fix(oauth): bound Codex token requests

vincentkoc · vincentkoc · commit 67277088ebeb · 2026-05-27T23:20:15.000+02:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -27,6 +27,7 @@ Docs: https://docs.openclaw.ai
 - Agents/providers: add OpenAI-compatible cache retention, forward cached token usage in chat completions, preserve runtime context before active user turns, strip stale Anthropic thinking, load Claude CLI OAuth for Pi auth profiles, avoid false Codex runtime live switches, and quarantine unsupported tool schemas. (#82062, #87167, #86855)
 - Gateway/performance: cache plugin metadata fingerprints and stable plugin index fingerprints, borrow read-only session metadata safely, keep the active session working store hot, keep status on a bounded fast path, and preserve model auth profile suffixes. (#86439)
 - Package/install/release: align npm package exclusions and inventory, omit unpacked test helpers, skip Homebrew until macOS packages need it, cap tsdown heap in containers, bound install/release smoke waits, and harden post-publish verification.
+- Codex: bound ChatGPT OAuth token exchange and refresh requests so stalled auth endpoints fail instead of hanging login or refresh.
 - QA/E2E/CI: bound Telegram, kitchen-sink, Open WebUI, ClawHub, MCP, Discord, realtime, labeler, and GitHub API waits; fail empty explicit test, live-media, gateway CPU, plugin gauntlet, and beta-smoke runs instead of false-greening.
 
 ## 2026.5.26
diff --git a/extensions/openai/openai-codex-oauth-flow.runtime.test.ts b/extensions/openai/openai-codex-oauth-flow.runtime.test.ts
@@ -1,6 +1,23 @@
-import { describe, expect, it } from "vitest";
+import { afterEach, describe, expect, it, vi } from "vitest";
+
+const ssrfMocks = vi.hoisted(() => ({
+  fetchWithSsrFGuard: vi.fn(),
+}));
+
+vi.mock("openclaw/plugin-sdk/ssrf-runtime", () => ({
+  fetchWithSsrFGuard: ssrfMocks.fetchWithSsrFGuard,
+}));
+
 import { testing } from "./openai-codex-oauth-flow.runtime.js";
 
+function timeoutError(): Error {
+  return new DOMException("timed out", "TimeoutError");
+}
+
+afterEach(() => {
+  ssrfMocks.fetchWithSsrFGuard.mockReset();
+});
+
 describe("OpenAI Codex OAuth flow", () => {
   it("waits for Node OAuth runtime before creating an authorization flow", async () => {
     const flow = await testing.createAuthorizationFlow("openclaw-test");
@@ -16,14 +33,51 @@ describe("OpenAI Codex OAuth flow", () => {
   });
 
   it("builds callback redirect URIs from the configured loopback host", () => {
-    expect(testing.resolveRedirectUri("127.0.0.1")).toBe(
-      "http://127.0.0.1:1455/auth/callback",
-    );
+    expect(testing.resolveRedirectUri("127.0.0.1")).toBe("http://127.0.0.1:1455/auth/callback");
   });
 
   it("rejects non-loopback callback bind hosts", () => {
-    expect(() =>
-      testing.resolveCallbackHost({ OPENCLAW_OAUTH_CALLBACK_HOST: "0.0.0.0" }),
-    ).toThrow("callback host must be localhost, 127.0.0.1, or ::1");
+    expect(() => testing.resolveCallbackHost({ OPENCLAW_OAUTH_CALLBACK_HOST: "0.0.0.0" })).toThrow(
+      "callback host must be localhost, 127.0.0.1, or ::1",
+    );
+  });
+
+  it("times out token exchange requests", async () => {
+    ssrfMocks.fetchWithSsrFGuard.mockRejectedValueOnce(timeoutError());
+
+    const result = await testing.exchangeAuthorizationCode(
+      "code",
+      "verifier",
+      testing.resolveRedirectUri("localhost"),
+      { timeoutMs: 5 },
+    );
+
+    expect(ssrfMocks.fetchWithSsrFGuard).toHaveBeenCalledWith(
+      expect.objectContaining({
+        auditContext: "openai-codex-oauth-token",
+        timeoutMs: 5,
+      }),
+    );
+    expect(result).toMatchObject({
+      type: "failed",
+      message: "OpenAI Codex token exchange timed out after 5ms",
+    });
+  });
+
+  it("times out token refresh requests", async () => {
+    ssrfMocks.fetchWithSsrFGuard.mockRejectedValueOnce(timeoutError());
+
+    const result = await testing.refreshAccessToken("old-refresh-token", { timeoutMs: 5 });
+
+    expect(ssrfMocks.fetchWithSsrFGuard).toHaveBeenCalledWith(
+      expect.objectContaining({
+        auditContext: "openai-codex-oauth-token",
+        timeoutMs: 5,
+      }),
+    );
+    expect(result).toMatchObject({
+      type: "failed",
+      message: "OpenAI Codex token refresh timed out after 5ms",
+    });
   });
 });
diff --git a/extensions/openai/openai-codex-oauth-flow.runtime.ts b/extensions/openai/openai-codex-oauth-flow.runtime.ts
@@ -26,6 +26,7 @@ const LOOPBACK_CALLBACK_HOSTS = new Set(["localhost", "127.0.0.1", "::1"]);
 const CALLBACK_HOST = resolveCallbackHost();
 const REDIRECT_URI = resolveRedirectUri(CALLBACK_HOST);
 const MANUAL_PROMPT_FALLBACK_MS = 15_000;
+const TOKEN_REQUEST_TIMEOUT_MS = 30_000;
 const SCOPE = "openid profile email offline_access";
 
