I’m working on an integration of Mender into a Yocto scarthgap build. I cloned the scarthgap branch, but when I build it, I get this error:
WARNING: grub-efi-mender-precompiled-2.12-r0 do_fetch: Checksum failure encountered with download of https://downloads.mender.io/grub-mender-grubenv/grub-efi/2.12-grub-mender-grubenv-089c619e3b52b95fd14dc664cf4f6c243c840b94/aarch64/grub-efi-bootaa64.efi;md5sum=3cdc5695de01804044e3b5606a9dc889 - will attempt other sources if available
As the URL indicates the md5sum is expected to be 3cdc56… Sure enough, if I pull that file down with wget, the md5sum is 28d3fead8ae2… I’m getting a file that looks reasonable otherwise:
% md5sum grub-efi-bootaa64.efi
28d3fead8ae217a2a879e467b920a3a3 grub-efi-bootaa64.efi
% file grub-efi-bootaa64.efi
grub-efi-bootaa64.efi: PE32+ executable (EFI application) Aarch64 (stripped to external PDB), for MS Windows
But I don’t want to trust an executable that may have been modified.
Has anyone else seen this?
Thanks,
Aric.