fix(agents): don't fail CLI turn when the native harness owns compaction

[solomonneas]

AI-assisted: built with Codex (GPT-5.5) and Claude (Opus 4.8). Human-run real behavior proof from a self-hosted gateway is included below.

Summary

Budget/auto-triggered compaction on a Codex-backed session calls the Codex app-server, which owns automatic compaction and returns a successful no-op ({ ok: true, compacted: false, reason: "codex app-server owns automatic compaction" }, the behavior added in #86772). The host lifecycle runCliTurnCompactionLifecycle in src/agents/command/cli-compaction.ts treated any non-compacted native outcome without fallbackToContextEngine as a hard failure and threw CLI native harness compaction failed …. That fails the agent run (UNAVAILABLE) and the session lane never releases — on a large thread the bot shows a "typing" indicator indefinitely and never replies.

This honors a contract the codebase already establishes elsewhere: the auto-reply preflight path skips compaction for Codex runtimes outright (src/auto-reply/reply/agent-runner-memory.ts: "Its harness owns automatic compaction; OpenClaw preflight compaction is only for non-Codex embedded runtimes"). runCliTurnCompactionLifecycle was the one host path that did not honor it and threw instead.

Fix

Surface an ownedByNativeHarness flag on the native outcome when the harness reports a successful no-op (result.ok === true), and add a caller branch before the throw that skips both the error and the context-engine fallback, letting the turn proceed so the harness compacts itself. Minimal and additive; no refactor. Genuine failures (ok:false, thrown, or undefined result) and the unsupported / recoverable-binding cases are unchanged.

Note on shape: I extended the existing NativeHarnessCliCompactionOutcome (which already uses parallel optional fields) rather than refactoring it into a discriminated union, to keep the fix small. Happy to take the union refactor in a follow-up if maintainers prefer.

Sibling surfaces (not one-sided)

The other native-harness compaction entry points already tolerate the ok:true no-op, so this is the only path that needed fixing:

• src/agents/embedded-agent-runner/compact.queued.ts — shouldFallbackAfterHarnessCompaction only fires on ok:false; the ok:true no-op is returned directly.
• src/auto-reply/reply/agent-runner-memory.ts — Codex runtimes skip preflight compaction entirely; otherwise only isDeferredPreflightCompactionReason throws, which the owned-skip reason is not.

Real behavior proof

• Behavior addressed: A successful native-harness compaction no-op (ok:true, compacted:false, "codex app-server owns automatic compaction") must let the turn proceed instead of throwing and jamming the session lane.

• Real environment tested: A self-hosted OpenClaw 2026.5.28 gateway on Linux (Node 22.22.2) where this failure occurred in production, with the equivalent fix applied to the running build and the gateway restarted.

• Exact steps or command run after this patch: Drove one real agent turn through the live gateway against the same over-budget Codex session that had been failing (no channel delivery):
  openclaw agent --session-id <redacted> --message "Reply with exactly: COMPACTION_FIX_OK" --json

• Evidence after fix: Console output / redacted runtime logs copied from the live gateway (same session), captured via openclaw agent --session-id <redacted> --message "Reply with exactly: COMPACTION_FIX_OK" --json, before vs. after the fix.

  Before (pre-fix) — the throw and resulting lane jam:

  [diagnostic] lane wait exceeded: lane=session:agent:main:discord:channel:<redacted> waitedMs=176928 queueAhead=0 activeAhead=1 activeNow=0
  [ws] ⇄ res ✗ agent errorCode=UNAVAILABLE errorMessage=Error: CLI native harness compaction failed for openai-codex/gpt-5.5: codex app-server owns automatic compaction
  

  After (post-fix) — same compaction outcome, now skipped instead of thrown; turn completes:

  [agent/embedded] skipping codex app-server compaction for non-manual trigger
  [agents/cli-compaction] CLI native harness compaction did not reduce context for openai-codex/gpt-5.5: codex app-server owns automatic compaction
  COMPACTION_FIX_OK
  

  Agent result JSON: stopReason: "stop", executionTrace.winnerProvider: "openai-codex", winnerModel: "gpt-5.5", attempts[0].result: "success", fallbackUsed: false.

