Strong Linearizability Without Compare&Swap: The Case of Bags

Ellen, Faith; Sela, Gal

doi:10.4230/LIPIcs.DISC.2025.29

Strong Linearizability Without Compare&Swap: The Case of Bags

Faith Ellen

University of Toronto, Canada Gal Sela

EPFL, Lausanne, Switzerland

Abstract

Because strongly-linearizable objects provide stronger guarantees than linearizability, they serve as valuable building blocks for the design of concurrent data structures. Yet, many objects that have linearizable implementations from base objects weaker than compare&swap objects do not have strongly-linearizable implementations from the same base objects. We focus on one such object: the bag, a multiset from which processes can take unspecified elements.

We present the first lock-free, strongly-linearizable implementation of a bag from interfering objects (specifically, registers and test&set objects). This may be surprising, since there are provably no such implementations of stacks or queues.

Since a bag can contain arbitrarily many elements, an unbounded amount of space must be used to implement it. Hence, it makes sense to also consider a bag with a bound on its capacity. However, like stacks and queues, a bag with capacity $b$ shared by more than $2b$ processes has no lock-free, strongly-linearizable implementation from interfering objects. If we further restrict a bounded bag so that only one process can insert into it, we are able to obtain a lock-free, strongly-linearizable implementation from $O(b+n)$ interfering objects, where $n$ is the number of processes.

Our goal is to understand the circumstances under which strongly-linearizable implementations of bags exist and, more generally, to understand the power of interfering objects.

Keywords and phrases:

Strong-Linearizability, Bag, Concurrent Data Structures, Wait-Freedom, Lock-Freedom

Copyright and License:

2012 ACM Subject Classification:

Computing methodologies

\rightarrow

Shared memory algorithms ; Theory of computation

\rightarrow

Data structures design and analysis ; Theory of computation

\rightarrow

Concurrent algorithms

Related Version:

Full Version: https://arxiv.org/abs/2411.19365 [10]

Funding:

This work was supported in part by the Natural Science and Engineering Research Council of Canada (NSERC) grant RGPIN-2020-04178.

DOI:

10.4230/LIPIcs.DISC.2025.29

Event:

39th International Symposium on Distributed Computing (DISC 2025)

Editor:

Dariusz R. Kowalski

Series and Publisher:

Leibniz International Proceedings in Informatics, Schloss Dagstuhl – Leibniz-Zentrum für Informatik

1 Introduction

Concurrent data structures are often built using linearizable implementations of objects as if they were atomic objects. Although linearizability is the usual correctness condition for concurrent algorithms, there are scenarios where composing linearizable implementations does not preserve desired properties. Namely, an algorithm that uses atomic objects may lose some of its properties when these atomic objects are replaced by linearizable implementations. Specifically, linearizability does not preserve hyperproperties (properties of sets of executions), for example, probability distributions of events for randomized programs and security properties such as noninterference [11, 6]. This can be rectified by using strongly-linearizable implementations [11]. They guarantee that the linearization of a prefix of a concurrent execution is a prefix of the linearization of the whole execution. This means that the linearization of operations in an execution prefix cannot depend on later events in the execution.

Attiya, Castaneda, and Enea [3] observed that strongly-linearizable implementations of objects typically use compare&swap objects, which can be used to solve consensus among any number of processes. They provided strongly-linearizable implementations of some objects, such as a wait-free single-writer snapshot object and a wait-free max register from a fetch&add object, and a lock-free, readable, resettable test&set object and a lock-free, readable, fetch&increment object from an infinite array of test&set objects and registers. Both fetch&add and test&set objects are less powerful than a compare&swap object.

In this work, we aim to further explore the power of these well-studied building blocks in the context of strong linearizability. Specifically, we investigate strongly-linearizable implementations of a bag from these primitives. Establishing the existence of such implementations deepens our understanding of the circumstances under which these primitives can be used to achieve strong linearizability.

A bag is a multiset to which processes can insert elements and from which they can take unspecified elements. A concurrent bag is an abstraction of the interaction between producers and consumers and is commonly used to distribute tasks among processes for load balancing and improved scalability.

Queues and stacks have strongly-linearizable implementations from compare&swap objects [15, 21, 19]. A bag has a straightforward implementation from a stack or a queue. Therefore, a bag has a strongly-linearizable implementation from compare&swap objects. Although there is a wait-free, linearizable implementation of a stack from registers, test&set objects, and a readable fetch&increment object [1] and there is a lock-free, linearizable implementation of a queue from the same set of objects [16], neither of these implementations is strongly-linearizable. In fact, Attiya, Castañeda, and Hendler [5] proved that no lock-free, strongly-linearizable implementation of a stack or queue from such objects is possible. Attiya, Castañeda, and Enea [3] claimed that the lock-free linearizable implementation of a queue which appears in Figure 5, is a strongly-linearizable implementation of a bag. We give a counterexample to this claim in Appendix A. This was the starting point for our research.

The challenge when implementing a strongly-linearizable bag is to enable an operation that is trying to take an element from the bag to detect when the bag is empty. If elements can reside in multiple locations, it does not suffice for the operation to simply examine these locations one by one, concluding that the bag is empty if no elements are found. The problem is that new elements may have been added to locations after they were examined. Even if there was a configuration during the operation in which the bag was empty, it might not be possible to linearize the operation at this point while maintaining strong linearizability. For example, after this point, in an alternative execution, a value could be added to a location that the operation had not yet examined and the operation could return that value, instead of EMPTY.

We address this challenge in Section 4, modifying the lock-free, linearizable implementation of a queue by adding an additional readable fetch&increment object. This object is used by operations which are inserting elements into the bag to inform operations which are trying to take elements from the bag that the bag is no longer empty. We prove that the resulting algorithm is a strongly-linearizable implementation of a bag.Interestingly, although our algorithm is still a linearizable implementation of a queue, it is not a strongly-linearizable implementation of a queue.

A bag can grow arbitrarily large, so either the number of objects used to implement it or the size of the objects must be unbounded. An alternative is a $b$ -bounded bag, which can simultaneously contain up to $b$ elements. Unfortunately, Attiya, Castaneda, and Enea [3] proved that a $b$ -bounded bag shared by more than $2b$ processes has no lock-free, strongly-linearizable implementation from interfering objects [3]. However, we do provide a lock-free, strongly-linearizable implementation of a restricted version of a $b$ -bounded bag, into which only one process, the producer, can insert elements. It uses a bounded number of registers, each of bounded size, and readable, resettable test&set objects. Before presenting this implementation, we give two different implementations of a 1-bounded bag with a single producer, which introduce some of the ideas that appear in our $b$ -bounded bag implementation.

In Section 5, we present a wait-free, linearizable implementation of a 1-bounded bag. Note that it provides a stronger progress guarantee. To keep the space bounded, when the producer inserts an element into the bag, it may reuse objects previously used for other elements. It has to do this carefully, to avoid reusing objects that other processes may be poised to access. This requires delicate coordination between the producer and the consumers.

In Section 6, we present a lock-free, strongly-linearizable implementation of a 1-bounded bag. It combines the mechanism for detecting an empty bag from our lock-free, strongly-linearizable implementation of a bag and the mechanism for reusing objects from our wait-free, linearizable implementation of a 1-bounded bag.

