Executive summary: treat MCP as a process fleet
Each stdio MCP server is a child process with its own memory, file descriptors, and lifecycle hooks. When the gateway spawns servers eagerly or on every tool-list refresh, aggregate resource usage scales with session count, retry storms, and model routing churn, not merely with model context length. Teams that add five MCP entries without measuring child process counts often discover swap pressure first and root cause second.
Configuration hot reload is convenient yet incomplete when the runtime fails to reap prior stdio trees. The practical remediation is a cold restart: stop the gateway service entirely, confirm child PIDs disappear, then start again with the trimmed mcp.servers map. Document this explicitly in on-call playbooks so engineers do not assume JSON edits alone equal runtime state.
HTTP MCP expectations must align with release notes. If the client only enumerates stdio transports in your build, url-based servers will be skipped with explicit logs. Bridging strategies include local wrapper binaries that speak stdio while proxying HTTP internally, subject to security review, or temporarily removing unsupported entries to stabilize production.
Always separate spiky memory from conversation context from monotonic memory from leaked children. The former tracks token usage; the latter tracks process list length. Plot both to avoid mis-tuned autoscaling.
Reverse proxies that terminate TLS for the gateway can amplify MCP churn if WebSocket or long-lived RPC streams reconnect frequently. Each reconnect may re-run discovery paths. Align timeouts with the reverse proxy guide before blaming MCP authors.
Finally, unify CLI and service binaries. A global npm openclaw binary paired with a containerized gateway invites version skew where doctor passes yet behavior diverges. The install guide explains how to pin one path.
Operational teams should publish a maximum MCP budget per environment, similar to maximum SSH connection budgets, so product engineers do not stack experimental servers on production hosts without review. Pair the budget with automated checks in CI that lint openclaw.json for unexpected server names before merge.
When incidents strike during model outages at upstream providers, still capture gateway child counts. Mixed failures happen often: partial API errors cause clients to retry tool discovery, amplifying MCP spawn rates even though the model is unhealthy. Dual charts prevent false blame.
Documentation debt hurts MCP adoption: if only one engineer knows which wrapper script pins which Node version, vacations become outages. Check those scripts into a repository with semantic versioning and reference them from configuration comments.
Pain decomposition
Leaked stdio children. Symptoms include growing node counts, repeated bundle lines in logs, and RSS slopes that do not flatten overnight. Mitigation combines version upgrades, smaller server lists, and cold restarts.
Hot reload gaps. Editing JSON while the gateway keeps old subprocess groups is confusing because doctor may read the new file while processes reflect the old graph. Restart services after substantive MCP edits.
HTTP skipped servers. Users perceive this as broken configuration when it is an explicit unsupported transport until wired. Validate against documentation instead of guessing panel behavior.
Channel flaps masquerading as MCP bugs. Telegram or Slack disconnects trigger reconnect loops that look like MCP failures in unstructured logs. Use channel probes after gateway checks.
Undersized VPS plans. OpenClaw plus multiple MCP servers plus cron jobs on two gigabytes of RAM is fragile. Right-size before chasing exotic kernel tunables.
Decision matrix
| Signal | Hypothesis | Action | Guide |
|---|---|---|---|
| RSS and child count rise together | stdio leak | Converge servers, cold restart, patch | MCP plugins upgrade |
| skipped server http | transport gap | Use stdio wrapper or remove url | Install paths |
| doctor clean, users see drops | Proxy idle timers | Tune websocket headers | Reverse proxy |
| unknown config keys | schema drift | Read release notes | Upgrade rollback |
| disk full warnings | logging blowup | Rotate logs, expand disk | Gateway ops |
Always reduce moving parts before tuning advanced flags. Simplicity beats cleverness during on-call hours every time.
How-to command skeleton
openclaw status
openclaw gateway status
openclaw logs --follow
openclaw doctor
openclaw channels status --probe
ps aux | rg -i 'openclaw|mcp|npx' || true
openclaw gateway restart
# If restart insufficient: systemctl restart openclaw-gateway
# or docker compose restart per your install doc
Redact secrets from shell history in production. Disable shell history temporarily only with security approval.
Observability fields
Export gateway host metrics: resident set size, child process count, open file descriptors, load average, free disk. Correlate with conversation volume. Alert when child count exceeds a baseline derived from configured MCP entries times active sessions.
Structured logs should include MCP server names when spawning and exiting. Missing exit lines alongside growing counts signal leaks. Pair with traces from reverse proxies when TLS terminates upstream.
Capacity planning for remote Mac or VPS should reserve headroom for notarization-adjacent workloads if the same host also moves large artifacts. Disk pressure breaks log rotation and magnifies instability.
Document expected restart windows after MCP edits so change management expects brief downtime instead of treating reload as free.
Quarterly review which MCP servers remain business-critical. Deprecate experiments left enabled.
Export dashboards to PDF monthly for compliance archives if regulators ask how AI gateways were supervised; include child-count peaks correlated with release tags.
