Operation Ordering: Difference between revisions
 Yuron [   PHRhYmxlIGNsYXNzPSJ0d3BvcHVwIj48dHI+PHRkIGNsYXNzPSJ0d3BvcHVwLWVudHJ5dGl0bGUiPkdyb3Vwczo8L3RkPjx0ZD51c2VyPGJyIC8+YnVyZWF1Y3JhdDxiciAvPmludGVyZmFjZS1hZG1pbjxiciAvPnN5c29wPGJyIC8+PC90ZD48L3RyPjwvdGFibGU+] (talk | contribs)m (1 revision imported) |
pc>Yuron No edit summary |
||
| Line 1: | Line 1: | ||
{{#set: Priority=2 | Summary=Sometimes the order in which operations are performed is vitally important - especially in a multi-threaded environment.}}<!-- | {{#set: Priority=2 | Summary=Sometimes the order in which operations are performed is vitally important - especially in a multi-threaded environment.}}<!-- | ||
-->{{#invoke:Dependencies|add|Concepts,3|Multi Threading,3}} | -->{{#invoke:Dependencies|add|Concepts,3|Multi Threading,3}} | ||
Computer programs do sets of things; often it does not matter too much | Computer programs do sets of things; often it does not matter too much the <em>exact</em> order in which things are done. For example, if a program needs to increment a counter and output a value message to the screen it may not matter how this is expressed. | ||
the <em>exact</em> order in which things are done. For example, if a program | |||
needs to increment a counter and output a value message to the screen | |||
it may not matter how this is expressed. | |||
<syntaxhighlight lang="C">count = count + 1; | <syntaxhighlight lang="C">count = count + 1; | ||
printf("Hello.\n"); | printf("Hello.\n"); | ||
| Line 35: | Line 32: | ||
</syntaxhighlight> | </syntaxhighlight> | ||
Obviously steps 3 & 4 (in either version) depend absolutely on steps 1 | Obviously steps 3 & 4 (in either version) depend absolutely on steps 1 & 2. However, <em>in a single threaded environment</em> both versions will work. | ||
& 2. However, <em>in a single threaded environment</em> both versions will | |||
work. | |||
<span style="color:red">In a multi-threaded environment, if other threads | <span style="color:red">In a multi-threaded environment, if other threads | ||
| Line 44: | Line 39: | ||
[[Image:list_insert.png|link=|alt=Linked list insertion]] | [[Image:list_insert.png|link=|alt=Linked list insertion]] | ||
The figure should be adequate to show the potential danger: if another | The figure should be adequate to show the potential danger: if another thread traverses the structure between steps 3 & 4, in one case the list is broken, in the other there is still an intact structure. There is a <em>race</em> as to whether another thread sees the structure <em>before</em> or <em>after</em> the insertion – but if this mattered the thread should have been controlled at a more abstract, structural level. | ||
thread traverses the structure between steps 3 & 4, in one case the | |||
list is broken, in the other there is still an intact structure. | |||
There is a <em>race</em> as to whether another thread sees the structure | |||
<em>before</em> or <em>after</em> the insertion – but if this mattered the thread | |||
should have been controlled at a more abstract, structural level. | |||
==== How could this happen? ==== | ==== How could this happen? ==== | ||
| Line 57: | Line 47: | ||
*[[Multiprocessors|Another hardware processor]] concurrently running an interacting thread. | *[[Multiprocessors|Another hardware processor]] concurrently running an interacting thread. | ||
All of these are <em>unlikely</em> to happen; none is impossible. The fault | All of these are <em>unlikely</em> to happen; none is impossible. The fault will occur rarely, unpredictably and <strong>intermittently</strong>. That just makes debugging a whole lot harder. | ||
will occur rarely, unpredictably and <strong>intermittently</strong>. That just | |||
makes debugging a whole lot harder. | |||
==== What can be done? ==== | ==== What can be done? ==== | ||
The <strong>critical section</strong> could be [[Locks|locked]] to ensure that | The <strong>critical section</strong> could be [[Locks|locked]] to ensure that steps 3 & 4 (either version) are [[Atomicity|atomic]]. This is safe – and sometimes necessary – but it does involve more code in all interacting threads. In some cases, including this one, locks are not necessary in the second case, resulting in shorter, faster, neater code. | ||
steps 3 & 4 (either version) are [[Atomicity|atomic]]. This is safe – | |||
and sometimes necessary – but it does involve more code in all | |||
interacting threads. In some cases, including this one, locks are not necessary in the second case, resulting in shorter, faster, neater code. | |||
<strong>When dealing with multi-threading, always consider the ordering of | <strong>When dealing with multi-threading, always consider the ordering of operations and think of the consequences of different sequences. If something is potentially risky it <em>may</em> be possible to make is safe <em>without locking</em> which is a Good Thing.</strong> When you have done this, <span style="color:orange"><em>please please please</em></span> highlight it with a <span style="color:orange"><strong>comment</strong></span> to: | ||
operations and think of the consequences of different sequences. If | a) show how smart you’ve been; | ||