• Observed result after fix: Copied live output — the previously-jammed over-budget Codex session completed a turn and the agent returned COMPACTION_FIX_OK (gateway console output above). Zero CLI native harness compaction failed occurrences in gateway logs since the fix was deployed.

• What was not tested: Not re-driven through the Discord channel UI specifically — the turn was driven via the gateway agent command without --deliver; behavior is proven at the live gateway turn boundary.

Supplemental validation

• New regression test in cli-compaction.test.ts: node scripts/run-vitest.mjs src/agents/command/cli-compaction.test.ts → 24 passed. Reverting only the source change makes the new test fail with CLI native harness compaction failed for codex/gpt-5.5: codex app-server owns automatic compaction (the exact production error).
• oxfmt --check clean · oxlint clean · tsgo:test (core + extensions) exit 0.
• codex review --base origin/main run locally: no actionable correctness issues.
• Diff: +14 src / +77 test, 0 deletions.

Complements #87158 (Codex plugin side); coordinates with #87738 (same file, missing-thread ok:false case). Related: #85160, #86772, #66263.

[clawsweeper]

Codex review: needs maintainer review before merge. Reviewed May 29, 2026, 8:04 AM ET / 12:04 UTC.

Summary
The branch adds a native-owned no-op outcome in CLI compaction and a regression test so ok:true, compacted:false native harness compaction results proceed without context-engine fallback.

PR surface: Source +14, Tests +77. Total +91 across 2 files.

Reproducibility: yes. current main's Codex app-server returns ok:true, compacted:false for non-manual compaction, and current CLI compaction throws for non-compacted native outcomes that do not fall back. The PR body also supplies live before/after gateway logs for the same failure class.

Review metrics: 1 noteworthy metric.

• Native compaction outcome paths: 1 added. The new successful no-op branch changes whether a budget-triggered native harness result throws, falls back, or proceeds.

Merge readiness
Overall: 🦞 diamond lobster
Proof: 🦞 diamond lobster
Patch quality: 🦞 diamond lobster
Result: ready for maintainer review.

Overall follows the weaker of proof and patch quality, so missing proof can cap an otherwise strong patch.

Risk before merge

• [P1] Merging changes native-harness budget compaction from fail-closed to proceed-on-successful-no-op; if maintainers expect context-engine fallback for this path, session usage/accounting may remain un-compacted until the harness performs its own maintenance.
• [P1] fix(codex): recover context overflow and budget skip paths #87879 overlaps the same CLI compaction branch with broader recovery work, so maintainers should avoid landing divergent semantics.

Maintainer options:

1. Accept native-owned no-op semantics (recommended)
   Merge the narrow fix once maintainers accept that successful native harness no-ops should not trigger host fallback in this CLI lifecycle.
2. Constrain the ownership predicate
   If maintainers want a smaller blast radius, require the known ownership reason or native result details before skipping the throw and fallback.
3. Prefer the broader recovery branch
   If fix(codex): recover context overflow and budget skip paths #87879 is the desired landing path, pause or close this PR after that branch lands so only one CLI compaction policy ships.

Next step before merge

• No automated repair is needed; maintainer review should choose the landing path because the PR changes session-state compaction semantics and overlaps with fix(codex): recover context overflow and budget skip paths #87879.

Security
Cleared: The diff only changes TypeScript control flow and a colocated regression test; it does not touch dependencies, workflows, credentials, package metadata, or code-download surfaces.

Review details

Best possible solution:

Land one coherent CLI native-owned compaction behavior, preferably this narrow branch if maintainers want the minimal fix, or close it after the broader overlapping recovery PR lands.

Do we have a high-confidence way to reproduce the issue?

