From Fedora Project Wiki
Description
This test is intended to verify that the posted ISO media matches the published SHA-256 checksum. Additionally, for ISO media that includes an embedded MD5 checksum, this test verifies that checkisomd5
(used by the installer) correctly locates and verifies the embedded MD5 sum.
Setup
- Download the
.iso
media files you need to test - Download the matching CHECKSUM file. For example,
Fedora-42-i386-CHECKSUM
.
How to test
- Validate that the published CHECKSUM matches the downloaded ISO files by running the command
sha256sum
. For example, you might type: <pre<noinclude></noinclude>>sha256sum -c Fedora-42-i386-CHECKSUM</pre<noinclude></noinclude>> - Validate the md5sum imprinted inside the ISO images. First, install the
isomd5sum
package and then check all ISO files using thecheckisomd5
command, for example:for ISO in Fedora-*.iso ; do echo "= $ISO =" ; checkisomd5 $ISO ; echo; done
Expected Results
- The command
sha256sum
should return OK results. For example: <pre<noinclude></noinclude>>$ sha256sum -c Fedora-42-i386-CHECKSUM Fedora-42-i386-DVD.iso: OK Fedora-42-i386-netinst.iso: OK</pre<noinclude></noinclude>> - The command
checkisomd5
should either return:The media check is complete, the result is: PASS. It is OK to use this media.
or:
The media check is complete, the result is: NA. No checksum information available, unable to verify media.