Meetings
| Date | Focus | Link |
|---|---|---|
| 13.09.2012 | Initial discussion of the requirements and possible approaches | 2012-09-13 Ringbuffer meeting |
| 21.09.2012 | Discussion of approaches | 2012-09-21 Ring-buffer |
| 29.09.2012 | Current status, next steps: Create sample realization | 2012-09-29 Ringbuffer status update |
| 25.10.2012 | Current status, next steps: caliper, another approach | 2012-10-25 Ringbuffer status update |
Requirements
The ringbuffer will replace the buffering strategy in the agent completely, while the sending strategy will be kept, as it defines when data should be sent.
The ringbuffer uses a FIFO policy:
- threads put data to this buffer "at the end" (measurements that are gathered and being sent to the CMR)
- ONE sending thread takes data from "the beginning" of this buffer and sends the data to the CMR
- the sending thread takes all the elements it finds in the buffer
As we are dealing with a highly multi-threaded environment, the following requirements for the ringbuffer are important:
- thread-safe
- correctly sinchronized
- highly concurrent and performant
- as fast as possible
- as little locking as possible
Furthermore, the size of the buffer is limited, either by
- maximum number of elements or
- maximum memory
In case the buffer is full and an insertion operation is desired, the oldest element(s) must be dropped to make room for the new element(s).
Moreover, when the limitation is done with respect to memory occupancy, a utility to calculate object sizes is also required.
Approach
There are two issues that have to be dealt with:
- implementing the concurrent access, enqueue and dequeue operations.
- implementing the eviction of old elements when the buffer has reached its size limit
Approach for implementing a concurrent queue [1][2]
- linked list:
- each element holds a reference to the next element
- sentinel nodes: head and tail
- head - points to the first element in the list
- tail - points to the last element in the list
- the last element has a NULL reference for next element
Adding the elements can be performed with or without locking.
Regarding the dequeueing, the constraint that only one thread dequeues all the elements leads to a specialised implementation. The dequeueing can also be lock-based or lock-free, as the eviction thread competes with this thread for changing the head element.
Both locking and lock-free approaches will be implemented in order to find the best approach. The approaches are described in detail in the next sections.
Approach for eviction of old elements
- similar to CMR atomic buffer implementation [4]
- use AbstractObjectSizes class for calculating object sizes [5]
- separate thread for eviction operation by FIFO policy; this operation has to be suspended while the size of all objects in the buffer is smaller than the buffer maximum size
- in the adding thread, signal the eviction thread if needed
- use conditions for suspending and activating the threads that work on eviction and/or analysis
The object size can be computed when enqueueing an element or on a specialised thread for analysis. Both approaches introduce some overhead: size calculation on a separate thread means locking and context switching, while synchronous size calculation means slowing down the enqueue operation, which has to be very fast. We chose the synchronous size calculation at enqueueing.
Completely lock-free approach
Non-blocking is believed to give better performance in highly multi-threaded environments.
The queue can be implemented as follows:
- non-blocking enqueue/dequeue: use compare-and-set to set the values of head and tail
- lazy approach - enqueue/dequeue are both done in two steps [1]
- two-step enqueue:
- compare-and-set to append new element
- compare-and-set to change the value of tail
- "every other method call must be prepared to encounter a half-finished enqueue call, and to finish the job"
- an enqueue call never waits for a dequeuer
- two-step dequeue:
- read the value from the first element
- compare-and-set to change the value of head
- make sure that tail does not lag behind
Refer to Section 10.5 "An Unbounded Lock-Free Queue" in [1] and Section 2 in [2] for a more detailed explanation.
A completely lock-free approach is described below.
Lock-free enqueue and lock-based dequeue
The following diagram shows how the enqueueing is performed without using locks.
The first node in the buffer is always a dummy node with a null object. The tail is an atomic reference to the last element in the buffer. In this example, there is no need for an atomic reference to the first element in the buffer, as there is only one sending thread that can dequeue elements and thus change the dummy node's next element.
However, it is impossible to implement the eviction functionality within this approach without adding a lock. This lock can be held by dequeue and evict, so that these two operations cannot happen at the same time. Nevertheless, the enqueue is lock-free, thus should be very fast.
Lock-based approach
Another possibility to implement a concurrent queue:
- using two locks, one for queing and one for dequeueing
- livelock free
- but high contention
The two locks are
- tail lock - used by enqueue, dequeue
- head lock - used by dequeue, evict
Next, the three operations performed on the buffer in this lock-based implementation are described step by step.
Enqueue:
- allocate node, compute and set size
- lock tail lock
- link node to tail
- swing tail to new node
- unlock tail lock
- change buffer size
- signal eviction if buffer is full
Dequeue:
- if buffer is empty, return
- lock tail lock
- lock head lock
- get the reference of the first element
- swing head and tail to dummy node
- change size to 0
- unlock head lock
- unlock tail lock
- go through buffer, add objects to list
- return list of dequeued nodes
Evict:
- wait until there is need for eviction
- lock head lock
- go through list until the required eviction size is reached
- change head to new first element
- unlock head lock
- subtract evicted size from total buffer size
- we assume here that eviction will never empty the buffer, so it does not need to acquire the tail lock
Circular Buffer
Another idea involves a preallocated circular linked list that also uses sentinel nodes for the first and last element, namely head and tail. The eviction is done implicitly by overriding old elements when the buffer becomes full. The drawback is that this approach can only be used with the limiting strategy depending on the number of elements. The figure below explains the approach.