Yes: current main's Codex app-server returns ok:true, compacted:false for non-manual compaction, and current CLI compaction throws for non-compacted native outcomes that do not fall back. The PR body also supplies live before/after gateway logs for the same failure class.

Is this the best way to solve the issue?

Yes: adding a nonfatal native-owned no-op branch at the CLI lifecycle matches the sibling Codex preflight behavior and keeps genuine failures unchanged. The main maintainer choice is whether to land this narrow path or the broader overlapping recovery PR.

AGENTS.md: found and applied where relevant.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 351d056ca64f.

Label changes

Label changes:

• add proof: sufficient: Contributor real behavior proof is sufficient. The PR body includes redacted before/after live gateway logs showing the prior compaction failure and an after-fix successful CLI/gateway turn result.
• add rating: 🦞 diamond lobster: Overall readiness is 🦞 diamond lobster; proof is 🦞 diamond lobster and patch quality is 🦞 diamond lobster.
• add status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (logs): The PR body includes redacted before/after live gateway logs showing the prior compaction failure and an after-fix successful CLI/gateway turn result.
• remove rating: 🌊 off-meta tidepool: Current PR rating is rating: 🦞 diamond lobster, so this older rating label is no longer current.

Label justifications:

• P1: The reported failure can leave a real agent/channel turn stuck after Codex compaction, so it is urgent workflow repair work.
• merge-risk: 🚨 session-state: The PR changes how CLI budget compaction handles native harness session state and whether host fallback runs after a non-compacted native result.
• rating: 🦞 diamond lobster: Overall readiness is 🦞 diamond lobster; proof is 🦞 diamond lobster and patch quality is 🦞 diamond lobster.
• status: 👀 ready for maintainer look: ClawSweeper has no concrete contributor-facing blocker left for this PR. Sufficient (logs): The PR body includes redacted before/after live gateway logs showing the prior compaction failure and an after-fix successful CLI/gateway turn result.
• proof: sufficient: Contributor real behavior proof is sufficient. The PR body includes redacted before/after live gateway logs showing the prior compaction failure and an after-fix successful CLI/gateway turn result.

Evidence reviewed

PR surface:

Source +14, Tests +77. Total +91 across 2 files.

View PR surface stats

Area	Files	Added	Removed	Net
Source	1	14	0	+14
Tests	1	77	0	+77
Docs	0	0	0	0
Config	0	0	0	0
Generated	0	0	0	0
Other	0	0	0	0
Total	2	91	0	+91

What I checked:

• Current main failure path: Current main treats any non-compacted native harness outcome without fallbackToContextEngine as fatal and throws CLI native harness compaction failed, which matches the reported failure mode for an ok:true no-op. (src/agents/command/cli-compaction.ts:402, 351d056ca64f)
• Codex-owned no-op source: The Codex app-server compact path returns { ok: true, compacted: false, reason: "codex app-server owns automatic compaction" } for non-manual triggers, so the current CLI fatal branch is reachable from source. (extensions/codex/src/app-server/compact.ts:131, 351d056ca64f)
• Sibling preflight behavior: Auto-reply preflight already skips Codex runtime compaction because the harness owns automatic compaction, supporting the PR's contract claim that this is not a hard failure. (src/auto-reply/reply/agent-runner-memory.ts:706, 351d056ca64f)
• Sibling queued compaction behavior: Queued embedded compaction returns a non-recoverable harness result directly; an ok:true non-compacted native result does not become the fatal CLI-style error there. (src/agents/embedded-agent-runner/compact.queued.ts:221, 351d056ca64f)
• PR implementation: The PR adds ownedByNativeHarness, sets it for successful non-compacted native results, and skips both the throw and context-engine fallback in the CLI lifecycle. (src/agents/command/cli-compaction.ts:68, 28f22f0f4958)
• Regression coverage: The PR adds a focused test proving the Codex-owned successful no-op does not throw, does not call the context engine, and does not record a local compaction rotation. (src/agents/command/cli-compaction.test.ts:505, 28f22f0f4958)

