• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Thread safe programming
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Thread safe programming

  • Subject: Thread safe programming
  • From: Jens Bauer <email@hidden>
  • Date: Wed, 5 Jun 2002 15:00:39 +0200
Hi all,

I'd like to inform you about a problem I've seen recently, so you can
avoid this kind of programming.
Many of you out there know this already, but for those who are not
familiar with interrupt programming and thread programming, I'd like to
make sure that you can avoid such problems and spot them easily.


void *memchr(void *src, unsigned char chr, size_t size)
{
unsigned char *s, *e, save;

s = (unsigned char *) src;
e = s + size;
save = *e; /* save last character */
*e = chr; /* patch it */

while(chr != *s)
{
s++;
}

*e = save; /* restore last char */
return((e == s) ? NULL : s);
}

First problem:
The byte after the string is being patched.
If the string was allocated using malloc(10), the character patched is
character number 11, which is *outside* the buffer.
If you're lucky, you'll always get a crash here, and then be able to find
the bug quickly.

Second problem:
If you are using threads, and thread 2 calls memchr while thread 1 is
inside the while loop, this is what is going to happen:

1: thread1 saves the end-char ('0')
2: thread1 sets the last character to be '+'
3: thread2 saves the end-char ('+')
4: thread2 sets the last character to be '-'
5: thread1 searches way beyond the end of the buffer or finds what it's
searching for
6: thread1 finds something interesting and restores the end-char ('0')
7: thread2 searches way beyond the end of the buffer or finds what it's
searching for
8: thread2 restores the end-char ('+')

In addition to the incorrect searching, the last character now changed.
We didn't *own* that character.
Under Mac OS 9, it would be possible that we've messed up the header of
the next block.

-So what's the solution ?
If you only read the buffer, you should change the function call to this:

void *memchr(const void *src, unsigned char chr, size_t size)

Adding const will indicate that you are not modifying the buffer.
This is not enough, because you will have to change the code as well, but
using const parameters will in many cases make the compiler warn you
about illegal implicit const to non-const casts.

Another solution would be semaphore programming, but you do not want to
do that to the above routine, because that means you would waste a bunch
of CPU cycles on finding a character in memory.


Love,
Jens

--
I've developed software that changed the history, but that does not
entitle me to rule the World.

--
Jens Bauer, Faster Software.
-Let's make the World better, shall we ?
_______________________________________________
cocoa-dev mailing list | email@hidden
Help/Unsubscribe/Archives: http://www.lists.apple.com/mailman/listinfo/cocoa-dev
Do not post admin requests to the list. They will be ignored.
  • Follow-Ups:
    • Re: Thread safe programming
      • From: Nat! <email@hidden>
    • Re: Thread safe programming
      • From: Gareth White <email@hidden>
  • Prev by Date: Killing child tasks
  • Next by Date: RE: drawing NOW in a callback, boom!
  • Previous by thread: Re: Killing child tasks
  • Next by thread: Re: Thread safe programming
  • Index(es):
    • Date
    • Thread