fix: harden ChatGPT Responses missing content-type streams

anyech · anyech · commit 90cbbeebc449 · 2026-06-05T00:06:12.000Z
Send SSE Accept headers for native ChatGPT/Codex Responses stream
requests, including the transport-aware alias path.

Only normalize missing Content-Type responses for the native HTTPS
ChatGPT/Codex backend after the body sniffs as SSE. Keep JSON,
HTML, unknown bodies, and non-native providers fail-closed.
diff --git a/src/agents/openai-transport-stream.test.ts b/src/agents/openai-transport-stream.test.ts
@@ -593,6 +593,50 @@ describe("openai transport stream", () => {
       version: "2026.3.22",
       "User-Agent": "openclaw/2026.3.22",
     });
+    expect(headers.Accept).toBeUndefined();
+    expect(headers.accept).toBeUndefined();
+  });
+
+  it("adds SSE Accept only to native ChatGPT/Codex Responses stream requests", () => {
+    const codexModel = {
+      id: "gpt-5.5",
+      name: "GPT-5.5",
+      api: "openai-chatgpt-responses",
+      provider: "openai",
+      baseUrl: "https://chatgpt.com/backend-api/codex",
+      reasoning: true,
+      input: ["text"],
+      cost: { input: 0, output: 0, cacheRead: 0, cacheWrite: 0 },
+      contextWindow: 400000,
+      maxTokens: 128000,
+    } satisfies Model<"openai-chatgpt-responses">;
+    const transportAliasModel = {
+      ...codexModel,
+      api: "openclaw-openai-responses-transport" as Api,
+    } satisfies Model;
+    const nonNativeChatGPTModel = {
+      ...codexModel,
+      baseUrl: "https://api.openai.com/v1",
+    } satisfies Model<"openai-chatgpt-responses">;
+    const openAIModel = {
+      ...codexModel,
+      api: "openai-responses",
+      baseUrl: "https://api.openai.com/v1",
+    } satisfies Model<"openai-responses">;
+
+    expect(testing.buildOpenAISdkRequestOptions(codexModel, undefined, { stream: true })).toEqual({
+      headers: { Accept: "text/event-stream" },
+    });
+    expect(
+      testing.buildOpenAISdkRequestOptions(transportAliasModel, undefined, { stream: true }),
+    ).toEqual({ headers: { Accept: "text/event-stream" } });
+    expect(testing.buildOpenAISdkRequestOptions(codexModel)).toBeUndefined();
+    expect(
+      testing.buildOpenAISdkRequestOptions(nonNativeChatGPTModel, undefined, { stream: true }),
+    ).toBeUndefined();
+    expect(
+      testing.buildOpenAISdkRequestOptions(openAIModel, undefined, { stream: true }),
+    ).toBeUndefined();
   });
 
   it("moves Azure OpenAI completions api-version headers into default query params", () => {
diff --git a/src/agents/openai-transport-stream.ts b/src/agents/openai-transport-stream.ts
@@ -1846,12 +1846,18 @@ function buildOpenAISdkClientOptions(model: Model): { timeout?: number } {
 function buildOpenAISdkRequestOptions(
   model: Model,
   signal?: AbortSignal,
-): { signal?: AbortSignal; timeout?: number } | undefined {
+  options?: { stream?: boolean },
+): { signal?: AbortSignal; timeout?: number; headers?: Record<string, string> } | undefined {
   const timeout = resolveOpenAISdkTimeoutMs(model);
-  if (timeout === undefined && !signal) {
+  const headers =
+    options?.stream === true && usesNativeOpenAICodexResponsesBackend(model)
+      ? { Accept: "text/event-stream" }
+      : undefined;
+  if (timeout === undefined && !signal && !headers) {
     return undefined;
   }
   return {
+    ...(headers ? { headers } : {}),
     ...(signal ? { signal } : {}),
     ...(timeout !== undefined ? { timeout } : {}),
   };
@@ -1938,7 +1944,9 @@ export function createOpenAIResponsesTransportStreamFn(): StreamFn {
           assertCodeModeResponsesToolSurface(params);
         }
         const requestStartedAt = Date.now();
-        const requestOptions = buildOpenAISdkRequestOptions(model, options?.signal);
+        const requestOptions = buildOpenAISdkRequestOptions(model, options?.signal, {
+          stream: true,
+        });
         emitModelTransportDebug(
           log,
           `[responses] start provider=${model.provider} api=${model.api} model=${model.id} ` +
@@ -2078,7 +2086,7 @@ function isNativeOpenAICodexResponsesBaseUrl(baseUrl?: string): boolean {
   }
   try {
     const url = new URL(trimmed);
-    if (url.protocol !== "http:" && url.protocol !== "https:") {
+    if (url.protocol !== "https:") {
       return false;
     }
     if (url.hostname.toLowerCase() !== "chatgpt.com") {
diff --git a/src/agents/provider-transport-fetch.test.ts b/src/agents/provider-transport-fetch.test.ts
@@ -242,34 +242,40 @@ describe("buildGuardedModelFetch", () => {
     expect(release).toHaveBeenCalled();
   });
 
