fix(cron): accept opaque session target keys

ferminquant · steipete · commit 97398e0f1b20 · 2026-05-26T00:35:43.000+01:00
diff --git a/src/cron/normalize.test.ts b/src/cron/normalize.test.ts
@@ -682,21 +682,33 @@ describe("normalizeCronJobCreate", () => {
     expect(normalized.sessionTarget).toBe("session:MySessionID");
   });
 
-  it("rejects custom session ids with path separators", () => {
+  it("preserves custom session ids with channel-native separators", () => {
+    const created = normalizeCronJobCreate({
+      name: "dingtalk-group",
+      schedule: { kind: "cron", expr: "* * * * *" },
+      sessionTarget: "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==",
+      payload: { kind: "agentTurn", message: "hello" },
+    }) as unknown as Record<string, unknown>;
+
+    expect(created.sessionTarget).toBe(
+      "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==",
+    );
+
+    const patched = normalizeCronJobPatch({
+      sessionTarget: "session:..\\outside",
+    }) as unknown as Record<string, unknown>;
+    expect(patched.sessionTarget).toBe("session:..\\outside");
+  });
+
+  it("rejects null bytes in custom session ids", () => {
     expect(() =>
       normalizeCronJobCreate({
-        name: "bad-custom-session",
+        name: "null-byte-session",
         schedule: { kind: "cron", expr: "* * * * *" },
-        sessionTarget: "session:../../outside",
+        sessionTarget: "session:bad\0id",
         payload: { kind: "agentTurn", message: "hello" },
       }),
     ).toThrow("invalid cron sessionTarget session id");
-
-    expect(() =>
-      normalizeCronJobPatch({
-        sessionTarget: "session:..\\outside",
-      }),
-    ).toThrow("invalid cron sessionTarget session id");
   });
 });
 
diff --git a/src/cron/service.jobs.test.ts b/src/cron/service.jobs.test.ts
@@ -481,14 +481,28 @@ describe("createJob rejects sessionTarget main for non-default agents", () => {
     expect(job.sessionTarget).toBe("isolated");
   });
 
-  it("rejects custom session targets with path separators", () => {
+  it("accepts custom session targets with channel-native separators", () => {
+    const state = createMockState(now, { defaultAgentId: "main" });
+    const sessionTarget = "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==";
+    const job = createJob(state, {
+      name: "dingtalk-group-session",
+      enabled: true,
+      schedule: { kind: "every", everyMs: 60_000 },
+      sessionTarget,
+      wakeMode: "now",
+      payload: { kind: "agentTurn", message: "hello" },
+    });
+    expect(job.sessionTarget).toBe(sessionTarget);
+  });
+
+  it("rejects null bytes in custom session targets", () => {
     const state = createMockState(now, { defaultAgentId: "main" });
     expect(() =>
       createJob(state, {
         name: "bad-custom-session",
         enabled: true,
         schedule: { kind: "every", everyMs: 60_000 },
-        sessionTarget: "session:../../outside",
+        sessionTarget: "session:bad\0id",
         wakeMode: "now",
         payload: { kind: "agentTurn", message: "hello" },
       }),
@@ -548,13 +562,27 @@ describe("applyJobPatch rejects sessionTarget main for non-default agents", () =
     expect(job.agentId).toBe("main");
   });
 
-  it("rejects patching to a custom session target with path separators", () => {
+  it("accepts patching to a custom session target with channel-native separators", () => {
+    const job = createMainJob();
+    const sessionTarget = "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==";
+    applyJobPatch(
+      job,
+      {
+        sessionTarget,
+        payload: { kind: "agentTurn", message: "hello" },
+      },
+      { defaultAgentId: "main" },
+    );
+    expect(job.sessionTarget).toBe(sessionTarget);
+  });
+
+  it("rejects patching to a custom session target with null bytes", () => {
     const job = createMainJob();
     expect(() =>
       applyJobPatch(
         job,
         {
-          sessionTarget: "session:..\\outside",
+          sessionTarget: "session:bad\0id",
           payload: { kind: "agentTurn", message: "hello" },
         },
         { defaultAgentId: "main" },
diff --git a/src/cron/service/store.test.ts b/src/cron/service/store.test.ts
@@ -360,17 +360,18 @@ describe("cron service store seam coverage", () => {
     expect(after).toBe(before);
   });
 
-  it("loads persisted jobs with unsafe custom session ids so run paths can fail closed", async () => {
+  it("loads persisted jobs with opaque custom session ids containing separators", async () => {
     const { storePath } = await makeStorePath();
+    const sessionTarget = "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==";
 
     await writeSingleJobStore(storePath, {
-      id: "unsafe-session-target-job",
-      name: "unsafe session target job",
+      id: "opaque-session-target-job",
+      name: "opaque session target job",
       enabled: true,
       createdAtMs: STORE_TEST_NOW - 60_000,
       updatedAtMs: STORE_TEST_NOW - 60_000,
       schedule: { kind: "every", everyMs: 60_000 },
-      sessionTarget: "session:../../outside",
+      sessionTarget,
       wakeMode: "now",
       payload: { kind: "agentTurn", message: "ping" },
       state: {},
@@ -380,13 +381,18 @@ describe("cron service store seam coverage", () => {
 
     await ensureLoaded(state, { skipRecompute: true });
 
