Refactor duplicate Codex Responses paths for agent turns and llm.complete

[jalehman]

Summary

OpenClaw currently has two divergent Codex Responses paths that both reach the ChatGPT Codex Responses API but implement request/stream handling differently:

• Normal agent turns use the provider-owned openai-chatgpt-responses implementation in src/llm/providers/openai-chatgpt-responses.ts.
• Plugin/runtime simple completions, including llm.complete, rewrite Codex models through openclaw-openai-responses-transport via src/agents/simple-completion-transport.ts and then use the OpenAI SDK transport in src/agents/openai-transport-stream.ts.

This duplication recently caused a behavior split: normal Codex agent turns continued to work, while plugin llm.complete calls could fail on valid ChatGPT Codex HTTP 200 streams with missing content-type because the generic transport path had stricter header validation.

Why This Matters

The two paths are not merely cosmetic alternatives. They encode different assumptions about:

• ChatGPT Codex URL normalization
• OAuth/header construction
• SSE parsing and error handling
• response validation
• WebSocket/cached-context behavior
• usage and reasoning metadata handling

When those assumptions diverge, fixes in one path may not protect the other. The current incident is a concrete example: the provider-owned Codex path tolerated the observed upstream response shape, while the simple-completion transport path rejected it before the SDK could parse the stream.

Current Evidence

Relevant paths:

• src/llm/providers/openai-chatgpt-responses.ts

  • direct Codex provider implementation for normal agent turns
  • builds https://chatgpt.com/backend-api/codex/responses
  • parses Codex SSE/WebSocket responses itself

• src/agents/simple-completion-transport.ts

  • maps openai + openai-chatgpt-responses simple completions to openclaw-openai-responses-transport
  • normalizes ChatGPT base URLs to the SDK base URL form

• src/agents/openai-transport-stream.ts

  • OpenAI SDK transport path used by the simple-completion alias
  • installs buildGuardedModelFetch(model) as the SDK fetch implementation

• src/agents/provider-transport-fetch.ts

  • generic guarded fetch and response validation used by the OpenAI SDK transport path

Proposed Refactor Direction

Do not attempt this as part of a narrow incident fix. The immediate production fix should remain scoped to the broken validation behavior.

For follow-up refactoring, investigate one of these shapes:

1. Route Codex simple completions through the provider-owned Codex simple stream path where possible.
2. Extract shared Codex request/response handling so normal turns and llm.complete share URL/header/validation/SSE contracts.
3. Keep separate entry points, but move the duplicated protocol assumptions into a small shared Codex transport contract with tests covering both call paths.

Acceptance Criteria

• Normal agent Codex turns and plugin llm.complete Codex calls share the same documented response validation contract.
• Tests cover missing content-type, explicit HTML, valid SSE, and valid JSON fallback behavior where applicable.
• The refactor does not regress OAuth account-id handling, ChatGPT Codex base URL normalization, websocket/cached-context behavior, or simple completion auth injection.
• The immediate incident fix remains independently small and does not depend on completing this refactor.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed June 4, 2026, 2:13 AM ET / 06:13 UTC.

Summary
Keep open: current main still has the two Codex Responses paths described, and the maintainer label makes this a human-owned refactor decision rather than conservative cleanup.

Reproducibility: yes. for the architecture claim: source inspection shows normal Codex turns use the provider-owned Codex stream while plugin llm.complete resolves through simple-completion runtime and the SDK transport alias. No live upstream failure was reproduced in this read-only review.

Next step
Not queued because the protected maintainer label and multi-path Codex transport ownership question require human maintainer review before automation.

Review details

Best possible solution:

Land a maintainer-approved refactor that gives agent turns and llm.complete one shared Codex response-validation and URL/header contract, with regression coverage for missing content-type, HTML, SSE, JSON fallback, OAuth account ids, WebSocket cache behavior, and simple-completion auth injection.

Do we have a high-confidence way to reproduce the issue?

Yes for the architecture claim: source inspection shows normal Codex turns use the provider-owned Codex stream while plugin llm.complete resolves through simple-completion runtime and the SDK transport alias. No live upstream failure was reproduced in this read-only review.

Is this the best way to solve the issue?

