Preparing for a Leap 42.1 install

Opensuse Leap 42.1 should be available on Wednesday Nov. 4th.  So here are a few notes that some readers might find useful.

Verifying the download

In the past, the download page has had MD5 checksums, SHA1 checksums, and a PGP signature.

With Leap, as with recent Tumbleweed isos, it will  be a little different.  There will be a file with name ending in “.sha256”.  I’m not sure of the actual name, until the download page shows up.  It will be the name of the “iso” file, with “.sha256” appended.

This file will contain the sha256 checksum.  The file itself will be signed with a gpg (or PGP) key.

To verify the download, use:

gpg --verify filename.sha256
sha256sum -c filename.sha256

If you are not familiar with using “gpg” then skip the first of those commands.

The first of those commands verifies that you have the correct “sha256” file, as signed with an opensuse key.  The second verifies that the iso you downloaded matches the checksum.  The second command will produce some extraneous output, something like “7 lines badly formatted”.  The “sha256” command is complaining that the PGP signature does not look like a sha256 checksum.  You can ignore that complaint.  Look for the line which says that the downloaded iso file is Okay.

I’ll note that some users might be verifying the download on other systems such as Windows, and may not be able to check sha256 checksums.  When the isos are available for me to download (on Wednesday), I will compute the MD5 and SHA1 sums, and put them in a comment to this post.

UEFI issues

It looks as if the install isos will be using a bad “shim.efi” (see bug 950569).  This works fine on my Lenovo Thinkserver, but hangs on my Dell Inspiron.  If you run into this problem, then disable secure-boot in your BIOS.  The defective “shim.efi” should boot correctly when secure-boot is disabled.  I’m expecting this bug to be fixed real soon now, but it will be too late for the install iso.

If you want to be able to use secure-boot after install, then save a copy of the “shim.efi” from opensuse 13.2, and copy that to “/boot/efi/EFI/opensuse” to replace the shim provided by the installer.


About Neil Rickert

Retired mathematician and computer scientist who dabbles in cognitive science.

One response to “Preparing for a Leap 42.1 install”

  1. Neil Rickert says :

    It turns out that download page does include MD5 and SHA1 checksums. However, as indicated above, there is no PGP signature. For that, download the file “openSUSE-Leap-42.1-DVD-x86_64.iso.sha256” and use

    gpg --verify openSUSE-Leap-42.1-DVD-x86_64.iso.sha256
    sha256sum -c openSUSE-Leap-42.1-DVD-x86_64.iso.sha256

    Look for the output line that says “openSUSE-Leap-42.1-DVD-x86_64.iso: OK” and ignore the line “sha256sum: WARNING: 15 lines are improperly formatted”.

    The files “openSUSE-Leap-42.1-DVD-x86_64.iso.md5” and “openSUSE-Leap-42.1-DVD-x86_64.iso.sha1” do exist on the download site, but those are not PGP signed.

    For completeness, here are the checksums for DVD and NET installer isos.

    MD5 checksums:

    2bc74929bfa9772a5637f76ddde8784b  openSUSE-Leap-42.1-DVD-x86_64.iso
    7852052d248b52e4f76a3c673261fbb0  openSUSE-Leap-42.1-NET-x86_64.iso

    SHA1 checksums:

    e433c41e7954cb3887fa0ddce81a3cd269fcc357  openSUSE-Leap-42.1-DVD-x86_64.iso
    62279cd26e3ab9904b82d1d1d4ded061e16995f8  openSUSE-Leap-42.1-NET-x86_64.iso

    and SHA256 checksums:

    8576e84822cdbe566bf551e28a169fc028229831eba9f07a4c1f84302c5ddb09  openSUSE-Leap-42.1-DVD-x86_64.iso
    7667262584cc4936673578b5242efdff86cc1434ce60a25324faad7a2a36dbd7  openSUSE-Leap-42.1-NET-x86_64.iso


%d bloggers like this: