asupersync 0.3.4

Spec-first, cancel-correct, capability-secure async runtime for Rust.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775

//! ATP configuration management with precedence hierarchy.
//!
//! Implements the ATP-I1 configuration precedence:
//! CLI flags > local config > daemon policy > defaults

use crate::cli::atp_command_tree::{AtpConfig as CommandAtpConfig, AtpProfile};
use crate::util::path_security::SecurePath;
use semver::Version;
use serde::{Deserialize, Serialize};
use std::collections::BTreeMap;
use std::fs;
use std::path::{Path, PathBuf};

/// Schema version for the persisted ATP installation config.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub struct ConfigVersion {
    /// Monotonic schema version for `config.toml`.
    pub schema: u32,
}

impl ConfigVersion {
    /// Current persisted installation config schema.
    #[must_use]
    pub const fn current() -> Self {
        Self { schema: 1 }
    }
}

/// Receive safety policy selected during first-run setup.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub enum ReceiveSafetyPolicy {
    /// Ask before accepting every transfer.
    AlwaysAsk,
    /// Auto-accept transfers only from known peers.
    KnownPeersOnly,
    /// Auto-accept all incoming transfers.
    AutoAcceptAll,
}

/// How long ATP should retain transfer proof logs.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub enum ProofRetentionPolicy {
    /// Retain proof logs for the given number of days.
    Days(u64),
}

/// Persisted first-run ATP installation configuration.
#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct AtpInstallConfig {
    /// Schema version for this config file.
    pub schema_version: ConfigVersion,
    /// ATP binary version that last wrote this configuration.
    pub version: Option<Version>,
    /// Durable identity key-store path.
    pub identity_path: PathBuf,
    /// Inbox directory for received transfers.
    pub inbox_dir: PathBuf,
    /// Known-peer directory path.
    pub peer_dir: PathBuf,
    /// Daemon state directory path.
    pub daemon_state_dir: PathBuf,
    /// Receive safety policy.
    pub receive_safety_policy: ReceiveSafetyPolicy,
    /// Proof retention policy.
    pub proof_retention_policy: ProofRetentionPolicy,
    /// Whether Tailscale candidate discovery is enabled.
    pub enable_tailscale: bool,
    /// Whether ATP-managed relays are allowed.
    pub allow_relays: bool,
    /// CLI/daemon logging level.
    pub logging_level: String,
    /// Stable platform label used for service integration.
    pub service_platform: String,
    /// Whether daemon service integration was requested.
    pub service_daemon_enabled: bool,
    /// Whether daemon auto-start was requested.
    pub service_auto_start: bool,
}

impl AtpInstallConfig {
    /// Read a persisted ATP installation config from TOML.
    pub fn read_from_file(path: &Path) -> Result<Self, ConfigError> {
        Self::read_from_file_secure(path, None)
    }

    /// Read a persisted ATP installation config from TOML with path validation.
    pub fn read_from_file_secure(
        path: &Path,
        base_dir: Option<&Path>,
    ) -> Result<Self, ConfigError> {
        let validated_path = if let Some(base) = base_dir {
            // If a base directory is provided, validate the path is within bounds
            let secure_path = SecurePath::new(base).map_err(|e| {
                ConfigError::PathSecurity(format!("Failed to create secure path validator: {}", e))
            })?;
            let validated = secure_path.validate_path(path).map_err(|e| {
                ConfigError::PathSecurity(format!("Path traversal validation failed: {}", e))
            })?;
            validated.to_path_buf()
        } else {
            // If no base directory provided, use the path directly (for backward compatibility)
            // but log a warning about potential security risk
            tracing::warn!(
                "Reading config file without path validation: {}",
                path.display()
            );
            path.to_path_buf()
        };

        let content = fs::read_to_string(&validated_path)
            .map_err(|e| ConfigError::FileRead(validated_path.clone(), e))?;
        toml::from_str(&content).map_err(|e| ConfigError::Parse(validated_path, e))
    }

