Presentation is loading. Please wait.

Presentation is loading. Please wait.

The C++ Memory model Implementing synchronization)

Published byCatrin Jaeger Modified over 6 years ago

Similar presentations

Presentation on theme: "The C++ Memory model Implementing synchronization)"— Presentation transcript:

1 The C++ Memory model Implementing synchronization)
Lecture 15 The C++ Memory model Implementing synchronization)

2 The C++11 Memory model C++ provides a layer of abstraction over the hardware, so we need another model, i.e. a contract between the hardware and the C++11 programmer  Ensure that multithreaded programs are portable: they will run correctly on different hardware  Clarify which optimizations will or will not break our code We need these rules, for example. to understand when we can have a data race, so we can know when our program is correct, and that it will run correctly by all compliant C++11 compilers For example, we might ask: “If X=Y=1, is it possible for the outcome of this program to be r1 = r2 = 1?” Thread 1 Thread 2 r1 = X; if (r1 ==1) Y=1; r2 = Y; if (r2 ==1) X=1; Scott B. Baden / CSE 160 / Wi '16

3 Preliminaries The C++11 memory model describes an abstract relation between threads and memory Provides guarantees about the interaction between instruction sequences and variables in memory Every variable occupies 1 memory location  Bit fields and arrays are different; don’t load all of c[ ] as a 32 bit word A write to one location can’t affect writes to adjacent ones struct s { char c[4]; int i:3, j:4; struct in { double d; } id; }; Scott B. Baden / CSE 160 / Wi '16

4 Why don’t we want to load all of the c[ ] array as one word?
A. Because each element is considered an “variable” Because another thread could be writing a single element Because another thread could be reading a single element A and B B and C struct s { char c[4]; int i:3, j:4; struct in { double d; } id; }; 18 Scott B. Baden / CSE 160 / Wi '16

5 Why don’t we want to load all of the c[ ] array as one word?
A. Because each element is considered an “variable” Because another thread could be writing a single element Because another thread could be reading a single element A and B B and C struct s { char c[4]; int i:3, j:4; struct in { double d; } id; }; 18 Scott B. Baden / CSE 160 / Wi '16

6 Communication Memory writes made by one thread can become visible, but …. … special mechanisms are needed to guarantee that communication happens between threads Without explicit communication, you can’t guarantee which writes get seen by other threads, or even the order in which they will be seen The C++ atomic variable (and the Java volatile modifier) constitutes a special mechanism to guarantee that communication happens between threads When one thread writes to a synchronization variable (e.g. an atomic) and another thread sees that write, the first thread is telling the second about all of the contents of memory up until it performed the write to that variable Ready is a synchronization variable In C++ we use load and store All the memory contents seen by T1, before it wrote to ready, must be visible to T2, after it reads the value true for ready. member functions Scott B. Baden / CSE 160 / Wi '16

7 The effects of synchronization
Synchronization can be characterized in terms of 3 properties Atomicity, Visibility, Ordering All changes made in one synchronized variable or code block are atomic and visible with respect to other synchronized variables and blocks employing the same lock, and processing of synchronized methods or blocks within any given thread is in program-specified order Out of order processing cannot matter to other threads employing synchronization When synchronization is not used or is used inconsistently, answers are more complex Imposes additional obligations on programmers attempting to ensure object consistency relations that lie at the heart of exclusion Objects must maintain invariants as seen by all threads that rely on them, not just by the thread performing any given state modification Scott B. Baden / CSE 160 / Wi '16

8 The 3 Properties Of most concern when values must be transferred between main memory and per-thread memory Atomicity. Which instructions must have indivisible effects? Visibility. Under what conditions are the effects of one thread visible to another? The effects of interest are: writes to variables, as seen via reads of those variables Ordering. Under what conditions can the effects of operations appear out of order to any given thread? In particular, reads and writes associated with sequences of assignment statements. Scott B. Baden / CSE 160 / Wi '16

9 What kinds of variables require atomic updates?
A. Instance variables and static variables Array elements. Depends on the access pattern Local variables inside methods A & B B & C Scott B. Baden / CSE 160 / Wi '16

10 What kinds of variables require atomic updates?
A. Instance variables and static variables Array elements. Depends on the access pattern Local variables inside methods A & B B & C Scott B. Baden / CSE 160 / Wi '16

11 What kinds of variables require atomic updates?
A. Instance variables and static variables Array elements. Depends on the access pattern Local variables inside methods A & B B & C Scott B. Baden / CSE 160 / Wi '16

