In [1]:
print("")



### Process Synchronization
- motivation
    - processes need to *cooperate* with each other
        - e.g. producer-consumer
    - cooperating processes need to share data
        - must maintain data correctness

### e.g.
- Producer
```C
while (true){
    /* wait if buffer full */
    while (counter == 10);  /* do nothing */
    
    /* produce data */
    buffer[in] = sdata;
    in = (in + 1) % 10;
    
    /* update number of items in buffer */
    R1 = load (counter);
    R1 = R1 + 1;
    counter = store (R1);
}
```
- Consumer
```C
while (true){
    
    /* wait if buffer empty */
    while (counter == 0);  /* do nothing */
    
    /* consume data */
    sdata = buffer[out];
    out = (out + 1) % 10;
    
    /* update number of items in buffer */
    R2 = load (counter);
    R2 = R2 – 1;
    counter = store (R2);
}
```
- `in` and `out` are shared variables 
    - they are assumed to have already been declared as global variables somewhere else
        - e.g. `int in, out;`
- Race condition
    - the final value of `counter` depends on the order of execution of the two processes
    - e.g. if counter = 5
    - <img src="images/eg_race_cond.png">
        - final value depends on the order of execution of the two processes
        - final value should have been 5


### Critical Section
- critical region
    - a piece of code that updates shared data
    - e.g. `counter = counter + 1;`
- concurrent updating of shared data is dangerous
- critical section problem
    - how to ensure that only one process executes in its critical section at a time
- solution
    - only allow one process to execute in its critical section at a time
- protocol
    - request permission to enter
    - indicate after exit
    - only one process can be in the critical section at a time
    - the 'ol Port-O-Potty door lock
        - <img src="images/portopotty.jpg" width=150>
### Solution 
- formally, a solution should ensure
    - mutual exclusion
        - if process P is executing in its critical section, then no other processes can be executing in their critical sections
    - progress
        - selection of process to enter critical section should be fair
        - cannot indefinitely block a process from entering its critical section
    - bounded waiting
        - fixed bound on time to be granted permission for entering critical section
- should also guard against deadlocks
    - not sure why this is not included in the formal definition
- honestly this should be implemented formally for Port-O-Potties also


### Preemptive vs. Non-preemptive Kernels
- several kernel processes share data
    - memory allocation, interrupt handling, etc.
- how to prevent race condition in OS
- non-preemptive kernel
    - kernel processes cannot be preempted
    - disable interrupts during kernel mode execution
    - what about multi-core processors?
        - harder to implement 
- preemptive kernel
    - kernel processes can be preempted
        - priority-based scheduling
    - suitable for real-time programming
        - time-critical applications
        - task has a deadline
        - e.g. embedded systems
            - e.g. car brake control
            - e.g. medical devices
            - e.g. nuclear power plants
            - e.g. military systems
            - e.g. robots
            - e.g. etc.
        - if kernel is not preemptive, task may not finish in time
            - bad things may follow
    - more responsive

### Peterson's Solution to Critical Section Problem
- software based
- supports two processes
- uses two variables
    - `int turn;`
        - indicates whose turn it is to enter the critical section
    - `boolean flag[2];`
        - indicates if a process is ready to enter the critical section
- process 0:
    ```C
    do {
    flag[0] = TRUE; 
        turn = 1;  // let process 1 go first (move to process 1)
        while (flag[1]  &&  turn==1); // wait if process 1 is in critical section
        // critical section of process 0 goes here
        
        flag[0] = FALSE; 
        
        // remainder section goes here
    } while (TRUE)
    ```
- process 1:
    ```C
    do { 
        flag[1] = TRUE; 
        turn = 0;  
        while (flag[0]  &&  turn==0);
        // critical section of process 1 goes here
        
        flag[1] = FALSE; 
        
