14ade76956
- Remove unused onBecameUnusable field from CCM credential structs (OCM wires it for WebSocket interruption; CCM has no equivalent) - Replace time.After with time.NewTimer in doHTTPWithRetry and connectorLoop to avoid timer leaks on context cancellation - Pass already-resolved provider to rewriteResponseHeadersForExternalUser instead of re-resolving via credentialForUser - Hoist reverseYamuxConfig to package-level var (immutable, no need to allocate on every call)
198 lines
4.9 KiB
Go
198 lines
4.9 KiB
Go
package ocm
|
|
|
|
import (
|
|
"context"
|
|
"net/http"
|
|
"strconv"
|
|
"strings"
|
|
"sync"
|
|
"time"
|
|
|
|
N "github.com/sagernet/sing/common/network"
|
|
)
|
|
|
|
const (
|
|
defaultPollInterval = 60 * time.Minute
|
|
failedPollRetryInterval = time.Minute
|
|
httpRetryMaxBackoff = 5 * time.Minute
|
|
)
|
|
|
|
const (
|
|
httpRetryMaxAttempts = 3
|
|
httpRetryInitialDelay = 200 * time.Millisecond
|
|
)
|
|
|
|
const sessionExpiry = 24 * time.Hour
|
|
|
|
func doHTTPWithRetry(ctx context.Context, client *http.Client, buildRequest func() (*http.Request, error)) (*http.Response, error) {
|
|
var lastError error
|
|
for attempt := range httpRetryMaxAttempts {
|
|
if attempt > 0 {
|
|
delay := httpRetryInitialDelay * time.Duration(1<<(attempt-1))
|
|
timer := time.NewTimer(delay)
|
|
select {
|
|
case <-ctx.Done():
|
|
timer.Stop()
|
|
return nil, lastError
|
|
case <-timer.C:
|
|
}
|
|
}
|
|
request, err := buildRequest()
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
response, err := client.Do(request)
|
|
if err == nil {
|
|
return response, nil
|
|
}
|
|
lastError = err
|
|
if ctx.Err() != nil {
|
|
return nil, lastError
|
|
}
|
|
}
|
|
return nil, lastError
|
|
}
|
|
|
|
type credentialState struct {
|
|
fiveHourUtilization float64
|
|
fiveHourReset time.Time
|
|
weeklyUtilization float64
|
|
weeklyReset time.Time
|
|
hardRateLimited bool
|
|
rateLimitResetAt time.Time
|
|
accountType string
|
|
remotePlanWeight float64
|
|
lastUpdated time.Time
|
|
consecutivePollFailures int
|
|
usageAPIRetryDelay time.Duration
|
|
unavailable bool
|
|
lastCredentialLoadAttempt time.Time
|
|
lastCredentialLoadError string
|
|
}
|
|
|
|
type credentialRequestContext struct {
|
|
context.Context
|
|
releaseOnce sync.Once
|
|
cancelOnce sync.Once
|
|
releaseFuncs []func() bool
|
|
cancelFunc context.CancelFunc
|
|
}
|
|
|
|
func (c *credentialRequestContext) addInterruptLink(stop func() bool) {
|
|
c.releaseFuncs = append(c.releaseFuncs, stop)
|
|
}
|
|
|
|
func (c *credentialRequestContext) releaseCredentialInterrupt() {
|
|
c.releaseOnce.Do(func() {
|
|
for _, f := range c.releaseFuncs {
|
|
f()
|
|
}
|
|
})
|
|
}
|
|
|
|
func (c *credentialRequestContext) cancelRequest() {
|
|
c.releaseCredentialInterrupt()
|
|
c.cancelOnce.Do(c.cancelFunc)
|
|
}
|
|
|
|
type Credential interface {
|
|
tagName() string
|
|
isAvailable() bool
|
|
isUsable() bool
|
|
isExternal() bool
|
|
fiveHourUtilization() float64
