[Bug]: Context overflow / compaction can orphan agent:main:main and silently rotate WebChat to a new session

[rjdjohnston]

Summary

Long-running WebChat main sessions can silently lose the live agent:main:main mapping after context overflow / compaction-path failures, causing the next visible user message to start a new session id even though the prior transcript still exists on disk.

From the user's perspective, this looks like the session "disappeared" or got wiped:

• the visible main WebChat chat appears to restart
• prior checkpoints/history are no longer attached to the active session row
• the agent behaves like it lost context
• old transcripts are still present on disk, but the active session store now points agent:main:main at a new sessionId

This seems related to #70330, but the trigger here is different:

• WebChat can silently rotate agent:main:main after gateway restart, hiding prior session/checkpoints #70330 is about restart/reconnect / reset-like rotation
• this report is about rotation after context overflow / compaction handling, with no gateway restart required

Environment

• OpenClaw CLI: 2026.4.21 (f788c88)
• Channel/surface: WebChat direct
• Session key: agent:main:main
• Model: openai-codex/gpt-5.4
• Host OS: Darwin 25.4.0 arm64

What happened

On Wednesday, April 22, 2026 (America/New_York), the main WebChat session hit context-overflow conditions multiple times during heavy tool use.

Relevant observed timeline:

• 10:19:21 PM EDT — log recorded a context overflow for agent:main:main tied to session file b8a5c854-4632-4954-ae09-fd507ada1e8a.jsonl
• 10:21:14 PM EDT — log recorded skipping compaction checkpoint persist: session not found for agent:main:main
• 10:30:51 PM EDT — another context overflow for agent:main:main, now tied to df065d9f-9445-4401-a94b-61042c7eff40.jsonl
• 11:17:42 PM EDT — another context overflow for that same later session file
• after that, later visible user messages landed in a fresh active session mapping with session id f36b8f4d-bdca-41a2-b13c-a6ec3016218a

Important detail: the earlier transcripts were still on disk. They were not actually deleted from the transcript folder. What changed was the active sessions.json entry for agent:main:main, which ended up pointing at a new session id.

Why this looks like a bug

The sequence suggests the session store entry for the active main session becomes missing/unavailable during overflow/compaction handling:

1. main session grows very large
2. provider/tool loop hits context overflow
3. compaction checkpoint code tries to persist and logs session not found
4. active agent:main:main mapping is no longer the old session
5. next user message creates or uses a new session id
6. user experiences this as spontaneous session loss

The log line below is especially suspicious because it shows the compaction/checkpoint path could not find the active session entry it expected:

skipping compaction checkpoint persist: session not found

Sanitized evidence

Observed log lines from /tmp/openclaw/openclaw-2026-04-22.log:

2026-04-22 22:19:21 EDT  [context-overflow-diag] sessionKey=agent:main:main ... sessionFile=/Users/.../b8a5c854-4632-4954-ae09-fd507ada1e8a.jsonl
2026-04-22 22:21:14 EDT  skipping compaction checkpoint persist: session not found  { sessionKey: agent:main:main }
2026-04-22 22:30:51 EDT  [context-overflow-diag] sessionKey=agent:main:main ... sessionFile=/Users/.../df065d9f-9445-4401-a94b-61042c7eff40.jsonl
2026-04-22 23:17:42 EDT  [context-overflow-diag] sessionKey=agent:main:main ... sessionFile=/Users/.../df065d9f-9445-4401-a94b-61042c7eff40.jsonl

Session files observed afterward:

old transcript still present:
  ~/.openclaw/agents/main/sessions/df065d9f-9445-4401-a94b-61042c7eff40.jsonl

new active transcript:
  ~/.openclaw/agents/main/sessions/f36b8f4d-bdca-41a2-b13c-a6ec3016218a.jsonl

Current sessions.json afterward pointed agent:main:main at the new session id instead of the prior active transcript.

Expected behavior

When a main WebChat session overflows context or compaction/checkpoint persistence has trouble:

• OpenClaw should not silently orphan the active agent:main:main mapping
• the existing session should remain the active logical session unless the user explicitly resets it
• checkpoint persistence failure should not cause a hidden session rotation
• if recovery/new-session behavior does happen, it should be explicit and auditable in the UI and store

Actual behavior

• overflow happened
• compaction/checkpoint path logged session not found
• active WebChat main mapping later pointed to a different session id
• user-visible effect was "we lost the session again"
• prior transcript remained on disk, but continuity in the active UI/session mapping was broken

Possible root-cause area

This log pair looks like the key clue:

• context overflow in the embedded runner
• compaction checkpoint persistence cannot find the current session entry

The checkpoint persistence code already logs this exact case:

skipping compaction checkpoint persist: session not found

So one plausible failure mode is:

• overflow/compaction or related recovery mutates/removes the active session-store entry unexpectedly
• checkpoint persistence races or arrives after the store no longer contains the expected canonical key
• later inbound WebChat traffic reinitializes agent:main:main onto a new session id

