Help Center/ Bare Metal Server/ Private Image Creation Guide/ FAQ/ How Do I Verify Software Package Integrity?
Updated on 2023-09-04 GMT+08:00

How Do I Verify Software Package Integrity?

Prerequisites

  • A BMS has been created.
  • You have obtained the software package and its SHA256 checksum.

Verifying Software Package Integrity (Linux)

  1. Log in to the BMS as the root user.
  2. Obtain the hash value of the software.

    sha256sum {Local directory of the software package}/{Software package name}

    Replace {Local directory of the software package} with the actual download directory.

    Replace {Software package name} with the actual name of the downloaded software package. For example, the name can be qemu-img-hw.zip.

  3. Check whether the SHA256 hash value obtained in Prerequisites is consistent with that obtained in step 2.
    • If they are consistent, the verification is successful.
    • If they are inconsistent, download the software package again and repeat steps 2 and 3 to verify it.

Verifying Software Package Integrity (Windows)

  1. Log in to the BMS.
  2. Open the cmd window as an administrator and run the following command to obtain the hash value of the software:

    certutil –hashfile {Local directory of the software package}\{Software package name} SHA256

    Replace {Local directory of the software package} with the actual download directory.

    Replace {Software package name} with the actual name of the downloaded software package. For example, the name can be qemu-img-hw.zip.

  3. Check whether the SHA256 hash value obtained in Prerequisites is consistent with that obtained in step 2.
    • If they are consistent, the verification is successful.
    • If they are inconsistent, download the software package again and repeat steps 2 and 3 to verify it.