fix(agents): avoid session event queue self-wait

[luoyanglang]

Embedded Pi tool-call processing can self-wait on its own session event queue entry, leaving the Gateway alive but unresponsive to channel replies and health/status probes.

Fixes #86093

Affected surface

• src/agents/pi-embedded-runner/run/attempt.session-lock.ts
  • waitForSessionEventQueue
  • installSessionEventWriteLock
  • installSessionExternalHookWriteLock interaction through beforeToolCall
• src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts

Scope

• Adds a focused active session event processing context.
• Skips waitForSessionEventQueue(session) only when the current hook is already running inside that same session's active event-processing entry.
• Preserves external queue-drain behavior for cleanup, external hooks, provider hooks, and compaction paths.
• No new config, flags, lock policy, timeout policy, or channel-specific behavior.

Prior art / reporter credit

Reporter de1tydev provided the production diagnostics and a candidate fork commit (e1765a6dcd fix(agents): avoid session event queue self-wait). This PR follows that same narrow fix shape and keeps the behavior boundary explicit: self-wait is skipped only for the active same-session event-processing context; all external callers still drain pending session events normally.

Real behavior proof

• Behavior or issue addressed: Embedded Pi tool-call processing no longer waits on the same active session event queue entry from inside beforeToolCall; this addresses the Gateway availability hang reported in bug: Pi session event queue self-wait can hang Gateway at tool calls #86093.

• Real environment tested: Local Linux OpenClaw checkout at PR head 45f14e72b8a3c34197883d8ff86d8b17cfb86442, running the actual TypeScript source module through node --import tsx. This is a runtime helper proof for the session-lock path, not a mocked unit test.

• Exact steps or command run after this patch: OPENCLAW_PR_HEAD=45f14e72b8a3c34197883d8ff86d8b17cfb86442 node --import tsx /tmp/openclaw-pr86123-runtime-proof.mjs

• Evidence after fix: Runtime helper console output from current PR head:

  [OpenClaw #86123 runtime helper proof] head=45f14e72b8a3c34197883d8ff86d8b17cfb86442
  [OpenClaw #86123 runtime helper proof] startedAt=2026-05-24T16:32:00.490Z
  [OpenClaw #86123 runtime helper proof] behavior=session event hook self-wait guard
  [OpenClaw #86123 runtime helper proof] command=node --import tsx /tmp/openclaw-pr86123-runtime-proof.mjs
  [OpenClaw #86123 runtime helper proof] outcome=completed
  [OpenClaw #86123 runtime helper proof] events=["process:tool_call","hook-lock","hook","process:end"]
  

  Current-head runtime helper refresh after the active-state follow-up:

  $ OPENCLAW_PR_HEAD=5fb473b48e875f41c8521adf8218f16cf5abb798 node --import tsx /tmp/openclaw-pr86123-runtime-proof-current.mjs
  [OpenClaw #86123 runtime helper proof] head=5fb473b48e875f41c8521adf8218f16cf5abb798
  [OpenClaw #86123 runtime helper proof] command=node --import tsx /tmp/openclaw-pr86123-runtime-proof-current.mjs
  [OpenClaw #86123 runtime helper proof] scenario=active-same-session-event-hook outcome=completed
  [OpenClaw #86123 runtime helper proof] activeEvents=["process:tool_call","hook-lock","hook","process:end"]
  [OpenClaw #86123 runtime helper proof] scenario=detached-async-hook-after-event outcome=waited-then-completed
  [OpenClaw #86123 runtime helper proof] detachedEvents=["process:tool_call","process:end","queue-drained","hook-lock","hook"]
  

  Supplemental RED/GREEN regression:

  $ node scripts/run-vitest.mjs run --config test/vitest/vitest.agents-pi-embedded.config.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts -t "does not wait on the session event queue"
  
  RED before implementation:
  FAIL src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts > embedded attempt session lock lifecycle > does not wait on the session event queue from a hook running during active event processing
  AssertionError: expected 'timeout' to be 'done'
  
  GREEN after implementation:
  Test Files  1 passed (1)
  Tests  1 passed | 32 skipped (33)
  Duration  1.45s
  

• Observed result after fix: The actual current-head session-lock module completed the active event-processing hook path within the 250ms guard and produced events=["process:tool_call","hook-lock","hook","process:end"], showing the hook lock ran without waiting on the pending _agentEventQueue entry. Before the fix, the same regression path timed out.

