Lambda the Ultimate

I assume that in this context, signals means 'signals as slots' as in Qt, not C signals from the operating system.

I meant executable UML signals, which are asynchronous. How do you handle concurrency in your experimental language? Do you use threads?

I use the actor model. Every object is an actor, i.e. a separate thread. When an object waits for a signal from another object, it enters a new message loop until a signal is raised from the other object.

I think, but could be wrong, that UML signals are just asynchronous methods with no other semantics assumed (e.g. buses, queues, etc).

I question one's ability to verify a design, if that design contains "asynchronous methods with no other semantics assumed". If UML is simply a means for "blackboarding" a design on paper in order to please the boss (and UML artifacts aren't considered real design constraints), then OK I guess... OTOH, if UML is really this ill-specified, then I'm glad my present employer doesn't bother. :)

An amusing rant on UML, courtesy of Bertrand Meyer, can be found here, although some of the criticisms found therein I think are "good" things--in particular, the criticisms that UML isn't "OO" enough. :)

Anytime I've ever seen anybody use UML as more than just a fancy sketching tool semantics have been added. Usually this takes the form of a mapping from UML constructs to language/library constructs.

There are now semantics defined for signal handling in UML as part of executable UML. The semantics are discussed informally in Executable UML: A Foundation for Model-Driven Architecture by Mellor and Balcer. AFAICT though there is still a fair amount of variation between vendors, and little (if any) open source tool support.

AFAIK UML signal handlers are more or less asynchronous UML operations. There are some semantics proposed as part of the executable UML profile for UML, but the whole thing is under development and I have yet to find public specifications of the executable UML profile.

Nice link page, thanks. I wonder if I need all of what the actor concurrency model offers? I am thinking that simple message passing (messages == signals AFAICT), which is only part of the actor model, should be sufficient. However my understanding of issues related to concurrent systems is naive. I would like to hear why one needs more than that.

I just realized that this topic is also very closely related to another active thread here at Lambda-the-Ultimate.org. In that thread Allan McInnes points to The Problem with Threads by Ed Lee. Which I think is interesting and relevant.

Since they are all about concurrency? I dunno, I only just started in on the overview paper mentioned before on LtU.

You might want to take a look at how Eiffel handles concurrency and message-passing. It's a carefully conceived, fairly minimal extension to standard OO programming. A good description (extracted from Meyer's "Object Oriented Software Construction") can be found here. Meyer discusses the rationale for his approach in a lot of detail, getting into why and how it differs from "processes" and "active objects". The approach to communications is fundamentally asynchronous, but includes some provisions for synchronization. Unfortunately, I can't speak to how easy it is to use Eiffel's concurrency mechanisms in practice, since I've not (yet) actually used them.

Thanks, that is a very interesting read. When I get to his discussion of processors, I find myself getting a bit lost. There is a lot of terminology that is unfamiliar to me. I suspect he has invented a lot of the theory there, am I correct? I can't help but wonder if he is making things more complicated than need be? The executable UML model for example seems as complete as needed, and far simpler: it simply extends classes with Moore finite state machines to model asynchronous communication.

(or some other computational device that both accepts inputs and emits outputs), fails to abstract away several key issues with concurrency, that real applications have to be concerned about:

* Scheduling--ensuring progress (avoiding starvation), ensuring scheculing deadlines are met (meeting realtime constraints, if any), mapping objects/actors/etc. onto lower level entities (OS processes/threads, CPU or cores).

* Avoidance of deadlock/livelock.

* The problem of global consensus (something which is difficult in reliable distributed systems; and intractable in unreliable systems).

Meyer has come up with some interesting stuff in the OO context, but as far as "inventing the theory", I would instead refer you to the more fundamental process calculii and models (Actors, CSP/CCS, pi-calculus) as more theoretically sound. Meyer has the unfortunate habit of ignoring theory when he thinks it inconvenient, and trying to hack his way around it (see prior rants concerning the whole covariance mess in Eiffel). It also should be noted, that Eiffel's entire concurrency model is trying to tame the temptest of shared-state concurrency while hiding the fact that concurrency is there--a course of action I believe to be fundamentally unwise.

This makes a lot of sense. Thanks for the insight into Meyer's writing.

