think it's really up to the PCS to define exactly which memory is shared between threads in a process or between processes in a running system, beyond the requirement that the area of memory designated to be stack memory is specific to each thread. E.g. there's no reason in principle to exclude FDPIC-like models, where code is shared between processes. |
rsandifo-arm
force-pushed
the
threads-and-processes
branch
2 times, most recently
from
8fb21a8
to
bd3c780
Compare
|
Hi @rearnsha. I've (very belatedly) tried to address your concerns in the updated version of the patch. How does this version look? |
The AAPCS64 uses “process” as a cover-all term for “thread
or process”:
The AAPCS64 applies to a single thread of execution or
process (hereafter referred to as a process).
However, SME adds a register called TPIDR2_EL0 that forms an
important part of the SME PCS. The “T” in TPIDR2_EL0 stands
for “thread”, so it seemed incongruous to use “process” when
describing its role in the PCS.
This preliminary patch therefore tries to avoid treating
“thread” and “process” as synonymous. Since the exact
nature of threads and processes depends on the platform,
the patch tries to give a flexible definition.
Two later parts of the PCS refer specifically to processes:
- “Universal stack constraints”, when describing the parts of stack
memory that can be safely accessed. These restrictions apply to
the program generally (wrt a given thread's stack and SP), so the
patch uses “conforming program” instead of “thread”. This is also
the term used in:
A conforming program must only execute instructions that are in
areas of memory designated to contain code.
- The section on interworking. These restrictions specifically apply
at the process level rather than just the thread level, so the patch
leaves the wording unchanged.
rsandifo-arm
force-pushed
the
threads-and-processes
branch
from
18def22
to
91c74fa
Compare
|
I've rebased onto #79 and tweaked the wording around the stack a bit more. |
|
@rearnsha, are you now happy with this pull request, after the latest changes of @rsandifo-arm? |
aapcs64/aapcs64.rst
Outdated
| operating system. If the platform supports multiple processes but has | ||
| no separate concept of threads, “thread” is synonymous with “process”. | ||
| If a platform has no concurrency or preemption then it will generally | ||
| have a single “thread” and “process” that executes all instructions. |
There was a problem hiding this comment.
Avoid using quotation marks for emphasis - see Writing Guide https://confluence.arm.com/display/TCOM/Avoid+formatting+for+emphasis
There was a problem hiding this comment.
I wasn't really intending to use quotes for emphasis here. This paragraph is trying to define what the ABI means by the terms “thread” and “process” (sometimes in circumstances where the concept of thread and process might seem unnatural).
There was a problem hiding this comment.
In this case - I would just use the quotes in the first instance of the term in in the paragraph.
There was a problem hiding this comment.
Dropping the quotes later would lead to things like:
thread and process generally have their usual meanings for that operating system
which might be quite hard to parse. It would be less clear that the text is referring to the word/term “thread” rather than to an actual thread.
Perhaps this just shows that I should reword the whole pararaph :-)
There was a problem hiding this comment.
Elsewhere in this document we've used capitalization for defined terms, for example 'Composite Type' (although after multiple rounds of editing that's perhaps become a bit inconsistent).
Another alternative would be to simply move the definitions into the glossary of terms at the start of the document and then take the definitions as read at this point. That would only work in this case if the terms are used consistently throughout the document and if the definitions can be kept fairly succinct.
There was a problem hiding this comment.
I'd rather keep the paragraph here. But I've tried to reword it to avoid excessive quoting.
rsandifo-arm
force-pushed
the
threads-and-processes
branch
from
ff8a5f9
to
9070dab
Compare
Thanks for the reviews! I was originally trying to keep the existing wording as much as possible, because I was worried about over-editorialising. But a lot of the suggestions seem uncontroversial, so I've pushed an update with them included. The “may” vs. “might” thing is trickier though. I think we need to take an action to go through the doc and make a coordinated attempt to remove uses of “may”. It isn't always obvious what the right replacement would be. I get the impression that the doc is being deliberately vague about whether it's describing a state of affairs that holds naturally/inherently, or whether it's prescribing what platforms can and can't do. For example, I think this:
was probably intended to be a concession: platforms are allowed to create disjoint memory regions. Similarly, I think:
is supposed to prohibit any attempt to create regions that span address zero. I'm not sure “might” would be a suitable replacement. |
|
"May" is the correct term here. In standards documents like these it always has the specific meaning of "permitted but not required". Using another word or term would just be distracting. |
aapcs64/aapcs64.rst
Outdated
| - A conforming program must not access (for reading or writing) the | ||
| inactive region of S. This is true regardless of whether the access | ||
| is performed by T or by some other thread. |
There was a problem hiding this comment.
I thought we had agreed that reads from below the stack, solely for the purposes of stack probing should be permitted, provided the probe is less than 64k below the current stack pointer (page size with 64-k pages) and provided the stack pointer is then immediately adjusted to the point of the probe (or lower). Any data read from the probed location has unspecified contents.
There was a problem hiding this comment.
Yeah, but I think the idea was to tackle that as a separate PR.
aapcs64/aapcs64.rst
Outdated
| limit to the base as the stack shrinks. In practice, an application might | ||
| not be able to determine the value of either the base or the limit. | ||
|
|
||
| In the description below, the base, limit and SP for a thread T are |
There was a problem hiding this comment.
Rather than 'SP' here, I think it would be better to say 'current stack extent'. SP is the register where this is stored, as stated above.
The AAPCS64 uses “process” as a cover-all term for “thread
or process”:
The AAPCS64 applies to a single thread of execution or
process (hereafter referred to as a process).
However, SME adds a register called TPIDR2_EL0 that forms an
important part of the SME PCS. The “T” in TPIDR2_EL0 stands
for “thread”, so it seemed incongruous to use “process” when
describing its role in the PCS.
This preliminary patch therefore tries to avoid treating
“thread” and “process” as synonymous. Since the exact
nature of threads and processes depends on the platform,
the patch tries to give a flexible definition.
Two later parts of the PCS refer specifically to processes:
“Universal stack constraints”, when describing the parts of stack
memory that can be safely accessed. These restrictions apply to
the program generally (wrt a given thread's stack and SP), so the
patch uses “conforming program” instead of “thread”. This is also
the term used in:
A conforming program must only execute instructions that are in
areas of memory designated to contain code.
The section on interworking. These restrictions specifically apply
at the process level rather than just the thread level, so the patch
leaves the wording unchanged.