[Edit]

top

top

There is no bound that can be placed on how long it takes a computational circuit called an ''arbiter'' to settle (see metastability in electronics). Arbiters are used in computers to deal with the circumstance that computer clocks operate asynchronously with input from outside, e.g.., keyboard input, disk access, network input, etc. So it could take an unbounded time for a message sent to a computer to be received and in the meantime the computer could traverse an unbounded number of states.

Electronic mail enables unbounded nondeterminism since mail can be stored on servers indefinitely before being delivered.

Communication links to servers on the Internet can be out of service indefinitely.

top

Now the set of initial segments of execution sequences of a given nondeterministic program P, starting from a given state, will form a tree. The branching points will correspond to the choice points in the program. Since there are always only finitely many alternatives at each choice point, the branching factor of the tree is always finite. That is, the tree is finitary. Now König's lemma says that if every branch of a finitary tree is finite, then so is the tree itself. In the present case this means that if every execution sequence of P terminates, then there are only finitely many execution sequences. So if an output set of P is infinite, it must contain a nonterminating computation.

top

This proof depends upon the premise that if every node x of a certain infinite branch can be reached by some computation c, then there exists a computation c that goes every node x on the branch. ... Clearly this premise follows not from logic but rather from the interpretation given to choice points. This premise fails for arrival nondeterminism in the arrival of messages in the Actor model because of finite delay in the arrival of messages. Though each node on an infinite branch must lie on a branch with a limit, the infinite branch need not itself have a limit. Thus the existence of an infinite branch does not necessarily imply a nonterminating computation.

top

this program illustrates global nondeterminism, since the nondeterminism arises from incomplete specification of the timing of signals between the three processes X, Y, and Z. The repetitive guarded command in the definition of Z has two alternatives: either the stop message is accepted from X, in which case continue is set to false, or a go message is accepted from Y, in which case n is incremented and Y is sent the value of continue. If Z ever accepts the stop message from X, then X terminates. Accepting the stop causes continue to be set to false, so after Y sends its next go message, Y will receive false as the value of its guard and will terminate. When both X and Y have terminated, Z terminates because it no longer has live processes providing input.

As the author of CSP points out, therefore, if the repetitive guarded command in the definition of Z were required to be fair, this program would have unbounded nondeterminism: it would be guaranteed to halt but there would be no bound on the final value of n. In actual fact, the repetitive guarded commands of CSP are not required to be fair, and so the program may not halt Hoare 1978. This fact may be confirmed by a tedious calculation using the semantics of CSP Francez, Hoare, Lehmann, and de Roever 1979 or simply by noting that the semantics of CSP is based upon a conventional power domain and thus does not give rise to unbounded nondeterminism.

top

The reason unbounded nondeterminism does not appear in conventional power domain semantics is that each element of the power domain is interpreted as a finitely generable subset of the underlying ω-complete domain Power domains from incomplete domains. In the ω-complete domains that have been proposed (previous to the publication of Clinger 1981), finitely generable subsets are either finite or contain an element representing a nonterminating or undefined computation, for essentially the same reason that choice nondeterminism is bounded Plotkin 1976. In the Actor event diagram domain and its completion, however, the augmented diagrams contain information that can distinguish computations that violate finite delay of message arrival from other nonterminating computations. Intuitively, the Actor event diagram domain is incomplete because the computations that violate finite delay in the arrival of messages have been thrown out.

top

To return to the proof that choice nondeterminism is bounded and to see why that proof does not work for arrival nondeterminism of messages in the Actor model, it is first of all not clear that the tree of initial segments of executions sequences of a concurrent program is always finitary, since the alternatives may for example correspond to the wait times allowed by finite delay Lynch and Fisher 1979; see also Back 1980. Secondly, an infinite branch does not necessarily indicate a nonterminating computation since the path may violate the requirement of finite delay in the arrival of messages and thus not have a limit.

Apparently the designer of CSP stopped short of requiring fairness because at the time languages with unbounded nondeterminism were widely regarded as unimplementable Hoare 1978. Additionally unbounded nondeterminism would have precluded giving a conventional power domain semantics for CSP.

top

Another important proposal, based like CSP on message passing but more abstract than a programming language, is Concurrent Processes Milner 1979. The semantics of Concurrent Processes also uses conventional power domains, so there is no unbounded nondeterminism and a fair merge cannot be specified.

top

It is not necessary for the semantics to determine an implementation, but it should provide criteria for showing that an implementation is correct.

Usually, however, the formal semantics of a conventional sequential programming language may itself be interpreted to provide an (inefficient) implementation of the language. A formal semantics need not always provide such an implementation, though, and to believe that semantics must provide an implementation leads to confusion about the formal semantics of concurrent languages. Such confusion is painfully evident when the presence of unbounded nondeterminism in a programming language's semantics is said to imply that the programming language cannot be implemented.

top

It appers that a fair merge cannot be written as a nondeterministic data flow program operating on streams. The reason is that for any monotonic function

merge: S × S → PS

from pairs of input streams to set of possible output stream it must be that

merge(⊥,1^ω)⊆ merge(0,1^ω)

where ⊥ is the empty stream. Since the only fair merge of ⊥ and 1^ω is 1^ω, 1^ω should be an element of merge(⊥,1^ω), but that would mean 1^ω must be an element of merge(0,1^ω) also.