mirror of
https://github.com/openclaw/openclaw.git
synced 2026-05-08 21:20:43 +00:00
2c716f5677
* [EV-001] memory-core: filter memory_search session hits by visibility - Move session visibility + listSpawnedSessionKeys to plugin-sdk; sync test hook with sessions-resolution __testing.setDepsForTest - Extract loadCombinedSessionStoreForGateway to config/sessions; re-export from gateway session-utils - Add session-transcript-hit stem resolver for builtin + QMD paths - Post-filter memory_search results before citations/recall; fail closed when requester session key missing; optional corpus=sessions - Tests: stem extraction, visibility filter smoke, existing suites green * chore: sync plugin-sdk exports for session-transcript-hit and session-visibility Run pnpm plugin-sdk:sync-exports so package.json exports match scripts/lib/plugin-sdk-entrypoints.json. Fixes contract tests and lint:plugins:plugin-sdk-subpaths-exported for memory-core imports. * fix(EV-001): cross-agent session memory hits + hoist combined store load - resolveTranscriptStemToSessionKeys: stop filtering by requester agentId so keys from other agents reach createSessionVisibilityGuard (a2a + visibility=all). - Re-export loadCombinedSessionStoreForGateway from session-transcript-hit; filterMemorySearchHitsBySessionVisibility loads the combined store once per pass. - Drop unused agentId from filter params; extend tests (Greptile/Codex review). * fix(memory_search): honor corpus=sessions before maxResults cap Pass sources into MemoryIndexManager.search so FTS/vector queries add source IN (...) before ranking and top-N slice (Codex: non-session hits could fill the window). QMD path: oversample fetch limit for single-source recall, filter by source, then diversify/clamp to the requested maxResults. Wire corpus=sessions from tools; extend MemorySearchManager opts and wrappers. * fix(memory_search): apply corpus=memory source filter like sessions Pass sources: ["memory"] into manager.search so maxResults applies only within the memory index; post-filter for defense in depth. Document corpus=memory in the tool description. * fix: scope qmd session memory search * fix: enforce memory search session visibility (#70761) (thanks @nefainl) --------- Co-authored-by: NefAI <info@nefai.nl> Co-authored-by: Ayaan Zaidi <hi@obviy.us>
450 lines
13 KiB
TypeScript
450 lines
13 KiB
TypeScript
import type { OpenClawConfig } from "../../config/types.openclaw.js";
|
|
import { callGateway } from "../../gateway/call.js";
|
|
import { formatErrorMessage } from "../../infra/errors.js";
|
|
import {
|
|
listSpawnedSessionKeys,
|
|
sessionVisibilityGatewayTesting,
|
|
} from "../../plugin-sdk/session-visibility.js";
|
|
import { isAcpSessionKey, normalizeMainKey } from "../../routing/session-key.js";
|
|
import { looksLikeSessionId } from "../../sessions/session-id.js";
|
|
import { normalizeOptionalString } from "../../shared/string-coerce.js";
|
|
|
|
type GatewayCaller = typeof callGateway;
|
|
|
|
const defaultSessionsResolutionDeps = {
|
|
callGateway,
|
|
};
|
|
|
|
let sessionsResolutionDeps: {
|
|
callGateway: GatewayCaller;
|
|
} = defaultSessionsResolutionDeps;
|
|
|
|
export function resolveMainSessionAlias(cfg: OpenClawConfig) {
|
|
const mainKey = normalizeMainKey(cfg.session?.mainKey);
|
|
const scope = cfg.session?.scope ?? "per-sender";
|
|
const alias = scope === "global" ? "global" : mainKey;
|
|
return { mainKey, alias, scope };
|
|
}
|
|
|
|
export function resolveDisplaySessionKey(params: { key: string; alias: string; mainKey: string }) {
|
|
if (params.key === params.alias) {
|
|
return "main";
|
|
}
|
|
if (params.key === params.mainKey) {
|
|
return "main";
|
|
}
|
|
return params.key;
|
|
}
|
|
|
|
export function resolveInternalSessionKey(params: {
|
|
key: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
requesterInternalKey?: string;
|
|
}) {
|
|
if (params.key === "current") {
|
|
return params.requesterInternalKey ?? params.key;
|
|
}
|
|
if (params.key === "main") {
|
|
return params.alias;
|
|
}
|
|
return params.key;
|
|
}
|
|
|
|
export { listSpawnedSessionKeys };
|
|
|
|
export async function isRequesterSpawnedSessionVisible(params: {
|
|
requesterSessionKey: string;
|
|
targetSessionKey: string;
|
|
limit?: number;
|
|
}): Promise<boolean> {
|
|
if (params.requesterSessionKey === params.targetSessionKey) {
|
|
return true;
|
|
}
|
|
try {
|
|
const resolved = await sessionsResolutionDeps.callGateway({
|
|
method: "sessions.resolve",
|
|
params: {
|
|
key: params.targetSessionKey,
|
|
spawnedBy: params.requesterSessionKey,
|
|
},
|
|
});
|
|
if (typeof resolved?.key === "string" && resolved.key.trim() === params.targetSessionKey) {
|
|
return true;
|
|
}
|
|
} catch {
|
|
// Fall back to the spawned-session listing path below.
