Lecture 20: Thread Safety

最新推荐文章于 2023-12-14 16:10:12 发布
最新推荐文章于 2023-12-14 16:10:12 发布
阅读量593 收藏
点赞数
分类专栏: 软件工程 文章标签: 线程
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/jitianyu123/article/details/69567815
版权

1 What Threadsafe Means?

A data type or static method is threadsafe if it behaves correctly when used from multiple threads, regardless of how those threads are executed, and without demanding additional coordination from the calling code.

  • “behaves correctly” means satisfying its specification and preserving its rep invariant;
  • “regardless of how threads are executed” means threads might be on multiple processors or timesliced on the same processor;
  • “without additional coordination” means that the data type can’t put preconditions on its caller related to timing, like “you can’t call get() while set() is in progress.”

2 Strategy 1: Confinement

Confinement: avoid races on mutable data by keeping that data confined to a single thread. Don’t give any other threads the ability to read or write the data directly.

  • Local variables are always thread confined. A local variable is stored in the stack, and each thread has its own stack.
  • Be careful – the variable is thread confined, but if it’s an object reference, you also need to check the object it points to, especially when the object is mutable. We must ensure it can not be referenced from any other thread.

2.1 Avoid Global Variables

Unlike local variables, static variables are not automatically thread confined.

  • If you have static variables in your program, then you have to make an argument that only one thread will ever use them, you have to document that fact clearly.
  • Better, you should eliminate the static variables entirely.

3 Strategy 2: Immutability

We’ve said that a type is immutable if an object of the type always represents the same abstract value for its entire lifetime. But that actually allows the type the freedom to mutate its rep, as long as those mutations are invisible to clients, which is called beneficent mutation.

  • An immutable data type that uses beneficent mutation will have to make itself threadsafe using locks.

3.1 Stronger definition of immutablity

In order to be confident that an immutable data type is threadsafe without locks, we need a stronger definition of immutability:

  • No mutator methods.
  • All fields are private and final.
  • No representation exposure.
  • No mutation whatsoever of mutable objects in the rep – not even beneficent mutation.

And in Java:

  • Don’t provide “setter” methods — methods that modify fields or objects referred to by fields.
  • Make all fields final and private.
  • Don’t allow subclasses to override methods. The simplest way to do this is to declare the class as final. A more sophisticated approach is to make the constructor private and construct instances in factory methods.
  • If the instance fields include references to mutable objects, don’t allow those objects to be changed:
    • Don’t provide methods that modify the mutable objects.
    • Don’t share references to the mutable objects. Never store references to external, mutable objects passed to the constructor; if necessary, create copies, and store references to the copies. Similarly, create copies of your internal mutable objects when necessary to avoid returning the originals in your methods.

4 Strategy 3: Using Threadsafe Data Types

Strategy: Store shared mutable data in existing threadsafe data types.
For example: StringBuffer is threadsafe but StringBuilder is not.

4.1 Threadsafe Collections

private static Map<Integer,Boolean> cache =
                Collections.synchronizedMap(new HashMap<>());
  • Don’t circumvent the wrapper: Make sure to throw away references to the underlying non-threadsafe collection, and access it only through the synchronized wrapper.
  • Iterators are still not threadsafe. 
for (String s: lst) { ... } // not threadsafe, even if lst is a synchronized list wrapper
  • atomic operations aren’t enough to prevent races: 
if (cache.containsKey(x)) return cache.get(x);
boolean answer = BigInteger.valueOf(x).isProbablePrime(100);
cache.put(x, answer);
  • Even the isPrime() method still has potential races:
    The synchronized map ensures that containsKey() , get() , and put() are now atomic, so using them from multiple threads won’t damage the rep invariant of the map. But those three operations can now interleave in arbitrary ways with each other, which might break the invariant that isPrime needs from the cache: if the cache maps an integer x to a value f , then x is prime if and only if f is true. If the cache ever fails this invariant, then we might return the wrong result.
    So we have to argue that the races between containsKey() , get() , and put() don’t threaten this invariant.
    • The race between containsKey() and get() is not harmful because we never remove items from the cache – once it contains a result for x, it will continue to do so.
    • There’s a race between containsKey() and put() . As a result, it may end up that two threads will both test the primeness of the same x at the same time, and both will race to call put() with the answer. But both of them should call put() with the same answer, so it doesn’t matter which one wins the race, the result will be the same.

5 How to Make a Safety Argument

If you want to convince yourself and others that your concurrent program is correct, the best approach is to make an explicit argument that it’s free from races, and write it down.

  • A safety argument needs to catalog all the threads that exist in your module or program, and the data that that they use, and argue which of the four techniques you are using to protect against races for each data object or variable.

5.1 Thread Safety Arguments for Data Types

  • Confinement is not usually an option when we’re making an argument just about a data type, because you have to know what threads exist in the system and what objects they’ve been given access to.
  • Immutability example:
/** MyString is an immutable data type representing a string of characters. */
public class MyString {
    private final char[] a;
    // Thread safety argument:
    //    This class is threadsafe because it's immutable:
    //    - a is final
    //    - a points to a mutable char array, but that array is encapsulated
    //      in this object, not shared with any other object or exposed to a
    //      client
  • Just using immutable and threadsafe-mutable data types is not sufficient when the rep invariant depends on relationships between objects in the rep.

5.2 Serializability

  • What we demand from a threadsafe data type is that when clients call its atomic operations concurrently, the results are consistent with some sequential ordering of the calls. This property is called serializability.