-  it("allows missing content-type when streamed OpenAI-compatible responses contain SSE", async () => {
-    fetchWithSsrFGuardMock.mockResolvedValue({
-      response: new Response(responseStreamText('data: {"ok": true}\n\ndata: [DONE]\n\n')),
-      finalUrl: "https://chatgpt.com/backend-api/codex/responses",
-      release: vi.fn(async () => undefined),
-    });
-    const model = {
-      id: "gpt-5.5",
-      provider: "openai",
-      api: "openclaw-openai-responses-transport",
-      baseUrl: "https://chatgpt.com/backend-api/codex",
-    } as unknown as Model<"openai-responses">;
+  it.each([
+    ["direct", "openai-chatgpt-responses"],
+    ["transport alias", "openclaw-openai-responses-transport"],
+  ] as const)(
+    "allows missing content-type when native ChatGPT/Codex Responses streams contain SSE through %s API",
+    async (_label, api) => {
+      fetchWithSsrFGuardMock.mockResolvedValue({
+        response: new Response(responseStreamText('data: {"ok": true}\n\ndata: [DONE]\n\n')),
+        finalUrl: "https://chatgpt.com/backend-api/codex/responses",
+        release: vi.fn(async () => undefined),
+      });
+      const model = {
+        id: "gpt-5.5",
+        provider: "openai",
+        api,
+        baseUrl: "https://chatgpt.com/backend-api/codex",
+      } as unknown as Model<"openai-responses">;
 
-    const response = await buildGuardedModelFetch(model)(
-      "https://chatgpt.com/backend-api/codex/responses",
-      {
-        method: "POST",
-        headers: { "content-type": "application/json" },
-        body: JSON.stringify({ model: "gpt-5.5", stream: true }),
-      },
-    );
-    const items = [];
-    for await (const item of Stream.fromSSEResponse(response, new AbortController())) {
-      items.push(item);
-    }
+      const response = await buildGuardedModelFetch(model)(
+        "https://chatgpt.com/backend-api/codex/responses",
+        {
+          method: "POST",
+          headers: { "content-type": "application/json" },
+          body: JSON.stringify({ model: "gpt-5.5", stream: true }),
+        },
+      );
+      const items = [];
+      for await (const item of Stream.fromSSEResponse(response, new AbortController())) {
+        items.push(item);
+      }
 
-    expect(items).toEqual([{ ok: true }]);
-  });
+      expect(items).toEqual([{ ok: true }]);
+    },
+  );
 
   it("returns promptly for missing content-type SSE streams that remain open", async () => {
     const source = openResponseStreamText('data: {"ok": true}\n\n');
@@ -341,11 +347,12 @@ describe("buildGuardedModelFetch", () => {
     expect(items).toEqual([{ ok: true }]);
   });
 
-  it("synthesizes SSE for missing content-type JSON returned to streaming SDK requests", async () => {
+  it("rejects missing content-type JSON-like bodies returned to native ChatGPT/Codex streaming SDK requests", async () => {
+    const release = vi.fn(async () => undefined);
     fetchWithSsrFGuardMock.mockResolvedValue({
       response: new Response(responseStreamText('{"ok": true}')),
       finalUrl: "https://chatgpt.com/backend-api/codex/responses",
-      release: vi.fn(async () => undefined),
+      release,
     });
     const model = {
       id: "gpt-5.5",
@@ -354,21 +361,94 @@ describe("buildGuardedModelFetch", () => {
       baseUrl: "https://chatgpt.com/backend-api/codex",
     } as unknown as Model<"openai-responses">;
 
-    const response = await buildGuardedModelFetch(model)(
-      "https://chatgpt.com/backend-api/codex/responses",
-      {
+    await expect(
+      buildGuardedModelFetch(model)("https://chatgpt.com/backend-api/codex/responses", {
         method: "POST",
         headers: { "content-type": "application/json" },
         body: JSON.stringify({ model: "gpt-5.5", stream: true }),
-      },
-    );
-    const items = [];
-    for await (const item of Stream.fromSSEResponse(response, new AbortController())) {
-      items.push(item);
-    }
+      }),
+    ).rejects.toMatchObject({
+      name: "ProviderHttpError",
+      status: 200,
+      code: "invalid_provider_content_type",
+      errorType: "invalid_response",
+    });
+    expect(release).toHaveBeenCalled();
+  });
 
