No need to review this now. I'm still looking at a few things. I will update the PR description and add a comment here when I'm done.

Changes:

• ListenerCoroutineProc is now exited by closing the socket. The wait group is still needed to track ongoing NewClientHandler() instances to be sure we hit all live connections in the following disconnects.
• JsonRpcConnection::Disconnect() is still called immediately, but the lock on the wait group is now across the read and write coroutines outside the loop.
• I've reduced the messages about disconnecting API clients to LogInformation. If we want LogWarning for the case this happens outside a normal shutdown, I can make them ask ApiListener first if this is a shutdown.
• HttpHandlers now get passed an atomic boolean to signal the abort condition instead of the wait group. I've also reduced the situations where this abort is done as per the reviewer's suggestions. This is triggered in a seperate AbortProcessingResponse() method.
• HttpServerConnection is now part of the same wait group as everything else except the one around NewClientHandler
• I've moved the grace period timer inside DisconnectHttpConnections() and renamed them.
• This PR now no longer adds a Cancel() method and the lock_shared() interface to WaitGroup since it is no longer needed (at the moment).

Caveats:

• There is still a small potential for a situation where a connection is accepted in ListenerCoroutineProc and immediately closed, but I don't think it will happen often and should be harmless.
• There is still a m_ListenerWaitGroup, and I'm afraid it's needed to wait on potentially multiple outstanding NewClientHandlers to complete. I could move this waitgroup to be local to AddListener() and be captured by the coroutines, but that would be more effort than I think is justified.
• JsonRpcConnections may need some more attention if we want it to do what I tried to do initially, i.e. ensure that all messages other nodes have sent us will get fully processed. After thinking about this, this will at the very least involve some additional communication.

Incorporated some offline suggestions and fixed a crash due to a pointer initialization I managed to "clean up" during one of the recent rebases.

Again I've simplified and reduced the scope of the PR, according to the suggestion of @Al2Klimov. I've also think I've addressed the remaining comments that still apply.

I've pushed and update that should address the remaining comments, with the exception of the wait group lock in JsonRpcConnection::WriteOutgoingMessages, which I'm still not sure about.

Another change is that I'm now using a boost::signal+post instead of the post+coroutine I used to stop the listener before. I've also moved the lock inside the loop because I had after all encountered rare situations where, like @julianbrost warned, the operation_aborted error was not thrown and the socket was closed after async_accept succeeded, trapping ListenerCoroutineProc in an endless loop of bad_file_descriptor exceptions. Asio coroutines are a lot of fun.

the operation_aborted error was not thrown and the socket was closed after async_accept succeeded, trapping ListenerCoroutineProc in an endless loop of bad_file_descriptor exceptions

Did this just happen randomly? Were you able to make this happen more reliably by creating some specific scenario?

I've also moved the lock inside the loop

Does that prevent the bad_file_descriptor situation itself or just the endless loop as that locking operation acts pretty much like a loop condition (like for example while (acceptor->is_open()) or while (m_ListenerWaitGroup->IsLockable()))?

Sorry, I forgot to address the following in a previous comment/review:

with the exception of the wait group lock in JsonRpcConnection::WriteOutgoingMessages, which I'm still not sure about.

For me, it's pretty similar to the one in the read loop and don't add unless:

1. You can reason that the socket operations that are done while it's held are unblocked quickly on shutdown; or
2. You say it's needed for correctness, but in that case we need to ensure that that socket operations are unblocked at shutdown.

Did this just happen randomly? Were you able to make this happen more reliably by creating some specific scenario?

I think it's the same situation I've observed in #5581, with the coroutine yielding again when the async operation is actually already done. Here, this would mean closing the socket comes too late to make async_accept() throw, but obviously still closes the socket. I thought about alternatively checking if the wait group is not lockable anymore when catching the bad_file_descriptor exception, but I liked this option better and it should avoid the exception entirely, at least I moved the lock.

that locking operation acts pretty much like a loop condition

Well, it acts as locking and a loop condition. I can also keep it outside the loop and just do while (IsLockable()) if you prefer it that way. Wouldn't even need to check the shared_lock if we use it as a loop condition.

2. You say it's needed for correctness, but in that case we need to ensure that that socket operations are unblocked at shutdown.

We can ensure they are unblocked, but not guarantee it's within a reasonable time, even when the 5s timeout in Disconnect() fires, the async_write() will not yield on very slow but steady connections, same as in HttpServerConnection. I'll just remove it.

the same situation I've observed in #5581

Is that really the correct PR you wanted to reference?

I was asking primarily because I didn't understand how changing the scope of the locking should solve bad file descriptor errors and if these appear randomly, that's always a hint that something could be wrong with the code.¹

In the current state of the PR, I think there could still be a small race condition in that respect:

The accepting socket is already closed by line 521, but the wait group you check before starting a new async_accept() is only signaled to stop in line 523, so couldn't that still start one (or even a few) more accept(s) until the signal from the wait group propagates to the listener?

So I think while (server->is_open()) might even be the more correct option as that's already synchronized with the corresponding close() call by the use of the common strand for both.

Is that really the correct PR you wanted to reference?

Sorry, no. I screwed up the auto complete. I meant #10139.

and if these appear randomly, that's always a hint that something could be wrong with the code.

I mean, it didn't appear randomly, it appeared sporadically when due to timing closing the socket didn't cancel an ongoing async_accept().

Anyway, I've just pushed yet another update.

Note: I just noticed that ModifyObjectsHandler currently always sends http::status::ok as a result, despite other error conditions existing. I'm not going to change that here, but maybe doing the same as DeleteObjectsHandler would be a good thing.

I mean, it didn't appear randomly, it appeared sporadically

Randomly in the sense that I don't understand the pattern and it looks random to me. ;)

Just remove "randomly" from my sentence. seeing a bad file descriptor error anywhere is rarely a good sign.

Fixed the trailing whitespace, added the type and name fields, and moved the new Dictionary directly into emplace_back

yhabteab herewith dismisses all his requested changes :)! Just joking - I didn't request anything explicitly here on purpose, but submitted only few comments, so my review shouldn't block this in anyway. Since Alex already requested a review from himself, it should be fine when both of you approve it!

My over loaded docker setup found nothing suspicious, so this should be fine. Thanks to all of you 🎉!