Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

tb-updater failing connectivity check UTM #21

Closed
grll opened this issue Aug 1, 2023 · 5 comments
Closed

tb-updater failing connectivity check UTM #21

grll opened this issue Aug 1, 2023 · 5 comments

Comments

@grll
Copy link

grll commented Aug 1, 2023

Problem Description

I am trying to install the torbrowser using tb-updater on Macbook air M2 using UTM (whonix 17.0.3.0). It seems that I have a problem with the proxy: tb-updater is failing the connectivity check. I have tried to log the curl command that fails with verbose just above the log from update-torbrowser. system check is also showing everything ok. Any ideas?

update-torbrowser log

[workstation user ~]% update-torbrowser              
INFO: chroot: is_chroot=true is not set, ok.
INFO: Auto detecting ARCH...
INFO: ARCH 'aarch64' detected.
INFO: Auto detecting ARCH_DOWNLOAD...
INFO: ARCH_DOWNLOAD 'linux-arm64' detected.
INFO: CURL_PROXY: --proxy socks5h://tb-updater_20cf3486-cab0-4a18-b276-d802970a7cb8:password@10.152.152.10:9115
INFO: Not running inside Qubes Disposable Template, ok.
INFO: Using stable version. For alpha version, see: https://www.whonix.org/wiki/Tor_Browser#Alpha
INFO: Running Tor enabled check... Done.
INFO: Running Tor bootstrap check... Done.
INFO: Running connectivity check...  Downloading...: https://sourceforge.net
INFO: CURL_OUT_FILE: /home/user/.cache/tb/temp/tbb_remote_folder

ERROR: https://sourceforge.net could not be reached.

Possible reasons:
- https://sourceforge.net/projects/tor-browser-ports/files is down
- download location changed

Please check: Start menu -> System -> systemcheck
              or in Terminal: systemcheck
              or in Terminal with debugging: systemcheck -v

If systemcheck reports no problems with internet activity and downloading Tor Browser keeps failing, please report a bug!

(Debugging information: curl_status_message: [22] - [HTTP page not retrieved. The requested url was not found or returned another error with the HTTP error code being 400 or above. This return code only appears if -f, --fail is used.])
zsh: exit 7     update-torbrowser

curl failing log

[workstation user ~]% /usr/libexec/helper-scripts/curl-prgrs       --fail       --proxy socks5h://tb-updater_7764e230-e96c-45d7-b61e-df0189cb97a0:password@10.152.152.10:9115       --tlsv1.2 --proto =https       --retry-connrefused       --retry 3       --retry-delay 3       --max-time "180"              --location              --output "/home/user/.cache/tb/temp/tbb_remote_folder"       "https://sourceforge.net"       -v
*   Trying 10.152.152.10:9115...
* Immediate connect fail for 10.152.152.10: Connection refused
* Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server
* Closing connection 0
* Hostname 10.152.152.10 was found in DNS cache
*   Trying 10.152.152.10:9115...
* Immediate connect fail for 10.152.152.10: Connection refused
* Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server
* Closing connection 1
* Hostname 10.152.152.10 was found in DNS cache
*   Trying 10.152.152.10:9115...
* Immediate connect fail for 10.152.152.10: Connection refused
* Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server
* Closing connection 2
* Hostname 10.152.152.10 was found in DNS cache
*   Trying 10.152.152.10:9115...
* Immediate connect fail for 10.152.152.10: Connection refused
* Failed to connect to 10.152.152.10 port 9115 after 0 ms: Couldn't connect to server
* Closing connection 3

zsh: exit 7     /usr/libexec/helper-scripts/curl-prgrs --fail --proxy  --tlsv1.2 --proto    3

output of system check -v

systemcheck -v     
[INFO] [systemcheck]  | Whonix-Workstation | Tue Aug  1 10:08:56 UTC 2023
[INFO] [systemcheck] Check sudo Result: OK
[INFO] [systemcheck] Whonix build version: 17.0.3.0
[INFO] [systemcheck] whonix-workstation-packages-dependencies-cli: 23.7-1
[INFO] [systemcheck] derivative_major_release_version /etc/whonix_version: 17
[INFO] [systemcheck] Whonix Support Status of this Major Version: Ok.
[WARNING] [systemcheck] Hardened Malloc: Disabled.
[INFO] [systemcheck] Spectre Meltdown Test: skipping since spectre_meltdown_check=false, ok.
[INFO] [systemcheck] Package Manager Consistency Check Result: Output of command dpkg --audit was empty, ok.
[INFO] [systemcheck] ERROR: ARG_MAX exceeded!