Train on-call to distinguish kubectl restart semantics from application-level gateway restart when Kubernetes wraps containers, ensuring the entire pod recycles when required.
For bare-metal Mac minis acting as remote build and gateway hosts, combine temperature and fan metrics with CPU to catch thermal throttling that slows MCP spawns during summer months.
Glossary
stdio transport means the MCP client launches a subprocess and speaks JSON-RPC over standard input and output pipes.
HTTP MCP refers to configurations that point at remote HTTP or SSE endpoints without a local subprocess wrapper.
Gateway is the long-running OpenClaw process exposing RPC and channel bridges.
Hot reload applies configuration without full process exit; coverage for MCP lifecycle varies by version.
Cold restart stops the gateway process completely before starting again.
Child process leak means spawned MCP servers outlive the sessions that requested them.
Tool enumeration is the step where models discover callable tools including MCP-provided functions.
Channel probe actively tests messaging integrations instead of assuming idle health.
Doctor scans local configuration and environment for known footguns.
Release notes document transport support and schema migrations per version.
Wrapper binary is a small local executable that adapts remote protocols to stdio expectations.
Blast radius captures how many users a bad gateway deploy affects.
Session isolation limits context bleed across automations such as cron or heartbeat agents.
RPC probe validates that local clients can reach the gateway control plane.
Systemd unit manages service restarts on Linux hosts.
Docker compose stacks may run gateways in containers with distinct volume paths.
Remote Mac is an Apple Silicon or Intel macOS host accessed over SSH or VNC for builds and automation.
Hosted remote Mac is a managed rental model that bundles hardware, networking, and support.
npx downloads ephemeral toolchains and can multiply processes when MCP configs invoke it per turn.
File descriptor exhaustion occurs when leaks or high concurrency open too many sockets and pipes.
Log rotation prevents disks from filling when verbose MCP logging is enabled temporarily.
TLS termination at nginx or caddy requires correct websocket upgrade headers toward the gateway.
Allowed origins gates browser or HTTP clients per hardening guides.
Concurrency budget caps parallel automation jobs to protect gateway CPU.
Incident timeline should list MCP edits, gateway restarts, and proxy changes in order.
Rollback snapshot stores openclaw.json before risky edits as described in the MCP plugins article.
Support triage distinguishes model outages from gateway process issues using the diagnostic ladder.
Process group is the POSIX set that should receive coordinated stop signals when recycling the gateway.
OOM killer on Linux terminates large consumers when RAM pressure spikes; MCP leaks accelerate those events.
Cgroup memory caps in containers surface as silent tool failures when children cannot allocate.
Telemetry cardinality stays manageable by standardizing MCP server labels instead of per-session names.
Change windows schedule cold restarts when Telegram and Slack traffic is lowest globally.
Staging parity requires the same MCP count and sizes as production to reproduce leaks faithfully.
Canary rollout sends a fraction of traffic to a new gateway build while watching child-count dashboards.
Postmortem template attaches charts for RSS, child count, and disk free space alongside config diffs.
Secrets hygiene avoids embedding API keys into MCP argv strings that appear in process listings.
CPU steal time on noisy neighbors inflates MCP spawn latency on small VPS plans.
Inode exhaustion from npm caches breaks upgrades before RAM does; monitor both.
Graceful degradation means disabling nonessential MCP servers first when memory alerts fire, preserving core chat and cron paths.
Runbook rehearsal quarterly executes a timed cold restart in staging to ensure systemd units, docker compose files, and launchd plist paths still match documentation.
Vendor coordination with MCP authors may be required when upstream fixes land; subscribe to release feeds instead of pinning ancient npm tarballs indefinitely.
User communication templates explain brief maintenance windows when cold restarts are unavoidable, reducing duplicate tickets.
FAQ and hosted Mac bridge
Should I run ten MCP servers for completeness?
No. Start with the smallest set that covers critical tools, measure stability, then add deliberately.
Does Kubernetes change the guidance?
Pod restarts help yet still require understanding stdio subprocess lifecycles inside the container.
How does this relate to sessions_spawn?
That article covers sub-agent permissions; this one covers MCP OS processes and transports.
Should MCP logs stay at debug forever?
No. Verbose logging multiplies disk IO during incidents; revert to info after troubleshooting.
Summary: Operate MCP as a supervised process fleet, align transports with documented support, and restart coldly when reload semantics fall short.
Limits: DIY hosts stack patching, disks, proxies, and gateway supervision. SFTPMAC hosted remote Mac packages Apple-compatible uptime with SFTP ingress suited to teams shipping binaries alongside AI automation.
Long term, treat MCP like any other daemon fleet: versioned config, measurable children, bounded restarts, and owners who read release notes when transports evolve. That discipline scales better than ad-hoc tweaks each outage weekend.
Review SFTPMAC plans for stable remote Mac gateways plus file delivery.