feat(config): add request compression support for Codex headers

- Introduced `request-compression` field in `CodexHeaderDefaults` to enable zstd compression for requests.
- Updated tests to validate the new configuration option and its expected behavior.
- Refactored payload handling in Codex and Antigravity executors to utilize lazy loading for original payloads, improving performance and memory usage.

Author: clcc2019

internal/config/codex_websocket_header_defaults_test.go

@@ -13,6 +13,7 @@ func TestLoadConfigOptional_CodexHeaderDefaults(t *testing.T) {
 codex-header-defaults:
   user-agent: "  my-codex-client/1.0  "
   beta-features: "  feature-a,feature-b  "
+  request-compression: true
 `)
 	if err := os.WriteFile(configPath, configYAML, 0o600); err != nil {
 		t.Fatalf("failed to write config: %v", err)
@@ -29,4 +30,7 @@ codex-header-defaults:
 	if got := cfg.CodexHeaderDefaults.BetaFeatures; got != "feature-a,feature-b" {
 		t.Fatalf("BetaFeatures = %q, want %q", got, "feature-a,feature-b")
 	}
+	if cfg.CodexHeaderDefaults.RequestCompression == nil || !*cfg.CodexHeaderDefaults.RequestCompression {
+		t.Fatal("RequestCompression = nil/false, want true")
+	}
 }

internal/config/config.go

@@ -159,9 +159,12 @@ type ClaudeHeaderDefaults struct {
 // requests when neither the incoming request nor the selected credential supplies them.
 // UserAgent applies to both auth-file and codex-api-key HTTP/websocket requests.
 // BetaFeatures only applies to websocket requests for auth-file/OAuth Codex sessions.
+// RequestCompression enables zstd request-body compression for official ChatGPT Codex
+// backend HTTP requests when using OAuth/auth-file sessions.
 type CodexHeaderDefaults struct {
-	UserAgent    string `yaml:"user-agent" json:"user-agent"`
-	BetaFeatures string `yaml:"beta-features" json:"beta-features"`
+	UserAgent          string `yaml:"user-agent" json:"user-agent"`
+	BetaFeatures       string `yaml:"beta-features" json:"beta-features"`
+	RequestCompression *bool  `yaml:"request-compression,omitempty" json:"request-compression,omitempty"`
 }
 
 // TLSConfig holds HTTPS server settings.

internal/runtime/executor/antigravity_executor.go

@@ -92,6 +92,7 @@ var (
 	antigravityCreditsFailureByAuth   sync.Map
 	antigravityPreferCreditsByModel   sync.Map
 	antigravityShortCooldownByAuth    sync.Map
+	antigravityRefreshFlights         sync.Map
 	antigravityQuotaExhaustedKeywords = []string{
 		"quota_exhausted",
 		"quota exhausted",
@@ -112,6 +113,12 @@ var (
 	}
 )
 
+type antigravityRefreshFlight struct {
+	wg      sync.WaitGroup
+	updated *cliproxyauth.Auth
+	err     error
+}
+
 // AntigravityExecutor proxies requests to the antigravity upstream.
 type AntigravityExecutor struct {
 	cfg *config.Config
@@ -706,7 +713,6 @@ func (e *AntigravityExecutor) Execute(ctx context.Context, auth *cliproxyauth.Au
 	if updatedAuth != nil {
 		auth = updatedAuth
 	}
-	originalTranslated := sdktranslator.TranslateRequest(from, to, baseModel, originalPayload, false)
 	translated := sdktranslator.TranslateRequest(from, to, baseModel, req.Payload, false)
 
 	translated, err = thinking.ApplyThinking(translated, req.Model, from.String(), to.String(), e.Identifier())
@@ -715,7 +721,13 @@ func (e *AntigravityExecutor) Execute(ctx context.Context, auth *cliproxyauth.Au
 	}
 
 	requestedModel := helps.PayloadRequestedModel(opts, req.Model)
-	translated = helps.ApplyPayloadConfigWithRoot(e.cfg, baseModel, "antigravity", "request", translated, originalTranslated, requestedModel)
+	var originalTranslated []byte
+	translated = helps.ApplyPayloadConfigWithRootLazy(e.cfg, baseModel, "antigravity", "request", translated, func() []byte {
+		if len(originalTranslated) == 0 {
+			originalTranslated = sdktranslator.TranslateRequest(from, to, baseModel, originalPayload, false)
+		}
+		return originalTranslated
+	}, requestedModel)
 
 	baseURLs := antigravityBaseURLFallbackOrder(auth)
 	httpClient := newAntigravityHTTPClient(ctx, e.cfg, auth, 0)
@@ -919,7 +931,6 @@ func (e *AntigravityExecutor) executeClaudeNonStream(ctx context.Context, auth *
 	if updatedAuth != nil {
 		auth = updatedAuth
 	}
-	originalTranslated := sdktranslator.TranslateRequest(from, to, baseModel, originalPayload, true)
 	translated := sdktranslator.TranslateRequest(from, to, baseModel, req.Payload, true)
 
