Software transactional memory


In computer science, software transactional memory is a concurrency control mechanism analogous to database transactions for controlling access to shared memory in concurrent computing. It is an alternative to lock-based synchronization. STM is a strategy implemented in software, rather than as a hardware component. A transaction in this context occurs when a piece of code executes a series of reads and writes to shared memory. These reads and writes logically occur at a single instant in time; intermediate states are not visible to other transactions. The idea of providing hardware support for transactions originated in a 1986 paper by Tom Knight. The idea was popularized by Maurice Herlihy and J. Eliot B. Moss. In 1995 Nir Shavit and Dan Touitou extended this idea to software-only transactional memory. Since 2005, STM has been the focus of intense research and support for practical implementations is growing.

Performance

Unlike the locking techniques used in most modern multithreaded applications, STM is often very optimistic: a thread completes modifications to shared memory without regard for what other threads might be doing, recording every read and write that it is performing in a log. Instead of placing the onus on the writer to make sure it does not adversely affect other operations in progress, it is placed on the reader, who after completing an entire transaction verifies that other threads have not concurrently made changes to memory that it accessed in the past. This final operation, in which the changes of a transaction are validated and, if validation is successful, made permanent, is called a commit. A transaction may also abort at any time, causing all of its prior changes to be rolled back or undone. If a transaction cannot be committed due to conflicting changes, it is typically aborted and re-executed from the beginning until it succeeds.
The benefit of this optimistic approach is increased concurrency: no thread needs to wait for access to a resource, and different threads can safely and simultaneously modify disjoint parts of a data structure that would normally be protected under the same lock.
However, in practice, STM systems also suffer a performance hit compared to fine-grained lock-based systems on small numbers of processors. This is due primarily to the overhead associated with maintaining the log and the time spent committing transactions. Even in this case performance is typically no worse than twice as slow. Advocates of STM believe this penalty is justified by the conceptual benefits of STM.
Theoretically, the worst case space and time complexity of n concurrent transactions is O. Actual needs depend on implementation details, but there will also be cases, albeit rare, where lock-based algorithms have better time complexity than software transactional memory.

Conceptual advantages and disadvantages

In addition to their performance benefits, STM greatly simplifies conceptual understanding of multithreaded programs and helps make programs more maintainable by working in harmony with existing high-level abstractions such as objects and modules. Lock-based programming has a number of well-known problems that frequently arise in practice:
In contrast, the concept of a memory transaction is much simpler, because each transaction can be viewed in isolation as a single-threaded computation. Deadlock and livelock are either prevented entirely or handled by an external transaction manager; the programmer need hardly worry about it. Priority inversion can still be an issue, but high-priority transactions can abort conflicting lower priority transactions that have not already committed.
On the other hand, the need to abort failed transactions also places limitations on the behavior of transactions: they cannot perform any operation that cannot be undone, including most I/O. Such limitations are typically overcome in practice by creating buffers that queue up the irreversible operations and perform them at a later time outside of any transaction. In Haskell, this limitation is enforced at compile time by the type system.

Composable operations

In 2005, Tim Harris, Simon Marlow, Simon Peyton Jones, and Maurice Herlihy described an STM system built on Concurrent Haskell that enables arbitrary atomic operations to be composed into larger atomic operations, a useful concept impossible with lock-based programming. To quote the authors:

Perhaps the most fundamental objection is that lock-based programs do not compose: correct fragments may fail when combined. For example, consider a hash table with thread-safe insert and delete operations. Now suppose that we want to delete one item A from table t1, and insert it into table t2; but the intermediate state must not be visible to other threads. Unless the implementor of the hash table anticipates this need, there is simply no way to satisfy this requirement. In short, operations that are individually correct cannot be composed into larger correct operations.

—Tim Harris et al., "Composable Memory Transactions", Section 2: Background, pg.2

With STM, this problem is simple to solve: simply wrapping two operations in a transaction makes the combined operation atomic. The only sticking point is that it is unclear to the caller, who is unaware of the implementation details of the component methods, when they should attempt to re-execute the transaction if it fails. In response, the authors proposed a retry command which uses the transaction log generated by the failed transaction to determine which memory cells it read, and automatically retries the transaction when one of these cells is modified, based on the logic that the transaction will not behave differently until at least one such value is changed.
The authors also proposed a mechanism for composition of alternatives, the orElse function. It runs one transaction and, if that transaction does a retry, runs a second one. If both retry, it tries them both again as soon as a relevant change is made. This facility, comparable to features such as the POSIX networking select call, allows the caller to wait on any one of a number of events simultaneously. It also simplifies programming interfaces, for example by providing a simple mechanism to convert between blocking and nonblocking operations.
This scheme has been implemented in the Glasgow Haskell Compiler.

