fix(openclaw): fail closed on config restore merge errors

[cv]

Summary

Follow-up to #5174 that pins the risky OpenClaw config restore fallback cases. The restore now fails closed when selective merging cannot read or parse the current rebuilt config, or cannot parse the backup, leaving the fresh runtime config intact instead of writing a stale sanitized backup wholesale.

Related Issue

Follow-up to #5174.

Changes

• Treat OpenClaw config selective-merge failures as state-file restore failures rather than falling back to the backup contents.
• Add focused fake-SSH coverage for missing/invalid current openclaw.json and invalid backed-up openclaw.json.
• Document provider/plugin merge behavior when the rebuilt config lacks generated maps.
• Update snapshot fake SSH fixtures to model absent openclaw.json state files instead of zero-byte successful reads.

Type of Change

• Code change (feature, bug fix, or refactor)
• Code change with doc updates
• Doc only (prose changes, no code sample modifications)
• Doc only (includes code sample changes)

Verification

• npx prek run --all-files passes
• npm test passes
• Tests added or updated for new or changed behavior
• No secrets, API keys, or credentials committed
• Docs updated for user-facing behavior changes
• npm run docs builds without warnings (doc changes only)
• Doc pages follow the style guide (doc changes only)
• New doc pages include SPDX header and frontmatter (new pages only)

---

Signed-off-by: Carlos Villela cvillela@nvidia.com

Summary by CodeRabbit

New Features

• OpenClaw config hash now automatically refreshes after sandbox restore operations, ensuring configuration consistency

Tests

• Added comprehensive test coverage for config restore failure scenarios
• Added tests validating config hash refresh functionality
• Extended regression test coverage for configuration integrity validation

[copy-pr-bot]

This pull request requires additional validation before any workflows can run on NVIDIA's runners.

Pull request vetters can view their responsibilities here.

Contributors can view more details about this message here.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: 6995fc7a-4f4f-4e4e-8e85-956246e772e9

📥 Commits

Reviewing files that changed from the base of the PR and between e9ad4c8 and 21e6841.

📒 Files selected for processing (1)

• scripts/nemoclaw-start.sh

🚧 Files skipped from review as they are similar to previous changes (1)

• scripts/nemoclaw-start.sh

---

📝 Walkthrough

Walkthrough

The PR adds OpenClaw .config-hash refresh validation: a post-restore step recomputes the SHA-256 digest of openclaw.json into .config-hash, gates rebuild success on verification, tests the refresh behavior and symlink refusal, adds fail-closed restore tests for invalid/missing configs, and provides test assertions to validate hash correctness after restore and guard execution.

Changes

OpenClaw config hash refresh validation and integration

Layer / File(s)	Summary
Config hash refresh command definition src/lib/actions/sandbox/rebuild.ts	buildRefreshMutableOpenClawConfigHashCommand generates a shell command that recomputes openclaw.json SHA-256 into .config-hash with symlink and root-ownership checks, and refreshMutableOpenClawConfigHashAfterPostRestoreWrites executes it, validates exit status, and logs warnings on failure.
Config hash refresh command test coverage src/lib/actions/sandbox/rebuild-config-hash.test.ts	Linux-only integration tests verify .config-hash updates to match openclaw.json SHA-256, with exit status 0 and empty stderr, and that symlinked config files are refused (exit status 11, specific error message, hash unchanged).
Config hash refresh post-restore integration src/lib/actions/sandbox/rebuild.ts	Post-restore sequence calls the refresh helper after potential openclaw.json rewrites; introduces mutableConfigHashRefreshUnverified flag to track verification failure; updates rebuild-success condition to require unverified flag to be false; adds completion warning when refresh fails.
Shell script inline config hash refresh scripts/nemoclaw-start.sh	Config guard permission helper adds a conditional pre-step to recompute .config-hash from openclaw.json via sha256sum when the directory and files are regular (non-symlink) before continuing with existing permission repair logic.
Config restore failure mode test coverage test/openclaw-config-restore.test.ts	New Vitest suite tests restoreSandboxState fail-closed behavior when current or backed-up openclaw.json is missing or invalid JSON, asserting no restored files, failedFiles containing openclaw.json, and current config remains parseable and untouched.
Config hash contract validation in restore tests test/repro-4538-raw-doctor-perms.test.ts	Adds Node crypto SHA-256 helper functions to compute and verify .config-hash matches the digest of openclaw.json and contains the filename; updates restore and guard tests to assert hash contract correctness after permission repair; modifies simulated openclaw doctor --fix to rewrite config for hash assertions.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• NVIDIA/NemoClaw#5333: Updates the live Vitest "sandbox-rebuild" scenario to exercise behavior around nemoclaw <sandbox> rebuild, which the main PR changes by adding the mutable OpenClaw .config-hash refresh step and warning/failure semantics.
• NVIDIA/NemoClaw#5101: The main PR's sandbox restore/rebuild flow now refreshes and validates the mutable openclaw.json config hash, while the retrieved PR ensures openclaw.json is preserved, restored, and repaired post-restore—both directly touch restore-time handling of openclaw.json in the rebuild pipeline.
• NVIDIA/NemoClaw#5177: The main PR adds fail-closed OpenClaw openclaw.json restore failure-mode tests (missing/invalid current or backup) that directly validate the unsafe-fallback prevention introduced by the retrieved PR's new restore-input/merge logic.