• What was not tested: I did not run a live Feishu/Gateway production reproduction or a full Pi model/tool-call turn against an external provider. The live production evidence remains the reporter's redacted diagnostics in bug: Pi session event queue self-wait can hang Gateway at tool calls #86093; this PR adds current-head source/runtime proof for the exact lock path.

Targeted test output

Full targeted file:

$ node scripts/run-vitest.mjs run --config test/vitest/vitest.agents-pi-embedded.config.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts

Test Files  1 passed (1)
Tests  33 passed (33)
Duration  3.58s

Changed checks:

$ pnpm check:changed --base origin/main
[check:changed] lanes=core, coreTests
[check:changed] src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts: core test
[check:changed] src/agents/pi-embedded-runner/run/attempt.session-lock.ts: core production
...
Import cycle check: 0 runtime value cycle(s).
exit 0

Additional local checks:

$ git diff --check origin/main..HEAD
exit 0

$ node scripts/check-no-conflict-markers.mjs
exit 0

$ gitleaks protect --staged --redact
no leaks found

Coverage note

Push-before-PR open-PR search on current origin/main (5a8ce6a88572552dc7cbc1e5b9b9920d8378789d) found no competing fix:

gh search prs --repo openclaw/openclaw --state open "Fixes #86093" => []
gh search prs --repo openclaw/openclaw --state open "#86093" => []
gh search prs --repo openclaw/openclaw --state open "waitForSessionEventQueue" => []
gh search prs --repo openclaw/openclaw --state open "attempt.session-lock.ts beforeToolCall" => []
gh search prs --repo openclaw/openclaw --state open "session event queue self-wait" => []

Recent main commits touch nearby embedded session-lock behavior, but none cover this same active queue-entry self-wait. This PR deliberately avoids broad lock lifecycle changes and keeps the fix at the event queue ownership boundary.

[clawsweeper]

Codex review: needs real behavior proof before merge. Reviewed May 27, 2026, 3:37 PM ET / 19:37 UTC.

Summary
The PR adds an AsyncLocalStorage-backed active session-event context around embedded event handling, routes agent hook waits through that guard, and adds regression tests for active and detached hook queue behavior.

PR surface: Source +39, Tests +141. Total +180 across 2 files.

Reproducibility: yes. Source inspection and the added regression tests model the _handleAgentEvent -> _agentEventQueue -> _processAgentEvent -> beforeToolCall self-wait path, though I did not run a live Gateway reproduction in this read-only review.

Review metrics: 1 noteworthy metric.

• Hook queue-drain paths: 4 hook waits changed, 2 non-hook drains preserved. The diff changes the four agent hook wait paths while compact and cleanup still use the normal queue drain, which is the key concurrency boundary to verify before merge.

Merge readiness
Overall: 🦐 gold shrimp
Proof: 🦐 gold shrimp
Patch quality: 🦞 diamond lobster
Result: blocked until stronger real behavior proof is added.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Rank-up moves:

• Add redacted current-head terminal or live proof for 552c794 covering active same-session hook completion and detached hook queue draining.

Proof guidance:
Needs stronger real behavior proof before merge: Insufficient: the PR body contains terminal proof for older heads, but the latest head 552c794 needs redacted current-head terminal/live proof; updating the PR body should trigger re-review, or a maintainer can comment @clawsweeper re-review. After adding proof, update the PR body; ClawSweeper should re-review automatically. If it does not, the PR author or someone with repository write access can comment @clawsweeper re-review.

Risk before merge

• The PR body proof is for older heads, so reviewers still need redacted current-head terminal/live proof or maintainer-owned verification for 552c794.
• The changed boundary controls when session hook work bypasses or drains the per-session event queue; a wrong guard could either skip needed queue drains for detached work or reintroduce the Gateway hang.