Our lock-free, strongly-linearizable implementation of a $b$ -bounded bag, for any value of $b$ , is presented in Section 7. To enable the producer to detect when the bag is full, we use an approach that is similar to detecting when the bag is empty, but we have to ensure that these two mechanisms do not interfere with one another. In our implementation of a 1-bounded bag in Section 6, the producer determines whether the bag is empty or full by inspecting a single object. This makes this implementation both simpler and more efficient than the special case of our implementation of a $b$ -bounded bag when $b=1$ .

2 Preliminaries

We consider an asynchronous system where processes communicate through operations applied to shared objects. Each type of object supports a fixed set of operations that can be applied to it. For example, a register supports read(), which returns the value of the register, and write( $x$ ), which changes the value of the register to $x$ .

Each process can be modelled as a deterministic state machine. A step by a process specifies an operation that the process applies to a shared object and the response, if any, that the operation returns. The process can then perform local computation, perhaps based on the response of the operation, to update its state. A process can crash, after which it takes no more steps.

A configuration consists of the state of every process and the value of every shared object. In an initial configuration, each process is in its initial state and each object has its initial value. An execution is an alternating sequence of configurations and steps, starting with an initial configuration. If an execution is finite, it ends with a configuration. The order in which processes take steps is determined by an adversarial scheduler.

The consensus number of an object is the largest positive integer $n$ such that there is an algorithm solving consensus among $n$ processes using only instances of this object and registers. A register has consensus number 1. Another example of an object with consensus number 1 is an ABA-detecting register [2]. It supports dWrite( $x$ ) and dRead(). When dWrite( $x$ ) is performed, $x$ is stored in the object. When a process $p$ performs dRead(), the value stored in the object is returned, together with an output bit, which is true if and only if process $p$ has previously performed dRead() and some dWrite() has been performed since its last dRead(). We use a restricted version of an ABA-detecting register, where dWrite() does not have an input parameter and dRead() simply returns the output bit.

A test&set object has initial value 0 and supports only one operation, t&s(). If the value of the object was 0, this operation changes its value to 1 and returns 0. If the value of the object was 1, it just returns 1. In the first case, we say that the t&s was successful and, in the second case, we say that it was unsuccessful. A resettable test&set object is like a test&set object, except that it also supports reset(), which changes the value of the object to 0. A fetch&increment object supports f&i(), which increases the value of the object by 1 and returns the previous value of the object. A compare&swap object supports the operation c&s( $u, v$ ), which checks whether the object has value $u$ and, if so, changes its value to $v$ . It always returns the value of the object immediately before the operation was performed. For any type of object that does not support read, its readable version supports read in addition to its other operations.

Two operations, $o p$ and $op^{\prime}$ , commute if, whenever $o p$ is applied to the object followed by $op^{\prime}$ , the resulting value of the object is the same as when $op^{\prime}$ is applied followed by $o p$ . Note that the responses to $o p$ and $op^{\prime}$ may be different when these operations are applied in the opposite order. The operation $op^{\prime}$ overwrites the operation $o p$ if, whenever $o p$ is applied to the object followed by $op^{\prime}$ , the resulting value of the object is the same as when only $op^{\prime}$ is applied. Note that the response to $op^{\prime}$ may be different depending on whether $o p$ was applied. An object is interfering if every two of its operations either commute or one of them overwrites the other. All interfering objects have consensus number at most 2 [13]. Registers are interfering. The test&set, resettable test&set, and fetch&increment objects and their readable versions are all interfering and have consensus number 2.

Both a stack and a queue are examples of non-interfering objects with consensus number 2 [13]. The value of these objects is an unbounded sequence of elements, which is initially empty. A stack supports push( $x$ ) and pop(), whereas a queue supports enqueue( $x$ ) and dequeue().

A bag is a non-interfering object whose value is an initially empty multiset of elements. The number of elements that can be in the multiset is unbounded. The elements are taken from a set of values $V$ that does not include $\bot$ . A bag supports two operations, Insert( $x$ ) where $x\in V$ and Take. When Insert( $x$ ) is performed, the element $x$ is added to the multiset. It does not return anything. If the multiset is not empty, a Take operation removes an arbitrary element from the multiset and returns it. In this case, we say that the operation is successful. If the multiset is empty, then Take returns EMPTY and we say that it is unsuccessful. Note that this specification is nondeterministic.

A b-bounded bag object is an object whose value is a multiset of at most $b$ elements. If the multiset contains fewer than $b$ elements when Insert( $x$ ) is performed, the element $x$ is added to the multiset and OK is returned. If the multiset already contains $b$ elements, the value of the bag does not change and FULL is returned. For simplicity, we assume no value repetitions in the bounded bags in our proofs.

An implementation of an object $O$ shared by a set of processes $P$ from a collection of objects $C$ provides a representation of $O$ using objects in $C$ and algorithms for each process in $P$ to perform each operation supported by $O$ . In an execution, an operation on an implemented object begins when a process performs the first step of its algorithm for performing this operation and is completed at the step in which the process returns from the algorithm, with the response of the operation, if any.

A bag has a straightforward implementation from a stack or a queue. The multiset is represented by the sequence, Insert( $x$ ) is performed by applying push( $x$ ) or enqueue( $x$ ) and Take() is performed by applying pop() or dequeue(). Thus a bag has consensus number at most 2.

There is a simple algorithm for solving consensus among 2 processes using two single-writer registers and a bag initialized with one element: To propose the value $x$ , a process writes $x$ to its single-writer register and then performs a Take() operation on the bag. If the Take() returns an element, the process returns $x$ . Otherwise, it reads and returns the value that the other process wrote to its single-writer register. It follows from Borowsky, Gafni, and Afek’s Initial State Lemma [7, Lemma 3.2], that consensus among 2 processes can be solved from registers and two initially empty bags. Thus, a bag has consensus number exactly 2.

For any execution, $\alpha$ , consider an ordering of every completed operation and a (possibly empty) subset of the operations that have begun, but have not completed, such that, for every completed operation, $o p$ , each of these operations that begins after $o p$ has completed is ordered after $o p$ . A way to obtain such an ordering is to first assign a linearization point in $\alpha$ to each of these operations within its operation interval, i.e., no operation is linearized before it begins or after it has completed. Then specify an ordering of the operations that are linearized at the same point. Suppose there is a sequential execution in which the operations in the ordering are performed in order such that every completed operation in $\alpha$ has the same response as it does in this sequential execution. Then we say that the ordering is a linearization of $\alpha$ .

An implementation of an object is linearizable [14] if each of its executions has a linearization. An implementation is strongly-linearizable [11] if there is a function $f$ that maps each execution $\alpha$ to a linearization of $\alpha$ such that, for every prefix $\alpha^{\prime}$ of $\alpha$ , $f(\alpha^{\prime})$ is a prefix of $f(\alpha)$ .

An implementation is wait-free if, in every execution, every operation by a process that does not crash completes within a finite number of steps by that process. An implementation is lock-free if every infinite execution contains an infinite number of completed operations.

3 Related Work

Even though there are wait-free, linearizable implementations of registers, max-registers, and single-writer snapshot objects from single-writer registers, Helmi, Higham, and Woelfel [12] proved that there are no lock-free, strongly-linearizable implementations. They also gave a wait-free, strongly-linearizable implementation of a bounded max-register from registers. Denysyuk and Woelfel [9] proved there are no wait-free, strongly-linearizable implementations of max-registers and single-writer snapshot objects from registers, although they gave lock-free strongly-linearizable implementations. Later, Ovens and Woelfel [20] gave lock-free, strongly-linearizable implementations of an ABA-detecting register and a single-writer snapshot object from a bounded number of bounded size registers.

Li [16] gave a lock-free, linearizable implementation of a queue from a fetch&increment object, an infinite array of test&set objects, and an infinite array of registers. He also gave a wait-free, linearizable implementation of a queue in which at most 2 processes may dequeue. It uses a fetch&increment object and infinite arrays of registers and test&set objects. David [8] gave a wait-free, linearizable implementation of a queue in which at most 1 process may enqueue. It uses registers, an infinite array of fetch&increment objects, and a two-dimensional infinite array of swap objects. It is unknown whether there is a wait-free, linearizable implementation of a queue from interfering objects in which any number of processes can enqueue and dequeue.

Afek, Gafni, and Morrison [1] gave a wait-free, linearizable implementation of a stack from interfering objects (specifically, a fetch&add object, registers, and test&set objects). Attiya and Enea [6] showed that this implementation is not strongly-linearizable. Attiya, Castañeda, and Enea [3] later proved that there is no lock-free, strongly-linearizable implementation of a stack or a queue shared by more than 2 processes from interfering objects.

Many universal constructions (for example, from compare&swap objects and registers or from consensus objects and registers) provide strongly-linearizable, wait-free implementations of any shared object [11]. Treiber [21, 19] gave a simple lock-free, strongly-linearizable implementation of a stack from compare&swap objects and registers. Michael and Scott [18] gave a lock-free, linearizable implementation of a queue from compare&swap objects and registers. Assuming nodes are never reused, it is possible to make a small modification to their implementation to make it strongly-linearizable [15].

4 A Lock-Free, Strongly-Linearizable Implementation of a Bag

The first algorithm we present is a strongly-linearizable implementation of an unbounded bag. The challenge in designing such an algorithm from interfering objects lies in identifying when the bag is empty. To address this, we use a readable fetch&increment object, Done, which an Insert operation increments as its last step, to inform Take operations that the bag is not empty. A detailed description of the algorithm follows.

The implementation uses an infinite array of registers, $I t e m s$ , in which elements that have been inserted into the bag are stored, together with an infinite array of test&set objects, $T S$ . The process that performs a successful t&s() on $TS[i]$ returns the element stored in $Items[i]$ and removes it from the bag.

Each Insert( $x$ ) operation begins by performing f&i() on a readable fetch&increment object, Allocated. This allocates the operation a new location within Items in which it writes $x$ . Thus, the value of Allocated is the index of the last allocated location within Items. Finally, the operation performs f&i() on a second readable fetch&increment object, Done, to inform Take() operations about the insertion.

A Take() operation begins by reading Done and Allocated. Then it reads the allocated locations in Items. For each location, i, if Items[i] contains $x\neq\bot$ , the operation performs t&s() on the corresponding test&set object, TS[i]. If this is successful, $x$ is returned. After reading all the allocated locations in Items without performing a successful t&s(), the operation rereads Done. If its value has not changed since the operation last read Done, EMPTY is returned. Otherwise, the operation repeats the entire sequence of steps. Note that it begins again starting from the first location, in case an Insert operation that was allocated an early location has recently written to that location. Pseudocode for our implementation of a bag appears in Figure 1.

Figure 1: A lock-free, strongly-linearizable bag.

Strong-linearizability.

Consider any execution consisting of operations on this data structure. We linearize the operations as follows:

$\blacksquare$

A Take() operation that performs a successful t&s() on Line 17 is linearized at this step. It returns the element it last read on Line 15.
$\blacksquare$

A Take() operation that reads Done on Line 18 and obtains the same value it obtained in its previous read of Done (on Line 12) is linearized at this last read. It returns EMPTY.
$\blacksquare$

Consider an Insert( $x$ ) operation, $i n s,$ that was allocated location m and wrote $x$ to Items[m] on Line 8. If some Take() operation performs a successful t&s() on TS[m] after $i n s$ performed Line 8, but before $i n s$ performs Done.f&i() on Line 9, then $i n s$ is linearized immediately before this Take(). In this case, we say that these two operations are coupled. Otherwise, $i n s$ is linearized when it performs Done.f&i().

The linearization point of each operation occurs within its operation interval. At any configuration, $C$ , the bag contains the difference between the multiset of elements inserted by Insert operations linearized before $C$ and the multiset of elements returned by successful Take operations linearized before $C$ .

Each Take() operation is linearized immediately before it returns. Thus, if it is linearized at some point in an execution, it is linearized at the same point in every extension of that execution. Each Insert( $x$ ) operation that is coupled with a Take() operation is linearized immediately before that Take() operation. This means that the inserted element is taken from the bag immediately after it is inserted. Thus, if a coupled Insert( $x$ ) operation is linearized at some point in an execution, it is linearized at the same point in every extension of that execution. Each uncoupled Insert( $x$ ) operation is linearized when it increments Done. This ensures that, if a Take() operation sees that the value of Done has not changed between Line 12 and Line 18, then no uncoupled Insert has been linearized during this part of the execution. An uncoupled Insert( $x$ ) operation is linearized immediately before it returns, so it is linearized at the same point in every extension of the execution. Hence, if the implementation is linearizable, it is strongly-linearizable.

To show that the ordering is a linearization, it remains to prove that the values returned by the Take() operations are consistent with the sequential specifications of a bag. Let $t k$ be a Take() operation that performs a successful t&s() of TS[ $i$ ] on Line 17 and let $x\neq\bot$ be the element it read from Items[ $i$ ] when it last performed Line 15. Since $t k$ read $x$ from Items[ $i$ ], there was an Insert( $x$ ) operation that wrote $x$ into Items[ $i$ ] on Line 8. Note that there was exactly one Insert operation that was allocated $i$ on Line 7, by the semantics of f&i(). This Insert( $x$ ) operation was linearized before $t k$ , either because it executed Line 9 before $t k$ performed its successful t&s() on TS[ $i$ ] or it was coupled with $t k$ and, hence, linearized immediately before $t k$ . The element $x$ remains in the bag until the linearization point of $t k$ because the element in Items[ $i$ ] is only returned by the Take() operation that performs the successful t&s() on TS[ $i$ ].

Now let $t k$ be a Take operation that reads Done on Line 18 and obtains the same value it obtained in its previous read of Done on Line 12. Let $C$ be the configuration immediately after $t k$ reads Done on Line 12 in its last iteration of the repeat loop and let $C^{\prime}$ be the configuration immediately before $t k$ reads Done for the last time on Line 18. The value of Done does not change between these two configurations. Let $m$ be the value $t k$ read from Allocated on Line 13, which is the largest location in Items that had been previously allocated to an Insert operation.

Any element, $x$ , that was in the bag in configuration $C$ was inserted into the bag by an uncoupled Insert( $x$ ) operation. This operation was linearized when it performed Line 9. Suppose that it wrote $x$ into Items[ $i$ ]. This happened prior to $C$ . Note that $i\leq m$ , since $m$ was obtained when $t k$ read Allocated on Line 13 after $C$ and the value of Allocated only increases. When $t k$ performed Line 15 between configurations $C$ and $C^{\prime}$ , it read $x$ from Items[ $i$ ]. Since $t k$ later reaches Line 18, its t&s() on TS[ $i$ ] was unsuccessful. Some other Take operation previously performed a successful t&s() on TS[ $i$ ] and, when it did, element $x$ was taken from the bag. Therefore, all elements that were in the bag in configuration $C$ were taken by Take operations other than $t k$ before $C^{\prime}$ .