    /// Write a persisted ATP installation config to TOML.
    pub fn write_to_file(&self, path: &Path) -> Result<(), ConfigError> {
        self.write_to_file_secure(path, None)
    }

    /// Write a persisted ATP installation config to TOML with path validation.
    pub fn write_to_file_secure(
        &self,
        path: &Path,
        base_dir: Option<&Path>,
    ) -> Result<(), ConfigError> {
        let validated_path = if let Some(base) = base_dir {
            // If a base directory is provided, validate the path is within bounds
            let secure_path = SecurePath::new(base).map_err(|e| {
                ConfigError::PathSecurity(format!("Failed to create secure path validator: {}", e))
            })?;
            let validated = secure_path.validate_path(path).map_err(|e| {
                ConfigError::PathSecurity(format!("Path traversal validation failed: {}", e))
            })?;
            validated.to_path_buf()
        } else {
            // If no base directory provided, use the path directly (for backward compatibility)
            // but log a warning about potential security risk
            tracing::warn!(
                "Writing config file without path validation: {}",
                path.display()
            );
            path.to_path_buf()
        };

        if let Some(parent) = validated_path.parent() {
            fs::create_dir_all(parent)
                .map_err(|e| ConfigError::FileWrite(validated_path.clone(), e))?;
        }

        let content = toml::to_string_pretty(self)
            .map_err(|e| ConfigError::Serialize(validated_path.clone(), e))?;
        fs::write(&validated_path, content).map_err(|e| ConfigError::FileWrite(validated_path, e))
    }
}

/// Configuration source and precedence level.
#[derive(Debug, Clone, Copy, PartialEq, Eq, PartialOrd, Ord)]
pub enum ConfigSource {
    /// Built-in defaults (lowest precedence).
    Defaults = 0,
    /// System-wide daemon policy.
    DaemonPolicy = 1,
    /// Local project/directory configuration.
    LocalConfig = 2,
    /// CLI flags and arguments (highest precedence).
    CliFlags = 3,
}

/// Configuration manager with hierarchical precedence.
#[derive(Debug)]
pub struct AtpConfigManager {
    /// Configuration layers by precedence.
    layers: BTreeMap<ConfigSource, CommandAtpConfig>,
    /// Configuration file paths.
    config_paths: ConfigPaths,
}

/// Standard configuration file locations.
#[derive(Debug, Clone)]
pub struct ConfigPaths {
    /// System daemon policy config.
    pub daemon_policy: PathBuf,
    /// User-specific config.
    pub user_config: PathBuf,
    /// Local project config.
    pub local_config: PathBuf,
}

impl Default for ConfigPaths {
    fn default() -> Self {
        Self::detect_standard_paths()
    }
}

impl ConfigPaths {
    /// Detect standard config paths for the current platform.
    pub fn detect_standard_paths() -> Self {
        #[cfg(unix)]
        {
            let home = Self::sanitize_env_path("HOME", "/tmp");
            let config_dir =
                Self::sanitize_env_path("XDG_CONFIG_HOME", &format!("{}/.config", home));

            Self {
                daemon_policy: PathBuf::from("/etc/asupersync/atp.toml"),
                user_config: PathBuf::from(format!("{}/asupersync/atp.toml", config_dir)),
                local_config: PathBuf::from(".atp.toml"),
            }
        }

        #[cfg(windows)]
        {
            let appdata = Self::sanitize_env_path("APPDATA", r"C:\Users\Default\AppData\Roaming");

            Self {
                daemon_policy: PathBuf::from(r"C:\ProgramData\Asupersync\atp.toml"),
                user_config: PathBuf::from(format!("{}/Asupersync/atp.toml", appdata)),
                local_config: PathBuf::from(".atp.toml"),
            }
        }

        #[cfg(target_os = "macos")]
        {
            let home = Self::sanitize_env_path("HOME", "/tmp");

            Self {
                daemon_policy: PathBuf::from("/Library/Application Support/Asupersync/atp.toml"),
                user_config: PathBuf::from(format!(
                    "{}/Library/Application Support/Asupersync/atp.toml",
                    home
                )),
                local_config: PathBuf::from(".atp.toml"),
            }
        }
    }

