@altiris you need to import Rubén Rodríguez's GPG key if you want to build IceCat:
gpg --recv-keys 3C76EED7D7E04784
FYI this is a common step described in official wiki:
https://wiki.archlinux.org/index.php/Makepkg#Signature_checking
Regards
Search Criteria
Package Details: icecat 52.3.0-2
| Git Clone URL: | https://aur.archlinux.org/icecat.git (read-only) |
|---|---|
| Package Base: | icecat |
| Description: | GNU version of the Firefox browser. |
| Upstream URL: | http://www.gnu.org/software/gnuzilla/ |
| Keywords: | browser gecko web |
| Licenses: | |
| Submitter: | None |
| Maintainer: | figue (figuepluto, jfigueras) |
| Last Packager: | figue |
| Votes: | 192 |
| Popularity: | 4.178512 |
| First Submitted: | 2007-12-09 10:12 |
| Last Updated: | 2017-09-19 16:09 |
Dependencies (32)
- alsa-lib
- dbus-glib
- ffmpeg (ffmpeg-decklink, ffmpeg-full, ffmpeg-full-arm-git, ffmpeg-full-git, ffmpeg-full-nvenc, ffmpeg-git, ffmpeg-headless, ffmpeg-libfdk_aac, ffmpeg-mmal, ffmpeg-qsv-git, ffmpeg-semifull-git)
- gtk2 (gtk2-aqd, gtk2-patched-filechooser-icon-view, gtk2-patched-gdkwin-nullcheck, gtk2-ubuntu)
- gtk3 (gtk3-aqd, gtk3-cosy, gtk3-donnatella, gtk3-mushrooms, gtk3-nobroadway-nowayland-nocolord, gtk3-optional-csd, gtk3-patched-filechooser-icon-view, gtk3-typeahead, gtk3-ubuntu, gtk3-ubuntu-multilib)
- hunspell
- icu
- libevent (libevent-fb, libevent-git)
- libvpx (libvpx-full-git, libvpx-git)
- libxt
- mime-types
- mozilla-common
- nss (nss-hg)
- sqlite
- startup-notification
- ttf-font (neuropol-ttf, noto-fonts-lite, otf-inconsolata-dz, pixeled-ttf, ttf-bitstream-vera-dummy, ttf-caladea, ttf-carlito, ttf-d2coding, ttf-dejavu-emojiless, ttf-dejavu-ib, ttf-dejavu-snapshot, ttf-droid-emojiless, ttf-droid-ib, ttf-droid-simple, ttf-google-fonts-git, ttf-google-fonts-opinionated-git, ttf-google-fonts-typewolf, ttf-liberation-sans-narrow, ttf-ms-fonts, ttf-ms-win10, ttf-ms-win10-japanese, ttf-ms-win10-korean, ttf-ms-win10-other, ttf-ms-win10-sea, ttf-ms-win10-thai, ttf-ms-win10-zh_cn, ttf-ms-win10-zh_tw, ttf-ms-win8, ttf-ms-win8-arabic, ttf-ms-win8-hebrew, ttf-ms-win8-indic, ttf-ms-win8-japanese, ttf-ms-win8-korean, ttf-ms-win8-other, ttf-ms-win8-sea, ttf-ms-win8-thai, ttf-ms-win8-zh_cn, ttf-ms-win8-zh_tw, ttf-nanumgothic_coding, ttf-noto, ttf-noto-fonts-ib, ttf-noto-fonts-simple, ttf-oxygen, ttf-oxygen-gf, ttf-oxygen-git, ttf-paratype, ttf-share-gf, ttf-ubuntu-arabic, ttf-ubuntu-font-family-ib, ttf-win7-fonts, xolonium-fonts, noto-fonts, noto-fonts-extra, ttf-bitstream-vera, ttf-croscore, ttf-dejavu, ttf-droid, ttf-freefont, ttf-liberation, ttf-linux-libertine, ttf-ubuntu-font-family)
- autoconf2.13 (make)
- diffutils (diffutils-git, diffutils-patched-exclude-directory-git) (make)
- gconf (gconf-gtk2) (make)
- gst-plugins-base-libs (gst-plugins-base-git) (make)
- imake (make)
- inetutils (inetutils-git) (make)
- libpulse (libpulse-nosystemd, libpulse-raop2, pulseaudio-dmitryvk-bluetooth-lag, pulseaudio-git) (make)
- mesa (mesa-git, mesa-hybris, mesa-noglvnd, mesa-nowayland, mesa_mild_compatibility-git) (make)
- python2 (placeholder, pypy19, python26, stackless-python2) (make)
