2014-12-20 14:01:51 +03:00
|
|
|
{-# LANGUAGE RankNTypes #-}
|
|
|
|
|
|
|
|
-- | A runner for concurrent monads to systematically detect
|
|
|
|
-- concurrency errors such as data races and deadlocks.
|
|
|
|
--
|
|
|
|
-- As an example, consider this program, which has two locks and a
|
|
|
|
-- shared variable. Two threads are spawned, which claim the locks,
|
|
|
|
-- update the shared variable, and release the locks. The main thread
|
|
|
|
-- waits for them both to terminate, and returns the final result.
|
|
|
|
--
|
2014-12-21 15:59:57 +03:00
|
|
|
-- > bad :: ConcCVar cvar m => m Int
|
2014-12-20 14:01:51 +03:00
|
|
|
-- > bad = do
|
2014-12-21 10:47:45 +03:00
|
|
|
-- > a <- newEmptyCVar
|
|
|
|
-- > b <- newEmptyCVar
|
2014-12-20 14:01:51 +03:00
|
|
|
-- >
|
2014-12-21 12:38:25 +03:00
|
|
|
-- > c <- newCVar 0
|
2014-12-20 14:01:51 +03:00
|
|
|
-- >
|
2014-12-21 12:38:25 +03:00
|
|
|
-- > j1 <- spawn $ lock a >> lock b >> modifyCVar_ c (return . succ) >> unlock b >> unlock a
|
|
|
|
-- > j2 <- spawn $ lock b >> lock a >> modifyCVar_ c (return . pred) >> unlock a >> unlock b
|
2014-12-20 14:01:51 +03:00
|
|
|
-- >
|
2014-12-21 10:47:45 +03:00
|
|
|
-- > takeCVar j1
|
|
|
|
-- > takeCVar j2
|
2014-12-20 14:01:51 +03:00
|
|
|
-- >
|
2014-12-21 10:47:45 +03:00
|
|
|
-- > takeCVar c
|
2014-12-20 14:01:51 +03:00
|
|
|
--
|
|
|
|
-- The correct result is 0, as it starts out as 0 and is incremented
|
|
|
|
-- and decremented by threads 1 and 2, respectively. However, note the
|
|
|
|
-- order of acquisition of the locks in the two threads. If thread 2
|
|
|
|
-- pre-empts thread 1 between the acquisition of the locks (or if
|
|
|
|
-- thread 1 pre-empts thread 2), a deadlock situation will arise, as
|
|
|
|
-- thread 1 will have lock `a` and be waiting on `b`, and thread 2
|
|
|
|
-- will have `b` and be waiting on `a`.
|
|
|
|
|
|
|
|
module Control.Monad.Conc.SCT
|
|
|
|
( -- *Systematic Concurrency Testing
|
|
|
|
SCTScheduler
|
2014-12-21 16:25:48 +03:00
|
|
|
, Trace
|
2014-12-21 15:42:43 +03:00
|
|
|
, Decision(..)
|
2014-12-20 14:01:51 +03:00
|
|
|
, runSCT
|
2014-12-21 16:50:52 +03:00
|
|
|
|
|
|
|
-- * Schedulers
|
2014-12-20 14:01:51 +03:00
|
|
|
, sctRandom
|
2014-12-21 16:50:52 +03:00
|
|
|
, sctRandomNP
|
|
|
|
|
|
|
|
-- * Utilities
|
|
|
|
, toSCT
|
2014-12-21 15:42:43 +03:00
|
|
|
, showTrace
|
2014-12-20 14:01:51 +03:00
|
|
|
) where
|
|
|
|
|
|
|
|
import Control.Monad.Conc.Fixed
|
2014-12-21 19:34:55 +03:00
|
|
|
import System.Random (RandomGen)
|
2014-12-20 14:01:51 +03:00
|
|
|
|
|
|
|
-- | An @SCTScheduler@ is like a regular 'Scheduler', except it builds
|
2014-12-21 16:25:48 +03:00
|
|
|
-- a trace of scheduling decisions made.
|
|
|
|
type SCTScheduler s = Scheduler (s, Trace)
|
|
|
|
|
|
|
|
-- | A @Trace@ is just a list of all the decisions that were made,
|
|
|
|
-- with the alternative decisions that could have been made at each
|
|
|
|
-- step.
