[Bug]: OpenAI Responses SSE sanitizer appears to starve embedded streams; bypass restores normal output

[andhai]

Summary

This looks like a more specific root-cause report for the broader openai/* embedded run hangs until timeout symptom reported in #76174 (and possibly related to #75824).

On OpenClaw 2026.4.29 (a448042), embedded OpenAI Responses streaming can stall because the SSE sanitization layer appears to starve or corrupt the stream before the OpenAI SDK parser sees the downstream events.

A clean repro on macOS succeeds immediately when sanitizeOpenAISdkSseResponse() is bypassed for one run, which strongly isolates the timeout to that sanitizer path rather than general OpenAI connectivity, auth, or the embedded runner itself.

Environment

• OpenClaw 2026.4.29 (a448042)
• macOS arm64
• Node 24.13.1
• Provider: OpenAI direct API key path
• Models observed failing in embedded runs before the bypass: openai/gpt-5.4, openai/gpt-5.3-codex, openai/gpt-4o-mini

What we observed before the bypass

For embedded runs using the OpenAI Responses path:

• request is dispatched successfully
• OpenAI returns 200 OK
• content type is text/event-stream; charset=utf-8
• response body is present
• the embedded runner reaches stream-ready
• a first event of type start is observed
• then no usable downstream reply events arrive and the run eventually hits the idle watchdog / embedded timeout

In other words, this is not a simple fetch never returned failure.

Critical isolation result

I patched the installed bundle temporarily so sanitizeOpenAISdkSseResponse() can be bypassed with an env var for a single run:

OPENCLAW_BYPASS_OPENAI_SDK_SSE_SANITIZE=1

Then I ran a fresh unique-session repro:

OPENCLAW_DISABLE_BONJOUR=1 \
OPENCLAW_BYPASS_OPENAI_SDK_SSE_SANITIZE=1 \
openclaw agent --local --agent main \
  --session-id diag-bypass-sse-1777763671 \
  --model openai/gpt-4o-mini \
  --message "Reply with exactly: hello" \
  --json --timeout 90

That run completed successfully and returned:

hello

Total duration was ~30s, no fallback used.

Why this points at the sanitizer

With the bypass enabled, the downstream SSE/event flow looks normal again. The run emits/observes events like:

• response.created
• response.in_progress
• response.output_item.added
• response.content_part.added
• response.output_text.delta
• response.output_text.done
• response.completed

Before the bypass, the stream reached the initial startup boundary but stalled before those downstream messages materialized.

Relevant diagnostic evidence

Before bypass:

[diag:fetch-sse] guarded-fetch-response provider=openai model=gpt-4o-mini status=200 contentType=text/event-stream; charset=utf-8 bodyPresent=true url=https://api.openai.com/v1/responses
[diag:fetch-sse] sanitize-start status=200 contentType=text/event-stream; charset=utf-8 url=https://api.openai.com/v1/responses
[diag:fetch-sse] sanitize-pull index=1 done=false bytes=492
[diag:openai-sdk] parse-response-stream status=200 contentType=text/event-stream; charset=utf-8 bodyPresent=true
[diag:embedded-stream] first-event provider=openai model=gpt-4o-mini api=openai-responses elapsedMs=1642 type=start
[diag:fetch-sse] sanitize-pull index=2 done=false bytes=1369
...
embedded run timeout

After bypass:

[diag:fetch-sse] sanitize-bypassed status=200 contentType=text/event-stream; charset=utf-8 url=https://api.openai.com/v1/responses
[diag:openai-sdk] sse-message index=5 event=response.output_text.delta dataPrefix={"type":"response.output_text.delta",..."delta":"hello"...}
[openai-transport] [diag:openai-responses] text-delta provider=openai model=gpt-4o-mini api=openai-responses contentIndex=0 deltaLen=5 totalLen=5
[openai-transport] [diag:openai-responses] response-completed provider=openai model=gpt-4o-mini api=openai-responses status=completed stopReason=stop contentBlocks=1

Suspect area

The problematic layer appears to be the SSE sanitation/filtering path around the function:

• sanitizeOpenAISdkSseResponse(response)

That layer sits between the raw text/event-stream HTTP response and the OpenAI SDK SSE parser.

Expected behavior

OpenClaw should preserve valid OpenAI Responses SSE frames so embedded OpenAI runs can stream normally without requiring a bypass.

