lisone/ds2api
1
0
Fork 0
mirror of https://github.com/CJackHwang/ds2api.git synced 2026-05-21 08:27:42 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix(toolcall): eliminate strings.ToLower panics from Unicode case folding

Browse Source 
Replace all strings.ToLower usage with ASCII case-insensitive matching
(hasASCIIPrefixFoldAt, indexASCIIFold, hasDSMLPrefix) to prevent slice
bounds errors when Unicode characters change byte length after case
folding (e.g., Turkish İ U+0130 → i + combining dot: 2 bytes → 3 bytes).

Root cause: code created a strings.ToLower(text) copy, found byte
positions in that copy, then used those positions to slice the
original text — byte offsets that were valid in the lowercased copy
became out-of-bounds in the original when case folding changed byte
lengths.

Files changed:
- toolcalls_scan.go: remove 5 lower usages, add hasDSMLPrefix
- toolcalls_parse_markup.go: remove 3 lower usages, add indexASCIIFold
- toolcalls_markup.go: SanitizeLooseCDATA lower removal
- toolcalls_parse.go: updateCDATAStateForStrip lower removal
- tool_prompt.go: align DSML pipe characters with tool call spec
- tool_prompt_test.go: fix pre-existing test character mismatch
This commit is contained in:
waiwai
2026-05-09 15:05:51 +08:00
parent 7ab5a0e66d
commit 1e00e482a6
8 changed files with 97 additions and 61 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
internal/httpapi/claude/handler_util_test.go
View File

@@ -292,7 +292,7 @@ func TestBuildClaudeToolPromptSingleTool(t *testing.T) {
if !containsStr(prompt, "Search the web") { if !containsStr(prompt, "Search the web") {
t.Fatalf("expected description in prompt") t.Fatalf("expected description in prompt")
} }
if !containsStr(prompt, "<|DSML|tool_calls>") { if !containsStr(prompt, "<DSMLtool_calls>") {
t.Fatalf("expected DSML tool_calls format in prompt") t.Fatalf("expected DSML tool_calls format in prompt")
} }
if !containsStr(prompt, "TOOL CALL FORMAT") { if !containsStr(prompt, "TOOL CALL FORMAT") {

2
internal/promptcompat/prompt_build_test.go
View File

@@ -74,7 +74,7 @@ func TestBuildOpenAIFinalPrompt_VercelPreparePathKeepsFinalAnswerInstruction(t *
} }
finalPrompt, _ := buildOpenAIFinalPrompt(messages, tools, "", false) finalPrompt, _ := buildOpenAIFinalPrompt(messages, tools, "", false)
if !strings.Contains(finalPrompt, "Remember: The ONLY valid way to use tools is the <|DSML|tool_calls>...</|DSML|tool_calls> block at the end of your response.") { if !strings.Contains(finalPrompt, "Remember: The ONLY valid way to use tools is the <DSMLtool_calls>...</DSMLtool_calls> block at the end of your response.") {
t.Fatalf("vercel prepare finalPrompt missing final tool-call anchor instruction: %q", finalPrompt) t.Fatalf("vercel prepare finalPrompt missing final tool-call anchor instruction: %q", finalPrompt)
} }
if !strings.Contains(finalPrompt, "TOOL CALL FORMAT") { if !strings.Contains(finalPrompt, "TOOL CALL FORMAT") {

