When a given thread waits (pthread_condcnd_wait() or pthread_condcnd_timedwait()) on a condition variable, it can be awakened as result of a signal operation (pthread_condcnd_signal()). However, if multiple threads are waiting on the same condition variable, any of those threads can be picked up by the scheduler to be awakened (assuming that all threads have the same priority level and also that they have only one mutex associated with the condition variable). See guideline POS53-C. Do not use more than one mutex for concurrent waiting operations on a condition variable.).
This forces the user to create a predicate-testing-loop around the wait condition to guarantee that each thread only executes if its predicate test is true (recommendation on IEEE Std 1003.1 since 2001 release). As a consequence, if a given thread finds the predicate test to be false, it waits again, eventually resulting in a deadlock situation.
Therefore, the use of pthread_condcnd_signal() is safe only if the following conditions are met:
- The condition variable is the same for each waiting thread.
- All threads must perform the same set All threads must perform the same set of operations after waking up. This means that any thread can be selected to wake up and resume for a single invocation of
pthread_condcnd_signal(). - Only one thread is required to wake upon receiving the signal.
The use of pthread_condcnd_signal() can also be safe in the following situation:
- Each thread uses a unique condition variable.Each condition variable is associated with the same mutex (lock).
The use of pthread_condcnd_broadcast() solves the problem since it wakes up all the threads associated with the respective condition variable, and since all (must) re-evaluate the predicate condition, one should find its test to be true, avoiding the deadlock situation.
Noncompliant Code Example (
...
cnd_signal())
The following noncompliant code example consists on a given number of threads (5) that should execute one after another according to the step level that is assigned to them when created (serialized processing). The current_step variable holds the current step level and is incremented as soon as the respective thread finishes its processing. Finally, another thread is signaled so that the next step can be executed.
| Code Block | ||||
|---|---|---|---|---|
| ||||
#include <stdio.h> #include <stdlib.h> #include <pthread<threads.h> #define NTHREADS 5 pthreadmtx_mutex_t mutex; pthread_condcnd_t cond; void *run_step(void *t) { static int current_step = 0; int my_step = (int)t; int result; if ((result = pthreadmtx_mutex_lock(&mutex)) != 0thrd_success) { /* Handle error condition */ } printf("Thread %d has the lock\n", my_step); while (current_step != my_step) { printf("Thread %d is sleeping...\n", my_step); if ((result = pthread_condcnd_wait(&cond, &mutex)) != 0thrd_success) { /* Handle error condition */ } printf("Thread %d woke up\n", my_step); } /* Do processing... */ printf("Thread %d is processing...\n", my_step); current_step++; /* Signal a waiting task */ if ((result = pthread_condcnd_signal(&cond)) != 0thrd_success) { /* Handle error condition */ } printf("Thread %d is exiting...\n", my_step); if ((result = pthread_mutexmtx_unlock(&mutex)) != 0thrd_success) { /* Handle error condition */ } pthreadthrd_exit(NULL); } int main(int argc, char** argv) { int i; int result; pthread_attr_t attr; pthreadthrd_t threads[NTHREADS]; int step[NTHREADS]; if ((result = pthread_mutexmtx_init(&mutex, NULLmtx_plain)) != 0thrd_success) { /* Handle error condition */ } if ((result = pthread_condcnd_init(&cond, NULL)) != 0thrd_success) { /* Handle error condition */ } if ((result = pthread_attr_init(&attr)) != 0/* Create threads */ for (i = 0; i < NTHREADS; i++) { /* Handle error condition */step[i] = i; } if ((result = pthread_attr_setdetachstate(&attr, PTHREAD_CREATE_JOINABLEthrd_create(&threads[i], run_step, (void *)step[i])) != 0thrd_success) { /* Handle error condition */ } } /* Wait for Createall threads to complete */ for (i = 0NTHREADS-1; i <>= NTHREADS0; i++--) { step[i] = i; ifif ((result = pthreadthrd_createjoin(&threads[i], &attr, run_step, (void *)step[i]NULL)) != 0thrd_success) { /* Handle error condition */ } } /* Wait for all threads to complete */ for (i = NTHREADS-1; i >= 0; i--) { if ((result = mtx_destroy(&mutex)) != thrd_success) { /* Handle error condition */ } if ((result = pthreadcnd_join(threads[i], NULLdestroy(&cond)) != 0thrd_success) { /* Handle error condition */ } } if ((result = pthread_mutex_destroy(&mutex)) != 0) { /* Handle error condition */ } if ((result = pthread_cond_destroy(&cond)) != 0) { /* Handle error condition */ } if ((result = pthread_attr_destroy(&attr)) != 0) { /* Handle error condition */ } pthread_exit(NULL); } |
In the above code, each thread has its own predicate because each requires current_step to have a different value before proceeding. Upon the signal operation (pthread_cond_signal()), any of the waiting threads can wake up. If, by chance, it is not the thread with the next step value, that thread will wait again pthread_cond_wait(), thus resulting in a deadlock situation because no more signal operations will occur.