|
|
}
|
|
const keys = await listSpawnedSessionKeys({
|
|
requesterSessionKey: params.requesterSessionKey,
|
|
limit: params.limit,
|
|
});
|
|
return keys.has(params.targetSessionKey);
|
|
}
|
|
|
|
export function shouldVerifyRequesterSpawnedSessionVisibility(params: {
|
|
requesterSessionKey: string;
|
|
targetSessionKey: string;
|
|
restrictToSpawned: boolean;
|
|
resolvedViaSessionId: boolean;
|
|
}): boolean {
|
|
return (
|
|
params.restrictToSpawned &&
|
|
!params.resolvedViaSessionId &&
|
|
params.requesterSessionKey !== params.targetSessionKey
|
|
);
|
|
}
|
|
|
|
export async function isResolvedSessionVisibleToRequester(params: {
|
|
requesterSessionKey: string;
|
|
targetSessionKey: string;
|
|
restrictToSpawned: boolean;
|
|
resolvedViaSessionId: boolean;
|
|
limit?: number;
|
|
}): Promise<boolean> {
|
|
if (
|
|
!shouldVerifyRequesterSpawnedSessionVisibility({
|
|
requesterSessionKey: params.requesterSessionKey,
|
|
targetSessionKey: params.targetSessionKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
resolvedViaSessionId: params.resolvedViaSessionId,
|
|
})
|
|
) {
|
|
return true;
|
|
}
|
|
return await isRequesterSpawnedSessionVisible({
|
|
requesterSessionKey: params.requesterSessionKey,
|
|
targetSessionKey: params.targetSessionKey,
|
|
limit: params.limit,
|
|
});
|
|
}
|
|
|
|
export { looksLikeSessionId };
|
|
|
|
export function looksLikeSessionKey(value: string): boolean {
|
|
const raw = normalizeOptionalString(value) ?? "";
|
|
if (!raw) {
|
|
return false;
|
|
}
|
|
// These are canonical key shapes that should never be treated as sessionIds.
|
|
if (raw === "main" || raw === "global" || raw === "unknown" || raw === "current") {
|
|
return true;
|
|
}
|
|
if (isAcpSessionKey(raw)) {
|
|
return true;
|
|
}
|
|
if (raw.startsWith("agent:")) {
|
|
return true;
|
|
}
|
|
if (raw.startsWith("cron:") || raw.startsWith("hook:")) {
|
|
return true;
|
|
}
|
|
if (raw.startsWith("node-") || raw.startsWith("node:")) {
|
|
return true;
|
|
}
|
|
if (raw.includes(":group:") || raw.includes(":channel:")) {
|
|
return true;
|
|
}
|
|
return false;
|
|
}
|
|
|
|
export function shouldResolveSessionIdInput(value: string): boolean {
|
|
// Treat anything that doesn't look like a well-formed key as a sessionId candidate.