Actual behavior

The sanitizer path appears to interfere with or starve the SSE stream, causing embedded runs to hang until timeout.

Workaround

A temporary bundle-local env-gated bypass of the sanitizer restored correct behavior immediately:

OPENCLAW_BYPASS_OPENAI_SDK_SSE_SANITIZE=1

Request

Could maintainers take a look at the SSE sanitizer path for the OpenAI Responses stream on 2026.4.29?

This seems like a concrete root-cause lead for the broader openai/* embedded runs hang until timeout reports such as #76174.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Summary
Keep open. Current main still contains the SSE sanitizer starvation path, and the issue is already paired with open fix PR #76324, so it should remain open until that PR or an equivalent fix lands.

Reproducibility: yes. The reporter provided a live bypass isolation, and a current-main Web Streams check of the sanitizer logic reproduces the pending read on a split valid SSE frame.

Next step
An open PR with closing syntax already targets this bug, so this issue should track that review rather than spawning a second repair lane.

Review details

Best possible solution:

Land #76324 or an equivalent fix that keeps draining upstream SSE until a complete readable frame can be emitted while preserving malformed-frame filtering and adding regression coverage.

Do we have a high-confidence way to reproduce the issue?

Yes. The reporter provided a live bypass isolation, and a current-main Web Streams check of the sanitizer logic reproduces the pending read on a split valid SSE frame.

Is this the best way to solve the issue?

Yes. Fixing the sanitizer's pull/drain behavior in src/agents/provider-transport-fetch.ts is the narrow maintainable solution; a permanent bypass would only avoid the broken wrapper.

What I checked:

• Current sanitizer can return without enqueueing: pull() reads one upstream chunk and calls enqueueSanitized(), but enqueueSanitized() returns when the buffer has no complete SSE boundary; a pending downstream read can therefore receive no chunk. (src/agents/provider-transport-fetch.ts:78, a4c1c28a1731)
• All SSE responses are wrapped by the sanitizer: buildGuardedModelFetch() applies sanitizeOpenAISdkSseResponse(response) before returning the managed response, so OpenAI Responses streaming goes through this wrapper. (src/agents/provider-transport-fetch.ts:318, a4c1c28a1731)
• Existing sanitizer tests miss split valid frames: The current tests cover event-only and whitespace-only frame filtering, but the valid readable frame case is not split before the first SSE boundary. (src/agents/provider-transport-fetch.test.ts:142, a4c1c28a1731)
• Source-level Web Streams reproduction stalls: A read-only Node Web Streams check mirroring the current sanitizer timed out on the first downstream read when a valid SSE frame was split before \n\n, outputting {"kind":"timeout","reads":2}. (a4c1c28a1731)
• Open closing PR already targets this issue: The provided GitHub context shows fix(openai): keep split SSE frames flowing #76324 is open, has head SHA 8d2b16bac6120c215144bda8df8d4d173e9c2fe8, and uses closing syntax for this issue; git ls-remote confirmed the PR refs still exist. (8d2b16bac612)

Likely related people:

• steipete: The prior ClawSweeper review context traces the SSE sanitizer introduction and recent OpenAI transport work to this maintainer, including the sanitizer commit and adjacent OpenAI transport changes. (role: introduced behavior and recent OpenAI transport maintainer; confidence: high; commits: c2e3b6e6f819, 74211128983a, d1b2d81752b8; files: src/agents/provider-transport-fetch.ts, src/agents/provider-transport-fetch.test.ts, src/agents/openai-transport-stream.ts)
• vincentkoc: Local history shows this person on the surrounding provider transport seam and the current shallow blame snapshot for the affected files, making them a plausible follow-up reviewer for transport-fetch behavior. (role: adjacent transport owner and recent maintainer; confidence: medium; commits: ea4265a82063, 95001d6c41c1; files: src/agents/provider-transport-fetch.ts, src/agents/provider-transport-fetch.test.ts, src/agents/openai-transport-stream.ts)

Remaining risk / open question:

• No live OpenAI credentialed run or full Vitest run was performed in this read-only review; the proof is source-level plus the reporter's bypass diagnostics.
• The linked fix PR still needs normal maintainer review, CI, and any required changelog handling before this issue can close.

Codex review notes: model gpt-5.5, reasoning high; reviewed against a4c1c28a1731.

[esqandil]

Independent reproduction and confirmation of fix on OpenClaw 2026.5.3-1, Linux + Node 22.

