CLI backend responses sometimes not delivered to Telegram delivery context

[Lead2Legacy]

Summary

When a session has a deliveryContext pointing to a Telegram chat/topic, responses generated by the claude-cli backend are sometimes written to the session transcript (.jsonl) but never delivered to Telegram via the delivery-mirror pathway.

Observed behavior

• Session processes user message, generates assistant response via CLI backend
• Response appears in session transcript with provider: "claude-cli"
• No corresponding delivery-mirror message is created
• User never receives the response in Telegram
• Pattern is intermittent — some responses in the same session deliver fine

Conditions that seem to trigger it

• Sessions with long tool-call chains (multiple reads, searches, bash commands)
• Concurrent sessions competing for sessions.json.lock
• Sessions that hit pi-trajectory-flush cleanup timeouts
• After a SessionWriteLockTimeoutError event, subsequent sessions may silently fail delivery

Evidence from logs

[telegram] dispatch failed: SessionWriteLockTimeoutError: session file locked (timeout 10000ms)
[agent/embedded] agent cleanup timed out: step=pi-trajectory-flush timeoutMs=10000

After these errors, multiple sessions continued generating responses that were never delivered.

Expected behavior

The gateway should verify that each assistant response in a session with a deliveryContext is actually delivered. If delivery fails or doesn't fire, it should retry.

Workaround

We've deployed a launchd watchdog that removes stale sessions.json.lock files older than 30 seconds. This prevents the lock contention cascade but doesn't address the silent delivery failure itself.

Environment

• macOS (Darwin 25.4.0)
• OpenClaw installed via npm (global)
• Telegram channel plugin
• CLI backend with claude-opus models

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Summary
Keep open. Current main still has a source-backed message-loss path: a non-empty routed reply can be treated as successfully delivered when outbound delivery returns zero results, which skips the delivery-mirror append and can bypass Telegram's fallback handling.

Reproducibility: yes. for a focused source-level path: have deliverOutboundPayloads return [] for a non-empty routed final reply, such as the claimed-by-other-owner path. Unclear for the full intermittent macOS lock cascade from the reporter's logs.

Next step
This is a narrow, source-backed user-visible message-loss bug with clear shared implementation files and focused regression coverage targets.

Review details

Best possible solution:

Make routed non-silent final replies require either a provider delivery result or an explicit durable retry/claim outcome before the turn is counted as delivered, with mirror and Telegram fallback coverage.

Do we have a high-confidence way to reproduce the issue?

Yes for a focused source-level path: have deliverOutboundPayloads return [] for a non-empty routed final reply, such as the claimed-by-other-owner path. Unclear for the full intermittent macOS lock cascade from the reporter's logs.

Is this the best way to solve the issue?

Yes, keeping this open and fixing the shared route-reply/outbound delivery contract is the narrow maintainable path. A Telegram-only watchdog or stale-lock cleanup would not close the silent success gap.

Acceptance criteria:

• pnpm test src/auto-reply/reply/route-reply.test.ts src/auto-reply/reply/dispatch-from-config.test.ts src/auto-reply/reply/dispatch-acp-delivery.test.ts src/infra/outbound/deliver.test.ts extensions/telegram/src/bot-message-dispatch.test.ts
• pnpm changed:lanes --json
• pnpm check:changed

What I checked:

• prior_review_context: The existing ClawSweeper comment already identified the zero-result routed-delivery gap; current main at 85e4ec1 still matches that behavior. (85e4ec1fb1ac)
• route_reply_zero_results_success: routeReply awaits deliverOutboundPayloads, reads results.at(-1), and returns ok: true even when there is no result or provider message id. (src/auto-reply/reply/route-reply.ts:228, 85e4ec1fb1ac)
• queue_claim_empty_results: deliverOutboundPayloads returns an empty array when the live send's queued entry is claimed by another owner, and the regression test locks in that no-send result. (src/infra/outbound/deliver.ts:864, 85e4ec1fb1ac)
• mirror_requires_result: The delivery-mirror transcript append only runs when params.mirror is present and results.length > 0, so a zero-result routed send produces no mirror row. (src/infra/outbound/deliver.ts:1290, 85e4ec1fb1ac)
• telegram_fallback_skipped_after_queued_final: Telegram fallback delivery is gated by queuedFinal; dispatch can set queuedFinal from route success even though no Telegram delivery happened. (extensions/telegram/src/bot-message-dispatch.ts:1303, 85e4ec1fb1ac)
• lock_cleanup_is_adjacent: Doctor can clean stale session write locks, but that does not verify routed outbound delivery or mirror success for the final reply. Public docs: docs/gateway/doctor.md. (docs/gateway/doctor.md:306, 85e4ec1fb1ac)