|
|
return looksLikeSessionId(value) || !looksLikeSessionKey(value);
|
|
}
|
|
|
|
export type SessionReferenceResolution =
|
|
| {
|
|
ok: true;
|
|
key: string;
|
|
displayKey: string;
|
|
resolvedViaSessionId: boolean;
|
|
}
|
|
| { ok: false; status: "error" | "forbidden"; error: string };
|
|
|
|
export type VisibleSessionReferenceResolution =
|
|
| {
|
|
ok: true;
|
|
key: string;
|
|
displayKey: string;
|
|
}
|
|
| {
|
|
ok: false;
|
|
status: "forbidden";
|
|
error: string;
|
|
displayKey: string;
|
|
};
|
|
|
|
function buildResolvedSessionReference(params: {
|
|
key: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
resolvedViaSessionId: boolean;
|
|
}): Extract<SessionReferenceResolution, { ok: true }> {
|
|
return {
|
|
ok: true,
|
|
key: params.key,
|
|
displayKey: resolveDisplaySessionKey({
|
|
key: params.key,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
}),
|
|
resolvedViaSessionId: params.resolvedViaSessionId,
|
|
};
|
|
}
|
|
|
|
function buildSessionIdResolveParams(params: {
|
|
sessionId: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
}) {
|
|
return {
|
|
sessionId: params.sessionId,
|
|
spawnedBy: params.restrictToSpawned ? params.requesterInternalKey : undefined,
|
|
includeGlobal: !params.restrictToSpawned,
|
|
includeUnknown: !params.restrictToSpawned,
|
|
};
|
|
}
|
|
|
|
async function callGatewayResolveSessionId(params: {
|
|
sessionId: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
}): Promise<string> {
|
|
const result = await sessionsResolutionDeps.callGateway({
|
|
method: "sessions.resolve",
|
|
params: buildSessionIdResolveParams(params),
|
|
});
|
|
const key = normalizeOptionalString(result?.key) ?? "";
|
|
if (!key) {
|
|
throw new Error(
|
|
`Session not found: ${params.sessionId} (use the full sessionKey from sessions_list)`,
|
|
);
|
|
}
|
|
return key;
|
|
}
|
|
|
|
async function resolveSessionKeyFromSessionId(params: {
|
|
sessionId: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
}): Promise<SessionReferenceResolution> {
|
|
try {
|
|
// Resolve via gateway so we respect store routing and visibility rules.
|
|
const key = await callGatewayResolveSessionId(params);
|
|
return buildResolvedSessionReference({
|
|
key,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
resolvedViaSessionId: true,
|
|
});
|
|
} catch (err) {
|
|
if (params.restrictToSpawned) {
|
|
return {
|
|
ok: false,
|
|
status: "forbidden",
|
|
error: `Session not visible from this sandboxed agent session: ${params.sessionId}`,
|
|
};
|
|
}
|
|
const message = formatErrorMessage(err);
|
|
return {
|
|
ok: false,
|
|
status: "error",
|
|
error:
|
|
message ||
|
|
`Session not found: ${params.sessionId} (use the full sessionKey from sessions_list)`,
|
|
};
|
|
}
|
|
}
|
|
|
|
async function resolveSessionKeyFromKey(params: {
|
|
key: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
}): Promise<SessionReferenceResolution | null> {
|
|
try {
|
|
// Try key-based resolution first so non-standard keys keep working.
|
|
const result = await sessionsResolutionDeps.callGateway({
|
|
method: "sessions.resolve",
|
|
params: {
|
|
key: params.key,
|
|
spawnedBy: params.restrictToSpawned ? params.requesterInternalKey : undefined,
|
|
},
|
|
});
|
|
const key = normalizeOptionalString(result?.key) ?? "";
|
|
if (!key) {
|
|
return null;
|
|
}
|
|
return buildResolvedSessionReference({
|
|
key,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
resolvedViaSessionId: false,
|
|
});
|
|
} catch {
|
|
return null;
|
|
}
|
|
}
|
|
|
|
async function tryResolveSessionKeyFromSessionId(params: {
|
|
sessionId: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
}): Promise<Extract<SessionReferenceResolution, { ok: true }> | null> {
|
|
try {
|
|
const key = await callGatewayResolveSessionId(params);
|
|
return buildResolvedSessionReference({
|
|
key,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
resolvedViaSessionId: true,
|
|
});
|
|
} catch {
|
|
return null;
|
|
}
|
|
}
|
|
|
|
async function resolveSessionReferenceByKeyOrSessionId(params: {
|
|
raw: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
allowUnresolvedSessionId: boolean;
|
|
skipKeyLookup?: boolean;
|
|
forceSessionIdLookup?: boolean;
|
|
}): Promise<SessionReferenceResolution | null> {
|
|
if (!params.skipKeyLookup) {
|
|
// Prefer key resolution to avoid misclassifying custom keys as sessionIds.
