7

I keep hearing about thread safe. What is that exactly and how and where can I learn to program thread safe code?

Also, assume I have 2 threads, one that writes to a structure and another one that reads from it. Is that dangerous in any way? Is there anything I should look for? I don't think it is a problem. Both threads will not (well can't ) be accessing the struct at the exact same time..

Also, can someone please tell me how in this example : https://stackoverflow.com/a/5125493/1248779 we are doing a better job in concurrency issues. I don't get it.

Community
  • 1
  • 1
Kam
  • 5,878
  • 10
  • 53
  • 97
  • 1
    The first few hits on [Google](https://www.google.com/#hl=en&sclient=psy-ab&q=c%2B%2B+thread-safe+programming&pbx=1&oq=c%2B%2B+thread-safe+programming&aq=f&aqi=&aql=&gs_sm=3&gs_upl=532l4457l0l4950l27l12l0l2l2l0l481l3318l0.4.3.4.1l12l0&gs_l=hp.3...532l4457l0l4950l27l12l0l2l2l0l481l3318l0j4j3j4j1l12l0&bav=on.2,or.r_gc.r_pw.r_cp.r_qf.,cf.osb&fp=3e688b5b28c62a4d&biw=1306&bih=867) seem to be quite instructive. – jogojapan Mar 05 '12 at 07:14
  • 1
    Sorry I tried that, I just found it too complicated I need a simple example and a workarround I guess – Kam Mar 05 '12 at 07:18
  • Why can't the two threads access the struct at the exact same time? Unless you protect it (with e.g. a semaphore) you can not know if the first thread writes part of the struct, then the OS scheduler decides to run the thread that reads the struc which will now not be completely updated. – Some programmer dude Mar 05 '12 at 07:21
  • 2
    You don't need a simple workaround. You need a good and thorough explanation of the subject, which would be much longer than any answer here might be (though they may give useful links). – ugoren Mar 05 '12 at 07:24
  • Yes PLEASE a good book, ebook, lecture on multithreading that doesn't contain faancy words and complicated terms..That would be GREAT – Kam Mar 05 '12 at 07:27
  • 2
    Fancy words are sometimes really useful shorthand for important ideas. Imagine trying to understand an car while not using terms such as "steering wheel" and "gasoline". Threading and concurrency are deep topics, they are not something most people "get" without serious study. – djna Mar 05 '12 at 07:42
  • 1
    Disagree, sorry. Simple workarounds _do_ exist. For a simple shared struct you don't need to care about deadlocks (it's a leaf node in the lock hierarchy, can't form a cycle) and performance shouldn't be subject to premature optimization. – MSalters Mar 05 '12 at 09:35

7 Answers7

7

It's a very deep topic. At the heart threads are usually about making things go fast by using multiple cores at the same time; or about doing long operations in the background when you don't have a good way to interleave the operation with a 'primary' thread. The latter being very common in UI programming.

Your scenario is one of the classic trouble spots, and one of the first people run into. It's vary rare to have a struct where the members are truly independent. It's very common to want to modify multiple values in the structure to maintain consistency. Without any precautions it is very possible to modify the first value, then have the other thread read the struct and operate on it before the second value has been written.

Simple example would be a 'point' struct for 2d graphics. You'd like to move the point from [2,2] to [5,6]. If you had a different thread drawing a line to that point you could end up drawing to [5,2] very easily.

This is the tip of the iceberg really. There are lots of great books, but learning this space usually goes something like this:

  1. Uh oh, I just read from that thing in an inconsistent state.
  2. Uh oh, I just modified that thing from 2 threads and now it's garbage.
  3. Yay! I learned about locks
  4. Whoa, I have a lot of locks and everything seems to just hang sometimes when I have lots of them locking in nested code.
  5. Hrm. I need to stop doing this locking on the fly, I seem to be missing a lot of places; so I should encapsulate them in a data structure.
  6. That data structure thing was great, but now I seem to be locking all the time and my code is just as slow as a single thread.
  7. condition variables are weird
  8. It's fast because I got clever with how I lock things. Hrm. Sometimes data corrupts.
  9. Whoa.... InterlockedWhatDidYouSay?
  10. Hey, look no lock, I do this thing called a spin lock.
  11. Condition variables. Hrm... I see.
  12. You know what, how about I just start thinking about how to operate on this stuff in completely independent ways, pipelineing my operations, and having as few cross thread dependencies as possible...

Obviously it's not all about condition variables. But there are many problems that can be solved with threading, and probably almost as many ways to do it, and even more ways to do it wrong.