-    expect(response.headers.get("content-type")).toContain("text/event-stream");
-    expect(items).toEqual([{ ok: true }]);
+  it.each([
+    ["non-native provider", "openrouter", "openai-responses", "https://openrouter.ai/api/v1"],
+    [
+      "wrong base URL",
+      "openai",
+      "openclaw-openai-responses-transport",
+      "https://api.openai.com/v1",
+    ],
+    [
+      "insecure native URL",
+      "openai",
+      "openclaw-openai-responses-transport",
+      "http://chatgpt.com/backend-api/codex",
+    ],
+  ] as const)(
+    "rejects missing content-type SSE outside native ChatGPT/Codex Responses: %s",
+    async (_label, provider, api, baseUrl) => {
+      const release = vi.fn(async () => undefined);
+      const model = {
+        id: "gpt-5.4",
+        provider,
+        api,
+        baseUrl,
+      } as unknown as Model<"openai-responses">;
+      fetchWithSsrFGuardMock.mockResolvedValue({
+        response: new Response(responseStreamText('data: {"ok": true}\n\ndata: [DONE]\n\n')),
+        finalUrl: `${baseUrl.replace(/\/+$/u, "")}/responses`,
+        release,
+      });
+
+      await expect(
+        buildGuardedModelFetch(model)(`${baseUrl.replace(/\/+$/u, "")}/responses`, {
+          method: "POST",
+          headers: { "content-type": "application/json" },
+          body: JSON.stringify({ model: "gpt-5.4", stream: true }),
+        }),
+      ).rejects.toMatchObject({
+        name: "ProviderHttpError",
+        status: 200,
+        code: "invalid_provider_content_type",
+        errorType: "invalid_response",
+      });
+      expect(release).toHaveBeenCalled();
+    },
+  );
+
+  it("rejects missing content-type streamed OpenAI-compatible responses with unknown bodies", async () => {
+    const release = vi.fn(async () => undefined);
+    const model = {
+      id: "gpt-5.5",
+      provider: "openai",
+      api: "openclaw-openai-responses-transport",
+      baseUrl: "https://chatgpt.com/backend-api/codex",
+    } as unknown as Model<"openai-responses">;
+    fetchWithSsrFGuardMock.mockResolvedValue({
+      response: new Response(responseStreamText("not-sse")),
+      finalUrl: "https://chatgpt.com/backend-api/codex/responses",
+      release,
+    });
+
+    await expect(
+      buildGuardedModelFetch(model)("https://chatgpt.com/backend-api/codex/responses", {
+        method: "POST",
+        headers: { "content-type": "application/json" },
+        body: JSON.stringify({ model: "gpt-5.5", stream: true }),
+      }),
+    ).rejects.toMatchObject({
+      name: "ProviderHttpError",
+      status: 200,
+      code: "invalid_provider_content_type",
+      errorType: "invalid_response",
+    });
+    expect(release).toHaveBeenCalled();
   });
 
   it("rejects missing content-type streamed OpenAI-compatible responses with HTML bodies", async () => {
diff --git a/src/agents/provider-transport-fetch.ts b/src/agents/provider-transport-fetch.ts
@@ -234,6 +234,46 @@ function isOpenAISdkStreamContentType(contentType: string): boolean {
   return /\btext\/event-stream\b/i.test(contentType) || isJsonContentType(contentType);
 }
 
+function isOpenAIChatGPTResponsesStreamModel(model: Model): boolean {
+  return (
+    model.provider === "openai" &&
+    (model.api === "openai-chatgpt-responses" ||
+      model.api === "openclaw-openai-responses-transport")
+  );
+}
+
+function isNativeOpenAIChatGPTResponsesBaseUrl(baseUrl?: string): boolean {
+  const trimmed = typeof baseUrl === "string" ? baseUrl.trim() : "";
+  if (!trimmed) {
+    return false;
+  }
+  try {
+    const url = new URL(trimmed);
+    if (url.protocol !== "https:") {
+      return false;
+    }
+    if (url.hostname.toLowerCase() !== "chatgpt.com") {
+      return false;
+    }
+    const pathname = url.pathname.replace(/\/+$/u, "").toLowerCase();
+    return [
+      "/backend-api",
+      "/backend-api/v1",
+      "/backend-api/codex",
+      "/backend-api/codex/v1",
+    ].includes(pathname);
+  } catch {
+    return false;
+  }
+}
+
+function allowsMissingOpenAISdkStreamContentType(model: Model): boolean {
+  return (
+    isOpenAIChatGPTResponsesStreamModel(model) &&
+    isNativeOpenAIChatGPTResponsesBaseUrl(model.baseUrl)
+  );
+}
+
 type OpenAISdkStreamBodyKind = "html" | "json" | "sse" | "unknown";
 
 function classifyOpenAISdkStreamBodyPrefix(text: string): OpenAISdkStreamBodyKind {
@@ -311,16 +351,13 @@ async function normalizeOpenAISdkStreamContentType(params: {
   if (!params.response.ok || !params.response.body || isOpenAISdkStreamContentType(contentType)) {
     return params.response;
   }
-  if (!contentType.trim()) {
+  if (!contentType.trim() && allowsMissingOpenAISdkStreamContentType(params.model)) {
     // ChatGPT Codex can stream valid SSE with no content-type header. Sniff a
     // clone so the SDK still receives the original body once we normalize it.
     const kind = await classifyOpenAISdkStreamBody(params.response).catch(() => "unknown" as const);
     if (kind === "sse") {
       return withOpenAISdkStreamContentType(params.response, "text/event-stream; charset=utf-8");
     }
-    if (kind === "json") {
-      return withOpenAISdkStreamContentType(params.response, "application/json; charset=utf-8");
-    }
   }
   const body = await readResponseTextLimited(params.response).catch(() => "");
   await params.release().catch(() => undefined);
