policy: use JSON schema to deserialize entries from Windows registry.

chrome/browser/policy/policy_loader_win.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "chrome/browser/policy/policy_loader_win.h"
 
 #include <rpc.h>      // For struct GUID
 #include <shlwapi.h>  // For PathIsUNC()
 #include <userenv.h>  // For GPO functions
 #include <windows.h>
 
 #include <string>
 #include <vector>
 
 // shlwapi.dll is required for PathIsUNC().
 #pragma comment(lib, "shlwapi.lib")
 // userenv.dll is required for various GPO functions.
 #pragma comment(lib, "userenv.lib")
 
 #include "base/basictypes.h"
 #include "base/file_util.h"
 #include "base/json/json_reader.h"
 #include "base/lazy_instance.h"
 #include "base/logging.h"
+#include "base/message_loop/message_loop.h"
 #include "base/scoped_native_library.h"
 #include "base/sequenced_task_runner.h"
 #include "base/stl_util.h"
 #include "base/strings/string16.h"
 #include "base/strings/string_util.h"
+#include "chrome/browser/policy/browser_policy_connector.h"
 #include "chrome/browser/policy/policy_bundle.h"
+#include "chrome/browser/policy/policy_domain_descriptor.h"
 #include "chrome/browser/policy/policy_load_status.h"
 #include "chrome/browser/policy/policy_map.h"
+#include "chrome/browser/policy/policy_service.h"
 #include "chrome/browser/policy/preg_parser_win.h"
 #include "chrome/browser/policy/registry_dict_win.h"
 #include "components/json_schema/json_schema_constants.h"
 #include "policy/policy_constants.h"
 
 namespace schema = json_schema_constants;
 
 namespace policy {
 
 namespace {
@@ skipping 138 matching lines @@
 
   NOTREACHED() << "Unsupported policy value type " << value_type;
   return json_schema_constants::kNull;
 }
 
 // Parses |gpo_dict| according to |schema| and writes the resulting policy
 // settings to |policy| for the given |scope| and |level|.
 void ParsePolicy(const RegistryDict* gpo_dict,
                  PolicyLevel level,
                  PolicyScope scope,
-                 const base::DictionaryValue* schema,
+                 const PolicySchema* schema,
                  PolicyMap* policy) {
   if (!gpo_dict)
     return;
 
   scoped_ptr<base::Value> policy_value(gpo_dict->ConvertToJSON(schema));
   const base::DictionaryValue* policy_dict = NULL;
   if (!policy_value->GetAsDictionary(&policy_dict) || !policy_dict) {
     LOG(WARNING) << "Root policy object is not a dictionary!";
     return;
   }
@@ skipping 48 matching lines @@
   is_initialized_ = true;
   SetupWatches();
 }
 
 scoped_ptr<PolicyBundle> PolicyLoaderWin::Load() {
   // Reset the watches BEFORE reading the individual policies to avoid
   // missing a change notification.
   if (is_initialized_)
     SetupWatches();
 
-  if (chrome_policy_schema_.empty())
-    BuildChromePolicySchema();
-
   // Policy scope and corresponding hive.
   static const struct {
     PolicyScope scope;
     HKEY hive;
   } kScopes[] = {
     { POLICY_SCOPE_MACHINE, HKEY_LOCAL_MACHINE },
     { POLICY_SCOPE_USER,    HKEY_CURRENT_USER  },
   };
 
   // Load policy data for the different scopes/levels and merge them.
@@ skipping 40 matching lines @@
                      chrome_policy);
 
     // Load 3rd-party policy.
     if (third_party_dict)
       Load3rdPartyPolicy(third_party_dict.get(), scope, bundle.get());
   }
 
   return bundle.Pass();
 }
 
-void PolicyLoaderWin::BuildChromePolicySchema() {
-  scoped_ptr<base::DictionaryValue> properties(new base::DictionaryValue());
-  for (const PolicyDefinitionList::Entry* e = policy_list_->begin;
-       e != policy_list_->end; ++e) {
-    const std::string schema_type = GetSchemaTypeForValueType(e->value_type);
-    scoped_ptr<base::DictionaryValue> entry_schema(new base::DictionaryValue());
-    entry_schema->SetStringWithoutPathExpansion(json_schema_constants::kType,
-                                                schema_type);
-
-    if (e->value_type == base::Value::TYPE_LIST) {
-      scoped_ptr<base::DictionaryValue> items_schema(
-          new base::DictionaryValue());
-      items_schema->SetStringWithoutPathExpansion(
-          json_schema_constants::kType, json_schema_constants::kString);
-      entry_schema->SetWithoutPathExpansion(json_schema_constants::kItems,
-                                            items_schema.release());
-    }
-    properties->SetWithoutPathExpansion(e->name, entry_schema.release());
-  }
-  chrome_policy_schema_.SetStringWithoutPathExpansion(
-      json_schema_constants::kType, json_schema_constants::kObject);
-  chrome_policy_schema_.SetWithoutPathExpansion(
-      json_schema_constants::kProperties, properties.release());
-}
-
 bool PolicyLoaderWin::ReadPRegFile(const base::FilePath& preg_file,
                                    RegistryDict* policy,
                                    PolicyLoadStatusSample* status) {
   // The following deals with the minor annoyance that Wow64 FS redirection
   // might need to be turned off: This is the case if running as a 32-bit
   // process on a 64-bit system, in which case Wow64 FS redirection redirects
   // access to the %WINDIR%/System32/GroupPolicy directory to
   // %WINDIR%/SysWOW64/GroupPolicy, but the file is actually in the
   // system-native directory.
   if (base::PathExists(preg_file)) {
@@ skipping 80 matching lines @@
   }
 
