Adding state to the update notification pattern, part 7

Raymond Chen

April 25th, 20245 0

Last time, we refined our change counter-based stateful but coalescing update notification. This version still relies on a UI thread to do two things: (1) make the final final change counter check and the subsequent callback atomic, and (2) to serialize the callbacks.

If we don’t have a UI thread, then we open a race condition.

class EditControl
{
    ⟦ ... existing class members ... ⟧

    std::atomic<unsigned> m_latestId;
};

winrt::fire_and_forget
EditControl::TextChanged(std::string text)
{
    auto lifetime = get_strong();

    auto id = m_latestId.fetch_add(1, std::memory_order_relaxed);

    co_await winrt::resume_background();

    if (!IsLatestId(id))) co_return;

    std::vector<std::string> matches;
    for (auto&& candidate : FindCandidates(text)) {
        if (candidate.Verify()) {
            matches.push_back(candidate.Text());
        }
        if (!IsLatestId(id))) co_return;
    }

    // co_await winrt::resume_foreground(Dispatcher());

    if (!IsLatestId(id))) co_return;

    SetAutocomplete(matches);
}

Another call to TextChanged could happen just before the Set­Autocomplete, and its work could race ahead of the first task.

UI thread Background thread 1 Background thread 2
TextChanged("Bob")
resume_background()		    
  (Bob’s task)
id = m_latestId; (id is 1)
calculate matches for “Bob”
if (1 == m_latestId) (true)		  
TextChanged("Alice");
resume_background()		    
    (Alice’s task)
id = m_latestId; (id is 2)
calculate matches for “Alice”
if (2 == m_latestId) (true)
SetAutocomplete(alice's matches)
  SetAutocomplete(bob's matches)  

One temptation is to fix this by restoring atomicity by adding a lock:

winrt::fire_and_forget
EditControl::TextChanged(std::string text)
{
    auto lifetime = get_strong();

    auto id = m_latestId.fetch_add(1, std::memory_order_relaxed);

    co_await winrt::resume_background();

    if (!IsLatestId(id))) co_return;

    std::vector<std::string> matches;
    for (auto&& candidate : FindCandidates(text)) {
        if (candidate.Verify()) {
            matches.push_back(candidate.Text());
        }
        if (!IsLatestId(id))) co_return;
    }

    auto lock = std::unique_lock(m_mutex);

    if (!IsLatestId(id))) co_return;

    SetAutocomplete(matches);
}

The good news is that this avoids the race condition. One thing to check is that nothing bad happens if Set­Autocomplete itself triggers a recursive call to Text­Changed: Since the Set­Autocomplete is happening on a background thread, a call to Text­Changed would hop to another background thread before eventually blocking on the mutex. Nobody is deadlocked, so we’re okay there.

But there is a problem if the Text­Change calls come in faster than Set­Autocomplete can process them. In that case, each Text­Change consumes a background thread and blocks on the mutex. There could be a lot of background threads all waiting for their turn to call Set­Autocomplete, but not able to make progress because the current active call to Set­Autocomplete is taking too long. In the worst case, Set­Autocomplete takes so long that you end up consuming all the threads in the threadpool, which tends not to end well.

Instead of using a mutex, we can use an “async mutex”, where each waiting coroutine just suspends until its turn to enter the protected region. Fairness is not important here, because all but one of the coroutines will bail out when they realize that their change counter doesn’t match, so we can use simple task sequencer that uses a kernel event.

class EditControl
{
    ⟦ ... existing class members ... ⟧

    std::atomic<unsigned> m_latestId;
    wil::unique_event m_serializerEvent{ wil::EventOptions::Signaled };
};

winrt::fire_and_forget
EditControl::TextChanged(std::string text)
{
    auto lifetime = get_strong();

    auto id = m_latestId.fetch_add(1, std::memory_order_relaxed);

    co_await winrt::resume_background();

    if (!IsLatestId(id))) co_return;

    std::vector<std::string> matches;
    for (auto&& candidate : FindCandidates(text)) {
        if (candidate.Verify()) {
            matches.push_back(candidate.Text());
        }
        if (!IsLatestId(id))) co_return;
    }

    co_await winrt::resume_on_signal(m_serializerEvent.get());    
    auto next = wil::SetEvent_scope_exit(m_serializerEvent.get());

    if (!IsLatestId(id))) co_return;

    SetAutocomplete(matches);
}

Raymond Chen

Read next

5 comments

Leave a comment

  • 紅樓鍮 0

    Isn’t the point of autocomplete to display something on the screen? And to display anything on the screen, you need to execute code on the UI thread, so I don’t think there’s any problem with going back to the UI thread to do the last bit of work.

    • Neil Rashbrook 0

      Indeed, which thread is the Edit control firing its TextChanged events on in the first place?

      • Raymond ChenMicrosoft employee 0

        Since it’s a UI control, it stands to reason that the event is raised on the UI thread.

        • GL 0

          I think Neil Rashbrook was asking a rhetoric question. I’m quite a non-expert on thread exiting, but the UI thread could have ended before autocomplete is computed?

          • Raymond ChenMicrosoft employee 1

            Oh, I got my articles confused. This one is on the assumption that the EditControl does not have UI affinity. (Pretend “EditControl” is really some non-UI thing.)

Feedback usabilla icon