41
internal/toolcall/tool_prompt.go
View File

@@ -11,46 +11,45 @@ import "strings"
func BuildToolCallInstructions(toolNames []string) string { func BuildToolCallInstructions(toolNames []string) string {
return `TOOL CALL FORMAT — FOLLOW EXACTLY: return `TOOL CALL FORMAT — FOLLOW EXACTLY:
<|DSML|tool_calls> <DSMLtool_calls>
<|DSML|invoke name="TOOL_NAME_HERE"> <DSMLinvoke name="TOOL_NAME_HERE">
<|DSML|parameter name="PARAMETER_NAME"><![CDATA[PARAMETER_VALUE]]></|DSML|parameter> <DSMLparameter name="PARAMETER_NAME"><![CDATA[PARAMETER_VALUE]]></DSMLparameter>
</|DSML|invoke> </DSMLinvoke>
</|DSML|tool_calls> </DSMLtool_calls>
RULES: RULES:
1) Use the <|DSML|tool_calls> wrapper format. 1) Use the <DSMLtool_calls> wrapper format.
2) Put one or more <|DSML|invoke> entries under a single <|DSML|tool_calls> root. 2) Put one or more <DSMLinvoke> entries under a single <DSMLtool_calls> root.
3) Put the tool name in the invoke name attribute: <|DSML|invoke name="TOOL_NAME">. 3) Put the tool name in the invoke name attribute: <DSMLinvoke name="TOOL_NAME">.
4) All string values must use <![CDATA[...]]>, even short ones. This includes code, scripts, file contents, prompts, paths, names, and queries. 4) All string values must use <![CDATA[...]]>, even short ones. This includes code, scripts, file contents, prompts, paths, names, and queries.
5) Every top-level argument must be a <|DSML|parameter name="ARG_NAME">...</|DSML|parameter> node. 5) Every top-level argument must be a <DSMLparameter name="ARG_NAME">...</DSMLparameter> node.
6) Objects use nested XML elements inside the parameter body. Arrays may repeat <item> children. 6) Objects use nested XML elements inside the parameter body. Arrays may repeat <item> children.
7) Numbers, booleans, and null stay plain text. 7) Numbers, booleans, and null stay plain text.
8) Use only the parameter names in the tool schema. Do not invent fields. 8) Use only the parameter names in the tool schema. Do not invent fields.
9) Do NOT wrap XML in markdown fences. Do NOT output explanations, role markers, or internal monologue. 9) Do NOT wrap XML in markdown fences. Do NOT output explanations, role markers, or internal monologue.
10) If you call a tool, the first non-whitespace characters of that tool block must be exactly <|DSML|tool_calls>. 10) If you call a tool, the first non-whitespace characters of that tool block must be exactly <DSMLtool_calls>.
11) Never omit the opening <|DSML|tool_calls> tag, even if you already plan to close with </|DSML|tool_calls>. 11) Never omit the opening <DSMLtool_calls> tag, even if you already plan to close with </DSMLtool_calls>.
12) Compatibility note: the runtime also accepts the legacy XML tags <tool_calls> / <invoke> / <parameter>, but prefer the DSML-prefixed form above. 12) Compatibility note: the runtime also accepts the legacy XML tags <tool_calls> / <invoke> / <parameter>, but prefer the DSML-prefixed form above.
PARAMETER SHAPES: PARAMETER SHAPES:
- string => <|DSML|parameter name="x"><![CDATA[value]]></|DSML|parameter> - string => <DSMLparameter name="x"><![CDATA[value]]></DSMLparameter>
- object => <|DSML|parameter name="x"><field>...</field></|DSML|parameter> - object => <DSMLparameter name="x"><field>...</field></DSMLparameter>
- array => <|DSML|parameter name="x"><item>...</item><item>...</item></|DSML|parameter> - array => <DSMLparameter name="x"><item>...</item><item>...</item></DSMLparameter>
- number/bool/null => <|DSML|parameter name="x">plain_text</|DSML|parameter> - number/bool/null => <DSMLparameter name="x">plain_text</DSMLparameter>
【WRONG — Do NOT do these】: 【WRONG — Do NOT do these】:
Wrong 1 — mixed text after XML: Wrong 1 — mixed text after XML:
<|DSML|tool_calls>...</|DSML|tool_calls> I hope this helps. <DSMLtool_calls>...</DSMLtool_calls> I hope this helps.
Wrong 2 — Markdown code fences: Wrong 2 — Markdown code fences:
` + "```xml" + ` ` + "```xml" + `
<|DSML|tool_calls>...</|DSML|tool_calls> <DSMLtool_calls>...</DSMLtool_calls>
` + "```" + ` ` + "```" + `
Wrong 3 — missing opening wrapper: Wrong 3 — missing opening wrapper:
<|DSML|invoke name="TOOL_NAME">...</|DSML|invoke> <DSMLinvoke name="TOOL_NAME">...</DSMLinvoke>
</|DSML|tool_calls> </DSMLtool_calls>
Remember: The ONLY valid way to use tools is the <|DSML|tool_calls>...</|DSML|tool_calls> block at the end of your response.
Remember: The ONLY valid way to use tools is the <DSMLtool_calls>...</DSMLtool_calls> block at the end of your response.
` + buildCorrectToolExamples(toolNames) ` + buildCorrectToolExamples(toolNames)
} }

