Model switch can fail silently when carried-over session context is too large

[LunaLee0130]

Summary

When switching models or continuing in a long-running session, OpenClaw can appear to fail silently when the carried-over context is too large. There is no clear error message indicating that the prompt/context window was exceeded, so users cannot tell whether the problem is caused by context overflow, model switching, transport issues, or something else.

Why this is confusing

From the user side, it looks like:

• the model switch "doesn't work"
• the session becomes unresponsive or errors unclearly
• there is no actionable hint that the previous session history is the real cause

In practice, starting a fresh session (/new <model>) works, which strongly suggests the old context was too large and got carried into the model switch.

Expected behavior

At minimum, OpenClaw should surface a clear, user-visible reason, e.g.:

• context window exceeded
• prompt too large for selected model
• session history too long to carry over during model switch

And ideally it should offer a graceful fallback, such as:

1. automatically compacting the session before/while switching models
2. prompting the user to compact
3. transparently starting a compacted continuation session
4. providing a one-click suggested recovery action in the UI/CLI

Actual behavior

• No obvious error message explaining the root cause
• Users have to guess that the session context is too large
• Recovery is manual and non-obvious (/new <model> or maybe /compact, if the user already knows to try that)

Reproduction (likely)

1. Use a long-running session with a lot of accumulated history/tool output
2. Switch to another model
3. Observe that the session fails unclearly / does not provide a useful explanation
4. Start a fresh new session with the same target model
5. The new session works normally

Proposed improvements

1) Better error reporting

If a request fails due to token/context limits, show a specific message instead of a generic or silent failure.

Example:

This session is too large to continue with the selected model. Try /compact or start a fresh session with /new <model>.

2) Automatic compaction

On model switch (or any continuation that exceeds limits), automatically attempt compaction before failing.

3) Safer model switching UX

If the target model has a smaller effective context budget than the current session size, warn before switching or provide an automatic downgrade path.

4) Better observability

Include some visibility into:

• current estimated session size
• selected model context budget
• whether compaction was attempted

Environment

Observed in Telegram/OpenClaw chat workflow while switching models in an existing session.

Impact

This creates a bad UX because the failure mode is silent or ambiguous. Users who are not already familiar with OpenClaw internals will not know that the session simply became too large.

[addhass]

Can confirm this behaviour on v2026.3.28 (local mode, macOS).

What happened:
Switched from Opus to Sonnet via the Control UI model dropdown. Got a generic "The AI service is temporarily overloaded" error displayed in the UI — no indication that context size was the issue.

From the logs:

• overloaded_error on the primary model (Sonnet)
• Failover kicked in correctly and tried the fallback model
• Fallback also errored with api_error: Internal server error
• Multiple live session model switch detected log lines preceding the failure

The confusing part: the error message suggested a transient Anthropic-side issue, but the real cause was likely the session context being too large for the target model. A fresh session on the same model worked immediately.

+1 for auto-compaction on model switch and a clearer error message distinguishing context overflow from provider-side overload.

[1168784]

Strong support for this — we hit the same silent failure during model switch. Our case: long session with accumulated context, switched model mid-session, became unresponsive with no clear error. Fresh session worked fine. Your proposed improvements (better error messages, auto-compaction on switch, session size visibility) would all help significantly. This is a high-impact UX issue for autonomous workflows. macOS, v2026.3.31

[chrispatil]

I think I've found the mechanism behind this, and it's not a validation gap on model switch — it's an interaction between the failover subsystem and safeguard-mode compaction. Posting here in case it helps move the thread.

Observation

Running 2026.4.12 with compaction.mode: "safeguard" and a multi-agent setup. Two long-running sessions were both clearly past openai-codex/gpt-5.4's per-request input-token ceiling (sessions around 200K+ tokens on a model whose advertised contextWindow is 1M). Both agents were configured with identical fallback:

"agents.defaults.model": {
  "primary": "openai-codex/gpt-5.4",
  "fallbacks": ["openrouter/qwen/qwen3.6-plus"]
}

The two sessions behaved very differently:

• Telegram DM session (agent:<name>:telegram:main:direct:…): raised a [context-overflow-diag] event, safeguard compaction fired, session recovered and kept routing to gpt-5.4. Log line:

  [agent/embedded] [context-overflow-diag]
    sessionKey=agent:<name>:telegram:main:direct:… provider=openai-codex/gpt-5.4
    source=assistantError messages=329 compactionAttempts=0 observedTokens=unknown
    error=Context overflow: estimated context size exceeds safe threshold during tool loop.
  [agent/embedded] context overflow detected (attempt 1/3); attempting auto-compaction for openai-codex/gpt-5.4
  [agent/embedded] auto-compaction succeeded for openai-codex/gpt-5.4; retrying prompt
  

• Main heartbeat session (agent:<name>:main): never raised a [context-overflow-diag] event, even though the session file was 12.5MB and clearly larger than the DM session. Every heartbeat for hours silently routed to qwen/qwen3.6-plus. 100% of the last ~30 assistant turns were Qwen. Session kept growing unboundedly.

Suspected mechanism

In safeguard mode, compaction is reactive — it fires on an assistantError: Context overflow event. But the gateway's failover subsystem appears to catch the "too big for openai-codex" condition and route to the fallback model before that error surfaces to the compaction path. When the fallback model has a large enough window (Qwen3.6 Plus has a 1M context window, matching gpt-5.4's advertised window), the fallback accepts the payload and completes the turn. No overflow error is raised → no compaction attempt → context keeps growing → session is permanently stranded on the fallback model.

This explains why the DM session recovered but the heartbeat session didn't: the DM session was running in a context where the failover path didn't intercept (I suspect because of session-level /model state), while the heartbeat session's default-agent config had the fallback wired in and never got to raise overflow.

Minimal repro

1. Configure an agent with:
   • primary: "openai-codex/gpt-5.4" (or any model with a per-request ceiling well below its advertised contextWindow — Codex subscription auth is the cleanest example, per-request cap ≈200–272K on a 1M-window model)
   • fallbacks: ["openrouter/qwen/qwen3.6-plus"] (any large-window fallback works)
   • compaction.mode: "safeguard"
2. Grow the session by normal usage until the primary rejects requests for payload size (doesn't need to be a rate-limit — just large enough that codex replies with a context-too-large error).
3. Observe: every subsequent turn silently routes to the fallback. No [context-overflow-diag] fires. Session grows unboundedly. The only recovery path is a manual JSONL rename + sessions.json entry removal.

Why this is worse than it sounds

The user has no signal anything went wrong — the session is still answering, just on the fallback model. In my case, the only reason I noticed was because the OpenRouter dashboard showed a per-day Qwen spend spike. If the fallback were a cheaper/quieter model the issue could persist indefinitely without detection.

Setting reserveTokens high to proactively fire compaction doesn't help either, because safeguard-mode compaction is still gated on the reactive overflow path — see also #25880 for an adjacent formula bug on the flush side.

Suggested fix direction

Either:

• (a) Have safeguard compaction also fire on failover decisions whose reason is payload-size / context-overflow (not just on assistantError), so a failover on "too large for primary" triggers compaction of the primary's context even though the fallback accepted the turn; or
• (b) Have the failover decision raise an overflow signal alongside the routing decision, so existing compaction handlers pick it up; or
• (c) Make safeguard compaction proactive when reserveTokens headroom is crossed, independent of overflow errors (this is probably the cleanest).

[chrispatil]

Follow-up to my comment above — found a third compounding factor that fully explains why heartbeat-only sessions are a permanent dead zone for compaction.

New finding: preflight compaction is explicitly skipped for heartbeats

In agent-runner.runtime-*.js (2026.4.14), the preflight compaction function (shouldRunPreflightCompaction path) has an early-exit guard:

if (params.isHeartbeat || isCli) return entry ?? params.sessionEntry;

This runs before the reserveTokensFloor / softThresholdTokens threshold is ever evaluated. So even with reserveTokens: 840000 and memoryFlush.softThresholdTokens: 830000 configured, the proactive compaction check never fires on a heartbeat turn.

