fix: integrate Chutes TEE-only model validation

- Make validate_chutes_model() case-insensitive and trim whitespace
- Fix ProviderManager.set_provider() to actually set the provider name
- Add validation call in set_model() for Chutes provider
- Fix test assertion to expect 2 providers (cortex + chutes)
- Add unit tests for validation functions

Author: echobt

src/cortex-common/src/model_presets/presets.rs

@@ -836,7 +836,8 @@ pub fn get_models_for_provider(provider: &str) -> Vec<&'static ModelPreset> {
 /// Chutes only allows TEE (Trusted Execution Environment) models for security.
 /// Returns Ok(()) if valid, Err with message if invalid.
 pub fn validate_chutes_model(model: &str) -> Result<(), String> {
-    if !model.ends_with("-TEE") {
+    let model = model.trim();
+    if !model.to_uppercase().ends_with("-TEE") {
         return Err(format!(
             "Chutes provider only allows TEE models (models ending with '-TEE'). \
              Model '{}' is not a TEE model. Available TEE models: moonshotai/Kimi-K2.5-TEE",
@@ -852,3 +853,38 @@ pub fn provider_allows_custom_models(provider: &str) -> bool {
     // Chutes does NOT allow custom models - only predefined TEE models
     provider != "chutes"
 }
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    fn test_validate_chutes_model_valid() {
+        // Valid TEE models
+        assert!(validate_chutes_model("moonshotai/Kimi-K2.5-TEE").is_ok());
+        assert!(validate_chutes_model("some-model-TEE").is_ok());
+        // Case insensitive
+        assert!(validate_chutes_model("model-tee").is_ok());
+        assert!(validate_chutes_model("model-Tee").is_ok());
+        // Whitespace handling
+        assert!(validate_chutes_model("  model-TEE  ").is_ok());
+    }
+
+    #[test]
+    fn test_validate_chutes_model_invalid() {
+        assert!(validate_chutes_model("gpt-4").is_err());
+        assert!(validate_chutes_model("claude-3").is_err());
+        assert!(validate_chutes_model("model-TEE-v2").is_err());
+        assert!(validate_chutes_model("").is_err());
+    }
+
+    #[test]
+    fn test_provider_allows_custom_models() {
+        // Chutes does NOT allow custom models
+        assert!(!provider_allows_custom_models("chutes"));
+        // Other providers allow custom models
+        assert!(provider_allows_custom_models("cortex"));
+        assert!(provider_allows_custom_models("openai"));
+        assert!(provider_allows_custom_models("anthropic"));
+    }
+}

src/cortex-tui/src/modal/providers.rs

@@ -398,7 +398,7 @@ mod tests {
         let modal = ProvidersModal::with_known_providers(Some("cortex".to_string()));
 
         assert_eq!(modal.title(), "Providers");
-        assert_eq!(modal.providers.len(), 1);
+        assert_eq!(modal.providers.len(), 2);
     }
 
     #[test]

src/cortex-tui/src/providers/manager.rs

@@ -11,6 +11,7 @@ use cortex_engine::client::{
 
 use super::config::CortexConfig;
 use super::models::{ModelInfo, get_models_for_provider, get_popular_models};
+use cortex_common::model_presets::validate_chutes_model;
 
 // ============================================================
 // PROVIDER MANAGER
@@ -208,16 +209,23 @@ impl ProviderManager {
             || cortex_login::has_valid_auth()
     }
 
-    /// Sets the current provider (for compatibility - always sets to "cortex").
-    pub fn set_provider(&mut self, _provider: &str) -> Result<()> {
-        self.current_provider = "cortex".to_string();
+    /// Sets the current provider.
+    pub fn set_provider(&mut self, provider: &str) -> Result<()> {
+        self.current_provider = provider.to_string();
         self.client = None;
         Ok(())
     }
 
     /// Sets the current model.
     pub fn set_model(&mut self, model: &str) -> Result<()> {
         let resolved = self.config.resolve_alias(model);
+
+        // Validate model for Chutes provider (TEE-only security requirement)
+        if self.current_provider == "chutes" {
+            validate_chutes_model(&resolved)
+                .map_err(|e| anyhow::anyhow!(e))?;
+        }
+
         self.current_model = resolved;
         self.client = None;
         Ok(())