2
internal/toolcall/tool_prompt_test.go
View File

@@ -111,7 +111,7 @@ func TestBuildToolCallInstructions_WriteUsesFilePathAndContent(t *testing.T) {
func TestBuildToolCallInstructions_AnchorsMissingOpeningWrapperFailureMode(t *testing.T) { func TestBuildToolCallInstructions_AnchorsMissingOpeningWrapperFailureMode(t *testing.T) {
out := BuildToolCallInstructions([]string{"read_file"}) out := BuildToolCallInstructions([]string{"read_file"})
if !strings.Contains(out, "Never omit the opening <|DSML|tool_calls> tag") { if !strings.Contains(out, "Never omit the opening <DSMLtool_calls> tag") {
t.Fatalf("expected explicit missing-opening-tag warning, got: %s", out) t.Fatalf("expected explicit missing-opening-tag warning, got: %s", out)
} }
if !strings.Contains(out, "Wrong 3 — missing opening wrapper") { if !strings.Contains(out, "Wrong 3 — missing opening wrapper") {

10
internal/toolcall/toolcalls_markup.go
View File

@@ -145,7 +145,6 @@ func SanitizeLooseCDATA(text string) string {
return "" return ""
} }
lower := strings.ToLower(text)
const openMarker = "<![cdata[" const openMarker = "<![cdata["
const closeMarker = "]]>" const closeMarker = "]]>"
@@ -154,17 +153,16 @@ func SanitizeLooseCDATA(text string) string {
changed := false changed := false
pos := 0 pos := 0
for pos < len(text) { for pos < len(text) {
startRel := strings.Index(lower[pos:], openMarker) start := indexASCIIFold(text, pos, openMarker)
if startRel < 0 { if start < 0 {
b.WriteString(text[pos:]) b.WriteString(text[pos:])
break break
} }
start := pos + startRel
contentStart := start + len(openMarker) contentStart := start + len(openMarker)
b.WriteString(text[pos:start]) b.WriteString(text[pos:start])
if endRel := strings.Index(lower[contentStart:], closeMarker); endRel >= 0 { if endRel := indexASCIIFold(text, contentStart, closeMarker); endRel >= 0 {
end := contentStart + endRel + len(closeMarker) end := endRel + len(closeMarker)
b.WriteString(text[start:end]) b.WriteString(text[start:end])
pos = end pos = end
continue continue