debug information:
output_func was called with too many arguments.
${FUNCNAME[0]}: output_func
${FUNCNAME[1]}: output_func_cli
${FUNCNAME[2]}: check_journal
${FUNCNAME[3]}: systemcheck_main
${FUNCNAME[5]}: main
${FUNCNAME[6]}: 
$0: /usr/libexec/systemcheck/systemcheck
[INFO] [systemcheck] check network interfaces Result: Ok.
[INFO] [systemcheck] Qubes Settings Test Result: Skipped, because Qubes not detected.
[INFO] [systemcheck] Check Kernel Messages Test Result: Found nothing remarkable, ok.
[INFO] [systemcheck] Whonix firewall systemd unit check Result: Ok.
[INFO] [systemcheck] Check Package Manager Running Result: None running, ok.
[INFO] [systemcheck] Tor Check Result: Not running on Whonix-Gateway, ok.
[INFO] [systemcheck] Tor Config Check Result: Tor config ok.
[INFO] [systemcheck] Tor Running Check Result: Not running on Whonix-Gateway, ok.
[INFO] [systemcheck] Tor SocksPort Reachability Test Result: Reachable. (curl exit code: 22 | curl status message: [22] - [HTTP page not retrieved. The requested url was not found or returned another error with the HTTP error code being 400 or above. This return code only appears if -f, --fail is used.])
[INFO] [systemcheck] Tor Connection Result: Ok.
tor_bootstrap_status: 
Tor Circuit: established
[INFO] [systemcheck] Time Synchronization Result: Ok.
Time synchronization status: success
sdwdate reports: Success.
whonix_firewall status: consecutive run after boot
onion-time-pre-script reports: 
__ ### START: ### /usr/libexec/helper-scripts/onion-time-pre-script
__ Status: Subsequent run after boot.
__ Static Time Sanity Check: Within minimum time 'Mon Jun 12 00:00:00 UTC 2023' and expiration timestamp 'Tue May 17 10:00:00 UTC 2033', ok.
__ Tor circuit: established
__ Tor Consensus Time Sanity Check: Clock within consensus parameters consensus/valid-after 2023-08-01 09:00:00 and consensus/valid-until 2023-08-01 12:00:00.
__ Conclusion: Tor already reports circuit established.
__ ### END: ### Exiting with exit_code '0' indicating 'success'.
[INFO] [systemcheck] Connected to Tor.
[INFO] [systemcheck] Whonix Meta Packages Test Result: Meta package non-qubes-whonix-workstation-xfce installed, ok.
[INFO] [systemcheck] Whonix Meta Packages Test Result: Meta package non-qubes-whonix-workstation-cli installed, ok.
[INFO] [systemcheck] Whonix Unwanted Packages Test Result: None found.
[INFO] [systemcheck] Check Initializer Result: /var/lib/initializer-dist/status-files/first_run_initializer.fail does not exist, ok.
[INFO] [systemcheck] Check Virtualizer Result: Supported Virtualizer qemu (KVM?) detected, continuing.
systemd-detect-virt result: qemu
[INFO] [systemcheck] PVClock Result: /sys/devices/system/clocksource/clocksource0/current_clocksource exist, is arch_sys_counter.
[INFO] [systemcheck] Check Timezone Result: /etc/timezone, Etc/UTC matches Etc/UTC, ok.
[INFO] [systemcheck] Check Timezone Result: /usr/share/zoneinfo/Etc/UTC matches /etc/localtime, ok.
[INFO] [systemcheck] IP Forwarding Result: not running on Whonix-Gatway, skipping, ok.
[INFO] [systemcheck] Whonix is produced independently of, with no guarantee from, The Tor Project. Whonix is a research project. https://www.whonix.org
[INFO] [systemcheck] Check Logs Result: /run/systemcheck/.msgcollector/msgdispatcher-error.log does not exist, ok.
[INFO] [systemcheck] Check Logs Result: /run/systemcheck/.msgcollector/msgdispatcher-error.log does not exist, ok.
[INFO] [systemcheck] Check Logs Result: /var/lib/systemcheck/.msgcollector/msgdispatcher-error.log does not exist, ok.
[INFO] [systemcheck] Check Logs Result: /run/systemcheck/.cache/tb/torbrowser_updater_error.log does not exist, ok.