something is potentially risky it <em>may</em> be possible to make is safe | b) so no one breaks it in future. | ||
<em>without locking</em> which is a Good Thing.</strong> When you have done this, | |||
<span style="color:orange"><em>please please please</em></span> highlight it | |||
with a <span style="color:orange"><strong>comment</strong></span> to: a) show how | |||
smart you’ve been; b) so no one breaks it in future. | |||
=== Puzzle: unlinking from the list === | === Puzzle: unlinking from the list === | ||
This one’s for you. Reverse the problem to take a record out of a | This one’s for you. Reverse the problem to take a record out of a linked list. This is not entirely trivial so think hard before you refer to a possible. | ||
linked list. This is not entirely trivial so think hard before you | |||
refer to a possible. | |||
<div class="toccolours mw-collapsible mw-collapsed"> | <div class="toccolours mw-collapsible mw-collapsed"> | ||
| Line 92: | Line 71: | ||
== Caveat! == | == Caveat! == | ||
Remember that modern compilers typically try to optimise execution | Remember that modern compilers typically try to optimise execution speed by <em><strong>reordering</strong></em> instructions. Usually this feature can be disabled over a critical region but you must remember to do so! | ||
speed by <em><strong>reordering</strong></em> instructions. Usually this feature can be disabled over a critical region but you must remember to do so! | |||
Failure to do this can result in extremely hard-to-spot intermittent | Failure to do this can result in extremely hard-to-spot intermittent bugs. | ||
bugs. | |||
---- | ---- | ||
Revision as of 15:35, 2 August 2019
| Depends on | Concepts • Multi Threading |
|---|
Computer programs do sets of things; often it does not matter too much the exact order in which things are done. For example, if a program needs to increment a counter and output a value message to the screen it may not matter how this is expressed.
count = count + 1;
printf("Hello.\n");
count = count + 1;
printf("Hello.\n");
On the other hand, sometimes it is relevant – but that is ‘obvious’:
count = count + 1;
printf("count has reached %d.\n", count);
However when there may be parallel threads (or processes) sometimes the order of statements can be important.
Example: linking into a list
Two pseudo-code descriptions of adding a record into a linked list.
1 create new record
2 find position in list for insertion
3 link from 'previous' to new record
4 link from new record to 'next'
1 find position in list for insertion
2 create new record
3 link from new record to 'next'
4 link from 'previous' to new record
Obviously steps 3 & 4 (in either version) depend absolutely on steps 1 & 2. However, in a single threaded environment both versions will work.
In a multi-threaded environment, if other threads use this data structure, one version can fail.
The figure should be adequate to show the potential danger: if another thread traverses the structure between steps 3 & 4, in one case the list is broken, in the other there is still an intact structure. There is a race as to whether another thread sees the structure before or after the insertion – but if this mattered the thread should have been controlled at a more abstract, structural level.
How could this happen?
- Context switching during the insertion sequence
- An interrupt during the insertion sequence
(arguably a limited context switch). - Another hardware processor concurrently running an interacting thread.
All of these are unlikely to happen; none is impossible. The fault will occur rarely, unpredictably and intermittently. That just makes debugging a whole lot harder.
What can be done?
The critical section could be locked to ensure that steps 3 & 4 (either version) are atomic. This is safe – and sometimes necessary – but it does involve more code in all interacting threads. In some cases, including this one, locks are not necessary in the second case, resulting in shorter, faster, neater code.
When dealing with multi-threading, always consider the ordering of operations and think of the consequences of different sequences. If something is potentially risky it may be possible to make is safe without locking which is a Good Thing. When you have done this, please please please highlight it with a comment to: a) show how smart you’ve been; b) so no one breaks it in future.
Puzzle: unlinking from the list
This one’s for you. Reverse the problem to take a record out of a linked list. This is not entirely trivial so think hard before you refer to a possible.
The first thing to do is to unlink the unwanted record from the list (by changing the pointer in ‘previous’). That’s the most obvious bit.
However the record cannot yet be disposed of – someone(s) might still be using it! It can only be marked for deletion for later disposal. This is moving towards the complex area of garbage collection.
Did you spot that second issue?
Caveat!
Remember that modern compilers typically try to optimise execution speed by reordering instructions. Usually this feature can be disabled over a critical region but you must remember to do so!
Failure to do this can result in extremely hard-to-spot intermittent bugs.
