[2.9-3] - cil: Fix out-of-bound read of file context pattern ending with "\" - cil: Destroy classperms list when resetting classpermission - cil: Destroy classperm list when resetting map perms - cil: cil_reset_classperms_set should not reset classpermission - cil: Set class field to NULL when resetting struct cil_classperms - cil: More strict verification of constraint leaf expressions - cil: Exit with an error if declaration name is a reserved word - cil: Allow permission expressions when using map classes - cil: Reorder checks for invalid rules when building AST - cil: Cleanup build AST helper functions - cil: Create new first child helper function for building AST - cil: Remove unused field from struct cil_args_resolve - cil: Destroy disabled optional blocks after pass is complete - cil: Check if name is a macro parameter first - cil: fix NULL pointer dereference in __cil_insert_name - cil: Report disabling an optional block only at high verbose levels - cil: Use AST to track blocks and optionals when resolving - cil: Reorder checks for invalid rules when resolving AST - cil: Sync checks for invalid rules in booleanifs - cil: Check for statements not allowed in optional blocks