        // remainder section goes here
    } while (TRUE)
    ```
- flow of control of process 0
    - sets `flag[0]` to `TRUE`
    - sets `turn` to 1
    - if flag[1] is already `False`, while condition is not met
        - move on to critical section
    - if flag[1] is `TRUE`, while condition is met
        - process 0 waits
        - process 1 will set `flag[1]` to `FALSE` when it exits its critical section
        - process 0 can then enter its critical section
- if process 1 is already in its critical section, process 0 will wait
- whoever set turn last waits
- notes:
    - meets all three requirements
        - P0 and P1 cannot be in critical section at the same time
        - if P0 does not want to enter critical section, P1 does no waiting
        - process waits for at most one turn
    - only supports two processes
        - can be generalized for more processes
    - assumes `LOAD` and `STORE` are atomic
    - assumes that memory accesses are not reordered
    - may be less efficient than a hardware approach
        - particularly for more than 2 processes

### Hardware Solutions
- lock based solutions
    - uniprocessor systems
        - for uniprocessor systems
            - concurrent processes cannot be overlapped, only interleaved
                - i.e. only one process can be executing at a time
        - disable interrupts
            - active process cannot be preempted
                - psuedo code:
                - ```C
                  do {
                        disable_interrupts();
                        // critical section
                        enable_interrupts();
                        // remainder section
                    } while (TRUE);
                    ```
            - interrupts are only disabled for the critical section
                - interrupts are re-enabled after completion of the critical section
            - this method is dangerous because infinite loops can occur
                - no interrupts means no way to exit the loop
    - multiprocessor systems
        - disabling interrupts is not enough
            - multiple processes can be executing at the same time
        - atomic instructions
            - atomic instructions execute in one uninterruptible step
            - atomic *test-and-set* 
                - ```C 
                  boolean test_and_set (boolean *target) {
                      boolean rv = *target;
                      *target = TRUE;
                      return rv;
                  }
                  ```
                  - sets the target to `TRUE` and returns the previous value
                    - if the target was `TRUE`, it returns `TRUE`
                    - if the target was `FALSE`, it returns `FALSE`
                    - either way, the target is set to `TRUE`
            - 

### mutual exclusion via test-and-set
```C
void init_lock (int *mutex)
{
    *mutex = 0;
}

void lock (int *mutex)
{
    while(TestAndSet(mutex));  
        // wait until mutex is 0 then set it to 1
        // as long as mutex is 1, the condition is met and the loop continues
        // i.e. the calling process waits
}

void unlock (int *mutex)
{
    *mutex = 0;  // set mutex to 0
}
```

```C

int mutex;
init_lock (&mutex);

do {

    lock (&mutex); // wait until mutex is 0 (not in use) then set it to 1 (in use)
    // critical section
    unlock (&mutex); // set mutex to 0 (not in use)

    // remainder section
} while(TRUE);
```
- max wait time is the time it takes to execute the critical section
    - if the critical section is short, this is not a problem
    - if the critical section is long, this is a problem
- when the time slice expires, the lock is still held
- the next requesting process uses up its time slice while looping on the lock
- this continues until the lock is released
- this is called *spinlock*
    - the process is spinning while waiting for the lock to be released
    - this is a waste of CPU time
    - the process is not doing anything useful
    - this is a problem for long critical sections 

### Mutual Exclusion using Swap Instruction
- psuedo code for Swap:
-   ```
    void Swap (boolean *a, boolean *b)
          {
                  boolean temp = *a;
                  *a = *b;
                  *b = temp:
          }
    ```
- ME example:
```C
void init_lock (int *mutex) {
    *mutex = 0;
}

void lock (int *mutex) {
    int key = TRUE;  // set key to TRUE
    do {
        Swap(&key, mutex);  // swap key and mutex
    }while(key == TRUE);  // wait until mutex is 0 (not in use)
}

void unlock (int *mutex) {
    *mutex = 0;
}
```

```C
int mutex;
init_lock (&mutex);

do {

    lock (&mutex); 
        critical section 
    unlock (&mutex);

