fixes

mohammeds1992 · mohammeds1992 · commit 73d8b13e9bf0 · 2026-01-23T01:12:26.000+05:30
diff --git a/cmd/push-validator/cmd_chain.go b/cmd/push-validator/cmd_chain.go
@@ -102,10 +102,15 @@ Examples:
 				if flagOutput != "json" {
 					fmt.Println("  → Verifying checksum")
 				}
-				if err := installer.VerifyChecksum(archiveData, release, asset.Name); err != nil {
+				verified, err := installer.VerifyChecksum(archiveData, release, asset.Name)
+				if err != nil {
 					return fmt.Errorf("checksum verification failed: %w", err)
 				}
-				fmt.Printf("  %s Checksum verified\n", p.Colors.Success("✓"))
+				if verified {
+					fmt.Printf("  %s Checksum verified\n", p.Colors.Success("✓"))
+				} else {
+					fmt.Printf("  %s Checksum file not available, skipping verification\n", p.Colors.Warning("⚠"))
+				}
 			}
 
 			// Extract and install
diff --git a/internal/chain/chain.go b/internal/chain/chain.go
@@ -204,20 +204,30 @@ func (pr *progressReader) Read(p []byte) (int, error) {
 	return n, err
 }
 
-// VerifyChecksum validates the downloaded archive
-func (inst *Installer) VerifyChecksum(data []byte, release *Release, assetName string) error {
+// VerifyChecksum validates the downloaded archive.
+// Returns (verified bool, err error):
+//   - (true, nil): checksum verified successfully
+//   - (false, nil): checksum file not found, verification skipped
+//   - (false, err): checksum mismatch or download error
+func (inst *Installer) VerifyChecksum(data []byte, release *Release, assetName string) (bool, error) {
 	checksumAsset, err := GetChecksumAsset(release, assetName)
 	if err != nil {
-		return err
+		// Checksum file not found in release - skip verification gracefully
+		return false, nil
 	}
 
 	// Download checksum file
 	resp, err := http.Get(checksumAsset.BrowserDownloadURL)
 	if err != nil {
-		return fmt.Errorf("failed to download checksum: %w", err)
+		return false, fmt.Errorf("failed to download checksum: %w", err)
 	}
 	defer func() { _ = resp.Body.Close() }()
 
+	if resp.StatusCode == http.StatusNotFound {
+		// Checksum file URL returned 404 - skip verification gracefully
+		return false, nil
+	}
+
 	// Parse checksum file (format: "sha256  filename" or just "sha256")
 	var expectedHash string
 	scanner := bufio.NewScanner(resp.Body)
@@ -234,18 +244,18 @@ func (inst *Installer) VerifyChecksum(data []byte, release *Release, assetName s
 	}
 
 	if expectedHash == "" {
-		return fmt.Errorf("could not parse checksum file")
+		return false, fmt.Errorf("could not parse checksum file")
 	}
 
 	// Calculate actual hash
 	hash := sha256.Sum256(data)
 	actualHash := hex.EncodeToString(hash[:])
 
 	if actualHash != expectedHash {
-		return fmt.Errorf("checksum mismatch: expected %s, got %s", expectedHash, actualHash)
+		return false, fmt.Errorf("checksum mismatch: expected %s, got %s", expectedHash, actualHash)
 	}
 
-	return nil
+	return true, nil
 }
 
 // ExtractAndInstall extracts the binary and installs to cosmovisor directory

Original file line number	Diff line number	Diff line change
`@@ -102,10 +102,15 @@ Examples:`
`102`	`102`	`if flagOutput != "json" {`
`103`	`103`	`fmt.Println(" → Verifying checksum")`
`104`	`104`	`}`
`105`		`- if err := installer.VerifyChecksum(archiveData, release, asset.Name); err != nil {`
	`105`	`+ verified, err := installer.VerifyChecksum(archiveData, release, asset.Name)`
	`106`	`+ if err != nil {`
`106`	`107`	`return fmt.Errorf("checksum verification failed: %w", err)`
`107`	`108`	`}`
`108`		`- fmt.Printf(" %s Checksum verified\n", p.Colors.Success("✓"))`
	`109`	`+ if verified {`
	`110`	`+ fmt.Printf(" %s Checksum verified\n", p.Colors.Success("✓"))`
	`111`	`+ } else {`
	`112`	`+ fmt.Printf(" %s Checksum file not available, skipping verification\n", p.Colors.Warning("⚠"))`
	`113`	`+ }`
`109`	`114`	`}`
`110`	`115`
`111`	`116`	`// Extract and install`