📋 Review Summary

This PR fixes a critical unrecoverable wedge that occurs when streaming connections drop mid-tool_use on weak networks. The fix ensures partial assistant turns containing tool calls are persisted to history before re-throwing stream errors, maintaining the tool_use/tool_result pairing invariant required by Anthropic-compatible APIs. The implementation is well-reasoned with comprehensive tests and excellent documentation.

🔍 General Feedback

• Exceptional documentation: The code comments and PR description provide outstanding context about the root cause, including the specific Anthropic SSE emission pattern (content_block_start → input_json_delta* → content_block_stop → message_delta → message_stop)
• Targeted fix: The change is surgical—only persisting partial turns when hasToolCall === true, deliberately skipping text-only partials to avoid biasing retry behavior
• Shared code path benefit: The fix in processStreamResponse automatically covers both Anthropic and OpenAI content generators
• Test coverage: Two new test cases precisely validate both branches of the new error handling logic

🎯 Specific Feedback

🟡 High

• File: packages/core/src/core/geminiChat.ts:1320 - The streamError capture pattern is sound, but consider whether the caught error should be logged before re-throwing for debugging purposes. Weak-network issues are notoriously hard to reproduce, and having structured logs when this recovery path triggers would aid future debugging.

  Suggested fix:

    } catch (e) {
      streamError = e;
      // Log for debugging weak-network recovery path
      if (hasToolCall) {
        debugLogger.log('Persisting partial assistant turn due to stream error');
      }
    }

🟢 Medium

• File: packages/core/src/core/geminiChat.ts:1257-1268 - The comment explaining streamError is extremely detailed (which is good), but it's positioned before the variable is actually used. Consider moving this extensive explanation to the recovery branch at line 1383 where the actual decision logic lives, and keep a shorter note here.

  Suggested restructuring:

    let streamError: unknown = null;  // Captured mid-stream; see recovery logic below
  
    try {
      // ... loop unchanged ...
    } catch (e) {
      streamError = e;
    }
  
    // ... later, at the recovery branch ...
    /**
     * Mid-stream failure recovery: [full explanation currently at line 1257]
     */
    if (streamError !== null) { ... }

• File: packages/core/src/core/geminiChat.test.ts:702-760 - The test "persists partial assistant turn when stream throws after a tool_use chunk" is thorough but could benefit from explicitly asserting that the history length is exactly 2 (user + model) after the error, making the test's intent even clearer to future readers.

  Suggested addition (after line 758):

      expect(history.length).toBe(2);  // user turn + model turn with tool_use

🔵 Low

• File: packages/core/src/core/geminiChat.ts:1383 - The recovery comment block is ~20 lines. While the detail is valuable, consider extracting this into a private method like shouldPersistPartialTurn() with an inline JSDoc. This would make the main flow easier to scan and the recovery logic independently testable.

• File: packages/core/src/core/geminiChat.test.ts - Consider adding a test case that simulates the full retry flow (Ctrl+Y scenario) to verify that the persisted tool_use allows the subsequent ToolResult submission to succeed rather than 400ing. This would be an integration-style test complementing the current unit tests.

✅ Highlights

• Brilliant root cause analysis: The PR description's explanation of the Anthropic SSE emission pattern and how the drop between content_block_stop and message_stop causes the wedge is exemplary technical writing
• Discriminating fix: The deliberate choice to persist tool_use partials but NOT text-only partials shows deep understanding of the retry path's behavior and avoids introducing duplicate output issues
• Comprehensive test coverage: The two new test cases cover both branches of the new logic with realistic stream simulations
• Cross-provider benefit: Fixing the shared processStreamResponse method means Anthropic, OpenAI, and DeepSeek all benefit without duplicate changes
• Clear failure mode documentation: The comment explaining why stripOrphanedUserEntries can't recover from this scenario (it only strips trailing user entries, not resurrect lost tool_use blocks) is invaluable for future maintainers

For reviewers — this PR is the minimal, surgical fix. The broader weak-network resilience story has two follow-ups filed so they can be reviewed independently:

• Add SSE stream idle watchdog to abort hung streams (weak-network hang) #4177 — SSE stream idle watchdog (90s default). Addresses the hang-forever symptom, which fix(core,cli): close tool_use↔tool_result invariant across all failure paths #4176 alone doesn't fix (we still wait on streamResponse.next() indefinitely if the SSE goes silent without dropping). Modeled on claude-code/services/api/claude.ts:1868-1928.
• Close tool_use↔tool_result invariant at failure point (defense in depth) #4178 — Synthetic is_error: true tool_result repair pass at session-load and Retry. Defense-in-depth for residual paths where the scheduler contract doesn't hold (process crash, --resume of a crashed session, scheduler bugs). Modeled on claude-code/query.ts:123-149 (yieldMissingToolResultBlocks).

