[Bug]: openai-codex Telegram session replays prior assistant reply to unrelated turns when the prior turn included a tool call (transport state-chaining + LCM glob)

[ericxyz86]

Bug type

Behavior bug

Beta release blocker

No

Summary

A openai-codex/* session on Telegram (Codex SDK Responses path) can answer a new, unrelated user message with the exact assistant reply from a previous turn when the previous turn included a function call. Three independent contributors in the openai-codex transport and the lossless-claw plugin combine to leak prior turn state across the session.

Steps to reproduce

1. OpenClaw 2026.4.29 with a Telegram channel bound to a main-style agent and an openai-codex/* model on the ChatGPT subscription path.
2. Send a Telegram message that requires a tool call, e.g. a price lookup: what is the price of SOL. Observe the agent reply with a tool-call result, e.g. $83.95.
3. Without restarting the session, send an unrelated knowledge-only question: what is the capital of the philippines.
4. Observe the agent reply with the prior turn's exact assistant text ($83.95) instead of Manila.

The bug requires the prior turn in the same session to contain function_call + function_call_output items. Pure knowledge-only sequences (e.g. France? → Paris, 2+3? → 5, clear sky color? → Blue) do not reproduce, which has caused the bug to be missed in casual verification.

Expected behavior

A new user message with no semantic relationship to the prior turn yields a fresh assistant reply derived from the new message, not a replay of the previous turn's text.

Actual behavior

Within the same Telegram session, the assistant text from the prior tool-call turn is returned verbatim. The session transcript shows the new user message correctly, but the assistant response is the prior turn's content. The symptom can persist for many subsequent turns (informally "Paris forever") until the session is rotated.

OpenClaw version

2026.4.29 (also affects dist/transport-policy-*.js and dist/openai-transport-stream-*.js shipped on 2026.4.26 and 2026.4.27 per the same-named exports). Release 2026.5.2 was not directly verified; #75154 edited an adjacent code path in 2026.5.2, so the patch sites may have moved.

Operating system

macOS Sonoma (Darwin 25.4.0, arm64). Not OS-specific — bug is in the cross-platform openclaw dist files.

Install method

Global npm install (npm install -g openclaw).

Model

openai-codex/gpt-5.5 (also reproduces on openai-codex/gpt-5.4, openai-codex/gpt-5.4-mini).

Provider / routing chain

openclaw → openai-codex provider → ChatGPT subscription OAuth → https://chatgpt.com/backend-api/codex/responses. The transport code path is createOpenAIResponsesTransportStreamFn in provider-stream-*.js (Codex SDK Responses, not the pi-ai SSE path). lossless-claw is the active conversation-memory plugin.

Logs, screenshots, and evidence

The bug clears completely and stays cleared only when all three of the following empirical patches are applied. Removing any one of them lets the bug regress as soon as a tool-call turn enters a session.

Patch 1 — extensions/openai/transport-policy.ts (resolveOpenAITransportTurnState): the response correlation header x-client-request-id is currently not set turn-scoped. Forwarding the same x-client-request-id across turns in a session correlates with server-side replay behavior on the codex /backend-api/codex/responses endpoint. Patch makes it turn-scoped:

   const attempt = String(Math.max(1, ctx.attempt));
+  const requestId = turnId || `${sessionHeaders["x-openclaw-session-id"] ?? "session"}:${attempt}`;
   ...
   return {
     headers: {
       ...sessionHeaders,
+      "x-client-request-id": requestId,
       "x-openclaw-turn-id": turnId,
       "x-openclaw-turn-attempt": attempt,
     },
     ...
   };

(The x-openclaw-turn-id / x-openclaw-turn-attempt headers from the #73963 fix are preserved.)

Patch 2 — extensions/openai/transport-stream.ts (Codex Responses sanitizer + replay flags):

 const OPENAI_CODEX_RESPONSES_UNSUPPORTED_PARAMS = [
   ...
   "metadata",
+  "prompt_cache_key",
 ];
 ...
- const shouldReplayReasoningItems = <existing-condition>;
+ const shouldReplayReasoningItems = false;
- const shouldReplayResponsesItemIds = <existing-condition>;
+ const shouldReplayResponsesItemIds = model.provider !== "openai-codex";

The prompt_cache_key addition extends the same allowlist that #73963 used for metadata. The codex /backend-api/codex/responses endpoint does not honor prompt_cache_key semantics in the same shape as api.openai.com/v1/responses; sending it can produce server-side caching of the wrong shape. Disabling reasoning-item replay and Responses item-ID replay specifically for openai-codex prevents prior-turn item IDs from being passed back to the server in subsequent turns.