    /// Safely read and validate environment variable paths.
    ///
    /// SECURITY: Prevents path injection attacks through environment variables
    /// by validating that paths don't contain dangerous sequences like "../"
    /// and are within reasonable bounds.
    fn sanitize_env_path(env_var: &str, default: &str) -> String {
        let raw_path = std::env::var(env_var).unwrap_or_else(|_| default.to_string());

        // Security checks to prevent path injection
        if raw_path.contains("..") {
            eprintln!(
                "Security warning: {} contains suspicious path traversal, using default",
                env_var
            );
            return default.to_string();
        }

        // Prevent excessively long paths that could cause issues
        if raw_path.len() > 1024 {
            eprintln!("Security warning: {} path too long, using default", env_var);
            return default.to_string();
        }

        // Prevent null bytes and other control characters
        if raw_path.contains('\0')
            || raw_path
                .chars()
                .any(|c| c.is_control() && c != '\n' && c != '\t')
        {
            eprintln!(
                "Security warning: {} contains invalid characters, using default",
                env_var
            );
            return default.to_string();
        }

        // On Unix, ensure the path is absolute if not default
        #[cfg(unix)]
        if !raw_path.starts_with('/') && raw_path != default {
            eprintln!(
                "Security warning: {} is not absolute, using default",
                env_var
            );
            return default.to_string();
        }

        // On Windows, basic drive letter validation
        #[cfg(windows)]
        if raw_path.chars().nth(1) != Some(':') && raw_path != default {
            eprintln!(
                "Security warning: {} is not a valid Windows path, using default",
                env_var
            );
            return default.to_string();
        }

        raw_path
    }
}

impl AtpConfigManager {
    /// Create a new configuration manager.
    pub fn new() -> Self {
        let mut manager = Self {
            layers: BTreeMap::new(),
            config_paths: ConfigPaths::default(),
        };

        // Load default configuration
        manager
            .layers
            .insert(ConfigSource::Defaults, CommandAtpConfig::default());

        manager
    }

    /// Create with custom config paths.
    pub fn with_paths(config_paths: ConfigPaths) -> Self {
        let mut manager = Self {
            layers: BTreeMap::new(),
            config_paths,
        };

        manager
            .layers
            .insert(ConfigSource::Defaults, CommandAtpConfig::default());
        manager
    }

    /// Load all configuration layers from disk.
    pub fn load_all(&mut self) -> Result<(), ConfigError> {
        self.load_daemon_policy()?;
        self.load_local_config()?;
        Ok(())
    }

    /// Load daemon policy configuration.
    pub fn load_daemon_policy(&mut self) -> Result<(), ConfigError> {
        if let Ok(config) = self.load_config_file(&self.config_paths.daemon_policy) {
            self.layers.insert(ConfigSource::DaemonPolicy, config);
        }
        Ok(())
    }

    /// Load local project configuration.
    pub fn load_local_config(&mut self) -> Result<(), ConfigError> {
        if let Ok(config) = self.load_config_file(&self.config_paths.local_config) {
            self.layers.insert(ConfigSource::LocalConfig, config);
        }
        Ok(())
    }

    /// Set CLI flag overrides.
    pub fn set_cli_overrides(&mut self, cli_config: CommandAtpConfig) {
        self.layers.insert(ConfigSource::CliFlags, cli_config);
    }

    /// Get the final merged configuration with full precedence.
    pub fn merged_config(&self) -> CommandAtpConfig {
        let mut merged = CommandAtpConfig::default();

        // Apply layers in precedence order (lowest to highest)
        for config in self.layers.values() {
            merged = merge_configs(merged, config.clone());
        }

        merged
    }

    /// Get configuration value with source attribution.
    pub fn get_profile_with_source(&self) -> (AtpProfile, ConfigSource) {
        for (source, config) in self.layers.iter().rev() {
            if let Some(profile) = config.profile {
                return (profile, *source);
            }
        }
        (AtpProfile::Auto, ConfigSource::Defaults)
    }

