bug: Pi session event queue self-wait can hang Gateway at tool calls

[de1tydev]

Summary

OpenClaw 2026.5.22 can deadlock an embedded Pi agent turn at the tool-call boundary. In production this made the Gateway appear active/running while Feishu replies, /health, /status, and openclaw gateway status became intermittently or fully unresponsive. This is a catastrophic Gateway availability bug because one agent turn can effectively starve the main Gateway process.

Impact

• Affected runtime: observed on 2026.5.22.
• Last known stable runtime in this environment: 2026.5.19.
• Channel impact: Feishu WebSocket remained connected at first, but replies and probes stalled.
• Operational impact: systemd still reported active/running, so normal service checks were misleading.

Observed diagnostics

Representative liveness diagnostics from the affected runtime:

liveness warning: reasons=event_loop_delay,event_loop_utilization,cpu
  eventLoopDelayP99Ms=43050.3
  eventLoopUtilization=1
  active=... processing/model_call ... last=model_call:started | ... processing/embedded_run ...

liveness warning: reasons=event_loop_delay,event_loop_utilization,cpu
  eventLoopDelayP99Ms=53888.4
  eventLoopUtilization=1
  active=... processing/tool_call ... last=tool:exec:started

Additional symptoms:

per-chat task exceeded 300000ms cap
Feishu WebSocket reconnects
Gateway HTTP probes time out despite the process still listening on 127.0.0.1:18789

Root cause analysis

The issue appears to be in the 2026.5.22-era Pi embedded session write-lock changes around:

src/agents/pi-embedded-runner/run/attempt.session-lock.ts

The problematic interaction is:

1. installAwaitableSessionEventQueue() wraps _handleAgentEvent() so event handling is represented by / waits on session._agentEventQueue.
2. installSessionExternalHookWriteLock() wraps agent.beforeToolCall and calls waitForSessionEventQueue(session) before taking the write lock.
3. During normal event processing, the current _agentEventQueue entry handles a tool_call event and invokes beforeToolCall.
4. The wrapped beforeToolCall then waits for session._agentEventQueue — which is the same queue promise containing the current event handler.

That creates a self-wait/deadlock:

_handleAgentEvent
  -> _agentEventQueue current entry
    -> _processAgentEvent(tool_call)
      -> agent.beforeToolCall()
        -> waitForSessionEventQueue(session)
          -> waits for current _agentEventQueue entry to complete

The current entry cannot complete because it is waiting inside itself.

Candidate fix

Track the currently executing session event queue entry with AsyncLocalStorage, and make waitForSessionEventQueue(session) return immediately only when it is called from inside that same active session event processing context.

External hook/cleanup/provider paths should still drain pending session events normally.

Minimal patch shape:

const activeSessionEventProcessing = new AsyncLocalStorage<unknown>();

async function waitForSessionEventQueue(session: unknown): Promise<void> {
  // Hooks invoked by the queue entry itself must not wait for that same entry to finish.
  if (activeSessionEventProcessing.getStore() === session) {
    return;
  }
  // existing queue-drain logic...
}

session["_processAgentEvent"] = async function lockedProcessAgentEvent(this: unknown, event: unknown) {
  return await activeSessionEventProcessing.run(session, async () => {
    if (!eventMayReachTranscriptWriters(session, event)) {
      return await original.call(this, event);
    }
    return await params.withSessionWriteLock(async () => await original.call(this, event));
  });
};

Regression test

Add a test that simulates the actual self-wait path:

_handleAgentEvent -> _agentEventQueue -> _processAgentEvent -> beforeToolCall

The test should prove the hook completes and does not time out when invoked from inside the active queue entry, while existing tests should continue to prove external hooks still drain queued session events.

A local candidate fix passed:

node scripts/run-vitest.mjs src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts
# 2 files passed, 66 tests passed

git diff --check -- src/agents/pi-embedded-runner/run/attempt.session-lock.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts
# OK

XDG_DATA_HOME=/home/liao/.hermes/tmp/pnpm-data pnpm build
# OK

Candidate fix commit in fork:

e1765a6dcd fix(agents): avoid session event queue self-wait

Workaround

Rollback Gateway runtime to 2026.5.19 and restart externally. In this environment the 5.19 rollback restored:

openclaw gateway status: OK
/health: 200
/status: 200
Feishu WS: ready

If config was written by 2026.5.22, 5.19 may refuse startup with exit 78. For an intentional rollback/recovery window, the service needs:

OPENCLAW_ALLOW_OLDER_BINARY_DESTRUCTIVE_ACTIONS=1

This should be treated as a recovery-only workaround, not a long-term fix.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed May 24, 2026, 11:43 AM ET / 15:43 UTC.

Summary
Keep open: current main still has the queue-drain-before-hook-lock path described in the report, and the latest release has the same session-lock implementation for the inspected files. The issue is a narrow, source-backed Gateway availability bug with clear fix and regression-test boundaries.

