libsepol/cil/src/cil_binary.h - platform/external/selinux - Git at Google

 /*
  * Copyright 2011 Tresys Technology, LLC. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions are met:
  *
  *    1. Redistributions of source code must retain the above copyright notice,
  *       this list of conditions and the following disclaimer.
  *
  *    2. Redistributions in binary form must reproduce the above copyright notice,
  *       this list of conditions and the following disclaimer in the documentation
  *       and/or other materials provided with the distribution.
  *
  * THIS SOFTWARE IS PROVIDED BY TRESYS TECHNOLOGY, LLC ``AS IS'' AND ANY EXPRESS
  * OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
  * MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
  * EVENT SHALL TRESYS TECHNOLOGY, LLC OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
  * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
  * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
  * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
  * OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
  * ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
  *
  * The views and conclusions contained in the software and documentation are those
  * of the authors and should not be interpreted as representing official policies,
  * either expressed or implied, of Tresys Technology, LLC.
  */

 #ifndef _CIL_BINARY_H_
 #define _CIL_BINARY_H_

 #include <sepol/policydb/policydb.h>

 #include "cil_internal.h"
 #include "cil_tree.h"
 #include "cil_list.h"

 /**
  * Create a binary policydb from the cil db.
  *
  * @param[in] db The cil database.
  * @param[in] pdb The policy database.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_binary_create(const struct cil_db *db, sepol_policydb_t **pdb);

 /**
  * Create a pre allocated binary policydb from the cil db.
  *
  * It is assumed that pdb has been allocated and initialized so that fields such
  * as policy type and version are set appropriately. It is recommended that
  * instead of calling this, one instead calls cil_binary_create, which will
  * properly allocate and initialize the pdb and then calls this function. This
  * function is used to maintain binary backwards compatibility.
  *
  * @param[in] db The cil database.
  * @param[in] pdb The policy database.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_binary_create_allocated_pdb(const struct cil_db *db, sepol_policydb_t *pdb);

 /**
  * Insert cil common structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the common into.
  * @param[in] datum The cil_common datum.
  * @param[out] common_out The sepol common to send back.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_common_to_policydb(policydb_t *pdb, struct cil_class *cil_common, common_datum_t **common_out);

 /**
  * Insert cil class structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the class into.
  * @param[in] datum The cil_class datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_class_to_policydb(policydb_t *pdb, struct cil_class *cil_class);

 /**
  * Insert cil role structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the role into.
  * @param[in] datum The cil_role datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_role_to_policydb(policydb_t *pdb, struct cil_role *cil_role);

 /**
  * Insert cil roletype structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the roletype into.
  * @param[in] db The cil database
  * @param[in] datum The cil_roletype datum.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR otherwise.
  */
 int cil_roletype_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_role *role);

 /**
  * Insert cil type structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the type into.
  * @param[in] datum The cil_type datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_type_to_policydb(policydb_t *pdb, struct cil_type *cil_type, void *type_value_to_cil[]);

 /**
  * Insert cil typealias structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the typealias into.
  * @param[in] datum The cil_typealias datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_typealias_to_policydb(policydb_t *pdb, struct cil_alias *cil_alias);

 /**
  * Insert cil typepermissive structure into sepol policydb.
  * The function looks up the previously inserted type and flips the bit
  * in the permssive types bitmap that corresponds to that type's value.
  *
  * @param[in] pdb The policy database to insert the typepermissive into.
  * @param[in] datum The cil_typepermissive datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_typepermissive_to_policydb(policydb_t *pdb, struct cil_typepermissive *cil_typeperm);

 /**
  * Insert cil attribute structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the attribute into.
  * @param[in] datum The cil_attribute datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_typeattribute_to_policydb(policydb_t *pdb, struct cil_typeattribute *cil_attr, void *type_value_to_cil[]);

 /**
  * Insert cil attribute structure into sepol type->attribute bitmap.
  * The function calls helper functions to loop over the attributes lists
  * of types and negative types. If either of the lists contain an attribute,
  * the helper functions will recurse into the attribute and record the
  * attribute's types and negative types. There is no minimum depth.
  *
  * @param[in] pdb The policy database that contains the type->attribute bitmap.
  * @param[in] db The cil database
  * @param[in] node The tree node that contains the cil_attribute.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_typeattribute_to_bitmap(policydb_t *pdb, const struct cil_db *cdb, struct cil_typeattribute *cil_attr);

