openclaw
diff --git a/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎docs/cli/acp.md‎
Lines changed: 4 additions & 4 deletions b/‎docs/cli/acp.md‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎src/acp/event-ledger.test.ts‎
Lines changed: 369 additions & 0 deletions b/‎src/acp/event-ledger.test.ts‎
Lines changed: 369 additions & 0 deletions
@@ -42,6 +42,7 @@ Docs: https://docs.openclaw.ai
 - ACPX/Codex: preserve trusted Codex project declarations when launching isolated Codex ACP sessions, avoiding interactive trust prompts in headless runs. Thanks @Stedyclaw.
 - ACPX/Codex: reap stale OpenClaw-owned ACPX/Codex ACP process trees on startup and after ACP session close, preventing orphaned harness processes from slowing the Gateway. Thanks @91wan.
 - ACP bridge: implement stable session list, resume, and close handlers so ACP clients can page Gateway sessions, rebind existing sessions without replay, and close bridge sessions cleanly. Thanks @amknight.
+- ACP bridge: replay complete ledger-backed ACP sessions on load, including user prompts, tool updates, session metadata, and usage snapshots, while keeping older sessions on the existing transcript fallback. Thanks @amknight.
 - ACP sessions: allow parent agents to inspect and message their own spawned cross-agent ACP sessions without enabling broad agent-to-agent visibility. Thanks @barronlroth.
 - Talk/voice: unify realtime relay, transcription relay, managed-room handoff, Voice Call, Google Meet, VoiceClaw, and native clients around a shared Talk session controller and add the Gateway-managed `talk.session.*` RPC surface.
 - Diagnostics/Talk: export bounded Talk lifecycle/audio metrics and session recovery metrics through OpenTelemetry and Prometheus without exposing transcripts, audio payloads, room ids, turn ids, or session ids.
 
@@ -44,7 +44,7 @@ Quick rule:
 | `initialize`, `newSession`, `prompt`, `cancel`                        | Implemented | Core bridge flow over stdio to Gateway chat/send + abort.                                                                                                                                                                                        |
 | `listSessions`, slash commands                                        | Implemented | Session list works against Gateway session state with bounded cursor pagination and `cwd` filtering where Gateway session rows carry workspace metadata; commands are advertised via `available_commands_update`.                                |
 | `resumeSession`, `closeSession`                                       | Implemented | Resume rebinds an ACP session to an existing Gateway session without replaying history. Close cancels active bridge work, resolves pending prompts as cancelled, and releases bridge session state.                                              |
-| `loadSession`                                                         | Partial     | Rebinds the ACP session to a Gateway session key and replays stored user/assistant text history. Tool/system history is not reconstructed yet.                                                                                                   |
+| `loadSession`                                                         | Partial     | Rebinds the ACP session to a Gateway session key and replays ACP event-ledger history for bridge-created sessions. Older/no-ledger sessions fall back to stored user/assistant text.                                                             |
 | Prompt content (`text`, embedded `resource`, images)                  | Partial     | Text/resources are flattened into chat input; images become Gateway attachments.                                                                                                                                                                 |
 | Session modes                                                         | Partial     | `session/set_mode` is supported and the bridge exposes initial Gateway-backed session controls for thought level, tool verbosity, reasoning, usage detail, and elevated actions. Broader ACP-native mode/config surfaces are still out of scope. |
 | Session info and usage updates                                        | Partial     | The bridge emits `session_info_update` and best-effort `usage_update` notifications from cached Gateway session snapshots. Usage is approximate and only sent when Gateway token totals are marked fresh.                                        |
@@ -56,9 +56,9 @@ Quick rule:
 
 ## Known Limitations
 
-- `loadSession` replays stored user and assistant text history, but it does not
-  reconstruct historic tool calls, system notices, or richer ACP-native event
-  types.
+- `loadSession` can replay complete ACP event-ledger history only for
+  bridge-created sessions. Older/no-ledger sessions still use transcript
+  fallback and do not reconstruct historic tool calls or system notices.