        remainder section
} while(TRUE);
```
- `lock()` is called
    - `key` is set to `TRUE`
    - `key` is swapped with `mutex`
    - `key` is set to `FALSE`
    - `key` is checked
        - if `key` is `FALSE`, the loop is exited
        - if `key` is `TRUE`, the loop continues
- `key` is used to indicate if the lock is in use
    - `key` is set to `TRUE` before the lock is acquired
    - `key` is set to `FALSE` after the lock is 
- is mutex always set to true
    -

### Bound Waiting
- none of the above solutions guarantee fairness
    - a process may have to wait indefinitely
- bounded waiting
    - a process must be granted permission to enter its critical section within a bounded number of times that other processes enter and exit their critical sections
    - i.e. there is a max number of wait cycles for a process
```C
do{
    waiting[i] = TRUE;
    key = TRUE;
    while(waiting[i] && key)
        key = TestAndSet(&lock);
    waiting[i] = FALSE;

    // Critical Section

    j = (i + 1) % n;  // set j to next process
    while ((j != i) && !waiting[j])  // loop through all processes
        j = (j+1) % n; // set j to next process

    if (j == i ) // if j == i, no other processes are waiting
        lock = FALSE; // set lock to FALSE
    else
        waiting[j] = FALSE;   // set waiting[j] to FALSE
    // Remainder Section
} while (TRUE);
```
- `waiting[i]` is an array of booleans
- `waiting[i]` is set to `TRUE` before the lock is acquired
- `key` is set to `TRUE` before the lock is acquired
- `key` is set to `FALSE` after the lock is acquired
- `waiting[i]` is set to `FALSE` after the lock is acquired
- `j` is set to the next process
- `j` is set to the next process that is waiting

### Semaphores
- another solution to the critical section problem
- an OS layer solution
    - higher level than ISA instructions
    - similar to locks but semantically different
- semaphore
    - integer variable
    - can only be accessed via atomic operations
        - `init()`, wait()`, and `signal()`
        - `init()`
            - initializes the semaphore to a non-negative value
            - e.g. `init(&s, 1);`
                - initializes semaphore `s` to 1
        - `wait()`
            - decrements the semaphore
            - if the semaphore is negative, the process is blocked
            - e.g. `wait(&s);`
                - decrements semaphore `s`
        - `signal()`
            - increments the semaphore
            - if the semaphore is negative, a blocked process is unblocked
            - e.g. `signal(&s);`
                - increments semaphore `s`
- binary semaphore
    - can only take on the values 0 and 1
    - can be used for mutual exclusion
- counting semaphore
    - can take on any non-negative value
    - can be used to control access to a finite resource

### Mutual Exclusion using Semaphores 
```C
void sem_init (int *S)
{
    *S = 1;
}

void wait (int *S)
{
    while (*S <= 0);  // wait until S is greater than 0
    *S–– ; // once S is greater than 0, decrement S
}

void signal (int *S)
{
    *S++;  // increment S (make S greater than 0)
}
```

```C
int S;
sem_init (&S);

do {

    wait (&S); // wait until S is greater than 0
        // critical section
    signal (&S); // make S greater than 0

        // remainder section

} while(TRUE);
```
- `S` is initialized to 1
    - when `S` is 1, a process can enter the critical section
- process A is ready to enter the critical section
    - `wait()` is called
        - if `S` is 1, the loop is exited
        - if `S` is 0, the loop continues
            - the process waits
- process B is ready to enter the critical section
    - it calls `wait()`
        - it waits until process A exits the critical section and sets `S` to 1
- process A exits the critical section
    - `signal()` is called
        - `S` is incremented
        - if `S` was 0, the process that was waiting can now enter the critical section
- process B enters the critical section
    - `S` is decremented
    - `S` is now 0
    - no other processes can enter the critical section
- and so on
- `S` is a binary semaphore
    - `S` can only take on the values 0 and 1
    - `S` is initialized to 1
    - `S` is only incremented by 1
    - `S` is only decremented by 1

### Issues with the above solutions
- spinlock
    - processes waste CPU time while looping when waiting for the lock
- busy waiting
    - waiting process holds the CPU during its time slice
    - other processes cannot use the CPU
    - no useful work is done
- Note: multiprocessors do use busy-waiting solutions
### Solution to the Issues with the Solutions
- semaphore without busy waiting
```C
wait (semaphore *S) {
    S–>value–– ;
    if (S–>value < 0) {
        // add process to 
        // S –>list
        