|
|
const resolvedByKey = await resolveSessionKeyFromKey({
|
|
key: params.raw,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
requesterInternalKey: params.requesterInternalKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
});
|
|
if (resolvedByKey) {
|
|
return resolvedByKey;
|
|
}
|
|
}
|
|
if (!(params.forceSessionIdLookup || shouldResolveSessionIdInput(params.raw))) {
|
|
return null;
|
|
}
|
|
if (params.allowUnresolvedSessionId) {
|
|
return await tryResolveSessionKeyFromSessionId({
|
|
sessionId: params.raw,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
requesterInternalKey: params.requesterInternalKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
});
|
|
}
|
|
return await resolveSessionKeyFromSessionId({
|
|
sessionId: params.raw,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
requesterInternalKey: params.requesterInternalKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
});
|
|
}
|
|
|
|
export async function resolveSessionReference(params: {
|
|
sessionKey: string;
|
|
alias: string;
|
|
mainKey: string;
|
|
requesterInternalKey?: string;
|
|
restrictToSpawned: boolean;
|
|
}): Promise<SessionReferenceResolution> {
|
|
const rawInput = params.sessionKey.trim();
|
|
if (rawInput === "current") {
|
|
const resolvedCurrent = await resolveSessionReferenceByKeyOrSessionId({
|
|
raw: rawInput,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
requesterInternalKey: params.requesterInternalKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
allowUnresolvedSessionId: true,
|
|
skipKeyLookup: params.restrictToSpawned,
|
|
forceSessionIdLookup: true,
|
|
});
|
|
if (resolvedCurrent) {
|
|
return resolvedCurrent;
|
|
}
|
|
}
|
|
const raw =
|
|
rawInput === "current" && params.requesterInternalKey ? params.requesterInternalKey : rawInput;
|
|
if (shouldResolveSessionIdInput(raw)) {
|
|
const resolvedByGateway = await resolveSessionReferenceByKeyOrSessionId({
|
|
raw,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
requesterInternalKey: params.requesterInternalKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
allowUnresolvedSessionId: false,
|
|
});
|
|
if (resolvedByGateway) {
|
|
return resolvedByGateway;
|
|
}
|
|
}
|
|
|
|
const resolvedKey = resolveInternalSessionKey({
|
|
key: raw,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
requesterInternalKey: params.requesterInternalKey,
|
|
});
|
|
const displayKey = resolveDisplaySessionKey({
|
|
key: resolvedKey,
|
|
alias: params.alias,
|
|
mainKey: params.mainKey,
|
|
});
|
|
return { ok: true, key: resolvedKey, displayKey, resolvedViaSessionId: false };
|
|
}
|
|
|
|
export async function resolveVisibleSessionReference(params: {
|
|
resolvedSession: Extract<SessionReferenceResolution, { ok: true }>;
|
|
requesterSessionKey: string;
|
|
restrictToSpawned: boolean;
|
|
visibilitySessionKey: string;
|
|
}): Promise<VisibleSessionReferenceResolution> {
|
|
const resolvedKey = params.resolvedSession.key;
|
|
const displayKey = params.resolvedSession.displayKey;
|
|
const visible = await isResolvedSessionVisibleToRequester({
|
|
requesterSessionKey: params.requesterSessionKey,
|
|
targetSessionKey: resolvedKey,
|
|
restrictToSpawned: params.restrictToSpawned,
|
|
resolvedViaSessionId: params.resolvedSession.resolvedViaSessionId,
|
|
});
|
|
if (!visible) {
|
|
return {
|
|
ok: false,
|
|
status: "forbidden",
|
|
error: `Session not visible from this sandboxed agent session: ${params.visibilitySessionKey}`,
|
|
displayKey,
|
|
};
|
|
}
|
|
return { ok: true, key: resolvedKey, displayKey };
|
|
}
|
|
|
|
export const normalizeOptionalKey: (value?: string) => string | undefined = normalizeOptionalString;
|
|
|
|
export const __testing = {
|
|
setDepsForTest(overrides?: Partial<{ callGateway: GatewayCaller }>) {
|
|
sessionsResolutionDeps = overrides
|
|
? {
|
|
...defaultSessionsResolutionDeps,
|
|
...overrides,
|
|
}
|
|
: defaultSessionsResolutionDeps;
|
|
sessionVisibilityGatewayTesting.setCallGatewayForListSpawned(
|
|
overrides?.callGateway ?? defaultSessionsResolutionDeps.callGateway,
|
|
);
|
|
},
|
|
};
|