Patch 3 — ~/.openclaw/openclaw.json plugins.entries["lossless-claw"].config.ignoreSessionPatterns: entries like agent:main:telegram:* do not match across the : separator under lossless-claw's glob syntax, so Telegram session keys of shape agent:main:telegram:direct:<chat_id> are not ignored by LCM. Replacing * with ** matches across : and prevents LCM from ingesting and leaking Telegram session context across turns. (This patch is in lossless-claw config rather than openclaw source; relevant here because the symptom does not fully clear without it.)

A self-contained reapply script that encodes all three patches (with node --check syntax verification per patched file and gateway restart on success) is available on request — happy to PR it as a maintenance utility, or maintainers can derive equivalent fixes inline.

Verification

After applying all three patches on 2026.4.29 and clearing the poisoned LCM state for the affected session keys (one-time, only when symptom is already present):

sqlite3 ~/.openclaw/lcm.db "update conversations set archived_at = datetime('now') where session_key like 'agent:main:telegram:%' and active=1 and archived_at is null;"

The full repro sequence (SOL price → capital of philippines) returns correct Manila and stays correct across many subsequent turns.

Impact and severity

• Affects: any openai-codex/* session running through Telegram (Codex SDK Responses transport) where prior turns can include tool calls. Telegram is the primary affected channel because long-lived sessions accumulate many tool-call turns.
• Severity: high. Symptom is silent — the agent appears to respond, but with prior-turn content. Indistinguishable from a confused model unless the user notices the duplicate text.
• Frequency: deterministic when the prior turn included a tool call; never reproduces in pure knowledge-only sequences.

Related issues

• [Bug]: 2026.4.26 injects unsupported metadata field into openai-codex Responses requests; ChatGPT backend returns HTTP 400, surfaced as "400 status code (no body)" #73963 — closed 2026-04-30. Same resolveOpenAITransportTurnState code path. The fix there scoped metadata removal to the codex provider but did not address x-client-request-id scoping or the codex Responses replay flags.
• Allow cron payloads to specify a stable prompt_cache_key independent of per-run sessionId #76218 — open. Discusses cron-stable prompt_cache_key. Adjacent: this report extends the unsupported-params list for the codex endpoint, which is the opposite direction.
• Question: should openai-codex-responses be in shouldRepairMalformedToolCallArguments? #75154 — closed in 2026.5.2. Touched the same transport-stream code path for tool-call argument repair; downstream patches may need to re-anchor against new line offsets.
• Bug: sub-agent announce completion causes parent session to generate out-of-context replies #74286 — open. "Sub-agent announce completion causes parent session to generate out-of-context replies." Different trigger, related symptom shape.
• [Bug]: macOS 26.4.1 / 2026.4.29 Telegram Web UI-only replies with partial streaming, polling stall, and session modelOverride pollution #75498 — open. macOS 2026.4.29 Telegram Web UI-only replies / model override pollution. Adjacent symptom on the same channel + version.

Additional information

The three causes were isolated empirically: each was patched individually first (each appeared to fix the simple knowledge case), then regressed when a tool-call turn was introduced into the session. All three patches together produce a stable fix across our verification corpus. Maintainers may identify a single deeper root cause that subsumes one or more of these patches; the report is structured to make that easier.

[clawsweeper]

Codex review: keeping this open for maintainer follow-up; there is still a little grit to resolve.

Summary
Keep open: current main only partially covers the native Codex replay surface and still preserves request/cache identity plus historical tool outputs, while follow-up Codex tool-replay work and lossless-claw evidence mean the observable Telegram stale-reply bug is not proven fixed.

Reproducibility: no. for high-confidence end-to-end reproduction on current main. Source inspection still shows the reported state paths, and comments include live LCM duplication evidence, but the exact Telegram/OpenAI-Codex/lossless-claw sequence was not rerun here.

Next step
Needs maintainer triage because the remaining work crosses intentional Codex cache/request policy, an active draft tool-replay PR, and lossless-claw context behavior.

Review details

Best possible solution:

Keep this open until maintainers split or resolve the remaining surfaces: land or replace the focused completed-tool replay fix, decide the request/cache identity policy, track the lossless-claw context duplication separately, and then verify the original Telegram sequence live.

Do we have a high-confidence way to reproduce the issue?

No for high-confidence end-to-end reproduction on current main. Source inspection still shows the reported state paths, and comments include live LCM duplication evidence, but the exact Telegram/OpenAI-Codex/lossless-claw sequence was not rerun here.

Is this the best way to solve the issue?

Unclear. The shipped item-id suppression is a good narrow core step, but the requested all-in-one direction conflicts with current docs/tests around request/cache identity and overlaps a separate lossless-claw context path.

Acceptance criteria:

• Live Telegram session on current main with openai-codex/gpt-5.5 plus lossless-claw: run a tool-call turn, then an unrelated knowledge turn, and verify the answer is fresh.
• Targeted transport coverage around extensions/openai/transport-policy.test.ts and src/agents/openai-transport-stream.test.ts if request/cache identity changes.
• Review or replace Prune completed Codex Responses tool replay #79655 for completed tool replay pruning before closing this issue.

