From 4313b474a593c5b2e57278c590b7cfb56dec5114 Mon Sep 17 00:00:00 2001
From: Leah Rowe <leah@libreboot.org>
Date: Fri, 16 May 2025 07:03:08 +0100
Subject: vendor.sh: additional safety check

the exit from mkdst can also be non-zero if mv or cp
failed, but there's no way to handle that reliably.

therefore, the checksum verification should be done
one final time, to compensate.

Signed-off-by: Leah Rowe <leah@libreboot.org>
---
 include/vendor.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'include')

diff --git a/include/vendor.sh b/include/vendor.sh
index 8a71ad5b..7dcf9757 100644
--- a/include/vendor.sh
+++ b/include/vendor.sh
@@ -131,7 +131,7 @@ fetch()
 	# the given hashsum. So, search for a matching file via bruteforce:
 	( fx_ "eval mkdst \"$binsum\"" x_ find "${_pre_dest%/*}" -type f ) || :
 
-	[ -f "$_dest" ] && return 0
+	bad_checksum "$binsum" "$_dest" || [ ! -f "$_dest" ] || return 0
 	[ -z "$binsum" ] && \
 	    printf "'%s', '%s': checksum undefined. Check files in '%s'\n" \
 	    "$board" "$_dest" "${_pre_dest%/*}" 1>&2
-- 
cgit v1.2.1