Merge branch 'for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/jmorris/linux-security

 */

int mpi_lshift_limbs(MPI a, unsigned int count)

{

	mpi_ptr_t ap = a->d;

	int n = a->nlimbs;

	const int n = a->nlimbs;

	mpi_ptr_t ap;

	int i;

	if (!count || !n)

	if (RESIZE_IF_NEEDED(a, n + count) < 0)

		return -ENOMEM;

	ap = a->d;

	for (i = n - 1; i >= 0; i--)

		ap[i + count] = ap[i];

	for (i = 0; i < count; i++)

	}

skip:

	/* if we have fs caps, clear dangerous personality flags */

	if (!cap_issubset(new->cap_permitted, old->cap_permitted))

		bprm->per_clear |= PER_CLEAR_ON_SETID;

	/* Don't let someone trace a set[ug]id/setpcap binary with the revised

	 * credentials unless they have the appropriate permit

	 */

};

static __init void init_smack_know_list(void)

static __init void init_smack_known_list(void)

{

	/*

	 * Initialize CIPSO locks

	 */

	spin_lock_init(&smack_known_huh.smk_cipsolock);

	spin_lock_init(&smack_known_hat.smk_cipsolock);

	spin_lock_init(&smack_known_star.smk_cipsolock);

	spin_lock_init(&smack_known_floor.smk_cipsolock);

	spin_lock_init(&smack_known_invalid.smk_cipsolock);

	spin_lock_init(&smack_known_web.smk_cipsolock);

	/*

	 * Initialize rule list locks

	 */

	mutex_init(&smack_known_huh.smk_rules_lock);

	mutex_init(&smack_known_hat.smk_rules_lock);

	mutex_init(&smack_known_floor.smk_rules_lock);

	mutex_init(&smack_known_star.smk_rules_lock);

	mutex_init(&smack_known_invalid.smk_rules_lock);

	mutex_init(&smack_known_web.smk_rules_lock);

	/*

	 * Initialize rule lists

	 */

	INIT_LIST_HEAD(&smack_known_huh.smk_rules);

	INIT_LIST_HEAD(&smack_known_hat.smk_rules);

	INIT_LIST_HEAD(&smack_known_star.smk_rules);

	INIT_LIST_HEAD(&smack_known_floor.smk_rules);

	INIT_LIST_HEAD(&smack_known_invalid.smk_rules);

	INIT_LIST_HEAD(&smack_known_web.smk_rules);

	/*

	 * Create the known labels list

	 */

	list_add(&smack_known_huh.list, &smack_known_list);

	list_add(&smack_known_hat.list, &smack_known_list);

	list_add(&smack_known_star.list, &smack_known_list);

	cred = (struct cred *) current->cred;

	cred->security = tsp;

	/* initialize the smack_know_list */

	init_smack_know_list();

	/*

	 * Initialize locks

	 */

	spin_lock_init(&smack_known_huh.smk_cipsolock);

	spin_lock_init(&smack_known_hat.smk_cipsolock);

	spin_lock_init(&smack_known_star.smk_cipsolock);

	spin_lock_init(&smack_known_floor.smk_cipsolock);

	spin_lock_init(&smack_known_invalid.smk_cipsolock);

	/* initialize the smack_known_list */

	init_smack_known_list();

	/*

	 * Register with LSM

	smk_cipso_doi();

	smk_unlbl_ambient(NULL);

	mutex_init(&smack_known_floor.smk_rules_lock);

	mutex_init(&smack_known_hat.smk_rules_lock);

	mutex_init(&smack_known_huh.smk_rules_lock);

	mutex_init(&smack_known_invalid.smk_rules_lock);

	mutex_init(&smack_known_star.smk_rules_lock);

	mutex_init(&smack_known_web.smk_rules_lock);

	INIT_LIST_HEAD(&smack_known_floor.smk_rules);

	INIT_LIST_HEAD(&smack_known_hat.smk_rules);

	INIT_LIST_HEAD(&smack_known_huh.smk_rules);

	INIT_LIST_HEAD(&smack_known_invalid.smk_rules);

	INIT_LIST_HEAD(&smack_known_star.smk_rules);

	INIT_LIST_HEAD(&smack_known_web.smk_rules);

	return err;

}