[INFO] [systemcheck] Check Hostname Result: "hostname --fqdn" output is "host.localdomain", ok.
[INFO] [systemcheck] Check Hostname Result: "hostname" output is "host", ok.
[INFO] [systemcheck] Check Hostname Result: "hostname --ip-address" output is "127.0.0.1", ok.
[INFO] [systemcheck] Check Hostname Result: "hostname --ip-address" output is "localdomain", ok.
[INFO] [systemcheck] Entropy Available Check Result: ok. /proc/sys/kernel/random/entropy_avail: 256
[INFO] [systemcheck] Check nonfree Result: Ok, no nonfree packages found. For more information, see:
https://www.whonix.org/wiki/Avoid_nonfree_software
[INFO] [systemcheck] Whonix APT Repository: Enabled.
When the Whonix team releases BOOKWORM updates,
they will be AUTOMATICALLY installed (when you run apt-get dist-upgrade)
along with updated packages from the Debian team. Please
read https://www.whonix.org/wiki/Trust to understand the risk.
If you want to change this, use:
    sudo whonix_repository
[INFO] [systemcheck] Qubes Update Proxy Test Result: Skipped, because Qubes not detected.
[INFO] [systemcheck] check_tor_socks_or_trans_port SocksPort: Skipped, because not using --leak-tests (--show-ip), ok.
[INFO] [systemcheck] check_tor_socks_or_trans_port TransPort: Skipped, because not using --leak-tests (--show-ip), ok.
[INFO] [systemcheck] check_stream_isolation : Skipped, because not using --leak-tests (--show-ip), ok.
[INFO] [systemcheck] Debian Package Update Check: Checking for software updates via apt-get... ( Documentation: https://www.whonix.org/wiki/Update )
Hit:1 tor+https://deb.debian.org/debian bookworm InRelease                                                                                                             
Hit:2 tor+https://fasttrack.debian.net/debian bookworm-fasttrack InRelease                                                                                             
Hit:3 tor+https://deb.debian.org/debian bookworm-updates InRelease                              
Hit:4 tor+https://deb.debian.org/debian-security bookworm-security InRelease
Hit:5 https://deb.kicksecure.com bookworm InRelease
Hit:6 tor+https://deb.debian.org/debian bookworm-backports InRelease
Reading package lists... Done
[INFO] [systemcheck] sudo apt-get dist-upgrade --simulate output:
Reading package lists...
Building dependency tree...
Reading state information...
Calculating upgrade...
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
[INFO] [systemcheck] Debian Package Update Check Result: No updates found via apt-get.
[INFO] [systemcheck] Warrant Canary Check: Skipping on Whonix-Workstation, ok.
[INFO] [systemcheck] Please donate!
   See: https://www.whonix.org/wiki/Donate
@grll
Copy link
Author

grll commented Aug 1, 2023

update: I commented out the connectivity check that was running on sourceforge.net as it seems cloudflare was blocking the request. The download and install worked fine after that

@adrelanos
Copy link
Member

Things that you could do:

  • Report this issue to sourceforge.
  • Report this to upstream and suggest to move hosting to a Tor friendly host (dunno which).

@TesterDTea
Copy link

@grll Would you please tell me how you did to comment out the connectivity check running on sourceforge.net?

@adrelanos
Copy link
Member

Untested.

1. Open /etc/torbrowser.d/50_user.conf with root rights.

sudoedit /etc/torbrowser.d/50_user.conf

2. Add.

tb_skip_functions+=" tb_connectivity_checks_curl "

3. Done.

adrelanos added a commit that referenced this issue Aug 16, 2023
@adrelanos
skip connectivity test for arm64
4fcbb43 
due to unreported sourceforge blocking Tor issue

#21
@TesterDTea
Copy link

@adrelanos Worked. TY

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@grll @adrelanos @TesterDTea