20
internal/toolcall/toolcalls_parse.go
View File

@@ -212,17 +212,16 @@ func firstFenceMarkerIndex(line string) int {
} }
func updateCDATAStateForStrip(inCDATA bool, cdataFenceMarker, line string) (bool, string) { func updateCDATAStateForStrip(inCDATA bool, cdataFenceMarker, line string) (bool, string) {
lower := strings.ToLower(line)
pos := 0 pos := 0
state := inCDATA state := inCDATA
fenceMarker := cdataFenceMarker fenceMarker := cdataFenceMarker
lineForFence := line lineForFence := line
if !state { if !state {
start := strings.Index(lower[pos:], "<![cdata[") start := indexASCIIFold(line, pos, "<![cdata[")
if start < 0 { if start < 0 {
return false, "" return false, ""
} }
pos += start + len("<![cdata[") pos = start + len("<![cdata[")
state = true state = true
lineForFence = line[pos:] lineForFence = line[pos:]
} }
@@ -239,24 +238,23 @@ func updateCDATAStateForStrip(inCDATA bool, cdataFenceMarker, line string) (bool
fenceMarker = "" fenceMarker = ""
} }
for pos < len(lower) { for pos < len(line) {
end := strings.Index(lower[pos:], "]]>") endPos := indexASCIIFold(line, pos, "]]>")
if end < 0 { if endPos < 0 {
return true, fenceMarker return true, fenceMarker
} }
endPos := pos + end
pos = endPos + len("]]>") pos = endPos + len("]]>")
if fenceMarker != "" { if fenceMarker != "" {
continue continue
} }
if cdataEndLooksStructural(lower, pos) || strings.TrimSpace(lower[pos:]) == "" { if cdataEndLooksStructural(line, pos) || strings.TrimSpace(line[pos:]) == "" {
state = false state = false
for pos < len(lower) { for pos < len(line) {
start := strings.Index(lower[pos:], "<![cdata[") start := indexASCIIFold(line, pos, "<![cdata[")
if start < 0 { if start < 0 {
return false, "" return false, ""
} }
pos += start + len("<![cdata[") pos = start + len("<![cdata[")
state = true state = true
trimmedTail := strings.TrimLeft(line[pos:], " \t") trimmedTail := strings.TrimLeft(line[pos:], " \t")
if marker, ok := parseFenceOpen(trimmedTail); ok { if marker, ok := parseFenceOpen(trimmedTail); ok {

25
internal/toolcall/toolcalls_parse_markup.go
View File

@@ -141,7 +141,6 @@ func findXMLElementBlocks(text, tag string) []xmlElementBlock {
} }
func findXMLStartTagOutsideCDATA(text, tag string, from int) (start, bodyStart int, attrs string, ok bool) { func findXMLStartTagOutsideCDATA(text, tag string, from int) (start, bodyStart int, attrs string, ok bool) {
lower := strings.ToLower(text)
target := "<" + strings.ToLower(tag) target := "<" + strings.ToLower(tag)
for i := maxInt(from, 0); i < len(text); { for i := maxInt(from, 0); i < len(text); {
next, advanced, blocked := skipXMLIgnoredSection(text, i) next, advanced, blocked := skipXMLIgnoredSection(text, i)
@@ -152,7 +151,7 @@ func findXMLStartTagOutsideCDATA(text, tag string, from int) (start, bodyStart i
