From: Nathan Chancellor <nathan@kernel.org>
Date: Sun, 17 May 2026 23:05:06 +0000 (-1000)
Subject: security/Kconfig.hardening: Remove tautological condition from FORTIFY_SOURCE
X-Git-Url: http://git.ipfire.org/gitweb/?a=commitdiff_plain;h=8ad2017578c99ba7851bca5df52f82a3ade2e603;p=thirdparty%2Flinux.git

security/Kconfig.hardening: Remove tautological condition from FORTIFY_SOURCE

Now that the minimum supported version of LLVM for building the kernel
has been raised to 17.0.1, the '!X86_32 || !Clang || Clang > 16'
dependency of CONFIG_FORTIFY_SOURCE is always true, so it can be
removed.

Reviewed-by: Nicolas Schier <nsc@kernel.org>
Link: https://patch.msgid.link/20260517-bump-minimum-supported-llvm-version-to-17-v2-3-b3b8cda46bdd@kernel.org
Signed-off-by: Nathan Chancellor <nathan@kernel.org>
---

diff --git a/security/Kconfig.hardening b/security/Kconfig.hardening
index 4ab19f658bde5..364c2ff553f65 100644
--- a/security/Kconfig.hardening
+++ b/security/Kconfig.hardening
@@ -214,8 +214,6 @@ menu "Bounds checking"
 config FORTIFY_SOURCE
 	bool "Harden common str/mem functions against buffer overflows"
 	depends on ARCH_HAS_FORTIFY_SOURCE
-	# https://github.com/llvm/llvm-project/issues/53645
-	depends on !X86_32 || !CC_IS_CLANG || CLANG_VERSION >= 160000
 	help
 	  Detect overflows of buffers in common string and memory functions
 	  where the compiler can determine and validate the buffer sizes.