Plugin-owned context engines (ownsCompaction) run compaction with no safety timeout — host can hang the agent indefinitely

[100yenadmin]

Filed early as a focused report; expanded with the full investigation — all five call sites, the native-vs-plugin asymmetry, the related compaction-hook gap, diagrams, and the fix mapping.

Summary

When a plugin-owned context engine — one that advertises ownsCompaction: true (e.g. the lossless-claw / LCM plugin) — handles compaction, OpenClaw awaits the engine's ContextEngine.compact() with no timeout, no watchdog, and no abort signal, across five distinct call sites. The 900 s safety timeout (compactWithSafetyTimeout / EMBEDDED_COMPACTION_TIMEOUT_MS) that protects native pi-agent-core compaction was never applied to the plugin-owned lanes.

If a plugin engine's compact() is slow or hangs, the agent turn is unresponsive for the entire duration. The only backstop is the default 48-hour agent run timeout — and even that cannot interrupt the plugin call, because ContextEngine.compact() has no abortSignal in its contract.

User-visible symptom: "the agent stopped responding right after it started compacting."

A second, independent host-side gap in the same area — unbounded before_compaction / after_compaction hooks — is documented under Related host-side gap below.

The compaction-stall surface

flowchart TD
    subgraph PE["pi-embedded runner"]
        L1["compact.queued.ts<br/>queued /compact"]
        L2["run.ts<br/>context-overflow recovery"]
        L3["run.ts<br/>run-timeout recovery"]
    end
    subgraph CX["codex agent harness"]
        L4["compact.ts<br/>compactOwningContextEngine"]
        L5["run-attempt.ts<br/>forceContextEngineCompactionForCodexOverflow"]
    end
    L1 --> CE
    L2 --> CE
    L3 --> CE
    L4 --> CE
    L5 --> CE
    CE["await contextEngine.compact()"]
    CE --> X["BEFORE FIX: no timeout / no abort / no watchdog<br/>a hung plugin compact() is awaited forever"]
    NAT["native pi-agent-core compaction"] --> NT["compactWithSafetyTimeout — 900 s bound"]
    NT --> NOTE["the 5 plugin lanes above never received this wrapper"]
    classDef bad fill:#ffe3e3,stroke:#d00000
    classDef good fill:#e3ffe3,stroke:#1a7f1a
    class CE,X bad
    class NT,NOTE good

Loading

The five ownsCompaction compact() call sites

#	Lane	File / function	Trigger
1	queued /compact	src/agents/pi-embedded-runner/compact.queued.ts	manual /compact
2	overflow recovery	src/agents/pi-embedded-runner/run.ts	context-overflow / force-on-max-token
3	timeout recovery	src/agents/pi-embedded-runner/run.ts	run-timeout recovery
4	codex owned compaction	extensions/codex/src/app-server/compact.ts → compactOwningContextEngine	codex budget / manual compaction
5	codex overflow	extensions/codex/src/app-server/run-attempt.ts → forceContextEngineCompactionForCodexOverflow	codex turn overflow

Sites 1–3 are the pi-embedded runner. Sites 4–5 are the codex agent harness — compact.queued.ts early-returns to maybeCompactCodexAppServerSession before its own lane-queued compact() is reached, so for a codex-harness agent with an ownsCompaction plugin (the common production setup) sites 4–5 are the lanes that actually run.

Each site has a try/catch that converts a thrown compact() error into a clean { ok: false } result — but a hang (a promise that never settles) is not a throw, so the catch does nothing for it.

Root cause

compactWithSafetyTimeout (src/agents/pi-embedded-runner/compaction-safety-timeout.ts, EMBEDDED_COMPACTION_TIMEOUT_MS = 900_000) does exist and is applied — but only around the native activeSession.compact() call inside compactEmbeddedPiSessionDirectOnce. A plugin engine that owns compaction bypasses delegateCompactionToRuntime and therefore never reaches that wrapper.

Verified: the installed 2026.5.18 dist chunk containing the contextEngine.compact() call sites has zero references to compactWithSafetyTimeout.

Aggravators:

• ContextEngine.compact() (src/context-engine/types.ts) has no abortSignal parameter. A run-level abort (abortRun → activeSession.abortCompaction()) only aborts the native session — a plugin compact() in flight receives no cancellation.
• waitForCompactionRetryWithAggregateTimeout re-arms indefinitely while isCompactionStillInFlight() is true, so its 60 s aggregate timeout degrades to an infinite wait if a compaction_start is never matched by a compaction_end.

The stall

sequenceDiagram
    participant U as User
    participant H as OpenClaw host
    participant E as plugin compact
    participant P as Summarizer provider
    U->>H: message (new turn)
    H->>E: await contextEngine.compact()
    E->>P: summarizer call
    P--xE: rate-limited / unreachable
    E->>P: retry / fallback provider
    P--xE: still failing
    Note over E: minutes of retries and per-call timeouts
    Note over H: no safety timeout — awaits indefinitely
    Note over U: agent is unresponsive

Loading

The plugin-side reasons a compact() can run this long (unbounded sweep loops, a rate-limited summarizer) are tracked at Martian-Engineering/lossless-claw#711. This issue is the host-side half: regardless of why a plugin compact() is slow, OpenClaw must not await it unbounded.