Now consider any element that was inserted into the bag between configurations $C$ and $C^{\prime}$ by some Insert operation. Since the value of Done did not change between $C$ and $C^{\prime}$ , this Insert operation did not perform Done.f&i() on Line 9. Hence, it was coupled with a Take operation and it was immediately taken from the bag after it was inserted into the bag. Therefore, all elements that were inserted into the bag between configurations $C$ and $C^{\prime}$ were taken from the bag prior to configuration $C^{\prime}$ . Hence, the bag is empty in configuration $C^{\prime}$ , immediately before the step at which $t k$ is linearized.

Lock-freedom.

The Insert operation performs 3 steps, so it is wait-free. When a Take operation finishes an iteration of the loop and is about to begin another iteration, the value of Done it last read on Line 18 was different than what it last read on Line 12. This means that some Insert operation performed Done.f&i() on Line 9 between these two points of the execution. This step completes the Insert operation.

It is worth noting that the algorithm in Figure 1 also implements a linearizable queue. The proof of this fact is very similar to the proof used by Li [16]. However, it is not a strongly-linearizable queue, as we prove in Appendix B.

5 A Wait-Free, Linearizable Implementation of a 1-Bounded Bag with a Single Producer

Figure 2: A wait-free, linearizable 1-bounded bag with one producer and

n

consumers.

Our first bounded bag algorithm from interfering objects is a wait-free, linearizable implementation of a bag that can contain at most one element. It is shared by $n$ processes, $P_{1},\ldots,P_{n}$ , called consumers, that can perform Take() and a single process, called the producer, that can perform Insert( $x$ ). To keep the space bounded, the producer reuses locations in Items to store new elements. The producer announces the most recent location it has allocated by writing it to the shared register Allocated. There is a resettable test&set object, instead of a test&set object, associated with each location in Items. An array, Hazards, of hazard pointers [17] is used to prevent multiple consumers from returning the same element, and to ensure that each element is consumed before being overwritten by a new element. Each consumer announces a location it is about to access and the producer avoids reusing the announced locations. Specifically, the producer avoids resetting the corresponding test&set objects and writing new elements to the corresponding locations in Items.

The producer maintains two persistent local variables, m, which is the last location in Items it allocated, and used, which is a set of locations it has used and will need to reset before they are reallocated. To eliminate the need for a special case to handle the first Insert call (which is the only one not preceded by a previous insertion), the initial state of the data structure is as if location 1 had been allocated to the producer, it had inserted an element into the bag in this location, and then this element had been taken by some consumer. This is simulated by setting the initial values of m, Allocated, and TS[1] to 1.

The producer begins an Insert( $x$ ) operation by checking whether the test&set object, TS[m], in the last allocated location, m, is 0. If so, it returns FULL. Otherwise, it overwrites the element in Items[m] with $\bot$ and adds the index m to used. Afterwards, it collects the set of hazardous locations stored in Hazards. It then allocates an arbitrary location from $\{1,\ldots,n+1\}$ that is not hazardous and announces this location by writing it to Allocated. Next, it resets the test&set for each location in used that is not hazardous. Then it removes these locations from used. Finally, it writes $x$ to the newly allocated location in Items and returns OK.

To perform a Take() operation, a consumer reads Allocated. It announces the location it read in Hazards and then reads the value in this location. If it is an element $x\neq\bot$ , the consumer performs t&s() on the resettable test&set object for this location. It then clears its announcement. If the t&s() was successful, it returns $x$ . If either $x=\bot$ or the t&s() was unsuccessful, it returns EMPTY.

If Items[ $a$ ] contains an element $x\neq\bot$ , but this element has already been taken from the bag, it is essential that no consumer can perform a successful t&s() on the associated test&set object, TS[ $a$ ], and take the element again. To ensure this, a consumer, $P_{i}$ writes $a$ to Hazards[ $i$ ] before reading Items[ $a$ ]. This prevents the producer from resetting TS[ $a$ ] while $P_{i}$ is poised to access TS[ $a$ ].

After it has set Items[m] to $\bot$ , but before resetting any test&set objects, the producer will collect the locations that appear in Hazards and refrain from resetting the test&set objects associated with the hazardous locations it collected. Hence, it will not reset a test&set object which any consumer is poised to access.

Assuming that the universe of elements that can be inserted into the bag is bounded, the registers used in the implementations store bounded values and thus, the amount of space used by the implementation is bounded. Pseudocode for our implementation appears in Figure 2.

Consider any execution consisting of operations on this data structure. We linearize the operations as follows:

$\blacksquare$

A Take() operation that performs a successful t&s() on Line 44 is linearized at this step. It returns the element it last read on Line 42.
$\blacksquare$

Consider a Take() operation, $t k$ , that returns EMPTY. If Items[ $a$ ] = $\bot$ or TS[ $a$ ] = 1 when $t k$ read $a$ from Allocated on Line 40, then $t k$ is linearized at this step. Otherwise, we can show that some other Take() operation performed a successful t&s() on TS[ $a$ ] after $t k$ performed Line 40, but before $t k$ returned. In this case, $t k$ is linearized immediately after the first such Take() operation.
$\blacksquare$

An Insert( $x$ ) operation that reads 0 from TS[m] (on Line 28) is linearized at this read. It returns FULL.
$\blacksquare$

An Insert( $x$ ) operation that writes $x$ on Line 37 is linearized at this write. It returns OK.

Because the code contains no unbounded loops, the implementation is wait-free. Keeping track of hazardous locations enables objects to be safely reused so that bounded space is used. However, this makes the algorithm and its proof of correctness more intricate. In the full version of the paper [10], we prove that Figure 2 is a linearizable implementation of a 1-bounded bag. Appendix C shows that it is not strongly-linearizable.

6 A Lock-Free, Strongly-Linearizable Implementation of a 1-Bounded Bag with a Single Producer

Figure 3: A lock-free, strongly-linearizable 1-bounded bag with one producer and

n

consumers.

In this section, we present a lock-free, strongly-linearizable implementation of a bag that can contain at most one element. It is shared by $n$ processes, $P_{1},\ldots,P_{n}$ , called consumers, that can perform Take() and a single process, called the producer, that can perform Insert( $x$ ). It combines ideas from our lock-free, strongly-linearizable implementation of an unbounded bag in Section 4 and our wait-free, linearizable implementation of a 1-bounded bag in Section 5. To keep the space bounded, we use an ABA-detecting register for Done, instead of a readable fetch&increment object. An ABA-detecting register has a lock-free, strongly-linearizable implementation from registers using bounded space [20].

An Insert( $x$ ) operation by the producer is the same as in the wait-free linearizable implementation presented in the previous section, except the producer writes to the ABA-detecting register Done before it returns OK.

To perform a Take() operation, a consumer, $P_{i}$ , reads Done and Allocated. In Hazards[i], it announces the location, a, that it read from Allocated. Then $P_{i}$ reads Items[a] and, if it contains an element $x\neq\bot$ , then $P_{i}$ performs t&s() on TS[a]. Next $P_{i}$ clears its announcement. If the t&s() was successful, $P_{i}$ returns $x$ . If either $x=\bot$ or the t&s() was unsuccessful, $P_{i}$ rereads Done and, if its value has not changed since $P_{i}$ ’s previous read, $P_{i}$ returns EMPTY. Otherwise, $P_{i}$ repeats the entire sequence of steps. Pseudocode for our implementation appears in Figure 3.

Linearizability.