Together (#4176 + #4177 + #4178) qwen-code's behavior on weak networks would be comparable to upstream Claude Code, addressing the same class of bug as anthropics/claude-code#6836 (open meta-issue with ~155 duplicate reports, oncall label).

Addressed all review feedback in fc4d57b6e. Four issues from the inline threads + self-review pass:

[P0] tool_result ordering in synthesized user turns (gpt-5.5 thread) — The repair pass was appending synthetic functionResponse to the trailing user turn's parts, so a Ctrl+Y race produced user[text, fr] and Anthropic-compatible backends still 400 ("tool_result must follow tool use"). Upstream Claude Code's utils/messages.ts:hoistToolResults confirms the requirement. Repair now slots synthetic fr before the first non-functionResponse part, and after any pre-existing real fr parts (preserves real-tool-result order on a parallel-partial-submit). Two test assertions added to lock the order.

[P0] TS2352 in the dedup test fixture — My lateRealResult was forcing an incompatible object through a direct cast to TrackedCompletedToolCall; vitest (esbuild) accepted it but tsc rejected with TS2352. Fixture restructured to match the type's actual shape (matches the existing Mocked patterns at L597-606 / L2396-2401). Changed-file tsc now clean for this file.

[P1] recordAssistantTurn divergence on stream error (Copilot thread) — Recording previously ran on every stream error (gated only on parts being non-empty), so text-only partials we intentionally don't push to in-memory history were still written to chat-recording JSONL — --resume's transcript-load path would then re-inject a model turn the in-session run discarded. Recording gate now matches the history.push decision: record iff we will persist (success path OR streamError + hasToolCall + parts). The "don't persist plain-text partials" intent is now consistent across in-memory and on-disk state.

[P2] startChat resume integration test (gpt-5.5 thread) — Added two client.test.ts cases for the resume-time repair wiring: (a) extraHistory ending in model[functionCall] triggers synthetic fr injection on init; (b) happy-path resume is a no-op. Defends against a future reorder/removal of the repairOrphanedToolUseTurnsInHistory() call in startChat() regressing the --resume recovery path.

Test summary: 91/91 geminiChat, 133/133 client, 92/92 useGeminiStream; full core suite (8186 tests) green; changed-file tsc clean.

Untouched (acknowledged but out-of-scope):

• AbortSignal vs network-error in the partial-push branch (self-review pre-release: fix ci #1) — currently both paths trigger the partial push. Real user-abort path in useGeminiStream.handleUserCancelledEvent runs addHistory({ role: 'user', parts: combinedParts }) with cancellation responseParts for every in-flight tool, so the dangling model[fc] gets paired by the user-cancel path's own machinery; the partial-push isn't actually orphaning anything. If we ever want a cleaner separation, the if (signal?.aborted) guard belongs around the partial-push itself, not the synthesis (which already handles the abort + non-cancellation case correctly).
• Refactor the two history.push({role: 'model', parts: [...]}) call sites into a single helper (self-review TypeError in Authentication Selection Interface #5) — both call sites pass exactly the same expression but diverge on when they're reached. Extracting now would obscure the success-vs-recovery distinction the comment block above each push explains; happy to revisit if a future change adds a third call site.

Comment density in packages/core/src/core/geminiChat.ts — non-blocking, readability/maintainability.

The fix itself looks sound; this note is only about comment volume. Roughly 60% of the +918 lines in geminiChat.ts are comments, with many 20–40 line prose blocks, and several of them document hypothetical futures or code the diff itself labels as no-op / unreachable. A few examples:

• the popPartialIfPushed() call in the CompressionStatus.COMPRESSED branch — the comment itself calls it a "defense-in-depth no-op", then spends ~12 lines justifying keeping it;
• the recovery-path pop before the OUTPUT_RECOVERY_MESSAGE handling — a ~38-line block;
• addHistory — ~30 lines describing a future caller that "cannot legitimately hit this branch";
• the tool_use_id ... must have a corresponding tool_use block wedge is re-explained nearly in full in 5+ separate places.