Suggested fixes

1. Treat agent:main:main disappearance during overflow/compaction as a high-severity invariant violation and log the old/new session ids plus store path.
2. Prevent checkpoint persistence failure from leaving the active main session unmapped.
3. Add an explicit recovery path that preserves the active session id unless the user intentionally resets.
4. If a fallback/new session must be created, emit a visible/auditable session-rotation event in the transcript/store/UI.
5. Add regression coverage for:
   • large WebChat direct session
   • context overflow during tool-heavy turn
   • post-overflow compaction/checkpoint handling
   • subsequent user message should continue same active session id

Severity / impact

This is risky for long-running operational sessions because the user can believe they are continuing the same stateful conversation when the agent has actually been remapped onto a fresh session.

That is especially dangerous for write-capable local-admin workflows because the agent may continue from incomplete or reconstructed context while the user thinks continuity was preserved.

[rafiki270]

TRIAGE RESULT: VALID — Bug confirmed

Reviewer: Orchestrator (direct code inspection via gh api, swarm degraded — 5/5 gateway timeouts)

Root cause identified:

src/gateway/session-compaction-checkpoints.ts:149-160

await updateSessionStore(target.storePath, (store) => {
  const existing = store[target.canonicalKey];
  if (!existing?.sessionId) {
    return; // ← early return, stored = false
  }
  // ... checkpoint appending ...
  stored = true;
});

if (!stored) {
  log.warn("skipping compaction checkpoint persist: session not found", {
    sessionKey: params.sessionKey,
  });
  return null;
}

Mechanism:

• During context overflow, handleCompactionEnd() → persistSessionCompactionCheckpoint() is called for the agent:main:main session
• The checkpoint-persistence path checks whether the session store entry exists — if it does not have a sessionId, it silently bails out with only a warn log
• The session not found log line you observed is the exact sentinel from this code path
• The session store entry for agent:main:main can become unavailable during overflow/compaction handling, causing subsequent inbound WebChat messages to create/use a new session id silently

Severity: HIGH — Long-running operational sessions silently lose continuity. The user experiences apparent "session loss" with no warning. Particularly dangerous for write-capable local-admin workflows where the agent may operate from incomplete/reconstructed context while the user believes continuity was preserved.

Suggested fixes (from issue):

1. Treat agent:main:main disappearance during overflow/compaction as a high-severity invariant violation; log old/new session ids
2. Prevent checkpoint persistence failure from leaving the active main session unmapped
3. Add explicit recovery path preserving active session id unless user intentionally resets
4. If fallback/new session must be created, emit a visible/auditable session-rotation event in transcript/store/UI

Label ready-for-pr: Blocked — label does not exist in this repository and org-level GH permissions prevent creating it.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Workflow note: Future ClawSweeper reviews update this same comment in place.

How this review workflow works

• ClawSweeper keeps one durable marker-backed review comment per issue or PR.
• Re-runs edit this comment so the latest verdict, findings, and automation markers stay together instead of adding duplicate bot comments.
• A fresh review can be triggered by eligible @clawsweeper re-review comments, exact-item GitHub events, scheduled/background review runs, or manual workflow dispatch.
• PR/issue authors and users with repository write access can comment @clawsweeper re-review or @clawsweeper re-run on an open PR or issue to request a fresh review only.
• Maintainers can also comment @clawsweeper review to request a fresh review only.
• Fresh-review commands do not start repair, autofix, rebase, CI repair, or automerge.
• Maintainer-only repair and merge flows require explicit commands such as @clawsweeper autofix, @clawsweeper automerge, @clawsweeper fix ci, or @clawsweeper address review.
• Maintainers can comment @clawsweeper explain to ask for more context, or @clawsweeper stop to stop active automation.

Summary
Keep open. Current main still routes overflow and compaction-failure recovery through the session reset helper that can remap the active session key, and the open closing implementation has not merged.

Reproducibility: yes. source-level with high confidence: context-overflow payloads and thrown compaction failures still reach resetSessionAfterCompactionFailure, which rewrites the active session mapping through resetReplyRunSession. I did not run a live WebChat overflow scenario in this read-only review.

Next step
No separate repair lane should be queued because an open closing PR already owns the implementation path and needs review, refresh, and proof rather than a competing fix.

Review details

Best possible solution:

Land a refreshed #70479 or equivalent patch that preserves the active logical session mapping after overflow or compaction failure with focused regression coverage.

Do we have a high-confidence way to reproduce the issue?

Yes, source-level with high confidence: context-overflow payloads and thrown compaction failures still reach resetSessionAfterCompactionFailure, which rewrites the active session mapping through resetReplyRunSession. I did not run a live WebChat overflow scenario in this read-only review.

Is this the best way to solve the issue?

Yes for keeping this open: the narrow maintainable path is to stop failed overflow or compaction recovery from silently rotating the active session. The linked closing PR or an equivalent refreshed patch should be reviewed and landed before this issue closes.

