Add test API to trigger policy engine migration

    method public void setDeviceOwnerType(@NonNull android.content.ComponentName, int);

    method @RequiresPermission(android.Manifest.permission.MANAGE_DEVICE_ADMINS) public void setNextOperationSafety(int, int);

    method @RequiresPermission(anyOf={android.Manifest.permission.MARK_DEVICE_ORGANIZATION_OWNED, android.Manifest.permission.MANAGE_PROFILE_AND_DEVICE_OWNERS}, conditional=true) public void setProfileOwnerOnOrganizationOwnedDevice(@NonNull android.content.ComponentName, boolean);

    method @RequiresPermission(android.Manifest.permission.MANAGE_PROFILE_AND_DEVICE_OWNERS) public boolean triggerDevicePolicyEngineMigration(boolean);

    field public static final String ACTION_DATA_SHARING_RESTRICTION_APPLIED = "android.app.action.DATA_SHARING_RESTRICTION_APPLIED";

    field public static final String ACTION_DEVICE_POLICY_CONSTANTS_CHANGED = "android.app.action.DEVICE_POLICY_CONSTANTS_CHANGED";

    field public static final int DEVICE_OWNER_TYPE_DEFAULT = 0; // 0x0

    /**

     * @hide

     */

    public static final String PERMISSION_GRANT_POLICY_KEY = "permissionGrant";

    public static final String PERMISSION_GRANT_POLICY = "permissionGrant";

    // TODO: Expose this as SystemAPI once we add the query API

    /**

     * @hide

     */

    public static String PERMISSION_GRANT_POLICY(

            @NonNull String packageName, @NonNull String permission) {

        Objects.requireNonNull(packageName);

        Objects.requireNonNull(permission);

        return PERMISSION_GRANT_POLICY_KEY + "_" + packageName + "_" + permission;

    }

    // TODO: Expose this as SystemAPI once we add the query API

    /**

        }

        return null;

    }

    /**

     * Triggers the data migration of device policies for existing DPCs to the Device Policy Engine.

     * If {@code forceMigration} is set to {@code true} it skips the prerequisite checks before

     * triggering the migration.

     *

     * <p>Returns {@code true} if migration was completed successfully, {@code false} otherwise.

     *

     * @hide

     */

    @TestApi

    @RequiresPermission(permission.MANAGE_PROFILE_AND_DEVICE_OWNERS)

    public boolean triggerDevicePolicyEngineMigration(boolean forceMigration) {

        if (mService != null) {

            try {

                return mService.triggerDevicePolicyEngineMigration(forceMigration);

            } catch (RemoteException e) {

                throw e.rethrowFromSystemServer();

            }

        }

        return false;

    }

}

    ManagedSubscriptionsPolicy getManagedSubscriptionsPolicy();

    DevicePolicyState getDevicePolicyState();

    boolean triggerDevicePolicyEngineMigration(boolean forceMigration);

}

        mEnforcingAdmins = new SparseArray<>();

    }

    // TODO: add more documentation on broadcasts/callbacks to use to get current enforced values

    /**

     * Set the policy for the provided {@code policyDefinition}

     * (see {@link PolicyDefinition}) and {@code enforcingAdmin} to the provided {@code value}.

     * Set the policy for the provided {@code policyDefinition} (see {@link PolicyDefinition}) and

     * {@code enforcingAdmin} to the provided {@code value}.

     *

     * <p>If {@code skipEnforcePolicy} is true, it sets the policies in the internal data structure

     * but doesn't call the enforcing logic.

     *

     */

    <V> void setLocalPolicy(

            @NonNull PolicyDefinition<V> policyDefinition,

            @NonNull EnforcingAdmin enforcingAdmin,

            @NonNull PolicyValue<V> value,

            int userId) {

            int userId,

            boolean skipEnforcePolicy) {

        Objects.requireNonNull(policyDefinition);

        Objects.requireNonNull(enforcingAdmin);

        Objects.requireNonNull(value);

                policyChanged = localPolicyState.addPolicy(enforcingAdmin, value);

            }

            // No need to notify admins as no new policy is actually enforced, we're just filling in

            // the data structures.

            if (!skipEnforcePolicy) {

                if (policyChanged) {

                    onLocalPolicyChanged(policyDefinition, enforcingAdmin, userId);

                }

                boolean policyEnforced = Objects.equals(

                        localPolicyState.getCurrentResolvedPolicy(), value);

                sendPolicyResultToAdmin(

                        // TODO: we're always sending this for now, should properly handle errors.

                        policyEnforced ? RESULT_SUCCESS : RESULT_FAILURE_CONFLICTING_ADMIN_POLICY,

                        userId);

            }

            updateDeviceAdminServiceOnPolicyAddLocked(enforcingAdmin);

        }

    }

    // TODO: add more documentation on broadcasts/callbacks to use to get current enforced values

    /**

     * Set the policy for the provided {@code policyDefinition}

     * (see {@link PolicyDefinition}) and {@code enforcingAdmin} to the provided {@code value}.

     */

    <V> void setLocalPolicy(

            @NonNull PolicyDefinition<V> policyDefinition,

            @NonNull EnforcingAdmin enforcingAdmin,

            @NonNull PolicyValue<V> value,

            int userId) {

        setLocalPolicy(

                policyDefinition, enforcingAdmin, value, userId, /* skipEnforcePolicy= */ false);

    }

    // TODO: add more documentation on broadcasts/callbacks to use to get current enforced values

    /**

     * Removes any previously set policy for the provided {@code policyDefinition}

                    userId);

        }

    }

    // TODO: add more documentation on broadcasts/callbacks to use to get current enforced values

    /**

     * Set the policy for the provided {@code policyDefinition}

     * (see {@link PolicyDefinition}) and {@code enforcingAdmin} to the provided {@code value}.