Maintainer options:

1. Refresh Exact-Head Proof (recommended)
   Ask for redacted terminal or live proof from head 552c794 covering active same-session hook completion and detached hook queue draining.
2. Maintainer-Owned Verification
   A maintainer can replace contributor proof by running the targeted session-lock test plus a small current-head runtime probe and recording that verification before landing.

Next step before merge
The remaining action is current-head proof or maintainer-owned verification, not a narrow code repair for an automated worker.

Security
Cleared: The diff only changes TypeScript session-lock logic and tests; it does not add dependencies, workflows, package metadata, secret handling, or other supply-chain surface.

Review details

Best possible solution:

Land the narrow active-event guard after exact-head verification confirms active hooks complete and detached, cleanup, and external hook paths still drain correctly.

Do we have a high-confidence way to reproduce the issue?

Yes. Source inspection and the added regression tests model the _handleAgentEvent -> _agentEventQueue -> _processAgentEvent -> beforeToolCall self-wait path, though I did not run a live Gateway reproduction in this read-only review.

Is this the best way to solve the issue?

Yes, with a proof gate. The proposed same-session active-event guard is the narrow maintainable fix, but it should not merge until exact-head proof or maintainer-owned verification covers both bypass and drain behavior.

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 90f30075aa72.

Label changes

Label justifications:

• P1: The linked report describes a production Gateway hang at the tool-call boundary that can break agent and channel responsiveness for real users.
• merge-risk: 🚨 session-state: The PR changes when session event hook work waits for or bypasses the per-session event queue.
• merge-risk: 🚨 availability: The affected failure mode can leave the Gateway alive but unresponsive to replies and health/status probes.
• rating: 🦐 gold shrimp: Overall readiness is 🦐 gold shrimp; proof is 🦐 gold shrimp and patch quality is 🦞 diamond lobster.
• status: 📣 needs proof: The PR needs real behavior proof before ClawSweeper can clear the contributor ask. Needs stronger real behavior proof before merge: Insufficient: the PR body contains terminal proof for older heads, but the latest head 552c794 needs redacted current-head terminal/live proof; updating the PR body should trigger re-review, or a maintainer can comment @clawsweeper re-review. After adding proof, update the PR body; ClawSweeper should re-review automatically. If it does not, the PR author or someone with repository write access can comment @clawsweeper re-review.

Evidence reviewed

PR surface:

Source +39, Tests +141. Total +180 across 2 files.

View PR surface stats

Area	Files	Added	Removed	Net
Source	1	47	8	+39
Tests	1	141	0	+141
Docs	0	0	0	0
Config	0	0	0	0
Generated	0	0	0	0
Other	0	0	0	0
Total	2	188	8	+180

What I checked:

• Current main self-wait path: On current main, external agent hooks call waitForSessionEventQueue(session) before taking the write lock, which can self-wait when a hook is invoked from the active _agentEventQueue entry. (src/agents/embedded-agent-runner/run/attempt.session-lock.ts:748, 90f30075aa72)
• PR active-context guard: The PR head adds a mutable same-session active event-processing context and clears it in finally so detached async hook work does not inherit the bypass after the event returns. (src/agents/embedded-agent-runner/run/attempt.session-lock.ts:77, 552c794395e7)
• PR hook wait boundary: The PR routes the four agent hook waits through waitForSessionEventQueueBeforeHook while compact and cleanup paths remain on the normal queue-drain path. (src/agents/embedded-agent-runner/run/attempt.session-lock.ts:691, 552c794395e7)
• Regression coverage: The new tests cover active same-session hook completion without self-wait and detached async hook work waiting for queue drain after event processing returns. (src/agents/embedded-agent-runner/run/attempt.session-lock.test.ts:1192, 552c794395e7)
• Proof is stale for the latest head: The PR body proof names older heads 45f14e7 and 5fb473b, while the live PR head is 552c794 after later force-pushes. (552c794395e7)
• Current checks snapshot: At inspection time, the latest head had many successful checks and a Real behavior proof check marked success, but some current-head checks were still in progress and the public PR proof text remained tied to older heads. (552c794395e7)

Likely related people:

• Vincent Koc: git blame attributes waitForSessionEventQueue and the external hook queue-drain setup to the earlier pi-embedded runner history in this checkout. (role: source-history owner signal; confidence: medium; commits: 5c20ff93e07d; files: src/agents/embedded-agent-runner/run/attempt.session-lock.ts)
• Peter Steinberger: bb46b79 internalized the runner path into embedded-agent-runner, and the latest PR head was committed by steipete. (role: recent area contributor and PR branch committer; confidence: high; commits: bb46b79d3c14, 552c794395e7; files: src/agents/embedded-agent-runner/run/attempt.session-lock.ts, src/agents/embedded-agent-runner/run/attempt.session-lock.test.ts)

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[clawsweeper]

ClawSweeper PR egg

🎁 Pass real behavior proof to wake the egg and unlock a hatchable treat.

Where did the egg go?

• The egg game starts only after the PR passes the real-behavior proof check.
• Before that, no creature or rarity is rolled. The treat waits for real proof.
• This is still just collectible flavor: proof affects review readiness, not creature quality.

[luoyanglang]

@clawsweeper re-review

Addressed the P2 finding in head 5fb473b48e.

Maintenance summary:

• Changed activeSessionEventProcessing from a session-only AsyncLocalStorage value to a mutable { session, active } state.
• waitForSessionEventQueue() now skips only while the same-session event entry is actively processing.
• _processAgentEvent clears active in finally, so async work spawned during event processing no longer inherits a stale queue-drain bypass after the event returns.
• Added regression coverage proving detached async hook work waits for the queued session event drain after event processing returns.

RED/GREEN and local validation:

• RED before fix: node scripts/run-vitest.mjs run --config test/vitest/vitest.agents-pi-embedded.config.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts -t "drains queued session events for async hook work" failed with expected 'done' to be 'waiting'.
• GREEN targeted: same command -> 1 passed / 33 skipped.
• Full session-lock suite: node scripts/run-vitest.mjs run --config test/vitest/vitest.agents-pi-embedded.config.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts -> 34 passed.
• pnpm check:changed --base origin/main -> passed.
• git diff --check origin/main..HEAD -> passed.
• node scripts/check-no-conflict-markers.mjs -> passed.
• gitleaks protect --staged --redact -> no leaks found.

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26386522469
• Updated: 2026-05-25T06:29:58.506Z

[luoyanglang]

@clawsweeper re-review

Updated the PR body with current-head runtime helper proof for head 5fb473b48e875f41c8521adf8218f16cf5abb798 after the active-state follow-up.

The refreshed helper imports the actual TypeScript source module at PR head and covers both sides of the guard:

• active same-session event hook completes without self-wait: activeEvents=["process:tool_call","hook-lock","hook","process:end"]
• async hook work spawned during event processing waits for queue drain after the event returns: detachedEvents=["process:tool_call","process:end","queue-drained","hook-lock","hook"]

No patch code was changed after head 5fb473b48e. The body update is proof-only.

[clawsweeper]

🦞👀
ClawSweeper picked this up.

Command router queued. I will update this comment with the next step.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26381660503
• Updated: 2026-05-25T03:39:36.245Z

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26510524780
• Updated: 2026-05-27T12:29:36.338Z

[steipete]

Backported the merged fix to release/2026.5.27 in ac825a47c6bf5a2d3ff60ac264956396821b6bfb.

Main landed as b789e71e57d9c023e91e8bbb318230bd8d0cb39a.

Release-branch verification after resolving the old pi-embedded path:

• node scripts/run-vitest.mjs run --config test/vitest/vitest.agents-pi-embedded.config.ts src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts -> 40 passed
• node scripts/run-oxlint.mjs --tsconfig config/tsconfig/oxlint.core.json src/agents/pi-embedded-runner/run/attempt.session-lock.test.ts src/agents/pi-embedded-runner/run/attempt.session-lock.ts --threads=8 -> passed
• .agents/skills/autoreview/scripts/autoreview --mode branch --base origin/release/2026.5.27 -> clean, no accepted/actionable findings

Main PR CI: https://github.com/openclaw/openclaw/actions/runs/26533883763

Thanks again @luoyanglang.