Consider the following example:
thrd_exit(NULL);
}
|
In the above code, each thread has its own predicate because each requires current_step to have a different value before proceeding. Upon the signal operation (pthread_cond_signal()), any of the waiting threads can wake up. If, by chance, it is not the thread with the next step value, that thread will wait again pthread_cond_wait(), thus resulting in a deadlock situation because no more signal operations will occur.
Consider the following example:
Time | Thread # | current_step | Action |
|---|---|---|---|
0 | 3 | 0 | Thread 3 executes 1st time: predicate is FALSE -> wait() |
1 | 2 | 0 | Thread 2 executes 1st time: predicate is FALSE -> wait() |
2 | 4 | 0 | Thread 4 executes 1st time: predicate is FALSE -> wait() |
3 | 0 | 0 | Thread 0 executes 1st time: predicate is TRUE -> current_step++; signal() |
4 | 1 | 1 | Thread 1 executes 1st time: predicate is TRUE -> current_step++; signal() |
5 | 3 | 2 | Thread 3 wakes up (scheduler choice) |
Time | Thread # | current_step | Action |
0 | 3 | 0 | Thread 3 executes 1st time: predicate is FALSE -> wait() |
16 | 2 | 0 | Thread 2 executes 1st time: predicate is FALSE -> wait() |
2 | 4 | 0 | Thread 4 executes 1st time: predicate is FALSE -> wait() |
3 | 0 | 0 | Thread 0 executes 1st time: predicate is TRUE -> current_step++; signal() |
4 | 1 | 1 | Thread 1 executes 1st time: predicate is TRUE -> current_step++; signal() |
5 | 3 | 2 | Thread 3 wakes up (scheduler choice): predicate is FALSE -> wait() |
6 | - | - | Deadlock situation! No more threads to run and a signal is needed to wake up the others. |
Therefore, this noncompliant code example violates the [BB. Definitions[liveness property.
Compliant Solution (Using pthread_cond_broadcast())
This compliant solution uses the pthread_cond_broadcast() method to signal all waiting threads instead of a single "random" one.
Only the run_step() thread code from the noncompliant code example is modified, as follows:
- | - | Deadlock situation! No more threads to run and a signal is needed to wake up the others. |
Therefore, this noncompliant code example violates the [BB. Definitions#liveness[liveness property.
Compliant Solution (Using cnd_broadcast())
This compliant solution uses the cnd_broadcast() method to signal all waiting threads instead of a single "random" one.
Only the run_step() thread code from the noncompliant code example is modified, as follows:
| Code Block | ||||
|---|---|---|---|---|
| ||||
void *run_step(void *t) {
static int current_step = 0;
int my_step = (int)t;
int result;
if ((result = mtx_lock(&mutex)) != thrd_success) {
/* Handle error condition */
}
printf("Thread %d has the lock\n", my_step);
while (current_step != my_step) {
printf("Thread %d is sleeping...\n", my_step);
if ((result = cnd_wait(&cond, | ||||
| Code Block | ||||
| ||||
void *run_step(void *t) { static int current_step = 0; int my_step = (int)t; int result; if ((result = pthread_mutex_lock(&mutex)) != 0thrd_success) { /* Handle error condition */ } printf("Thread %d haswoke the lockup\n", my_step); while (current_step != my_step) {} /* Do processing... */ printf("Thread %d is sleepingprocessing...\n", my_step); current_step++; /* Signal ALL waiting tasks */ if ((result = pthreadcnd_cond_waitbroadcast(&cond, &mutex)) != 0thrd_success) { /* Handle error condition */ } printf("Thread %d woke upis exiting...\n", my_step); if ((result = mtx_unlock(&mutex)) != 0) }{ /* Do processing...Handle error condition */ printf("Thread %d is processing...\n", my_step} thrd_exit(NULL); current_step++; /* Signal ALL waiting tasks */ if ((result = pthread_cond_broadcast(&cond)) != 0) { /* Handle error condition */ } printf("Thread %d is exiting...\n", my_step); if ((result = pthread_mutex_unlock(&mutex)) != 0) { /* Handle error condition */ } pthread_exit(NULL); } |
The fact that all tasks will be awake solves the problem because all tasks end up executing its predicate test; therefore, one will find it to be true and continue the execution until the end.
Compliant Solution (Using pthread_cond_signal() but with a Unique Condition Variable Per Thread)
Another way to solve the signal issue is to use a unique condition variable for each thread (maintaining a single mutex associated with it). In this case, the signal operation (pthread_cond_signal()) will wake up the only thread waiting on it.