Why this matters in combination with the failover-preempts-compaction issue

For a session that only receives heartbeat messages (e.g. an agent with an empty task queue that just reads HEARTBEAT.md and replies HEARTBEAT_OK every 30 min):

1. Heartbeat fires → preflight compaction skipped (isHeartbeat guard)
2. Full context sent to codex → codex rejects (payload too large)
3. Gateway failover routes to qwen (1M window, accepts) → no overflow error raised
4. No overflow error → reactive safeguard compaction doesn't trigger either
5. Context keeps growing on qwen → permanently stranded

Both the proactive path (blocked by isHeartbeat) and the reactive path (blocked by failover intercepting the rejection) are dead. The reserveTokens config is irrelevant — it governs a threshold that's never reached.

Evidence

Two agents with identical model/fallback/compaction configs:

Agent	Session type	context-overflow-diag events	Compaction fires?	Stays on codex?
Agent A	Mixed (heartbeats + DMs + cron)	Yes, regularly (~every 4h)	Yes — non-heartbeat turns trigger preflight	Yes
Agent B	Heartbeat-only	Zero for the entire session lifetime	Never	No — silently stranded on qwen after ~21h

Same config. Different behavior. The only difference is whether the session receives any non-heartbeat messages.

Workaround

Setting heartbeat.isolatedSession: true per-agent sidesteps the entire problem — each heartbeat gets a fresh session with no accumulated context, so neither compaction path is needed. But this is a workaround, not a fix.

Suggested addition to fix directions

(d) Remove the isHeartbeat early-exit from the preflight compaction path, or at minimum exempt it when the session has a fallback configured (since those sessions can't rely on the reactive path either).

Version: 2026.4.14 (323493f)

[chrispatil]

Another follow-up from the same investigation. After re-reviewing the preflight compaction path in source, I've found a fourth compounding factor that explains why proactive compaction is ineffective for actively-used sessions even when the threshold math is configured correctly.

New finding: preflight compaction is skipped when persisted token counts are fresh

In 2026.4.23 source, resolveSessionEntryForPreflight in src/auto-reply/reply/agent-runner-memory.ts has a second early-exit guard just below the heartbeat one (Bug 3 above):

// agent-runner-memory.ts
const persistedTotalTokens = entry.totalTokens;
const hasPersistedTotalTokens =
  typeof persistedTotalTokens === "number" &&
  Number.isFinite(persistedTotalTokens) &&
  persistedTotalTokens > 0;
const shouldUseTranscriptFallback =
  entry.totalTokensFresh === false || !hasPersistedTotalTokens;
if (!shouldUseTranscriptFallback) {
  return entry ?? params.sessionEntry;
}

Translated: preflight only runs when the session's persisted token count is explicitly stale (totalTokensFresh === false) or missing. After every successful provider turn, the post-turn persistence path writes totalTokensFresh: true back onto the session entry. So any session that has had even one recent successful turn skips preflight — the more active the session, the less chance it has of ever being preflight-compacted.

Preflight is effectively a catch-up path: it handles sessions that were loaded from disk without a usage snapshot (e.g. after a gateway restart) or that had their cache invalidated. It is not a proactive compaction path for healthy, actively-used sessions.

Evidence

On 2026-04-20, my Ouroboros Telegram DM session grew unboundedly across a full day without auto-compaction, even with the configured reserve threshold well below where the session was sitting. (One calibration note: an initial "229K tokens" figure I had mentally attached to this was never verified against the provider's own prompt view — when the session was manually /compacted later that day the gateway reported 80K, not 229K. The qualitative finding is the one that matters: an active session, with a valid threshold, never preflight-compacted.)

The session was actively used throughout the day, so totalTokensFresh was true on every turn and preflight skipped every turn. Only reactive paths (overflow, timeout, manual) remained, and none of them fired either — manual /compact was ultimately the only path that ran, and it wasn't a configurable threshold behavior, it was me pressing the button.

In pi-embedded-runner-*.js, the compaction triggers are: "budget" (from preflight), "overflow" (reactive, after provider rejection), "timeout_recovery", and "manual". For active sessions, the only proactive path is "budget" — which this totalTokensFresh gate silently disables.

Why it's subtle

All the user-facing knobs (compaction.reserveTokens, compaction.reserveTokensFloor, compaction.memoryFlush.softThresholdTokens) are documented and presented as configuring proactive compaction. A user who sets them expects proactive compaction to fire on their active sessions at the configured threshold. Instead, proactive compaction only runs when the session has been idle long enough for the persisted count to go stale — an implementation detail that's not in the docs. For a busy session, the user's threshold configuration is irrelevant until the session hits the provider's hard ceiling, at which point #58957's original mechanism (failover intercepting the overflow) takes over.