Unclear as an implementation path: the issue lists several plausible refactor shapes, and maintainers need to choose the owner boundary before code changes. The best solution should consolidate the shared Codex contract without coupling this larger refactor to the narrow incident fix.

AGENTS.md: found and applied where relevant.

Remaining risk / open question:

• The refactor crosses Codex OAuth/account-id headers, ChatGPT base URL normalization, SDK stream validation, WebSocket cached-context behavior, and plugin auth injection, so a one-sided cleanup could break existing Codex or plugin completion flows.
• No live upstream reproduction was run in this read-only review; the keep-open decision is based on source, tests, issue context, and sibling Codex source inspection.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 1c0fb5768bee.

Label changes

Label changes:

• add P2: This is a normal-priority core runtime cleanup tied to a real Codex/provider divergence, but the issue explicitly keeps the immediate production fix separate.
• add impact:auth-provider: The requested refactor is about Codex provider routing, OpenAI auth headers, model transport selection, and plugin llm.complete provider behavior.
• add issue-rating: 🦞 diamond lobster: Current issue advisory state selects this label.
• add clawsweeper:source-repro: Current issue advisory state selects this label.
• add clawsweeper:no-new-fix-pr: Current issue advisory state selects this label.
• add clawsweeper:needs-product-decision: Current issue advisory state selects this label.

Label justifications:

• P2: This is a normal-priority core runtime cleanup tied to a real Codex/provider divergence, but the issue explicitly keeps the immediate production fix separate.
• impact:auth-provider: The requested refactor is about Codex provider routing, OpenAI auth headers, model transport selection, and plugin llm.complete provider behavior.

Evidence reviewed

What I checked:

• Protected label: The GitHub context shows the issue is open with the protected maintainer label, so this review should not auto-close it even if parts of the report are stale or partially addressed.
• Provider-owned Codex agent path remains separate: Normal Codex agent turns still enter the provider-owned streamOpenAICodexResponses path, build Codex-specific auth/account headers, and later fetch resolveCodexUrl(model.baseUrl) directly. (src/llm/providers/openai-chatgpt-responses.ts:192, 1c0fb5768bee)
• Provider-owned simple stream exists but is not the llm.complete route: The provider exports streamSimpleOpenAICodexResponses, but current llm.complete preparation does not route Codex simple completions through it. (src/llm/providers/openai-chatgpt-responses.ts:446, 1c0fb5768bee)
• Plugin llm.complete uses simple completion runtime: The plugin runtime calls prepareSimpleCompletionModelForAgent and then completeWithPreparedSimpleCompletionModel, which prepares a simple-completion model before calling the generic completion stream. (src/plugins/runtime/runtime-llm.runtime.ts:419, 1c0fb5768bee)
• Codex simple completions still map to SDK transport alias: prepareCodexSimpleTransportModel rewrites openai/openai-chatgpt-responses to openclaw-openai-responses-transport and registers createOpenClawTransportStreamFnForModel, matching the duplicate path described in the issue. (src/agents/simple-completion-transport.ts:52, 1c0fb5768bee)
• Generic SDK transport owns the stricter validation: The OpenAI SDK transport fetch path still checks streamed responses against text/event-stream or JSON content types and throws invalid_provider_content_type when a successful streamed response has another or missing content type. (src/agents/provider-transport-fetch.ts:231, 1c0fb5768bee)

Likely related people:

• steipete: Local blame for the central Codex simple transport, provider-owned Codex stream, plugin llm.complete call site, and generic content-type validation points to Peter Steinberger in the available checkout history; the history is somewhat shallow/grafted, so this is a routing signal rather than blame. (role: recent area contributor; confidence: medium; commits: e1db0f01fe88, 1c0fb5768bee; files: src/agents/simple-completion-transport.ts, src/agents/provider-transport-fetch.ts, src/llm/providers/openai-chatgpt-responses.ts)
• jalehman: The issue body provides the current split-path analysis, affected files, and acceptance criteria for the follow-up refactor, making them a useful context owner even though this review did not tie them to merged code history. (role: reporter and refactor proposer; confidence: low; files: src/llm/providers/openai-chatgpt-responses.ts, src/agents/simple-completion-transport.ts, src/agents/openai-transport-stream.ts)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.