Realization
Class diagram for a lock-free RingBuffer with separate eviction and analysis threads (Approach 2):
Correctness
Checking for possible inconsistent states for the "completely lock-free" approach, by analyzing what happens when two operations are executed in parallel:
- Dequeue and Evict
- both CAS head first:
- if dequeue succeeds, no eviction is done (first element is different => CAS in eviction fails)
- if evict succeeds, dequeue fails this time and succeeds next time it tries => the evicted elements are not dequeued
- both CAS head first:
- several enqueues
- CAS tail is always the first operation, therefore only one thread can succeed in doing the operation
- the next thread will change tail and link the element after the last element added
- if buffer is empty i.e. (last == dummy) => head is changed only if CAS tail succeeds
- enqueue and dequeue
- if buffer is empy, no dequeue is done (head == dummy)
- dequeue: CAS head to dummy; if this succeeds, set tail to dummy
- if an enqueue is done before CAS head => OK, because enqueue only changes tail (if buffer is empty, enqueue can change head, but no dequeue in that case)
- if an enqueue is done after CAS head, but before set tail, then the element added will be dequeued as well, because it will be added at the end of the buffer.
- when dequeue finally sets tail to dummy, we have an empty buffer
- if an enqueue is done after head and tail are set in dequeue, we have an empty buffer and everything is OK
- after enqueue CAS tail to new node, it links the old tail to the new node: this should be OK and it should happen before the dequeuer reaches to that node (because it has to first set the tail, and then go through the list)
- for a while after dequeue, the size might be greater than the real size (because the size is changed after setting the head, tail, going through the list and calculating the size of the dequeued elements) -> but evict check is head is dummy
- what if eviction happens after dequeue has canged head, tail, but not size, and some enqueues were already done?
- shouldEvict checks if size>capacity, which will be true, but the real size is much smaller! then the eviction will be performed, even though it was not needed, thus we lose some valid new elements!
Testing
Issues that need to be checked:
- Performance
- measure time for different number of threads
- compare the different approaches
- Correctness
- the number/size of elements enqueued has to be equal to the sum of number/size of elements dequeued, evicted and remaining in the buffer at the end of the test:
- enqueued = dequeued + evicted + remaining
The general structure of a test application for RingBuffer has:
- 1 sending thread
- loop:
- sleeps 5s
- dequeues all the elements in the buffer
- prints them
- loop:
- n threads that enter data:
- n = 2, 4, 8, ..., 256
- loop that adds elements
- no sleeping between enqueues to make it fast
- limiting the size by number of elements:
- use random Floats as data
- object size not important, only the number of elements
- limiting the size by memory
- use Strings with variable length
The threads run for some time (e.g. 1 minute) and then are interrupted and the statistics about total number of elements added, retrieved and evicted are printed out.
Results
Comparing the number or size of elements added in 1min for the three implementations (see Figures below), it was observed that the lock-based implementation is the most inefficient, while the other two implementation give similar results, with slightly better results for the completely lock-free implementation, as expected. The figures are based on the average values of three runs for each case.
Microbenchmarking with Caliper
As discussed inthe meeting 2012-10-25 Ringbuffer status update, the results for the lock-free enqueue, lock based dequeue and evict are not always explainable, because the lock-based dequeue and evict is faster than the non locking approach in some cases. We decided to go for microbenchmarking [6], which ismeasures the performance of a very small piece of code. The results, however, were not very conclusive. The lock based approach is definitely the most inefficient, but the other two implementations, the lock free and lock based dequeue and evict, usually give the same results. This can be explained by the rare occurence of the dequeueing operation. Even if it uses a lock or not, it does not happen often enough to have an impact on the overall performace.
Below some results of benchmarking with Caliper are presented. We tried different capacities, different sending intervals, different number/size of elements added, but the results don't give more insight into which method is better.
Therefore, we opted for the completely lock free implementation to be used in the inspectIT agent. The functionality tests and integration test presented in the next section concern this approach.
Functionality and Integration Testing
The tests were implemented using TestNG [7] and are used to thoroughly test the completely lock free implementation, to ensure that it is ready to be used for the agent implementation.
The functionality tests aim to ensure that all the units in the RingBuffer work correctly. The tests include:
- initialisation
- adding one element
- object size calculation
- trying to add a negative sized element
- maintaining the adding order of elements at dequeue time
- dequeueing
- two consecutive dequeues
- checking if the eviction starts once the buffer is full
Each tests checks if the size and shouldEvict have the expected values.
For the limiting strategy, a mocking framework was used, Mockito [8].
The integration tests check if everything works as expected when multiple threads add elements to a buffer, while one thread takes all the elements and another one deals with the eviction. The tests are run for a longer period of time (e.g. 1min) with variable number of threads, and at the end we check if there are any elements lost in the process, i.e. if the number/size of elements added is the same as the sum of the number/size of elements dequeued, evicted and remaining in the buffer.
Building and Running
The projects can be built using the eclipse compiler. The Ivy dependency management system takes care of all the dependencies, with the exception of TestNG (should be on the build path via the Eclipse plugin).
The functional and integration test configurations can be found in the corresponding xml files, which can simply be run from Eclipse.
Running the caliper benchmarks can de done by launching the class BenchmarkRunner with the input parameters given as example in the file.
References
[1] Maurice Herlihy, Nir Shavit, "The Art of Multiprocessor Programming, Revised Reprint"
[2] Maged M. Michael, Michael L. Scott, "Simple, Fast, and Practical Non-Blocking and Blocking Concurrent Queue Algorithms"
[3] ConcurrentLinkedQueue implementation in Java
[4] CMR buffer specifications
[5] Calculation of object sizes
[6] Microbenchmarking with Caliper
[7] TestNG
[8] Mockito