Stale diagnostic tool_call activity can survive recovery/reset and re-block sessions as blocked_tool_call

[shbernal]

Summary

OpenClaw diagnostics can retain stale native tool-call activity for a session after stuck-session recovery, session reset, or session replacement. Future work on the same sessionKey can then be classified as blocked_tool_call even when the original tool process is no longer running and the affected session transcript has already been reset/archived.

This is narrower than the existing stuck-session umbrella issues: the suspected defect is not just that a session stalls, but that the diagnostic activity tracker can keep an orphaned activeWorkKind=tool_call / activeTool=bash entry long enough to poison later recovery decisions for the same session key.

Environment

• OpenClaw: 2026.5.20 (e510042)
• OS: Linux 7.0.10-arch1-1 x86_64
• Node: v24.11.1
• Gateway: systemd user service, loopback gateway
• Runtime observed: embedded Codex app-server / native tool execution

Observed behavior

A local gateway repeatedly emitted stalled-session diagnostics with this shape, redacted:

stalled session: sessionId=<redacted> sessionKey=<redacted>
  state=processing
  reason=blocked_tool_call
  classification=blocked_tool_call
  activeWorkKind=tool_call
  activeTool=bash
  activeToolAgeMs=<very large>
  lastProgress=<old tool start>
  recovery=checking

The active tool ages were on the order of many hours. The two stale tool ids found in local state resolved only to reset/trajectory archives, not live active sessions. One stale tool was a long foreground bash command that had started a dev server; another was an rg command. At investigation time, there was no matching live process for the dev-server case, and the current gateway stability view showed no active work after recovery.

Recovery later emitted an abort/drain outcome for an embedded run, for example:

stuck session recovery outcome: status=aborted action=abort_embedded_run
  activeWorkKind=embedded_run
  aborted=true drained=true forceCleared=false released=0

The concerning part is that stale native tool activity and embedded-run/reply-run recovery appear to be tracked by separate state paths. If the native tool never emits the matching completion event, or if recovery/reset replaces the session before the completion event is reconciled, the diagnostic tracker can continue to report tool_call as active and drive blocked_tool_call classification for future turns.

Expected behavior

Stuck-session recovery, session reset, and session replacement should clear or reconcile diagnostic active-work state for the affected sessionId/sessionKey, including native tool calls.

After a recovery aborts/drains an embedded run or a session is reset/replaced:

1. stale activeTools entries for the old session/run should not continue to classify later turns as blocked_tool_call;
2. blocked_tool_call should mean there is still an owned active native tool, not just an orphaned diagnostic record;
3. if the original tool cannot be cancelled or observed, the diagnostic state should be explicitly evicted/quarantined with a structured recovery event.

Actual behavior

A stale activeTool=bash record can remain associated with a session key for many hours, repeatedly producing session.stalled with classification=blocked_tool_call. Recovery can abort/drain the embedded run but does not clearly guarantee that stale native tool activity for the session key is cleared.

Source-level suspect

Relevant current source paths:

• src/logging/diagnostic-run-activity.ts
  • recordToolStarted adds native tools to activeTools.
  • recordToolEnded removes them.
  • recordRunCompleted clears active tools/model calls/embedded runs.
  • markDiagnosticEmbeddedRunEnded can clear run activity, but callers can opt out.
• src/auto-reply/reply/reply-run-registry.ts
  • markReplyRunDiagnosticWorkEnded calls markDiagnosticEmbeddedRunEnded(..., clearRunActivity: false).
• src/logging/diagnostic-session-attention.ts
  • stale tool_call activity is classified as blocked_tool_call.
• src/logging/diagnostic.ts
  • isBlockedToolCallRecoveryEligible allows recovery once the blocked tool call crosses the abort threshold.
• src/logging/diagnostic-stuck-session-recovery.runtime.ts
  • recovery can abort active embedded work, but the cleanup contract for orphaned native tool activity is not obvious from the observed outcome.

The missing primitive may be something like a targeted diagnostic cleanup/reconciliation path, for example clearDiagnosticSessionActivity({ sessionId, sessionKey, reason }), called when recovery aborts/drains a run, when a session is reset/replaced, and when a diagnostic tool-call owner is no longer present.

Suggested fix shape

1. Add a diagnostic activity cleanup primitive that removes or quarantines all active tool/model/embedded-run state for a given sessionId and/or sessionKey.
2. Call it from stuck-session recovery when reason=blocked_tool_call recovery aborts/drains a run or determines the owner is gone.
3. Call it from session reset/replacement paths after the old session is archived or superseded.
4. Add regression coverage for:
   • native tool_call starts and never emits completion;
   • session is reset/replaced or embedded recovery aborts/drains;
   • later work on the same sessionKey is not classified as blocked_tool_call from the old tool;
   • genuine active native tools still classify as blocked until completion/abort.
5. Emit a structured diagnostic event when stale tool activity is evicted, so operators can distinguish a real running tool from recovered stale state.