Consider any execution consisting of operations on this data structure. We linearize the operations as follows:

$\blacksquare$

A Take() operation that performs a successful t&s() on Line 78 is linearized when it performs this t&s(). It returns the value it read in its last execution of Line 76.
$\blacksquare$

A Take() operation that gets false from Done.dRead() on Line 82 is linearized at this step. It returns EMPTY.
$\blacksquare$

An Insert( $x$ ) operation that reads 0 from TS[m] (on Line 59) is linearized at this read. It returns FULL.
$\blacksquare$

Consider an Insert( $x$ ) operation, $i n s$ , that allocated location a to m on Line 63 and wrote $x$ to Items[a] on Line 68. If some Take() operation performs a successful t&s() on TS[a] after $i n s$ performed Line 68, but before $i n s$ performs Done.dRead() on Line 69, then $i n s$ is linearized immediately before the Take() operation that performed the first such t&s(). In this case, $i n s$ returns OK and we say that these Insert( $x$ ) and Take() operations are coupled.
$\blacksquare$

An Insert( $x$ ) operation that performs Done.dWrite() on Line 69, but has not already been linearized as a coupled operation, is linearized at this step. In this case, it returns OK and we say that it is uncoupled.

The proof that Figure 3 is a lock-free, strongly-linearizable implementation of a $b$ -bounded bag appears in the full version of the paper [10].

7 A Lock-Free Strongly-Linearizable Implementation of a $𝒃$ -Bounded Bag with a Single Producer

Our final algorithm is a lock-free, strongly-linearizable implementation of a bag that can contain at most $b$ elements. It is shared by $n$ processes, $P_{1},\ldots,P_{n}$ , called consumers, that can perform Take() and a single process, called the producer, that can perform Insert( $x$ ). It extends our lock-free, strongly-linearizable implementation of a 1-bounded bag in Section 6. In this algorithm, Allocated is a shared register that stores a subset of at most $b$ locations, and alloc is a local variable the producer uses to update the contents of Allocated. The challenge in designing a strongly-linearizable bag algorithm from interfering objects was for an operation that is trying to take an element from the bag to detect when the bag is empty (and then return EMPTY). This is addressed using an ABA-detecting register, InsertDone, to which each Insert( $x$ ) operation writes after writing $x$ to Items. When designing a strongly-linearizable bounded bag algorithm from interfering objects, an operation that is trying to insert an element into the bag faces a symmetrical challenge, as it needs to detect when the bag is full (and then return FULL). To address this, we use another ABA-detecting register, TakeDone, to which each Take() operation writes after performing a successful t&s(). Unsuccessful Take operations also write to TakeDone before returning, to help them be linearized before the unsuccessful Take.

The producer begins an Insert( $x$ ) operation by reading TakeDone. Then it looks at each of the locations in TS that have been allocated. For each location $m$ that contains 1, it clears the element in that location (setting Items[m] to $\bot$ ), removes m from alloc, and adds m to used. If alloc contains less than $b$ locations, it adds $x$ to the bag as follows. It first collects the non- $\bot$ values from the Hazards array into the set hazardous. Afterwards, it allocates an arbitrary location, m, from $\{1,\ldots,n+b\}$ , excluding those in alloc and in hazardous, adds this location to alloc, and announces it by copying alloc into Allocated. Next, for each location in used that is not in hazardous, it resets the associated test&set object and removes the location from used. Then it writes $x$ to the allocated object, Items[m]. Finally, it writes to the ABA-detecting register InsertDone and returns OK. If alloc contained $b$ locations, it rereads TakeDone and, if its value has not changed since its previous read, it returns FULL; otherwise, it repeats the entire sequence of steps.

To perform a Take() operation, a process reads InsertDone and Allocated. For each location $a$ in the set of locations obtained from Allocated, it announces $a$ in Hazards and then reads the element, x from Items[a]. If $x\neq\bot$ , it performs t&s() on the associated test&set object, TS[a], and, if successful, it clears its announcement, writes to TakeDone, and returns $x$ . If the process completes the for loop, it clears its announcement, and rereads InsertDone. If the value of InsertDone has not changed since its previous read, it writes to TakeDone and returns EMPTY. Otherwise, it repeats the entire sequence of steps. Pseudocode for our implementation appears in Figure 4.

Figure 4: A lock-free, strongly-linearizable

b

-bounded bag with one producer and

n

consumers.

Linearizability.

Consider any execution consisting of operations on this data structure. We linearize the operations as follows:

$\blacksquare$

An Insert operation that obtains false when it reads TakeDone on Line 111 is linearized at this read. It returns FULL.
$\blacksquare$

Consider an Insert(x) operation, $i n s$ , that allocated location $a$ to m on Line 102 and wrote $x$ to Items[a] on Line 108. Suppose that, while it is poised to write to InsertDone on Line 109, some Take operation, $t k$ , performs a successful t&s() on TS[a] and then some (possibly different) Take operation writes to TakeDone. In this case, $i n s$ is linearized immediately before $t k$ , $i n s$ returns OK, and we say that $i n s$ and $t k$ are coupled.

In the full version of the paper [10], we prove that at most one successful t&s() can be performed on TS[a] after $i n s$ writes to Items[a] and before it writes to InsertDone. Hence, an Insert operation is coupled with at most one Take operation.
$\blacksquare$

Suppose that an Insert operation, $i n s$ , writes to InsertDone on Line 109, but has not already been linearized as a coupled operation. Then, $i n s$ is linearized when it performs this write and returns OK, and we say that $i n s$ is uncoupled.
$\blacksquare$

Consider a Take operation, $t k$ , that performs a successful t&s() on TS[a] on Line 121. It is linearized at the first among the following events to occur after the successful t&s() by $t k$ : a write to TakeDone by any Take operation on Line 123 or Line 127, a read of 1 from TS[a] on Line 96, and a write to InsertDone on Line 109 by an uncoupled Insert that wrote to Items[ $a^{\prime}$ ] for some $a^{\prime}\neq a$ . Multiple successful Take operations linearized at the same step are ordered arbitrarily and before any other operations linearized at this step, with one exception: a coupled Insert is linearized right before its coupled Take operation. In all cases, $t k$ returns the value it last read on Line 119.
$\blacksquare$

Consider a Take operation, $t k$ , that obtains false when it reads InsertDone on Line 126. If no uncoupled Insert operation writes to InsertDone while $t k$ is poised to write to TakeDone, then $t k$ is linearized at its write to TakeDone (after any other operations linearized at this step). Otherwise, $t k$ is linearized at the first such write to InsertDone, before the Insert and after any successful Take operations linearized at this step. The ordering among unsuccessful Take operations linearized at this write is arbitrary. In both cases, $t k$ returns EMPTY.

To make the linearization points clearer, we also list the types of steps at which operations are linearized. For each, we specify the operations that can be linearized there. If multiple operations can be linearized at the same step, we specify the ordering of these operations.

$\blacksquare$
An Insert reads 1 from TS[m] on Line 96:
- –
  
  A successful Take that previously performed a successful t&s on TS[m].
$\blacksquare$
A successful uncoupled Insert, $i n s$ , which wrote to Items[m], writes to InsertDone on Line 109:
- –
  
  Successful Takes that previously performed a successful t&s on TS[m’] for $m^{\prime}\neq m$ , arbitrarily ordered.
- –
  
  Unsuccessful Takes, arbitrarily ordered.
- –
  
  $i n s$ .
$\blacksquare$
An unsuccessful Insert, $i n s$ , obtains false from TakeDone.dRead() on Line 111:
- –
  
  $i n s$ .
$\blacksquare$
A successful Take writes to TakeDone on Line 123:
- –
  Successful Takes, arbitrarily ordered.
  - *
    
    Successful coupled Inserts, each immediately before its coupled Take.
$\blacksquare$
An unsuccessful Take $t k$ writes to TakeDone on Line 127:
- –
  Successful Takes, arbitrarily ordered.
  - *
    
    Successful coupled Inserts, each immediately before its coupled Take.
- –
  
  $t k$ .

