ARM Tor Browser Version lags behind

malloc · November 12, 2023, 1:10pm

Unable to download tor browser in freshly built whonix for M2 Mac

Able to update repositories via cli but when I go to download the tor browser it fails with this error.

ERROR: Failed to download: Tor Browser Ports - Browse Files at SourceForge.net
Possible reasons:

Internet connectivity issue.
The download server is down.
File size exceeded (endless data attack triggered).
Tor Browser Downloader (by Whonix developers) has been broken due to upstream changes.
Recommendations:
Tor Browser Essentials
(Debugging information: curl_status_message: [22] - [HTTP page not retrieved. The requested url was not found or returned another error with the HTTP error code being 400 or above. This return code only appears if -f, --fail is used.])

extraextra · November 12, 2023, 3:26pm

Posting an error in the forums and being stuck waiting for others is awful. That’s not the spirit.

You can figure out how to debug this and fix this. I can teach you.

Any ideas how to start?

malloc · November 12, 2023, 9:11pm

I already tried fixing it, I couldn’t figure it out… I checked the trouble shooting page and went through old forum posts. I am happy to learn, what can I do

github.com/Kicksecure/tb-updater

tb-updater failing connectivity check UTM

opened 10:19AM - 01 Aug 23 UTC

closed 01:47PM - 17 Aug 23 UTC

grll

### Problem Description I am trying to install the torbrowser using tb-update…r on Macbook air M2 using UTM (whonix 17.0.3.0). It seems that I have a problem with the proxy: tb-updater is failing the connectivity check. I have tried to log the curl command that fails with verbose just above the log from update-torbrowser. system check is also showing everything ok. Any ideas? ### update-torbrowser log ```bash [workstation user ~]% update-torbrowser INFO: chroot: is_chroot=true is not set, ok. INFO: Auto detecting ARCH... INFO: ARCH 'aarch64' detected. INFO: Auto detecting ARCH_DOWNLOAD... INFO: ARCH_DOWNLOAD 'linux-arm64' detected. INFO: CURL_PROXY: --proxy socks5h://tb-updater_20cf3486-cab0-4a18-b276-d802970a7cb8:password@10.152.152.10:9115 INFO: Not running inside Qubes Disposable Template, ok. INFO: Using stable version. For alpha version, see: https://www.whonix.org/wiki/Tor_Browser#Alpha INFO: Running Tor enabled check... Done. INFO: Running Tor bootstrap check... Done. INFO: Running connectivity check... Downloading...: https://sourceforge.net INFO: CURL_OUT_FILE: /home/user/.cache/tb/temp/tbb_remote_folder ERROR: https://sourceforge.net could not be reached. Possible reasons: - https://sourceforge.net/projects/tor-browser-ports/files is down - download location changed Please check: Start menu -> System -> systemcheck or in Terminal: systemcheck or in Terminal with debugging: systemcheck -v If systemcheck reports no problems with internet activity and downloading Tor Browser keeps failing, please report a bug! (Debugging information: curl_status_message: [22] - [HTTP page not retrieved. The requested url was not found or returned another error with the HTTP error code being 400 or above. This return code only appears if -f, --fail is used.]) zsh: exit 7 update-torbrowser ``` ### curl failing log ```bash [workstation user ~]% /usr/libexec/helper-scripts/curl-prgrs --fail --proxy socks5h://tb-updater_7764e230-e96c-45d7-b61e-df0189cb97a0:password@10.152.152.10:9115 --tlsv1.2 --proto =https --retry-connrefused --retry 3 --retry-delay 3 --max-time "180" --location --output "/home/user/.cache/tb/temp/tbb_remote_folder" "https://sourceforge.net" -v * Trying 10.152.152.10:9115... * Immediate connect fail for 10.152.152.10: Connection refused * Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server * Closing connection 0 * Hostname 10.152.152.10 was found in DNS cache * Trying 10.152.152.10:9115... * Immediate connect fail for 10.152.152.10: Connection refused * Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server * Closing connection 1 * Hostname 10.152.152.10 was found in DNS cache * Trying 10.152.152.10:9115... * Immediate connect fail for 10.152.152.10: Connection refused * Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server * Closing connection 2 * Hostname 10.152.152.10 was found in DNS cache * Trying 10.152.152.10:9115... * Immediate connect fail for 10.152.152.10: Connection refused * Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server * Closing connection 3 zsh: exit 7 /usr/libexec/helper-scripts/curl-prgrs --fail --proxy --tlsv1.2 --proto 3 ``` ### output of system check -v ```bash systemcheck -v [INFO] [systemcheck] | Whonix-Workstation | Tue Aug 1 10:08:56 UTC 2023 [INFO] [systemcheck] Check sudo Result: OK [INFO] [systemcheck] Whonix build version: 17.0.3.0 [INFO] [systemcheck] whonix-workstation-packages-dependencies-cli: 23.7-1 [INFO] [systemcheck] derivative_major_release_version /etc/whonix_version: 17 [INFO] [systemcheck] Whonix Support Status of this Major Version: Ok. [WARNING] [systemcheck] Hardened Malloc: Disabled. [INFO] [systemcheck] Spectre Meltdown Test: skipping since spectre_meltdown_check=false, ok. [INFO] [systemcheck] Package Manager Consistency Check Result: Output of command dpkg --audit was empty, ok. [INFO] [systemcheck] ERROR: ARG_MAX exceeded! debug information: output_func was called with too many arguments. ${FUNCNAME[0]}: output_func ${FUNCNAME[1]}: output_func_cli ${FUNCNAME[2]}: check_journal ${FUNCNAME[3]}: systemcheck_main ${FUNCNAME[5]}: main ${FUNCNAME[6]}: $0: /usr/libexec/systemcheck/systemcheck [INFO] [systemcheck] check network interfaces Result: Ok. [INFO] [systemcheck] Qubes Settings Test Result: Skipped, because Qubes not