unoplatform · agneszitte · Mar 29, 2026 · Mar 29, 2026 · Mar 29, 2026 · Apr 26, 2026
diff --git a/UnoCheck.Tests/DotNetWorkloadFeedbackTests.cs b/UnoCheck.Tests/DotNetWorkloadFeedbackTests.cs
@@ -1,3 +1,4 @@
+using DotNetCheck;
 using DotNetCheck.Checkups;
 using DotNetCheck.DotNet;
 
@@ -106,4 +107,334 @@ public void BuildCliFailureMessage_WhenGenericFailure_UsesRelevantFailureLine()
         Assert.Contains("Workload installation failed with exit code 1", message);
         Assert.Contains("dotnet workload install", message);
     }
+
+    [Theory]
+    [InlineData("error: Permission denied", true)]
+    [InlineData("Access to the path '/usr/share/dotnet' is denied.", true)]
+    [InlineData("EACCES: permission denied, mkdir '/usr/share/dotnet'", true)]
+    [InlineData("Administrator privileges are required to perform this operation.", true)]
+    [InlineData("Inadequate permissions. Run the command with elevated privileges.", true)]
+    [InlineData("Run the command with elevated privileges.", true)]
+    [InlineData("No space left on device", false)]
+    [InlineData("", false)]
+    public void ShouldRetryWithSudo_ReturnsExpectedValue(string output, bool expected)
+    {
+        var actual = DotNetWorkloadManager.ShouldRetryWithSudo(output);
+
+        Assert.Equal(expected, actual);
+    }
+
+    [Theory]
+    [InlineData("Restoring NuGet packages...\nDetermining projects to restore...\nerror: Permission denied\nRestore failed.", true)]
+    [InlineData("Installing workload manifest microsoft.net.sdk.android...\nAccess to the path '/usr/local/share/dotnet/sdk-manifests' is denied.\nInstallation failed.", true)]
+    [InlineData("Downloading microsoft.android.sdk.linux version 35.0.105...\nEACCES: permission denied, open '/usr/share/dotnet/packs/foo'\nWorkload installation failed.", true)]
+    [InlineData("Downloading microsoft.android.sdk.linux version 35.0.105 failed\nThe feed 'https://api.nuget.org/v3/index.json' lists package", false)]
+    public void ShouldRetryWithSudo_WithVerboseOutput_MatchesPermissionPatterns(string output, bool expected)
+    {
+        var actual = DotNetWorkloadManager.ShouldRetryWithSudo(output);
+
+        Assert.Equal(expected, actual);
+    }
+
+    [Fact]
+    public void IsSdkPathWritable_WritableDirectory_ReturnsTrue()
+    {
+        var tempDir = Path.Combine(Path.GetTempPath(), "uno-check-test-" + Guid.NewGuid().ToString("N")[..8]);
+        Directory.CreateDirectory(tempDir);
+        try
+        {
+            Assert.True(DotNetWorkloadManager.IsSdkPathWritable(tempDir));
+        }
+        finally
+        {
+            Directory.Delete(tempDir, recursive: true);
+        }
+    }
+
+    [Fact]
+    public void IsSdkPathWritable_NonExistentDirectory_ReturnsFalse()
+    {
+        var nonExistentDir = Path.Combine(Path.GetTempPath(), "uno-check-nonexistent-" + Guid.NewGuid().ToString("N"));
+
+        Assert.False(DotNetWorkloadManager.IsSdkPathWritable(nonExistentDir));
+    }
+
+    [Fact]
+    public async Task PrepareForInstallAsync_WhenSdkPathWritable_CompletesWithoutPrompt()
+    {
+        var tempDir = Path.Combine(Path.GetTempPath(), "uno-check-prep-" + Guid.NewGuid().ToString("N")[..8]);
+        Directory.CreateDirectory(tempDir);
+        try
+        {
+            var manager = new DotNetWorkloadManager(tempDir, "10.0.103");
+
+            // The SDK path is writable, so PrepareForInstallAsync must early-return
+            // true (proceed) and never invoke sudo.
