openclaw
diff --git a/‎src/agents/acp-spawn.ts‎
Lines changed: 6 additions & 6 deletions b/‎src/agents/acp-spawn.ts‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎src/channels/message-access/dm-allow-state.ts‎
Lines changed: 1 addition & 1 deletion b/‎src/channels/message-access/dm-allow-state.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/channels/message-access/effective-allow-from.ts‎
Lines changed: 36 additions & 0 deletions b/‎src/channels/message-access/effective-allow-from.ts‎
Lines changed: 36 additions & 0 deletions
diff --git a/‎src/channels/message-access/index.ts‎
Lines changed: 2 additions & 1 deletion b/‎src/channels/message-access/index.ts‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎src/channels/message-access/runtime.ts‎
Lines changed: 2 additions & 61 deletions b/‎src/channels/message-access/runtime.ts‎
Lines changed: 2 additions & 61 deletions
diff --git a/‎src/channels/message-access/store-allow-from.ts‎
Lines changed: 30 additions & 0 deletions b/‎src/channels/message-access/store-allow-from.ts‎
Lines changed: 30 additions & 0 deletions
diff --git a/‎src/channels/plugins/bundled.ts‎
Lines changed: 1 addition & 1 deletion b/‎src/channels/plugins/bundled.ts‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/channels/plugins/legacy-state-migration.types.ts‎
Lines changed: 29 additions & 0 deletions b/‎src/channels/plugins/legacy-state-migration.types.ts‎
Lines changed: 29 additions & 0 deletions
diff --git a/‎src/channels/plugins/types.core.ts‎
Lines changed: 1 addition & 30 deletions b/‎src/channels/plugins/types.core.ts‎
Lines changed: 1 addition & 30 deletions
diff --git a/‎src/channels/route-projection.test.ts‎
Lines changed: 55 additions & 0 deletions b/‎src/channels/route-projection.test.ts‎
Lines changed: 55 additions & 0 deletions
@@ -24,7 +24,11 @@ import {
   resolveChannelDefaultBindingPlacement,
   resolveInboundConversationResolution,
 } from "../channels/conversation-resolution.js";
-import { routeFromBindingRecord, routeToDeliveryFields } from "../channels/route-projection.js";
+import {
+  formatConversationTarget,
+  routeFromBindingRecord,
+  routeToDeliveryFields,
+} from "../channels/route-projection.js";
 import {
   resolveThreadBindingIntroText,
   resolveThreadBindingThreadName,
@@ -65,11 +69,7 @@ import {
 } from "../routing/session-key.js";
 import { createRunningTaskRun } from "../tasks/detached-task-runtime.js";
 import { listTasksForOwnerKey } from "../tasks/runtime-internal.js";
-import {
-  deliveryContextFromSession,
-  formatConversationTarget,
-  normalizeDeliveryContext,
-} from "../utils/delivery-context.js";
+import { deliveryContextFromSession, normalizeDeliveryContext } from "../utils/delivery-context.js";
 import {
   type AcpSpawnParentRelayHandle,
   resolveAcpSpawnStreamLogPath,
 
@@ -5,7 +5,7 @@
  */
 import { normalizeStringEntries } from "@openclaw/normalization-core/string-normalization";
 import type { ChannelId } from "../plugins/types.public.js";
-import { readChannelIngressStoreAllowFromForDmPolicy } from "./runtime.js";
+import { readChannelIngressStoreAllowFromForDmPolicy } from "./store-allow-from.js";
 
 export async function resolveDmAllowAuditState(params: {
   provider: ChannelId;
 