 /**
  * Insert cil policycap structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the policycap into.
  * @param[in] node The tree node that contains the cil_policycap.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR upon error.
  */
 int cil_policycap_to_policydb(policydb_t *pdb, struct cil_policycap *cil_polcap);

 /**
  * Insert cil user structure into sepol policydb.
  *
  * @param[in] pdb THe policy database to insert the user into.
  * @param[in] node The tree node that contains the cil_user.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_user_to_policydb(policydb_t *pdb, struct cil_user *cil_user);

 /**
  * Insert cil userrole structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the userrole into.
  * @param[in] db The cil database
  * @param[in] datum The cil_user
  *
  * @return SEPOL_OK upon success or SEPOL_ERR otherwise.
  */
 int cil_userrole_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_user *user);

 /**
  * Insert cil bool structure into sepol policydb.
  *
  * @param[in] pdb THe policy database to insert the bool into.
  * @param[in] datum The cil_bool datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_bool_to_policydb(policydb_t *pdb, struct cil_bool *cil_bool);

 /**
  * Insert all ordered cil category structures into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the categories into.
  * @param[in] db The cil database that contains the category order list.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_catorder_to_policydb(policydb_t *pdb, const struct cil_db *db);

 /**
  * Insert cil category alias structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the category alias into.
  * @param[in] datum The cil_catalias datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_catalias_to_policydb(policydb_t *pdb, struct cil_alias *cil_alias);

 /**
  * Insert the cil sensitivityorder into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the sensitivityorder into.
  * @param[in] db the cil database that contains the sensitivityorder list.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_sensitivityorder_to_policydb(policydb_t *pdb, const struct cil_db *db);

 /**
  * Insert cil type rule structure into sepol policydb.  This includes
  * typetransition, typechange, and typemember.
  *
  * @param[in] pdb The policy database to insert the type rule into.
  * @param[in] datum The cil_type_rule datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_type_rule_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_type_rule *cil_rule);

 /**
  * Insert cil avrule structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the avrule into.
  * @param[in] datum The cil_avrule datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_avrule_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_avrule *cil_avrule);

 /**
  * Insert cil booleanif structure into sepol policydb.  This populates the
  * policydb conditional list.  Each conditional node contains an expression
  * and true/false avtab_ptr lists that point into te_cond_avtab.
  *
  * @param[in] pdb The policy database to insert the booleanif into.
  * @param[in] node The cil_booleanif node.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_booleanif_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_tree_node *node);

 /**
  * Insert cil role transition structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the role transition into.
  * @param[in] datum The cil_role_trans datum.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR upon error.
  */
 int cil_roletrans_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_roletransition *roletrans, hashtab_t role_trans_table);

 /**
  * Insert cil role allow structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the role allow into.
  * @param[in] datum The cil_role_allow datum.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR upon error.
  */
 int cil_roleallow_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_roleallow *roleallow);

 /**
  * Insert cil file transition structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the file transition into.
  * @param[in] datum The cil_nametypetransition datum.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR upon error.
  */
 int cil_typetransition_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_nametypetransition *typetrans);

 /**
  * Insert cil constrain/mlsconstrain structure(s) into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the (mls)constrain into.
  * @param[in] datum The cil_(mls)constrain datum.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR upon error.
  */
 int cil_constrain_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_constrain *cil_constrain);

 /**
  * Define sepol level.
  * Associates the sepol level (sensitivity) with categories.
  * Looks at the cil_sens structure for a list of cil_cats to
  * associate the sensitivity with.
  * Sets the sepol level as defined in the sepol policy database.
  *
  * @param[in] pdb The policy database that holds the sepol level.
  * @param[in] datum The cil_sens datum.
  *
  * @return SEPOL_OK upon success or SEPOL_ERR upon error.
  */
 int cil_sepol_level_define(policydb_t *pdb, struct cil_sens *cil_sens);

