Suppose I have a static complex object that gets periodically updated by a pool of threads, and read more or less continually in a long-running thread. The object itself is always immutable and reflects the most recent state of something.
class Foo() { int a, b; }
static Foo theFoo;
void updateFoo(int newA, int newB) {
f = new Foo();
f.a = newA;
f.b = newB;
// HERE
theFoo = f;
}
void readFoo() {
Foo f = theFoo;
// use f...
}
I do not care in the least whether my reader sees the old or the new Foo, however I need to see a fully initialized object. IIUC, The Java spec says that without a memory barrier in HERE, I may see an object with f.b initialized but f.a not yet committed to memory. My program is a real-world program that will sooner or later commit stuff to memory, so I don’t need to actually commit the new value of theFoo to memory right away (though it wouldn’t hurt).
What do you think is the most readable way to implement the memory barrier ? I am willing to pay a little performance price for the sake of readability if need be. I think I can just synchronize the assignment to Foo and that would work, but I’m not sure it’s very obvious to someone reading the code why I do that. I could also synchronize the whole initialization of the new Foo, but that would introduce more locking that actually needed.
How would you write it so that it’s as readable as possible ?
Bonus kudos for a Scala version 🙂
Short Answers to the Original Question
Foois immutable, simply making the fields final will ensure complete initialization and consistent visibility of fields to all threads irrespective of synchronization.Foois immutable, publication viavolatile theFooorAtomicReference<Foo> theFoois sufficient to ensure that writes to its fields are visible to any thread reading viatheFooreferencetheFoo, reader threads are never guaranteed to see any updateAtomicReference<Foo>, with explicit synchronization coming in second, and use ofvolatilecoming in thirdYou can use
volatileI blame you. Now I’m hooked, I’ve broken out JCiP, and now I’m wondering if any code I’ve ever written is correct. The code snippet above is, in fact, potentially inconsistent. (Edit: see the section below on Safe publication via volatile.)
The reading thread could also see stale (in this case, whatever the default values forYou can do one of the following to introduce a happens-before edge:aandbwere) for unbounded time.volatile, which creates a happens-before edge equivalent to amonitorenter(read side) ormonitorexit(write side)finalfields and initialize the values in a constructor before publicationtheFooobjectAtomicIntegerfieldsThese gets the write ordering solved (and solves their visibility issues). Then you need to address visibility of the new
theFooreference. Here,volatileis appropriate — JCiP says in section 3.1.4 “Volatile variables”, (and here, the variable istheFoo):If you do the following, you’re golden:
Straightforward and Readable
Several folks on this and other threads (thanks @John V) note that the authorities on these issues emphasize the importance of documentation of synchronization behavior and assumptions. JCiP talks in detail about this, provides a set of annotations that can be used for documentation and static checking, and you can also look at the JMM Cookbook for indicators about specific behaviors that would require documentation and links to the appropriate references. Doug Lea has also prepared a list of issues to consider when documenting concurrency behavior. Documentation is appropriate particularly because of the concern, skepticism, and confusion surrounding concurrency issues (on SO: “Has java concurrency cynicism gone too far?”). Also, tools like FindBugs are now providing static checking rules to notice violations of JCiP annotation semantics, like “Inconsistent Synchronization: IS_FIELD-NOT_GUARDED”.
Until you think you have a reason to do otherwise, it’s probably best to proceed with the most readable solution, something like this (thanks, @Burleigh Bear), using the
@Immutableand@GuardedByannotations.or, possibly, since it’s cleaner:
When is it appropriate to use
volatileFirst, note that this question pertains to the question here, but has been addressed many, many times on SO:
In fact, a google search: “site:stackoverflow.com +java +volatile +keyword” returns 355 distinct results. Use of
volatileis, at best, a volatile decision. When is it appropriate? The JCiP gives some abstract guidance (cited above). I’ll collect some more practical guidelines here:volatilecan be used to safely publish immutable objects”, which neatly encapsulates most of the range of use one might expect from an application programmer.volatileis most useful in lock-free algorithms” summarizes another class of uses—special purpose, lock-free algorithms which are sufficiently performance sensitive to merit careful analysis and validation by an expert.Safe Publication via volatile
Following up on @Jed Wesley-Smith, it appears that
volatilenow provides stronger guarantees (since JSR-133), and the earlier assertion “You can usevolatileprovided the object published is immutable” is sufficient but perhaps not necessary.Looking at the JMM FAQ, the two entries How do final fields work under the new JMM? and What does volatile do? aren’t really dealt with together, but I think the second gives us what we need:
I’ll note that, despite several rereadings of JCiP, the relevant text there didn’t leap out to me until Jed pointed it out. It’s on p. 38, section 3.1.4, and it says more or less the same thing as this preceding quote — the published object need only be effectively immutable, no
finalfields required, QED.Older stuff, kept for accountability
One comment: Any reason why
newAandnewBcan’t be arguments to the constructor? Then you can rely on publication rules for constructors…Also, using an
AtomicReferencelikely clears up any uncertainty (and may buy you other benefits depending on what you need to get done in the rest of the class…) Also, someone smarter than me can tell you ifvolatilewould solve this, but it always seems cryptic to me…In further review, I believe that the comment from @Burleigh Bear above is correct — (EDIT: see below)
you actually don’t have to worry about out-of-sequence ordering here, since you are publishing a new object totheFoo. While another thread could conceivably see inconsistent values fornewAandnewBas described in JLS 17.11, that can’t happen here because they will be committed to memory before the other thread gets ahold of a reference to the newf = new Foo()instance you’ve created… this is safe one-time publication. On the other hand, if you wroteBut in that case the synchronization issues are fairly transparent, and ordering is the least of your worries. For some useful guidance on volatile, take a look at this developerWorks article.
However, you may have an issue where separate reader threads can see the old value for
theFoofor unbounded amounts of time. In practice, this seldom happens. However, the JVM may be allowed to cache away the value of thetheFooreference in another thread’s context. I’m quite sure markingtheFooasvolatilewill address this, as will any kind of synchronizer orAtomicReference.