@@ -0,0 +1,36 @@
+import { normalizeStringEntries } from "@openclaw/normalization-core/string-normalization";
+import { mergeDmAllowFromSources, resolveGroupAllowFromSources } from "../allow-from.js";
+
+/**
+ * Merge configured direct, group, and pairing-store allowlists into the
+ * effective lists consumed by sender and context-visibility checks.
+ */
+export function resolveChannelIngressEffectiveAllowFromLists(params: {
+  allowFrom?: Array<string | number> | null;
+  groupAllowFrom?: Array<string | number> | null;
+  storeAllowFrom?: Array<string | number> | null;
+  dmPolicy?: string | null;
+  groupAllowFromFallbackToAllowFrom?: boolean | null;
+}): {
+  effectiveAllowFrom: string[];
+  effectiveGroupAllowFrom: string[];
+} {
+  const allowFrom = Array.isArray(params.allowFrom) ? params.allowFrom : undefined;
+  const groupAllowFrom = Array.isArray(params.groupAllowFrom) ? params.groupAllowFrom : undefined;
+  const storeAllowFrom = Array.isArray(params.storeAllowFrom) ? params.storeAllowFrom : undefined;
+  const effectiveAllowFrom = normalizeStringEntries(
+    mergeDmAllowFromSources({
+      allowFrom,
+      storeAllowFrom,
+      dmPolicy: params.dmPolicy ?? undefined,
+    }),
+  );
+  const effectiveGroupAllowFrom = normalizeStringEntries(
+    resolveGroupAllowFromSources({
+      allowFrom,
+      groupAllowFrom,
+      fallbackToAllowFrom: params.groupAllowFromFallbackToAllowFrom ?? undefined,
+    }),
+  );
+  return { effectiveAllowFrom, effectiveGroupAllowFrom };
+}
@@ -5,10 +5,11 @@ export { defineStableChannelIngressIdentity } from "./runtime-identity.js";
 export {
   channelIngressRoutes,
   createChannelIngressResolver,
-  readChannelIngressStoreAllowFromForDmPolicy,
   resolveChannelMessageIngress,
   resolveStableChannelMessageIngress,
 } from "./runtime.js";
+export { readChannelIngressStoreAllowFromForDmPolicy } from "./store-allow-from.js";
+export { resolveChannelIngressEffectiveAllowFromLists } from "./effective-allow-from.js";
 export { resolveChannelIngressState } from "./state.js";
 export type {
   ChannelIngressAccessGroupMembershipResolver,
 
@@ -7,10 +7,9 @@ import {
   normalizeStringEntries,
   uniqueStrings,
 } from "@openclaw/normalization-core/string-normalization";
-import { readChannelAllowFromStore } from "../../pairing/pairing-store.js";
 import type { PairingChannel } from "../../pairing/pairing-store.types.js";
-import { mergeDmAllowFromSources, resolveGroupAllowFromSources } from "../allow-from.js";
 import { decideChannelIngress } from "./decision.js";
+import { resolveChannelIngressEffectiveAllowFromLists } from "./effective-allow-from.js";
 import {
   allReferencedAccessGroupNames,
   normalizeEffectiveEntries,
@@ -38,6 +37,7 @@ import type {
   ResolvedChannelMessageIngress,
 } from "./runtime-types.js";
 import { resolveChannelIngressState } from "./state.js";
+import { readChannelIngressStoreAllowFromForDmPolicy } from "./store-allow-from.js";
 import type {
   AccessGraphGate,
   ChannelIngressChannelId,
@@ -71,65 +71,6 @@ function shouldReadStore(params: {
   );
 }
 