i = next i = next
continue continue
} }
if strings.HasPrefix(lower[i:], target) && hasXMLTagBoundary(text, i+len(target)) { if hasASCIIPrefixFoldAt(text, i, target) && hasXMLTagBoundary(text, i+len(target)) {
end := findXMLTagEnd(text, i+len(target)) end := findXMLTagEnd(text, i+len(target))
if end < 0 { if end < 0 {
return -1, -1, "", false return -1, -1, "", false
@@ -165,7 +164,6 @@ func findXMLStartTagOutsideCDATA(text, tag string, from int) (start, bodyStart i
} }
func findMatchingXMLEndTagOutsideCDATA(text, tag string, from int) (closeStart, closeEnd int, ok bool) { func findMatchingXMLEndTagOutsideCDATA(text, tag string, from int) (closeStart, closeEnd int, ok bool) {
lower := strings.ToLower(text)
openTarget := "<" + strings.ToLower(tag) openTarget := "<" + strings.ToLower(tag)
closeTarget := "</" + strings.ToLower(tag) closeTarget := "</" + strings.ToLower(tag)
depth := 1 depth := 1
@@ -178,7 +176,7 @@ func findMatchingXMLEndTagOutsideCDATA(text, tag string, from int) (closeStart,
i = next i = next
continue continue
} }
if strings.HasPrefix(lower[i:], closeTarget) && hasXMLTagBoundary(text, i+len(closeTarget)) { if hasASCIIPrefixFoldAt(text, i, closeTarget) && hasXMLTagBoundary(text, i+len(closeTarget)) {
end := findXMLTagEnd(text, i+len(closeTarget)) end := findXMLTagEnd(text, i+len(closeTarget))
if end < 0 { if end < 0 {
return -1, -1, false return -1, -1, false
@@ -190,7 +188,7 @@ func findMatchingXMLEndTagOutsideCDATA(text, tag string, from int) (closeStart,
i = end + 1 i = end + 1
continue continue
} }
if strings.HasPrefix(lower[i:], openTarget) && hasXMLTagBoundary(text, i+len(openTarget)) { if hasASCIIPrefixFoldAt(text, i, openTarget) && hasXMLTagBoundary(text, i+len(openTarget)) {
end := findXMLTagEnd(text, i+len(openTarget)) end := findXMLTagEnd(text, i+len(openTarget))
if end < 0 { if end < 0 {
return -1, -1, false return -1, -1, false
@@ -247,6 +245,23 @@ func asciiLower(b byte) byte {
return b return b
} }
// indexASCIIFold returns the absolute byte position in s where substr (ASCII-only) is
// found case-insensitively, scanning forward from start. Returns -1 if not found.
// Unlike strings.Index on a lowercased copy, this does not allocate or risk byte-length
// mismatch when non-ASCII runes change width under case folding.
func indexASCIIFold(s string, start int, substr string) int {
if start < 0 || len(s)-start < len(substr) {
return -1
}
end := len(s) - len(substr) + 1
for i := start; i < end; i++ {
if hasASCIIPrefixFoldAt(s, i, substr) {
return i
}
}
return -1
}
func findToolCDATAEnd(text string, from int) int { func findToolCDATAEnd(text string, from int) int {
if from < 0 || from >= len(text) { if from < 0 || from >= len(text) {
return -1 return -1