-    const job = findJobOrThrow(state, "unsafe-session-target-job");
-    expect(job.sessionTarget).toBe("session:../../outside");
-    expectWarnedJob({
-      storePath,
-      jobId: "unsafe-session-target-job",
-      message: "invalid persisted sessionTarget",
-    });
+    const job = findJobOrThrow(state, "opaque-session-target-job");
+    expect(job.sessionTarget).toBe(sessionTarget);
+    const warnCalls = logger.warn.mock.calls as unknown as Array<
+      [{ storePath?: string; jobId?: string }, string]
+    >;
+    expect(
+      warnCalls.some(
+        ([metadata, message]) =>
+          metadata.jobId === "opaque-session-target-job" &&
+          message.includes("invalid persisted sessionTarget"),
+      ),
+    ).toBe(false);
   });
 
   it("clears stale nextRunAtMs after force reload when cron schedule expression changes", async () => {
diff --git a/src/cron/session-target.test.ts b/src/cron/session-target.test.ts
@@ -14,8 +14,17 @@ describe("cron session target helpers", () => {
     );
   });
 
-  it("rejects unsafe persistent session targets", () => {
-    expect(() => resolveCronSessionTargetSessionKey("session:../../outside")).toThrow(
+  it("preserves opaque persistent session targets with native separators", () => {
+    expect(
+      resolveCronSessionTargetSessionKey(
+        "session: agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a== ",
+      ),
+    ).toBe("agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==");
+    expect(resolveCronSessionTargetSessionKey("session:..\\outside")).toBe("..\\outside");
+  });
+
+  it("rejects null bytes in persistent session targets", () => {
+    expect(() => resolveCronSessionTargetSessionKey("session:bad\0id")).toThrow(
       "invalid cron sessionTarget session id",
     );
   });
@@ -24,9 +33,9 @@ describe("cron session target helpers", () => {
     expect(
       resolveCronCurrentSessionTarget({
         sessionTarget: "current",
-        sessionKey: " agent:main:telegram:direct:123 ",
+        sessionKey: " agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a== ",
       }),
-    ).toBe("session:agent:main:telegram:direct:123");
+    ).toBe("session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==");
   });
 
   it("falls back current targets to isolated without a creator session key", () => {
diff --git a/src/cron/session-target.ts b/src/cron/session-target.ts
@@ -9,7 +9,7 @@ export function assertSafeCronSessionTargetId(sessionId: string): string {
   if (!trimmed) {
     throw new Error(INVALID_CRON_SESSION_TARGET_ID_ERROR);
   }
-  if (trimmed.includes("/") || trimmed.includes("\\") || trimmed.includes("\0")) {
+  if (trimmed.includes("\0")) {
     throw new Error(INVALID_CRON_SESSION_TARGET_ID_ERROR);
   }
   return trimmed;
diff --git a/src/gateway/server-cron.test.ts b/src/gateway/server-cron.test.ts
@@ -1024,7 +1024,7 @@ describe("buildGatewayCronService", () => {
     }
   });
 
-  it("passes custom session targets through to isolated cron runs", async () => {
+  it("passes opaque custom session targets through to isolated cron runs", async () => {
     const tmpDir = path.join(os.tmpdir(), `server-cron-custom-session-${Date.now()}`);
     const cfg = {
       session: {
@@ -1042,20 +1042,21 @@ describe("buildGatewayCronService", () => {
       broadcast: () => {},
     });
     try {
+      const sessionKey = "agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==";
       const job = await state.cron.add({
         name: "custom-session",
         enabled: true,
         schedule: { kind: "at", at: new Date(1).toISOString() },
-        sessionTarget: "session:project-alpha-monitor",
+        sessionTarget: `session:${sessionKey}`,
         wakeMode: "next-heartbeat",
         payload: { kind: "agentTurn", message: "hello" },
       });
 
       await state.cron.run(job.id, "force");
 
-      const options = expectIsolatedRunFields({ sessionKey: "project-alpha-monitor" });
+      const options = expectIsolatedRunFields({ sessionKey });
       expect(requireRecord(options.job, "isolated job").id).toBe(job.id);
-      expectCleanupForSessionKeys(["project-alpha-monitor"]);
+      expectCleanupForSessionKeys([sessionKey]);
     } finally {
       state.cron.stop();
     }
diff --git a/src/gateway/server.cron.test.ts b/src/gateway/server.cron.test.ts
@@ -784,28 +784,30 @@ describe("gateway server cron", () => {
     }
   });
 