 - If multiple ACP clients share the same Gateway session key, event and cancel
   routing are best-effort rather than strictly isolated per client. Prefer the
   default isolated `acp:<uuid>` sessions when you need clean editor-local
 
@@ -0,0 +1,369 @@
+import fs from "node:fs/promises";
+import path from "node:path";
+import { describe, expect, it } from "vitest";
+import { withTempDir } from "../test-helpers/temp-dir.js";
+import { createFileAcpEventLedger, createInMemoryAcpEventLedger } from "./event-ledger.js";
+
+describe("ACP event ledger", () => {
+  it("records complete in-memory session updates in sequence", async () => {
+    const ledger = createInMemoryAcpEventLedger({ now: () => 123 });
+    await ledger.startSession({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUserPrompt({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      runId: "run-1",
+      prompt: [{ type: "text", text: "Question" }],
+    });
+    await ledger.recordUpdate({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      runId: "run-1",
+      update: {
+        sessionUpdate: "agent_message_chunk",
+        content: { type: "text", text: "Answer" },
+      },
+    });
+
+    const replay = await ledger.readReplay({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+    });
+
+    expect(replay.complete).toBe(true);
+    expect(replay.events.map((event) => event.seq)).toEqual([1, 2]);
+    expect(replay.events.map((event) => event.runId)).toEqual(["run-1", "run-1"]);
+    expect(replay.events.map((event) => event.update.sessionUpdate)).toEqual([
+      "user_message_chunk",
+      "agent_message_chunk",
+    ]);
+  });
+
+  it("marks a session incomplete when event retention truncates history", async () => {
+    const ledger = createInMemoryAcpEventLedger({ maxEventsPerSession: 1 });
+    await ledger.startSession({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUpdate({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      update: {
+        sessionUpdate: "agent_message_chunk",
+        content: { type: "text", text: "First" },
+      },
+    });
+    await ledger.recordUpdate({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      update: {
+        sessionUpdate: "agent_message_chunk",
+        content: { type: "text", text: "Second" },
+      },
+    });
+
+    await expect(
+      ledger.readReplay({ sessionId: "session-1", sessionKey: "agent:main:work" }),
+    ).resolves.toEqual({ complete: false, events: [] });
+  });
+
+  it("persists file-backed replay state across ledger instances", async () => {
+    await withTempDir({ prefix: "openclaw-acp-ledger-" }, async (dir) => {
+      const filePath = path.join(dir, "acp", "event-ledger.json");
+      const first = createFileAcpEventLedger({ filePath, now: () => 1000 });
+      await first.startSession({
+        sessionId: "session-1",
+        sessionKey: "agent:main:work",
+        cwd: "/work",
+        complete: true,
+      });
+      await first.recordUpdate({
+        sessionId: "session-1",
+        sessionKey: "agent:main:work",
+        runId: "run-1",
+        update: {
+          sessionUpdate: "agent_thought_chunk",
+          content: { type: "text", text: "Thinking" },
+        },
+      });
+
+      const second = createFileAcpEventLedger({ filePath });
+      const replay = await second.readReplay({
+        sessionId: "session-1",
+        sessionKey: "agent:main:work",
+      });
+
+      expect(replay.complete).toBe(true);
+      expect(replay.events).toHaveLength(1);
+      expect(replay.events[0]?.update).toEqual({
+        sessionUpdate: "agent_thought_chunk",
+        content: { type: "text", text: "Thinking" },
+      });
+      await expect(fs.readFile(filePath, "utf8")).resolves.toContain('"version":1');
+    });
+  });
+
+  it("can replay a complete session by Gateway session key", async () => {
+    const ledger = createInMemoryAcpEventLedger({ now: () => 1000 });
+    await ledger.startSession({
+      sessionId: "acp-session-1",
+      sessionKey: "acp:gateway-session-1",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUpdate({
+      sessionId: "acp-session-1",
+      sessionKey: "acp:gateway-session-1",
+      update: {