Next, we provide some intuition explaining our choice of linearization points, as well as why unsuccessful Take operations write to TakeDone on Line 127 before returning EMPTY.

We pick the linearization point for an Insert operation as we do in Section 6: a successful uncoupled Insert is linearized at its write to InsertDone, a successful coupled Insert operation is linearized right before its coupled Take operation, and an unsuccessful Insert operation is linearized when it obtains false from TakeDone.dRead() on Line 111.

We want to linearize a successful Take operation at its write to TakeDone, which is intended to notify the producer that the bag is not full, similarly to how a successful uncoupled Insert operation notifies the consumers that the bag is not empty. However, in the following four situations, we linearize a successful Take operation earlier than its write to TakeDone.

Suppose a successful Take operation, $t k$ , has performed a successful t&s operation on Line 121, but has not yet been linearized when another successful Take operation writes to TakeDone. Then $t k$ is linearized at this write. Linearizing $t k$ at the earliest possible write to TakeDone in this case is done to simplify the linearization.

An unsuccessful Take operation, $t k$ , cannot be linearized when it obtains false from InsertDone.dRead(), because there might be successful Take operations that remove elements from the bag, but are not yet linearized. These operations must be linearized before $t k$ . To ensure this, $t k$ writes to TakeDone before returning EMPTY. This linearizes every successful Take operation that has performed a successful t&s operation on Line 121, but has not been linearized before the write to TakeDone by $t k$ . In this case, $t k$ is linearized at this write, after all such successful Take operations.

A coupled Take operation witnesses that an Insert operation has happened and causes it to be linearized. Similarly, an Insert operation, $i n s$ , that witnesses a successful Take operation causes it to be linearized: If $i n s$ reads 1 from TS[a] on Line 96, but the Take that last performed a successful TS[a].t&s() is not yet linearized, then the Take is linearized at this read, which is before $i n s$ removes $a$ from alloc on Line 98. Then, when $i n s$ sees that |alloc| < $b$ on Line 100, the bag is not full and it may insert a new element.

Suppose an unsuccessful Take operation, $t k$ , got false from InsertDone.dRead(), but has not yet written to TakeDone when an uncoupled Insert operation, $i n s$ , writes to InsertDone on Line 109. Then $t k$ must be linearized while the bag is still empty. Hence $t k$ is linearized before $i n s$ , at this dWrite. Each successful Take operation that performed a successful t&s on Line 121, but has not yet been linearized, is also linearized at this step, before $t k$ , to ensure the bag is empty when $t k$ is linearized. There is one exception: If $i n s$ wrote to Items[a] on Line 108, a Take operation that performed a successful TS[a].t&s() at the same location after this write should be linearized after $i n s$ . A Take operation that performed a successful TS[a].t&s() at the same location before this write is guaranteed to be linearized before $i n s$ . This is because it is linearized at or before the producer last read 1 from TS[a] on Line 96, which occurs before the producer removes location $a$ from alloc on Line 98, which, in turn, must occur before $i n s$ is allocated location $a$ on Line 102.

The proof that Figure 4 is a lock-free, strongly-linearizable implementation of a $b$ -bounded bag appears in the full version of the paper [10].

8 Discussion

This paper explores strongly-linearizable implementations of bags from interfering objects. We presented the first lock-free, strongly-linearizable implementation of a bag from interfering objects, which is, interestingly, also a linearizable implementation of a queue, but not a strongly-linearizable implementation. We also presented several implementations of bounded bags with a single producer from interfering objects: a wait-free, linearizable implementation of a 1-bounded bag, a lock-free, strongly-linearizable implementation of a 1-bounded bag, and a lock-free, strongly-linearizable implementation of a $b$ -bounded bag for any value of $b$ .

A direct extension of this work is investigating whether it is possible to extend our bounded bag implementations to support two producers or multiple producers but only one or two consumers. Other open questions are whether there are wait-free, strongly-linearizable implementations of ABA-detecting registers and bags from interfering objects. It would also be interesting to construct a lock-free, strongly-linearizable implementation of a bag from interfering objects, such that, at every point in the execution, the number of interfering objects used is bounded above by a function of the number of processes and the number of elements the bag contains. More broadly, exploring strongly-linearizable implementations of objects beyond bags using interfering objects is a compelling direction for future work.

References

[1] Yehuda Afek, Eli Gafni, and Adam Morrison. Common2 extended to stacks and unbounded concurrency. Distributed Computing, 4(20):239–252, 2007. doi:10.1007/s00446-007-0023-3.
[2] Zahra Aghazadeh and Philipp Woelfel. On the time and space complexity of aba prevention and detection. In PODC, pages 193–202, 2015. doi:10.1145/2767386.2767403.
[3] Hagit Attiya, Armando Castañeda, and Constantin Enea. Strong linearizability using primitives with consensus number 2. In PODC, pages 432–442, 2024. doi:10.1145/3662158.3662790.
[4] Hagit Attiya, Armando Castañeda, and Constantin Enea. Strong linearizability using primitives with consensus number 2. arXiv preprint, 2024. doi:10.48550/arXiv.2402.13618.
[5] Hagit Attiya, Armando Castañeda, and Danny Hendler. Nontrivial and universal helping for wait-free queues and stacks. J. Parallel Distributed Comput., 121:1–14, 2018. doi:10.1016/j.jpdc.2018.06.004.
[6] Hagit Attiya and Constantin Enea. Putting strong linearizability in context: Preserving hyperproperties in programs that use concurrent objects. In DISC, pages 2;1–2:17, 2019. doi:10.4230/LIPIcs.DISC.2019.2.
[7] Elizabeth Borowsky, Eli Gafni, and Yehuda Afek. Consensus power makes (some) sense! In PODC, pages 363–372, 1994. doi:10.1145/197917.198126.
[8] Matei David. A single-enqueuer wait-free queue implementation. In DISC, volume 3274 of Lecture Notes in Computer Science, pages 132–143, 2004. doi:10.1007/978-3-540-30186-8_10.
[9] Oksana Denysyuk and Philipp Woelfel. Wait-freedom is harder than lock-freedom under strong linearizability. In DISC, volume 9363 of Lecture Notes in Computer Science, pages 60–74, 2015. doi:10.1007/978-3-662-48653-5_5.
[10] Faith Ellen and Gal Sela. Strong linearizability without compare&swap: The case of bags. arXiv preprint, 2025. arXiv:2411.19365.
[11] Wojciech Golab, Lisa Higham, and Philipp Woelfel. Linearizable implementations do not suffice for randomized distributed computation. In STOC, pages 373–382, 2011. doi:10.1145/1993636.1993687.
[12] Maryam Helmi, Lisa Higham, and Philipp Woelfel. Strongly linearizable implementations: possibilities and impossibilities. In PODC, pages 385–394, 2012. doi:10.1145/2332432.2332508.
[13] Maurice Herlihy. Wait-free synchronization. TOPLAS, 13(1):124–149, 1991. doi:10.1145/114005.102808.
[14] Maurice Herlihy and Jeannette M. Wing. Linearizability: A correctness condition for concurrent objects. TOPLAS, 12(3):463–492, 1990. doi:10.1145/78969.78972.
[15] Steven Munsu Hwang and Philipp Woelfel. Strongly linearizable linked list and queue. In OPODIS, pages 28–1, 2021. doi:10.4230/LIPIcs.OPODIS.2021.28.
[16] Zongpeng Li. Non-blocking implementations of queues in asynchronous distributed shared-memory systems. Master’s thesis, University of Toronto, 2001. Department of Computer Science.
[17] Maged M. Michael. Hazard pointers: safe memory reclamation for lock-free objects. TPDS, 15(6):491–504, 2004. doi:10.1109/TPDS.2004.8.
[18] Maged M. Michael and Michael L. Scott. Simple, fast, and practical non-blocking and blocking concurrent queue algorithms. In PODC, pages 267–275, 1996. doi:10.1145/248052.248106.
[19] Maged M. Michael and Michael L. Scott. Nonblocking algorithms and preemption-safe locking on multiprogrammed shared memory multiprocessors. J. Parallel Distributed Comput., 51(1):1–26, 1998. doi:10.1006/jpdc.1998.1446.
[20] Sean Ovens and Philipp Woelfel. Strongly linearizable implementations of snapshots and other types. In PODC, pages 197–206, 2019. doi:10.1145/3293611.3331632.
[21] R Kent Treiber. Systems programming: Coping with parallelism. Technical Report RJ 5118, IBM Almaden Research Center, 1986.

