Most programming languages model state via a fairly naive process. There are things, represented by variables or objects, and these things can change. But how and when they change is not well defined. Usually, programs "bash objects in place"—each line of code is free to reach in and push arbitrary changes to any part of any thing as it executes. The only way to preserve consistency and prevent bugs caused by two changes happening at once is to place safeguards around each and every thing, ensuring that only one process can interact with a given thing at once. These are known as locks.

The problem with locks is that they're hard to get right. In order to make them correct, the first reaction is to use more of them, which only causes another problem: extensive use of locks solves the problems introduced by concurrency by, effectively, reducing the level of concurrency that is actually possible. It doesn't matter how many threads a program has running, if they all must queue up to access an object one at a time, then at that point they might as well be running in a single thread.

However, with the view that there are only mutable, changeable things, and without having well-defined semantics for how they change, locks are the only option. For a more effective approach to state, it is necessary to reevaluate and find better definitions for what things are, and establish clear rules for how they change.

Clojure introduces a philosophical and conceptual paradigm shift in its treatment of things. It takes the standard notion of a thing (an object or a variable) and decomposes it into two separate concepts—state and identity.^[4] Every thing has both a state and an identity. State is a value associated with an identity at a particular moment in time, whereas identity is the part of a thing that does not change, and creates the link between many different states at many different times. The value of each state is immutable and cannot change. Rather, change is modeled by the identity being updated to refer to a different state entirely.

For example, when I was a child, in 1990, I was a very, very different person than I am now in 2010, and it is very probable that I will be a different person still when I am much older in 2050. Luke₁₉₉₀, Luke₂₀₁₀ and Luke₂₀₅₀ are quite different people—you could go as far as to say that they don't have that many similarities at all. And yet, they do have a relationship, a constant identity—they are all me, Luke VanderHart.

In Clojure's logical terminology, Luke₁₉₉₀, Luke₂₀₁₀ and Luke₂₀₅₀ are all distinct values—distinct states. My name, Luke VanderHart, is the identity that links them all together. Like Clojure's values, these states are immutable. I may be able to change future versions of myself, but Luke₁₉₉₀ is set in stone. I can no longer do anything to change who that person was or is. Currently, the identity Luke VanderHart has Luke₂₀₁₀ as its state. Next year, it will have a new state: Luke₂₀₁₁, which will likely be very similar to Luke₂₀₁₀ but with subtle differences. Actually, in Clojure's model, every time I change at all, it generates a new state: millisecond by millisecond, I have new values associated with my identity as I have different thoughts, feelings, and motions. I am a near infinity of distinct, unchangeable persons, all slightly different, all linked by a common identity.

Another example is my bank account, a much less philosophical example and one more likely to be modeled in an actual program. As I spend money and receive paychecks, the balance of my bank account fluctuates. Clearly, it is something that needs to be modeled as changeable state. In this case, the identity which remains constant throughout the program is "my account"—call the identity account-balance. The state, then, is the amount of money in the account at a given time. For example, it might start at $1000. If I deposit a check for $100, then the account-balance identity is updated to point to a new state, $1100. Note that I have not changed the value of the state—changing the integer 1000 to 1100 is a clear impossibility: 1000 and 1100 are distinct mathematical values. The state has not changed, rather, the identity of account-balance now points to a new state. The update takes place atomically; there is no intermediate state where the value of account-balance is half-set. At any point in the program, it is safe to query the current state of account-balance.

In Clojure code, states are simply any of Clojure's data types. They can be primitives, such as numbers or strings, or more complex structures built out of lists, maps, and sets. The only limitation on values that can be used as states is that they ought to be immutable. If you use a mutable structure (such as a Java object) as a state, you haven't actually accomplished anything: Clojure's state management system is founded on the premise that values themselves are immutable, and it can provide no guarantees of consistency or isolation for mutable objects.

