46 			" effective capabilities. Therefore not raising all"  in warn_setuid_and_fcaps_mixed()
53  * cap_capable - Determine whether a task has a particular effective capability
60  * its effective set, returning 0 if it does, -ve if it does not.
194  * @effective: The place to record the effective set
201 int cap_capget(const struct task_struct *target, kernel_cap_t *effective,  in cap_capget()  argument
209 	*effective   = cred->cap_effective;  in cap_capget()
235  * @effective: A pointer to the proposed new effective capabilities set
245 	       const kernel_cap_t *effective,  in cap_capset()  argument
267 	if (!cap_issubset(*effective, *permitted))  in cap_capset()
270 	new->cap_effective   = *effective;  in cap_capset()
589 					  bool *effective,  in bprm_caps_from_vfs_caps()  argument
596 		*effective = true;  in bprm_caps_from_vfs_caps()
618 	return *effective ? ret : 0;  in bprm_caps_from_vfs_caps()
725 			 bool *effective, bool *has_fcap)  in get_file_caps()  argument
757 	rc = bprm_caps_from_vfs_caps(&vcaps, bprm, effective, has_fcap);  in get_file_caps()
781  * @effective: Do we have effective root privilege?
787  * updated.  If we have become set UID root, the effective bit is set.
790 				   bool *effective, kuid_t root_uid)  in handle_privileged_root()  argument
817 	 * If only the real uid is 0, we do not set the effective bit.  in handle_privileged_root()
820 		*effective = true;  in handle_privileged_root()
858 	if ((__cap_grew(effective, ambient, new) &&  in nonroot_raised_pE()
859 	     !(__cap_full(effective, new) &&  in nonroot_raised_pE()
864 	     !__cap_full(effective, new)) ||  in nonroot_raised_pE()
891 	bool effective = false, has_fcap = false, is_setid;  in cap_bprm_creds_from_file()  local
898 	ret = get_file_caps(bprm, file, &effective, &has_fcap);  in cap_bprm_creds_from_file()
904 	handle_privileged_root(bprm, has_fcap, &effective, root_uid);  in cap_bprm_creds_from_file()
947 	if (effective)  in cap_bprm_creds_from_file()
969 	     (effective ||  in cap_bprm_creds_from_file()
1057  * cap_emulate_setxuid() fixes the effective / permitted capabilities of
1061  *  {r,e,s}uid != 0, the permitted and effective capabilities are
1064  *  2) When set*uiding _from_ euid == 0 _to_ euid != 0, the effective
1067  *  3) When set*uiding _from_ euid != 0 _to_ euid == 0, the effective
1078  * effective sets will be retained.