Reproducibility: yes. source-level reproduction is high-confidence: simulate _handleAgentEvent -> _agentEventQueue -> _processAgentEvent -> beforeToolCall and the wrapped hook will wait on the active queue entry. I did not run the live Feishu/Pi environment in this read-only review.

Next step
This is a narrow, source-backed availability bug with clear implementation and regression-test files, but it should remain open until a fix merges.

Review details

Best possible solution:

Land a focused fix that skips waiting only when a hook is running inside the same active session event queue entry, while preserving queue-drain behavior for external hooks, cleanup, and provider paths.

Do we have a high-confidence way to reproduce the issue?

Yes, source-level reproduction is high-confidence: simulate _handleAgentEvent -> _agentEventQueue -> _processAgentEvent -> beforeToolCall and the wrapped hook will wait on the active queue entry. I did not run the live Feishu/Pi environment in this read-only review.

Is this the best way to solve the issue?

Yes, the best fix is a narrow active-event-queue guard, such as the reporter's AsyncLocalStorage-shaped proposal, because external hooks still need to drain pending session events normally.

Remaining risk / open question:

• This sweep did not run a live Gateway/Feishu/Pi reproduction, so the proof is source-level plus the reporter's production diagnostics rather than an observed current-main hang.

Codex review notes: model gpt-5.5, reasoning high; reviewed against c643370fd85b.

Label changes

Label changes:

• add P1: The reported hang can block Gateway replies and health/status probes during normal tool-call processing.
• add impact:crash-loop: The issue concerns Gateway availability and liveness where the process remains running but becomes unresponsive.
• add impact:message-loss: The issue says Feishu replies stalled while the Gateway was stuck at the tool-call boundary.
• add issue-rating: 🦞 diamond lobster: Current issue advisory state selects this label.
• add clawsweeper:source-repro: Current issue advisory state selects this label.
• add clawsweeper:queueable-fix: Current issue advisory state selects this label.
• add clawsweeper:fix-shape-clear: Current issue advisory state selects this label.

Label justifications:

• P1: The reported hang can block Gateway replies and health/status probes during normal tool-call processing.
• impact:crash-loop: The issue concerns Gateway availability and liveness where the process remains running but becomes unresponsive.
• impact:message-loss: The issue says Feishu replies stalled while the Gateway was stuck at the tool-call boundary.

Evidence reviewed

Acceptance criteria:

• node scripts/run-vitest.mjs src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts
• git diff --check -- src/agents/pi-embedded-runner/run/attempt.session-lock.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts

What I checked:

• Current-main queue wait: waitForSessionEventQueue() repeatedly awaits the session's current _agentEventQueue promise when one exists, with no same-queue active-event exemption. (src/agents/pi-embedded-runner/run/attempt.session-lock.ts:492, c643370fd85b)
• Current-main hook ordering: installLockableFunction() awaits waitBeforeLock before entering withSessionWriteLock, and beforeToolCall wires that wait to waitForSessionEventQueue(session). (src/agents/pi-embedded-runner/run/attempt.session-lock.ts:115, c643370fd85b)
• Current tests cover external drain, not self-wait: The adjacent test proves external beforeToolCall drains queued session events, but the inspected coverage does not simulate _handleAgentEvent -> _agentEventQueue -> _processAgentEvent -> beforeToolCall re-entering the same queue entry. (src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts:1131, c643370fd85b)
• Latest release has the same inspected implementation: There is no diff between v2026.5.22 and current HEAD for the session-lock source or test files; git show v2026.5.22 shows the same waitForSessionEventQueue/beforeToolCall wiring. (src/agents/pi-embedded-runner/run/attempt.session-lock.ts:492, a374c3a5bfd5)
• History provenance: Blame and symbol history attribute the current session event queue/write-lock helper and its adjacent tests to commit 2cd93f1c0d914c0da598a90d0b82a849fb144fb2. (src/agents/pi-embedded-runner/run/attempt.session-lock.ts:492, 2cd93f1c0d91)
• Vision fit: VISION.md lists bug fixes and stability as a current project priority, which fits a Gateway hang during tool-call processing. (VISION.md:21, c643370fd85b)

Likely related people:

• Peter Steinberger: git blame and git log -S point the current session event queue/write-lock helper and tests to commit 2cd93f1c0d914c0da598a90d0b82a849fb144fb2. (role: introduced behavior; confidence: medium; commits: 2cd93f1c0d91; files: src/agents/pi-embedded-runner/run/attempt.session-lock.ts, src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[Sylaaaaas]

This event-queue self-wait pattern is exacerbated at multi-agent scale. With 83 agents sharing one event loop, any tool-call or model_call queue stall cascades across all agents. Worker-thread isolation for agent dispatch would prevent this cascading. Evidence at #86750.