+            using var cts = new CancellationTokenSource(TimeSpan.FromSeconds(5));
+            Assert.True(await manager.PrepareForInstallAsync(cts.Token));
+        }
+        finally
+        {
+            Directory.Delete(tempDir, recursive: true);
+        }
+    }
+
+    [Fact]
+    public async Task PrepareForInstallAsync_WhenSdkPathNotWritableAndNonInteractive_DoesNotPrompt()
+    {
+        var nonExistentPath = Path.Combine(Path.GetTempPath(), "uno-check-noexist-" + Guid.NewGuid().ToString("N"));
+        var previous = DotNetCheck.Util.NonInteractive;
+        try
+        {
+            DotNetCheck.Util.NonInteractive = true;
+            var manager = new DotNetWorkloadManager(nonExistentPath, "10.0.103");
+
+            // Non-existent path → not writable. With NonInteractive=true, the helper
+            // must early-return true (the install will surface its own error if
+            // elevation truly isn't available) rather than invoke `sudo -v`, which
+            // would block waiting for input on /dev/tty.
+            using var cts = new CancellationTokenSource(TimeSpan.FromSeconds(5));
+            Assert.True(await manager.PrepareForInstallAsync(cts.Token));
+        }
+        finally
+        {
+            DotNetCheck.Util.NonInteractive = previous;
+        }
+    }
+
+    [Fact]
+    public void ParseInstalledWorkloadIds_ParsesMachineReadableJson()
+    {
+        var ids = DotNetWorkloadManager.ParseInstalledWorkloadIds(
+            "{\"installed\":[\"wasm-tools\",\"android\"],\"updateAvailable\":[]}");
+
+        Assert.Equal(["wasm-tools", "android"], ids);
+    }
+
+    [Theory]
+    [InlineData("")]
+    [InlineData("   ")]
+    [InlineData("{\"installed\":null}")]
+    public void ParseInstalledWorkloadIds_ReturnsEmptyOnEmptyOrNullInstalled(string json)
+    {
+        // Whitespace-only inputs and a JSON document that explicitly sets `installed`
+        // to null both legitimately mean "no workloads installed" — return empty.
+        var ids = DotNetWorkloadManager.ParseInstalledWorkloadIds(json);
+
+        Assert.Empty(ids);
+    }
+
+    [Theory]
+    [InlineData("not json at all")]
+    [InlineData("{\"installed\":")]
+    [InlineData("{\"installed\":[\"wasm-tools\"")]
+    public void ParseInstalledWorkloadIds_ThrowsOnMalformedJson(string json)
+    {
+        // Malformed CLI output must NOT be silently mapped to "no workloads
+        // installed" — that would hide CLI format drift behind false missing-workload
+        // reports and trigger spurious install/repair attempts.
+        var ex = Assert.Throws<InvalidDataException>(
+            () => DotNetWorkloadManager.ParseInstalledWorkloadIds(json));
+        Assert.Contains("Could not parse", ex.Message);
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_UserOnlySucceeds_ReturnsUserList()
+    {
+        var ids = DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: true,
+            userInstalled: ["wasm-tools"],
+            sudoContextAttempted: true,
+            sudoContextSucceeded: false,
+            sudoInstalled: null,
+            failingCommand: "dotnet workload list --machine-readable");
+
+        Assert.Equal(["wasm-tools"], ids);
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_SudoOnlySucceeds_ReturnsSudoList()
+    {
+        // Repro for the "Inadequate permissions" case: user-context call returns
+        // non-zero before producing parseable JSON, but the sudo-context probe
+        // discovers the root-owned workloads.