- rust (rust-always-nightly-bin, rust-arm-bin, rust-git, rust-i586-git, rust-nightly, rust-nightly-bin, rustup-dummy, rustup-git, rustup) (make)
- unzip (unzip-iconv, unzip-natspec) (make)
- yasm (yasm-git) (make)
- zip (zip-natspec) (make)
- libnotify (libnotify-gtk2, libnotify-id, libnotify-id-git) (optional) – Notification integration
- networkmanager (networkmanager-consolekit, networkmanager-consolekit-noscan, networkmanager-git, networkmanager-ifupdown, networkmanager-noscan) (optional) – Location detection via available WiFi networks
- speech-dispatcher (speech-dispatcher-git) (optional) – Text-to-Speech
Required by (0)
Sources (11)
Pinned Comments
figue commented on 2015-11-29 21:10
Latest Comments
figue commented on 2017-10-16 09:49
@oldgaro you mean during make?
oldgaro commented on 2017-10-16 00:25
Tried thrice...and every install this script makes my CPU go full horsepower and freeze the system!
PS: PC gaming
vasya commented on 2017-09-23 11:03
@figue, thank you for the explanation, clear.
figue commented on 2017-09-19 19:02
@vasya it's explained in this bug:
https://bugzilla.mozilla.org/show_bug.cgi?id=1400721
Firefox and Thunderbird in [extra] were already patched.
vasya commented on 2017-09-19 16:26
@figue, can you please explain, why did icecat need patching in the last AUR commit?: https://aur.archlinux.org/cgit/aur.git/commit/?h=icecat&id=a0c77be0e91f2dff5eba7347571dd5fdae20381f
shudouken commented on 2017-08-17 14:23
@figue Thanks!
I also created dummy files in place of the extensions and set them to immutable to prevent updates from reinstalling them.
figue commented on 2017-08-16 15:23
@shudouken of course, remove the extension you want in /usr/lib/icecat/browser/extensions
shudouken commented on 2017-08-16 11:04
Is it possible to build this without extensions?
I'd like to use ublock over spyblock and remove what I don't need, instead of just disabling it.
figue commented on 2017-08-13 08:47
@shadowphoton I think that the key in this page is his personal key, or other key. To sign IceCat he uses the key listed in PKGBUILD:
validpgpkeys=(A57369A8BABC2542B5A0368C3C76EED7D7E04784) # Ruben Rodriguez (GNU IceCat releases key) <ruben@gnu.org>
In my gpg keyring, I have this:
[2/5.3.1]figue@pluto:~> LANG=C gpg -vk | head -7
gpg: using pgp trust model
gpg: Note: signature key 2D000988589839A3 has been revoked
/home/figue/.gnupg/pubring.kbx
------------------------------
pub rsa2048 2014-10-04 [SC]
A57369A8BABC2542B5A0368C3C76EED7D7E04784
uid [ unknown] Ruben Rodriguez (GNU IceCat releases key) <ruben@gnu.org>
uid [ revoked] GNU IceCat releases <gnuzilla-dev@gnu.org>
sub rsa2048 2014-10-04 [E]
I think that the file .sig is the signature for source file (...tar.bz2) and gpg makepkg use gpg to verify the source file.
In the pinned comment, the key is an abbreviation of the long key, nothing else.
shadowphoton commented on 2017-08-12 11:36
I am new to gpg, and I may be wrong, but Ruben's gpg key is not the one presented in pinned comment - http://www.fsf.org/about/staff-and-board
How can I know for sure that the key presented really is Ruben's key and trust enough to import it?