NOTE: The predicate of the signaled thread must be true; otherwise, a deadlock can occur anyway.
}
|
The fact that all tasks will be awake solves the problem because all tasks end up executing its predicate test; therefore, one will find it to be true and continue the execution until the end.
Compliant Solution (Using cnd_signal() but with a Unique Condition Variable Per Thread)
Another way to solve the signal issue is to use a unique condition variable for each thread (maintaining a single mutex associated with it). In this case, the signal operation (cnd_signal()) will wake up the only thread waiting on it.
NOTE: The predicate of the signaled thread must be true; otherwise, a deadlock can occur anyway.
| Code Block | ||||
|---|---|---|---|---|
| ||||
#include <stdio.h>
#include <stdlib.h>
#include <threads.h>
#define NTHREADS 5
mtx_t mutex;
cnd_t cond[NTHREADS];
void *run_step(void *t) {
static int current_step = 0;
int my_step = (int)t;
int result;
| ||||
| Code Block | ||||
| ||||
#include <stdio.h> #include <stdlib.h> #include <pthread.h> #define NTHREADS 5 pthread_mutex_t mutex; pthread_cond_t cond[NTHREADS]; void *run_step(void *t) { static int current_step = 0; int my_step = (int)t; int result; if ((result = pthread_mutex_lock(&mutex)) != 0) { /* Handle error condition */ } printf("Thread %d has the lock\n", my_step); while (current_step != my_step) { printf("Thread %d is sleeping...\n", my_step); if ((result = pthread_cond_wait(&cond[my_step], mtx_lock(&mutex)) != 0thrd_success) { /* Handle error condition */ } printf("Thread %d woke up\n", my_step); } /* Do processing... */ printf("Thread %d is processing...has the lock\n", my_step); while (current_step++; /* Signal next step thread */ if ((my_step + 1) < NTHREADS) { != my_step) { printf("Thread %d is sleeping...\n", my_step); if ((result = pthreadcnd_cond_signalwait(&cond[my_step+1], &mutex)) != 0thrd_success) { /* Handle error condition */ } } */ } printf("Thread %d woke up\n", my_step); } /* Do processing... */ printf("Thread %d is exitingprocessing...\n", my_step); current_step++; /* Signal next step thread my_step); */ if ((my_step + 1) < NTHREADS) { if ((result = pthreadcnd_mutex_unlocksignal(&mutexcond[my_step+1])) != 0thrd_success) { /* Handle error condition */ } pthread_exit(NULL); } int main(int argc, char** argv) { int i; int result; pthread_attr_t attr; pthread_t threads[NTHREADS]; int step[NTHREADS] /* Handle error condition */ } } printf("Thread %d is exiting...\n", my_step); if ((result = pthreadmtx_mutex_initunlock(&mutex, NULL)) != 0) { /* Handle error condition */ } for (i = 0; i< NTHREADS; i++) { thrd_success) { /* Handle error condition */ } thrd_exit(NULL); } int main(int argc, char** argv) { int i; int result; thrd_t threads[NTHREADS]; int step[NTHREADS]; if ((result = pthread_condmtx_init(&cond[i]mutex, NULLmtx_plain)) != 0thrd_success) { /* Handle error condition */ } } iffor ((result = pthread_attr_init(&attr)) !i = 0); { /* Handle error condition */i< NTHREADS; i++) { } if ((result = pthreadcnd_attr_setdetachstate(&attr, PTHREAD_CREATE_JOINABLEinit(&cond[i])) != 0thrd_success) { /* Handle error condition */ } } /* Create threads */ for (i = 0; i < NTHREADS; i++) { step[i] = i; if ((result = pthreadthrd_create(&threads[i], &attr, run_step, (void *)step[i])) != 0thrd_success) { /* Handle error condition */ } } /* Wait for all threads to complete */ for (i = NTHREADS-1; i >= 0; i--) { if ((result = pthreadthrd_join(threads[i], NULL)) != 0thrd_success) { /* Handle error condition */ } } if ((result = pthreadmtx_mutex_destroy(&mutex)) != 0thrd_success) { /* Handle error condition */ } for (i = 0; i < NTHREADS; i++) { if ((result = pthread_condcnd_destroy(&cond[i])) != 0thrd_success) { /* Handle error condition */ } } if ((result = pthread_attr_destroy(&attr)) != 0) { /* Handle error condition */ } pthreadthrd_exit(NULL); } |
In the above code, each thread has associated a unique condition variable which is signaled when that particular thread needs to be awakened. This solution turns out to be more efficient because only the desired thread will be awakened.
...
The CERT Oracle Secure Coding Standard for Java: THI04-J. Notify all waiting threads rather than a single thread
Bibliography
[Open Group] pthread_cond_signal() pthread_cond_broadcast()
...