 /**
  * Insert cil rangetransition structure into sepol policydb.
  *
  * @param[in] pdb The policy database to insert the rangetransition into.
  * @param[in] datum The cil_rangetransition datum.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_rangetransition_to_policydb(policydb_t *pdb, const struct cil_db *db, struct cil_rangetransition *rangetrans);

 /**
  * Insert cil ibpkeycon structure into sepol policydb.
  * The function is given a structure containing the sorted ibpkeycons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the ibpkeycon into.
  * @param[in] node The cil_sort structure that contains the sorted ibpkeycons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_ibpkeycon_to_policydb(policydb_t *pdb, struct cil_sort *ibpkeycons);

 /**
  * Insert cil idbev structure into sepol policydb.
  * The function is given a structure containing the sorted ibendportcons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the pkeycon into.
  * @param[in] node The cil_sort structure that contains the sorted ibendportcons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_ibendportcon_to_policydb(policydb_t *pdb, struct cil_sort *pkeycons);

 /**
  * Insert cil portcon structure into sepol policydb.
  * The function is given a structure containing the sorted portcons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the portcon into.
  * @param[in] node The cil_sort structure that contains the sorted portcons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_portcon_to_policydb(policydb_t *pdb, struct cil_sort *portcons);

 /**
  * Insert cil netifcon structure into sepol policydb.
  * The function is given a structure containing the sorted netifcons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the netifcon into.
  * @param[in] node The cil_sort structure that contains the sorted netifcons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_netifcon_to_policydb(policydb_t *pdb, struct cil_sort *netifcons);

 /**
  * Insert cil nodecon structure into sepol policydb.
  * The function is given a structure containing the sorted nodecons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the nodecon into.
  * @param[in] node The cil_sort structure that contains the sorted nodecons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_nodecon_to_policydb(policydb_t *pdb, struct cil_sort *nodecons);

 /**
  * Insert cil fsuse structure into sepol policydb.
  * The function is given a structure containing the sorted fsuses and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the fsuse into.
  * @param[in] node The cil_sort structure that contains the sorted fsuses.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_fsuse_to_policydb(policydb_t *pdb, struct cil_sort *fsuses);

 /**
  * Insert cil genfscon structure into sepol policydb.
  * The function is given a structure containing the sorted genfscons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the genfscon into.
  * @param[in] node The cil_sort structure that contains the sorted genfscons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_genfscon_to_policydb(policydb_t *pdb, struct cil_sort *genfscons);

 /**
  * Insert cil pirqcon structure into sepol policydb.
  * The function is given a structure containing the sorted pirqcons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the pirqcon into.
  * @param[in] node The cil_sort structure that contains the sorted pirqcons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_pirqcon_to_policydb(policydb_t *pdb, struct cil_sort *pirqcons);

 /**
  * Insert cil iomemcon structure into sepol policydb.
  * The function is given a structure containing the sorted iomemcons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the iomemcon into.
  * @param[in] node The cil_sort structure that contains the sorted iomemcons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_iomemcon_to_policydb(policydb_t *pdb, struct cil_sort *iomemcons);

 /**
  * Insert cil ioportcon structure into sepol policydb.
  * The function is given a structure containing the sorted ioportcons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the ioportcon into.
  * @param[in] node The cil_sort structure that contains the sorted ioportcons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_ioportcon_to_policydb(policydb_t *pdb, struct cil_sort *ioportcons);

 /**
  * Insert cil pcidevicecon structure into sepol policydb.
  * The function is given a structure containing the sorted pcidevicecons and
  * loops over this structure inserting them into the policy database.
  *
  * @param[in] pdb The policy database to insert the pcidevicecon into.
  * @param[in] node The cil_sort structure that contains the sorted pcidevicecons.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_pcidevicecon_to_policydb(policydb_t *pdb, struct cil_sort *pcidevicecons);

 /**
  * Create an mls level using a cil level.
  * The function is given a structure containing the a cil_level and
  * outputs a created mls_level_t.
  *
  * @param[in] pdb The policy database to use to get sepol level from cil_level's sensitivity.
  * @param[in] cil_level The cil_level that will be used to create an mls_level_t.
  * @param[out] mls_level The mls_level that is created.
  *
  * @return SEPOL_OK upon success or an error otherwise.
  */
 int cil_level_to_mls_level(policydb_t *pdb, struct cil_level *cil_level, mls_level_t *mls_level);

