Bug: Sudden Context Overflow from Large Tool Results (no preflight guard)

[mkoslacz]

Bug: Sudden Context Overflow from Large Tool Results (no preflight guard)

Summary

OpenClaw can exceed model context in a single step when a tool returns a very large payload.
After that, requests fail repeatedly with:

• prompt is too long: ... > 200000
• input length and max_tokens exceed context limit: ... + 32000 > 200000

In several cases, no automatic compaction happened before the next request, so sessions got stuck in a failure loop.

Environment

• OpenClaw: 2026.1.30
• Model: anthropic/claude-sonnet-4-20250514 and anthropic/claude-opus-4-5
• Context window: 200000

What happened

Large single toolResult messages were appended directly to session transcript and immediately pushed next prompt over limit.

Concrete examples (from local transcripts)

1. gateway config.schema produced a huge payload:

• transcript: sessions/d3a0a84a-ab0f-4597-9de4-8353a67acfec.jsonl
• tool call line: 1402 (gateway {"action":"config.schema"})
• tool result line: 1403 (~560k chars JSON line)
• immediate error: line 1404 (prompt is too long: 205607 tokens > 200000)

2. Grepping session logs with tail ... ~/.openclaw/agents/main/sessions/*.jsonl produced huge outputs:

• transcript: sessions/d3a0a84a-ab0f-4597-9de4-8353a67acfec.jsonl
• tool calls: lines 1857, 1869
• tool results: lines 1858 (~400k chars), 1870 (~409k chars)
• immediate failures: lines 1859, 1871, 1874, 1877

3. Same pattern in another session:

• transcript: sessions/276d664b-06c9-4a1a-80ad-562972d25beb.jsonl
• huge tool results on lines 32 and 34 (~416k chars each)
• repeated context-limit errors after that

4. Repeated failures at high context without successful recovery:

• transcript: sessions/7bff962a-ac31-44f3-9c17-300507453484.jsonl
• repeated errors on lines 955, 958, 961, 964, 967, 970
• message: input length and max_tokens exceed context limit: 173629 + 32000 > 200000

Expected behavior

Before every model request, OpenClaw should guarantee:

• estimated_input_tokens + requested_max_tokens <= model_context_limit

If not true, OpenClaw should automatically do one or more of:

1. trigger compaction preflight,
2. reduce max_tokens dynamically,
3. truncate/summarize newest oversized tool results,
4. retry automatically with safe budget.

The session should not enter a repeated hard-failure loop.

Suggested fixes

1. Preflight context budget check before each LLM call, based on current transcript + planned max_tokens.
2. Hard output cap per tool result inserted into transcript (character and token budget).
3. Auto-summarize oversized tool outputs (store full output externally/log file, keep summary in context).
4. Guardrails for high-risk commands that can return giant transcript chunks (e.g. tail ~/.openclaw/agents/main/sessions/*.jsonl).
5. Fallback retry policy:

• on input + max_tokens error: reduce max_tokens and retry,
• if still too large: force compaction and retry once.

6. Optional warning mode when any single toolResult exceeds configured threshold (e.g. 10k/20k tokens).

Why this matters

This causes:

• session stalls,
• 5x+ token usage spikes (many failed retries),
• broken automation loops until manual intervention.

[thacid22]

Root Cause Analysis

Dug into the context management code — the reporter's diagnosis is correct: there is no preflight validation before tool results are appended to the transcript.

What exists today (reactive, not preventive)

1. evaluateContextWindowGuard (in run.ts) — validates the model's capability (is the context window large enough to use at all), not the current request's fit
2. context-pruning (cache-ttl mode) — soft-trims old tool results (keeps 1,500 chars head/tail, max 4,000 total) and hard-clears when context ratio exceeds thresholds. But it never limits incoming tool results
3. compaction-safeguard — triggers after overflow detection via session_before_compact events. By then, the oversized tool result is already in the transcript

None of these check current_tokens + new_tool_result_tokens + max_tokens <= context_limit before appending.

Why sessions get stuck

Once a 560k-char tool result is appended (like gateway config.schema), the next API call fails with prompt is too long. But the failed call doesn't trigger compaction in all code paths — the session enters a retry loop where each attempt hits the same limit without any automatic recovery.

Suggested layered defence (ordered by impact)

1. Per-tool-result size cap (highest impact, lowest risk): Before appending any tool result, check character count. If over a threshold (e.g., 50k chars), truncate to head + tail with [truncated — full output written to {log_path}]. Write the full output to a session log file for reference. This single change prevents the worst cases.

2. Preflight budget check: Before each LLM call, estimate: transcript_tokens + max_tokens. If over context_limit, trigger compaction/pruning before the call rather than failing and retrying.

3. Retry with reduced max_tokens: On input + max_tokens > context_limit errors, compute available = context_limit - input_tokens, set max_tokens = available - safety_margin, and retry once. This handles the case where compaction isn't enough.

4. Auto-compaction on API failure: If an API call fails with any context overflow error, force one compaction pass and retry. If that also fails, surface a clear error to the user rather than looping.

The reporter's suggestion about "guardrails for high-risk commands" (like tail on session logs) is also worth considering — commands matching patterns like *sessions/*.jsonl could get a reduced output cap.

[tyler6204]

Resolved by #11579 (merge commit: 0deb8b0). This PR adds both a pre-emptive guard (400K char hard cap on tool results at persistence time) and a recovery path (truncation + session branching when context overflow is detected after compaction fails). Closing as completed. If you still see this on latest main, please open a new issue with fresh repro steps.

[thedudeabidesai]

Real-world case: video frame analysis blowing up a Discord channel session

We hit this exact issue on OpenClaw 2026.2.6-3 with claude-opus-4-6 (1M context).

Scenario: Agent was asked to analyze a 22-minute demo video in a Discord channel session. The agent chained multiple tool calls in-channel:

• exec to extract video frames (ffmpeg)
• image to analyze each frame (base64-encoded screenshots returned as tool results)
• web_fetch to pull related documentation (full markdown pages)
• Narration between each step adding more tokens

The accumulated tool results (particularly the base64 frame data from image analysis) exceeded the context window. The session entered a permanent failure loop — every subsequent message in that channel triggered Context overflow: prompt too large for the model with no automatic recovery. Compaction never fired between the tool calls because they all happened within a single turn.

Only fix was manual: truncating the session transcript file on disk.

What would have helped (in order of impact):

1. Hard cap on tool result size in transcript — the base64 image data from image tool results was the biggest offender. These should be summarized or stored externally, with only a reference/summary kept in context.

2. Mid-turn budget check — after each tool result, check if cumulative tool output this turn exceeds a threshold. If so, force a pause rather than continuing to chain more calls.

3. Auto-recovery on overflow — instead of entering a permanent failure loop, force compaction and retry. Currently requires manual transcript truncation.

4. Pre-turn heuristic router — for tasks that are likely to generate heavy tool output (video analysis, large file processing, multi-page web scrapes), auto-route to a sub-agent session instead of running in the channel session. This keeps heavy tool results quarantined.

The sub-agent pattern is workable as a user-side discipline today, but having gateway-level guardrails would make this production-safe. Happy to provide transcript samples if useful.