 	translated, err = thinking.ApplyThinking(translated, req.Model, from.String(), to.String(), e.Identifier())
@@ -928,7 +939,13 @@ func (e *AntigravityExecutor) executeClaudeNonStream(ctx context.Context, auth *
 	}
 
 	requestedModel := helps.PayloadRequestedModel(opts, req.Model)
-	translated = helps.ApplyPayloadConfigWithRoot(e.cfg, baseModel, "antigravity", "request", translated, originalTranslated, requestedModel)
+	var originalTranslated []byte
+	translated = helps.ApplyPayloadConfigWithRootLazy(e.cfg, baseModel, "antigravity", "request", translated, func() []byte {
+		if len(originalTranslated) == 0 {
+			originalTranslated = sdktranslator.TranslateRequest(from, to, baseModel, originalPayload, true)
+		}
+		return originalTranslated
+	}, requestedModel)
 
 	baseURLs := antigravityBaseURLFallbackOrder(auth)
 	httpClient := newAntigravityHTTPClient(ctx, e.cfg, auth, 0)
@@ -1383,7 +1400,6 @@ func (e *AntigravityExecutor) ExecuteStream(ctx context.Context, auth *cliproxya
 	if updatedAuth != nil {
 		auth = updatedAuth
 	}
-	originalTranslated := sdktranslator.TranslateRequest(from, to, baseModel, originalPayload, true)
 	translated := sdktranslator.TranslateRequest(from, to, baseModel, req.Payload, true)
 
 	translated, err = thinking.ApplyThinking(translated, req.Model, from.String(), to.String(), e.Identifier())
@@ -1392,7 +1408,13 @@ func (e *AntigravityExecutor) ExecuteStream(ctx context.Context, auth *cliproxya
 	}
 
 	requestedModel := helps.PayloadRequestedModel(opts, req.Model)
-	translated = helps.ApplyPayloadConfigWithRoot(e.cfg, baseModel, "antigravity", "request", translated, originalTranslated, requestedModel)
+	var originalTranslated []byte
+	translated = helps.ApplyPayloadConfigWithRootLazy(e.cfg, baseModel, "antigravity", "request", translated, func() []byte {
+		if len(originalTranslated) == 0 {
+			originalTranslated = sdktranslator.TranslateRequest(from, to, baseModel, originalPayload, true)
+		}
+		return originalTranslated
+	}, requestedModel)
 
 	baseURLs := antigravityBaseURLFallbackOrder(auth)
 	httpClient := newAntigravityHTTPClient(ctx, e.cfg, auth, 0)
@@ -1792,13 +1814,48 @@ func (e *AntigravityExecutor) ensureAccessToken(ctx context.Context, auth *clipr
 			refreshCtx = context.WithValue(refreshCtx, "cliproxy.roundtripper", rt)
 		}
 	}
-	updated, errRefresh := e.refreshToken(refreshCtx, auth.Clone())
+	updated, errRefresh := e.refreshTokenShared(refreshCtx, auth)
 	if errRefresh != nil {
 		return "", nil, errRefresh
 	}
 	return metaStringValue(updated.Metadata, "access_token"), updated, nil
 }
 
+func (e *AntigravityExecutor) refreshTokenShared(ctx context.Context, auth *cliproxyauth.Auth) (*cliproxyauth.Auth, error) {
+	if auth == nil {
+		return nil, statusErr{code: http.StatusUnauthorized, msg: "missing auth"}
+	}
+	authID := strings.TrimSpace(auth.ID)
+	if authID == "" {
+		return e.refreshToken(ctx, auth.Clone())
+	}
+
+	flight := &antigravityRefreshFlight{}
+	actual, loaded := antigravityRefreshFlights.LoadOrStore(authID, flight)
+	current, _ := actual.(*antigravityRefreshFlight)
+	if current == nil {
+		antigravityRefreshFlights.Delete(authID)
+		return e.refreshToken(ctx, auth.Clone())
+	}
+	if loaded {
+		current.wg.Wait()
+		if current.updated == nil {
+			return nil, current.err
+		}
+		return current.updated.Clone(), current.err
+	}
+	current.wg.Add(1)
+
+	defer antigravityRefreshFlights.Delete(authID)
+	defer current.wg.Done()
+
+	current.updated, current.err = e.refreshToken(ctx, auth.Clone())
+	if current.updated == nil {
+		return nil, current.err
+	}
+	return current.updated.Clone(), current.err
+}
+
 func (e *AntigravityExecutor) refreshToken(ctx context.Context, auth *cliproxyauth.Auth) (*cliproxyauth.Auth, error) {
 	if auth == nil {
 		return nil, statusErr{code: http.StatusUnauthorized, msg: "missing auth"}