Identities are modeled using one of the three reference types: refs, agents, atoms and vars. Each implements the conceptual model outlined previously; each represents an identity and points to a state. They differ in the semantics of how they can be updated to refer to new state values and are useful in different situations. Between them, they can handle just about any state management task:

To create a ref, use the built-in ref function, which takes a single argument: the initial value of the ref:

user=> (def my-ref (ref 5))
#'user/my-ref

This code does two things: creates a ref with an initial state of the integer 5 and binds the ref to a var, my-ref. It is an important distinction: the var is not the ref itself, it is just bound to the ref. If you try to get the value of the var, you get the following:

user=> my-ref
#<Ref@1010058: 5>

my-ref is a var like any other. It just has a ref as its bound value, which is seen here. " #<Ref@1010058: 5>" is the string debugging representation of a ref. To actually get the current state of the ref, it is necessary to use the dereference function deref:

user=> (deref my-ref)
5

The deref function always takes a single argument, which must resolve to a ref and returns the current state of the ref. Because the deref function is used so frequently, there is a shorthand for it: the @ symbol. Prefixing an expression with @ is identical to calling deref on it:

user=> (deref my-ref)
5
user=> @my-ref
5

The shorthand form makes it easier to dereference symbols within expressions:

user=> (+ 1 @my-ref)
6

Dereferencing a ref always returns its state, immediately. Refs are never locked (at least, not in a traditional sense) and deref does not block while waiting for a transaction to complete. It always just returns a snapshot of the ref's current state. This means that if you call deref twice, outside of a transaction, it is possible that you will get two different values.

There are several different functions which can be used to update the values of refs. They differ in their performance implications, and are explained in detail in the following sections, but they have one thing in common: they are designed exclusively for use within transactions. Executing any of them outside a transaction always throws an error.

user=> (def my-ref (ref 5))
#'user/my-ref
user=> @my-ref
5

user=> (dosync (ref-set my-ref 6))
6
user=> @my-ref
6

user=> (ref-set my-ref 7)
java.lang.IllegalStateException: No transaction running

user=> (def my-ref (ref 5))
#'user/my-ref
user=> @my-ref
5
user=> (dosync (alter my-ref + 3))
8
user=> @my-ref
8

user=> (def my-ref (ref 5))
#'user/my-ref
user=> @my-ref
5
user=> (dosync (commute my-ref + 3))
8
user=> @my-ref
8

(def account1 (ref 1000))
(def account2 (ref 1500))

(defn transfer
    "transfers amount of money from a to b"
    [a b amount]
    (dosync
        (alter a - amount)
        (alter b + amount)))

(transfer account1 account2 300)
(transfer account2 account1 50)

(println "Account #1:" @account1)
(println "Account #2:" @account2)

Account #1: 750
Account #2: 1750

(def my-contacts (ref []))

(defn add-contact
    "adds a contact to the provided contact list"
    [contacts contact]
    (dosync
        (alter contacts conj (ref contact))))

(defn print-contacts
    "prints a list of contacts"
    [contacts]
    (doseq [c @contacts]
                             (println (str "Name: " (@c :lname) ", " (@c :fname)))
                         ))


(add-contact my-contacts {:fname "Luke" :lname "VanderHart"})
(add-contact my-contacts {:fname "Stuart" :lname "Sierra"})
(add-contact my-contacts {:fname "John" :lname "Doe"})

(print-contacts my-contacts)

Name: VanderHart , Luke
Name: Sierra, Stuart
Name: Doe, John

(defn add-initials
    "adds initials to a single contact and returns it"
    [contact]
    (assoc contact :initials
        (str (first (contact :fname)) (first (contact :lname)))))

(defn add-all-initials
    "adds initials to each of the contacts in a list of contacts"
    [contacts]
    (dosync
        (doseq [contact (ensure contacts)]
          (alter contact add-initials))))
(defn print-contacts-and-initials
    "prints a list of contacts, with initials"
    [contacts]
    (dorun (map (fn [c]
                             (println (str "Name: " (@c :lname) ", " (@c :fname) " (" (@c :initials) ")")))
                         @contacts)))

(defn print-contacts-and-initials
    "prints a list of contacts, with initials"
    [contacts]
    (doseq [c @contacts]
      (println (str "Name: " (@c :lname) ", " (@c :fname) " (" (@c :initials) ")"))))