56
internal/toolcall/toolcalls_scan.go
View File

@@ -134,7 +134,6 @@ func scanToolMarkupTagAt(text string, start int) (ToolMarkupTag, bool) {
if start < 0 || start >= len(text) || text[start] != '<' { if start < 0 || start >= len(text) || text[start] != '<' {
return ToolMarkupTag{}, false return ToolMarkupTag{}, false
} }
lower := strings.ToLower(text)
i := start + 1 i := start + 1
for i < len(text) && text[i] == '<' { for i < len(text) && text[i] == '<' {
i++ i++
@@ -144,8 +143,8 @@ func scanToolMarkupTagAt(text string, start int) (ToolMarkupTag, bool) {
closing = true closing = true
i++ i++
} }
i, dsmlLike := consumeToolMarkupNamePrefix(lower, text, i) i, dsmlLike := consumeToolMarkupNamePrefix(text, i)
name, nameLen := matchToolMarkupName(lower, i, dsmlLike) name, nameLen := matchToolMarkupName(text, i, dsmlLike)
if nameLen == 0 { if nameLen == 0 {
return ToolMarkupTag{}, false return ToolMarkupTag{}, false
} }
@@ -188,7 +187,6 @@ func IsPartialToolMarkupTagPrefix(text string) bool {
if text == "" || text[0] != '<' || strings.Contains(text, ">") { if text == "" || text[0] != '<' || strings.Contains(text, ">") {
return false return false
} }
lower := strings.ToLower(text)
i := 1 i := 1
for i < len(text) && text[i] == '<' { for i < len(text) && text[i] == '<' {
i++ i++
@@ -203,13 +201,13 @@ func IsPartialToolMarkupTagPrefix(text string) bool {
if i == len(text) { if i == len(text) {
return true return true
} }
if hasToolMarkupNamePrefix(lower[i:]) { if hasToolMarkupNamePrefix(text, i) {
return true return true
} }
if strings.HasPrefix("dsml", lower[i:]) { if hasDSMLPrefix(text, i) {
return true return true
} }
next, ok := consumeToolMarkupNamePrefixOnce(lower, text, i) next, ok := consumeToolMarkupNamePrefixOnce(text, i)
if !ok { if !ok {
return false return false
} }
@@ -218,10 +216,10 @@ func IsPartialToolMarkupTagPrefix(text string) bool {
return false return false
} }
func consumeToolMarkupNamePrefix(lower, text string, idx int) (int, bool) { func consumeToolMarkupNamePrefix(text string, idx int) (int, bool) {
dsmlLike := false dsmlLike := false
for { for {
next, ok := consumeToolMarkupNamePrefixOnce(lower, text, idx) next, ok := consumeToolMarkupNamePrefixOnce(text, idx)
if !ok { if !ok {
return idx, dsmlLike return idx, dsmlLike
} }
@@ -230,14 +228,14 @@ func consumeToolMarkupNamePrefix(lower, text string, idx int) (int, bool) {
} }
} }
func consumeToolMarkupNamePrefixOnce(lower, text string, idx int) (int, bool) { func consumeToolMarkupNamePrefixOnce(text string, idx int) (int, bool) {
if next, ok := consumeToolMarkupPipe(text, idx); ok { if next, ok := consumeToolMarkupPipe(text, idx); ok {
return next, true return next, true
} }
if idx < len(text) && (text[idx] == ' ' || text[idx] == '\t' || text[idx] == '\r' || text[idx] == '\n') { if idx < len(text) && (text[idx] == ' ' || text[idx] == '\t' || text[idx] == '\r' || text[idx] == '\n') {
return idx + 1, true return idx + 1, true
} }
if strings.HasPrefix(lower[idx:], "dsml") { if hasASCIIPrefixFoldAt(text, idx, "dsml") {
next := idx + len("dsml") next := idx + len("dsml")
if next < len(text) && (text[next] == '-' || text[next] == '_') { if next < len(text) && (text[next] == '-' || text[next] == '_') {
next++ next++
@@ -247,21 +245,49 @@ func consumeToolMarkupNamePrefixOnce(lower, text string, idx int) (int, bool) {
return idx, false return idx, false
} }
func hasToolMarkupNamePrefix(lowerTail string) bool { // hasDSMLPrefix checks if "dsml" starts with text[start:] (case-insensitive).
func hasDSMLPrefix(text string, start int) bool {
const dsml = "dsml"
remain := len(text) - start
if remain <= 0 || remain > len(dsml) {
return false
}
for j := 0; j < remain; j++ {
if asciiLower(text[start+j]) != dsml[j] {
return false
}
}
return true
}
func hasToolMarkupNamePrefix(text string, start int) bool {
for _, name := range toolMarkupNames { for _, name := range toolMarkupNames {
if strings.HasPrefix(lowerTail, name.raw) || strings.HasPrefix(name.raw, lowerTail) { if hasASCIIPrefixFoldAt(text, start, name.raw) {
return true return true
} }
tailLen := len(text) - start
if tailLen > 0 && tailLen <= len(name.raw) {
match := true
for j := 0; j < tailLen; j++ {
if asciiLower(text[start+j]) != asciiLower(name.raw[j]) {
match = false
break
}
}
if match {
return true
}
}
} }
return false return false
} }
func matchToolMarkupName(lower string, start int, dsmlLike bool) (string, int) { func matchToolMarkupName(text string, start int, dsmlLike bool) (string, int) {
for _, name := range toolMarkupNames { for _, name := range toolMarkupNames {
if name.dsmlOnly && !dsmlLike { if name.dsmlOnly && !dsmlLike {
continue continue
} }
if strings.HasPrefix(lower[start:], name.raw) { if hasASCIIPrefixFoldAt(text, start, name.raw) {
return name.canonical, len(name.raw) return name.canonical, len(name.raw)
} }
} }