Appendix A An Implementation of a Bag that is not Strongly-Linearizable

Consider the following lock-free, linearizable implementation of a queue [16]. We show that it is not a strongly-linearizable implementation of a bag.

Figure 5: An implementation of a queue that is not a strongly-linearizable bag.

Let $ins_{1}$ be a call of Insert(1), let $ins_{2}$ be a call of Insert(2), and let $t k$ be a call of Take(). Consider the following execution $\alpha$ of their algorithm:

$\blacksquare$

$ins_{1}$ performs its f&i of Max on Line 134.
$\blacksquare$

$ins_{2}$ performs its f&i of Max on Line 134.
$\blacksquare$

$t k$ performs Line 137, Line 138, and does an entire iteration of the repeat loop starting on Line 139, in which it sets max_new to 2 on Line 141 and sets max_old to 2 on line Line 149.
$\blacksquare$

$t k$ starts a second iteration of the repeat loop, in which it sets max_new to 2 on Line 141 and reads $\bot$ from Items[1] on Line 143. However, it does not read Items[2] on Line 143.
$\blacksquare$

$ins_{1}$ writes 1 to Items[1] on Line 135 and returns.

Since $ins_{1}$ completes in $\alpha$ , it must be linearized in $\alpha$ .

Let $\alpha_{1}$ be the continuation of $\alpha$ in which $t k$ runs by itself to completion. It returns EMPTY as it encounters $\bot$ in every entry of Items it reads. Since $t k$ returns EMPTY in $\alpha\cdot\alpha_{1}$ , it must be linearized before $ins_{1}$ . Hence, $t k$ must be linearized in $\alpha$ .

Let $\alpha_{2}$ be another continuation of $\alpha$ , in which $ins_{2}$ writes 2 to Items[2] on Line 135 and returns, and then $t k$ runs by itself to completion. From the code, $t k$ reads 2 from Items[2] and returns 2. This implies that $ins_{2}$ must be linearized before $t k$ in $\alpha\cdot\alpha_{2}$ and, hence, in $\alpha$ . Therefore $t k$ returns 2 in $\alpha\cdot\alpha_{1}$ , which is a contradiction.

This shows that the algorithm in Figure 5 is not a strongly-linearizable implementation of a bag for any choice of linearization points. In particular, there is a problem with the linearization points mentioned in [4]:

$\blacksquare$

Each Insert operation is linearized when it performs Line 135.
$\blacksquare$

Each successful Take operation is linearized when it performs a successful test&set on Line 145.
$\blacksquare$

Each unsuccessful Take operation is linearized when it last reads Max on Line 141.

The issue is that, when an unsuccessful Take operation is linearized, the bag might not be empty. Let $i n s$ be a call of Insert(1) and let $tk_{1}$ and $tk_{2}$ be calls of Take(). Consider the following execution:

$\blacksquare$

$i n s$ performs its f&i of Max on Line 134.
$\blacksquare$

$tk_{1}$ performs Line 137, Line 138, and does an entire iteration of the repeat loop starting on Line 139 in which it sets max_new to 1 on Line 141 and sets max_old to 1 on line Line 149.
$\blacksquare$

$i n s$ writes 1 to Items[1] on Line 135 and returns.
$\blacksquare$

$tk_{1}$ starts a second iteration of the repeat loop, in which it sets max_new to 1 on Line 141.
$\blacksquare$

$tk_{2}$ performs a Take operation, returning the value 1 when it first performs Line 145.
$\blacksquare$

$tk_{1}$ completes its Take operation, returning EMPTY when it returns on Line 147.

Note that, when $tk_{1}$ last performs Line 141, where it is linearized, the bag contains the element 1.

Appendix B A Proof that Figure 1 is not a Strongly-Linearizable Implementation of a Queue

We show that our strongly-linearizable implementation of a bag is not a strongly-linearizable implementation of a queue.

Let $ins_{1}$ be a call of Insert( $1$ ), let $ins_{2}$ be a call of Insert( $2$ ), and let $t k$ , $tk_{1}$ , and $tk_{2}$ be calls of Take(). Consider the following execution $\alpha$ of the algorithm in Figure 1:

$\blacksquare$

$ins_{1}$ performs its f&i of Allocated on Line 7 and is allocated location 1.
$\blacksquare$

$ins_{2}$ performs its f&i of Allocated on Line 7 and is allocated location 2.
$\blacksquare$

$t k$ reads 2 from Allocated on Line 13 and then reads $\bot$ from Items[1] on Line 15.
$\blacksquare$

$ins_{1}$ and $ins_{2}$ run to completion.

Since $ins_{1}$ and $ins_{2}$ complete in $\alpha$ , they must be linearized in $\alpha$ .

Let $\alpha_{1}$ be the continuation of $\alpha$ in which $t k$ runs by itself to completion. It reads $2$ from Items[2] on Line 15 during its second iteration of the for loop and returns $2$ . To satisfy the semantics of a queue, $ins_{2}$ must be linearized before $ins_{1}$ in $\alpha\cdot\alpha_{1}$ and, hence, in $\alpha$ .

Let $\alpha_{2}$ be another continuation of $\alpha$ , in which $tk_{1}$ runs by itself to completion and then $tk_{2}$ runs by itself to completion. From the code, $tk_{1}$ reads 1 from Items[1] and returns 1, and $tk_{2}$ reads 2 from Items[2] and returns 2. To satisfy the semantics of a queue, $tk_{1}$ must be linearized before $tk_{2}$ in $\alpha\cdot\alpha_{2}$ and, hence, in $\alpha$ . This is a contradiction.

Appendix C A Proof that Figure 2 is not a Strongly-Linearizable Implementation of a 1-Bounded Bag

We show that our wait-free implementation of a 1-bounded bag with a single producer is not strongly-linearizable.