 #endif //_CIL_BINARY_H_
	/*
	* Copyright 2011 Tresys Technology, LLC. All rights reserved.
	*
	* Redistribution and use in source and binary forms, with or without
	* modification, are permitted provided that the following conditions are met:
	*
	* 1. Redistributions of source code must retain the above copyright notice,
	* this list of conditions and the following disclaimer.
	*
	* 2. Redistributions in binary form must reproduce the above copyright notice,
	* this list of conditions and the following disclaimer in the documentation
	* and/or other materials provided with the distribution.
	*
	* THIS SOFTWARE IS PROVIDED BY TRESYS TECHNOLOGY, LLC ``AS IS'' AND ANY EXPRESS
	* OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
	* MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
	* EVENT SHALL TRESYS TECHNOLOGY, LLC OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT,
	* INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
	* BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
	* DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
	* LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE
	* OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
	* ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
	*
	* The views and conclusions contained in the software and documentation are those
	* of the authors and should not be interpreted as representing official policies,
	* either expressed or implied, of Tresys Technology, LLC.
	*/

	#ifndef _CIL_BINARY_H_
	#define _CIL_BINARY_H_

	#include <sepol/policydb/policydb.h>

	#include "cil_internal.h"
	#include "cil_tree.h"
	#include "cil_list.h"

	/**
	* Create a binary policydb from the cil db.
	*
	* @param[in] db The cil database.
	* @param[in] pdb The policy database.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_binary_create(const struct cil_db db, sepol_policydb_t *pdb);

	/**
	* Create a pre allocated binary policydb from the cil db.
	*
	* It is assumed that pdb has been allocated and initialized so that fields such
	* as policy type and version are set appropriately. It is recommended that
	* instead of calling this, one instead calls cil_binary_create, which will
	* properly allocate and initialize the pdb and then calls this function. This
	* function is used to maintain binary backwards compatibility.
	*
	* @param[in] db The cil database.
	* @param[in] pdb The policy database.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_binary_create_allocated_pdb(const struct cil_db db, sepol_policydb_t pdb);

	/**
	* Insert cil common structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the common into.
	* @param[in] datum The cil_common datum.
	* @param[out] common_out The sepol common to send back.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_common_to_policydb(policydb_t pdb, struct cil_class cil_common, common_datum_t **common_out);

	/**
	* Insert cil class structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the class into.
	* @param[in] datum The cil_class datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_class_to_policydb(policydb_t pdb, struct cil_class cil_class);

	/**
	* Insert cil role structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the role into.
	* @param[in] datum The cil_role datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_role_to_policydb(policydb_t pdb, struct cil_role cil_role);

	/**
	* Insert cil roletype structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the roletype into.
	* @param[in] db The cil database
	* @param[in] datum The cil_roletype datum.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR otherwise.
	*/
	int cil_roletype_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_role *role);

	/**
	* Insert cil type structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the type into.
	* @param[in] datum The cil_type datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_type_to_policydb(policydb_t pdb, struct cil_type cil_type, void *type_value_to_cil[]);

	/**
	* Insert cil typealias structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the typealias into.
	* @param[in] datum The cil_typealias datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_typealias_to_policydb(policydb_t pdb, struct cil_alias cil_alias);

	/**
	* Insert cil typepermissive structure into sepol policydb.
	* The function looks up the previously inserted type and flips the bit
	* in the permssive types bitmap that corresponds to that type's value.
	*
	* @param[in] pdb The policy database to insert the typepermissive into.
	* @param[in] datum The cil_typepermissive datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_typepermissive_to_policydb(policydb_t pdb, struct cil_typepermissive cil_typeperm);

	/**
	* Insert cil attribute structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the attribute into.
	* @param[in] datum The cil_attribute datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_typeattribute_to_policydb(policydb_t pdb, struct cil_typeattribute cil_attr, void *type_value_to_cil[]);

	/**
	* Insert cil attribute structure into sepol type->attribute bitmap.
	* The function calls helper functions to loop over the attributes lists
	* of types and negative types. If either of the lists contain an attribute,
	* the helper functions will recurse into the attribute and record the
	* attribute's types and negative types. There is no minimum depth.
	*
	* @param[in] pdb The policy database that contains the type->attribute bitmap.
	* @param[in] db The cil database
	* @param[in] node The tree node that contains the cil_attribute.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_typeattribute_to_bitmap(policydb_t pdb, const struct cil_db cdb, struct cil_typeattribute *cil_attr);