(add-all-initials my-contacts)
(print-contacts-and-initials my-contacts)

Name: VanderHart , Luke (LV)
Name: Sierra, Stuart (SS)
Name: Doe, John (JD)

To create an atom, use the atom function, which takes a single argument and returns an atom with the argument as its initial state. To retrieve the value of an atom, use the deref function (the same one used for refs) or the @ shorthand.

user=> (def my-atom (atom 5))
#'user/my-atom
user=> @my-atom
5

As with refs, there are two ways to update the value of an atom: swap! and reset!. The swap! function takes an atom, a function, and any number of additional arguments. It updates (swaps) the value of the atom for the value obtained by calling the supplied function with the current value of the atom as the first argument, and the other provided arguments as additional arguments. It returns the new value of the atom. Like the function provided to alter the function passed to swap! may be executed multiple times and should therefore be free of side effects.

The following example uses the atom set up in the previous snippet and passes the addition function, along with an additional argument of 3.

user=> (swap! my-atom + 3)
8
user=> @my-atom
8

The reset! function sets the value of an atom regardless of the current value. It takes two arguments (the atom and a value) and returns the new value of the atom.

user=> (reset! my-atom  1)
1
user=> @my-atom
1

In practice, atoms aren't used as frequently as refs in programs. Since they can't coordinate with other pieces of state, their usefulness is limited to scenarios in which an identity is truly, logically independent from other identities in the system.

For cases where an identity is independent, however, atoms are the right choice. They avoid much of the overhead associated with refs and are very fast, particularly to read. They don't have the parallelism implications of agents (discussed in the next section), and overall are the most lightweight of Clojure's identity types.

One example of a case where atoms are very useful is for caching values. Cached values need to be accessible quickly, but aren't dependent on the rest of the system's state. Clojure's memoize function (which caches the results of calling a function and is described more fully in Chapter 14 uses atoms internally to maintain its cache.

Agents can be created by using the agent function, which takes a single value as the initial value of the agent. Like other Clojure identities, the value ought to be immutable.

user=> (def my-agent (agent 5))
#'user/my-agent

Also, like the other Clojure identities, the current value of an agent can always be obtained immediately without blocking by dereferencing it using the deref (or @ ) function.

user=> @my-agent
5

The value of an agent can be updated by dispatching an action function using the send or send-off function. The call to send returns immediately in the current thread (returning the agent itself). At some undetermined point in the future, in another thread, the action function provided to send will be applied to the agent and its return value will be used as new the value of the agent.

send takes any number of arguments. The first two are the agent and the action function, the rest are additional arguments to be passed to the update function whenever it executes. For example, to send an update to the agent previously defined:

user=> (send my-agent + 3)
#'user/my-agent

Then, at some point in the future, the new value of the agent can be retrieved:

user=> @my-agent
8

There is no hard guarantee about when the update action will be applied, although usually it is nearly immediate from a human perspective. Don't write code that depends on an agent's value being updated at any given time: agents are asynchronous and can't provide guarantees about exactly when their actions will occur.

send-off has an identical signature and behavior as send. The only difference is that the two functions hint at different performance implications to the underlying agent runtime. Use send for actions that are mostly CPU-intensive, and send-off for actions that are expected to spend time blocking on IO. This allows the agent runtime to optimize appropriately. If you use the "wrong" method, everything will still work, but the overall throughput of the agent system will be lower, since it will be optimizing for the wrong type of action.

Because action functions dispatched to agents occur asynchronously in a separate thread, they need a special error-handling mechanism. Normally, exceptions are thrown from the location in the thread in which they occur, but if an action function throws an exception, there's no way of determining that it occurred, except for the built-in agent error handling.

Agents have one of two possible failure modes : fail or : continue. If an exception is thrown while processing an action, and the agent's failure mode is : continue, the agent continues as if the action which caused the error had never happened, after calling an optional error-handler function. If, on the other hand, its failure mode is : fail, the agent is put into a failed state, and will not accept any more actions until it is restarted (although it saves its current action queue).

By default, agents with an error handler defined have a failure mode of : continue. If they don't, then the default is : fail. The failure mode of an agent can also be set explicitly using the set-error-mode! function, which takes two arguments: an agent and a mode keyword. For example, the following code:

user=> (set-error-mode! my-agent :continue)
nil

You can check the current failure mode of an agent using the error-mode function:

user=> (error-mode my-agent)
:continue

Agents can be assigned an error handler using the set-error-handler! function, which takes an agent and an error function as arguments. The error function will be called whenever an action causes an exception to be thrown or sets the agent to an invalid value. It must itself take two arguments: an agent and the exception. For example, the code that follows:

user=> (set-error-handler! my-agent (fn [agt ex] ( ... ))
nil

Typically, the error handler is used to log an error, or implement some correction to ensure that it doesn't happen again. You can also retrieve the current error handler for an agent using the error-handler function, which takes a single agent as an argument and returns its error handler function.

user=> (def an-agent (agent 10))
#'user/an-agent
user=> (send an-agent / 0)
#<Agent@1afa486: 10>
user=> (send an-agent + 1)
java.lang.RuntimeException: Agent is failed, needs restart

user=> (agent-error an-agent)
#<ArithmeticException java.langArithmeticException: Divide by zero>

user=> (restart-agent my-agent 5 :clear-actions true)
5

user=> (send my-agent + 1)
#<Agent@1365360: 5>
user=> @my-agent
6

Although agents are by their nature asynchronous, it is occasionally necessary to force a certain degree of synchronicity. For example, if a long-running action is being performed on an agent, a result might be required in the original thread before computation can continue. For this purpose, Clojure provides the await and await-for functions, both of which block a thread until an agent has finished processing its actions.

await takes any number of agents as its arguments and blocks the current thread indefinitely until all actions to the provided agent(s) which were dispatched from the current thread) are complete. It always returns nil.

await-for is nearly identical, except that it takes a timeout (in milliseconds) as its first argument and any number of agents as additional arguments. If the timeout expires before all the agents are finished, await-for returns nil. If the agents did finish before the timeout, it returns a non-nil value.

Whenever agents are used in a Clojure program, the Clojure runtime creates a thread pool in which to run agent actions behind the scenes. Normally, it isn't necessary to concern yourself about this, except that a Java/Clojure program will not gracefully terminate while there is still an active thread pool. To deactivate the agent thread pool, call the shutdown-agents function with no arguments. All currently running actions will complete, but no more will actions to agents will be accepted, and when all actions are complete the pool will shut down, allowing the program to terminate.

Never call shutdown-agents unless you intend to terminate the running program. shutdown-agents is irreversible without restarting your application, and after calling it agents can no longer be updated: all calls to send or send-off will throw exceptions.

When deciding when to use agents, it is very important to realize that agents are not only a means of managing state, but also managing program execution. Using agents doesn't just imply managed state with identities, but also splitting up computational processes across multiple threads.

As state management tools, agents are effective although they don't have all the features that refs do, such as transactions and ensuring data consistency. They are an uncoordinated identity type. For data that really needs these things, definitely consider using refs. Likewise, agents don't offer much more than atoms for simple uncoordinated state management. If all you need to do is ensure the integrity of individual pieces of state, atoms are probably a better choice than agents.

The important feature of agents is not only that they protect state, but that updates to that state occur concurrently with the thread that initiated the update. If, as in the previous examples, the only action functions being passed to agents are simple and blindingly fast, like +, there isn't much benefit to using an agent. But when the functions are more processing intensive, or when they perform IO (something that isn't even possible within transactions), there can be huge benefit to having it occur out-of-band. Every action function passed to an agent is offloaded from the calling thread, freeing it up for other important tasks.

This concurrency is the most important feature of agents. Their state management is convenient and works very well in concert with the concurrency features, but concurrency is the primary motivation behind choosing agents as opposed to one of Clojure's other identity types.

There are very few cases where it is appropriate to use thread-local state in Clojure. Extensive use of it goes against the spirit of functional programming, and is it only provided as a concession to the very few cases where it is necessary for performance or practicality.

Scenarios where thread-local vars are useful tend to fall into two categories:

Validators are functions that can be attached to any state type (refs, atoms, agents, and vars) and which validate any update before it is committed as the new value of the identity. If a new value is not approved by the validator function, the state of the identity is not changed.

To add a validator to an identity, use the set-validator! function. It takes two arguments: an identity and a function. The function must not have side effects, must take a single argument, and must return a boolean.

Then, whenever the state of the identity is about to be updated, the provided validator function will be passed the new value of the identity. If it returns true, the identity is updated normally. If it returns false or throws an exception, an exception is thrown from the identity update function.

For example, the following code sets a validator on a ref, ensuring that all values must be greater than zero:

user=> (def my-ref (ref 5))
#'user/my-ref
user=> (set-validator! my-ref (fn [x] (< 0 x)))
nil
user=> (dosync (alter my-ref – 10))
#<CompilerException java.lang.IllegalStateException: Invalid Reference State>
user=> (dosync (alter my-ref – 10) (alter my-ref + 15))
10
user=> @my-ref
5

And on an agent:

user=> (def my-agent (agent 5))
#'user/my-agent
user=> (set-validator! my-agent (fn [x] (< 0 x)))
nil
user=> (send my-agent – 10)
#<Agent 5>
user=> (agent-errors my-agent)
(#<CompilerException java.lang.IllegalStateException: Invalid Reference State>)

Note that on agents, the error is trapped and logged using the agent error-handling system, rather than being thrown immediately as it is with refs.

If the value of an identity is already invalid according to the given validator function when setting a validator, an exception is thrown and the validator is not set:

user=> (def my-atom (atom −5))
#'user/my-atom

user=> (set-validator! my-atom (fn [x] (< 0 x)))
 #<CompilerException java.lang.RuntimeException java.lang.IllegalStateException: Invalid Reference State>

The current validator function for an identity may be retrieved using the get-validator function, which takes a single identity as an argument:

user=> (def my-agent (agent 5))
#'user/my-agent
user=> (get-validator my-agent)
 #<user$eval__4868$fn__4870 user$eval__4868$fn_4870@1dc518b>

As can be seen, the string representation of a function isn't very useful. However, since functions are first-class entities in Clojure, you can use the returned function however you wish—use it as a validator on another identity, call it with a value to see what it returns, or anything.

To remove a validator, just pass nil instead of a validator function to set-validator!

Watches are functions which are called whenever a state changes. They work on refs, atoms, agents, and vars (although with vars, they are only called with root binding changes, not when updated with set!).

Unlike validators, they are called immediately after the state has changed (for agents, this is in the same thread). Each identity may have multiple watches: each watch has an arbitrary key that can be used to identify it later. Watches are useful for structuring program flow that logically depends on the value of an identity—they easily provide a form of event-based or reactive programming.

To add a watch, use the add-watch function. It takes three arguments: an identity, a key, and a function. The key may be any value, provided it is unique among an identity's watchers.

The watch function itself takes four arguments: the key, the identity, the old state of the identity, and the new state.

For example, the following code uses watches to print the old and new values of a ref whenever it is updated:

user=> (defn my-watch [key identity old-val new-val]
                  (println (str "Old: " old-val))
                  (println (str "New: " new-val)))
#'user/my-watch
user=> (def my-ref (ref 5))
#'user/my-ref
user=> (add-watch my-ref "watch1" my-watch)
#<Ref 5>
user=> (dosync (alter my-ref inc))
Old: 5

New: 6
6

Note that if an identity is being updated in rapid succession, it may have been updated again by the time the first watch function is called. This is why watch functions are passed the old and new value of the identity: they reflect the state change from the update that actually triggered the watch. Dereferencing the identity within the watch function may yield a different value than the new value passed in if there are a lot of updates occurring.

To remove a watch, use the remove-watch function. It is very simple: it just takes an identity and a key, and removes watchers associated with that key from the identity.

user=> (remove-watch my-ref "watch1")
#<Ref 6>