        block ( );
    }
}
```
```C
signal (semaphore *S) {
    S–>value++ ;
    if (S–>value >= 0) {
        // remove process P 
        // from S –>list
        
        wakeup (P);
    }
}
```
- `S` is a semaphore
    - `S` has a value
    - `S` has a list of processes
    - `S` is initialized to 1
- `wait()` is called
    - `S` is decremented
    - if `S` is negative, the process is added to the list
        - the process is blocked
        - the process is not scheduled
    - if `S` is not negative, the process continues
        - the process enters the critical section
    - when the process exits the critical section, `signal()` is called
- `signal()` is called
    - `S` is incremented
    - if `S` is positive, the process is removed from the list
        - the process is unblocked
        - the process is scheduled
        - `wakeup()` is called
            - the process is added to the ready queue
- `wait()` and `signal()` are atomic and have their own critical sections
    - `S` cannot be changed by another process while `wait()` or `signal()` is executing
    -  thus you need to handle a mutex for `wait()` and `signal()` themselves
### atomic implementation of semaphores
- `wait()` and `signal()` are atomic
    - they cannot be interrupted
    - they cannot be interleaved
    - implement using hardware solutions
        - e.g. test-and-set
        - e.g. swap
    - in uniprocessor systems, interrupts can be disabled
        - this is not possible in multiprocessor systems
    - in multiprocessors, use spinlocks around `wait()` and `signal()`
- not a complete solution
- does shift the location of the problem
    - now, only `wait()` and `signal()` are busy waiting
    - these are small routines

### Deadlock
- deadlock
    - two or more processes are waiting indefinitely for an event that can be caused by only one of the waiting processes
    - i.e. circular waiting
    - e.g. two processes waiting for each other to release a resource
- deadlock can occur in semaphore implementations
    - e.g. two processes waiting for each other to release a resource
### Starvation
- starvation
    - indefinite blocking
    - a process is ready to run but is not scheduled
    - e.g. a process is waiting for a resource that is always allocated to other processes
- starvation can occur in semaphore implementations
    - e.g. a process is waiting for a resource that is always allocated to other processes
- priority inversion
    - lower priority process holds a resource needed by a higher priority process
    - e.g., processes L, M, and H
        - L has the lowest priority
            - L is running and has a resource R, which H needs
            - L is preempted by M, which has a higher priority
                - M does not need R but L still has R locked
            - H is ready to run but cannot because L still has R
            - H is blocked not by L but by M despite having a higher priority
    - solution
        - only support two priorities
            - high and low
        - priority inheritance
            - if a low priority process holds a resource needed by a high priority process, the low priority process inherits the priority of the high priority process
            - e.g. L, M, and H
                - L has the lowest priority
                    - L is running and has a resource R which H needs
                    - L inherits the priority of H when H requests R
                        - L is now a high priority process and can run
                    - L is not preempted by M 
                    - when H is ready to run and L releases R, L reverts back to its original priority
                    - H can now run
                - H is not blocked by M

### Bounded Buffer Problem
- producer-consumer problem
    - producer process produces information
    - consumer process consumes information
    - they are asynchronous processes
        - they do not run at the same speed
        - they do not run at the same time
    - producer and consumer share a fixed size buffer
        - e.g. 10 items
    - producer must wait if buffer is full
    - consumer must wait if buffer is empty
- consumer should see each item exactly once
    - no duplicates
    - no lost items
- solutions
    - mutex
        - only one process can access the buffer at a time
        - mutex semaphore
            - initialized to 1
            - decremented by producer before accessing buffer
            - incremented by producer after accessing buffer
            - decremented by consumer before accessing buffer
            - incremented by consumer after accessing buffer
    - empty
        - count of empty slots in buffer
        - counting semaphore
            - initialized to the number of empty buffer slots
        - waits on an empty slot
            - decrements empty
            - if empty is 0, the process waits
    - full
        - count of full slots in buffer
        - counting semaphore
            - initialized to 0
        - waits on a full slot
            - decrements full
            - if full is 0, the process waits
#### Producer code:
```C
do {
    Produce new resource
    wait (empty);
    wait (mutex);
    // Add resource to next buffer
    signal (mutex);
    signal (full);
} while (TRUE);   
```
- producer waits on `empty`
    - if `empty` is 0, the producer waits
    - if `empty` is not 0, the producer continues
- then the producer waits on `mutex`
    - if `mutex` is 0, the producer waits
    - if `mutex` is not 0, the producer continues
- then the producer adds a resource to the buffer
- then the producer signals `mutex`
    - `mutex` is incremented
    - consumer can now access the buffer
- then the producer signals `full`
    - `full` is incremented
    - consumer can now access the buffer
#### Consumer code:
```C
do {
    wait (full);
    wait (mutex);
    // Remove resource from buffer  
    signal (mutex);
    signal (empty);
    Consume resource
} while (TRUE);   
```
- consumer waits on `full`
    - if `full` is 0, the consumer waits
    - if `full` is not 0, the consumer continues+
- then the consumer waits on `mutex`
    - if `mutex` is 0, the consumer waits
    - if `mutex` is not 0, the consumer continues
- then the consumer removes a resource from the buffer
- then the consumer signals `mutex`
    - `mutex` is incremented
    - producer can now access the buffer
- then the consumer signals `empty`
    - `empty` is incremented
    - producer can now access the buffer

### Readers-Writers Problem
- synopsys
    - an object is shared
    - some threads read the object (readers)
    - some threads write the object (writers)
- problem
    - multiple readers can access the object at the same time
    - only one writer can access the object at a time
    - if a writer is writing, no readers can read
    - additional constraint
        - readers have priority over writers
            - if a reader is reading, a writer cannot write
- Solution
    - use two semaphores
        - mutex
        - wrt
```C
do {
    wait (wrt);
    . . . .
     write object resource
    . . . .
    signal (wrt);
} while (TRUE);   
```