12 Data races We say that a program allows a data race on a particular set of inputs if there is a sequentially consistent execution, i.e. an interleaving of operations of the individual threads, in which two conflicting operations can be executed “simultaneously” (Boehm) We say that operations can be executed “simultaneously” if they occur next to each other in the interleaving, and correspond to different threads We can guarantee sequential consistency only when the program avoids data races Consider this program, with x = = y = = 0 initially Thread 1 Thread 2 x = 1; r1 = y; y = 1; r2 = x; Scott B. Baden / CSE 160 / Wi '16

13 Does this program have a data race?
A. Yes B. No x = = y = = 0 initially Atomic<int> x; int y; Thread 1 Thread 2 x = 1; r1 = y; y = 1; r2 = x; Scott B. Baden / CSE 160 / Wi '16

14 Does this program have a data race?
A. Yes B. No x = = y = = 0 initially Atomic<int> x; int y; Thread 1 Thread 2 x = 1; r1 = y; y = 1; r2 = x; Scott B. Baden / CSE 160 / Wi '16

15 Does this program have a data race?
A. Yes B. No x = = y = = 0 initially Atomic<int> x; int y; Thread 1 Thread 2 x = 1; r1 = y; y = 1; r2 = x; Scott B. Baden / CSE 160 / Wi '16

16 Data races We say that a program allows a data race on a particular set of inputs if there is a sequentially consistent execution, i.e. an interleaving of operations of the individual threads, in which two conflicting operations can be executed “simultaneously” (Boehm) We say that operations can be executed “simultaneously” if they occur next to each other in the interleaving, and correspond to different threads We can guarantee sequential consistency only when the program avoids data races This program has a data race (x = = y = = 0 initially) Thread 1 Thread 2 x = 1; r1 = y; y = 1; r2 = x; Execution x = 1; r1 = y; y = 1; r2 = x; // r1 = 1 ∧r2 ==1 Scott B. Baden / CSE 160 / Wi '16

17 “Happens-before” Fundamental concept in understanding the memory model
Consider these 2 threads, with counter = 0 A: counter++; B: prints out counter Even if B executes after A, we cannot guarantee that B will see 1 … … unless we establish a happens-before relationship between these two statements running in different threads What guarantee is made by a happens-before relationship ? A guarantee that memory writes by one specific statement are visible to another specific statement Different ways of accomplishing this: synchronization, atomics, variables, thread creation and completion, e.g. tA.join(); tB.join(); thread tA = thread(A); thread tB = thread(B); Scott B. Baden / CSE 160 / Wi '16

18 Establishing a happens-before relationship
C++ and Java provide synchronization variables to communicate between threads, and are intended to be accessed concurrently: the atomic types, mutexes Such concurrent accesses are not considered data races Thus, sequential consistency is guaranteed so long as the only conflicting concurrent accesses are to synchronization variables Any write to a synchronization variable establishes a happens-before relationship with subsequent reads of that same variable: x_ready=true happens-before the read of x_ready in Thread 2. A statement sequenced before another happens-before it x=42 happens-before x_ready-true Happens-before is transitive: everything sequenced before a write to synchronization variable also happens-before the read of that synchronization variable byanother thread. Thus, assignment x=42 (T1) is visible after the read of x_ready by Thread 2, e.g the assignment to r1 global: int x; atomic<bool> x_ready; Thread 1 Thread 2 x = 42; x_ready = true; while (!x_ready) {} r1 = x; Scott B. Baden / CSE 160 / Wi '16

19 Does this program have a race condition?
A. Yes B. No global: int x; atomic<bool> x_ready; Thread 1 Thread 2 x = 42; x_ready = true; while (!x_ready) {} r1 = x; Scott B. Baden / CSE 160 / Wi '16

20 Does this program have a race condition?
A. Yes B. No global: int x; atomic<bool> x_ready; Thread 1 Thread 2 x = 42; x_ready = true; while (!x_ready) {} r1 = x; Scott B. Baden / CSE 160 / Wi '16

21 Communication & synchronization variables
The C++ atomic variable provides a special mechanism to guarantee that communication happens between threads  Which writes get seen by other threads  The order in which they will be seen The happens-before relationship provides the guarantee that memory writes by one specific statement are visible to another specific statement Different ways of accomplishing this: atomics, variables, thread creation and completion When one thread writes to a synchronization variable (e.g. an atomic or mutex) and another thread sees that write, the first thread is telling the second about all of the contents of memory up until it performed the write to that variable Ready is a synchronization variable In C++ we use load and store All the memory contents seen by T1, before it wrote to ready, must be visible to T2, after it reads the value true for ready. member functions Scott B. Baden / CSE 160 / Wi '16