 type TokenSuccess = { type: "success"; access: string; refresh: string; expires: number };
@@ -40,6 +41,9 @@ type NodeOAuthRuntime = {
   randomBytes: typeof import("node:crypto").randomBytes;
   http: typeof import("node:http");
 };
+type TokenRequestOptions = {
+  timeoutMs?: number;
+};
 
 let nodeOAuthRuntimePromise: Promise<NodeOAuthRuntime> | null = null;
 
@@ -144,14 +148,30 @@ function formatMissingTokenResponseFields(json: TokenResponseJson): string {
   return missing.join(", ");
 }
 
-async function postTokenForm(body: URLSearchParams): Promise<Response> {
+function formatTokenRequestError(
+  operation: "exchange" | "refresh",
+  error: unknown,
+  timeoutMs: number,
+): string {
+  if (error instanceof Error && (error.name === "AbortError" || error.name === "TimeoutError")) {
+    return `OpenAI Codex token ${operation} timed out after ${timeoutMs}ms`;
+  }
+  return `OpenAI Codex token ${operation} error: ${error instanceof Error ? error.message : String(error)}`;
+}
+
+async function postTokenForm(
+  body: URLSearchParams,
+  options: TokenRequestOptions = {},
+): Promise<Response> {
+  const timeoutMs = options.timeoutMs ?? TOKEN_REQUEST_TIMEOUT_MS;
   const { response, release } = await fetchWithSsrFGuard({
     url: TOKEN_URL,
     init: {
       method: "POST",
       headers: { "Content-Type": "application/x-www-form-urlencoded" },
       body,
     },
+    timeoutMs,
     auditContext: "openai-codex-oauth-token",
   });
   try {
@@ -170,16 +190,27 @@ async function exchangeAuthorizationCode(
   code: string,
   verifier: string,
   redirectUri: string = REDIRECT_URI,
+  options: TokenRequestOptions = {},
 ): Promise<TokenResult> {
-  const response = await postTokenForm(
-    new URLSearchParams({
-      grant_type: "authorization_code",
-      client_id: CLIENT_ID,
-      code,
-      code_verifier: verifier,
-      redirect_uri: redirectUri,
-    }),
-  );
+  const timeoutMs = options.timeoutMs ?? TOKEN_REQUEST_TIMEOUT_MS;
+  let response: Response;
+  try {
+    response = await postTokenForm(
+      new URLSearchParams({
+        grant_type: "authorization_code",
+        client_id: CLIENT_ID,
+        code,
+        code_verifier: verifier,
+        redirect_uri: redirectUri,
+      }),
+      { timeoutMs },
+    );
+  } catch (error) {
+    return {
+      type: "failed",
+      message: formatTokenRequestError("exchange", error, timeoutMs),
+    };
+  }
 
   if (!response.ok) {
     const text = await response.text().catch(() => "");
@@ -207,14 +238,19 @@ async function exchangeAuthorizationCode(
   };
 }
 