-/**
- * Merge configured direct, group, and pairing-store allowlists into the
- * effective lists consumed by sender and context-visibility checks.
- */
-export function resolveChannelIngressEffectiveAllowFromLists(params: {
-  allowFrom?: Array<string | number> | null;
-  groupAllowFrom?: Array<string | number> | null;
-  storeAllowFrom?: Array<string | number> | null;
-  dmPolicy?: string | null;
-  groupAllowFromFallbackToAllowFrom?: boolean | null;
-}): {
-  effectiveAllowFrom: string[];
-  effectiveGroupAllowFrom: string[];
-} {
-  const allowFrom = Array.isArray(params.allowFrom) ? params.allowFrom : undefined;
-  const groupAllowFrom = Array.isArray(params.groupAllowFrom) ? params.groupAllowFrom : undefined;
-  const storeAllowFrom = Array.isArray(params.storeAllowFrom) ? params.storeAllowFrom : undefined;
-  const effectiveAllowFrom = normalizeStringEntries(
-    mergeDmAllowFromSources({
-      allowFrom,
-      storeAllowFrom,
-      dmPolicy: params.dmPolicy ?? undefined,
-    }),
-  );
-  const effectiveGroupAllowFrom = normalizeStringEntries(
-    resolveGroupAllowFromSources({
-      allowFrom,
-      groupAllowFrom,
-      fallbackToAllowFrom: params.groupAllowFromFallbackToAllowFrom ?? undefined,
-    }),
-  );
-  return { effectiveAllowFrom, effectiveGroupAllowFrom };
-}
-
-/**
- * Read pairing-store allowlist entries when a direct-message policy permits
- * store fallback.
- */
-export async function readChannelIngressStoreAllowFromForDmPolicy(params: {
-  provider: PairingChannel;
-  accountId: string;
-  dmPolicy?: string | null;
-  shouldRead?: boolean | null;
-  readStore?: (provider: PairingChannel, accountId: string) => Promise<string[]>;
-}): Promise<string[]> {
-  if (
-    params.shouldRead === false ||
-    params.dmPolicy === "allowlist" ||
-    params.dmPolicy === "open"
-  ) {
-    return [];
-  }
-  const readStore =
-    params.readStore ??
-    ((provider: PairingChannel, accountId: string) =>
-      readChannelAllowFromStore(provider, process.env, accountId));
-  return await readStore(params.provider, params.accountId).catch(() => []);
-}
-
 async function readStoreAllowFrom(
   params: ResolveChannelMessageIngressParams & { channelId: ChannelIngressChannelId },
 ): Promise<Array<string | number>> {
 
@@ -0,0 +1,30 @@
+import type { PairingChannel } from "../../pairing/pairing-store.types.js";
+
+/**
+ * Read pairing-store allowlist entries when a direct-message policy permits
+ * store fallback.
+ */
+export async function readChannelIngressStoreAllowFromForDmPolicy(params: {
+  provider: PairingChannel;
+  accountId: string;
+  dmPolicy?: string | null;
+  shouldRead?: boolean | null;
+  readStore?: (provider: PairingChannel, accountId: string) => Promise<string[]>;
+}): Promise<string[]> {
+  if (
+    params.shouldRead === false ||
+    params.dmPolicy === "allowlist" ||
+    params.dmPolicy === "open"
+  ) {
+    return [];
+  }
+  const readStore =
+    params.readStore ??
+    (async (provider: PairingChannel, accountId: string) => {
+      // Pairing store loads channel adapters for legacy normalization; keep that
+      // registry edge lazy so pure ingress policy imports stay acyclic.
+      const { readChannelAllowFromStore } = await import("../../pairing/pairing-store.js");
+      return await readChannelAllowFromStore(provider, process.env, accountId);
+    });
+  return await readStore(params.provider, params.accountId).catch(() => []);
+}
@@ -13,7 +13,7 @@ import type {
   BundledChannelLegacySessionSurface,
   BundledChannelLegacyStateMigrationDetector,
   BundledEntryModuleLoadOptions,
-} from "../../plugin-sdk/channel-entry-contract.js";
+} from "../../plugin-sdk/channel-entry-contract.types.js";
 import {
   listBundledChannelPluginMetadata,
   resolveBundledChannelGeneratedPath,
 
@@ -0,0 +1,29 @@
+export type ChannelLegacyStateMigrationPlan =
+  | {
+      kind: "copy" | "move";
+      label: string;
+      sourcePath: string;
+      targetPath: string;
+    }
+  | {
+      kind: "plugin-state-import";
+      label: string;
+      sourcePath: string;
+      targetPath: string;
+      pluginId: string;
+      namespace: string;
+      maxEntries: number;
+      scopeKey: string;
+      stateDir?: string;
+      cleanupSource?: "rename";
+      cleanupWhenEmpty?: boolean;
+      preview?: string;
+      shouldReplaceExistingEntry?: (params: {
+        key: string;
+        existingValue: unknown;
+        incomingValue: unknown;
+      }) => boolean | Promise<boolean>;
+      readEntries: () =>
+        | Array<{ key: string; value: unknown; ttlMs?: number }>
+        | Promise<Array<{ key: string; value: unknown; ttlMs?: number }>>;
+    };
@@ -23,6 +23,7 @@ import type { ChannelMessageActionName as ChannelMessageActionNameFromList } fro
 import type { ChannelMessageCapability } from "./message-capabilities.js";
 
 export type { ChannelId } from "./channel-id.types.js";
+export type { ChannelLegacyStateMigrationPlan } from "./legacy-state-migration.types.js";
 
 export type ChannelExposure = {
   configured?: boolean;
@@ -159,36 +160,6 @@ export type ChannelHeartbeatDeps = {
   hasActiveWebListener?: (accountId?: string) => boolean;
 };
 