+        var ids = DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: false,
+            userInstalled: null,
+            sudoContextAttempted: true,
+            sudoContextSucceeded: true,
+            sudoInstalled: ["android", "ios"],
+            failingCommand: "dotnet workload list --machine-readable");
+
+        Assert.Equal(["android", "ios"], ids.OrderBy(x => x).ToArray());
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_MixedUserAndSudoInstalls_UnionsBoth()
+    {
+        // Repro for mixed installs: one workload installed for the current user,
+        // another previously installed via sudo. The combined result must include
+        // both, otherwise the checkup flags the root-owned workload as missing.
+        var ids = DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: true,
+            userInstalled: ["wasm-tools", "maui"],
+            sudoContextAttempted: true,
+            sudoContextSucceeded: true,
+            sudoInstalled: ["maui", "android"],
+            failingCommand: "dotnet workload list --machine-readable");
+
+        Assert.Equal(["android", "maui", "wasm-tools"], ids.OrderBy(x => x).ToArray());
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_DeduplicatesCaseInsensitively()
+    {
+        var ids = DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: true,
+            userInstalled: ["WASM-tools"],
+            sudoContextAttempted: true,
+            sudoContextSucceeded: true,
+            sudoInstalled: ["wasm-tools"],
+            failingCommand: "dotnet workload list --machine-readable");
+
+        Assert.Single(ids);
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_WindowsSkipsSudo_ReturnsUserList()
+    {
+        // On Windows the sudo probe is never attempted; combining must still
+        // return the user list rather than throwing.
+        var ids = DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: true,
+            userInstalled: ["wasm-tools"],
+            sudoContextAttempted: false,
+            sudoContextSucceeded: false,
+            sudoInstalled: null,
+            failingCommand: "dotnet workload list --machine-readable");
+
+        Assert.Equal(["wasm-tools"], ids);
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_BothProbesFail_ThrowsWithCommand()
+    {
+        var ex = Assert.Throws<Exception>(() => DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: false,
+            userInstalled: null,
+            sudoContextAttempted: true,
+            sudoContextSucceeded: false,
+            sudoInstalled: null,
+            failingCommand: "dotnet workload list --machine-readable"));
+
+        Assert.Contains("Workload command failed", ex.Message);
+        Assert.Contains("dotnet workload list --machine-readable", ex.Message);
+    }
+
+    [Fact]
+    public void CombineInstalledWorkloads_UserFailsOnWindows_Throws()
+    {
+        // Windows has no sudo fallback; if the user-context call fails, the
+        // method must throw rather than silently returning an empty list.
+        Assert.Throws<Exception>(() => DotNetWorkloadManager.CombineInstalledWorkloads(
+            userContextSucceeded: false,
+            userInstalled: null,
+            sudoContextAttempted: false,
+            sudoContextSucceeded: false,
+            sudoInstalled: null,
+            failingCommand: "dotnet workload list --machine-readable"));
+    }
+
+    [Theory]
+    [InlineData("dotnet", "dotnet")]
+    [InlineData("/usr/local/share/dotnet/dotnet", "/usr/local/share/dotnet/dotnet")]
+    [InlineData("", "\"\"")]
+    public void QuoteForProcessArgs_LeavesArgumentsWithoutSpecialCharsUnchanged(string input, string expected)
+    {
+        Assert.Equal(expected, DotNetCheck.Util.QuoteForProcessArgs(input));
+    }
+
+    [Theory]
+    [InlineData("/Users/My Name/.dotnet/dotnet", "\"/Users/My Name/.dotnet/dotnet\"")]
+    [InlineData("path\twith tab", "\"path\twith tab\"")]
+    public void QuoteForProcessArgs_WrapsArgumentsContainingWhitespace(string input, string expected)
+    {
+        // Repro for the sudo-retry quoting bug: dotnet executable paths under directories
+        // that contain a space (e.g., "/Users/My Name/...") must be wrapped so the .NET
+        // argv tokenizer keeps them as a single token instead of splitting on whitespace.