Why I'd trim it:

• comments drift out of sync as the code evolves, and the long speculative ones rot fastest;
• signal-to-noise — the load-bearing invariant gets buried, which makes future review and maintenance harder rather than easier.

To be clear, I'm not arguing against documenting the invariants: the bug is subtle and already caused a production wedge, so capturing the tool_use↔tool_result contract is well justified. It's the volume and the speculative future-proofing prose I'd push back on.

Suggestion (fine as a follow-up, shouldn't gate the merge):

• aim to cut roughly in half — keep a 1–2 line pointer at each site;
• consolidate the race-class analysis and the "why this no-op is kept" rationale into a single design note (one section-level block comment, or the PR description / a design doc) and link back to it;
• drop or one-line the branches the code already labels "currently unreachable" / "defense-in-depth no-op";
• state each invariant once in a canonical place instead of re-deriving the 400 explanation at every call site.

@pomelo-nwu thanks for the careful read — the cleanup landed in 298588190. Took your suggestions point-by-point:

• Single canonical design note: one block above ORPHAN_TOOL_USE_REPAIR_REASON now covers the tool_use_id 400 wedge, the three race classes (A Ctrl+Y mid-flight, B process crash, C SSE drop), the two-layer fix, and the partial-push marker lifecycle. Every per-site comment that used to repeat this is now a one-line pointer.
• One-lined the unreachable / no-op branches: the popPartialIfPushed COMPRESSED-branch comment went from 14 lines to 4 (no-op today — kept for uniformity in case a future in-place tryCompress stops resetting the marker). The InvalidStreamError content-retry "no reachable test path until the predicates diverge" note stays short.
• Trimmed the speculative / future-caller prose: recovery-catch block ~38 → 7, addHistory invariant ~22 → 5, processStreamResponse partial-push ~22 → 8. The wedge text itself was re-explained nearly in full at 5 sites — only the canonical block has it now.

Net –139 / +117 in geminiChat.ts (so about the cut-in-half you suggested). Behavior unchanged; 375/375 still pass.

The invariants you flagged as load-bearing (tool_use↔tool_result contract, marker lifecycle, hoist before tail-append) all kept their "why" — just lifted out of the per-site duplicates and into one canonical place so future drift hits one site instead of five.

🧪 Local full-suite test report @ `298588190`

Ran `npx vitest run packages/core packages/cli` locally on the latest PR head to back up the green CI check.

Overall

PR-touched suites — all green

Covers everything this PR added: partial-push marker invariants × 6, duplicate-fr drop × 2, recovery-path pop ordering, escalation flush, transient-retry rollback, `getHistoryFunctionResponseIds` unit tests × 6, mixed-batch dedup fast-path assertion.

The 1 failure — pre-existing on `main`, unrelated to this PR

```
FAIL packages/core/src/core/anthropicContentGenerator/anthropicContentGenerator.test.ts

treats unset baseURL as Anthropic-native (SDK default targets api.anthropic.com)

expected 'claude-cli/1.2.3 (external, cli)' to contain 'QwenCode/1.2.3'
at anthropicContentGenerator.test.ts:262:35
```

Verification: temporarily `git checkout origin/main -- packages/core/src/core/anthropicContentGenerator/` and re-ran that single case → still fails on main alone. This PR doesn't touch any `anthropicContentGenerator/*` files. The test was authored 2026-05-11 (`bdd5b602de`), and the regression appears to stem from `4b25f9c05` (`fix(core): set x-api-key alongside Authorization on Anthropic outbound (#4323)`) — expected the build-time-injected `QwenCode/1.2.3` but receives the hard-coded `claude-cli/...` UA.

→ Worth a separate follow-up issue for the Anthropic content generator maintainer; out of scope for #4176.

Conclusion

Zero regressions from this PR across the full `packages/core` + `packages/cli` matrix (15,863/15,863 passing once you exclude the pre-existing unrelated fail). Safe to merge.

Second pass on the comment-density feedback — e2033ec87. The first commit (298588190) consolidated the wedge analysis into one canonical block but left several 20–25 line per-site blocks; this one takes them down to the 1–2 line pointer pattern.

geminiChat.ts: 2384 → 2207 lines (-177). Comment density 37% → 32%.

