google-vertex provider authentication fails when running through proxychains

[seb3mz]

Bug Description

OpenClaw's google-vertex provider consistently fails with 401 CREDENTIALS_MISSING authentication errors when the gateway service runs through proxychains.

Key findings:

1. ✅ Service Account credentials are valid and work directly
2. ✅ gcloud ADC authentication succeeds without proxy
3. ✅ Vertex AI API is accessible when proxychains is removed
4. ❌ But OpenClaw's google-vertex provider fails with proxychains

The error occurs because @google/genai library's internal authentication flow appears to be disrupted by proxychains' LD_PRELOAD interception.

Environment

• OpenClaw Version: 2026.3.13
• Node.js: v22.22.0
• OS: Linux 5.15.0-117-generic (x64)
• Proxy: proxychains 4.x with localnet bypass configured
• Google Cloud: Service Account authentication via gcloud ADC
• Model: google-vertex/gemini-2.5-pro

Steps to Reproduce

1. Configure OpenClaw gateway to run through proxychains (common for users behind corporate/firewall proxies):

   ExecStart=/usr/bin/proxychains -q /usr/bin/node /path/to/openclaw/dist/index.js gateway --port 18789

2. Set up Google Vertex AI authentication:

   export GOOGLE_APPLICATION_CREDENTIALS=/path/to/service-account.json
   export GOOGLE_CLOUD_PROJECT=your-project
   export GOOGLE_CLOUD_LOCATION=us-central1

3. Configure OpenClaw to use Vertex AI:

   openclaw models set google-vertex/gemini-2.5-pro

4. Observe authentication failures in logs:

   401 UNAUTHENTICATED: "API keys are not supported by this API. Expected OAuth2 access token or other authentication credentials..."
   CREDENTIALS_MISSING
   

Expected Behavior

Vertex AI authentication should work through proxychains, or at least fail gracefully with a clear error message about proxy interference.

Actual Behavior

Consistent 401 CREDENTIALS_MISSING errors that trigger unnecessary API call cascades:

• Each user request triggers 3-5 failed API attempts
• Response delays of 10-60 seconds
• Unnecessary consumption of API quotas

Root Cause Analysis

Based on debugging:

1. Direct API tests succeed - Vertex AI API is accessible with Service Account
2. gcloud ADC works - gcloud auth application-default print-access-token returns valid tokens
3. OpenClaw code appears correct - resolveApiKey function properly handles empty API keys
4. Problem isolated to proxychains - When proxychains is removed from service configuration, authentication works immediately

The issue seems to be that @google/genai library's internal token acquisition process (which calls Google Cloud SDK) is disrupted by proxychains' system call interception.

Workaround

Temporarily remove proxychains from the OpenClaw service configuration:

# Before (fails):
ExecStart=/usr/bin/proxychains -q /usr/bin/node ...

# After (works):
ExecStart=/usr/bin/node ...

But this isn't ideal for users who require proxy support for network access.

Suggested Solutions

Option 1: Make google-vertex provider proxy-aware

• Detect proxy environment variables
• Configure @google/genai library with proxy settings
• Or use alternative authentication methods that work with proxies

Option 2: Document the limitation

• Clearly document that proxychains interferes with Google Cloud SDK authentication
• Provide alternative proxy configuration methods

Option 3: Provide proxy configuration guidance

• Guide users on configuring proxychains to allow Google API domains
• Suggest alternative proxy tools that work better with Google Cloud SDK

Option 4: Implement fallback mechanism

• Detect authentication failures due to proxy
• Provide clear error messages suggesting proxy-related fixes
• Automatically retry without proxy if safe

Additional Context

This affects users in corporate environments or regions where proxy usage is mandatory for external network access. The workaround of removing proxychains may not be feasible for all users.

Related Code

The issue appears in OpenClaw's google-vertex provider implementation, specifically in how it interacts with @google/genai library for authentication.

[clawsweeper]

Thanks for the context here. I swept through the related work, and this is now duplicate or superseded.