Related issues

This is a narrow follow-up to prior stuck-session/recovery work rather than a duplicate:

• [Bug]: Stuck processing sessions are detected but never aborted — gateway requires external restart to recover #71127 - canonical stuck-session recovery issue, now closed after base recovery landed.
• Stuck session ghost blocks event loop, causes CLI timeout and sustained high CPU (11.5hr+) #77115 - ghost session / stale activity family; comments discuss stale model_call and tool_call recovery gaps.
• [Bug]: Stuck Session Recovery 机制双重失效 + Session 预处理每次耗时过长 #76038 - stuck-session recovery skip/no-op cases and active-work recovery policy.
• A single stalled agent session blocks the entire Gateway event loop (isolation failure) #84903 - stalled session isolation failure and stale diagnostic activity affecting gateway health.
• High CPU, extreme control-plane RPC latency, and unstable polling after upgrade from 2026.4.24 to 2026.4.29/2026.5.2 #76562 - broad gateway pressure issue; includes reports of blocked_tool_call / hung tool calls contributing to gateway instability.
• Codex app-server emits notification:turn/started then goes silent; embedded run wedges for the full stuck-session recovery window #85251 and Diagnostic recovery aborts active embedded runs after terminal-looking app-server progress #85532 - related embedded-run abort/recovery behavior, but focused more on app-server/embedded progress semantics than orphaned native tool-call state.

Impact

A single orphaned native tool diagnostic record can keep a session lane looking blocked long after the original command is gone. The user-visible effect is delayed or lost replies, repeated stalled-session logs, and confusing recovery outcomes that make the gateway appear to still be blocked by bash when there is no corresponding live tool process.

[WarrenJones]

I'll work on this. Let me investigate and submit a fix.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed May 27, 2026, 10:27 AM ET / 14:27 UTC.

Summary
Keep open: current main has partial blocked-tool recovery, but the reported ownerless diagnostic activity cleanup gap still appears actionable from source inspection and can affect session state and reply delivery.

Reproducibility: yes. source inspection gives a high-confidence path: start a diagnostic tool call, miss its terminal event, then reset/recover without a diagnostic cleanup primitive and later classify the same session key from the stale activeTools entry. I did not run a live gateway scenario in this read-only review.

Next step
This is a bounded core diagnostics repair candidate with clear likely files and regression tests; check for a new WarrenJones PR before promoting duplicate work.

Review details

Best possible solution:

Add a targeted diagnostic activity reconciliation primitive and invoke it from owner-gone recovery and reset/replacement paths, while preserving real active tool blocking until completion or abort.

Do we have a high-confidence way to reproduce the issue?

Yes, source inspection gives a high-confidence path: start a diagnostic tool call, miss its terminal event, then reset/recover without a diagnostic cleanup primitive and later classify the same session key from the stale activeTools entry. I did not run a live gateway scenario in this read-only review.

Is this the best way to solve the issue?

Yes, the best fix is a narrow internal cleanup/reconciliation path for diagnostic activity, not a new config knob or blanket clearing policy. It should be called only when reset/recovery has retired or proven absence of the old owner, with tests that genuine active tools still block.

AGENTS.md: found and applied where relevant.

Remaining risk / open question:

• I did not run a live gateway reproduction; the fix should include focused regression tests and avoid clearing genuine active native tools that are still owned by a live embedded run.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 5bf1f168d403.

Label changes

Label changes:

• add P1: A stale diagnostic tool-call record can keep an agent session lane blocked and delay or lose user replies until recovery or restart.
• add impact:message-loss: The observed user impact includes delayed or lost replies when later work is classified as blocked by an orphaned tool call.
• add impact:session-state: The report is about stale diagnostic session/run activity surviving reset or recovery and poisoning later session-state decisions.
• add issue-rating: 🦞 diamond lobster: Current issue advisory state selects this label.
• add clawsweeper:source-repro: Current issue advisory state selects this label.
• add clawsweeper:queueable-fix: Current issue advisory state selects this label.
• add clawsweeper:fix-shape-clear: Current issue advisory state selects this label.

Label justifications:

• P1: A stale diagnostic tool-call record can keep an agent session lane blocked and delay or lose user replies until recovery or restart.
• impact:session-state: The report is about stale diagnostic session/run activity surviving reset or recovery and poisoning later session-state decisions.
• impact:message-loss: The observed user impact includes delayed or lost replies when later work is classified as blocked by an orphaned tool call.