-  test("rejects unsafe custom session ids on add and update", async () => {
+  test("accepts opaque custom session ids on add and update", async () => {
     const { prevSkipCron } = await setupCronTestRun({
-      tempPrefix: "openclaw-gw-cron-bad-session-target-",
+      tempPrefix: "openclaw-gw-cron-opaque-session-target-",
       cronEnabled: false,
     });
 
     const cronState = await createDirectCronState();
 
     try {
       const addRes = await directCronReq(cronState, "cron.add", {
-        name: "bad custom session",
+        name: "dingtalk group session",
         enabled: true,
         schedule: { kind: "every", everyMs: 60_000 },
-        sessionTarget: "session:../../outside",
+        sessionTarget: "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==",
         wakeMode: "now",
         payload: { kind: "agentTurn", message: "hello" },
       });
-      expect(addRes.ok).toBe(false);
-      expect(addRes.error?.message).toContain("invalid cron sessionTarget session id");
+      expect(addRes.ok).toBe(true);
+      expectRecordFields(addRes.payload, {
+        sessionTarget: "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==",
+      });
 
       const validRes = await directCronReq(cronState, "cron.add", {
-        name: "good custom session",
+        name: "custom session to patch",
         enabled: true,
         schedule: { kind: "every", everyMs: 60_000 },
         sessionTarget: "session:project-alpha:ops",
@@ -822,8 +824,8 @@ describe("gateway server cron", () => {
           sessionTarget: "session:..\\outside",
         },
       });
-      expect(updateRes.ok).toBe(false);
-      expect(updateRes.error?.message).toContain("invalid cron sessionTarget session id");
+      expect(updateRes.ok).toBe(true);
+      expectRecordFields(updateRes.payload, { sessionTarget: "session:..\\outside" });
     } finally {
       await cleanupCronTestRun({ cronState, prevSkipCron });
     }
@@ -1136,20 +1138,21 @@ describe("gateway server cron", () => {
     }
   }, 45_000);
 
-  test("fails closed for persisted unsafe custom session ids", async () => {
+  test("runs persisted opaque custom session ids with native separators", async () => {
     const now = Date.now();
+    const sessionTarget = "session:agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==";
     const { prevSkipCron } = await setupCronTestRun({
-      tempPrefix: "openclaw-gw-cron-persisted-bad-session-target-",
+      tempPrefix: "openclaw-gw-cron-persisted-opaque-session-target-",
       cronEnabled: false,
       jobs: [
         {
-          id: "bad-custom-session-job",
-          name: "bad custom session job",
+          id: "opaque-custom-session-job",
+          name: "opaque custom session job",
           enabled: true,
           createdAtMs: now,
           updatedAtMs: now,
           schedule: { kind: "every", everyMs: 60_000 },
-          sessionTarget: "session:../../outside",
+          sessionTarget,
           wakeMode: "now",
           payload: { kind: "agentTurn", message: "hello" },
           state: {},
@@ -1162,13 +1165,21 @@ describe("gateway server cron", () => {
     await connectOk(ws);
 
     try {
+      const finished = waitForCronEvent(
+        ws,
+        (payload) =>
+          payload?.jobId === "opaque-custom-session-job" && payload?.action === "finished",
+      );
       const runRes = await rpcReq(ws, "cron.run", {
-        id: "bad-custom-session-job",
+        id: "opaque-custom-session-job",
         mode: "force",
       });
       expect(runRes.ok).toBe(true);
-      expect(runRes.payload).toEqual({ ok: true, ran: false, reason: "invalid-spec" });
-      expect(cronIsolatedRun).not.toHaveBeenCalled();
+      expectEnqueuedRunPayload(runRes.payload);
+      await finished;
+      expect(cronIsolatedRun).toHaveBeenCalledTimes(1);
+      const call = cronIsolatedRun.mock.calls.at(0)?.[0] as { sessionKey?: unknown } | undefined;
+      expect(call?.sessionKey).toBe("agent:main:dingtalk:group:cid3tmd4xb19xjfk/wogxwy2a==");
     } finally {
       await cleanupCronTestRun({ ws, server, prevSkipCron });
     }

Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@ export function assertSafeCronSessionTargetId(sessionId: string): string {`
`9`	`9`	`if (!trimmed) {`
`10`	`10`	`throw new Error(INVALID_CRON_SESSION_TARGET_ID_ERROR);`
`11`	`11`	`}`
`12`		`- if (trimmed.includes("/") \|\| trimmed.includes("\\") \|\| trimmed.includes("\0")) {`
	`12`	`+ if (trimmed.includes("\0")) {`
`13`	`13`	`throw new Error(INVALID_CRON_SESSION_TARGET_ID_ERROR);`
`14`	`14`	`}`
`15`	`15`	`return trimmed;`