[Bug]: Codex provider usage ignores proxy env and reports fetch failed

[TnzGit]

Bug type

Behavior bug (incorrect provider usage state)

Summary

On OpenClaw 2026.5.5, Codex provider usage fails with fetch failed in an environment where direct Node fetch() to chatgpt.com times out, but HTTP_PROXY / HTTPS_PROXY is configured and a proxy-aware fetch succeeds.

The failing path appears to be loadProviderUsageSummary() selecting plain fetch for provider usage snapshots instead of preferring the existing proxy-aware fetch helper from environment proxy settings.

Environment

• OpenClaw: 2026.5.5 (b1abf9d)
• OS: Ubuntu 24.04.4 LTS, Linux 6.17.0-22-generic, x86_64
• Node.js: v22.22.2
• Install: npm global via nvm
• Provider: openai-codex OAuth
• Proxy: local HTTP proxy configured through HTTP_PROXY / HTTPS_PROXY / lowercase variants

Steps to reproduce

1. Run OpenClaw with an openai-codex OAuth profile.
2. Use a network where direct Node fetch to https://chatgpt.com/backend-api/wham/usage times out, but an HTTP proxy is available and configured in env.
3. Run:

openclaw status --usage --json

4. Or open the Control UI usage/provider quota surface.

Expected behavior

openclaw status --usage --json should use the configured proxy path for Codex usage fetches and return Codex quota windows, for example:

{
  "provider": "openai-codex",
  "displayName": "Codex",
  "windows": [
    { "label": "5h", "usedPercent": 2 },
    { "label": "Week", "usedPercent": 22 }
  ],
  "plan": "..."
}

Actual behavior

Before a local patch, the usage payload consistently returned:

{
  "provider": "openai-codex",
  "displayName": "Codex",
  "windows": [],
  "error": "fetch failed"
}

Evidence

Direct Node fetch tried to connect directly and timed out:

{
  "ok": false,
  "name": "TypeError",
  "message": "fetch failed",
  "causeName": "AggregateError",
  "errors": [
    { "code": "ETIMEDOUT", "address": "103.56.16.112" },
    { "code": "ENETUNREACH", "address": "2001::80f2:f03b" }
  ]
}

The same URL succeeds when routed through OpenClaw's proxy-aware helper:

import { makeProxyFetch } from "openclaw/dist/plugin-sdk/fetch-runtime.js";

const fetchFn = makeProxyFetch("http://127.0.0.1:7890");
const res = await fetchFn("https://chatgpt.com/backend-api/wham/usage");
console.log(res.status); // 401 without auth, proving the network path works

Using the packaged helper directly also works:

const fetchFn = resolveProxyFetchFromEnv(process.env);
const res = await (fetchFn ?? fetch)("https://chatgpt.com/backend-api/wham/usage");
console.log(res.status); // 401 without auth

Local fix confirmation

In the packaged 2026.5.5 bundle, provider-usage-BIeUuUeN.js had:

const fetchFn = resolveFetch(opts.fetch);

I locally patched it to prefer env proxy fetch:

import { i as resolveProxyFetchFromEnv } from "./proxy-fetch-CSerR6bC.js";

const fetchFn = opts.fetch ?? resolveProxyFetchFromEnv(env) ?? resolveFetch();

After restarting the gateway, the same command returned Codex usage windows and plan data:

{
  "provider": "openai-codex",
  "displayName": "Codex",
  "windows": [
    { "label": "5h", "usedPercent": 2 },
    { "label": "Week", "usedPercent": 22 }
  ],
  "plan": "..."
}

Suspected root cause

src/infra/provider-usage.load.ts / the packaged provider-usage runtime appears to resolve the fetch function with:

resolveFetch(opts.fetch)

This misses the already available proxy-aware path for provider usage requests when the operator relies on proxy env vars and direct Node fetch cannot reach chatgpt.com.

Suggested fix

Make provider usage loading proxy-aware by default, for example:

const fetchFn = opts.fetch ?? resolveProxyFetchFromEnv(env) ?? resolveFetch();

Alternatively, ensure this usage path reliably bootstraps the same env-proxy Undici dispatcher used by other provider/runtime network paths before fetchCodexUsage() is called.

Related but distinct issues checked

• Bug: openclaw status --usage --json hangs/fails from non-TTY subprocess in 2026.4.26 #74085 covers status --usage --json hanging/failing from non-TTY subprocesses.
• [Bug]: Codex OAuth usage quota missing from status; status --usage reports unsupported provider #78002 covered the older Codex: Unsupported provider path.
• Feature request: native Codex quota/auth diagnosis plus brokered reauth execution #54278 is broader quota/auth diagnosis UX.
• Regression: external channel plugin fetch() fails with TypeError: fetch failed in 2026.5.4 #78007 was external plugin fetch behavior.

This report is narrower: Codex provider usage is implemented, auth is valid, and the failure disappears when provider-usage uses the env proxy fetch helper.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed June 1, 2026, 1:09 AM ET / 05:09 UTC.

Summary
Codex review failed: codex execution failed.

Reproducibility: unclear. The review failed before ClawSweeper could establish a reproduction path.

Ways to help us reproduce this

• Add a screenshot or short recording showing the behavior.
• Include the exact command, prompt, or workflow that triggered it.
• Add expected vs actual behavior.

Next step
Review did not complete, so no work-lane recommendation was made.

Review details

Best possible solution:

Retry the Codex review after fixing the execution failure.

Do we have a high-confidence way to reproduce the issue?

Unclear. The review failed before ClawSweeper could establish a reproduction path.

Is this the best way to solve the issue?

Unclear. Retry the review first so ClawSweeper can evaluate the actual issue and fix direction.

AGENTS.md: unclear because the file could not be read completely.

Remaining risk / open question:

• No close action taken because the review did not complete.

Codex review notes: model gpt-5.5, reasoning high; reviewed against d925249ac086.

Label changes

Label changes:

• add issue-rating: 🦪 silver shellfish: Current issue advisory state selects this label.
• add clawsweeper:needs-info: Current issue advisory state selects this label.
• remove P2: Current review triage priority is none.
• remove clawsweeper:no-new-fix-pr: Current issue advisory state no longer selects this label.
• remove clawsweeper:source-repro: Current issue advisory state no longer selects this label.
• remove clawsweeper:linked-pr-open: Current issue advisory state no longer selects this label.
• remove impact:auth-provider: Current review selected no impact labels.
• remove issue-rating: 🦞 diamond lobster: Current issue advisory state no longer selects this label.

Evidence reviewed

What I checked:

• failure reason: codex execution failed.
• codex failure detail: Codex review failed for this issue with exit 1.
• codex stdout: Per-item Codex failure; continuing with the rest of the shard.

Likely related people:

• unknown: Codex failed before it could trace repository history. (role: review did not complete; confidence: low)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[barnacle-openclaw]

This issue has been automatically marked as stale due to inactivity.
Please add updates or it will be closed.