Proposed language support

The conceptual simplicity of STMs enables them to be exposed to the programmer using relatively simple language syntax. Tim Harris and Keir Fraser's "Language Support for Lightweight Transactions" proposed the idea of using the classical conditional critical region to represent transactions. In its simplest form, this is just an "atomic block", a block of code which logically occurs at a single instant:
// Insert a node into a doubly linked list atomically
atomic
When the end of the block is reached, the transaction is committed if possible, or else aborted and retried.
CCRs also permit a
guard condition, which enables a transaction to wait until it has work to do:
atomic
If the condition is not satisfied, the transaction manager will wait until another transaction has made a
commit that affects the condition before retrying. This loose coupling between producers and consumers enhances modularity compared to explicit signaling between threads. "Composable Memory Transactions" took this a step farther with its retry command, which can, at any time, abort the transaction and wait until some value'' previously read by the transaction is modified before retrying. For example:
atomic
This ability to retry dynamically late in the transaction simplifies the programming model and opens up new possibilities.
One issue is how exceptions behave when they propagate outside of transactions. In "Composable Memory Transactions", the authors decided that this should abort the transaction, since exceptions normally indicate unexpected errors in Concurrent Haskell, but that the exception could retain information allocated by and read during the transaction for diagnostic purposes. They stress that other design decisions may be reasonable in other settings.

Transactional locking

STM can be implemented as a lock-free algorithm or it can use locking. There are two types of locking schemes: In encounter-time locking, memory writes are done by first temporarily acquiring a lock for a given location, writing the value directly, and logging it in the undo log. Commit-time locking locks memory locations only during the commit phase.
A commit-time scheme named "Transactional Locking II" implemented by Dice, Shalev, and Shavit uses a global version clock. Every transaction starts by reading the current value of the clock and storing it as the read-version. Then, on every read or write, the version of the particular memory location is compared to the read-version; and, if it is greater, the transaction is aborted. This guarantees that the code is executed on a consistent snapshot of memory. During commit, all write locations are locked, and version numbers of all read and write locations are re-checked. Finally, the global version clock is incremented, new write values from the log are written back to memory and stamped with the new clock version.
An increasingly utilized method to manage transactional conflicts in Transactional memory, and especially in STM, is Commitment ordering. It is utilized for achieving serializability optimistically by "commit order". Serializability is the basis for the correctness of transactional memory. Tens of STM articles on "commit order" have already been published, and the technique is encumbered by a number of patents.
With CO the desired serializability property is achieved by committing transactions only in chronological order that is compatible with the precedence order of the respective transactions. To enforce CO some implementation of the Generic local CO algorithm needs to be utilized. The patent abstract quoted above describes a general implementation of the algorithm with a pre-determined commit order.

Implementation issues

One problem with implementing software transactional memory with optimistic reading is that it is possible for an incomplete transaction to read inconsistent state. Such a transaction is doomed to abort if it ever tries to commit, so this does not violate the consistency condition enforced by the transactional system, but it is possible for this "temporary" inconsistent state to cause a transaction to trigger a fatal exceptional condition such as a segmentation fault or even enter an endless loop, as in the following contrived example from Figure 4 of "Language Support for Lightweight Transactions":

Provided x=y initially, neither transaction above alters this invariant, but it is possible that transaction A will read x after transaction B updates it but read y before transaction B updates it, causing it to enter an infinite loop. The usual strategy for dealing with this is to intercept any fatal exceptions and abort any transaction that is not valid.
One way to deal with these issues is to detect transactions that execute illegal operations or fail to terminate and abort them cleanly; another approach is the [|transactional locking] scheme.