The bug still hits 2026.5.3-1. The 2026.5.2 "default GPT-5 to SSE transport" change resolves a different layer; the underlying sanitizeOpenAISdkSseResponse deadlock is still present in the bundled dist/. We saw it as "real-shape" subagent runs hanging for 60s with zero events, then aborted by the stream-stall watchdog.

Reproduction shape that triggers it for us

• openai/gpt-5.5, reasoning.effort=none, stream:true
• Subagent has 20 OpenClaw tools available (~28KB of tool schemas)
• OpenAI's response.created event echoes the full tools array → first SSE event > one TCP chunk

Direct curl with the same payload: 2-5s. Bundled OpenAI SDK with default fetch: 1.9s. Bundled SDK + OpenClaw's buildGuardedModelFetch (which calls sanitizeOpenAISdkSseResponse): hangs forever.

Minimal reproduction (no API key)

The bug is a pure ReadableStream semantics issue and reproduces in 50 lines:

const source = new ReadableStream({ async start(controller) {
  for (let i = 0; i < 5; i++) {
    await new Promise(r => setTimeout(r, 50));
    controller.enqueue(new TextEncoder().encode('chunk'.padEnd(20) + '|'));
  }
  controller.close();
}});

let buffer = '';
const reader = source.getReader();
const sanitized = new ReadableStream({
  async pull(controller) {
    const c = await reader.read();
    if (c.done) { if (buffer) controller.enqueue(new TextEncoder().encode(buffer)); controller.close(); return; }
    buffer += new TextDecoder().decode(c.value, { stream: true });
    if (buffer.length >= 100) {
      controller.enqueue(new TextEncoder().encode(buffer));
      buffer = '';
    }
    // Bug: silent return → pull is never called again under default queuing strategy.
  },
});

const r = sanitized.getReader();
while (true) {
  const c = await r.read();   // blocks forever after first sub-threshold pull
  if (c.done) break;
}

Source emits all 5 chunks and closes — sanitized stream stops pulling after pull #1. WHATWG behavior in Node 22: when pull() returns without calling enqueue(), the next pull is gated on a downstream read(). Downstream is already blocked on read(). Deadlock.

Verification of the #76324 fix pattern

We applied the same fix shape (loop read() inside pull() until at least one event enqueues, or upstream closes) directly to our installed dist/openai-transport-stream-Bvcf6n6H.js sanitizeOpenAISdkSseResponse. Restarted gateway. Verified end-to-end:

Test	Pre-fix	Post-fix
Direct curl, exact V3-shape payload	2-5s	2-5s
Bundled SDK + plain fetch	1.9s, 9 events	1.9s
Bundled SDK + OpenClaw fetch wrapper	0 events forever	1.6s, 9 events
Real OpenClaw subagent, gpt-5.5 thinking=low, 20 tools	60s stall, watchdog kill	3s, completed

The fix at #76324 matches what works for us in production. Strong +1 to merging it.

Blast radius note

sanitizeOpenAISdkSseResponse is the single SSE-sanitization helper used by buildGuardedModelFetch, which is in turn used by all OpenAI-compatible transports in OpenClaw: openai-responses, azure-openai-responses, and openai-codex-responses. So a single-function fix covers all three. We confirmed that locally by grep (single definition, single call site at line 531 of the bundled file).

Environment

• OpenClaw 2026.5.3-1 (npm global), Linux 6.8.0-100-generic x64
• Node v22.22.2
• openai SDK 6.35.0 (bundled)

Happy to file additional reproduction artifacts if useful. The minimal repro above doesn't need an OpenAI key, runs in <1 second on Node 22, and demonstrates the deadlock cleanly.

[esqandil]

Quick status update: bug persists in OpenClaw releases after 2026.5.3-1. Self-updated on 2026-05-10 and the dist file openai-transport-stream-Bvcf6n6H.js was replaced with openai-transport-stream-BkI6rJ3U.js — same unfixed function. Repro on 2026.5.7 is identical: gpt-5.5-pro thinking=xhigh subagent run with the inherited toolset stalls at the 60s watchdog with zero events delivered, while direct /v1/responses curl returns the full SSE sequence in ~2s.

Posting here mainly to ping #76324 — that PR's fix shape is correct; it's been green and unmerged since 2026-05-02. Anything we can do to help unblock it?

[openclaw-barnacle]

This issue has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.