Trimmed (one-or-two-line pointer + canonical note reference):

• partial-push field doc blocks (16+22 → 5 lines combined)
• clearPendingPartialState (10 → 4)
• sendMessageStream inline-repair block (29 → 7)
• finally JSONL flush block (32 → 8)
• repairOrphanedToolUseTurns function doc (39 → 14)
• scan/decision/mutation phase docs (11–22 → 4–9 each)
• RepairPlan interface (14 → 1)
• GeminiChat.repairOrphanedToolUseTurns wrapper (9 → 3)
• getHistoryFunctionResponseIds (13 → 6)

What's left untouched is intentional: the canonical note (the consolidation point), pre-existing upstream JSDoc (ctor / `sendMessageStream` / `getHistory`), and the three blocks already at the cap (Reactive compression no-op = 4 lines, recovery catch = 7, addHistory invariant = 5).

375/375 still pass; tsc + eslint + prettier clean.

Following this closely — really appreciate the depth of the root-cause writeup, and especially the explicit contrast with upstream's in-band StreamingToolExecutor (atomic .discard() at the synthesis point vs. our out-of-band React scheduler workaround). That framing made the underlying architectural gap unusually clear.

Filed #4387 as an RFC to track the longer-term direction: moving tool dispatch from end-of-turn batched to stream-driven in-band, building on top of the invariant guarantees this PR establishes. Not asking for any action on this PR — the RFC is explicit that it builds on #4176 and intentionally avoids proposing anything that would conflict with the work in flight here. I'll revise the design notes once this lands.

Happy to discuss in #4387 or here, whichever you prefer.

Real-environment verification (weak-network drop)

I ran an end-to-end weak-network reproduction against a real backend to check this PR's behavior, and want to share the data + an honest scope caveat.

Setup

Real CLI in tmux (dev mode, running the TS source) → a transparent SSE proxy that injects a mid-stream drop → dashscope deepseek-v4-pro (OpenAI-protocol endpoint). The proxy forwards the real upstream stream but destroy()s the socket right after the read_file tool_call's finish_reason:"tool_calls" + usage chunk, just before [DONE] — the OpenAI-path analogue of the Race-C drop point. Isolated HOME/cwd, YOLO mode. Prompt asks the model to read a file containing a secret code.

Result — main and PR behave identically; neither wedges

Both versions recover cleanly on Ctrl+Y. Crucially, the retry request (#2) carries no dangling assistant[tool_calls] in either version — the wedge signature is absent on both. Proxy request-log (identical across main and PR):

REQUEST #1  system | user | assistant | user                                             -> 200, INJECTED DROP
REQUEST #2  system | user | assistant | user                                             -> 200  (Ctrl+Y retry, clean)
REQUEST #3  ... | assistant[tool_calls:read_file] | tool[tool_result:call_…]             -> 200  (paired)

Why the OpenAI path doesn't wedge

On the OpenAI path the pipeline holds the finish chunk and only yields the functionCall on the next chunk (pipeline.ts:248-274), so a drop before [DONE] rolls the whole turn back cleanly — no orphan is produced. The wedge this PR targets is specific to the anthropic protocol, where the functionCall is yielded at content_block_stop and the tool is still scheduled after the drop.

Honest scope / caveat

I only exercised the OpenAI path. I did not reproduce the anthropic-protocol wedge — the scenario this PR actually fixes. That conclusion rests on code reading + the PR description + the upstream claude-code#6836 analogy, not a live repro.

Takeaway

The fix addresses a real bug, but it appears anthropic-protocol-specific. OpenAI-compatible providers (incl. dashscope deepseek/qwen) don't hit this wedge at this drop point, so the "applies to openai-compatible providers too" framing may overstate the impact for those users. Since the change touches the shared core stream path for all providers, the unchecked manual weak-network test on the anthropic path is the highest-value item to complete before merge — it's the one scenario that demonstrates the fix's positive value.

REQUEST #1  system | user | assistant | user                                  -> 200, 注入断流
REQUEST #2  system | user | assistant | user                                  -> 200（Ctrl+Y 重试，messages 干净、无 orphan tool_call）
REQUEST #3  … | assistant[tool_calls:read_file] | tool[tool_result:call_…]    -> 200（配对正确）