Implementations

A number of STM implementations have been released, many under liberal licenses. These include:

C/C++

  • a time-based STM and to integrate STMs with C and C++ via LLVM.
  • The , a C implementation by Robert Ennals focusing on efficiency and based on his papers "Software Transactional Memory Should Not Be Obstruction-Free" and "Cache Sensitive Software Transactional Memory".
  • , an open-source implementation in C by Duilio Protti based on "Composable Memory Transactions". The implementation also includes a .
  • is a prototype that brings the "atomic" keyword to C/C++ by instrumenting the assembler output of the compiler.
  • implements STM for C/C++ directly in a compiler for Linux or Windows producing 32- or 64 bit code for Intel or AMD processors. Implements atomic keyword as well as providing ways to decorate function definitions to control/authorize use in atomic sections. A substantial implementation in a compiler with the stated purpose to enable large scale experimentation in any size C/C++ program. Intel has made four research releases of this special experimental version of its product compiler.
  • An implementation of STM in C, based on shared memory mapping. It is for sharing memory between threads and/or processes with transactional semantics. The multi-threaded version of its memory allocator is in C++.
  • An implementation of STM in C, based on TL2 but with many extensions and optimizations.
  • The TL2 lock-based STM from the research group at Sun Microsystems Laboratories, as featured in the DISC 2006 article "Transactional Locking II".
  • , based on ideas from his papers "Language Support for Lightweight Transactions", "Practical Lock Freedom", and an upcoming unpublished work.
  • The University of Rochester STM written by a team of researchers led by Michael L. Scott.
  • now supports STM for C/C++ directly in the compiler. The feature is still listed as "experimental", but may still provide the necessary functionality for testing.
  • STM is part of the picotm transaction framework for C

    C#

  • A strict and mostly obstruction-free STM for.NET, written in C#. Features include: conditional transactions, commutable operations, transactional collection types, and automatic generation of transactional proxy-subclasses for POCO objects.
  • A pure C#, open-source, lightweight software transactional memory API.
  • SXM, an implementation of transactions for C# by Microsoft Research. , Discontinued.
  • , an open-source implementation in C by Duilio Protti based on "Composable Memory Transactions". The implementation also includes a .
  • ,.NET Software Transactional Memory written entirely in C# offering truly nested transactions and even integrating with System.Transactions.
  • A Verification-Oriented Model Implementation of an STM in C#.
  • cf. Java implementations.
  • A pure C# implementation of software transactional memory.

    Clojure

  • has STM support built into the core language

    Common Lisp

  • A multi-platform STM implementation for Common Lisp.
  • An open-source, actively maintained concurrency library providing software, hardware and hybrid memory transactions for Common Lisp.

    Erlang

  • Mnesia A distributed, transactional, in-memory DBMS built into Erlang/OTP, that performs the role of STM; Perhaps the oldest implementation of STM in the wild.

    F#

  • F# have them through FSharpX - sample at F#

    Groovy

  • - The framework contains support for STM leveraging the Java implementation.

    Haskell

  • The library, as featured in , is part of the Haskell Platform.
  • The library, a distributed STM, based on the above library.

    Java

  • 's implementation of AtomJava.
  • implements the concept of proposed by João Cachopo and António Rito Silva, members of the . Beginning from version 2.0, JVSTM is completely lock-free.
  • A runtime environment for Java Software Transactional Memory using byte code manipulation.
  • Is a Java 1.6+ based Software Transactional Memory implementation that uses Multi Version Concurrency Control as concurrency control mechanism.
  • Sun Lab's Dynamic Software Transactional Memory Library
  • is an open source implementation for Java and.NET. It can be turned into a Distributed STM through an extension mechanism. Other extensions allow logging, change notification, and persistence.
  • - A library-based STM written in Scala that additionally provides a Java-focused API to allow use with Runnable and Callable objects.

    JavaScript

  • implements Distributed Software Transactional Memory to web browsers with a single NodeJS server to validate the effects of transactions.

    OCaml

  • , a concurrent programming library of OCaml, offers STM as a module. Just like any other components in this library, the STM module can be used uniformly with VM-level threads, system threads and processes.

    Perl

  • STM for Perl 6 has been implemented in Pugs via the Glasgow Haskell Compiler's STM library.

    Python

  • - Armin Rigo explains his patch to CPython in .
  • announcement from Armin Rigo for PyPy.
  • Ruby

  • is an implementation of the Ruby interpreter built on top of the GemStone/S virtual machine
  • is a library providing concurrent features for Ruby, including STM

    Scala

  • – A draft proposal along with reference implementation CCSTM to be included in the Scala standard library
  • Akka STM – The framework contains support for STM in both Scala & Java
  • – Manchester University Transactions for Scala
  • – Implementation in ZIO inspired by STM API in Haskell.
  • – An extension of with a software transactional memory implementation similar to that in Haskell's package.

    Smalltalk

  • GemStone/S A Transactional Memory Object Server for Smalltalk.
  • for the open-source Smalltalk

    Other languages

  • Fortress is a language developed by Sun that uses
OWIKI.org. Text is available under the Creative Commons Attribution-ShareAlike License.