Chromium不接受CSP脚本src SHA-256哈希

我使用Chromium 89.0.4389.90版本来进行以下简单的HTML片段。

<!DOCTYPE html>
<html>
<head>
<title>Test CSP</title>
<meta http-equiv="Content-Security-Policy"
content="script-src 'sha256-OteiSfjK+c1oXLotC4Jj4bJn8pdo6N4nWk8uRVTM6ys='">
</head>
<body>
<script type="text/javascript">function test() { alert('Hello'); }</script>
<button onclick="test();">Click me</button>
</body>
</html>

使用创建Base64编码的哈希

$ echo -n 'function test() { alert('Hello'); }' | openssl sha256 -binary | openssl base64
OteiSfjK+c1oXLotC4Jj4bJn8pdo6N4nWk8uRVTM6ys=

加载时，Chromium控制台会打印。。。

Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'sha256-OteiSfjK+c1oXLotC4Jj4bJn8pdo6N4nWk8uRVTM6ys='".
Either the 'unsafe-inline' keyword, a hash ('sha256-r+abGbElv1ENxT5+LrplDxvxZl4w3iy17u48CbdgB8g='), or a nonce ('nonce-...') is required to enable inline execution.

如果我点击按钮，会打印另一条错误消息：

Refused to execute inline event handler because it violates the following Content Security Policy directive: "script-src 'sha256-OteiSfjK+c1oXLotC4Jj4bJn8pdo6N4nWk8uRVTM6ys='".
Either the 'unsafe-inline' keyword, a hash ('sha256-...'), or a nonce ('nonce-...') is required to enable inline execution.

当我用r+abGbElv1ENxT5+LrplDxvxZl4w3iy17u48CbdgB8g=替换OteiSfjK+c1oXLotC4Jj4bJn8pdo6N4nWk8uRVTM6ys=时(如错误消息中所建议的(，页面加载上没有任何错误消息，但当我单击按钮时错误仍然存在(并且脚本没有执行(。

我的问题：

1. 出了什么问题
2. Chromium使用了哪些数据来计算建议的Base64编码的SHA-256哈希r+abGbElv1ENxT5+LrplDxvxZl4w3iy17u48CbdgB8g=