44 			" effective capabilities. Therefore not raising all"  in warn_setuid_and_fcaps_mixed()
51  * cap_capable - Determine whether a task has a particular effective capability
58  * its effective set, returning 0 if it does, -ve if it does not.
192  * @effective: The place to record the effective set
199 int cap_capget(struct task_struct *target, kernel_cap_t *effective,  in cap_capget()  argument
207 	*effective   = cred->cap_effective;  in cap_capget()
233  * @effective: A pointer to the proposed new effective capabilities set
243 	       const kernel_cap_t *effective,  in cap_capset()  argument
265 	if (!cap_issubset(*effective, *permitted))  in cap_capset()
268 	new->cap_effective   = *effective;  in cap_capset()
530 					  bool *effective,  in bprm_caps_from_vfs_caps()  argument
538 		*effective = true;  in bprm_caps_from_vfs_caps()
565 	return *effective ? ret : 0;  in bprm_caps_from_vfs_caps()
651 			 bool *effective, bool *has_fcap)  in get_file_caps()  argument
682 	rc = bprm_caps_from_vfs_caps(&vcaps, bprm, effective, has_fcap);  in get_file_caps()
706  * @effective: Do we have effective root privilege?
712  * updated.  If we have become set UID root, the effective bit is set.
715 				   bool *effective, kuid_t root_uid)  in handle_privileged_root()  argument
742 	 * If only the real uid is 0, we do not set the effective bit.  in handle_privileged_root()
745 		*effective = true;  in handle_privileged_root()
783 	if ((__cap_grew(effective, ambient, new) &&  in nonroot_raised_pE()
784 	     !(__cap_full(effective, new) &&  in nonroot_raised_pE()
789 	     !__cap_full(effective, new)) ||  in nonroot_raised_pE()
814 	bool effective = false, has_fcap = false, is_setid;  in cap_bprm_creds_from_file()  local
821 	ret = get_file_caps(bprm, file, &effective, &has_fcap);  in cap_bprm_creds_from_file()
827 	handle_privileged_root(bprm, has_fcap, &effective, root_uid);  in cap_bprm_creds_from_file()
870 	if (effective)  in cap_bprm_creds_from_file()
892 	     (effective ||  in cap_bprm_creds_from_file()
971  * cap_emulate_setxuid() fixes the effective / permitted capabilities of
975  *  {r,e,s}uid != 0, the permitted and effective capabilities are
978  *  2) When set*uiding _from_ euid == 0 _to_ euid != 0, the effective
981  *  3) When set*uiding _from_ euid != 0 _to_ euid == 0, the effective
992  * effective sets will be retained.