Evidence reviewed

Acceptance criteria:

• node scripts/run-vitest.mjs src/logging/diagnostic.test.ts src/logging/diagnostic-session-attention.test.ts src/logging/diagnostic-stuck-session-recovery.runtime.test.ts
• node scripts/run-vitest.mjs src/auto-reply/reply/session-reset-cleanup.test.ts src/auto-reply/reply/reply-run-registry.test.ts src/auto-reply/reply/agent-runner-session-reset.test.ts

What I checked:

• Current diagnostic tool tracking keeps active tools until an end/completion path runs: recordToolStarted stores native tools in activeTools, recordToolEnded removes only matching terminal tool events, and snapshots prefer tool_call whenever the map is non-empty. (src/logging/diagnostic-run-activity.ts:179, 5bf1f168d403)
• Embedded-run end can clear tools, but callers may opt out: markDiagnosticEmbeddedRunEnded clears tools/model calls unless clearRunActivity: false; reply-run diagnostic ownership uses that opt-out, so not every ended owner reconciles native tool state. (src/logging/diagnostic-run-activity.ts:267, 5bf1f168d403)
• Stale active tool activity is still classified as blocked tool work: The session attention classifier returns blocked_tool_call for stale tool_call activity, while the special ownerless recovery branch is limited to idle queued sessions. (src/logging/diagnostic-session-attention.ts:33, 5bf1f168d403)
• Recovery can report no active work without clearing diagnostic activity: When recovery finds no active embedded run and no lane release, it returns status=noop action=none reason=no_active_work; this path does not call any diagnostic activity cleanup primitive. (src/logging/diagnostic-stuck-session-recovery.runtime.ts:303, 5bf1f168d403)
• Session reset cleanup clears queues/system events but not diagnostic run activity: Reset cleanup drains session queues and system events; gateway reset calls it before aborting active embedded runs, but there is no matching diagnostic activity reconciliation for an already-orphaned native tool record. (src/auto-reply/reply/session-reset-cleanup.ts:8, 5bf1f168d403)
• Existing tests prove adjacent behavior but leave the reported processing/reset case open: Current tests cover active-run aborts and idle queued ownerless tool activity; the classifier test also documents that processing ownerless activity is not treated as recoverable, which matches the issue's remaining gap. (src/logging/diagnostic-session-attention.test.ts:141, 5bf1f168d403)

Likely related people:

• caz0075: Current blame for the diagnostic run activity tracker, blocked-tool recovery eligibility, and stuck-session recovery runtime points to commit 12e5876. (role: recent area contributor; confidence: high; commits: 12e587690345; files: src/logging/diagnostic-run-activity.ts, src/logging/diagnostic.ts, src/logging/diagnostic-stuck-session-recovery.runtime.ts)
• Peter Steinberger: History search shows earlier stuck-session diagnostic configuration and diagnostics work, including configurable stuck-session warning threshold changes that are adjacent to this recovery surface. (role: adjacent diagnostics history contributor; confidence: medium; commits: 41cc46bbb41c, 68832f203e88; files: src/logging/diagnostic.ts, docs/concepts/agent-loop.md)
• WarrenJones: The issue discussion includes a contributor comment saying they would investigate and submit a fix, so maintainers should check for a paired PR before promoting another repair lane. (role: volunteered follow-up investigator; confidence: low)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[tianxiaochannel-oss88]

Adding a live macOS/Slack recovery data point from OpenClaw 2026.5.28 that narrows the reset/recovery cleanup gap.

Environment:

• OpenClaw CLI/Gateway: 2026.5.28 (e932160)
• OS: macOS arm64
• Channel: Slack, channel-scoped session
• Provider path involved in the original failure: openai / openai-responses

Observed sequence:

1. The active Slack channel session was poisoned by a store-disabled Responses replay failure (Item with id 'rs_[redacted]' not found. Items are not persisted when store is set to false).
2. Running sessions.reset moved the channel binding to a fresh session id, but the old in-memory lane / active embedded work did not appear to be fully retired.
3. After the reset, three Slack messages were accepted but did not get replies; diagnostics showed queued work behind the old lane:

stalled session
reason=active_work_without_progress
classification=stalled_agent_run
activeWorkKind=embedded_run
lastProgress=embedded_run:started
queueDepth=4

4. A later sessions.abort returned an ownerless/no-run result rather than actually aborting the stale work:

{
  "ok": true,
  "abortedRunId": null,
  "status": "no-active-run"
}

5. Restarting the gateway cleared the stale lane and message backlog behavior.

Interpretation:
sessions.reset alone is not sufficient if the old session key/canonical key still has active embedded-run or queue-lane state attached in memory. Reset needs a pre-rotation cleanup/reconciliation step for the affected key/canonicalKey/session id before binding the channel to the new session.

Local workaround shape that recovered this install:

• before performing the normal gateway session reset, resolve the active embedded run by requested key/canonical key/current session id;
• abort/drain it with force-clear semantics when present;
• clear queued lane entries for the requested key, canonical key, old session id, and new binding target as applicable;
• then perform the existing sessions.reset rotation.

After adding an installed-dist hotfix with that shape and restarting the gateway, a real Slack probe and an actual sessions.reset succeeded, created a fresh session, and the post-reset logs no longer emitted new stalled session, queueDepth, or lane task errors.

Suggested source fix shape:

• add/extend a reset cleanup primitive that reconciles active embedded run state and lane queues for sessionId, sessionKey, and canonical key before reset rotation;
• include diagnostic activity cleanup if the owner is gone, matching this issue's existing stale-activity concern;
• add regression coverage for sessions.reset when old active work is detached from the run registry (sessions.abort reports no-active-run) but still blocks the lane and queues later channel messages.