-async function refreshAccessToken(refreshToken: string): Promise<TokenResult> {
+async function refreshAccessToken(
+  refreshToken: string,
+  options: TokenRequestOptions = {},
+): Promise<TokenResult> {
   try {
+    const timeoutMs = options.timeoutMs ?? TOKEN_REQUEST_TIMEOUT_MS;
     const response = await postTokenForm(
       new URLSearchParams({
         grant_type: "refresh_token",
         refresh_token: refreshToken,
         client_id: CLIENT_ID,
       }),
+      { timeoutMs },
     );
 
     if (!response.ok) {
@@ -244,7 +280,11 @@ async function refreshAccessToken(refreshToken: string): Promise<TokenResult> {
   } catch (error) {
     return {
       type: "failed",
-      message: `OpenAI Codex token refresh error: ${error instanceof Error ? error.message : String(error)}`,
+      message: formatTokenRequestError(
+        "refresh",
+        error,
+        options.timeoutMs ?? TOKEN_REQUEST_TIMEOUT_MS,
+      ),
     };
   }
 }
diff --git a/src/llm/utils/oauth/openai-codex.test.ts b/src/llm/utils/oauth/openai-codex.test.ts
@@ -14,7 +14,46 @@ function stubTokenResponse(body: Record<string, unknown>): void {
   );
 }
 
+function stubHangingTokenRequest(timeoutMs: number): void {
+  vi.spyOn(AbortSignal, "timeout").mockImplementation((actualTimeoutMs) => {
+    expect(actualTimeoutMs).toBe(timeoutMs);
+    const controller = new AbortController();
+    queueMicrotask(() => {
+      controller.abort(new DOMException("timed out", "TimeoutError"));
+    });
+    return controller.signal;
+  });
+
+  vi.stubGlobal(
+    "fetch",
+    vi.fn(
+      (_input: Parameters<typeof fetch>[0], init?: Parameters<typeof fetch>[1]) =>
+        new Promise<Response>((_resolve, reject) => {
+          const signal = init?.signal;
+          if (!signal) {
+            reject(new Error("missing abort signal"));
+            return;
+          }
+
+          const abort = () => {
+            reject(
+              signal.reason instanceof Error
+                ? signal.reason
+                : new DOMException("aborted", "AbortError"),
+            );
+          };
+          if (signal.aborted) {
+            abort();
+            return;
+          }
+          signal.addEventListener("abort", abort, { once: true });
+        }),
+    ),
+  );
+}
+
 afterEach(() => {
+  vi.restoreAllMocks();
   vi.unstubAllGlobals();
 });
 
@@ -33,15 +72,13 @@ describe("OpenAI Codex OAuth token responses", () => {
   });
 
   it("builds callback redirect URIs from the configured loopback host", () => {
-    expect(testing.resolveRedirectUri("127.0.0.1")).toBe(
-      "http://127.0.0.1:1455/auth/callback",
-    );
+    expect(testing.resolveRedirectUri("127.0.0.1")).toBe("http://127.0.0.1:1455/auth/callback");
   });
 
   it("rejects non-loopback callback bind hosts", () => {
-    expect(() =>
-      testing.resolveCallbackHost({ OPENCLAW_OAUTH_CALLBACK_HOST: "0.0.0.0" }),
-    ).toThrow("callback host must be localhost, 127.0.0.1, or ::1");
+    expect(() => testing.resolveCallbackHost({ OPENCLAW_OAUTH_CALLBACK_HOST: "0.0.0.0" })).toThrow(
+      "callback host must be localhost, 127.0.0.1, or ::1",
+    );
   });
 
   it("does not echo token payload values when the exchange response is malformed", async () => {
@@ -62,6 +99,22 @@ describe("OpenAI Codex OAuth token responses", () => {
     }
   });
 
+  it("times out token exchange requests", async () => {
+    stubHangingTokenRequest(5);
+
+    const result = await testing.exchangeAuthorizationCode(
+      "code",
+      "verifier",
+      testing.resolveRedirectUri("localhost"),
+      { timeoutMs: 5 },
+    );
+
+    expect(result).toMatchObject({
+      type: "failed",
+      message: "OpenAI Codex token exchange timed out after 5ms",
+    });
+  });
+
   it("does not echo token payload values when the refresh response is malformed", async () => {
     stubTokenResponse({
       access_token: "new-secret-access-token",
@@ -82,6 +135,17 @@ describe("OpenAI Codex OAuth token responses", () => {
     }
   });
 
+  it("times out token refresh requests", async () => {
+    stubHangingTokenRequest(5);
+
+    const result = await testing.refreshAccessToken("old-refresh-token", { timeoutMs: 5 });
+
+    expect(result).toMatchObject({
+      type: "failed",
+      message: "OpenAI Codex token refresh timed out after 5ms",
+    });
+  });
+
   it("extracts the account id from URL-safe base64 JWT payloads", async () => {
     const accessToken = createJwt({
       "https://api.openai.com/auth": {
diff --git a/src/llm/utils/oauth/openai-codex.ts b/src/llm/utils/oauth/openai-codex.ts