	/**
	* Insert cil policycap structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the policycap into.
	* @param[in] node The tree node that contains the cil_policycap.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR upon error.
	*/
	int cil_policycap_to_policydb(policydb_t pdb, struct cil_policycap cil_polcap);

	/**
	* Insert cil user structure into sepol policydb.
	*
	* @param[in] pdb THe policy database to insert the user into.
	* @param[in] node The tree node that contains the cil_user.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_user_to_policydb(policydb_t pdb, struct cil_user cil_user);

	/**
	* Insert cil userrole structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the userrole into.
	* @param[in] db The cil database
	* @param[in] datum The cil_user
	*
	* @return SEPOL_OK upon success or SEPOL_ERR otherwise.
	*/
	int cil_userrole_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_user *user);

	/**
	* Insert cil bool structure into sepol policydb.
	*
	* @param[in] pdb THe policy database to insert the bool into.
	* @param[in] datum The cil_bool datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_bool_to_policydb(policydb_t pdb, struct cil_bool cil_bool);

	/**
	* Insert all ordered cil category structures into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the categories into.
	* @param[in] db The cil database that contains the category order list.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_catorder_to_policydb(policydb_t pdb, const struct cil_db db);

	/**
	* Insert cil category alias structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the category alias into.
	* @param[in] datum The cil_catalias datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_catalias_to_policydb(policydb_t pdb, struct cil_alias cil_alias);

	/**
	* Insert the cil sensitivityorder into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the sensitivityorder into.
	* @param[in] db the cil database that contains the sensitivityorder list.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_sensitivityorder_to_policydb(policydb_t pdb, const struct cil_db db);

	/**
	* Insert cil type rule structure into sepol policydb. This includes
	* typetransition, typechange, and typemember.
	*
	* @param[in] pdb The policy database to insert the type rule into.
	* @param[in] datum The cil_type_rule datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_type_rule_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_type_rule *cil_rule);

	/**
	* Insert cil avrule structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the avrule into.
	* @param[in] datum The cil_avrule datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_avrule_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_avrule *cil_avrule);

	/**
	* Insert cil booleanif structure into sepol policydb. This populates the
	* policydb conditional list. Each conditional node contains an expression
	* and true/false avtab_ptr lists that point into te_cond_avtab.
	*
	* @param[in] pdb The policy database to insert the booleanif into.
	* @param[in] node The cil_booleanif node.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_booleanif_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_tree_node *node);

	/**
	* Insert cil role transition structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the role transition into.
	* @param[in] datum The cil_role_trans datum.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR upon error.
	*/
	int cil_roletrans_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_roletransition *roletrans, hashtab_t role_trans_table);

	/**
	* Insert cil role allow structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the role allow into.
	* @param[in] datum The cil_role_allow datum.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR upon error.
	*/
	int cil_roleallow_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_roleallow *roleallow);

	/**
	* Insert cil file transition structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the file transition into.
	* @param[in] datum The cil_nametypetransition datum.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR upon error.
	*/
	int cil_typetransition_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_nametypetransition *typetrans);

	/**
	* Insert cil constrain/mlsconstrain structure(s) into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the (mls)constrain into.
	* @param[in] datum The cil_(mls)constrain datum.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR upon error.
	*/
	int cil_constrain_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_constrain *cil_constrain);

	/**
	* Define sepol level.
	* Associates the sepol level (sensitivity) with categories.
	* Looks at the cil_sens structure for a list of cil_cats to
	* associate the sensitivity with.
	* Sets the sepol level as defined in the sepol policy database.
	*
	* @param[in] pdb The policy database that holds the sepol level.
	* @param[in] datum The cil_sens datum.
	*
	* @return SEPOL_OK upon success or SEPOL_ERR upon error.
	*/
	int cil_sepol_level_define(policydb_t pdb, struct cil_sens cil_sens);