|
|
|
|
type Trace = [(Decision, [Decision])]
|
2014-12-21 15:42:43 +03:00
|
|
|
|
|
|
|
-- | Scheduling decisions are based on the state of the running
|
|
|
|
-- program, and so we can capture some of that state in recording what
|
|
|
|
-- specific decision we made.
|
|
|
|
data Decision =
|
|
|
|
Start ThreadId
|
|
|
|
-- ^ Start a new thread, because the last was blocked (or it's the
|
|
|
|
-- initial thread).
|
|
|
|
| Continue
|
|
|
|
-- ^ Continue running the last thread for another step.
|
|
|
|
| SwitchTo ThreadId
|
|
|
|
-- ^ Pre-empt the running thread, and switch to another.
|
|
|
|
deriving (Eq, Show)
|
2014-12-20 14:01:51 +03:00
|
|
|
|
|
|
|
-- | Run a concurrent program under a given scheduler a number of
|
|
|
|
-- times, collecting the results and the scheduling that gave rise to
|
|
|
|
-- them.
|
|
|
|
--
|
|
|
|
-- The initial state for each run is the final state of the last run,
|
|
|
|
-- so it is important that the scheduler actually maintain some
|
|
|
|
-- internal state, or all the results will be identical.
|
2014-12-21 16:25:48 +03:00
|
|
|
runSCT :: SCTScheduler s -> s -> Int -> (forall t. Conc t a) -> IO [(Maybe a, Trace)]
|
2014-12-21 19:34:55 +03:00
|
|
|
runSCT _ _ 0 _ = return []
|
|
|
|
runSCT sched s n c = do
|
|
|
|
(res, (s', trace)) <- runConc' sched (s, [(Start 0, [])]) c
|
|
|
|
rest <- runSCT sched s' (n - 1) c
|
|
|
|
return $ (res, trace) : rest
|
2014-12-20 14:01:51 +03:00
|
|
|
|
|
|
|
-- | A simple pre-emptive random scheduler.
|
|
|
|
sctRandom :: RandomGen g => SCTScheduler g
|
2014-12-21 16:50:52 +03:00
|
|
|
sctRandom = toSCT randomSched
|
|
|
|
|
|
|
|
-- | A random scheduler with no pre-emption.
|
|
|
|
sctRandomNP :: RandomGen g => SCTScheduler g
|
|
|
|
sctRandomNP = toSCT randomSchedNP
|
|
|
|
|
|
|
|
-- | Convert a 'Scheduler' to an 'SCTScheduler' by recording the
|
|
|
|
-- trace.
|
|
|
|
toSCT :: Scheduler s -> SCTScheduler s
|
2014-12-21 19:34:55 +03:00
|
|
|
toSCT sched (s, trace) prior threads = (tid, (s', trace ++ [(decision, alters)])) where
|
|
|
|
(tid, s') = sched s prior threads
|
2014-12-21 16:50:52 +03:00
|
|
|
|
2014-12-21 19:34:55 +03:00
|
|
|
decision | tid == prior = Continue
|
|
|
|
| prior `elem` threads = SwitchTo tid
|
|
|
|
| otherwise = Start tid
|
2014-12-21 15:42:43 +03:00
|
|
|
|
2014-12-21 19:34:55 +03:00
|
|
|
alters | tid == prior = map SwitchTo $ filter (/=prior) threads
|
|
|
|
| prior `elem` threads = Continue : map SwitchTo (filter (\t -> t /= prior && t /= tid) threads)
|
|
|
|
| otherwise = map Start $ filter (/=tid) threads
|
2014-12-21 16:25:48 +03:00
|
|
|
|
2014-12-21 15:42:43 +03:00
|
|
|
-- | Pretty-print a scheduler trace.
|
2014-12-21 16:25:48 +03:00
|
|
|
showTrace :: Trace -> String
|
|
|
|
showTrace = trace "" 0 . map fst where
|
2014-12-21 19:34:55 +03:00
|
|
|
trace prefix num (Start tid:ds) = thread prefix num ++ trace ("S" ++ show tid) 1 ds
|
|
|
|
trace prefix num (SwitchTo tid:ds) = thread prefix num ++ trace ("P" ++ show tid) 1 ds
|
|
|
|
trace prefix num (Continue:ds) = trace prefix (num + 1) ds
|
|
|
|
trace prefix num [] = thread prefix num
|
2014-12-21 15:42:43 +03:00
|
|
|
|
2014-12-21 19:34:55 +03:00
|
|
|
thread prefix num = prefix ++ replicate num '-'
|