Reference

[1] 6.005 — Software Construction on MIT OpenCourseWare | OCW 6.005 Homepage at https://ocw.mit.edu/ans7870/6/6.005/s16/

_tianyuxue
关注
专栏目录
计算单词出现的频次,并按频次从高到低排序
moreharder的博客
11-15 3万+
import collections f=open("D:\python\Walden.txt","r").read() f=f.replace(',','').replace('.','').replace('"','').replace(':','') f=f.split() r=collections.Counter(f) print(r) Counter({'the': 6937, 'and': 4547, 'of': 3472, 'to': 3058, 'a': 2966, 'I': 2
C++代码标准参考文献(C++ Coding Standards Bibliography)
vily_lei的专栏
05-25 1626
C++代码标准参考文献(C++ Coding Standards Bibliography)
Lecture 22: Queues and Message-Passing
TecLand
04-07 296
1 Message passing with threadsStrategy: Use a synchronized queue for message passing between threads. Java provides the BlockingQueue interface for queues with blocking operations:In an ordinary Queue
并发编程基础 Lecture Notes(二)
乱乱写
09-19 439
Process && Thread && Program 1. http://www.ruanyifeng.com/blog/2013/04/processes_and_threads.html 2. process is the execution of a sequential program 3. 进程独立享有内存地址空间,是资源分配的基础单位,而线程是CPU分配的基本单位。多
理解堆:一个美丽的混乱
xuejianxinokok的专栏
12-14 815
池化是计算技术中常见的设计模式,它涉及:预先分配并保留一个程序中经常使用的核心资源池,由程序自行管理,以提高资源利用率并保证程序有固定数量的资源。内存池是一种动态分配和管理内存的技术。通常,程序员习惯直接使用new、delete、malloc、free等API来分配和释放内存,这会导致程序长时间运行时,会产生大量的内存碎片,大小分配的内存块不固定,降低了程序和操作系统的性能。在实际使用内存之前,内存池会预先分配一大块内存(内存池)作为保留。当程序员请求内存时,会从池中动态分配一个块。
C异常处理机制:setjmp和longjmp
walterxia的专栏
03-08 611
setjmp.h is a header defined in the C standard library to provide "non-local jumps": control flow that deviates from the usual subroutine call and return sequence. The complementary functions setjmp and longjmp provide this functionality.A typical use of s
计算机组成与设计硬件/软件接口 (MIPS版)
12-28 3343
  买了一本《计算机组成与设计硬件/软件接口(MIPS版)》,非科班出身的我,从事计算机行业已经8年了,却对计算机的基础什么也不专业。有点惭愧,因为对时间的流逝而感到遗憾!行了,但有言说,多无实义!言归正传,看书!思考!   这本书的英文名称是《Computer Organization and Design The HardWare / Software Interface》 Fif...
newsgroup_txt
weixin_44714173的博客
07-29 2万+
Why is the mirror of journey to the West useless to monkey king? |||0 First couplet: one night spring breeze to go, how to the second couplet? |||0 What do relatives say makes you most disgusted? |||0 The second couplet: three mountains and five mountains
英语四级单词
热门推荐
xxiyy0411的博客
12-18 2万+
// ==UserScript== // @name 背单词 // @description 边上网边刷英语四级单词 // @namespace Xiaomaxin // @version 1.31 // @author Xiaomaxin // @include * // @require http://cdn.bootcss.com
Lecture 24: Graphical User Interface
TecLand
04-07 622
1 View TreeViews are arranged into a hierarchy of containment, in which some views contain other views. Views are arranged into a hierarchy of containment, in which some views contain other views. 1
Lecture 12: Abstract Data Types(ADT)
TecLand
03-23 526
1 What Abstraction MeansHere are some of the names that are used for Abstract Data Types: Abstraction Modularity Encapsulation Information hiding Separation of concerns 1.1 User-Defined Types The key i
Lecture 13: Abstraction Functions & Rep Invariants
TecLand
03-28 493
1 Invariants The most important, property of a good abstract data type is that it preserves its own invariants An invariant is a property of a program that is always true, for every possible runtime st
Lecture 6: Specification
TecLand
03-14 436
1 Specification1.1 Specification structurespecification of a method consists of several clauses: a precondition , indicated by the keyword requires, is an obligation on the client. a postcondition , in
Lecture 25: Map, Filter, Reduce
TecLand
04-07 404
Reading 25: Map, Filter, Reduce1 Definition of MapReduceMap/Filter/Reduce: A design pattern that substantially simplifies the implementation of functions that operate over sequences of elements. Funct
Lecture 17: Regular Expressions & Grammars
TecLand
04-07 361
1 Grammars A grammar defines a set of sentences, where each sentence is a sequence of symbols. For example, our grammar for URLs will specify the set of sentences that are legal URLs in the HTTP protoc
Lecture 16: Recursive Data Types
TecLand
04-07 361
1 Recursive Data Types DefinitionA datatype definition: an abstract datatype on the left, defined by its representation (or concrete datatype ) on the right. the representation consists of variants of
Lecture 9: Mutability & Immutability
TecLand
03-15 336
1 MutabilityMutable : have methods that change the value of the object Immutable : Once created, they always represent the same value. A common use for it is to concatenate a large number of strings t
Lecture 11: Debugging - After the System is Deployed
TecLand
03-23 317
1 Reproduce the Bug Start by finding a small, repeatable test case that produces the failure. Once you’ve found a small test case, find and fix the bug using that smaller test case, and then go back to
lecture 08: numerical schemes for advection problems
最新发布
01-07
第八讲主要探讨了在对流问题中使用的数值方案。对流问题是指物质在流体中的传输问题,比如空气中的污染物传输或者河流中的悬浮颗粒物运动等。在数值模拟这类问题时,我们需要使用数值方案来近似求解偏微分方程,比如...
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值