Likely related people:

• joshavant: Authored the merged native CLI compaction work that added the fatal native compaction failure path and core lifecycle this PR changes. (role: introduced behavior; confidence: high; commits: b8e9ab9385c0; files: src/agents/command/cli-compaction.ts)
• pfrederiksen: Authored the recent merged raw missing-thread recovery work that changed the same CLI fallback classification path and shared compaction recovery helper. (role: recent area contributor; confidence: high; commits: e69855e68c04; files: src/agents/command/cli-compaction.ts, src/agents/harness/compaction-recovery.ts)
• Steady-ai: Authored the merged Codex app-server change that introduced the successful codex app-server owns automatic compaction no-op result consumed by this PR. (role: adjacent owner; confidence: high; commits: eb8f9b46da39; files: extensions/codex/src/app-server/compact.ts)

What the crustacean ranks mean

• 🦀 challenger crab: rare, exceptional readiness with strong proof, clean implementation, and convincing validation.
• 🦞 diamond lobster: very strong readiness with only minor maintainer review expected.
• 🐚 platinum hermit: good normal PR, likely mergeable with ordinary maintainer review.
• 🦐 gold shrimp: useful signal, but proof or patch confidence is still limited.
• 🦪 silver shellfish: thin signal; proof, validation, or implementation needs work.
• 🧂 unranked krab: not merge-ready because proof is missing/unusable or there are serious correctness or safety concerns.
• 🌊 off-meta tidepool: rating does not apply to this item.

Shiny media proof means a screenshot, video, or linked artifact directly shows the changed behavior. Runtime, network, CSP, and security claims still need visible diagnostics.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

[solomonneas]

Added real behavior proof from a live self-hosted gateway (the prior review predated it): the Evidence after fix section now shows redacted before/after gateway console output for the same over-budget Codex session — the native owned no-op is hit (skipping codex app-server compaction for non-manual trigger → did not reduce context ... codex app-server owns automatic compaction) and the turn now completes (COMPACTION_FIX_OK) with no throw and no context-engine fallback, versus the pre-fix UNAVAILABLE throw + lane wait exceeded jam. The "Real behavior proof" gate is now green.

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26603972288
• Updated: 2026-05-28T21:47:49.925Z

[solomonneas]

Previous ClawSweeper run errored before completing ("Review failed before ClawSweeper could summarize" / AGENTS.md not fully read) after the rebase onto latest main (now includes #87738). The diff is unchanged (+14 src / +77 test) and the prior completed review rated patch quality 🐚 platinum hermit with no code defects. Requesting a fresh run.

@clawsweeper re-review

[clawsweeper]

🦞🧹
ClawSweeper re-review requested.

I asked ClawSweeper to review this item again.
Action: item re-review queued (workflow sweep.yml, event repository_dispatch).
Result: the existing ClawSweeper review comment will be edited in place when the review finishes.

Re-review progress:

• State: Complete
• Detail: The targeted re-review finished, the durable review comment was updated, and the synced verdict was routed.
• Run: https://github.com/openclaw/clawsweeper/actions/runs/26635900982
• Updated: 2026-05-29T12:05:32.309Z

[steipete]

Closing as superseded by current main.

Current main already avoids the original hard failure for the Codex-owned native compaction no-op by recognizing that result and falling back to context-engine compaction. That keeps the no-throw fix while preserving a known host-side compaction/rotation path before the turn proceeds.

This PR now conflicts with that landed policy because its generic successful-no-op branch would skip both the throw and the context-engine fallback, while the merged main path intentionally falls back for the exact Codex-owned reason. If there is still a reproducible failure on current main after 81505ad, please open a fresh/rebased PR with that repro and a narrow regression test against the current CLI compaction behavior.

Thanks for the detailed proof and for chasing the lane-jam failure.