proposal: sync/atomic: add Swap, CompareAndSwap #26728
Comments
|
This seems like a complete non-starter to me. You are completely replacing the API with a different API, one that requires additional per-operation allocations, when the current API seems just fine, all with very little justification as to why the new API is more compelling. If all you need is Swap and CompareAndSwap, it seems to me that those are possible to implement without completely rewriting the internals. And the few cases that truly need type mutability can always store a *interface{} into the atomic.Value. |
rsc
changed the title
|
Hi @rsc, I think I responded to most of your criticisms in the proposal. Would you mind including more technical detail about what specifically you don't like? As a side note: I randomly looked through some usages of atomic.*Pointer in codesearch. In pretty much every case, using atomic.Value (with my proposed change) would have been more safe and equally as fast. |
|
Expanding my earlier response:
|
It does matter I agree, which is why there is a clear and accessible way to avoid allocations already:
Again, I offer that As a brief example, consider an atomic.Value which stores the last
Continuing with the atomic.Value which stores an error: Try making an atomic.Value hold the first By adopting this proposal, I don't think there is an example where code would be more bug prone, nor would the performance become measurably worse. |
|
If we do CompareAndSwap and Swap, they will be subject to the same type-immutability constraints as Store. Racing CompareAndSwap is no different than racing Store. Using an atomic.Value to store an error is a mistake. If that's what motivates all this angst, store a *error (or a *interface{}) instead. Yes, it's a little clumsy, because the API as written (even your new API) drops the interface wrapping, but that's a property of interface-based general APIs, not this one. It doesn't merit workarounds here. Right now atomic.Value is suitable for users who want performance and type safety. The bad idea that if you want performance (no unexpected allocations) then you have to give up type safety is exactly what we were trying to address by adding atomic.Value in the first place. Under no circumstance should we be telling users "this code worked for you before, but not anymore, and oh by the way the fix is to introduce new uses of unsafe into your code." |
Agree.
This was the first example I found in our code that used Atomics, not a special case.
Not sure how you can interpret it as not interface based. The only two methods of Value are
Let's take a look at another usage of atomics and see if they are satisfied by the current API: sync.Map. This implementation is basically the same as my proposal, except that it doesn't use Value at all, and does use Here is another example of Value's implementation warts appearing on the API, forcing an unnecessary cast: cc.retryThrottler.Store((*retryThrottler)(nil))These weren't even that hard to find. Look through
Could you clarify what you mean by "worked"? The proposal was specifically chosen to be backwards compatible with existing usage. |
See #11260.
See #20164.
Note @rsc's comment in particular:
I think this proposal should wait until we figure out what (if anything) is happening with generics (#15292). If we can add a type-parametric version of |
|
Narrowing this proposal to "add Swap and CompareAndSwap", not changing the rest of the API. Can anyone make a strong case for adding Swap and CompareAndSwap? |
rsc
changed the title
AppEngine code cannot use unsafe pointers, but it can use atomic.Value, so having Swap & CompareAndSwap in atomic.Value would be functionality that is otherwise inaccessible to some users. It seems to me that environments where unsafe pointers are disallowed is the only real value of atomic.Value. atomic.Value is slower than unsafe pointer atomics, has less functionality, and the type information provided by it is mostly unnecessary, since its type can never change after initialization. |
|
There aren't many environments that reject unsafe anymore, and we shouldn't contort the library for those. It would be fine for someone who has a compelling use for these to create a new issue proposing to add Swap and CompareAndSwap (or to reopen this one, if you have permission). For now, given the lack of a real-world use case for them, we will err on the side of leaving it out. |
(this is a fork of the discussion on https://go-review.googlesource.com/c/go/+/126295 )
This proposal is a combination of changes that are tightly coupled with each other that extend the functionality of atomic.Value. Normally these would be separate proposals, but it would be technically suboptimal to implement them as such.
Specifically, this proposal suggests that atomic.Value be changed in the following ways:
nilCompareAndSwapmethod to ValueSwapmethod to Value.The current API is the way it is due to implementation details, as indicated on the original change. https://codereview.appspot.com/120140044/ Discussion claims
Additionally, it also suggests a use case where an unset value has meaning, lending itself to disallow
nil:While this use case may be present, it is more cleanly handled by using a sentinel value, rather than forcing
nilto be (and thus preventing it from being up to the user).Reasons why this change is safe and valuable:
atomic.Valuecan be considered a type safe atomic interface{}, similar to the other atomic methods for unsafe.Pointer and the various integer types. However, unlike interface{}, Value preventsnilfrom being stored. This is surprising, and requires closely reading the docs. Also unlike interface{}, the concrete type cannot change. This too is surprising, and not actually a necessary requirement. Enabling these to be used is backwards compatible.In some environments (like AppEngine), using unsafe is not possible, leaving only standard library packages for use. Doing typesafe atomics depends on the standard library providing this functionality.
CompareAndSwapandSwapare standard atomic operations, and are exposed for the other types in the atomic package. It is surprising that these do not exist. (from an API point of view, it is clear why they don't when looking at the implementation). These methods are invaluable for resolving code that may race without resorting to locks.Alternatives considered
Using unsafe.Pointer. While the functionality can be duplicated by using unsafe.Pointer and the related atomic methods, this necessarily gives up type safety. It is infeasible to use on AppEngine, gopherjs, or in environments where unsafe is unavailable. While unsafe.Pointer is faster, the proposed Value changes are only minutely slower, and would not materially affect users. (users who did care about speed would not have used Value in the first place, and would instead prefer plain atomic.*Pointer methods).
Add CompareAndSwap and Swap, but leave nil and concrete type changes forbidden. Due the the proposals implementation, it would be difficult and complicated to prefer the original limitations. The proposals implementation is much simpler to read, understand by having all changes in a single proposal.
Expose this functionality in the third party package, and integrate it if it gets popular. Because atomics are already a niche subject, and the use cases are mostly solved by using Go's other concurrency primitives, It is unlikely that an external library would ever get enough adoption. Having a single, correct, well tested, and widely used implementation of atomic values would be best for the Go library and Go users. That location is in sync/atomic. As a side benefit, the Go compiler is in a unique position to rewrite code using sync/ atomic for optimization purposes; this would be unrealistic if it lived outside.
Do Nothing. If the proposal is rejected, the way users implement this functionality is with locks, using channels, or using unsafe.Pointer. The first two are heavier weight operations than atomics, and force the user to maintain an additional variable. (they may already have one, but maybe not). Using unsafe is more error prone than using Value directly which is also undesirable.
Implementation costs
The proposed API changes come with a proposed implementation. Currently, the Value code unpacks the provided interface{} into its component words, and does two, atomic loads / stores. The proposed change boxes the value as a pointer to an interface, which is then used inside of Value. This means that stores now allocate two words of memory, and reads must chase an additional pointer.
I believe these costs are acceptable for three main reasons:
I believe it is much more valuable to add this backwards-compatible, useful, unobtrusive, and simpler atomic code, and the performance difference is inconsequential.
cc: @dfawley @ianlancetaylor @dvyukov
The text was updated successfully, but these errors were encountered: