CallbackQueue removeByID blocks unless callback self-removes (ros#2283)

Making sure currently executing callback finishes before removing thread returns from removeByID allows to avoid race condition in a case when e.g. ros::Timer held in a class and capturing `this` is stopped just before destruction of the class and its data members: https://github.com/aurzenligl/study/blob/master/ros-timer/src/race.cpp
aurzenligl · Sep 28, 2022 · 9dcf927 · 9dcf927
1 parent dd78ac8
commit 9dcf927
Showing 1 changed file with 5 additions and 4 deletions.
diff --git a/clients/roscpp/src/libros/callback_queue.cpp b/clients/roscpp/src/libros/callback_queue.cpp
@@ -166,9 +166,10 @@ void CallbackQueue::removeByID(uint64_t removal_id)
     }
 
     {
-      boost::unique_lock<boost::shared_mutex> rw_lock(id_info->calling_rw_mutex, boost::defer_lock);
-      if (rw_lock.try_lock())
+      // Unless we're removing from callback, we lock the calling mutex to ensure callback is not being executed.
+      if (tls_->calling_in_this_thread != id_info->id)
       {
+        boost::unique_lock<boost::shared_mutex> rw_lock(id_info->calling_rw_mutex);
         boost::mutex::scoped_lock lock(mutex_);
         D_CallbackInfo::iterator it = callbacks_.begin();
         for (; it != callbacks_.end();)
@@ -186,8 +187,8 @@ void CallbackQueue::removeByID(uint64_t removal_id)
       }
       else
       {
-        // We failed to acquire the lock, it can be that we are trying to remove something from the callback queue
-        // while it is being executed. Mark it for removal and let it be cleaned up later.
+        // Since we're removing from callback, locking twice would deadlock.
+        // Instead, mark callback for removal and let it be cleaned up later.
         boost::mutex::scoped_lock lock(mutex_);
         for (D_CallbackInfo::iterator it = callbacks_.begin(); it != callbacks_.end(); it++)
         {