Joe
  • 2,946
  • 18
  • 17
4

Thread-safety is one aspect of a larger set of issues under the general heading of "Concurrent Programming". I'd suggest reading around that subject.

Your assumption that two threads cannot access the struct at the same time is not good. First: today we have multi-core machines, so two threads can be running at exactly the same time. Second: even on a single core machine the slices of time given to any other thread are unpredicatable. You have to anticipate that ant any arbitrary time the "other" thread might be processing. See my "window of opportunity" example below.

The concept of thread-safety is exactly to answer the question "is this dangerous in any way". The key question is whether it's possible for code running in one thread to get an inconsistent view of some data, that inconsistency happening because while it was running another thread was in the middle of changing data.

In your example, one thread is reading a structure and at the same time another is writing. Suppose that there are two related fields:

  { foreground: red; background: black }

and the writer is in the process of changing those 

   foreground = black;
            <=== window of opportunity
   background = red;

If the reader reads the values at just that window of opportunity then it sees a "nonsense" combination

  { foreground: black; background: black }

This essence of this pattern is that for a brief time, while we are making a change, the system becomes inconsistent and readers should not use the values. As soon as we finish our changes it becomes safe to read again.

Hence we use the CriticalSection APIs mentioned by Stefan to prevent a thread seeing an inconsistent state.

Tejus Prasad
  • 6,322
  • 7
  • 47
  • 75
djna
  • 54,992
  • 14
  • 74
  • 117
  • Hi, Please check this http://stackoverflow.com/a/5125493/1248779 He says that this is how you can make stuff thread safe..I don't see it..What the different before and after incapsulation? – Kam Mar 05 '12 at 07:49
  • 1
    This is correct, but it can be worse even. I don't know what type those colors are, but if they are not a fundamental atomic type you actually get _windows of opportunity_ directly in the assignment itself. – edA-qa mort-ora-y Mar 05 '12 at 08:04
  • I am just talking about this exact answer not the entire thread :) – Kam Mar 05 '12 at 08:06
  • The one that starts with : 1. Make sure you use no globals. If you currently have globals, make them members of a per-thread state struct and then have the thread pass the struct to the common functions. – Kam Mar 05 '12 at 08:07
  • @Kam, that answer is not good. Passing the struct values as params doesn't solve the problem - there's still a chance to get inconsistent values at the time the call values are being obtained. Be very wary of dodging concurrency issues, there are much deeper issues than it appears on the surface. – djna Mar 05 '12 at 08:26
  • @djna: i'm editing your answer as the link u have put in your answer is not working. do edit it if you find a working link. – Tejus Prasad Jul 09 '15 at 06:48
3

what is that exactly?

Briefly, a program that may be executed in a concurrent context without errors related to concurrency.

If ThreadA and ThreadB read and/or write data without errors and use proper synchronization, then the program may be threadsafe. It's a design choice -- making an object threadsafe can be accomplished a number of ways, and more complex types may be threadsafe using combinations of these techniques.

and how and where can I learn to program thread safe code?

boost/libs/thread/ would likely be a good introduction. The topic is quite complex.

The C++11 standard library provides implementations for locks, atomics and threads -- any well written programs which use these would be a good read. The standard library was modeled after boost's implementation.

also, assume I have 2 threads one that writes to a structure and another one that reads from it. Is that dangerous in any way? is there anything I should look for?

Yes, it can be dangerous and/or may produce incorrect results. Just imagine that a thread may run out of its time at any point, and then another thread could then read or modify that structure -- if you have not protected it, it may be in the middle of an update. A common solution is a lock, which can be used to prevent another thread from accessing shared resources during reads/writes.

justin
  • 104,054
  • 14
  • 179
  • 226
  • As I mentioned to a previous post please check this stackoverflow.com/a/5125493/1248779 He says that this is how you can make stuff thread safe..I don't see it..What the different before and after incapsulation? – Kam Mar 05 '12 at 07:52
  • @user1248779 Theo's `int myFunc(struct myState *state)` is not threadsafe if `@a state` may be written by another thread. If `@a state` were thread local data, then it would be threadsafe. iow, it is not encapsulation that makes this program threadsafe - it is because the object `@a state` points to is thread local rather than global. Also note that Theo did specify `@a state` is to be thread local. – justin Mar 05 '12 at 08:13
  • So why is he encapsulating x and y and creating a structure? what's the benefit? please bare with me I really don't see it – Kam Mar 05 '12 at 08:18
  • the structure is insignificant. the important part is thread local data. – justin Mar 05 '12 at 08:21
  • Soory Justin, but what is thread local data, If your getting upset and telling yourself that my questions are redeculous, I understand and you can just point me to a book or something :) – Kam Mar 05 '12 at 08:26
  • @Karn i'm not upset, no. please google before asking - http://xiao-feng.blogspot.com/2008/08/what-is-thread-local-data.html – justin Mar 05 '12 at 09:06
1