   return result;
 }
 
 void PolicyLoaderWin::LoadChromePolicy(const RegistryDict* gpo_dict,
                                        PolicyLevel level,
                                        PolicyScope scope,
                                        PolicyMap* chrome_policy_map) {
   PolicyMap policy;
-  ParsePolicy(gpo_dict, level, scope, &chrome_policy_schema_, &policy);
+  const PolicySchema* schema = NULL;
+  scoped_refptr<const PolicyDomainDescriptor> descriptor =
+      get_descriptor(POLICY_DOMAIN_CHROME);
+  if (descriptor)
+    schema = descriptor->get_schema("");
+  ParsePolicy(gpo_dict, level, scope, schema, &policy);
   chrome_policy_map->MergeFrom(policy);
 }
 
+const PolicySchema* PolicyLoaderWin::Load3rdPartyPolicySchema(
+    PolicyDomain domain,
+    const std::string& component_key,
+    RegistryDict* component_dict) {
+
+  // Try to find the schema in the domain descriptor, if it exists.
+  scoped_refptr<const PolicyDomainDescriptor> descriptor =
+      get_descriptor(domain);
+  if (descriptor) {
+    const PolicySchema* schema =
+        descriptor->get_schema(domain + "//" + component_key);
+    if (schema)
+      return schema;
+  }
+
+  // Next, look in the registry entry.
+  // TODO(joaodasilva): Remove this for M31. http://crbug.com/240704
+  std::string schema_json;
+  const base::Value* schema_value = component_dict->GetValue(kKeySchema);
+  if (schema_value && schema_value->GetAsString(&schema_json)) {
+    std::string err;
+    PolicySchema* parsed_schema =
+        PolicySchema::Parse(schema_json, &err).release();
+    if (!parsed_schema) {
+      LOG(ERROR) << "Failed to parse 3rd-party policy schema for "
+                 << domain << "/" << component_key << ": "
+                 << err;
+      return NULL;
+    }
+    // We don't want to own the schema, but we need it around for the
+    // rest of this task to parse the policy value.
+    base::MessageLoop::current()->DeleteSoon(FROM_HERE, parsed_schema);
+    return parsed_schema;
+  }
+
+  return NULL;
+}
+
 void PolicyLoaderWin::Load3rdPartyPolicy(const RegistryDict* gpo_dict,
                                          PolicyScope scope,
                                          PolicyBundle* bundle) {
   // Map of known 3rd party policy domain name to their enum values.
   static const struct {
     const char* name;
     PolicyDomain domain;
   } k3rdPartyDomains[] = {
     { "extensions", POLICY_DOMAIN_EXTENSIONS },
   };
@@ skipping 12 matching lines @@
     const PolicyDomain domain = k3rdPartyDomains[i].domain;
     const RegistryDict* domain_dict = gpo_dict->GetKey(name);
     if (!domain_dict)
       continue;
 
     for (RegistryDict::KeyMap::const_iterator component(
              domain_dict->keys().begin());
          component != domain_dict->keys().end();
          ++component) {
       // Load the schema.
-      const base::DictionaryValue* schema_dict = NULL;
-      scoped_ptr<base::Value> schema;
-      std::string schema_json;
-      const base::Value* schema_value = component->second->GetValue(kKeySchema);
-      if (schema_value && schema_value->GetAsString(&schema_json)) {
-        schema.reset(base::JSONReader::Read(schema_json));
-        if (!schema || !schema->GetAsDictionary(&schema_dict)) {
-          LOG(WARNING) << "Failed to parse 3rd-part policy schema for "
-                       << domain << "/" << component->first;
-        }
-      }
+      const PolicySchema* schema =
+          Load3rdPartyPolicySchema(domain, component->first, component->second);
 
       // Parse policy.
       for (size_t j = 0; j < arraysize(kLevels); j++) {
         const RegistryDict* policy_dict =
             component->second->GetKey(kLevels[j].path);
         if (!policy_dict)
           continue;
 
         PolicyMap policy;
-        ParsePolicy(policy_dict, kLevels[j].level, scope, schema_dict, &policy);
+        ParsePolicy(policy_dict, kLevels[j].level, scope, schema, &policy);
         PolicyNamespace policy_namespace(domain, component->first);
         bundle->Get(policy_namespace).MergeFrom(policy);
       }
     }
   }
 }
 
 void PolicyLoaderWin::SetupWatches() {
   DCHECK(is_initialized_);
   if (!user_policy_watcher_failed_ &&
@@ skipping 14 matching lines @@
 
 void PolicyLoaderWin::OnObjectSignaled(HANDLE object) {
   DCHECK(object == user_policy_changed_event_.handle() ||
          object == machine_policy_changed_event_.handle())
       << "unexpected object signaled policy reload, obj = "
       << std::showbase << std::hex << object;
   Reload(false);
 }
 
 }  // namespace policy