detected. [INFO] [systemcheck] Check Kernel Messages Test Result: Found nothing remarkable, ok. [INFO] [systemcheck] Whonix firewall systemd unit check Result: Ok. [INFO] [systemcheck] Check Package Manager Running Result: None running, ok. [INFO] [systemcheck] Tor Check Result: Not running on Whonix-Gateway, ok. [INFO] [systemcheck] Tor Config Check Result: Tor config ok. [INFO] [systemcheck] Tor Running Check Result: Not running on Whonix-Gateway, ok. [INFO] [systemcheck] Tor SocksPort Reachability Test Result: Reachable. (curl exit code: 22 | curl status message: [22] - [HTTP page not retrieved. The requested url was not found or returned another error with the HTTP error code being 400 or above. This return code only appears if -f, --fail is used.]) [INFO] [systemcheck] Tor Connection Result: Ok. tor_bootstrap_status: Tor Circuit: established [INFO] [systemcheck] Time Synchronization Result: Ok. Time synchronization status: success sdwdate reports: Success. whonix_firewall status: consecutive run after boot onion-time-pre-script reports: __ ### START: ### /usr/libexec/helper-scripts/onion-time-pre-script __ Status: Subsequent run after boot. __ Static Time Sanity Check: Within minimum time 'Mon Jun 12 00:00:00 UTC 2023' and expiration timestamp 'Tue May 17 10:00:00 UTC 2033', ok. __ Tor circuit: established __ Tor Consensus Time Sanity Check: Clock within consensus parameters consensus/valid-after 2023-08-01 09:00:00 and consensus/valid-until 2023-08-01 12:00:00. __ Conclusion: Tor already reports circuit established. __ ### END: ### Exiting with exit_code '0' indicating 'success'. [INFO] [systemcheck] Connected to Tor. [INFO] [systemcheck] Whonix Meta Packages Test Result: Meta package non-qubes-whonix-workstation-xfce installed, ok. [INFO] [systemcheck] Whonix Meta Packages Test Result: Meta package non-qubes-whonix-workstation-cli installed, ok. [INFO] [systemcheck] Whonix Unwanted Packages Test Result: None found. [INFO] [systemcheck] Check Initializer Result: /var/lib/initializer-dist/status-files/first_run_initializer.fail does not exist, ok. [INFO] [systemcheck] Check Virtualizer Result: Supported Virtualizer qemu (KVM?) detected, continuing. systemd-detect-virt result: qemu [INFO] [systemcheck] PVClock Result: /sys/devices/system/clocksource/clocksource0/current_clocksource exist, is arch_sys_counter. [INFO] [systemcheck] Check Timezone Result: /etc/timezone, Etc/UTC matches Etc/UTC, ok. [INFO] [systemcheck] Check Timezone Result: /usr/share/zoneinfo/Etc/UTC matches /etc/localtime, ok. [INFO] [systemcheck] IP Forwarding Result: not running on Whonix-Gatway, skipping, ok. [INFO] [systemcheck] Whonix is produced independently of, with no guarantee from, The Tor Project. Whonix is a research project. https://www.whonix.org [INFO] [systemcheck] Check Logs Result: /run/systemcheck/.msgcollector/msgdispatcher-error.log does not exist, ok. [INFO] [systemcheck] Check Logs Result: /run/systemcheck/.msgcollector/msgdispatcher-error.log does not exist, ok. [INFO] [systemcheck] Check Logs Result: /var/lib/systemcheck/.msgcollector/msgdispatcher-error.log does not exist, ok. [INFO] [systemcheck] Check Logs Result: /run/systemcheck/.cache/tb/torbrowser_updater_error.log does not exist, ok. [INFO] [systemcheck] Check Hostname Result: "hostname --fqdn" output is "host.localdomain", ok. [INFO] [systemcheck] Check Hostname Result: "hostname" output is "host", ok. [INFO] [systemcheck] Check Hostname Result: "hostname --ip-address" output is "127.0.0.1", ok. [INFO] [systemcheck] Check Hostname Result: "hostname --ip-address" output is "localdomain", ok. [INFO] [systemcheck] Entropy Available Check Result: ok. /proc/sys/kernel/random/entropy_avail: 256 [INFO] [systemcheck] Check nonfree Result: Ok, no nonfree packages found. For more information, see: https://www.whonix.org/wiki/Avoid_nonfree_software [INFO] [systemcheck] Whonix APT Repository: Enabled. When the Whonix team releases BOOKWORM updates, they will be AUTOMATICALLY installed (when you run apt-get dist-upgrade) along with updated packages from the Debian team. Please read https://www.whonix.org/wiki/Trust to understand the risk. If you want to change this, use: sudo whonix_repository [INFO] [systemcheck] Qubes Update Proxy Test Result: Skipped, because Qubes not detected. [INFO] [systemcheck] check_tor_socks_or_trans_port SocksPort: Skipped, because not using --leak-tests (--show-ip), ok. [INFO] [systemcheck] check_tor_socks_or_trans_port TransPort: Skipped, because not using --leak-tests (--show-ip), ok. [INFO] [systemcheck] check_stream_isolation : Skipped, because not using --leak-tests (--show-ip), ok. [INFO] [systemcheck] Debian Package Update Check: Checking for software updates via apt-get... ( Documentation: https://www.whonix.org/wiki/Update ) Hit:1 tor+https://deb.debian.org/debian bookworm InRelease Hit:2 tor+https://fasttrack.debian.net/debian bookworm-fasttrack InRelease Hit:3 tor+https://deb.debian.org/debian bookworm-updates InRelease Hit:4 tor+https://deb.debian.org/debian-security bookworm-security InRelease Hit:5 https://deb.kicksecure.com bookworm InRelease Hit:6 tor+https://deb.debian.org/debian bookworm-backports InRelease Reading package lists... Done [INFO] [systemcheck] sudo apt-get dist-upgrade --simulate output: Reading package lists... Building dependency tree... Reading state information... Calculating upgrade... 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. [INFO] [systemcheck] Debian Package Update Check Result: No updates found via apt-get. [INFO] [systemcheck] Warrant Canary Check: Skipping on Whonix-Workstation, ok. [INFO] [systemcheck] Please donate! See: https://www.whonix.org/wiki/Donate ```