Suggested labels

area: sandbox

Suggested reviewers

• prekshivyas

Poem

A rabbit hops through config hashes bright,
SHA-256 dancing in the shell-script night,
Guard-lines refresh what doctors might distort,
While fail-closed tests keep data safe in port.
Symlinks refused, and .config-hash shines true! 🐰✨

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 20.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly addresses the main change: implementing fail-closed behavior for config restore merge errors, which is the core objective across all modified files.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch codex/5174-openclaw-restore-unit-tests

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[github-actions]

PR Review Advisor

Findings: 0 needs attention, 1 worth checking, 0 nice ideas
Top item: PR review advisor unavailable

Review findings

🛠️ Needs attention

• None.

🔎 Worth checking

• PR review advisor unavailable: The automated advisor could not complete: Could not parse JSON from PR review advisor output; see /home/runner/work/NemoClaw/NemoClaw/artifacts/pr-review-advisor/pr-review-advisor-raw-output.txt
  • Recommendation: Re-run the PR Review Advisor or perform a manual review.
  • Evidence: Could not parse JSON from PR review advisor output; see /home/runner/work/NemoClaw/NemoClaw/artifacts/pr-review-advisor/pr-review-advisor-raw-output.txt

🌱 Nice ideas

• None.

Consider writing more tests for

• **Runtime validation** — Add or identify targeted runtime/integration validation for the changed behavior; do not report external E2E job pass/fail here.. Runtime/sandbox/infrastructure paths need behavioral runtime validation: scripts/nemoclaw-start.sh, src/lib/actions/sandbox/rebuild.ts.

Workflow run details

This is an automated advisory review. A human maintainer must make the final merge decision.

[github-actions]

E2E Advisor Recommendation

Required E2E: None
Optional E2E: None

Workflow run

Full advisor summary

E2E Recommendation Advisor

Failed: Could not parse JSON from advisor output; see /home/runner/work/NemoClaw/NemoClaw/artifacts/e2e-advisor/e2e-advisor-raw-output.txt

[github-actions]

Vitest E2E Scenario Recommendation

Required Vitest E2E scenarios: None
Optional Vitest E2E scenarios: None

Workflow run

Full Vitest E2E advisor summary

Vitest E2E Scenario Advisor

Failed: Could not parse JSON from advisor output; see /home/runner/work/NemoClaw/NemoClaw/artifacts/e2e-advisor/e2e-scenario-advisor-raw-output.txt

[github-actions]

Selective E2E Results — ❌ Some jobs failed

Run: 27307941381
Target ref: 73ab69ba93d69b158d0856ec63398afe9828830c
Workflow ref: hotfix/5101-openclaw-config-merge
Requested jobs: snapshot-commands-e2e,rebuild-openclaw-e2e
Summary: 1 passed, 1 failed, 0 skipped

Job	Result
rebuild-openclaw-e2e	❌ failure
snapshot-commands-e2e	✅ success

Failed jobs: rebuild-openclaw-e2e. Check run artifacts for logs.

[github-actions]

Selective E2E Results — ❌ Some jobs failed

Run: 27315161743
Target ref: dfc2f5587be9391751b85d1e0e1bbfb3bdf14c10
Workflow ref: main
Requested jobs: snapshot-commands-e2e,rebuild-openclaw-e2e
Summary: 1 passed, 1 failed, 0 skipped

Job	Result
rebuild-openclaw-e2e	❌ failure
snapshot-commands-e2e	✅ success

Failed jobs: rebuild-openclaw-e2e. Check run artifacts for logs.

