Merge bitcoin/bitcoin#31892: build: remove ENABLE_HARDENING condition from check-security

113a7a363f build: remove ENABLE_HARDENING cond from check-security (fanquake) Pull request description: This check is only used in release builds, where hardening should always be enabled. I can't think of a reason we'd want to silently skip these checks if hardening was inadvertently disabled. ACKs for top commit: maflcko: lgtm ACK 113a7a363f TheCharlatan: ACK 113a7a363f hebasto: ACK 113a7a363f. Tree-SHA512: 46217e8ab238e23374d758b12e5b6bdc22353d8bf272aa0d2260cdea023b5b80aba972dccaa0a4fb8da21c8c665991848f7fd79966d20ac2489d499c68d95639
2025-02-20 14:05:23 +01:00 · 2025-02-18 15:37:29 +00:00 · 2025-02-18 15:37:29 +00:00 · 43e287b3ff
commit 43e287b3ff
parent 63d625f761 113a7a363f
1 changed files with 5 additions and 9 deletions
--- a/cmake/module/Maintenance.cmake
+++ b/cmake/module/Maintenance.cmake
@ -35,15 +35,11 @@ function(add_maintenance_targets)
    VERBATIM
  )

-  if(ENABLE_HARDENING)
-    add_custom_target(check-security
-      COMMAND ${CMAKE_COMMAND} -E echo "Checking binary security..."
-      COMMAND ${PYTHON_COMMAND} ${PROJECT_SOURCE_DIR}/contrib/devtools/security-check.py ${executables}
-      VERBATIM
-    )
-  else()
-    add_custom_target(check-security)
-  endif()
+  add_custom_target(check-security
+    COMMAND ${CMAKE_COMMAND} -E echo "Checking binary security..."
+    COMMAND ${PYTHON_COMMAND} ${PROJECT_SOURCE_DIR}/contrib/devtools/security-check.py ${executables}
+    VERBATIM
+  )
 endfunction()

 function(add_windows_deploy_target)