How the four compound

Combined with the other factors on this thread and #66830, the current state is a proactive-compaction dead zone for actively-used sessions on a primary with a per-request ceiling below its advertised window:

• Bug 1 (this issue, original mechanism): reactive overflow compaction is preempted by failover → session silently stranded on fallback.
• Bug 3 (isHeartbeat guard, comment above): heartbeat-only sessions skip preflight regardless of threshold.
• Bug 4 (this comment): actively-used sessions skip preflight regardless of threshold — the "proactive" path is actually a catch-up path for stale sessions.
• Asymmetry bug in [Bug]: Compaction dead zone: reserveTokens vs reserveTokensFloor asymmetry (cf. closed #25880) strands long-running sessions on fallback models #66830 (PR fix(compaction): preflight/memoryFlush gates respect reserveTokens above floor #69379 proposed fix): even when preflight does run, the threshold computes from reserveTokensFloor alone and ignores reserveTokens.

The only recovery paths today are manual compaction (/compact), session-reset cron, or isolatedSession: true for heartbeat-only agents.

Suggested fix directions

(a) Run preflight regardless of totalTokensFresh, using the persisted count when fresh and estimating from transcript only when stale. The fresh count is authoritative — there's no obvious reason to treat it as a signal to skip.

(b) Add a separate post-turn proactive check that uses the fresh persisted count directly (no transcript scan needed, no re-estimation).

(c) At minimum, document the "fresh totals skip preflight" behavior so users understand why their thresholds don't appear to fire on active sessions.

(c) is the cheapest short-term and would let users size their configs around the real behavior rather than the documented one; (a) or (b) would be the durable fix.

Version: 2026.4.23 (tip of main as of this comment). Source references: src/auto-reply/reply/agent-runner-memory.ts in the resolveSessionEntryForPreflight function — same function as the isHeartbeat guard flagged in my earlier comment.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve. Reviewed June 10, 2026, 3:05 AM ET / 07:05 UTC.

Summary
Keep open. Current main has better downstream context-overflow copy and visible fallback notices, but the central model-switch paths still persist and acknowledge the new model without comparing carried-over session size to the target model budget; related PR #90889 explicitly leaves this broader this issue behavior open.

Reproducibility: yes. source-level for the remaining switch-time gap: current WebChat, directive, and sessions.patch model-switch paths apply and acknowledge the override without reading session token totals or comparing against the target model budget; the original live Telegram/Codex failure was not rerun in this read-only review.

Next step
Needs maintainer/product review before a repair because the remaining choices include warning thresholds, automatic compaction, fallback-on-overflow behavior, and Codex/native compaction ownership.

Review details

Best possible solution:

Keep this issue as the canonical maintainer decision thread and implement a shared model-switch context-risk warning or repair path across WebChat, messaging directives, and gateway session patch before separately deciding whether auto-compaction or fallback-on-overflow should be default behavior.

Do we have a high-confidence way to reproduce the issue?

Yes, source-level for the remaining switch-time gap: current WebChat, directive, and sessions.patch model-switch paths apply and acknowledge the override without reading session token totals or comparing against the target model budget; the original live Telegram/Codex failure was not rerun in this read-only review.

Is this the best way to solve the issue?

Current main is not the full solution: it improves downstream overflow and fallback messages, but the best fix needs a shared switch-time risk result plus a maintainer decision on thresholds, automatic compaction, and Codex/native-compaction ownership.

AGENTS.md: found and applied where relevant.

Remaining risk / open question:

• No live Telegram/Codex reproduction was rerun in this read-only review; the keep-open decision is based on reporter logs, related comments, and current source-level gaps.
• Account-tier TPM or subscription quota risk cannot be inferred reliably from static model context-window metadata, so any first fix should avoid overpromising precise provider-limit prediction.

Codex review notes: model gpt-5.5, reasoning high; reviewed against a3d5e5bc7247.

