} from "../agent-scope.js";

import {

type AuthProfileFailureReason,

type AuthProfileStore,

markAuthProfileFailure,

resolveAuthProfileEligibility,

markAuthProfileGood,

FailoverError,

resolveFailoverStatus,

} from "../failover-error.js";

import { selectAgentHarness } from "../harness/selection.js";

import { LiveSessionModelSwitchError } from "../live-model-switch-error.js";

import { shouldSwitchToLiveModel, clearLiveModelSwitchPending } from "../live-model-switch.js";

import {

const MAX_SAME_MODEL_IDLE_TIMEOUT_RETRIES = 1;

function createEmptyAuthProfileStore(): AuthProfileStore {

return {

version: 1,

profiles: {},

};

}

function buildTraceToolSummary(params: {

toolMetas: Array<{ toolName: string; meta?: string }>;

hadFailure: boolean;

agentId: params.agentId,

sessionKey: normalizedSessionKey,

});

await ensureOpenClawModelsJson(params.config, agentDir);

const resolvedSessionKey = normalizedSessionKey;

const hookRunner = getGlobalHookRunner();

const hookCtx = {

provider = hookSelection.provider;

modelId = hookSelection.modelId;

const legacyBeforeAgentStartResult = hookSelection.legacyBeforeAgentStartResult;

const agentHarness = selectAgentHarness({

provider,

modelId,

config: params.config,

agentId: params.agentId,

sessionKey: params.sessionKey,

agentHarnessId: params.agentHarnessId,

});

const pluginHarnessOwnsTransport = agentHarness.id !== "pi";

if (!pluginHarnessOwnsTransport) {

await ensureOpenClawModelsJson(params.config, agentDir);

}

const { model, error, authStorage, modelRegistry } = await resolveModelAsync(

provider,

modelId,

agentDir,

params.config,

// Plugin harnesses may expose synthetic providers that PI cannot

// discover safely; resolve their model metadata without touching PI

// auth/model stores.

{ skipPiDiscovery: pluginHarnessOwnsTransport },

);

if (!model) {

throw new FailoverError(error ?? `Unknown model: ${provider}/${modelId}`, {

const ctxInfo = resolvedRuntimeModel.ctxInfo;

let effectiveModel = resolvedRuntimeModel.effectiveModel;

const authStore = ensureAuthProfileStore(agentDir, {

allowKeychainPrompt: false,

});

const authStore = pluginHarnessOwnsTransport

? createEmptyAuthProfileStore()

: ensureAuthProfileStore(agentDir, {

allowKeychainPrompt: false,

});

const preferredProfileId = params.authProfileId?.trim();

let lockedProfileId = params.authProfileIdSource === "user" ? preferredProfileId : undefined;

if (lockedProfileId) {

log,

});

await initializeAuthProfile();

// Plugin harnesses own their model transport/auth. Running PI's generic

// auth bootstrap here can turn synthetic provider markers into real

// vendor-token refresh attempts before the plugin gets control.

if (!pluginHarnessOwnsTransport) {

await initializeAuthProfile();

}

const { sessionAgentId } = resolveSessionAgentIds({

sessionKey: params.sessionKey,

config: params.config,

disableTools: params.disableTools,

provider,

modelId,

agentHarnessId: params.agentHarnessId,

// Use the harness selected before model/auth setup for the actual

// attempt too. Otherwise plugin-owned transports can skip PI auth

// bootstrap but drift back to PI when the attempt is created.

agentHarnessId: agentHarness.id,

model: applyAuthHeaderOverride(

applyLocalNoAuthHeaderOverride(effectiveModel, apiKeyInfo),

// When runtime auth exchange produced a different credential