fix(auth): skip downtime for request-scoped 404 errors in model state management

2026-03-30 22:22:42 +08:00
parent 486cd4c343
commit 17363edf25
2 changed files with 204 additions and 66 deletions
--- a/sdk/cliproxy/auth/conductor.go
+++ b/sdk/cliproxy/auth/conductor.go
@@ -1734,6 +1734,7 @@ func (m *Manager) MarkResult(ctx context.Context, result Result) {
 			}
 		} else {
 			if result.Model != "" {
 				if !isRequestScopedNotFoundResultError(result.Error) {
 					state := ensureModelState(auth, result.Model)
 					state.Unavailable = true
 					state.Status = StatusError
@@ -1805,6 +1806,7 @@ func (m *Manager) MarkResult(ctx context.Context, result Result) {
 					auth.Status = StatusError
 					auth.UpdatedAt = now
 					updateAggregatedAvailability(auth, now)
 				}
 			} else {
 				applyAuthFailureState(auth, result.Error, result.RetryAfter, now)
 			}
@@ -2056,11 +2058,29 @@ func isModelSupportResultError(err *Error) bool {
 	return isModelSupportErrorMessage(err.Message)
 }
 func isRequestScopedNotFoundMessage(message string) bool {
 	if message == "" {
 		return false
 	}
 	lower := strings.ToLower(message)
 	return strings.Contains(lower, "item with id") &&
 		strings.Contains(lower, "not found") &&
 		strings.Contains(lower, "items are not persisted when `store` is set to false")
 }
 func isRequestScopedNotFoundResultError(err *Error) bool {
 	if err == nil || statusCodeFromResult(err) != http.StatusNotFound {
 		return false
 	}
 	return isRequestScopedNotFoundMessage(err.Message)
 }
 // isRequestInvalidError returns true if the error represents a client request
 // error that should not be retried. Specifically, it treats 400 responses with
-// "invalid_request_error" and all 422 responses as request-shape failures,
+// "invalid_request_error", request-scoped 404 item misses caused by `store=false`,
-// where switching auths or pooled upstream models will not help. Model-support
+// and all 422 responses as request-shape failures, where switching auths or
-// errors are excluded so routing can fall through to another auth or upstream.
+// pooled upstream models will not help. Model-support errors are excluded so
 // routing can fall through to another auth or upstream.
 func isRequestInvalidError(err error) bool {
 	if err == nil {
 		return false
@@ -2072,6 +2092,8 @@ func isRequestInvalidError(err error) bool {
 	switch status {
 	case http.StatusBadRequest:
 		return strings.Contains(err.Error(), "invalid_request_error")
 	case http.StatusNotFound:
 		return isRequestScopedNotFoundMessage(err.Error())
 	case http.StatusUnprocessableEntity:
 		return true
 	default:
@@ -2083,6 +2105,9 @@ func applyAuthFailureState(auth *Auth, resultErr *Error, retryAfter *time.Durati
 	if auth == nil {
 		return
 	}
 	if isRequestScopedNotFoundResultError(resultErr) {
 		return
 	}
 	auth.Unavailable = true
 	auth.Status = StatusError
 	auth.UpdatedAt = now
--- a/sdk/cliproxy/auth/conductor_overrides_test.go
+++ b/sdk/cliproxy/auth/conductor_overrides_test.go
@@ -12,6 +12,8 @@ import (
 	cliproxyexecutor "github.com/router-for-me/CLIProxyAPI/v6/sdk/cliproxy/executor"
 )
 const requestScopedNotFoundMessage = "Item with id 'rs_0b5f3eb6f51f175c0169ca74e4a85881998539920821603a74' not found. Items are not persisted when `store` is set to false. Try again with `store` set to true, or remove this item from your input."