    /// Save configuration to specified scope.
    pub fn save_config(
        &self,
        scope: ConfigScope,
        config: &CommandAtpConfig,
    ) -> Result<(), ConfigError> {
        let path = match scope {
            ConfigScope::User => &self.config_paths.user_config,
            ConfigScope::Local => &self.config_paths.local_config,
            ConfigScope::Daemon => &self.config_paths.daemon_policy,
        };

        self.save_config_file(path, config)
    }

    /// Load configuration from TOML file.
    fn load_config_file(&self, path: &Path) -> Result<CommandAtpConfig, ConfigError> {
        let content =
            fs::read_to_string(path).map_err(|e| ConfigError::FileRead(path.to_path_buf(), e))?;

        let config: CommandAtpConfig =
            toml::from_str(&content).map_err(|e| ConfigError::Parse(path.to_path_buf(), e))?;

        Ok(config)
    }

    /// Save configuration to TOML file.
    fn save_config_file(&self, path: &Path, config: &CommandAtpConfig) -> Result<(), ConfigError> {
        // Create parent directory if needed
        if let Some(parent) = path.parent() {
            fs::create_dir_all(parent)
                .map_err(|e| ConfigError::FileWrite(path.to_path_buf(), e))?;
        }

        let content = toml::to_string_pretty(config)
            .map_err(|e| ConfigError::Serialize(path.to_path_buf(), e))?;

        fs::write(path, content).map_err(|e| ConfigError::FileWrite(path.to_path_buf(), e))?;

        Ok(())
    }

    /// List all configuration sources and their status.
    pub fn list_sources(&self) -> Vec<ConfigSourceInfo> {
        let all_paths = [
            (ConfigSource::DaemonPolicy, &self.config_paths.daemon_policy),
            (ConfigSource::LocalConfig, &self.config_paths.local_config),
        ];

        all_paths
            .iter()
            .map(|(source, path)| ConfigSourceInfo {
                source: *source,
                path: (*path).clone(),
                exists: path.exists(),
                loaded: self.layers.contains_key(source),
            })
            .collect()
    }

    /// Explain configuration value resolution.
    pub fn explain_resolution(&self, key: &str) -> ConfigResolution {
        let mut sources = Vec::new();

        for (source, config) in &self.layers {
            if let Some(value) = get_config_value(config, key) {
                sources.push(ConfigValueSource {
                    source: *source,
                    value: value.clone(),
                });
            }
        }

        let final_value = sources.last().map(|s| s.value.clone());

        ConfigResolution {
            key: key.to_string(),
            final_value,
            sources,
        }
    }
}

/// Configuration scope for save operations.
#[derive(Debug, Clone, Copy)]
pub enum ConfigScope {
    /// User-specific configuration.
    User,
    /// Local project configuration.
    Local,
    /// System daemon policy.
    Daemon,
}

impl std::str::FromStr for ConfigScope {
    type Err = ConfigError;

    fn from_str(s: &str) -> Result<Self, Self::Err> {
        match s.to_lowercase().as_str() {
            "user" => Ok(Self::User),
            "local" => Ok(Self::Local),
            "daemon" => Ok(Self::Daemon),
            _ => Err(ConfigError::InvalidScope(s.to_string())),
        }
    }
}

/// Information about a configuration source.
#[derive(Debug, Serialize, Deserialize)]
pub struct ConfigSourceInfo {
    /// Configuration source type.
    pub source: ConfigSource,
    /// Path to configuration file.
    pub path: PathBuf,
    /// File exists on disk.
    pub exists: bool,
    /// Configuration was successfully loaded.
    pub loaded: bool,
}

/// Configuration value resolution details.
#[derive(Debug, Serialize, Deserialize)]
pub struct ConfigResolution {
    /// Configuration key name.
    pub key: String,
    /// Final resolved value.
    pub final_value: Option<serde_json::Value>,
    /// All sources that provide this value.
    pub sources: Vec<ConfigValueSource>,
}