Related host-side gap: compaction hooks

A second, independent host-side gap sits in the same area. The before_compaction and after_compaction plugin hooks have no default timeout: DEFAULT_VOID_HOOK_TIMEOUT_MS_BY_HOOK (src/plugins/hooks.ts) lists only agent_end, and runVoidHook applies a timeout only when one is resolved — so with no table entry and no plugin-supplied hook.timeoutMs, these hooks run fully unbounded.

In the codex agent harness these hooks fire on the strictly serialized notification queue:

flowchart LR
    NQ["codex notification queue<br/>(strictly serialized)"]
    NQ --> E1["item/started: contextCompaction"]
    E1 --> BC["await before_compaction hook"]
    BC --> HUNG["hook hangs — no default timeout"]
    HUNG --> BLOCK["notification queue frozen"]
    BLOCK --> TC["turn/completed never processed"]
    TC --> HANG["the whole agent turn hangs"]
    classDef bad fill:#ffe3e3,stroke:#d00000
    class HUNG,BLOCK,TC,HANG bad

Loading

Environment

• OpenClaw 2026.5.18 (traced in the installed npm dist; the structure is present across 2026.5.x).
• A plugin context engine with ownsCompaction: true installed (reproduced with lossless-claw / LCM).

Reproduction

1. Install a context-engine plugin that sets ownsCompaction: true (e.g. lossless-claw).
2. Configure its summarizer to a model/provider that is slow or rate-limited.
3. Drive a long session past the compaction threshold, or hit max-token overflow to force compaction.
4. The plugin's compact() runs slowly; the host awaits it with no timeout; the agent turn never returns.

Expected vs actual

• Expected: plugin-owned compaction is bounded by the same safety timeout as native compaction; on timeout the host fails the compaction cleanly (surfacing an error and/or falling back) instead of hanging the turn.
• Actual: no timeout on any of the five plugin lanes; the turn hangs until the 48 h run timeout, which itself cannot abort the plugin call.

Fix

• compact() no-timeout (this issue): PR fix(agents): bound plugin-owned context-engine compaction with a safety timeout #84083 — adds a compactContextEngineWithSafetyTimeout helper and wraps all five ownsCompaction compact() call sites; adds an optional abortSignal to the ContextEngine.compact() contract and threads the run abort signal through. The helper is shared with the codex extension via the openclaw/plugin-sdk/agent-harness-runtime surface (one implementation, no copy-paste).
• Compaction-hook no-timeout (the related gap): PR fix(plugins): add default timeout for before_compaction/after_compaction hooks #84153 — adds before_compaction / after_compaction default entries (30 s) to DEFAULT_VOID_HOOK_TIMEOUT_MS_BY_HOOK.

Related

• Telegram DM stalls behind embedded auto-compaction session #83765 — Telegram DM stalls behind embedded auto-compaction session — likely a user-facing symptom of this.
• Timeout-compaction doesn't escalate when compaction fails to reduce context #64962 — Timeout-compaction doesn't escalate when compaction fails to reduce context.
• Session lock stuck in 'processing' after context overflow compaction succeeds #70334 — Session lock stuck in 'processing' after context overflow compaction succeeds.
• Overflow recovery should truncate tool results before waiting full auto-compaction timeout #81182 — Overflow recovery should truncate tool results before waiting full auto-compaction timeout.
• feat(context-engine): add interceptCompaction contract for context-engine plugins #81164 — the in-flight interceptCompaction work wires an abort-aware path for the separate codex session_before_compact intercept lane (the interceptsCompaction capability). This issue concerns the ownsCompaction queued/overflow/timeout lanes, which that work does not cover.
• Compaction stall: LCM's compactFullSweep and compactUntilUnder are unbounded — a compaction can hang the agent for ~20 minutes Martian-Engineering/lossless-claw#711 — the LCM-side half (unbounded compactFullSweep / compactUntilUnder).

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
Keep open: current main still awaits plugin-owned ContextEngine.compact() directly on the reported host and Codex harness lanes, and the issue is paired with an open fixing PR that should be reviewed and landed before the issue closes.

Reproducibility: yes. Source inspection gives a high-confidence path: configure an ownsCompaction engine whose compact() never resolves, then trigger queued/manual, timeout-recovery, overflow-recovery, or Codex-owned compaction; current main awaits that promise directly. I did not run a live wedged plugin in this read-only review.

Next step
The concrete repair path is already represented by the open linked PR, so ClawSweeper should not queue a duplicate fix branch from this issue.