 func TestManager_ShouldRetryAfterError_RespectsAuthRequestRetryOverride(t *testing.T) {
 	m := NewManager(nil, nil, nil)
 	m.SetRetryConfig(3, 30*time.Second, 0)
@@ -447,3 +449,114 @@ func TestManager_MarkResult_RespectsAuthDisableCoolingOverride(t *testing.T) {
 		t.Fatalf("expected NextRetryAfter to be zero when disable_cooling=true, got %v", state.NextRetryAfter)
 	}
 }
 func TestManager_MarkResult_RequestScopedNotFoundDoesNotCooldownAuth(t *testing.T) {
 	m := NewManager(nil, nil, nil)
 	auth := &Auth{
 		ID:       "auth-1",
 		Provider: "openai",
 	}
 	if _, errRegister := m.Register(context.Background(), auth); errRegister != nil {
 		t.Fatalf("register auth: %v", errRegister)
 	}
 	model := "gpt-4.1"
 	m.MarkResult(context.Background(), Result{
 		AuthID:   auth.ID,
 		Provider: auth.Provider,
 		Model:    model,
 		Success:  false,
 		Error: &Error{
 			HTTPStatus: http.StatusNotFound,
 			Message:    requestScopedNotFoundMessage,
 		},
 	})
 	updated, ok := m.GetByID(auth.ID)
 	if !ok || updated == nil {
 		t.Fatalf("expected auth to be present")
 	}
 	if updated.Unavailable {
 		t.Fatalf("expected request-scoped 404 to keep auth available")
 	}
 	if !updated.NextRetryAfter.IsZero() {
 		t.Fatalf("expected request-scoped 404 to keep auth cooldown unset, got %v", updated.NextRetryAfter)
 	}
 	if state := updated.ModelStates[model]; state != nil {
 		t.Fatalf("expected request-scoped 404 to avoid model cooldown state, got %#v", state)
 	}
 }
 func TestManager_RequestScopedNotFoundStopsRetryWithoutSuspendingAuth(t *testing.T) {
 	m := NewManager(nil, nil, nil)
 	executor := &authFallbackExecutor{
 		id: "openai",
 		executeErrors: map[string]error{
 			"aa-bad-auth": &Error{
 				HTTPStatus: http.StatusNotFound,
 				Message:    requestScopedNotFoundMessage,
 			},
 		},
 	}
 	m.RegisterExecutor(executor)
 	model := "gpt-4.1"
 	badAuth := &Auth{ID: "aa-bad-auth", Provider: "openai"}
 	goodAuth := &Auth{ID: "bb-good-auth", Provider: "openai"}
 	reg := registry.GetGlobalRegistry()
 	reg.RegisterClient(badAuth.ID, "openai", []*registry.ModelInfo{{ID: model}})
 	reg.RegisterClient(goodAuth.ID, "openai", []*registry.ModelInfo{{ID: model}})
 	t.Cleanup(func() {
 		reg.UnregisterClient(badAuth.ID)
 		reg.UnregisterClient(goodAuth.ID)
 	})
 	if _, errRegister := m.Register(context.Background(), badAuth); errRegister != nil {
 		t.Fatalf("register bad auth: %v", errRegister)
 	}
 	if _, errRegister := m.Register(context.Background(), goodAuth); errRegister != nil {
 		t.Fatalf("register good auth: %v", errRegister)
 	}
 	_, errExecute := m.Execute(context.Background(), []string{"openai"}, cliproxyexecutor.Request{Model: model}, cliproxyexecutor.Options{})
 	if errExecute == nil {
 		t.Fatal("expected request-scoped not-found error")
 	}
 	errResult, ok := errExecute.(*Error)
 	if !ok {
 		t.Fatalf("expected *Error, got %T", errExecute)
 	}
 	if errResult.HTTPStatus != http.StatusNotFound {
 		t.Fatalf("status = %d, want %d", errResult.HTTPStatus, http.StatusNotFound)
 	}
 	if errResult.Message != requestScopedNotFoundMessage {
 		t.Fatalf("message = %q, want %q", errResult.Message, requestScopedNotFoundMessage)
 	}
 	got := executor.ExecuteCalls()
 	want := []string{badAuth.ID}
 	if len(got) != len(want) {
 		t.Fatalf("execute calls = %v, want %v", got, want)
 	}
 	for i := range want {
 		if got[i] != want[i] {
 			t.Fatalf("execute call %d auth = %q, want %q", i, got[i], want[i])
 		}
 	}
 	updatedBad, ok := m.GetByID(badAuth.ID)
 	if !ok || updatedBad == nil {
 		t.Fatalf("expected bad auth to remain registered")
 	}
 	if updatedBad.Unavailable {
 		t.Fatalf("expected request-scoped 404 to keep bad auth available")
 	}
 	if !updatedBad.NextRetryAfter.IsZero() {
 		t.Fatalf("expected request-scoped 404 to keep bad auth cooldown unset, got %v", updatedBad.NextRetryAfter)
 	}
 	if state := updatedBad.ModelStates[model]; state != nil {
 		t.Fatalf("expected request-scoped 404 to avoid bad auth model cooldown state, got %#v", state)
 	}
 }