+        sessionUpdate: "agent_message_chunk",
+        content: { type: "text", text: "Answer" },
+      },
+    });
+
+    const replay = await ledger.readReplayBySessionKey({
+      sessionKey: "acp:gateway-session-1",
+    });
+
+    expect(replay.complete).toBe(true);
+    expect(replay.sessionId).toBe("acp-session-1");
+    expect(replay.sessionKey).toBe("acp:gateway-session-1");
+    expect(replay.events.map((event) => event.update.sessionUpdate)).toEqual([
+      "agent_message_chunk",
+    ]);
+  });
+
+  it("preserves prompt history when a provisional ACP key becomes a canonical Gateway key", async () => {
+    const ledger = createInMemoryAcpEventLedger({ now: () => 1000 });
+    await ledger.startSession({
+      sessionId: "acp-session-1",
+      sessionKey: "acp:gateway-session-1",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUserPrompt({
+      sessionId: "acp-session-1",
+      sessionKey: "acp:gateway-session-1",
+      runId: "run-1",
+      prompt: [{ type: "text", text: "Question" }],
+    });
+    await ledger.recordUpdate({
+      sessionId: "acp-session-1",
+      sessionKey: "agent:main:acp:gateway-session-1",
+      runId: "run-1",
+      update: {
+        sessionUpdate: "agent_message_chunk",
+        content: { type: "text", text: "Answer" },
+      },
+    });
+
+    const replay = await ledger.readReplayBySessionKey({
+      sessionKey: "agent:main:acp:gateway-session-1",
+    });
+
+    expect(replay.complete).toBe(true);
+    expect(replay.sessionId).toBe("acp-session-1");
+    expect(replay.sessionKey).toBe("agent:main:acp:gateway-session-1");
+    expect(replay.events.map((event) => event.update.sessionUpdate)).toEqual([
+      "user_message_chunk",
+      "agent_message_chunk",
+    ]);
+  });
+
+  it("can replay multi-block prompt history by ACP session id", async () => {
+    const ledger = createInMemoryAcpEventLedger({ now: () => 1000 });
+    await ledger.startSession({
+      sessionId: "acp-session-1",
+      sessionKey: "acp:gateway-session-1",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUserPrompt({
+      sessionId: "acp-session-1",
+      sessionKey: "acp:gateway-session-1",
+      runId: "run-1",
+      prompt: [
+        { type: "text", text: "First" },
+        { type: "text", text: "Second" },
+      ],
+    });
+
+    const replay = await ledger.readReplayBySessionId({ sessionId: "acp-session-1" });
+
+    expect(replay.complete).toBe(true);
+    expect(replay.sessionKey).toBe("acp:gateway-session-1");
+    expect(
+      replay.events.map((event) =>
+        event.update.sessionUpdate === "user_message_chunk" ? event.update.content : undefined,
+      ),
+    ).toEqual([
+      { type: "text", text: "First" },
+      { type: "text", text: "Second" },
+    ]);
+  });
+
+  it("evicts the oldest complete session when session retention is exceeded", async () => {
+    let now = 1000;
+    const ledger = createInMemoryAcpEventLedger({ maxSessions: 1, now: () => now++ });
+    await ledger.startSession({
+      sessionId: "old-session",
+      sessionKey: "acp:old-gateway-session",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.startSession({
+      sessionId: "new-session",
+      sessionKey: "acp:new-gateway-session",
+      cwd: "/work",
+      complete: true,
+    });
+
+    await expect(
+      ledger.readReplay({ sessionId: "old-session", sessionKey: "acp:old-gateway-session" }),
+    ).resolves.toEqual({ complete: false, events: [] });
+    const replay = await ledger.readReplayBySessionId({ sessionId: "new-session" });
+    expect(replay.complete).toBe(true);
+    expect(replay.sessionKey).toBe("acp:new-gateway-session");
+  });
+
+  it("resets stale events when a session is restarted with reset", async () => {
+    const ledger = createInMemoryAcpEventLedger();
+    await ledger.startSession({
+      sessionId: "session-1",
+      sessionKey: "acp:old-session",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUpdate({
+      sessionId: "session-1",
+      sessionKey: "acp:old-session",
+      update: {
+        sessionUpdate: "agent_message_chunk",
+        content: { type: "text", text: "Old answer" },
+      },
+    });
+    await ledger.startSession({
