openai-codex runtime requests can ignore proxy env unless NODE_USE_ENV_PROXY=1; backend-api requests also need browser-like headers in some proxy setups

[wuxudongxd]

Summary

openai-codex runtime requests can fail in proxy-only environments even when:

• ChatGPT Plus OAuth login succeeds
• openclaw models status shows a healthy openai-codex profile
• the same machine can reach https://chatgpt.com/backend-api/codex/responses successfully via curl

On my setup, OpenClaw would repeatedly return fetch failed for runtime Codex requests until I forced Node to honor env proxy routing with NODE_USE_ENV_PROXY=1.

This looks related to, but distinct from, the OAuth proxy issues in:

• openai-codex OAuth token exchange can ignore proxy env in proxy/TUN setups #42020
• openai-codex OAuth login does not honor proxy env for oauth/token exchange and refresh #42176

and likely related to the runtime symptom in:

• [Bug]: openai-codex OAuth succeeds on macOS, but all Codex requests fall back to Gemini #39035

Environment

• OpenClaw: 2026.3.8
• Node: 22.22.0
• OS: Linux
• Auth: openai-codex via ChatGPT Plus OAuth
• Model: openai-codex/gpt-5.4
• Proxy env present:
  • HTTP_PROXY=http://192.168.31.201:7890
  • HTTPS_PROXY=http://192.168.31.201:7890
  • NO_PROXY=localhost,127.0.0.1

Symptoms

Runtime requests fail with session log entries like:

errorMessage: "fetch failed"
provider: "openai-codex"
model: "gpt-5.4"

OAuth itself was not the issue:

• gh auth equivalent for OpenClaw showed the openai-codex:default OAuth profile as healthy
• openclaw models list included openai-codex/gpt-5.4
• openclaw models status --json showed the OAuth profile status as ok

Important Reproduction Detail

Plain Node fetch and curl behaved differently on the same host.

1. Without NODE_USE_ENV_PROXY=1, Node fetch did not actually use the env proxy

node -e "const ac=new AbortController(); setTimeout(()=>ac.abort(),10000); fetch('https://chatgpt.com/backend-api/models',{signal:ac.signal,headers:{Authorization:'Bearer invalid',Origin:'https://chatgpt.com',Referer:'https://chatgpt.com/','User-Agent':'Mozilla/5.0'}}).then(async r=>{console.log('status',r.status)}).catch(e=>{console.error(e.name,e.message)})"

Observed:

AbortError This operation was aborted

2. With NODE_USE_ENV_PROXY=1, the same fetch changed behavior immediately

NODE_USE_ENV_PROXY=1 node -e "const ac=new AbortController(); setTimeout(()=>ac.abort(),10000); fetch('https://chatgpt.com/backend-api/models',{signal:ac.signal,headers:{Authorization:'Bearer invalid',Origin:'https://chatgpt.com',Referer:'https://chatgpt.com/','User-Agent':'Mozilla/5.0'}}).then(async r=>{console.log('status',r.status)}).catch(e=>{console.error(e.name,e.message)})"

Observed:

status 403

That strongly suggests the default OpenClaw runtime path was not honoring the proxy env for Node/undici fetch.

Additional Observation: request headers matter on chatgpt.com/backend-api

I also tested the same Plus OAuth token outside OpenClaw.

This request succeeded with HTTP/2 200:

curl --proxy http://192.168.31.201:7890 \
  'https://chatgpt.com/backend-api/codex/responses' \
  -H "Authorization: Bearer <access_token>" \
  -H "chatgpt-account-id: <account_id>" \
  -H 'OpenAI-Beta: responses=experimental' \
  -H 'Origin: https://chatgpt.com' \
  -H 'Referer: https://chatgpt.com/' \
  -H 'User-Agent: Mozilla/5.0 ...' \
  -H 'accept: text/event-stream' \
  -H 'content-type: application/json' \
  --data '{"model":"gpt-5.4","store":false,"stream":true,"instructions":"You are a helpful assistant.","input":[{"role":"user","content":[{"type":"input_text","text":"Reply with OK only."}]}],"text":{"verbosity":"medium"},"include":["reasoning.encrypted_content"],"tool_choice":"auto","parallel_tool_calls":true}'

Response headers included:

HTTP/2 200
x-codex-plan-type: plus
x-oai-request-id: ...

So this was not a bad account, bad model, or unsupported Plus plan.

What fixed it locally

I needed both of these changes to make OpenClaw runtime Codex requests work reliably:

1. Force Node runtime to honor env proxy

I locally set NODE_USE_ENV_PROXY=1 before the OpenClaw gateway/runtime starts.

After that, the gateway process environment included:

HTTP_PROXY=http://192.168.31.201:7890
HTTPS_PROXY=http://192.168.31.201:7890
NODE_USE_ENV_PROXY=1

2. Add browser-like headers to the Codex provider request path

In @mariozechner/pi-ai/dist/providers/openai-codex-responses.js, I locally patched buildHeaders() to include:

• Origin: https://chatgpt.com
• Referer: https://chatgpt.com/
• browser-style User-Agent
• Accept-Language

Verification

After those changes, this worked successfully:

openclaw agent --agent main --message '只回复OK' --json --timeout 90

Observed result:

{
  "status": "ok",
  "result": {
    "payloads": [{ "text": "OK" }],
    "meta": {
      "agentMeta": {
        "provider": "openai-codex",
        "model": "gpt-5.4"
      }
    }
  }
}

Likely Root Cause

There seem to be two runtime compatibility issues here:

1. OpenClaw's openai-codex runtime path depends on Node/undici fetch behavior that does not automatically honor HTTP_PROXY / HTTPS_PROXY unless NODE_USE_ENV_PROXY=1 is set.
2. chatgpt.com/backend-api appears more sensitive than ordinary API endpoints to request shape / frontend-like headers, especially behind proxy setups.

