config: remove HAVE_HAS_CAPABILITY

Sponsored-by: https://despairlabs.com/sponsor/ Reviewed-by: Brian Behlendorf <[email protected]> Reviewed-by: Tony Hutter <[email protected]> Reviewed-by: Tino Reichardt <[email protected]> Signed-off-by: Rob Norris <[email protected]> Closes #16479
author: Rob Norris <[email protected]> 2024-08-25 16:00:01 +1000
committer: Brian Behlendorf <[email protected]> 2024-09-18 11:23:51 -0700
commit: c57d268a7843ec7e58ac1e32f06f43b411c070a1 (patch)
tree: 3b9147c23e954c3442c9bb1d47ddb720ac945dc2 /module/os/linux/zfs
parent: a29880142646923574a19284c8faa4e7e23cbcc6 (diff)
1 files changed, 0 insertions, 9 deletions
diff --git a/module/os/linux/zfs/policy.c b/module/os/linux/zfs/policy.c
index 5d1b43834..d21bc667b 100644
--- a/module/os/linux/zfs/policy.c
+++ b/module/os/linux/zfs/policy.c
@@ -252,22 +252,13 @@ secpolicy_zfs(const cred_t *cr)
  * Equivalent to secpolicy_zfs(), but works even if the cred_t is not that of
  * the current process.  Takes both cred_t and proc_t so that this can work
  * easily on all platforms.
- *
- * The has_capability() function was first exported in the 4.10 Linux kernel
- * then backported to some LTS kernels.  Prior to this change there was no
- * mechanism to perform this check therefore EACCES is returned when the
- * functionality is not present in the kernel.
  */
 int
 secpolicy_zfs_proc(const cred_t *cr, proc_t *proc)
 {
-#if defined(HAVE_HAS_CAPABILITY)
 	if (!has_capability(proc, CAP_SYS_ADMIN))
 		return (EACCES);
 	return (0);
-#else
-	return (EACCES);
-#endif
 }
 
 void
author	Rob Norris <[email protected]>	2024-08-25 16:00:01 +1000
committer	Brian Behlendorf <[email protected]>	2024-09-18 11:23:51 -0700
commit	c57d268a7843ec7e58ac1e32f06f43b411c070a1 (patch)
tree	3b9147c23e954c3442c9bb1d47ddb720ac945dc2 /module/os/linux/zfs
parent	a29880142646923574a19284c8faa4e7e23cbcc6 (diff)