+      sessionId: "session-1",
+      sessionKey: "acp:new-session",
+      cwd: "/work",
+      complete: true,
+      reset: true,
+    });
+
+    await expect(
+      ledger.readReplay({ sessionId: "session-1", sessionKey: "acp:old-session" }),
+    ).resolves.toEqual({ complete: false, events: [] });
+    await expect(ledger.readReplayBySessionId({ sessionId: "session-1" })).resolves.toMatchObject({
+      complete: true,
+      sessionKey: "acp:new-session",
+      events: [],
+    });
+  });
+
+  it("marks replay incomplete when serialized byte retention trims payloads", async () => {
+    const ledger = createInMemoryAcpEventLedger({ maxSerializedBytes: 900 });
+    await ledger.startSession({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      cwd: "/work",
+      complete: true,
+    });
+    await ledger.recordUpdate({
+      sessionId: "session-1",
+      sessionKey: "agent:main:work",
+      update: {
+        sessionUpdate: "tool_call_update",
+        toolCallId: "tool-1",
+        status: "completed",
+        rawOutput: { content: "x".repeat(5_000) },
+      },
+    });
+
+    await expect(
+      ledger.readReplay({ sessionId: "session-1", sessionKey: "agent:main:work" }),
+    ).resolves.toEqual({ complete: false, events: [] });
+  });
+
+  it("keeps the persisted ledger file under the serialized byte budget", async () => {
+    await withTempDir({ prefix: "openclaw-acp-ledger-" }, async (dir) => {
+      const filePath = path.join(dir, "acp", "event-ledger.json");
+      const ledger = createFileAcpEventLedger({ filePath, maxSerializedBytes: 1024 });
+      await ledger.startSession({
+        sessionId: "session-1",
+        sessionKey: "agent:main:work",
+        cwd: "/work",
+        complete: true,
+      });
+      await ledger.recordUpdate({
+        sessionId: "session-1",
+        sessionKey: "agent:main:work",
+        update: {
+          sessionUpdate: "tool_call_update",
+          toolCallId: "tool-1",
+          status: "completed",
+          rawOutput: { content: "x".repeat(5_000) },
+        },
+      });
+
+      const bytes = Buffer.byteLength(await fs.readFile(filePath, "utf8"), "utf8");
+      expect(bytes).toBeLessThanOrEqual(1024);
+      await expect(
+        ledger.readReplay({ sessionId: "session-1", sessionKey: "agent:main:work" }),
+      ).resolves.toEqual({ complete: false, events: [] });
+    });
+  });
+
+  it("ignores corrupt ledger files instead of replaying unknown state", async () => {
+    await withTempDir({ prefix: "openclaw-acp-ledger-" }, async (dir) => {
+      const filePath = path.join(dir, "event-ledger.json");
+      await fs.writeFile(filePath, "{bad json", "utf8");
+      const ledger = createFileAcpEventLedger({ filePath });
+
+      await expect(
+        ledger.readReplay({ sessionId: "session-1", sessionKey: "agent:main:work" }),
+      ).resolves.toEqual({ complete: false, events: [] });
+    });
+  });
+
+  it("reloads file-backed state under lock before writing", async () => {
+    await withTempDir({ prefix: "openclaw-acp-ledger-" }, async (dir) => {
+      const filePath = path.join(dir, "acp", "event-ledger.json");
+      const first = createFileAcpEventLedger({ filePath });
+      const second = createFileAcpEventLedger({ filePath });
+
+      await first.startSession({
+        sessionId: "session-1",
+        sessionKey: "acp:gateway-session-1",
+        cwd: "/work",
+        complete: true,
+      });
+      await second.startSession({
+        sessionId: "session-2",
+        sessionKey: "acp:gateway-session-2",
+        cwd: "/work",
+        complete: true,
+      });
+      await first.recordUpdate({
+        sessionId: "session-1",
+        sessionKey: "acp:gateway-session-1",
+        update: {
+          sessionUpdate: "agent_message_chunk",
+          content: { type: "text", text: "Answer" },
+        },
+      });
+
+      const reader = createFileAcpEventLedger({ filePath });
+      const replay = await reader.readReplay({
+        sessionId: "session-2",
+        sessionKey: "acp:gateway-session-2",
+      });
+      expect(replay.complete).toBe(true);
+      expect(replay.sessionKey).toBe("acp:gateway-session-2");
+    });
+  });
+});