http://bugzilla.opensuse.org/show_bug.cgi?id=965532
http://bugzilla.opensuse.org/show_bug.cgi?id=965532#c4
Andreas Stieger
There might be nothing significantly wrong with the iso image, but ignoring the shasum mismatch rather defeats the point of having it.
That is the correct behavior.
I have compared file sizes with a mirror in Germany, and it's exactly the same; but downloading this will take me 2.5 hours so I cannot say with any certainty that the shasum will fail just at this point; but I would lay odds that it will.
Re-download not required. Using the file you have as reference, use a protocol capable of intra-file checksums to "repair" it: * torrent: use http://download.opensuse.org/distribution/leap/42.1/iso/openSUSE-Leap-42.1-D... * rsync: see https://en.opensuse.org/openSUSE:Mirror_infrastructure#Access_for_the_public...
I think the problem lies in the fact that mirrors are just that. They blithely copy some other server, so it only requires a little glitch somewhere upstream for most of the mirrors to be wrong.
What would be really helpful here is a pointer to a known good iso on an authoritative server. At least then I can get on with my work while the mirrors get corrected in due course.
I do not think this is the right question. The authoritative data is what was signed. E.g. the signed sha256sum you have. So even if you were using another distribution point which may or may not be official, the problem may still be in transit or local. See for a list: http://download.opensuse.org/distribution/leap/42.1/iso/openSUSE-Leap-42.1-D... -- You are receiving this mail because: You are on the CC list for the bug.