[core] Fix issue #11538 (race condition crash for heavily modified annotations)

[ChrisLoer]

This PR contains two fixes for issue #11538.

The first fix closes a logic error that would prevent the GeometryTile "data" member from updating if the data went from non-null to null. This could allow the tile to have an empty FeatureIndex with non-empty data (since it would keep the previous non-null data). This could lead to an out of bounds exception being thrown here:

mapbox-gl-native/src/mbgl/geometry/feature_index.cpp

Line 109 in 553efa3

for (const std::string& layerID : bucketLayerIDs.at(indexedFeature.bucketName)) {

The crash that would be generated doesn't match the stack trace reported in #11538, but it would be likely to happen in the same sort of stress case (quickly adding and removing annotations).

The second fix closes a race condition in which the FeatureIndex/GeometryTileData received in GeometryTile::onLayout could be committed before the corresponding updated symbolBuckets arrived in GeometryTile::onPlacement. Because the contents of the global CollisionIndex are based on the symbolBuckets, this would allow the CollisionIndex to end up "behind" the corresponding FeatureIndex/GeometryTileData, and if an item in the CollisionIndex had been removed from the new data, it would be possible to get an out-of-bounds exception at:

mapbox-gl-native/src/mbgl/geometry/feature_index.cpp

Line 119 in 553efa3

geometryTileFeature = sourceLayer->getFeature(indexedFeature.index);

... which matches the stack trace in #11538.

A more satisfying fix for these issues would be to do the "one-phase" refactoring suggested in #10457 -- the split between "layout" and "placement" that allowed the race condition is mostly vestigial after that global collision detection changes.

@julianrex Since you were able to reproduce the original crash much more reliably than me, can you try to reproduce the crash off of this branch?

/cc @friedbunny @tobrun @jfirebaugh @lilykaiser