我从以下位置下载了isohttps://getfedora.org/en/workstation/download/
接下来,我尝试按照以下说明进行操作https://getfedora.org/en/verify
我从以下网址下载了校验和文件:
getfedora.org/en/static/checksums/Fedora-Workstation-22-x86_64-CHECKSUM
然后我从命令行验证了它:
$ gpg --verify-files *-CHECKSUM
gpg: Signature made Fri 22 May 2015 12:47:01 PM PDT using RSA key ID 8E1431D5
gpg: Good signature from "Fedora (22) <[email protected]>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg: There is no indication that the signature belongs to the owner.
Primary key fingerprint: C527 EA07 A934 9B58 9C35 E1BF 11AD C094 8E14 31D5
由于 RSA 密钥 ID 匹配,我认为校验和文件是好的。最后,我尝试将 iso 映像的校验和与校验和文件进行匹配:
$ sha256sum -c *-CHECKSUM
sha256sum: Fedora-Workstation-netinst-x86_64-22.iso: No such file or directory
Fedora-Workstation-netinst-x86_64-22.iso: FAILED open or read
Fedora-Live-Workstation-x86_64-22-3.iso: FAILED
sha256sum: WARNING: 20 lines are improperly formatted
sha256sum: WARNING: 1 listed file could not be read
sha256sum: WARNING: 1 computed checksum did NOT match
上面的前两个 sha256sum 消息行是预期的,因为我的目录中不存在 ...netinst-x86...iso 文件。调查...Live...校验和验证失败,我得到:
$ sha256sum Fedora-Live-Workstation-x86_64-22-3.iso
50f1b411a7be82fc4dee6de6ad66c27280e80567db92a0599a237f3a0647b1f1
Fedora-Live-Workstation-x86_64-22-3.iso
有其他人得到与我相同的结果吗?
对于从以下网址下载的校验和文件
getfedora.org/en/static/checksums/Fedora-Workstation-22-x86_64-CHECKSUM
“sha256sum:警告:20 行格式不正确”消息的意义是什么?
答案1
我认为你的图像实际上只是没有通过校验和,要么是因为镜子坏了,要么是因为传输过程中的损坏,要么是本地问题。重新下载并重试?
我明白了
$ sha256sum Fedora-Live-Workstation-x86_64-22-3.iso
615abfc89709a46a078dd1d39638019aa66f62b0ff8325334f1af100551bb6cf Fedora-Live-Workstation-x86_64-22-3.iso
与正式签署的文件完全相同。
(这 20 行无效行是 GPG 签名;sha256sum 命令不知道要跳过它,而且我们的安全签名系统不会执行分离签名。)
答案2
我收到此警告:sha256sum: WARNING: 20 lines are improperly formatted
因为我的文件中有空行,删除空行后,我能够修复该警告。