Description of problem: https://docs.fedoraproject.org/en-US/Fedora/23/html/Installation_Guide/sect-verifying-images.html Section 3.3.1 gives a PowerShell procedure for verifying the signature of a download on windows. I downloaded Fedora-Server-DVD-x86_64-23 and tried the procedure. It fails due to the size of the file. Another method needs to be used. Version-Release number of selected component (if applicable): How reproducible: Steps to Reproduce: 1. Create this script (copied and pasted from the cited webpage, except for the Parameter block): Param( [Parameter(Mandatory=$True,Position=1)] [String]$image, [Parameter(Mandatory=$True,Position=2)] [String]$checksum_file ) $sha256 = New-Object -TypeName System.Security.Cryptography.sha256CryptoServiceProvider $expected_checksum = ((Get-Content $checksum_file | Select-String -Pattern $image) -split " ")[0].ToLower() $download_checksum = [System.BitConverter]::ToString($sha256.ComputeHash([System.IO.File]::ReadAllBytes("$PWD\$image"))).ToLower() -replace '-', '' echo "Download Checksum: $download_checksum" echo "Expected Checksum: $expected_checksum" if ( $download_checksum -eq "$expected_checksum" ) { echo "Checksum test passed!" } else { echo "Checksum test failed." } 2. If necessary, execute: Set-ExecutionPolicy RemoteSigned 3. ..\Documents\Scripts\SHA1-Check.ps1 Fedora-Server-DVD-x86_64-23.iso Fedora-Server-23-x86_64-CHECKSUM Actual results: Exception calling "ReadAllBytes" with "1" argument(s): "The file is too long. This operation is currently limited to supporting files less than 2 gigabytes in size." At C:\Users\timothe\Documents\Scripts\SHA1-Check.ps1:10 char:1 + $download_checksum = [System.BitConverter]::ToString($sha256.ComputeH ... + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ + CategoryInfo : NotSpecified: (:) [], MethodInvocationException + FullyQualifiedErrorId : IOException Expected results: The checksum is computed. Additional info: Also note that the script as written will fail if a path is given, as '.' and '\' are used in the pattern - which takes a REGEX, where they are special. Note that Fedora 18 (https://docs.fedoraproject.org/en-US/Fedora/18/html/Burning_ISO_images_to_disc/sect-Burning_ISO_images_to_disc-Validating_the_Files-Validating_at_the_Windows_Command_Prompt.html)suggested an executable from http://www.labtestproject.com/files/win/sha256sum/sha256sum.exe that can handle the large file. While the idea of a powershell script to avoid downloading an unknown executable is clever, it doesn't work. Perhaps a signed windows executable can be provided. Also, the procedure should indicate how to verify the PGP signature on the CHECKSUM file...
*** This bug has been marked as a duplicate of bug 1175759 ***