What I checked:

• Current request identity remains session-scoped: Current main sets x-client-request-id from the normalized session id, and the Codex transport test explicitly expects the session id for native ChatGPT Codex routes. (extensions/openai/transport-policy.ts:62, 333f65fc8a12)
• Current native Codex payload preserves prompt_cache_key: buildOpenAIResponsesParams still sets prompt_cache_key from options.sessionId, the native Codex unsupported-params list does not include it, and tests assert that native Codex sanitization preserves it. (src/agents/openai-transport-stream.ts:1382, 333f65fc8a12)
• Historical tool results still serialize into later Responses input: The Responses converter still turns every transformed toolResult into a function_call_output; native Codex disables replay item ids but still permits prior reasoning/message/function payload replay. (src/agents/openai-transport-stream.ts:581, 333f65fc8a12)
• Docs describe the remaining behavior as current: The transcript hygiene matrix says native ChatGPT Codex Responses replays prior Responses reasoning/message/function payloads without item ids while preserving session prompt_cache_key, matching the current tests rather than the issue's full requested patch. Public docs: docs/reference/transcript-hygiene.md. (docs/reference/transcript-hygiene.md:120, 333f65fc8a12)
• Merged related work is a partial transport fix: The merged related pull request changed the same transport replay surface, but its body explicitly left lossless-claw memory reconciliation out of scope and the landed code still preserves some reported state. (29eb47e7364e)
• Active follow-up targets remaining completed-tool replay: The open draft pull request Prune completed Codex Responses tool replay #79655 targets completed native Codex function_call_output replay, confirming that a meaningful part of the reported tool-replay surface remains under review. (c2cc268c212b)

Likely related people:

• steipete: Authored the follow-up commit that adjusted Codex replay identity, credited the changelog, and has recent work on OpenAI replay/auth behavior in the central transport file. (role: recent area contributor and merger; confidence: high; commits: 15d3fd83bb78, 29eb47e7364e, f3361dc92870; files: src/agents/openai-transport-stream.ts, extensions/openai/transport-policy.ts, docs/reference/transcript-hygiene.md)
• MkDev11: Authored the merged native Codex stale Responses replay-state implementation and commented that they were working on this issue. (role: related merged fix author; confidence: medium; commits: 27e467ad230f; files: src/agents/openai-transport-stream.ts, extensions/openai/transport-policy.ts, extensions/openai/transport-policy.test.ts)
• fanfanliu964-web: Opened the active draft pull request for completed native Codex Responses tool replay pruning on the same transport conversion path. (role: active follow-up contributor; confidence: medium; commits: c2cc268c212b; files: src/agents/openai-transport-stream.ts, src/agents/openai-transport-stream.responses-tool-replay.test.ts)

Remaining risk / open question:

• No live current-main Telegram plus ChatGPT Codex plus lossless-claw rerun was performed in this read-only review.
• The ChatGPT Codex backend's request-id and prompt-cache semantics are private, so source inspection cannot prove that preserving the current identities is harmless.
• The lossless-claw evidence may need a separate plugin/context-engine fix rather than a core transport change.

Codex review notes: model gpt-5.5, reasoning high; reviewed against 333f65fc8a12.

[coolmanns]

Related live evidence from a Telegram/OpenAI-Codex session on OpenClaw 2026.5.2 + lossless-claw 0.9.2: I found a reproducible-looking ledger divergence that may explain part of the replay/stale-answer symptom, especially after tool-call turns.

Redacted comparison:

• OpenClaw session JSONL: 54 type=message entries.
• Corresponding LCM conversation messages: 150 rows.
• Delta: +96 rows in LCM.
• JSONL had no duplicate normalized role+content hashes for real user/assistant/tool-result entries.
• LCM had duplicate identity_hash clusters for user, assistant, and tool rows.
• Some duplicated LCM rows were selected in context_items, so they were actively injected into runtime context.

Notable pattern:

• Tool-result JSONL entries normalize into LCM tool rows, which is expected.
• But earlier tool/assistant/user spans were then re-imported as new LCM seq rows.
• Several duplicated rows were from turns with tool calls or diagnostic tool outputs.

Relevant logs from lossless-claw around the divergence:

dedup: oversized, storedCount=<n> batchLen=<n>, no overlap found — ingesting full batch
recentBootstrapImportReason="reconciled missing session messages"
duplicateMessageClusters=[...]
duplicateRefClusters=[]

So, for this issue, there may be two interacting layers:

1. Codex transport/tool-call replay state as described in the issue body.
2. LCM context pollution where reconcile/import appends already-imported transcript spans, making stale assistant/tool content available again in prompt context.

This does not prove the Codex transport part is harmless, but it does show a concrete LCM-side way stale tool/assistant turns can re-enter context even when the OpenClaw JSONL itself is not duplicated.

[MkDev11]

@vincentkoc am working on the issue