@BachoSeven generally this means something sketchy is happening. I'd suggest try uploading these files to VirusTotal, also check what certificate is presented in browser when you visit foobar2000.org.
Search Criteria
Package Details: foobar2000 2.24.3-1
Package Actions
| Git Clone URL: | https://aur.archlinux.org/foobar2000.git (read-only, click to copy) |
|---|---|
| Package Base: | foobar2000 |
| Description: | An advanced freeware audio player (uses Wine) |
| Upstream URL: | https://www.foobar2000.org |
| Licenses: | custom |
| Submitter: | None |
| Maintainer: | supermario |
| Last Packager: | supermario |
| Votes: | 67 |
| Popularity: | 0.001680 |
| First Submitted: | 2010-05-07 18:02 (UTC) |
| Last Updated: | 2025-03-18 22:18 (UTC) |
Dependencies (4)
- desktop-file-utils (desktop-file-utils-gitAUR)
- wine (wine-valveAUR, wine-stable-nextAUR, wine-stableAUR, wine-wow64-gitAUR, wine-staging-wow64-gitAUR, wine-gitAUR, wine-staging-gitAUR, wine-cachyosAUR, wine-wow64AUR, wine-staging-wow64AUR, wine-pure-gitAUR, wine-tkg-staging-wow64-binAUR, wine-tkg-staging-binAUR, wine-staging)
- 7zip (make)
- wget (wget-gitAUR, wurlAUR) (make)
Required by (26)
- foobar2000-component-audioscrobbler-bin
- foobar2000-component-beefweb-bin
- foobar2000-component-dsp-effect-bin
- foobar2000-component-dynamic-range-bin
- foobar2000-component-jesus-bin
- foobar2000-component-musical-spectrum-bin
- foobar2000-component-np-simple-bin
- foobar2000-component-playcount-bin (optional)
- foobar2000-component-runcmd-bin
- foobar2000-component-scrobble-bin
- foobar2000-component-stop-on-error-bin
- foobar2000-component-texttools-bin (optional)
- foobar2000-component-ui-columns-bin
- foobar2000-component-uie-albumlist-bin
- foobar2000-component-uie-console-bin
- foobar2000-component-uie-esplaylist-bin
- foobar2000-component-uie-lyrics3-bin
- foobar2000-component-uie-ptb-bin
- foobar2000-component-uie-typefind-bin
- foobar2000-component-uie-vis-peakmeter-spectrum-bin
- foobar2000-component-upnp-bin
- foobar2000-component-vorbisstream-bin
- foobar2000-component-vst-bin
- foobar2000-component-wave-minibar-mod-bin
- foobar2000-encoders (optional)
- lib32-foobar2000-encoders (optional)
Sources (6)
magicgoose commented on 2021-11-21 14:42 (UTC)
BachoSeven commented on 2021-11-21 14:12 (UTC) (edited on 2021-11-21 14:17 (UTC) by BachoSeven)
@magicgoose I just did this:
Applied only edits 1: and 3: of your last comment (so the old url which doesn't specify which specific binary to get), and then built the package and I get the following sha256sum:
3aaa3b8d464710a26df89f8a32bbb8e5f5db1a830e1900a2f4a98b2ef66ccd66 foobar2000_v1.6.8.exe
As far as I can tell, wget said it was using HTTPS successfully
And as I mentioned earlier, if I delete the .exe and makepkg -s again, I get different sum:
895af8d018c7ec224db65ae25c2e4e03f76d8dc3eae973b309abd72a7f5d1d13 foobar2000_v1.6.8.exe
magicgoose commented on 2021-11-21 12:52 (UTC) (edited on 2021-11-21 12:52 (UTC) by magicgoose)
I just downloaded it 3 times and got 3 different sha-256 sums... what's going on
That's odd. I couldn't reproduce that from my connection. Was it without HTTPS errors all 3 times? What was the URL? Can you post these sums? (that way, later there's a chance people can compare if it matches any known malware, etc)
Any chance that these were incomplete downloads?
could you paste the updated PKGBUILD?
That would be too big for a comment. But there are just 3 edits:
1: Line 4, the one starting with pkgver= -- change to pkgver=1.6.8
2: Line 12, the one starting with source= -- change to source=("foobar2000_v$pkgver.exe::https://www.foobar2000.org/getfile/foobar2000_v$pkgver.exe"
3: Line 18, the one starting with sha256sums= -- change to sha256sums=('679ecdb3304e2fcefb7b5e087fba527e3a5921fcdbc24b4093bee05ab0fec7a0'
After that, it successfully built and installed for me.
(The only remaining issue is with missing wineprefix folder, I created it manually but didn't fix it in PKGBUILD. I don't have permissions to contribute anyway. But if author invited me, that would be cool btw. I did ask some time ago, but didn't get a response sadly.)
BachoSeven commented on 2021-11-21 12:20 (UTC)
could you paste the updated PKGBUILD?
BachoSeven commented on 2021-11-21 12:18 (UTC)
@magicgoose I just downloaded it 3 times and got 3 different sha-256 sums... what's going on
magicgoose commented on 2021-11-21 12:08 (UTC)
SHA-256 of the latest release (1.6.8) that I downloaded just now:
679ecdb3304e2fcefb7b5e087fba527e3a5921fcdbc24b4093bee05ab0fec7a0
magicgoose commented on 2021-11-21 12:02 (UTC) (edited on 2021-11-21 12:06 (UTC) by magicgoose)
Would it be cool (legally, etc) to change the source to the versioned URL? I just checked and it works just fine:
"foobar2000_v$pkgver.exe::https://www.foobar2000.org/getfile/foobar2000_v$pkgver.exe"
snorlax212 commented on 2021-09-04 04:33 (UTC)
Thanks, after creating ~/.local/share/wineprefixes/ it starts to work. It would be nice to add support for foo_youtube component https://fy.3dyd.com/download/ (it can be installed but doesnt load any url)
magicgoose commented on 2021-05-22 17:43 (UTC)
I would recommend against --skipinteg, it can be unsafe in case you accidentally get the wrong file (well, it's rare but...). Better is to download manually, check the hash(es) and edit hashes in PKGBUILD too.
otterwise commented on 2021-05-21 16:50 (UTC)
If the .exe fails to download, you can manually edit the foobar version in PKGBUILD (with --menuedit and --mflags --skipinteg ; use at own risk!) to match the one on the official foobar2000 download page.
Pinned Comments
supermario commented on 2025-01-13 13:39 (UTC)
@aliu if you try to download the exe file directly in the sources array the download site returns you an HTML page not the actual executable so we need to do this workaround
all: I have updated this package to use the 64bit executable on 64bit systems now that the upstream 7zip package is able to extract it. If you have problems please report them and I'll rollback to the 32bit executable even on 64bit systems until we can find a fix