22 Establishing a happens-before relationship
Sequential consistency is guaranteed so long as the only conflicting concurrent accesses are to synchronization variables Any write to a synchronization variable establishes a happens-before relationship with subsequent reads of that same variable: x_ready=true happens-before the read of x_ready in Thread 2. A statement happens-before another statement sequenced immediately after it x=42 happens-before x_ready-true Happens-before is transitive: everything sequenced before a write to synchronization variable also happens-before the read of that synchronization variable by another thread: x=42 (T1) is visible after the read of x_ready by T2, e.g. the assignment to r1 The program is free from data races  Thread 2 is guaranteed not to progress to the second statement until the first thread has completed and set x_ready  There cannot be an interleaving of the steps in which the actions x = 42 and r1 = x are adjacent Declaring a variable as a synchronization variable  Ensures that the variable is accessed indivisibly  Prevents both the compiler and the hardware from reordering memory accesses in ways that are visible to the program and could break it global: int x; atomic<bool> x_ready; Thread 1 Thread 2 x = 42; x_ready = true; while (!x_ready) {} r1 = x; Scott B. Baden / CSE 160 / Wi '16

23 Using synchronization variables
to ensure sequentially consistent execution Declaring a variable as a synchronization variable  Ensures that the variable is accessed indivisibly  Prevents both the compiler and the hardware from reordering memory accesses in ways that are visible to the program and could break it  In practice this requires the compiler to obey extra constraints and to generate special code to prevent potential hardware optimizations that could re-order the time to access the variables in memory (e.g.cache) The program is free from data races  Thread 2 is guaranteed not to progress to the second statement until the first thread has completed and set x_ready There cannot be an interleaving of the steps in which the actions x = 42 and r1 = x are adjacent. This ensures a sequentially consistent execution, guarantees that r1 = 42 at program’s end Thread 1 Thread 2 x = 42; x_ready = true; while (!x_ready) {} r1 = x; Scott B. Baden / CSE 160 / Wi '16

24 Visibility Changes to variables made by one thread are guaranteed to be visibleto other threads under certain conditions only  A writing thread releases a synchronization lock and a reading thread subsequently acquires that same lock  If a variable is declared as atomic atomic<bool> ready = false; int answer = 0 All the memory contents seen by T1, before it wrote to ready, must be visible to T2, after it reads the value true for ready. Scott B. Baden / CSE 160 / Wi '16

25 Sequential consistency in action
Thread 2 can only print “42” The assignment to ready doesn’t return a reference, but rather, the return type (bool) atomic<bool> ready; int answer; // not atomic void thread2() { if (ready) print answer; } void thread1() { answer=42; ready= true; } Scott B. Baden / CSE 160 / Wi '16

26 How visibility works A writing thread releases a synchronization lock and a reading thread subsequently acquires that same lock  Releasing a lock flushes all writes from the thread’s working memory, acquiring a lock forces a (re)load of the values of accessible variables  While lock actions provide exclusion only for the operations performed within a synchronized block, these memory effects are defined to cover all variables used by the thread performing the action If a variable is declared as atomic  Any value written to it is flushed and made visible by the writer thread before the writer thread performs any further memory operation.  Readers must reload the values of volatile fields upon each access As a thread terminates, all written variables are flushed to main memory. If a thread uses join to synchronize on the termination of another thread, then it’s guaranteed to see the effects made by that thread Scott B. Baden / CSE 160 / Wi '16

27 Sequentially consistency in practice
Too expensive to guarantee sequentially consistency all the time  Code transformations made by the compiler  Instruction reordering in modern processors  Write buffers in processors In short, different threads perceive that memory references are reordered Scott B. Baden / CSE 160 / Wi '16

28 Caveats The memory model guarantees that a particular update to a particular variable made by one thread will eventually be visible to another But eventually can be an arbitrarily long time  Long stretches of code in threads that use no synchronization can be hopelessly out of synch with other threads with respect to values of fields  Shall not write loops waiting for values written by other threads unless the fields are atomic or accessed via synchronization But: guarantees made by the memory model are weaker than most programmers intuitively expect, and are also weaker than those typically provided by any given C++ implementation Rules do not require visibility failures across threads, they merely allow these failures to occur Not using synchronization in multithreaded code doesn't guarantee safety violations, it just allows them Detectable visibility failures might not arise in practice Testing for freedom from visibility-based errors impractical, since such errors might occur extremely rarely, or only on platforms you do not have access to, or only on those that have not even been built yet! Scott B. Baden / CSE 160 / Wi '16