/// Source of a configuration value.
#[derive(Debug, Serialize, Deserialize)]
pub struct ConfigValueSource {
    /// Source type.
    pub source: ConfigSource,
    /// Value from this source.
    pub value: serde_json::Value,
}

/// Configuration management errors.
#[derive(Debug, thiserror::Error)]
pub enum ConfigError {
    #[error("Failed to read config file {0}: {1}")]
    FileRead(PathBuf, std::io::Error),

    #[error("Failed to write config file {0}: {1}")]
    FileWrite(PathBuf, std::io::Error),

    #[error("Failed to parse config file {0}: {1}")]
    Parse(PathBuf, toml::de::Error),

    #[error("Failed to serialize config file {0}: {1}")]
    Serialize(PathBuf, toml::ser::Error),

    #[error("Invalid configuration scope: {0}")]
    InvalidScope(String),

    #[error("Configuration validation error: {0}")]
    Validation(String),

    #[error("Path security validation failed: {0}")]
    PathSecurity(String),
}

/// Merge two configurations with precedence (second overrides first).
fn merge_configs(mut base: CommandAtpConfig, overlay: CommandAtpConfig) -> CommandAtpConfig {
    if overlay.profile.is_some() {
        base.profile = overlay.profile;
    }
    if overlay.chunk_size.is_some() {
        base.chunk_size = overlay.chunk_size;
    }
    if overlay.max_concurrent.is_some() {
        base.max_concurrent = overlay.max_concurrent;
    }
    if overlay.timeout.is_some() {
        base.timeout = overlay.timeout;
    }
    if overlay.compression.is_some() {
        base.compression = overlay.compression;
    }
    if overlay.encryption.is_some() {
        base.encryption = overlay.encryption;
    }
    if overlay.repair_overhead.is_some() {
        base.repair_overhead = overlay.repair_overhead;
    }
    if overlay.interface.is_some() {
        base.interface = overlay.interface;
    }
    if overlay.relay_server.is_some() {
        base.relay_server = overlay.relay_server;
    }
    if overlay.daemon_socket.is_some() {
        base.daemon_socket = overlay.daemon_socket;
    }
    if overlay.verbose.is_some() {
        base.verbose = overlay.verbose;
    }

    base
}

/// Extract configuration value by key name.
fn get_config_value(config: &CommandAtpConfig, key: &str) -> Option<serde_json::Value> {
    match key {
        "profile" => config.profile.map(|p| serde_json::to_value(p).unwrap()),
        "chunk_size" => config
            .chunk_size
            .map(|v| serde_json::Value::Number(v.into())),
        "max_concurrent" => config
            .max_concurrent
            .map(|v| serde_json::Value::Number(v.into())),
        "timeout" => config.timeout.map(|v| serde_json::Value::Number(v.into())),
        "compression" => config.compression.map(serde_json::Value::Bool),
        "encryption" => config.encryption.map(serde_json::Value::Bool),
        "repair_overhead" => config
            .repair_overhead
            .map(|v| serde_json::Value::Number(serde_json::Number::from_f64(v as f64).unwrap())),
        "interface" => config
            .interface
            .as_ref()
            .map(|v| serde_json::Value::String(v.clone())),
        "relay_server" => config
            .relay_server
            .as_ref()
            .map(|v| serde_json::Value::String(v.clone())),
        "daemon_socket" => config
            .daemon_socket
            .as_ref()
            .map(|v| serde_json::Value::String(v.to_string_lossy().to_string())),
        "verbose" => config.verbose.map(serde_json::Value::Bool),
        _ => None,
    }
}