```C
do {
    wait (mutex);
    readcount++;
    if (readcount == 1)
        wait (wrt);
    signal (mutex);
    read from object resource
    wait (mutex);
    readcount––;
    if (readcount == 0)
        signal (wrt);
    signal (mutex);
} while (TRUE);  
```

### Semaphore Summary
- can be used to solve any of the traditional synchronization problems
- drawbacks
    - essentially just shared global variables
        - can be accessed anywhere in a program
    - low level constructs
        - no connection between semaphore and the data it protects
            - i.e. you can't look at it and immediately know what it is protecting
    - difficult to use
    - used for both critical section and synchronization
        - thus harder to read, debug, and maintain
        - again, you can't look at it and immediately know which it is being used for
    - provide no control of proper usage
        - user may miss a `wait` or `signal` or use them in the wrong order
- solution is to raise it to the programming language level instead of the OS level

### Monitors
- programming language level construct to control access to shared data
    - compiler handles synchronization
    - synchronization is enforced by runtime
        - e.g. for C++, the compiler generates code to call the runtime library
        - e.g. for python, the runtime library is a virtual machine
- monitor is an abstract data type that encapsulate:
    - shared data structures
    - procedures that operate on the shared data
    - synchronization between concurrent processes
- protect shared data structures inside the monitor from outside access
- guarantees that only monitor procedures can legitimately update the shared data
    - only one process can be executing in the monitor at a time
### Monitors for Mutual Exclusion
- <img src="images/monitorME.png">
- only one thread can be executing in the monitor at a time
- other threads invoking the monitor procedure must wait
- when the executing thread exits the monitor, one of the waiting threads is allowed to enter
    - waiting threads are chosen in some order, e.g. FIFO
        - probably be stored in a queue or similar data structure
```
Monitor Account {
    double balance;