Expected Behavior

OpenClaw should make openai-codex runtime requests work in the same proxy environment where:

• OAuth login already succeeded
• curl to chatgpt.com/backend-api/codex/responses succeeds
• the same ChatGPT Plus account is valid

At minimum, OpenClaw should either:

• automatically enable env proxy support for runtime fetch when proxy env vars are present, or
• clearly document that NODE_USE_ENV_PROXY=1 is required for proxied openai-codex runtime usage

Suggested Fix Direction

• Ensure gateway/runtime processes set up proxy-aware undici/fetch behavior consistently, not only selected flows
• Review the default headers for openai-codex runtime requests in @mariozechner/pi-ai
• If browser-style headers are intentionally required by chatgpt.com/backend-api, encode that in the provider instead of relying on generic defaults

[wuxudongxd]

Additional verified workaround details from the same machine:

Local changes that made openai-codex/gpt-5.4 work

1. Force Node runtime to honor proxy env

I locally added NODE_USE_ENV_PROXY=1 before OpenClaw starts.

Observed gateway environment after restart:

HTTP_PROXY=http://192.168.31.201:7890
HTTPS_PROXY=http://192.168.31.201:7890
NO_PROXY=localhost,127.0.0.1
NODE_USE_ENV_PROXY=1

2. Patch Codex provider headers

In local @mariozechner/pi-ai/dist/providers/openai-codex-responses.js, I patched buildHeaders() to add:

• Origin: https://chatgpt.com
• Referer: https://chatgpt.com/
• browser-like User-Agent
• Accept-Language

Why I think both matter

I verified all of the following separately:

• without NODE_USE_ENV_PROXY=1, plain Node fetch('https://chatgpt.com/backend-api/models') would just time out
• with NODE_USE_ENV_PROXY=1, the same fetch immediately changed behavior, proving proxy routing was now active
• with the same Plus OAuth token, a manual curl to https://chatgpt.com/backend-api/codex/responses returned HTTP/2 200
• after both changes above, openclaw agent --agent main --message '只回复OK' --json completed successfully using provider=openai-codex, model=gpt-5.4

Successful verification output

{
  "status": "ok",
  "result": {
    "payloads": [{ "text": "OK" }],
    "meta": {
      "agentMeta": {
        "provider": "openai-codex",
        "model": "gpt-5.4"
      }
    }
  }
}

If helpful, I can also provide the exact local patch hunk I used.

[sysoft]

This should be fixed by #51470, which adds NODE_USE_ENV_PROXY to the service environment passthrough list in src/daemon/service-env.ts.
Previously, openclaw gateway install forwarded HTTP_PROXY/HTTPS_PROXY to the managed service but silently dropped NODE_USE_ENV_PROXY. On Node 24, fetch() requires this flag to actually read those proxy variables, so the proxy settings were effectively ignored in the managed service even when correctly set in the shell.

[steipete]

Closing this as implemented after Codex review.

Current main already bootstraps env-proxy support for embedded/OpenAI Codex runtime requests without requiring NODE_USE_ENV_PROXY=1, and the managed service environment already forwards the standard proxy variables into the gateway/node service process.

What I checked:

• Embedded runner now installs env-proxy dispatcher before each run: runEmbeddedAttempt() calls configureEmbeddedAttemptHttpRuntime() at startup, and that helper installs EnvHttpProxyAgent before applying timeout tuning, so runtime HTTP requests use proxy env directly instead of relying on Node's NODE_USE_ENV_PROXY toggle. (src/agents/pi-embedded-runner/run/attempt.ts:441, 6f04eee2a12e)
• Env-proxy bootstrap is explicit: configureEmbeddedAttemptHttpRuntime() calls ensureGlobalUndiciEnvProxyDispatcher(), and that function swaps Undici's global dispatcher to EnvHttpProxyAgent whenever HTTP_PROXY/HTTPS_PROXY is configured. (src/agents/pi-embedded-runner/run/attempt-http-runtime.ts:7, 6f04eee2a12e)
• Dispatcher implementation honors proxy env without NODE_USE_ENV_PROXY: ensureGlobalUndiciEnvProxyDispatcher() checks proxy env and calls setGlobalDispatcher(new EnvHttpProxyAgent()); this bypasses the older Node behavior where plain fetch() ignored env proxy settings unless NODE_USE_ENV_PROXY=1 was set. (src/infra/net/undici-global-dispatcher.ts:91, 6f04eee2a12e)
• Managed service still forwards proxy vars into the runtime env: The service env builder includes HTTP_PROXY, HTTPS_PROXY, NO_PROXY, and lowercase variants in SERVICE_PROXY_ENV_KEYS, then injects them into the daemon service environment via buildCommonServiceEnvironment(). (src/daemon/service-env.ts:47, d29eaeafc1fc)
• Regression coverage exists on main: Tests assert both the embedded-run bootstrap call and the dispatcher behavior that installs EnvHttpProxyAgent when proxy env is configured. (src/infra/net/undici-global-dispatcher.test.ts:207, 6f04eee2a12e)

So I’m closing this as already implemented rather than keeping a duplicate issue open.

Review notes: reviewed against d29eaeafc1fc; fix evidence: commit 6f04eee2a12e.