Label changes:

• add P1: The report describes a real long-running WebChat workflow losing active conversation continuity after context overflow, which breaks an agent/channel workflow for users.
• add impact:data-loss: The active session row can stop pointing at the prior transcript/checkpoints, making existing conversation data appear lost even though files remain on disk.
• add impact:session-state: The core failure is drift between the logical agent:main:main session and the persisted session id/transcript mapping.
• add issue-rating: 🦞 diamond lobster: Current issue advisory state selects this label.
• add clawsweeper:source-repro: Current issue advisory state selects this label.

Label justifications:

• P1: The report describes a real long-running WebChat workflow losing active conversation continuity after context overflow, which breaks an agent/channel workflow for users.
• impact:data-loss: The active session row can stop pointing at the prior transcript/checkpoints, making existing conversation data appear lost even though files remain on disk.
• impact:session-state: The core failure is drift between the logical agent:main:main session and the persisted session id/transcript mapping.

What I checked:

• Embedded overflow still reaches session reset: Current main treats an embedded context-overflow error payload as a session-level failure and calls resetSessionAfterCompactionFailure before returning recovery text. (src/auto-reply/reply/agent-runner-execution.ts:2186, cbf72e5e26ee)
• Thrown compaction failure still reaches session reset: The thrown compaction-failure branch also calls resetSessionAfterCompactionFailure, so failed compaction can still enter the reset path on current main. (src/auto-reply/reply/agent-runner-execution.ts:2316, cbf72e5e26ee)
• Reset helper rewrites the active session mapping: resetReplyRunSession generates a new session id, assigns nextEntry.sessionFile, updates activeSessionStore[sessionKey], persists the new store entry, and refreshes queued follow-up state. (src/auto-reply/reply/agent-runner-session-reset.ts:94, cbf72e5e26ee)
• Reported checkpoint sentinel remains: Checkpoint persistence still returns null and logs skipping compaction checkpoint persist: session not found when the canonical store entry is missing. (src/gateway/session-compaction-checkpoints.ts:463, cbf72e5e26ee)
• Compaction continuity contract supports treating this as broken behavior: The compaction docs say the full conversation history stays on disk and auto-compaction runs on context-overflow errors, so silent active-session orphaning is not the intended user-visible outcome. Public docs: docs/concepts/compaction.md. (docs/concepts/compaction.md:19, cbf72e5e26ee)
• Open closing PR is still unmerged: Live GitHub metadata shows fix(auto-reply): preserve sessions after compaction failures #70479 is an open, unmerged, conflicting closing PR for this issue, so the issue should remain open until that or an equivalent fix lands. (74a145f6de62)

Likely related people:

• steipete: Commit 6774332 added reset-after-compaction-overflow behavior, and path shortlog shows Peter Steinberger as the dominant contributor across the implicated auto-reply/session files. (role: introduced reset behavior and heavy area contributor; confidence: high; commits: 67743325eeb5, 9faa95d55832; files: src/auto-reply/reply/agent-runner.ts, src/auto-reply/reply/agent-runner-execution.ts, src/auto-reply/reply/agent-runner-session-reset.ts)
• larlyssa: Commit 576485b added the user-facing compaction-failure reset return path that still describes the reset as expected recovery. (role: related recovery contributor; confidence: medium; commits: 576485b0c915; files: src/auto-reply/reply/agent-runner-execution.ts)
• neeravmakwana: Commit 3de5476 added replay of recent user/assistant turns across silent session rotations in the reset helper implicated by this report. (role: adjacent session-continuity contributor; confidence: medium; commits: 3de5476f5145; files: src/auto-reply/reply/agent-runner-session-reset.ts, src/auto-reply/reply/session-transcript-replay.ts)
• scoootscooob: Commit f4fcaa0 introduced the compaction-checkpoint persistence feature containing the reported session not found sentinel. (role: checkpoint feature contributor; confidence: medium; commits: f4fcaa09a358; files: src/gateway/session-compaction-checkpoints.ts)
• fuller-stack-dev: The open closing implementation specifically targets preserving sessions after compaction failures and is the current linked implementation path. (role: open fix PR owner; confidence: medium; commits: 74a145f6de62; files: src/auto-reply/reply/agent-runner-execution.ts, src/auto-reply/reply/agent-runner.ts, src/auto-reply/reply/agent-runner-execution.test.ts)

Remaining risk / open question:

• I did not replay a full live WebChat overflow in this read-only review; the reproduction is source-level and matches the reported sentinel path.
• The linked fix PR is still open and conflicting, so current main has not closed the user-visible bug.
• The related missing-transcript durability variant at [Bug]: Context overflow reset can map sessionFile to nonexistent transcript, orphaning real session history #75151 may still need a separate guard after this mapping fix.

Codex review notes: model gpt-5.5, reasoning high; reviewed against cbf72e5e26ee.

[rjdjohnston]

This is still a MAJOR issue. Not sure how to put this in front of maintainers.