[Bug]: Session Timeout Spam with Codex and Active Memory ON

[royaldust]

Bug type

Regression (worked before, now fails)

Beta release blocker

No

Summary

Sessions in full timeout spam (unusable) when Active Memory ON

2026.4.14
webchat became “one message then stuck”
openai-codex showed refresh_token_reused / timeout behavior
disabling Active Memory made the session usable again

Steps to reproduce

Openclaw 2026.4.14

Provider: Openai-Codex (OAuth)

Active Memory ON

Expected behavior

No errors, regular webchat ui flow.

Actual behavior

08:25:12+00:00 warn agent/embedded {"subsystem":"agent/embedded"} {"event":"embedded_run_agent_end","tags":["error_handling","lifecycle","agent_end","assistant_error"],"runId":"43077d1c-64ea-4035-80bc-869fbb39a58a","isError":true,"error":"terminated","failoverReason":null,"model":"gpt-5.4","provider":"openai-codex","rawErrorPreview":"terminated","rawErrorHash":"sha256:e8c95a2a7271","providerRuntimeFailureKind":"unknown"} embedded run agent end

OpenClaw version

2026.4.14

Operating system

macOS

Install method

npm

Model

openai-codex/gpt-5.4

Provider / routing chain

direct

Additional provider/model setup details

No response

Logs, screenshots, and evidence

Impact and severity

No response

Additional information

No response

[lordratner]

I have the same issue

[amzzzzzzz]

Confirming a closely related variant on 2026.4.22 on macOS/webchat with openai-codex/gpt-5.4.

In our case the strongest trigger still appears to be Active Memory ON:

• direct main chat became noticeably worse / drifty / overly long / unstable
• repeated active-memory-* timeout/failover events in logs
• repeated embedded run agent end ... error=terminated rawError=terminated
• context overflow then started appearing
• auto-compaction did trigger, but compaction/summarization also failed (Compaction timed out, Full summarization failed: terminated)
• disabling plugins.entries.active-memory.enabled immediately improved responsiveness

Relevant counts from the affected window on 2026-04-23:

• 16 active-memory hits
• 31 embedded failover decisions
• 171 terminated rawError=terminated
• 3 context overflow detections
• 3 compaction diagnostics
• 2 Full summarization failed: terminated

So for us this looks less like “compaction never triggers” and more like:
Active Memory timeout spam -> overflow -> failed compaction -> terminated-run cascade

This may overlap with #65309, #67878, and possibly #70744, but #67084 feels like the best primary bucket because disabling Active Memory was the immediate fix.

[rafiki270]

Triage Result: VALID

Confidence: 8/10 — root cause identified via code inspection.

Root Cause

Active Memory (memory compaction flush) introduces an extra embedded agent call per reply cycle (agent-runner-memory.ts:734). When Active Memory is ON and OpenAI Codex OAuth is in use, this double-call pattern races with the OAuth token refresh, triggering refresh_token_reused errors.

The existing OAuth refresh serialization lock (path-resolve.ts:44) doesn't cover the memory flush path, allowing the concurrent refresh race condition.

Mechanism

1. Active Memory ON → memory flush triggers runEmbeddedPiAgent() extra call
2. Extra call races with main call on OAuth token refresh
3. refresh_token_reused → embedded session logs terminated error (pi-embedded-subscribe.handlers.lifecycle.ts:98)
4. Session enters degraded retry loop → timeout spam
5. Active Memory OFF → no extra call → race doesn't trigger → session works

Fix Direction

• Ensure OAuth refresh lock covers memory flush embedded calls, OR
• Memory flush path should reuse existing valid credential instead of triggering fresh refresh

Reviewer swarm: 3/5 subagents timed out (gateway degraded, same pattern since 2026-04-21). Fallback: orchestrator direct code inspection confirmed VALID.

[amzzzzzzz]

This triage direction feels strong to me, and I think it lines up well with what we saw locally.

One small nuance from checking current main:

• the memory-flush path still does appear to launch an extra embedded run in src/auto-reply/reply/agent-runner-memory.ts (the runEmbeddedPiAgent(...) call is currently around ~766)
• but the auth layer also appears to already have a cross-agent OAuth refresh lock in src/agents/auth-profiles/path-resolve.ts / oauth-manager.ts

So the broad shape looks right (Active Memory extra embedded run -> more pressure -> terminated cascade), but the exact failure mode may be narrower than “memory flush bypasses the refresh lock” outright.

My guess is something more like:

• extra embedded memory-flush run increases concurrency/refresh pressure
• one path fails to adopt the freshly refreshed credential cleanly (or degrades badly after a refresh edge)
• then the session falls into the timeout / terminated spiral we were seeing

Either way, I think this is a very useful root-cause direction — just maybe worth one targeted trace to prove whether the bug is:

1. refresh lock not actually covering one path, or
2. refresh lock exists but one caller still mishandles the post-refresh credential/adoption path.

[steipete]

Closing this as implemented after Codex review.

Current main contains two concrete fixes that match this report's failure mode: OAuth-backed session reuse is now keyed on stable identity instead of rotating token material, and embedded harness selection is pinned per session and propagated into Active Memory compaction runs. Both fixes were shipped in v2026.4.23, which post-dates the reproduced 2026.4.14 and 2026.4.22 reports in this thread.

What I checked:

• OAuth session epoch now ignores rotating token material: Current main hashes OAuth-backed CLI session identity from stable account fields instead of mutable access/expiry token fields, which prevents token refresh from forcing unwanted session resets. (src/agents/cli-auth-epoch.ts:44, 7875092f4ddc)
• Regression tests cover stable epochs across token refresh: Tests assert Claude/auth-profile/Codex OAuth epochs stay stable across token refreshes and only change when account identity changes, matching the intended fix for refresh-driven session churn. (src/agents/cli-auth-epoch.test.ts:33, 7875092f4ddc)
• Stored CLI session reuse is gated by the auth epoch: Prepared CLI runs resolve authEpoch and pass it into resolveCliSessionReuse(...), so the epoch change directly controls whether an old session is reused or reset. (src/agents/cli-runner/prepare.ts:210, 7875092f4ddc)
• Embedded harness selection is pinned per session: Current main resolves a session-pinned embedded harness and falls back to PI only for legacy sessions with history, preventing existing transcripts from hot-switching runtimes mid-session. (src/agents/command/attempt-execution.ts:271, 7875092f4ddc)
• Active Memory compaction reuses the pinned harness: The Active Memory preflight compaction path forwards agentHarnessId from the live session entry into the embedded run, which addresses the Active-Memory-specific session/runtime mismatch risk discussed in this issue. (src/auto-reply/reply/agent-runner-memory.ts:484, 7875092f4ddc)
• Shipped before v2026.4.23 release and linked issue context: GitHub history shows commit 3eb6edc67c2f5deebf1c9c8e176f310678d8c8a6 (fix(cli): key oauth session epochs on identity) and commit 17138392885935a0fbf01dd1ed95462db6292e37 (fix: pin embedded harness selection per session) landed before release SHA a9797214338ba31c52c796adbb75afb16e0684a9 (v2026.4.23). The linked PR fix: isolate session from OAuth token rotation (fixes #67084) #67125 was auto-closed for the active-PR limit, not on technical rejection, and its root-cause direction matches the landed auth-epoch fix. (171383928859)

So I’m closing this as already implemented rather than keeping a duplicate issue open.

Review notes: reviewed against 7875092f4ddc; fix evidence: release v2026.4.23, commit 171383928859.