3

I’m trying to build a Docker image using the cityflowproject/cityflow base. My build consistently fails during the apt-get install step with Hash Sum mismatch errors, even after attempting common fixes like disabling APT caching and cleaning the lists.

The error occurs at: RUN apt-get update && apt-get install -y ...

partial log:

E: Failed to fetch http://deb.debian.org/debian/pool/main/... Hash Sum mismatch Hashes of expected file:

  • SHA256:... Hashes of received file:
  • SHA256:... (different) I’ve also tried: • Adding APT config options to handle bad proxies • Forcing rm -rf /var/lib/apt/lists/* before and after • Using --no-cache with Docker

Still facing the same issue. This seems to be a persistent issue with some Debian mirrors or Docker cache behaviors.

FROM cityflowproject/cityflow

# Configure APT to handle proxy and caching issues
RUN echo 'Acquire::http::Pipeline-Depth "0";' >> /etc/apt/apt.conf.d/99fixbadproxy && \
    echo 'Acquire::http::No-Cache "true";' >> /etc/apt/apt.conf.d/99fixbadproxy && \
    echo 'Acquire::BrokenProxy "true";' >> /etc/apt/apt.conf.d/99fixbadproxy

# Clean and update APT, then install packages
RUN rm -rf /var/lib/apt/lists/* && \
    apt-get clean && \
    apt-get update && \
    apt-get install -y --no-install-recommends \
        build-essential \
        cmake \
        git \
        libboost-all-dev && \
    rm -rf /var/lib/apt/lists/*

# Install Python packages
RUN pip install numpy torch matplotlib ```
Improve this question
2
  • 1
    I'm facing the same issue. I tried with latest debian trixie image, and latest ubuntu jammy image, both render the same error. I tried to install only git and build-essential, yet it still managed to fail. I read something about changing the mirrors to download packages, but I don't really know what this is all about. Commented Sep 1 at 20:19
  • I hit my issue on macOS, but when I tried on Windows the setup was a lot smoother. Commented Sep 28 at 1:24

1 Answer 1

Reset to default
2

There can be numerous causes for this, but I've found it's generally to do with

  • bad WSL2 behavior
  • badly-supported/detected compression (can represent an issue with the mirror)
  • corporate firewall modifying/dropping packets

Given you've tried perhaps the most-widely suggested hacks, try changing your compression type (the default is probably xz)

sudo apt-get update --print-uris  # extensions in output show preferred
sudo apt-get update -o Acquire::CompressionTypes::Order::=gz  # always gzip

You can also set this more permanently as an apt option than repeated command line arg if you prefer

RUN echo 'Acquire::CompressionTypes::Order "gz";' >> /etc/apt/apt.conf.d/99force_gzip

You may find forcing SSL can help with corporate firewalls too

https://askubuntu.com/questions/1237335/how-do-i-force-apt-to-use-https-only

Some other related Questions

Improve this answer
Sign up to request clarification or add additional context in comments.

Comments

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.