I am wondering though how many of the key issues of concurrency can be managed by a compiler, if the concurrency demands on the system are not strict (e.g. no realtime constraints, just benefiting from the concurrency without worrying about it). Going forward, many software developers are going to want concurrency for free: without having to their hands dirty with the details. It seems the executable UML (xUML) approach of using Moore machines would make it easy for software developers to design software that can be compiled to take advantage of available concurrency, and even be run easily on distributed systems.

I wouldn't say that Meyer invented a lot of theory. He did build on some theory (specifically CSP), but I wouldn't say that there's a lot of new theory there - rather a lot of pragmatic choices intended to produce something that looks as similar as possible to sequential OO programming. I agree with Scott that the way that Meyer tries to hide the concurrent nature of what's going on is a little worrying (e.g. the convention of implicit object locking when the object is used as a feature parameter). On the other hand, that approach is somewhat consistent with Meyer's general philosophy of having a "uniform access" style of coding that makes it easy to change implementations later.

I suspect that the reason that things seem more complicated than they have to be to you is the extra contortions Meyer goes through to retain all of the benefits of OO. Specifically, as Meyer points out, simply extending classes with state machines (and thus with behavior) can conflict with inheritance since it isn't obvious how inherited and overridden behaviors should be treated. Which isn't a problem if you're willing to abandon inheritance. But Meyer isn't. Thus the additional complexity. Meyer avoids the problem by avoiding state-machine-like behavior. An alternative approach is to try to reconcile inheritance and behavior. If you're interested in seeing how that might be tackled, you might want to have look at W.M.P. van der Aalst, Inheritance of Dynamic Behavior in UML.

So as I understand it the semantics of signals in UML resemble message passing semantics. Each object that can handle signals (called an active object) does so using a conceptual queue. The signal recieved order is indeterminate except that it maintains the sending order of signals from particular objects. The queue then hands then hands the signals to different signal handlers.

It seems though that this description most resembles the actor model of concurrency, and that the UML usage of the term signal is perhaps misguided and should be replaced with "message". What do you think?

side-effects of signal handlers do not compose well, but side-effects are often the preferred way to get a value "out" of a handler.

Why is it the preferred way then, is it just laziness or are there other motivations? In executable UML the only way to get a value out of a signal handler, is to wait for it to send another signal back to you.

Clearly systems with lots of signals can be complex to keep track of, but UML provides state machine diagrams and state transition tables for the purpose of understanding the interaction of signals. UML also has a constraint language, called OCL, for expressing constraints. On that note, is anyone aware of general purpose languages which support state machines as first class constructs?

cdiggins: On that note, is anyone aware of general purpose languages which support state machines as first class constructs?

I haven't noticed one mentioned yet. But I'm headed in that direction myself — not that state machines are a particular goal. (I've just had folks ask me "can I create state machines with that?" and I said, yeah sure.)

If you make a language that let's you declare async callback handlers, you can use those to build a state machine by accretion without delaring that's what you're doing. But it might be better to also build into such a language a way of declaring the entire state machine, part of which is the async event handers, so a system could reason about the whole a little better.

Among other things, it would make a state machine easier for users to comprehend if a language had a way of managing one as a first class object. If you're designing an async system, you probably want the state machine manifested in some form, if only so you can assert the description is the intended spec to folks working on the system. (Then you could also track evidence like stats that agree or disagree with the state machine's model.)

You might want to look at the gen_fsm behaviour in Erlang. I haven't used it myself, and it doesn't seem to be as full-featured as what you describe, but it does provide a way to create an FSM and treat it as a first-class managed entity (put it in a supervision tree, shut the entire thing down, etc.).

...provides native support for hierarchical finite state machines. Perhaps Tim can comment on that when he can spare a moment.

I don't understand why you are asking for such a construct. If it existed, it would only hinder development, in most cases. The simple Actor model is more than enough for all cases of concurrency. What more are you asking for?

UML is just another language, and programs written in it need to be proved correct as well. So why bother?

"If it existed, it would only hinder development, in most cases."

Why do you say that? Finite state machines are a very effective way to express many different kinds of concurrent systems. How would it hinder development to use a FSM to express the behavior of my software?

You are doing the work twice. You have to write the code at some point. And since tools can never write the code 100%, it's highly unlikely that you will not have to prove that the code does as expected.