Close as duplicate/superseded: current main still has a Google Vertex service-account/proxy gap, but the remaining actionable repository work is already tracked by the canonical Google Vertex issue and open implementation PR.

So I’m closing this here and keeping the remaining discussion on the canonical linked item.

Review details

Best possible solution:

Keep the remaining work consolidated on the canonical Google Vertex issue and PR, with service-account and authorized_user ADC routed through guarded Google-plugin transport and clear docs for the supported proxy path.

Do we have a high-confidence way to reproduce the issue?

Partly: there is no live proxychains plus Vertex credential reproduction here, but source inspection shows the reported service-account ADC setup is still rejected by current main's native Google Vertex path. That gives a high-confidence source reproduction for the remaining repository-side gap, not for the exact external proxychains runtime.

Is this the best way to solve the issue?

Yes for cleanup: closing this as duplicate/superseded is the best maintainer path because the same remaining Google Vertex ADC/provider work is already tracked by #60736 and open PR #60860. The implementation itself should land there or in a direct successor, not in a parallel thread.

Security review:

Security review: No patch is under review for this issue; the eventual Google Vertex auth implementation still needs normal credential-handling and proxy/security review.

What I checked:

• current-main-service-account-gap: On current main, the Google Vertex ADC reader returns undefined unless the ADC JSON has type: "authorized_user", so a service_account credentials file is rejected before bearer-token auth runs. (extensions/google/vertex-adc.ts:77, ee0563cb5291)
• current-main-native-vertex-gate: The Google provider only selects the native Vertex REST transport when model.api === "google-vertex" and hasGoogleVertexAuthorizedUserAdcSync() is true, so the current provider-owned path is still authorized_user-only. (extensions/google/provider-registration.ts:60, ee0563cb5291)
• manifest-adc-contract-is-broader: The Google plugin setup metadata advertises GOOGLE_APPLICATION_CREDENTIALS plus project/location as gcloud adc evidence without narrowing it to authorized_user credentials, matching the reporter's service-account setup surface. (extensions/google/openclaw.plugin.json:594, ee0563cb5291)
• docs-expose-vertex-adc: The model provider docs expose google-vertex and say Vertex uses gcloud ADC, so the issue is not just a request for a new third-party provider. Public docs: docs/concepts/model-providers.md. (docs/concepts/model-providers.md:219, ee0563cb5291)
• coverage-is-authorized-user-only: Current Google Vertex transport tests cover authorized_user ADC and APPDATA fallback; the current-main grep found no service_account or proxychains coverage in the Google provider path. (extensions/google/transport-stream.test.ts:493, ee0563cb5291)
• canonical-open-tracker: The broader Google Vertex issue is open, and open PR feat(google): add Google Vertex AI provider with ADC auth and global endpoint routing #60860 is linked with closing syntax and targets Vertex endpoint routing plus ADC bearer auth, including service-account work; that PR is still unmerged and has review/security blockers. (3c3d391d4a8e)

Likely related people:

• steipete: Commit 0b59964 added the current authorized_user-only Google Vertex ADC helper and modified the provider registration, transport, tests, and changelog for that path. (role: introduced current related behavior / recent area contributor; confidence: high; commits: 0b59964ec945; files: extensions/google/vertex-adc.ts, extensions/google/provider-registration.ts, extensions/google/transport-stream.ts)
• PewterZz: The canonical open issue and PR feat(google): add Google Vertex AI provider with ADC auth and global endpoint routing #60860 are authored by this contributor and target Google Vertex endpoint routing plus ADC bearer auth, including service-account handling. (role: canonical implementation candidate author; confidence: high; commits: 3c3d391d4a8e; files: extensions/google/vertex-adc.ts, extensions/google/vertex-adc.test.ts, extensions/google/vertex-region.ts)
• shakkernerd: Commit c4e2491 touched the model-auth evidence path used by Google Vertex ADC discovery and is adjacent to the setup/auth marker behavior involved here. (role: adjacent auth-evidence contributor; confidence: medium; commits: c4e249114d96; files: src/agents/model-auth.ts)

Codex review notes: model gpt-5.5, reasoning high; reviewed against ee0563cb5291.