-export type ChannelLegacyStateMigrationPlan =
-  | {
-      kind: "copy" | "move";
-      label: string;
-      sourcePath: string;
-      targetPath: string;
-    }
-  | {
-      kind: "plugin-state-import";
-      label: string;
-      sourcePath: string;
-      targetPath: string;
-      pluginId: string;
-      namespace: string;
-      maxEntries: number;
-      scopeKey: string;
-      stateDir?: string;
-      cleanupSource?: "rename";
-      cleanupWhenEmpty?: boolean;
-      preview?: string;
-      shouldReplaceExistingEntry?: (params: {
-        key: string;
-        existingValue: unknown;
-        incomingValue: unknown;
-      }) => boolean | Promise<boolean>;
-      readEntries: () =>
-        | Array<{ key: string; value: unknown; ttlMs?: number }>
-        | Promise<Array<{ key: string; value: unknown; ttlMs?: number }>>;
-    };
-
 /** User-facing metadata used in docs, pickers, and setup surfaces. */
 export type ChannelMeta = {
   id: ChannelId;
 
@@ -4,7 +4,9 @@ import { setActivePluginRegistry } from "../plugins/runtime.js";
 import { createChannelTestPluginBase, createTestRegistry } from "../test-utils/channel-plugins.js";
 import {
   deliveryContextFromRoute,
+  formatConversationTarget,
   normalizeRoutableChannelRoute,
+  resolveConversationDeliveryTarget,
   routeFromBindingRecord,
   routeFromConversationRef,
   routeFromDeliveryContext,
@@ -17,6 +19,30 @@ describe("channel route projection", () => {
   beforeEach(() => {
     setActivePluginRegistry(
       createTestRegistry([
+        {
+          pluginId: "room-chat",
+          source: "test",
+          plugin: {
+            ...createChannelTestPluginBase({ id: "room-chat", label: "Room chat" }),
+            messaging: {
+              resolveDeliveryTarget: ({
+                conversationId,
+                parentConversationId,
+              }: {
+                conversationId: string;
+                parentConversationId?: string;
+              }) =>
+                conversationId.startsWith("$")
+                  ? {
+                      to: parentConversationId ? `room:${parentConversationId}` : undefined,
+                      threadId: conversationId,
+                    }
+                  : {
+                      to: `room:${conversationId}`,
+                    },
+            },
+          },
+        },
         {
           pluginId: "thread-chat",
           source: "test",
@@ -78,6 +104,35 @@ describe("channel route projection", () => {
     });
   });
 
+  it("formats plugin-defined conversation targets via channel messaging hooks", () => {
+    expect(
+      formatConversationTarget({ channel: "room-chat", conversationId: "!room:example" }),
+    ).toBe("room:!room:example");
+    expect(
+      formatConversationTarget({
+        channel: "room-chat",
+        conversationId: "$thread",
+        parentConversationId: "!room:example",
+      }),
+    ).toBe("room:!room:example");
+    expect(
+      formatConversationTarget({ channel: "room-chat", conversationId: "  " }),
+    ).toBeUndefined();
+  });
+
+  it("resolves delivery targets for plugin-defined child threads", () => {
+    expect(
+      resolveConversationDeliveryTarget({
+        channel: "room-chat",
+        conversationId: "$thread",
+        parentConversationId: "!room:example",
+      }),
+    ).toEqual({
+      to: "room:!room:example",
+      threadId: "$thread",
+    });
+  });
+
   it("projects parent-child conversation refs through plugin delivery targets", () => {
     expect(
       routeFromConversationRef({