@ewtoombs, you probably: 1. did not import the GPG key. Try the pinned comment. 2. are trying to download behind a firewall that blocks the Tor site.
Search Criteria
Package Details: tor-browser-bin 14.0.9-1
Package Actions
| Git Clone URL: | https://aur.archlinux.org/tor-browser-bin.git (read-only, click to copy) |
|---|---|
| Package Base: | tor-browser-bin |
| Description: | Tor Browser Bundle: anonymous browsing using Firefox and Tor |
| Upstream URL: | https://www.torproject.org/projects/torbrowser.html |
| Licenses: | MPL-2.0 |
| Conflicts: | tor-browser |
| Provides: | tor-browser |
| Submitter: | FabioLolix |
| Maintainer: | grufo (jugs) |
| Last Packager: | jugs |
| Votes: | 1288 |
| Popularity: | 3.68 |
| First Submitted: | 2023-09-24 17:45 (UTC) |
| Last Updated: | 2025-04-02 14:08 (UTC) |
Dependencies (19)
- alsa-lib
- dbus-glib
- desktop-file-utils (desktop-file-utils-gitAUR)
- hicolor-icon-theme (hicolor-icon-theme-gitAUR)
- hunspell (hunspell-gitAUR)
- icu (icu-gitAUR)
- libevent (libevent-gitAUR)
- libvpx (libvpx-full-gitAUR, libvpx-gitAUR)
- libxt
- mime-types (mailcap)
- nss (nss-hgAUR)
- sqlite (sqlite-fossilAUR)
- startup-notification
- gst-libav (gst-libav-gitAUR) (optional) – H.264 video
- gst-plugins-good (gst-plugins-good-gitAUR) (optional) – H.264 video
- kdialog (kdialog-gitAUR) (optional) – KDE dialog boxes
- libnotify (libnotify-gitAUR) (optional) – Gnome dialog boxes
- libpulse (pulseaudio-dummyAUR, libpulse-gitAUR) (optional) – PulseAudio audio driver
- zenity (zenity-gtk3AUR, zenity-gitAUR, qarma-gitAUR) (optional) – simple dialog boxes
Required by (0)
Sources (8)
- https://archive.torproject.org/tor-package-archive/torbrowser/14.0.9/tor-browser-linux-i686-14.0.9.tar.xz
- https://archive.torproject.org/tor-package-archive/torbrowser/14.0.9/tor-browser-linux-i686-14.0.9.tar.xz.asc
- https://archive.torproject.org/tor-package-archive/torbrowser/14.0.9/tor-browser-linux-x86_64-14.0.9.tar.xz
- https://archive.torproject.org/tor-package-archive/torbrowser/14.0.9/tor-browser-linux-x86_64-14.0.9.tar.xz.asc
- tor-browser.desktop.in
- tor-browser.in
- tor-browser.png
- tor-browser.svg
leuko commented on 2024-09-24 16:51 (UTC) (edited on 2024-09-24 17:09 (UTC) by leuko)
ewtoombs commented on 2024-09-20 04:06 (UTC)
I'm getting
==> ERROR: sha256sums does not allow empty values.
==> ERROR: sha256sums does not allow empty values.
It won't build.
zilvervos commented on 2024-09-06 22:03 (UTC)
$ gpg --auto-key-locate nodefault,wkd --locate-keys torbrowser@torproject.org generates this error:
gpg: error retrieving 'torbrowser@torproject.org' via WKD: End of file gpg: error reading key: End of file
Any ideas on how to proceed?
stracks commented on 2024-09-06 08:52 (UTC)
https://support.torproject.org/tbb/how-to-verify-signature/
Refreshing the PGP key
Run the following command to refresh the Tor Browser Developers signing key in your local keyring from the keyserver. This will also fetch the new subkeys.
gpg --refresh-keys EF6E286DDA85EA2A4BA7DE684E2C6E8793298290
gok commented on 2024-09-06 05:53 (UTC)
@solarisfire: this error happened to me too. It is because the Tor Browser developpers used to a new subkey of their long-term PGP signing key. You simply need to re-imported the updated PGP key with
$ gpg --auto-key-locate nodefault,wkd --locate-keys torbrowser@torproject.org
and the gpg signature check in makepkg will succeed.
solarisfire commented on 2024-09-06 04:51 (UTC)
This is failing today:
==> Verifying source file signatures with gpg...
tor-browser-linux-x86_64-13.5.3.tar.xz ... FAILED (unknown public key 157432CF78A65729)
==> ERROR: One or more PGP signatures could not be verified!
-> error making: tor-browser-bin-exit status 1
-> Failed to install the following packages. Manual intervention is required:
tor-browser-bin - exit status 1
BlackDex commented on 2024-09-05 07:06 (UTC)
@Powerless read the PKGBUILD file and check the source of the binaries. https://aur.archlinux.org/cgit/aur.git/tree/PKGBUILD?h=tor-browser-bin
There you see those files are downloaded from the torproject site it self. The maintainer does not build these files, they just update where and when needed.
Powerless commented on 2024-08-18 00:36 (UTC)
Honest question: How do I know that this package is secure and has not been infected by the maintainer?
tomilov commented on 2024-07-16 17:14 (UTC)
Problem with sha256 is still present (on 3h fresh arch):
==> ERROR: sha256sums does not allow empty values.
==> ERROR: sha256sums does not allow empty values.
-> error downloading sources: /home/anatoliy/.cache/yay/tor-browser-bin
context: exit status 12
:: (1/1) Parsing SRCINFO: tor-browser-bin
pub rsa4096 2014-12-15 [C] [expires: 2025-07-21]
EF6E286DDA85EA2A4BA7DE684E2C6E8793298290
uid [ unknown] Tor Browser Developers (signing key) <torbrowser@torproject.org>
sub rsa4096 2021-09-17 [S] [expires: 2024-08-23]
==> ERROR: sha256sums does not allow empty values.
==> ERROR: sha256sums does not allow empty values.
-> error making: tor-browser-bin-exit status 12
-> Failed to install the following packages. Manual intervention is required:
tor-browser-bin - exit status 12
Pinned Comments
grufo commented on 2019-08-15 02:22 (UTC)
Before running
makepkg, you must do this (as normal user):$ gpg --auto-key-locate nodefault,wkd --locate-keys torbrowser@torproject.orgIf you want to update tor-browser from AUR without AUR helpers you can run in a terminal:
$ tor-browser -u