Label changes

Label justifications:

• P1: The issue describes a broken long-running agent/channel workflow where model switches can silently strand or fail sessions for real users.
• impact:session-state: The failure depends on carried-over transcript/context size, compaction state, and whether the existing session can continue safely on the target model.
• impact:auth-provider: The symptoms involve model choice, provider fallback, Codex/OpenAI routing, and provider/account limits during model switches.

Evidence reviewed

Acceptance criteria:

• node scripts/run-vitest.mjs src/auto-reply/reply/directive-handling.model.test.ts src/gateway/sessions-patch.test.ts ui/src/ui/chat/slash-command-executor.node.test.ts
• node scripts/run-vitest.mjs src/auto-reply/reply/agent-runner-memory.test.ts src/auto-reply/reply/agent-runner-execution.test.ts src/auto-reply/fallback-state.test.ts
• After a concrete patch, use the repo's OpenClaw testing guidance for the narrow touched surface and broader changed gate if runtime/provider routing changes.

What I checked:

• Messaging /model applies the switch without a context-risk check: Directive handling calls applyModelOverrideToSessionEntry with markLiveSwitchPending and later emits only a Model set/reset acknowledgement, with no session token estimate or target-budget comparison before confirming the switch. (src/auto-reply/reply/directive-handling.impl.ts:448, a3d5e5bc7247)
• Gateway patch path persists the model without a warning result: sessions.patch resolves the requested model and applies the override with markLiveSwitchPending, but this model branch returns no risk assessment that UI or channel callers could surface. (src/gateway/sessions-patch.ts:520, a3d5e5bc7247)
• WebChat /model confirms the switch without checking carried context: The WebChat slash command sends sessions.patch and returns Model set plus a refresh patch; it does not load current session usage or compare it to the resolved model metadata before acknowledging. (ui/src/ui/chat/slash-command-executor.ts:204, a3d5e5bc7247)
• Current preflight compaction still has scoped dead zones: runPreflightCompactionIfNeeded still returns early for heartbeat and CLI turns and skips OpenClaw preflight compaction for Codex runtime sessions because Codex owns native compaction, so the remaining behavior needs an explicit owner/policy decision rather than a blind one-path patch. (src/auto-reply/reply/agent-runner-memory.ts:712, a3d5e5bc7247)
• Downstream overflow/fallback messaging is only a partial fix: Current main can build explicit context-overflow recovery text and visible fallback notices, which improves later failure handling but does not satisfy the requested switch-time warning. (src/auto-reply/reply/agent-runner-execution.ts:1215, a3d5e5bc7247)
• Codex native compaction contract was inspected: Codex SDK tests exercise thread.compact through the app-server lifecycle, and rollout-trace source records compaction checkpoints as replacement history plus a marker; this supports treating Codex runtime compaction ownership as a real dependency boundary. (../codex/sdk/python/tests/test_app_server_lifecycle.py:245, 00a25e1e0c6e)

Likely related people:

• steipete: Recent GitHub path history shows work on sessions.patch, live model inference, WebChat controls, and normalization across the model/session surfaces implicated by this issue. (role: recent area contributor and likely router; confidence: medium; commits: 9ead0ae9219e, 2b30951b8090, 00d8d7ead059; files: src/gateway/sessions-patch.ts, ui/src/ui/chat/slash-command-executor.ts, src/auto-reply/reply/directive-handling.impl.ts)
• vincentkoc: Recent path history shows queued compaction notice work in agent-runner-memory, adjacent to the remaining preflight/compaction decision surface for this issue. (role: recent compaction-path contributor; confidence: medium; commits: 280d1cb977c4; files: src/auto-reply/reply/agent-runner-memory.ts, src/auto-reply/reply/agent-runner-execution.ts)
• ArthurNie: Recent path history shows a focused fix forcing required preflight compaction before oversized agent turns, directly adjacent to the remaining model-switch context-risk behavior. (role: adjacent preflight compaction contributor; confidence: medium; commits: 9d54285b0d4a; files: src/auto-reply/reply/agent-runner-memory.ts)
• giodl73-repo: Recent path history shows session patch hook work for model changes in the directive path, which is one of the model-switch entry points that would need the shared warning or recovery result. (role: adjacent model-switch contributor; confidence: low; commits: dccf5f684211; files: src/auto-reply/reply/directive-handling.impl.ts)

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.