Package Base Details: tomb

Git Clone URL: (read-only, click to copy)
Submitter: None
Maintainer: parazyd (roddhjav)
Last Packager: roddhjav
Votes: 44
Popularity: 0.65
First Submitted: 2011-04-15 15:20
Last Updated: 2020-01-03 12:57

Packages (2)

Latest Comments

« First ‹ Previous 1 2 3 4 5 6 7 Next › Last »

richli commented on 2015-01-02 16:48

@frankspace: It's because makepkg can't find the public key. You need to run "gpg --recv-keys 0x73b35da54acb7d10" to download the public key into your keyring. No need to trust it or sign it or anything, it just needs to be accessible by gpg/makepkg.

frankspace commented on 2015-01-02 05:04

I'm getting an error that "One or more PGP signatures could not be verified." Specifically, Tomb-2.0.1.tar.gz fails because of "unknown public key 73B35DA54ACB7D10".

richli commented on 2014-12-31 03:01

@jswagner: Hmmm, very interesting. I don't use pacaur, so I took a look. I was able to reproduce your problem, so I tried running pacaur in debug mode to track things down better.

It turns out that pacaur (for some reason) calls makepkg as so:

makepkg -sfi --pkg tomb

Note that the "tomb" package is split into two: "tomb" and "tomb-kdf". I assume that pacaur would call makepkg with "--pkg tomb-kdf" if the first makepkg were successful.

Skipping pacaur entirely, I get the same error when I manually run the makepkg command with --pkg. The problem is that it's looking for tomb for the x86_64 architecture (note the filename), but the tomb sub-package overrides the "arch" variable to "any".

I checked here [1] and it says that a split package may override the "arch" option as this one does. seems to me like this is a bug with makepkg, unless there's something about split packages I'm not understanding.


jswagner commented on 2014-12-31 02:15

I can build and install this manually, but it failed when I tried to update using pacaur. Like the package up and went missing after cleanup.
==> Installing tomb package group with pacman -U...
loading packages...
error: '/tmp/pacaurtmp-jason/tomb/tomb-2.0.1-1-x86_64.pkg.tar.xz': could not find or read package
==> WARNING: Failed to install built package(s).

richli commented on 2014-11-28 09:10

@TrailnError: Thanks for the notification, I've updated the package.

Yeah, I don't know why the URLs don't contain the current release, upstream specifically directed me to use those URLs instead of the current ones. Maybe they'll update it later.

TrialnError commented on 2014-11-28 08:41

They tagged v2.0 and from the Downloads page it can be retrieved[0]
But dunno why it differ from the old dl page


richli commented on 2014-05-29 05:10

I found some time and cleaned up the package a bit and am using the new recommended download URLs. Now that AUR 3.0 supports split packages, this is split into "tomb" and "tomb-kdf".

Further input welcome.

richli commented on 2014-05-23 16:18

@DaveCode: Yeah, this PKGBUILD is really weird, I only adopted it to at least bring it up to date. As you've pointed out, there are still plenty of fixes it needs. I don't have the time right now to work on this, would you be willing to take over maintainership?

DaveCode commented on 2014-05-23 04:39

BTW I don't have wipe installed and it may be optdepends. Do
$ cat src/Tomb-1.5.2/Makefile
which says wipe is just "recommended" not required.

DaveCode commented on 2014-05-23 04:29

1. Same err as 2014-01-05 04:16 showing tomb-kdf twice. Best guess, this PKGBUILD breaks AUR guidelines. It lacks a single package() function. It's two packages, not one. It seems to want tomb-kdf as a "shadow package," not kosher. What the heck is

true && pkgname=(tomb tomb-kdf)

supposed to do? Split into tomb-kdf and tomb separately or merge completely somehow under ONE package name.

If the previous maintainer's work was your baseline, it would be easier to start from scratch using info from

2. Oh my...he only signs checksums. Checksums are easy to spoof with mere code comments. Tell jaromil. He needs to sign the tarballs not their checksums.

Right now the PKGBUILD doesn't even check a SHA sig, does it? There's a comment in there about his key, but nothing is done with it?