+        Assert.Equal(expected, DotNetCheck.Util.QuoteForProcessArgs(input));
+    }
+
+    [Theory]
+    [InlineData("a\"b", "\"a\\\"b\"")]
+    [InlineData("a\\\"b", "\"a\\\\\\\"b\"")]
+    [InlineData("ends-with\\", "\"ends-with\\\\\"")]
+    [InlineData("trailing\\\\", "\"trailing\\\\\\\\\"")]
+    public void QuoteForProcessArgs_EscapesEmbeddedQuotesAndBackslashes(string input, string expected)
+    {
+        Assert.Equal(expected, DotNetCheck.Util.QuoteForProcessArgs(input));
+    }
+
+    [Theory]
+    [InlineData("dotnet", "\"dotnet\"")]
+    [InlineData("/usr/local/share/dotnet/dotnet", "\"/usr/local/share/dotnet/dotnet\"")]
+    [InlineData("/Users/me/My SDK/dotnet", "\"/Users/me/My SDK/dotnet\"")]
+    [InlineData("", "\"\"")]
+    public void ShellDoubleQuote_WrapsArgumentInDoubleQuotes(string input, string expected)
+    {
+        // Repro for the user-configurable DOTNET_ROOT case: a path with spaces inside
+        // the outer single-quoted shell block must be wrapped so the inner shell doesn't
+        // split on the embedded space.
+        Assert.Equal(expected, DotNetCheck.Util.ShellDoubleQuote(input));
+    }
+
+    [Theory]
+    [InlineData("a$b", "\"a\\$b\"")]
+    [InlineData("a`b", "\"a\\`b\"")]
+    [InlineData("a\"b", "\"a\\\"b\"")]
+    [InlineData("a\\b", "\"a\\\\b\"")]
+    [InlineData("$HOME/dotnet", "\"\\$HOME/dotnet\"")]
+    public void ShellDoubleQuote_EscapesShellSpecialChars(string input, string expected)
+    {
+        Assert.Equal(expected, DotNetCheck.Util.ShellDoubleQuote(input));
+    }
+
+    [Fact]
+    public void DotNetWorkloadManager_PinsDotnetUiLanguageToEnglishGlobally()
+    {
+        // The matchers in ShouldRetryWithSudo and BuildCliFailureMessage look for English
+        // substrings like "permission denied" / "no space left on device". On a non-en-US
+        // host the dotnet CLI localizes those, so the checks would silently miss. The class
+        // pins DOTNET_CLI_UI_LANGUAGE=en-US two ways: the static dict (used inline at the
+        // sudo call sites to outflank sudo's env_reset) and a static-ctor side effect that
+        // adds the same pair to Util.EnvironmentVariables so the non-sudo path inherits it.
+        // Guard against either being dropped or renamed.
+
+        // Touching the static field forces the type initializer to run.
+        var pin = DotNetWorkloadManager.WorkloadCliEnv;
+
+        Assert.Equal("en-US", pin["DOTNET_CLI_UI_LANGUAGE"]);
+        Assert.Equal("en-US", Util.EnvironmentVariables["DOTNET_CLI_UI_LANGUAGE"]);
+    }
+
+    [Fact]
+    public async Task EnsureSudoCredentialsCachedAsync_NonInteractive_DoesNotBlockOnConsole()
+    {
+        var previous = DotNetCheck.Util.NonInteractive;
+        try
+        {
+            DotNetCheck.Util.NonInteractive = true;
+
+            // In non-interactive mode the helper must never invoke `sudo -v`
+            // (which would block on /dev/tty). Result depends on whether the
+            // `sudo -n true` probe finds cached creds on the runner — the
+            // assertion here is only that the call returns within the timeout.
+            using var cts = new CancellationTokenSource(TimeSpan.FromSeconds(10));
+            await DotNetCheck.Util.EnsureSudoCredentialsCachedAsync(cts.Token);
+        }
+        finally
+        {
+            DotNetCheck.Util.NonInteractive = previous;
+        }
+    }
 }