            @NonNull PolicyDefinition<V> policyDefinition,

            @NonNull EnforcingAdmin enforcingAdmin,

            @NonNull PolicyValue<V> value) {

        setGlobalPolicy(policyDefinition, enforcingAdmin, value, /* skipEnforcePolicy= */ false);

    }

    // TODO: add more documentation on broadcasts/callbacks to use to get current enforced values

    /**

     * Set the policy for the provided {@code policyDefinition}

     * (see {@link PolicyDefinition}) and {@code enforcingAdmin} to the provided {@code value}.

     */

    <V> void setGlobalPolicy(

            @NonNull PolicyDefinition<V> policyDefinition,

            @NonNull EnforcingAdmin enforcingAdmin,

            @NonNull PolicyValue<V> value,

            boolean skipEnforcePolicy) {

        Objects.requireNonNull(policyDefinition);

        Objects.requireNonNull(enforcingAdmin);

            PolicyState<V> globalPolicyState = getGlobalPolicyStateLocked(policyDefinition);

            boolean policyChanged = globalPolicyState.addPolicy(enforcingAdmin, value);

            boolean policyAppliedOnAllUsers = applyGlobalPolicyOnUsersWithLocalPoliciesLocked(

                    policyDefinition, enforcingAdmin, value, skipEnforcePolicy);

            // No need to notify admins as no new policy is actually enforced, we're just filling in

            // the data structures.

            if (!skipEnforcePolicy) {

                if (policyChanged) {

                    onGlobalPolicyChanged(policyDefinition, enforcingAdmin);

                }

            boolean policyEnforcedOnAllUsers = enforceGlobalPolicyOnUsersWithLocalPoliciesLocked(

                    policyDefinition, enforcingAdmin, value);

            boolean policyEnforcedGlobally = Objects.equals(

                boolean policyAppliedGlobally = Objects.equals(

                        globalPolicyState.getCurrentResolvedPolicy(), value);

            boolean policyEnforced = policyEnforcedGlobally && policyEnforcedOnAllUsers;

                boolean policyApplied = policyAppliedGlobally && policyAppliedOnAllUsers;

                sendPolicyResultToAdmin(

                        enforcingAdmin,

                        policyDefinition,

                        // TODO: we're always sending this for now, should properly handle errors.

                    policyEnforced ? RESULT_SUCCESS : RESULT_FAILURE_CONFLICTING_ADMIN_POLICY,

                        policyApplied ? RESULT_SUCCESS : RESULT_FAILURE_CONFLICTING_ADMIN_POLICY,

                        UserHandle.USER_ALL);

            }

            updateDeviceAdminServiceOnPolicyAddLocked(enforcingAdmin);

                onGlobalPolicyChanged(policyDefinition, enforcingAdmin);

            }

            boolean policyEnforcedOnAllUsers = enforceGlobalPolicyOnUsersWithLocalPoliciesLocked(

                    policyDefinition, enforcingAdmin, /* value= */ null);

            boolean policyEnforcedOnAllUsers = applyGlobalPolicyOnUsersWithLocalPoliciesLocked(

                    policyDefinition, enforcingAdmin, /* value= */ null, /* enforcePolicy= */ true);

            // For a removePolicy to be enforced, it means no current policy exists

            boolean policyEnforcedGlobally = policyState.getCurrentResolvedPolicy() == null;

            boolean policyEnforced = policyEnforcedGlobally && policyEnforcedOnAllUsers;

     *

     * <p>Returns {@code true} if the policy is enforced successfully on all users.

     */

    private <V> boolean enforceGlobalPolicyOnUsersWithLocalPoliciesLocked(

    private <V> boolean applyGlobalPolicyOnUsersWithLocalPoliciesLocked(

            @NonNull PolicyDefinition<V> policyDefinition,

            @NonNull EnforcingAdmin enforcingAdmin,

            @Nullable PolicyValue<V> value) {

            @Nullable PolicyValue<V> value,

            boolean skipEnforcePolicy) {

        // Global only policies can't be applied locally, return early.

        if (policyDefinition.isGlobalOnlyPolicy()) {

            return true;

        }

        boolean isAdminPolicyEnforced = true;

        boolean isAdminPolicyApplied = true;

        for (int i = 0; i < mLocalPolicies.size(); i++) {

            int userId = mLocalPolicies.keyAt(i);

            if (!hasLocalPolicyLocked(policyDefinition, userId)) {

            boolean policyChanged = localPolicyState.resolvePolicy(

                    globalPolicyState.getPoliciesSetByAdmins());

            if (policyChanged) {

            if (policyChanged && !skipEnforcePolicy) {

                enforcePolicy(

                        policyDefinition,

                        localPolicyState.getCurrentResolvedPolicy().getValue(),

                        userId);

            }

            isAdminPolicyEnforced &= Objects.equals(

            isAdminPolicyApplied &= Objects.equals(

                    value, localPolicyState.getCurrentResolvedPolicy());

        }

        return isAdminPolicyEnforced;

        return isAdminPolicyApplied;

    }

    /**

        }

    }

    /**

     * Clear all policies set in the policy engine.

     *

     * <p>Note that this doesn't clear any enforcements, it only clears the data structures.

     */

    void clearAllPolicies() {

        synchronized (mLock) {

            clear();

            write();

        }

    }

    private void clear() {

        synchronized (mLock) {

            mGlobalPolicies.clear();

            mLocalPolicies.clear();

            mEnforcingAdmins.clear();

        }

    }