/// Implementation of serialization for ConfigSource.
impl Serialize for ConfigSource {
    fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>
    where
        S: serde::Serializer,
    {
        let name = match self {
            Self::Defaults => "defaults",
            Self::DaemonPolicy => "daemon-policy",
            Self::LocalConfig => "local-config",
            Self::CliFlags => "cli-flags",
        };
        serializer.serialize_str(name)
    }
}

impl<'de> Deserialize<'de> for ConfigSource {
    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error>
    where
        D: serde::Deserializer<'de>,
    {
        let s = String::deserialize(deserializer)?;
        match s.as_str() {
            "defaults" => Ok(Self::Defaults),
            "daemon-policy" => Ok(Self::DaemonPolicy),
            "local-config" => Ok(Self::LocalConfig),
            "cli-flags" => Ok(Self::CliFlags),
            _ => Err(serde::de::Error::unknown_variant(
                &s,
                &["defaults", "daemon-policy", "local-config", "cli-flags"],
            )),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::cli::atp_command_tree::AtpConfig;
    use tempfile::TempDir;

    #[test]
    fn test_config_precedence() {
        let mut manager = AtpConfigManager::new();

        // Set daemon policy
        let daemon_config = AtpConfig {
            profile: Some(AtpProfile::BulkFile),
            compression: Some(false),
            ..Default::default()
        };
        manager
            .layers
            .insert(ConfigSource::DaemonPolicy, daemon_config);

        // Set local config
        let local_config = AtpConfig {
            profile: Some(AtpProfile::SyncTree),
            timeout: Some(600),
            ..Default::default()
        };
        manager
            .layers
            .insert(ConfigSource::LocalConfig, local_config);

        // Set CLI flags
        let cli_config = AtpConfig {
            timeout: Some(120),
            compression: Some(true),
            ..Default::default()
        };
        manager.layers.insert(ConfigSource::CliFlags, cli_config);

        let merged = manager.merged_config();

        // CLI flags should override local config for timeout
        assert_eq!(merged.timeout, Some(120));
        // CLI flags should override daemon policy for compression
        assert_eq!(merged.compression, Some(true));
        // Local config should override daemon policy for profile
        assert_eq!(merged.profile, Some(AtpProfile::SyncTree));
    }

    #[test]
    fn test_profile_with_source() {
        let mut manager = AtpConfigManager::new();

        // Only defaults - should return Auto
        let (profile, source) = manager.get_profile_with_source();
        assert_eq!(profile, AtpProfile::Auto);
        assert_eq!(source, ConfigSource::Defaults);

        // Add local config
        let local_config = AtpConfig {
            profile: Some(AtpProfile::Artifact),
            ..Default::default()
        };
        manager
            .layers
            .insert(ConfigSource::LocalConfig, local_config);

        let (profile, source) = manager.get_profile_with_source();
        assert_eq!(profile, AtpProfile::Artifact);
        assert_eq!(source, ConfigSource::LocalConfig);
    }

    #[test]
    fn test_config_file_roundtrip() {
        let temp_dir = TempDir::new().unwrap();
        let config_path = temp_dir.path().join("test.toml");

        let original_config = AtpConfig {
            profile: Some(AtpProfile::Media),
            chunk_size: Some(1024 * 1024),
            compression: Some(true),
            ..Default::default()
        };

        let manager = AtpConfigManager::new();

        // Save config
        manager
            .save_config_file(&config_path, &original_config)
            .unwrap();

        // Load config
        let loaded_config = manager.load_config_file(&config_path).unwrap();

        assert_eq!(loaded_config.profile, original_config.profile);
        assert_eq!(loaded_config.chunk_size, original_config.chunk_size);
        assert_eq!(loaded_config.compression, original_config.compression);
    }

    #[test]
    fn test_config_resolution_explanation() {
        let mut manager = AtpConfigManager::new();

        // Add multiple layers
        let daemon_config = AtpConfig {
            timeout: Some(300),
            ..Default::default()
        };
        manager
            .layers
            .insert(ConfigSource::DaemonPolicy, daemon_config);

        let local_config = AtpConfig {
            timeout: Some(600),
            ..Default::default()
        };
        manager
            .layers
            .insert(ConfigSource::LocalConfig, local_config);

        let resolution = manager.explain_resolution("timeout");

        assert_eq!(resolution.sources.len(), 3); // defaults + daemon + local
        assert_eq!(
            resolution.final_value,
            Some(serde_json::Value::Number(600.into()))
        );
    }
}