|
|
weeklyUtilization() float64
|
|
fiveHourCap() float64
|
|
weeklyCap() float64
|
|
planWeight() float64
|
|
weeklyResetTime() time.Time
|
|
markRateLimited(resetAt time.Time)
|
|
earliestReset() time.Time
|
|
unavailableError() error
|
|
|
|
getAccessToken() (string, error)
|
|
buildProxyRequest(ctx context.Context, original *http.Request, bodyBytes []byte, serviceHeaders http.Header) (*http.Request, error)
|
|
updateStateFromHeaders(header http.Header)
|
|
|
|
wrapRequestContext(ctx context.Context) *credentialRequestContext
|
|
interruptConnections()
|
|
|
|
setOnBecameUnusable(fn func())
|
|
start() error
|
|
pollUsage(ctx context.Context)
|
|
lastUpdatedTime() time.Time
|
|
pollBackoff(base time.Duration) time.Duration
|
|
usageTrackerOrNil() *AggregatedUsage
|
|
httpClient() *http.Client
|
|
close()
|
|
|
|
// OCM-specific
|
|
ocmDialer() N.Dialer
|
|
ocmIsAPIKeyMode() bool
|
|
ocmGetAccountID() string
|
|
ocmGetBaseURL() string
|
|
}
|
|
|
|
type credentialSelectionScope string
|
|
|
|
const (
|
|
credentialSelectionScopeAll credentialSelectionScope = "all"
|
|
credentialSelectionScopeNonExternal credentialSelectionScope = "non_external"
|
|
)
|
|
|
|
type credentialSelection struct {
|
|
scope credentialSelectionScope
|
|
filter func(Credential) bool
|
|
}
|
|
|
|
func (s credentialSelection) allows(credential Credential) bool {
|
|
return s.filter == nil || s.filter(credential)
|
|
}
|
|
|
|
func (s credentialSelection) scopeOrDefault() credentialSelectionScope {
|
|
if s.scope == "" {
|
|
return credentialSelectionScopeAll
|
|
}
|
|
return s.scope
|
|
}
|
|
|
|
func normalizeRateLimitIdentifier(limitIdentifier string) string {
|
|
trimmedIdentifier := strings.TrimSpace(strings.ToLower(limitIdentifier))
|
|
if trimmedIdentifier == "" {
|
|
return ""
|
|
}
|
|
return strings.ReplaceAll(trimmedIdentifier, "_", "-")
|
|
}
|
|
|
|
func parseInt64Header(headers http.Header, headerName string) (int64, bool) {
|
|
headerValue := strings.TrimSpace(headers.Get(headerName))
|
|
if headerValue == "" {
|
|
return 0, false
|
|
}
|
|
parsedValue, parseError := strconv.ParseInt(headerValue, 10, 64)
|
|
if parseError != nil {
|
|
return 0, false
|
|
}
|
|
return parsedValue, true
|
|
}
|
|
|
|
func parseOCMRateLimitResetFromHeaders(headers http.Header) time.Time {
|
|
activeLimitIdentifier := normalizeRateLimitIdentifier(headers.Get("x-codex-active-limit"))
|
|
if activeLimitIdentifier != "" {
|
|
resetHeader := "x-" + activeLimitIdentifier + "-primary-reset-at"
|
|
if resetStr := headers.Get(resetHeader); resetStr != "" {
|
|
value, err := strconv.ParseInt(resetStr, 10, 64)
|
|
if err == nil {
|
|
return time.Unix(value, 0)
|
|
}
|
|
}
|
|
}
|
|
if retryAfter := headers.Get("Retry-After"); retryAfter != "" {
|
|
seconds, err := strconv.ParseInt(retryAfter, 10, 64)
|
|
if err == nil {
|
|
return time.Now().Add(time.Duration(seconds) * time.Second)
|
|
}
|
|
}
|
|
return time.Now().Add(5 * time.Minute)
|
|
}
|