29 Summary: why do we need a memory model?
When one thread changes memory then there needs to be a definite order to those changes, as seen by other threads Ensure that multithreaded programs are portable: they will run correctly on different hardware Clarify which optimizations will or will not break our code  Compiler optimizations can move code  Hardware scheduler executes instructions out of order Scott B. Baden / CSE 160 / Wi '16

30 Acquire and release Why can the program tolerate non-atomic reads and writes? (Listing 5.2, Williams, p. 120) How are the happens-before relationships established? std::vector<int> data; std::atomic<bool> data_ready(false); void reader_thread() { while(!data_ready.load()) std::this_thread::sleep(std::milliseconds(1)); std::cout << “The answer=”<< data[0] << std::endl; 7. } void writer_thread() { data.push_back(42); data_ready=true; 11. } Scott B. Baden / CSE 160 / Wi '16

31 Which happens-before relationships established?
std::vector<int> data; std::atomic<bool> data_ready(false); void reader_thread() { while(!data_ready.load()) std::this_thread::sleep(std::milliseconds(1)); std::cout << “The answer=”<< data[0] << std::endl; 7. } 8. 9. 10. void writer_thread() { data.push_back(42); data_ready=true; A. (9) h-b (10) B. (4) h-b (6) 11. } C. (9) h-b (6) D. A & B only E. A, B & C Scott B. Baden / CSE 160 / Wi '16

32 How do we implement a synchronization variable?
We said that when one thread writes to a synchronization variable such as an atomic.. .. and another thread sees that write, … …. the first thread is telling the second about all of the contents of memory up until it performed the write to that variable How does that thread tell those other threads to synchronize with those variables? Thread 1 All the memory contents seen by T1, before it wrote to ready, must be visible to T2, after it see that the value of read is true x = 42; atomic <bool> ready=true; Thread 2 while (!x_ready){} cout << data << endl; Scott B. Baden / CSE 160 / Wi '16

33 Memory fences The thread needs to flush all variables to memory, i.e. it synchronizes them We implement flushing operations with a special fence instruction, e.g. MFENCE “A serializing operation guaranteeing that every load and store instruction that precedes, in program order, the MFENCE instruction is globally visible before any load or store instruction that follows the MFENCE instruction is globally visible.” Intel 64 & IA32 architectures software developer manual, vol 3a Also see atomic<bool> ready; int answer = 32 ready=true Scott B. Baden / CSE 160 / Wi '16

34 Implementing synchronization primitives
But there is more to the story: we have only ensured visibility What about atomicity, used to build mutexes & other synch variables? We use a special machine instruction, e.g. CMPXCHG, that implements Compare and Swap (CAS) jfdube.wordpress.com/2011/11/30/understanding-atomic-operations Do atomically: compare contents of memory location loc to expected; if they are the same, modify the location with newval Do atomically: CAS (*loc, expected , newval ): if (*loc== expected ) { *loc= newval; return 0; } A CAS implementation of a mutex 1 = UNLOCKED, 0 = LOCKED Lock( *mutex ) {while (CAS ( *mutex , 1, 0)) ; } Unlock( *mutex ) { *mutex = 1; } else return 1 Scott B. Baden / CSE 160 / Wi '16

35 Building an atomic counter
Let’s implement an atomic integer counter that exports two operations, plus a constructor  getValue() CAS (*loc, expected , newval ): if (*loc== expected ) {  incr() *loc= newval; return 0; class AtomicCounter{ private: std::atomic<int> _ctr; public: int getCtr() { return _ctr; } AtomicCounter(){ _ctr = 0; } int incr() { int oldCtr = getCtr(); while (CAS(&_ctr, &oldCtr, oldCtr+1) ) oldCtr = getCtr(); return oldCtr + 1; } } else return 1 if _ctr == oldCtr _ctr ç oldCtr+1 return 0; else return 1; Scott B. Baden / CSE 160 / Wi '16

Download ppt "The C++ Memory model Implementing synchronization)"

Similar presentations

Threads Cannot be Implemented As a Library Andrew Hobbs.