    double withdraw (amount) {
        balance = balance – amount;
        return balance;
    }
}
```
- given 3 threads, 1, 2, & 3:
- <img src="images/monitorMEeg.png">
### Monitors for Coordination
- what if a thread needs to wait inside a monitor
    - e.g. waiting for a condition, consumer waiting for producer
- monitor with condition variables
    - provide a mechanism for threads to wait inside a monitor
- <img src="images/monitorCoordination.png">
    - if a process cannot proceed, it goes to the *Wait Set*
        - *Wait Set* is another queue/other data structure
        - stays there until condition is met
- `wait()` and `signal()` are monitor procedures
    - `wait()` releases monitor lock & suspends thread
    - `signal()` wakes a waiting thread
        - if no threads are waiting, `signal()` has no effect
    - Signal semantics
        - Hoare monitors (original)
            - signal immediately switches from the caller to the waiting thread
            - waiter's condition is guaranteed to hold when it continues execution
        - Mesa monitors
            - waiter placed on ready queue, signaler continues 
            - waiter's condition may no longer be true when it runs
        - Compromise - signaler immediately leaves monitor, waiter resumes operation
    - They are not booleans
        - `if (condition)` is not logically correct
    - condition variables are not semaphores
        - different semantics
        - both can be used to implement the other
    - `wait()`
        - monitor::wait blocks the calling thread and releases the monitor lock
        - semaphore::wait just blocks the calling thread
        - only monitor operations can call `wait()` and `signal()`
    - `signal()`
        - if there are no waiting threads, monitor::signal is lost
### OS Implementation Issues
- how to wait on a lock held by another thread
    - sleep or spin waiting
- overhead
    - sleep and spin both have overhead
        - spin uses CPU time
        - spin requires multiple context switches
- spin waiting is used
    - on multiprocessor systems
        - should not be used on single processor systems
    - when the thread holding the lock is the one running
    - when locked data is only used in a short code segment


### Bounded Buffer Using Hoare Monitors
```
Monitor bounded_buffer {
    Resource buffer[N];
    // condition variables
    Condition empty, full;

    void producer (Resource R) {
        while (buffer full)
            empty.wait( );  // wait for buffer to be empty
        // add R to buffer array
        full.signal( );  // signal that buffer is full
    }
```

```
Resource consumer ( ) {
        while (buffer empty)
            full.wait( );  // wait for buffer to be full
        // get Resource from buffer 
        empty.signal( );  // signal that buffer is empty
        return R;
    }
} // end monitor
```
- `variable.wait()` waits for `variable` to be signaled
- `variable.signal()` signals `variable`
- `empty` and `full` are condition variables
    - `empty` is signaled when a resource is removed from the buffer
    - `full` is signaled when a resource is added to the buffer
- e.g. in the above code:
    - a consumer process enters the monitor but is waiting on `full` is sent to the *Wait Set* until `full` is signaled
    - a producer enters the monitor, adds a resource R to the buffer, and signals `full`
    - the consumer process waiting on `full` immediately resumes execution
        - the producer has not completed
    - after the consumer process removes a resource from the buffer, it signals `empty`
    - the producer process waiting on `empty` immediately resumes execution
        - the consumer has not completed
- **probably ought to google this...**
    - does the consumer get to complete or is producer called first, then they both finish? 
### Bounded Buffer Using Monitors
```C
Monitor bounded_buffer {
    Resource buffer[N];
    // condition variables
    Condition empty, full;

    void producer (Resource R) {
        while (buffer full)
            empty.wait( );
        // add R to buffer array
        full.signal( );
    }
```

```C
Resource consumer ( ) {
        while (buffer empty)
            full.wait( );
        // get Resource from buffer 
        empty.signal( );
        return R;
    }
} // end monitor
```
- with Hoare monitors, the consumer process waiting on `full` immediately resumes execution
    - the producer has not completed
- with Mesa monitors, the consumer process waiting on `full` is placed on the ready queue
    - the producer has not completed
- https://samuel-sorial.hashnode.dev/mesa-vs-hoare-semantics