Respect enterprise policy in AppFunctions

    field public static final int ERROR_CATEGORY_UNKNOWN = 0; // 0x0

    field public static final int ERROR_DENIED = 1000; // 0x3e8

    field public static final int ERROR_DISABLED = 1002; // 0x3ea

    field public static final int ERROR_ENTERPRISE_POLICY_DISALLOWED = 2002; // 0x7d2

    field public static final int ERROR_FUNCTION_NOT_FOUND = 1003; // 0x3eb

    field public static final int ERROR_INVALID_ARGUMENT = 1001; // 0x3e9

    field public static final int ERROR_SYSTEM_ERROR = 2000; // 0x7d0

/**

 * Represents an app function related error.

 *

 * <p>This exception may include an {@link AppFunctionException#getExtras() Bundle}

 * containing additional error-specific metadata.

 * <p>This exception may include an {@link AppFunctionException#getExtras() Bundle} containing

 * additional error-specific metadata.

 *

 * <p>The AppFunction SDK can expose structured APIs by packing and unpacking this Bundle.

 */

     */

    public static final int ERROR_CANCELLED = 2001;

    /**

     * The operation was disallowed by enterprise policy.

     *

     * <p>This error is in the {@link #ERROR_CATEGORY_SYSTEM} category.

     */

    public static final int ERROR_ENTERPRISE_POLICY_DISALLOWED = 2002;

    /**

     * An unknown error occurred while processing the call in the AppFunctionService.

     *

                ERROR_SYSTEM_ERROR,

                ERROR_INVALID_ARGUMENT,

                ERROR_DISABLED,

                ERROR_CANCELLED

                ERROR_CANCELLED,

                ERROR_ENTERPRISE_POLICY_DISALLOWED

            })

    @Retention(RetentionPolicy.SOURCE)

    public @interface ErrorCode {}

    field public static final int ERROR_CATEGORY_UNKNOWN = 0; // 0x0

    field public static final int ERROR_DENIED = 1000; // 0x3e8

    field public static final int ERROR_DISABLED = 1002; // 0x3ea

    field public static final int ERROR_ENTERPRISE_POLICY_DISALLOWED = 2002; // 0x7d2

    field public static final int ERROR_FUNCTION_NOT_FOUND = 1003; // 0x3eb

    field public static final int ERROR_INVALID_ARGUMENT = 1001; // 0x3e9

    field public static final int ERROR_SYSTEM_ERROR = 2000; // 0x7d0

     */

    public static final int ERROR_CANCELLED = 2001;

    /**

     * The operation was disallowed by enterprise policy.

     *

     * <p>This error is in the {@link #ERROR_CATEGORY_SYSTEM} category.

     */

    public static final int ERROR_ENTERPRISE_POLICY_DISALLOWED = 2002;

    /**

     * An unknown error occurred while processing the call in the AppFunctionService.

     *

                ERROR_SYSTEM_ERROR,

                ERROR_INVALID_ARGUMENT,

                ERROR_DISABLED,

                ERROR_CANCELLED

                ERROR_CANCELLED,

                ERROR_ENTERPRISE_POLICY_DISALLOWED

            })

    @Retention(RetentionPolicy.SOURCE)

    public @interface ErrorCode {}

import android.annotation.NonNull;

import android.annotation.Nullable;

import android.annotation.WorkerThread;

import android.app.appfunctions.AppFunctionException;

import android.app.appfunctions.AppFunctionManager;

import android.app.appfunctions.AppFunctionManagerHelper;

import android.app.appfunctions.AppFunctionRuntimeMetadata;

import android.app.appfunctions.AppFunctionStaticMetadataHelper;

import android.app.appfunctions.ExecuteAppFunctionAidlRequest;

import android.app.appfunctions.AppFunctionException;

import android.app.appfunctions.IAppFunctionEnabledCallback;

import android.app.appfunctions.IAppFunctionManager;

import android.app.appfunctions.IAppFunctionService;

        } catch (SecurityException exception) {

            safeExecuteAppFunctionCallback.onError(

                    new AppFunctionException(

                            AppFunctionException.ERROR_DENIED,

                            exception.getMessage()));

                            AppFunctionException.ERROR_DENIED, exception.getMessage()));

            return null;

        }

            @NonNull SafeOneTimeExecuteAppFunctionCallback safeExecuteAppFunctionCallback,

            @NonNull IBinder callerBinder) {

        UserHandle targetUser = requestInternal.getUserHandle();

        // TODO(b/354956319): Add and honor the new enterprise policies.

        if (mCallerValidator.isUserOrganizationManaged(targetUser)) {

        UserHandle callingUser = UserHandle.getUserHandleForUid(callingUid);

        if (!mCallerValidator.verifyEnterprisePolicyIsAllowed(callingUser, targetUser)) {

            safeExecuteAppFunctionCallback.onError(

                    new AppFunctionException(AppFunctionException.ERROR_SYSTEM_ERROR,

                            "Cannot run on a device with a device owner or from the managed"

                                    + " profile."));

                    new AppFunctionException(

                            AppFunctionException.ERROR_ENTERPRISE_POLICY_DISALLOWED,

                            "Cannot run on a user with a restricted enterprise policy"));

            return;

        }

        if (!bindServiceResult) {

            Slog.e(TAG, "Failed to bind to the AppFunctionService");

            safeExecuteAppFunctionCallback.onError(

                    new AppFunctionException(AppFunctionException.ERROR_SYSTEM_ERROR,

                    new AppFunctionException(

                            AppFunctionException.ERROR_SYSTEM_ERROR,

                            "Failed to bind the AppFunctionService."));

        }

    }

            return;

        }

        FutureGlobalSearchSession futureGlobalSearchSession =

                new FutureGlobalSearchSession(

                        perUserAppSearchManager, AppFunctionExecutors.THREAD_POOL_EXECUTOR);

                new FutureGlobalSearchSession(perUserAppSearchManager, THREAD_POOL_EXECUTOR);

        AppFunctionMetadataObserver appFunctionMetadataObserver =

                new AppFunctionMetadataObserver(

                        user.getUserHandle(),