Likely related people:

• steipete: Peter introduced delivered outbound message mirroring and recently touched session write-lock timeout and outbound delivery paths adjacent to the reported cascade. (role: introduced behavior / recent delivery and lock maintainer; confidence: high; commits: fdaeada3ec76, f7ed29e11812; files: src/auto-reply/reply/route-reply.ts, src/infra/outbound/deliver.ts, docs/reference/session-management-compaction.md)
• Agustin Rivera: Recent queued outbound session-context replay work touched deliver.ts and delivery queue recovery/storage, directly adjacent to the zero-result queue-claim path. (role: adjacent queue-context maintainer; confidence: medium; commits: 48aae82bbc19; files: src/infra/outbound/deliver.ts, src/infra/outbound/delivery-queue-recovery.ts, src/infra/outbound/delivery-queue-storage.ts)
• andyylin: The delivery-mirror dedupe fix is credited to @andyylin and touches the transcript mirror behavior adjacent to the missing mirror row symptom. (role: adjacent delivery-mirror contributor; confidence: medium; commits: e95efa437381, d842ec417924; files: src/config/sessions/transcript.ts, src/config/sessions/transcript.test.ts)

Remaining risk / open question:

• The full intermittent macOS lock cascade was not live-reproduced in this read-only review.
• The fix must preserve the no-duplicate-send guarantee for queue entries genuinely owned by recovery/drain while still surfacing a durable retry or failure signal to dispatch.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 85e4ec1fb1ac.

[adagues]

Additional reproduction: Linux + kiro CLI backend (no lock contention)

Environment:

• Ubuntu 24.04 (arm64, AWS c7g)
• OpenClaw 2026.5.6 (npm global install)
• Telegram channel plugin (supergroup with topic bindings)
• CLI backend: kiro-cli v2.2.2 (provider kiro/claude-opus-4.7)
• Agent bound to topic via channels.telegram.groups[].topics[].agentId

Observed behavior (100% reproducible):

1. Message arrives in Telegram topic → dispatched to agent session
2. CLI backend executes kiro-cli, receives valid stdout text
3. Session completes with outcome=completed
4. No sendMessage call to Telegram — user never receives the response

Key difference from original report: There is NO lock contention cascade. No SessionWriteLockTimeoutError, no pi-trajectory-flush timeout. The session file for the topic does not exist on disk (only sessions.json metadata references it), and diagnostic logs show sessionId=unknown throughout.

Debug logs (logging.level=debug):

[diagnostic] message queued: sessionId=unknown sessionKey=agent:kiro-general:telegram:group:...:topic:1172 source=dispatch queueDepth=1 sessionState=idle
[diagnostic] session state: prev=idle new=processing reason="message_start"
[plugins] [hooks] running reply_dispatch (1 handlers, first-claim wins)
[agent/cli-backend] cli exec: provider=kiro model=claude-opus-4.7 promptChars=2875 trigger=user useResume=false session=present resumeSession=none reuse=reusable historyPrompt=none
[agent/cli-backend] cli stdout:
Salut ! Ça roule, et toi ?
[diagnostic] message processed: outcome=completed duration=10562ms
[diagnostic] session state: prev=processing new=idle reason="message_completed"

Critical observation: Comparing with a working embedded-backend agent (same Telegram group, same gateway), the working path shows lane enqueue / lane dequeue events between run completion and delivery. The kiro CLI backend path shows zero lane/delivery events — deliverOutboundPayloads is never reached.

This suggests the bug may be broader than the claimed-by-other-owner empty-result path identified by ClawSweeper. For CLI-backend agents with sessionId=unknown (missing session file), the delivery pipeline appears to be bypassed entirely — not just returning empty results.

Suspected root cause:
The CLI runner returns buildCliRunResult({ payloads: [{ text }] }) correctly, but the dispatch layer that should call routeReply → deliverOutboundPayloads never fires for sessions with sessionId=unknown. The reply_dispatch hook runs but may be short-circuiting when it cannot resolve a valid session context.

Workaround: Switching the agent model to a standard Bedrock provider (embedded backend) delivers reliably to the same Telegram topic. Only the CLI backend path is affected.