Threads Cannot be Implemented As a Library Andrew Hobbs.
Global Environment Model. MUTUAL EXCLUSION PROBLEM The operations used by processes to access to common resources (critical sections) must be mutually.

Global Environment Model. MUTUAL EXCLUSION PROBLEM The operations used by processes to access to common resources (critical sections) must be mutually.
D u k e S y s t e m s Time, clocks, and consistency and the JMM Jeff Chase Duke University.

D u k e S y s t e m s Time, clocks, and consistency and the JMM Jeff Chase Duke University.
Ch. 7 Process Synchronization (1/2) 2015-04-17. 7.I Background F Producer - Consumer process :  Compiler, Assembler, Loader, · · · · · · F Bounded buffer.

Ch. 7 Process Synchronization (1/2) I Background F Producer - Consumer process :  Compiler, Assembler, Loader, · · · · · · F Bounded buffer.
Chapter 6: Process Synchronization

Chapter 6: Process Synchronization
5.1 Silberschatz, Galvin and Gagne ©2009 Operating System Concepts with Java – 8 th Edition Chapter 5: CPU Scheduling.

5.1 Silberschatz, Galvin and Gagne ©2009 Operating System Concepts with Java – 8 th Edition Chapter 5: CPU Scheduling.
Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 6: Process Synchronization.

Silberschatz, Galvin and Gagne ©2009 Operating System Concepts – 8 th Edition, Chapter 6: Process Synchronization.
Process Synchronization. Module 6: Process Synchronization Background The Critical-Section Problem Peterson’s Solution Synchronization Hardware Semaphores.

Process Synchronization. Module 6: Process Synchronization Background The Critical-Section Problem Peterson’s Solution Synchronization Hardware Semaphores.
Concurrency 101 Shared state. Part 1: General Concepts 2.

Concurrency 101 Shared state. Part 1: General Concepts 2.
Threading Part 2 CS221 – 4/22/09. Where We Left Off Simple Threads Program: – Start a worker thread from the Main thread – Worker thread prints messages.

Threading Part 2 CS221 – 4/22/09. Where We Left Off Simple Threads Program: – Start a worker thread from the Main thread – Worker thread prints messages.
“THREADS CANNOT BE IMPLEMENTED AS A LIBRARY” HANS-J. BOEHM, HP LABS Presented by Seema Saijpaul CS-510.

“THREADS CANNOT BE IMPLEMENTED AS A LIBRARY” HANS-J. BOEHM, HP LABS Presented by Seema Saijpaul CS-510.
Lecture 13: Consistency Models

Lecture 13: Consistency Models
Synchronization in Java Nelson Padua-Perez Bill Pugh Department of Computer Science University of Maryland, College Park.

Synchronization in Java Nelson Padua-Perez Bill Pugh Department of Computer Science University of Maryland, College Park.
Computer Architecture II 1 Computer architecture II Lecture 9.

Computer Architecture II 1 Computer architecture II Lecture 9.
1 Lecture 15: Consistency Models Topics: sequential consistency, requirements to implement sequential consistency, relaxed consistency models.

1 Lecture 15: Consistency Models Topics: sequential consistency, requirements to implement sequential consistency, relaxed consistency models.
1 Sharing Objects – Ch. 3 Visibility What is the source of the issue? Volatile Dekker’s algorithm Publication and Escape Thread Confinement Immutability.

1 Sharing Objects – Ch. 3 Visibility What is the source of the issue? Volatile Dekker’s algorithm Publication and Escape Thread Confinement Immutability.
CS510 Concurrent Systems Class 5 Threads Cannot Be Implemented As a Library.

CS510 Concurrent Systems Class 5 Threads Cannot Be Implemented As a Library.
Memory Consistency Models Some material borrowed from Sarita Adve’s (UIUC) tutorial on memory consistency models.

Memory Consistency Models Some material borrowed from Sarita Adve’s (UIUC) tutorial on memory consistency models.
Concurrency, Mutual Exclusion and Synchronization.

Concurrency, Mutual Exclusion and Synchronization.
CDP 2012 Based on “C++ Concurrency In Action” by Anthony Williams and The C++11 Memory Model and GCC WikiThe C++11 Memory Model and GCC Created by Eran.

CDP 2012 Based on “C++ Concurrency In Action” by Anthony Williams and The C++11 Memory Model and GCC WikiThe C++11 Memory Model and GCC Created by Eran.

Similar presentations

Ads by Google