Let $ins_{i}$ be a call of Insert( $i$ ) and $tk_{i}$ a call of Take(), for $1\leq i\leq 3$ . Consider the following execution $\alpha$ of the algorithm in Figure 2:

$\blacksquare$

$ins_{1}$ starts running, and it is allocated location 1 on Line 32. It then runs to completion.
$\blacksquare$

$tk_{1}$ runs and returns 1.
$\blacksquare$

$tk_{2}$ reads 1 from Allocated on Line 40.
$\blacksquare$

$ins_{2}$ starts running. It writes $\bot$ to Items[1] on Line 29. It is allocated location 2 on Line 32. It then runs to completion.

Let $\alpha_{1}$ be the continuation of $\alpha$ in which $tk_{2}$ runs by itself to completion. It returns EMPTY as it encounters $\bot$ in every entry of Items it reads including Items[1]. Since $tk_{2}$ returns EMPTY in $\alpha\cdot\alpha_{1}$ , it must be linearized before $ins_{2}$ . Hence, $tk_{2}$ must be linearized in $\alpha$ , with return value EMPTY.

Let $\alpha_{2}$ be another continuation of $\alpha$ , in which the following occur:

$\blacksquare$

$tk_{3}$ runs and returns 2.
$\blacksquare$

$ins_{3}$ starts running. It is allocated location 1 on Line 32. It continues to run, writes 3 to Items[1] and returns.
$\blacksquare$

$tk_{2}$ runs to completion.

From the code, $tk_{2}$ reads 3 from Items[1] and returns 3. Hence, $tk_{2}$ must be linearized after $ins_{3}$ in $\alpha\cdot\alpha_{2}$ . This contradicts strong-linearizability.

[bib.bib1] [1] Yehuda Afek, Eli Gafni, and Adam Morrison. Common2 extended to stacks and unbounded concurrency. Distributed Computing, 4(20):239–252, 2007. doi:10.1007/s00446-007-0023-3.

[bib.bib2] [2] Zahra Aghazadeh and Philipp Woelfel. On the time and space complexity of aba prevention and detection. In PODC, pages 193–202, 2015. doi:10.1145/2767386.2767403.

[bib.bib3] [3] Hagit Attiya, Armando Castañeda, and Constantin Enea. Strong linearizability using primitives with consensus number 2. In PODC, pages 432–442, 2024. doi:10.1145/3662158.3662790.

[bib.bib4] [4] Hagit Attiya, Armando Castañeda, and Constantin Enea. Strong linearizability using primitives with consensus number 2. arXiv preprint, 2024. doi:10.48550/arXiv.2402.13618.

[bib.bib5] [5] Hagit Attiya, Armando Castañeda, and Danny Hendler. Nontrivial and universal helping for wait-free queues and stacks. J. Parallel Distributed Comput., 121:1–14, 2018. doi:10.1016/j.jpdc.2018.06.004.

[bib.bib6] [6] Hagit Attiya and Constantin Enea. Putting strong linearizability in context: Preserving hyperproperties in programs that use concurrent objects. In DISC, pages 2;1–2:17, 2019. doi:10.4230/LIPIcs.DISC.2019.2.

[bib.bib7] [7] Elizabeth Borowsky, Eli Gafni, and Yehuda Afek. Consensus power makes (some) sense! In PODC, pages 363–372, 1994. doi:10.1145/197917.198126.

[bib.bib8] [8] Matei David. A single-enqueuer wait-free queue implementation. In DISC, volume 3274 of Lecture Notes in Computer Science, pages 132–143, 2004. doi:10.1007/978-3-540-30186-8_10.

[bib.bib9] [9] Oksana Denysyuk and Philipp Woelfel. Wait-freedom is harder than lock-freedom under strong linearizability. In DISC, volume 9363 of Lecture Notes in Computer Science, pages 60–74, 2015. doi:10.1007/978-3-662-48653-5_5.

[bib.bib10] [10] Faith Ellen and Gal Sela. Strong linearizability without compare&swap: The case of bags. arXiv preprint, 2025. arXiv:2411.19365.

[bib.bib11] [11] Wojciech Golab, Lisa Higham, and Philipp Woelfel. Linearizable implementations do not suffice for randomized distributed computation. In STOC, pages 373–382, 2011. doi:10.1145/1993636.1993687.

[bib.bib12] [12] Maryam Helmi, Lisa Higham, and Philipp Woelfel. Strongly linearizable implementations: possibilities and impossibilities. In PODC, pages 385–394, 2012. doi:10.1145/2332432.2332508.

[bib.bib13] [13] Maurice Herlihy. Wait-free synchronization. TOPLAS, 13(1):124–149, 1991. doi:10.1145/114005.102808.

[bib.bib14] [14] Maurice Herlihy and Jeannette M. Wing. Linearizability: A correctness condition for concurrent objects. TOPLAS, 12(3):463–492, 1990. doi:10.1145/78969.78972.

[bib.bib15] [15] Steven Munsu Hwang and Philipp Woelfel. Strongly linearizable linked list and queue. In OPODIS, pages 28–1, 2021. doi:10.4230/LIPIcs.OPODIS.2021.28.

[bib.bib16] [16] Zongpeng Li. Non-blocking implementations of queues in asynchronous distributed shared-memory systems. Master’s thesis, University of Toronto, 2001. Department of Computer Science.

[bib.bib17] [17] Maged M. Michael. Hazard pointers: safe memory reclamation for lock-free objects. TPDS, 15(6):491–504, 2004. doi:10.1109/TPDS.2004.8.

[bib.bib18] [18] Maged M. Michael and Michael L. Scott. Simple, fast, and practical non-blocking and blocking concurrent queue algorithms. In PODC, pages 267–275, 1996. doi:10.1145/248052.248106.

[bib.bib19] [19] Maged M. Michael and Michael L. Scott. Nonblocking algorithms and preemption-safe locking on multiprogrammed shared memory multiprocessors. J. Parallel Distributed Comput., 51(1):1–26, 1998. doi:10.1006/jpdc.1998.1446.

[bib.bib20] [20] Sean Ovens and Philipp Woelfel. Strongly linearizable implementations of snapshots and other types. In PODC, pages 197–206, 2019. doi:10.1145/3293611.3331632.

[bib.bib21] [21] R Kent Treiber. Systems programming: Coping with parallelism. Technical Report RJ 5118, IBM Almaden Research Center, 1986.

Strong Linearizability Without Compare&Swap: The Case of Bags

Abstract

Keywords and phrases:

Copyright and License:

2012 ACM Subject Classification:

Related Version:

Funding:

DOI:

Event:

Editor:

Series and Publisher:

1 Introduction

2 Preliminaries

3 Related Work

4 A Lock-Free, Strongly-Linearizable Implementation of a Bag

Strong-linearizability.

Lock-freedom.

5 A Wait-Free, Linearizable Implementation of a 1-Bounded Bag with a Single Producer

6 A Lock-Free, Strongly-Linearizable Implementation of a 1-Bounded Bag with a Single Producer

Linearizability.

7 A Lock-Free Strongly-Linearizable Implementation of a 𝒃-Bounded Bag with a Single Producer

Linearizability.

8 Discussion

References

Appendix A An Implementation of a Bag that is not Strongly-Linearizable

Appendix B A Proof that Figure 1 is not a Strongly-Linearizable Implementation of a Queue

Appendix C A Proof that Figure 2 is not a Strongly-Linearizable Implementation of a 1-Bounded Bag

7 A Lock-Free Strongly-Linearizable Implementation of a $𝒃$ -Bounded Bag with a Single Producer