When writing multithreaded C++ programs on WIN32 platforms, you need to protect certain shared objects so that only one thread can access them at any given time from different threads. You can use 5 system functions to achieve this. They are InitializeCriticalSection, EnterCriticalSection, TryEnterCriticalSection, LeaveCriticalSection, and DeleteCriticalSection.

Also maybe this links can help: how to make an application thread safe?

http://www.codeproject.com/Articles/1779/Making-your-C-code-thread-safe

Community
  • 1
  • 1
Stefan Birladeanu
  • 294
  • 2
  • 10
1

Thread safety is a simple concept: is it "safe" to perform operation A on one thread whilst another thread is performing operation B, which may or may not be the same as operation A. This can be extended to cover many threads. In this context, "safe" means:

  • No undefined behaviour
  • All invariants of the data structures are guaranteed to be observed by the threads

The actual operations A and B are important. If two threads both read a plain int variable, then this is fine. However, if any thread may write to that variable, and there is no synchronization to ensure that the read and write cannot happen together, then you have a data race, which is undefined behaviour, and this is not thread safe.

This applies equally to the scenario you asked about: unless you have taken special precautions, then it is not safe to have one thread read from a structure at the same time as another thread writes to it. If you can guarantee that the threads cannot access the data structure at the same time, through some form of synchronization such as a mutex, critical section, semaphore or event, then there is not a problem.

You can use things like mutexes and critical sections to prevent concurrent access to some data, so that the writing thread is the only thread accessing the data when it is writing, and the reading thread is the only thread accessing the data when it is reading, thus providing the guarantee I just mentioned. This therefore avoids the undefined behaviour mentioned above.

However, you still need to ensure that your code is safe in the wider context: if you need to modify more than one variable then you need to hold the lock on the mutex across the whole operation rather than for each individual access, otherwise you may find that the invariants of your data structure may not be observed by other threads.

It is also possible that a data structure may be thread safe for some operations but not others. For example, a single-producer single-consumer queue will be OK if one thread is pushing items on the queue and another is popping items off the queue, but will break if two threads are pushing items, or two threads are popping items.

In the example you reference, the point is that global variables are implicitly shared between all threads, and therefore all accesses must be protected by some form of synchronization (such as a mutex) if any thread can modify them. On the other hand, if you have a separate copy of the data for each thread, then that thread can modify its copy without worrying about concurrent access from any other thread, and no synchronization is required. Of course, you always need synchronization if two or more threads are going to operate on the same data.

My book, C++ Concurrency in Action covers what it means for things to be thread safe, how to design thread safe data structures, and the C++ synchronization primitives used for the purpose, such as std::mutex.

Anthony Williams
  • 66,628
  • 14
  • 133
  • 155
0

Threads safe is when a certain block of code is protected from being accessed by more than one thread. Meaning that the data manipulated always stays in a consistent state.

A common example is the producer consumer problem where one thread reads from a data structure while another thread writes to the same data structure : Detailed explanation

giorashc
  • 13,691
  • 3
  • 35
  • 71
  • It's not about protecting a block of code, rather about protecting a chunk of data. – Alexey Frunze Mar 05 '12 at 07:36
  • 1
    @Alex, well, it's both actually. The moment you involve devices (even just the console, a window, or a file) you may still need locks even if you aren't modifying any data in your own program. – edA-qa mort-ora-y Mar 05 '12 at 09:05
0

To answer the second part of the question: Imagine two threads both accessing std::vector<int> data:

//first thread
if (data.size() > 0)
{
   std::cout << data[0]; //fails if data.size() == 0
}

//second thread
if (rand() % 5 == 0)
{
   data.clear();
}
else
{
   data.push_back(1);
}

Run these threads in parallel and your program will crash because std::cout << data[0]; might be executed directly after data.clear();.

You need to know that at any point of your thread code, the thread might be interrupted, e.g. after checking that (data.size() > 0), and another thread could become active. Although the first thread looks correct in a single threaded app, it's not in a multi-threaded program.

Philipp
  • 11,549
  • 8
  • 66
  • 126