[QUESTION]Sailfish X hashes
Hi,
Where can I find hash sums of the SailfishOS X?
Here are the hash sums of my download (11th October 2017 around 22:00 operator DNA Finland):
MD5:
11cf4e541cbf78ff2e895d9fd4dc0432 SailfishOS-2.1.3.5-1-f5121-0.0.1.16.zip
SHA-1:
0da69e3dbe0e20cd25f4f6144b346f3502da4a6a SailfishOS-2.1.3.5-1-f5121-0.0.1.16.zip
SHA-256:
c2a104db7bd85819c68ea5f46928b45be7b1ec06568294e057a767b78f97c5db SailfishOS-2.1.3.5-1-f5121-0.0.1.16.zip
Are they correct?
UPDATE 1: I want to include the hash sums of the flash tool, fastboot driver and Sony binary here as well. Do they match your hashes?
MD5:
8324e6e6e7702825c5ceb7039292e9cb SW_binaries_for_Xperia_AOSP_M_MR1_3.10_v13_loire.zip
b0f3f009f19fdfd9b54ef0a7701965af Xperia_Flash_Tool_Setup.exe
54775e4798f30db6b599386f5d53a975 xperia-x-driver.zip
SHASUM:
ae25a905f5d8f4485405745697e5c29f99a3799f SW_binaries_for_Xperia_AOSP_M_MR1_3.10_v13_loire.zip
162daeaeaa75e05d52e7eb14ea6fc504cdaa215b Xperia_Flash_Tool_Setup.exe
a7a1ccd5301464045e987b34838380c39e237cdd xperia-x-driver.zip
SHA256SUM:
88f3aa103d1447007e3ccf3532721b45daa2228c533056158646819e22c7978e SW_binaries_for_Xperia_AOSP_M_MR1_3.10_v13_loire.zip
2c4440657bc2b6644131cf147fac1b75f57b30b2678bf3e28247378604f276cf Xperia_Flash_Tool_Setup.exe
4007d38c9a85cd59545589f0b412c080b1d0c10322f2bbdab5e473a8235a7b37 xperia-x-driver.zip
Confirmed. Here the same hashes ... would be nice if Jolla would put them on the download page.
Hangman ( 2017-10-11 23:13:31 +0200 )editThere is an
bruce_one ( 2017-10-12 00:54:32 +0200 )editmd5.lst
contained within the zip which can be used for verification of the archive contents.@olf expected and computed SHA-1 hash confirmed for the sailfish os zip file.
XFish ( 2017-10-12 04:52:25 +0200 )editand hash 88f3aa103d1447007e3ccf3532721b45daa2228c533056158646819e22c7978e confirmed for the SW_binaries_for_Xperia_AOSP_M_MR1_3.10_v13_loire.zip Sony binary zip file
FWIIW, I get the same checksums as @alloj.
kid ( 2017-10-12 09:50:17 +0200 )editIf the purpose of the hashes is to have an integrity check for the download files, zip archives already have their own CRC.
If instead is to verify that the downloaded files are really the ones distributed by Jolla (i.e. they have not being compromised by a 3rd party), the hashes should be publicly posted by Jolla anywhere else than the download site.
simosagi ( 2017-10-13 16:41:01 +0200 )edit