Review details

Best possible solution:

Land a reviewed fix that reuses the existing compaction safety timeout for every plugin-owned compact() path and adds cooperative abort support without requiring existing context-engine plugins to change.

Do we have a high-confidence way to reproduce the issue?

Yes. Source inspection gives a high-confidence path: configure an ownsCompaction engine whose compact() never resolves, then trigger queued/manual, timeout-recovery, overflow-recovery, or Codex-owned compaction; current main awaits that promise directly. I did not run a live wedged plugin in this read-only review.

Is this the best way to solve the issue?

Yes. The narrow maintainable solution is to apply the existing compaction timeout pattern to plugin-owned compact() calls and thread an optional abort signal so cooperative engines can stop their own work.

Label justifications:

• P1: A plugin-owned compaction promise that never settles can leave an interactive agent workflow unresponsive during a turn.
• impact:crash-loop: The report is about agent availability and hangs during compaction, even though the process may not literally crash.
• impact:session-state: The failure occurs inside session compaction and retry handling, leaving the active session lane blocked behind in-flight work.

What I checked:

• Queued compaction direct await: Current main calls contextEngine.compact(...) directly in the queued/manual compaction lane without compactWithSafetyTimeout or an abort signal parameter. (src/agents/pi-embedded-runner/compact.queued.ts:179, b7ba7c3f2a1e)
• Timeout recovery direct await: Current main calls contextEngine.compact(...) directly in timeout-triggered recovery, so a never-settling plugin promise would block before the catch can run. (src/agents/pi-embedded-runner/run.ts:1766, b7ba7c3f2a1e)
• Overflow recovery direct await: Current main also awaits contextEngine.compact(...) directly during context-overflow recovery before maintenance and retry handling. (src/agents/pi-embedded-runner/run.ts:1941, b7ba7c3f2a1e)
• Codex owning-engine direct await: The Codex app-server harness routes ownsCompaction engines to compactOwningContextEngine, which directly awaits contextEngine.compact(...). (extensions/codex/src/app-server/compact.ts:82, b7ba7c3f2a1e)
• Codex overflow direct await: The Codex overflow recovery helper calls activeContextEngine.compact(...) directly when an active engine owns compaction. (extensions/codex/src/app-server/run-attempt.ts:2227, b7ba7c3f2a1e)
• ContextEngine compact lacks abort signal: The current ContextEngine.compact contract includes session, budget, target, instructions, and runtime context fields, but no abortSignal. (src/context-engine/types.ts:302, b7ba7c3f2a1e)

Likely related people:

• jalehman: Context-engine history shows Josh Lehman introduced custom context management and later maintained sessionKey, transcript maintenance, and runtime token budget paths around the affected contract. (role: context-engine feature owner; confidence: high; commits: fee91fefceb4, 50cc375c110d, 751d5b7849ca; files: src/context-engine/types.ts, src/agents/pi-embedded-runner/run.ts)
• David Rudduck: Commit f01c41b updated run.ts to guard thrown compact() errors and fire hooks for ownsCompaction engines, which is directly adjacent to the current unbounded direct-await paths. (role: introduced adjacent ownsCompaction behavior; confidence: high; commits: f01c41b27a13; files: src/agents/pi-embedded-runner/run.ts)
• vincentkoc: Vincent Koc split the queued embedded compaction wrapper into compact.queued.ts and also contributed nearby context-engine helper work. (role: recent area contributor; confidence: medium; commits: f1c4e2f11daf, 2988203a5e52; files: src/agents/pi-embedded-runner/compact.queued.ts, src/context-engine/types.ts)
• steipete: Codex app-server file history shows Peter Steinberger introduced and split the Codex harness modules that contain the two Codex-side compaction call sites. (role: Codex harness feature owner; confidence: high; commits: dd26e8c44d4e, 31a0b7bd42a5, 8d72aafdbb8d; files: extensions/codex/src/app-server/compact.ts, extensions/codex/src/app-server/run-attempt.ts)
• Bin Deng: Commit c0cd3c3 added the native session.compact() safety timeout that the plugin-owned lanes do not currently share. (role: native safety-timeout introducer; confidence: medium; commits: c0cd3c3c088e; files: src/agents/pi-embedded-runner/compaction-safety-timeout.ts, src/agents/pi-embedded-runner/compact.ts)

Remaining risk / open question:

• Closing before fix(agents): bound plugin-owned context-engine compaction with a safety timeout #84083 merges would lose the canonical tracker for the current-main availability bug.

Codex review notes: model gpt-5.5, reasoning high; reviewed against b7ba7c3f2a1e.

[100yenadmin]

Companion LCM-side issue: Martian-Engineering/lossless-claw#711 — the compactFullSweep sweep in the lossless-claw plugin is itself unbounded (no iteration cap / wall-clock deadline) and runs synchronously inside assemble(), which is what makes an individual compaction slow. This issue (#84077) is the host-side half: OpenClaw has no timeout to bound a slow plugin-owned compaction. Fixes for both halves are in progress.