44 			" effective capabilities. Therefore not raising all"  in warn_setuid_and_fcaps_mixed()
51  * cap_capable - Determine whether a task has a particular effective capability
58  * its effective set, returning 0 if it does, -ve if it does not.
192  * @effective: The place to record the effective set
199 int cap_capget(struct task_struct *target, kernel_cap_t *effective,  in cap_capget()  argument
207 	*effective   = cred->cap_effective;  in cap_capget()
233  * @effective: A pointer to the proposed new effective capabilities set
243 	       const kernel_cap_t *effective,  in cap_capset()  argument
265 	if (!cap_issubset(*effective, *permitted))  in cap_capset()
268 	new->cap_effective   = *effective;  in cap_capset()
591 					  bool *effective,  in bprm_caps_from_vfs_caps()  argument
599 		*effective = true;  in bprm_caps_from_vfs_caps()
626 	return *effective ? ret : 0;  in bprm_caps_from_vfs_caps()
727 			 bool *effective, bool *has_fcap)  in get_file_caps()  argument
759 	rc = bprm_caps_from_vfs_caps(&vcaps, bprm, effective, has_fcap);  in get_file_caps()
783  * @effective: Do we have effective root privilege?
789  * updated.  If we have become set UID root, the effective bit is set.
792 				   bool *effective, kuid_t root_uid)  in handle_privileged_root()  argument
819 	 * If only the real uid is 0, we do not set the effective bit.  in handle_privileged_root()
822 		*effective = true;  in handle_privileged_root()
860 	if ((__cap_grew(effective, ambient, new) &&  in nonroot_raised_pE()
861 	     !(__cap_full(effective, new) &&  in nonroot_raised_pE()
866 	     !__cap_full(effective, new)) ||  in nonroot_raised_pE()
893 	bool effective = false, has_fcap = false, is_setid;  in cap_bprm_creds_from_file()  local
900 	ret = get_file_caps(bprm, file, &effective, &has_fcap);  in cap_bprm_creds_from_file()
906 	handle_privileged_root(bprm, has_fcap, &effective, root_uid);  in cap_bprm_creds_from_file()
949 	if (effective)  in cap_bprm_creds_from_file()
971 	     (effective ||  in cap_bprm_creds_from_file()
1059  * cap_emulate_setxuid() fixes the effective / permitted capabilities of
1063  *  {r,e,s}uid != 0, the permitted and effective capabilities are
1066  *  2) When set*uiding _from_ euid == 0 _to_ euid != 0, the effective
1069  *  3) When set*uiding _from_ euid != 0 _to_ euid == 0, the effective
1080  * effective sets will be retained.