	/**
	* Insert cil rangetransition structure into sepol policydb.
	*
	* @param[in] pdb The policy database to insert the rangetransition into.
	* @param[in] datum The cil_rangetransition datum.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_rangetransition_to_policydb(policydb_t pdb, const struct cil_db db, struct cil_rangetransition *rangetrans);

	/**
	* Insert cil ibpkeycon structure into sepol policydb.
	* The function is given a structure containing the sorted ibpkeycons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the ibpkeycon into.
	* @param[in] node The cil_sort structure that contains the sorted ibpkeycons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_ibpkeycon_to_policydb(policydb_t pdb, struct cil_sort ibpkeycons);

	/**
	* Insert cil idbev structure into sepol policydb.
	* The function is given a structure containing the sorted ibendportcons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the pkeycon into.
	* @param[in] node The cil_sort structure that contains the sorted ibendportcons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_ibendportcon_to_policydb(policydb_t pdb, struct cil_sort pkeycons);

	/**
	* Insert cil portcon structure into sepol policydb.
	* The function is given a structure containing the sorted portcons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the portcon into.
	* @param[in] node The cil_sort structure that contains the sorted portcons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_portcon_to_policydb(policydb_t pdb, struct cil_sort portcons);

	/**
	* Insert cil netifcon structure into sepol policydb.
	* The function is given a structure containing the sorted netifcons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the netifcon into.
	* @param[in] node The cil_sort structure that contains the sorted netifcons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_netifcon_to_policydb(policydb_t pdb, struct cil_sort netifcons);

	/**
	* Insert cil nodecon structure into sepol policydb.
	* The function is given a structure containing the sorted nodecons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the nodecon into.
	* @param[in] node The cil_sort structure that contains the sorted nodecons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_nodecon_to_policydb(policydb_t pdb, struct cil_sort nodecons);

	/**
	* Insert cil fsuse structure into sepol policydb.
	* The function is given a structure containing the sorted fsuses and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the fsuse into.
	* @param[in] node The cil_sort structure that contains the sorted fsuses.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_fsuse_to_policydb(policydb_t pdb, struct cil_sort fsuses);

	/**
	* Insert cil genfscon structure into sepol policydb.
	* The function is given a structure containing the sorted genfscons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the genfscon into.
	* @param[in] node The cil_sort structure that contains the sorted genfscons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_genfscon_to_policydb(policydb_t pdb, struct cil_sort genfscons);

	/**
	* Insert cil pirqcon structure into sepol policydb.
	* The function is given a structure containing the sorted pirqcons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the pirqcon into.
	* @param[in] node The cil_sort structure that contains the sorted pirqcons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_pirqcon_to_policydb(policydb_t pdb, struct cil_sort pirqcons);

	/**
	* Insert cil iomemcon structure into sepol policydb.
	* The function is given a structure containing the sorted iomemcons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the iomemcon into.
	* @param[in] node The cil_sort structure that contains the sorted iomemcons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_iomemcon_to_policydb(policydb_t pdb, struct cil_sort iomemcons);

	/**
	* Insert cil ioportcon structure into sepol policydb.
	* The function is given a structure containing the sorted ioportcons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the ioportcon into.
	* @param[in] node The cil_sort structure that contains the sorted ioportcons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_ioportcon_to_policydb(policydb_t pdb, struct cil_sort ioportcons);

	/**
	* Insert cil pcidevicecon structure into sepol policydb.
	* The function is given a structure containing the sorted pcidevicecons and
	* loops over this structure inserting them into the policy database.
	*
	* @param[in] pdb The policy database to insert the pcidevicecon into.
	* @param[in] node The cil_sort structure that contains the sorted pcidevicecons.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_pcidevicecon_to_policydb(policydb_t pdb, struct cil_sort pcidevicecons);

	/**
	* Create an mls level using a cil level.
	* The function is given a structure containing the a cil_level and
	* outputs a created mls_level_t.
	*
	* @param[in] pdb The policy database to use to get sepol level from cil_level's sensitivity.
	* @param[in] cil_level The cil_level that will be used to create an mls_level_t.
	* @param[out] mls_level The mls_level that is created.
	*
	* @return SEPOL_OK upon success or an error otherwise.
	*/
	int cil_level_to_mls_level(policydb_t pdb, struct cil_level cil_level, mls_level_t *mls_level);

	#endif //_CIL_BINARY_H_