[coderabbitai]

🧹 Nitpick comments (1)

src/lib/actions/sandbox/rebuild.ts (1)

100-102: ⚡ Quick win

Consider atomic file operations to prevent hash file corruption.

Lines 100-102 have a narrow time-of-check-time-of-use window where openclaw.json could be deleted or sha256sum could fail after the file existence check. The > .config-hash redirection truncates the hash file before sha256sum runs, so failure leaves .config-hash empty or corrupted. While the non-zero exit status is detected and the user is warned (line 1290), atomic operations would eliminate this risk entirely.

🔄 Refactor to use atomic file operations

 '[ -f "$config_file" ] || exit 0',
 'cd "$config_dir" || exit 13',
-"sha256sum openclaw.json > .config-hash",
+"sha256sum openclaw.json > .config-hash.tmp && mv .config-hash.tmp .config-hash",
 "chmod 660 .config-hash 2>/dev/null || true",

This ensures .config-hash is never left in a partially-written state — either the hash is fully computed and atomically moved into place, or the original .config-hash remains untouched on failure.

🤖 Prompt for AI Agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

In `@src/lib/actions/sandbox/rebuild.ts` around lines 100 - 102, Replace the
direct redirection "sha256sum openclaw.json > .config-hash" with an atomic
write: compute the hash into a temporary file (use mktemp or similar) while
ensuring you are in the directory pointed to by config_dir and that config_file
exists, then move the temp file into place with mv (atomic rename) only on
successful sha256sum; also ensure the temp file is removed on failure (use a
trap/cleanup). Target the block that checks '[ -f "$config_file" ] || exit 0',
the cd "$config_dir" || exit 13 step, and the "sha256sum openclaw.json >
.config-hash" command when making this change.

🤖 Prompt for all review comments with AI agents

Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.

Nitpick comments:
In `@src/lib/actions/sandbox/rebuild.ts`:
- Around line 100-102: Replace the direct redirection "sha256sum openclaw.json >
.config-hash" with an atomic write: compute the hash into a temporary file (use
mktemp or similar) while ensuring you are in the directory pointed to by
config_dir and that config_file exists, then move the temp file into place with
mv (atomic rename) only on successful sha256sum; also ensure the temp file is
removed on failure (use a trap/cleanup). Target the block that checks '[ -f
"$config_file" ] || exit 0', the cd "$config_dir" || exit 13 step, and the
"sha256sum openclaw.json > .config-hash" command when making this change.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Enterprise

Run ID: 80e9a7a3-b9b9-4267-8523-41e415817c19

📥 Commits

Reviewing files that changed from the base of the PR and between dfc2f55 and ad73487.

📒 Files selected for processing (4)

• scripts/nemoclaw-start.sh
• src/lib/actions/sandbox/rebuild-config-hash.test.ts
• src/lib/actions/sandbox/rebuild.ts
• test/repro-4538-raw-doctor-perms.test.ts

[github-actions]

Selective E2E Results — ✅ All requested jobs passed

Run: 27389516622
Target ref: ad73487bc54fa9ce37aed614ab3157f3557747f0
Workflow ref: main
Requested jobs: snapshot-commands-e2e,rebuild-openclaw-e2e
Summary: 2 passed, 0 failed, 0 cancelled, 0 skipped

Job	Result
rebuild-openclaw-e2e	✅ success
snapshot-commands-e2e	✅ success

[github-actions]

Selective E2E Results — ✅ All requested jobs passed

Run: 27390976297
Target ref: e9ad4c86ac2e3cd179bfbecadb5aefa9ae57e6ce
Workflow ref: main
Requested jobs: snapshot-commands-e2e,rebuild-openclaw-e2e
Summary: 2 passed, 0 failed, 0 cancelled, 0 skipped

Job	Result
rebuild-openclaw-e2e	✅ success
snapshot-commands-e2e	✅ success

[github-actions]

Selective E2E Results — ✅ All requested jobs passed

Run: 27399232492
Target ref: 1ae464011c3e69e3221fa96a2493f991c80c3cb0
Workflow ref: main
Requested jobs: rebuild-openclaw-e2e,openclaw-onboard-security-posture-e2e
Summary: 2 passed, 0 failed, 0 cancelled, 0 skipped

Job	Result
openclaw-onboard-security-posture-e2e	✅ success
rebuild-openclaw-e2e	✅ success

[wscurran]

✨
Related open PRs:

• #5174 fix(openclaw): merge restored config with runtime state