I think it has something to do with this, with cloudflare.

I tried adding the skip connectivity check but it didn’t work.

extraextra · November 13, 2023, 12:46am

Great! This time no failed connectivity check. The log looks different. See what you already posted.

The forum weirdly renders to a link but that doesn’t matter.

Use code tags.

https://sourceforge.net/projects/tor-browser-ports/files/13.0.1/tor-browser-linux-arm64-13.0.1.tar.xz.asc/download

What’s next? Try to open the link manually in the browser. What happens?

Then look closer at the link. Don’t consider it a huge gibberish long letter salad. There’s a structure.

Try to see the URL parts. These start with /. Modify the link.

https://sourceforge.net/projects/tor-browser-ports/files/13.0.1/tor-browser-linux-arm64-13.0.1.tar.xz.asc

Again.

https://sourceforge.net/projects/tor-browser-ports/files/13.0.1

And? Again…

https://sourceforge.net/projects/tor-browser-ports/files/

Each time try to open the link.

What do you notice?

What’s next?

malloc · November 13, 2023, 12:51am

Okay, well 13.0.1 isn’t available on source forge yet? The latest is 13.0? Am I following correctly?

extraextra · November 13, 2023, 12:55am

Bingo.

Now what is next?

Hint: There’s a solution in the manpage. Found that yet?

malloc · November 13, 2023, 1:05am

man torbrowser? In terminal? Do I need to direct the tor browser updater to download the older version?

malloc · November 13, 2023, 6:21am

Ended up wget the 13.0 to the .tb directory and it’s working now, I just need to update it to 13.0.1

extraextra · November 13, 2023, 6:29am

man update-torbrowser

Found it even in the wiki.

malloc · November 13, 2023, 8:15am

Cool thanks for the lesson. Now that I have it downloaded manually will whonix gpg check and anon dist updater still be compatible

Patrick · November 13, 2023, 4:19pm

Since Tor Browser version information comes from Tor Project but ARM64 version comes from a different ARM64 Tor Browser Maintainer, I don’t have an idea how to fix that yet.

Maintaining two sets (TB amd64 stable, alpha + TB arm64 stable) hardcoded version number files would be extra maintenance effort.

Maybe separate code to parse the download page to get the latest version number.