我的Dockerfile看起来像
FROM python:3.7-slim
# System setup
ENV USER app
ENV APP_DIR /home/app
RUN useradd -ms /bin/bash ${USER}
# System dependencies
RUN apt-get -y update
RUN apt-get install -y --no-install-recommends \
build-essential \
libffi-dev \
libpq-dev
# Update pip
RUN pip3 install --upgrade pip setuptools --user --no-cache-dir
RUN pip3 install wheel --user --no-cache-dir
WORKDIR ${APP_DIR}
# App dependencies
COPY setup.py ${APP_DIR}/
RUN pip3 install --extra-index-url {url} -e ${APP_DIR}/.[test] --user
具有以下docker-compose:
version: '3'
services:
application-api:
build:
context: .
dockerfile: Dockerfile
ports:
- "8000:8000"
volumes:
- ~/.config/appsecrets/secrets.yaml:/var/lib/appsecrets/app.yaml:ro
environment:
APP_LOG_LEVEL: INFO
以及以下setup.py
from setuptools import setup
setup(
name="context_manager",
install_requires=[
"gunicorn[gevent]==20.0.4",
"nltk==3.4.5",
"psycopg2==2.7.3.2",
"pyyaml==5.1.2",
"pyparsing==2.4.6",
"sentry-sdk==0.14.0",
"tldextract==2.2.2",
],
extras_require={"test": ["pytest", "pytest-cov", "mock"]},
)
这会导致以下错误
ERROR: THESE PACKAGES DO NOT MATCH THE HASHES FROM THE REQUIREMENTS FILE. If you have updated the package versions, please update the hashes. Otherwise, examine the package contents carefully; someone may have tampered with them.
nltk==3.4.5 from https://files.pythonhosted.org/packages/f6/1d/d925cfb4f324ede997f6d47bea4d9babba51b49e87a767c170b77005889d/nltk-3.4.5.zip#sha256=bed45551259aa2101381bbdd5df37d44ca2669c5c3dad72439fa459b29137d94 (from context-manager==0.0.0):
Expected sha256 bed45551259aa2101381bbdd5df37d44ca2669c5c3dad72439fa459b29137d94
Got ce4ae7079a05635aa5a2e7f464593524d4b047982c06c012c53d1658175043b6
gevent>=0.13; extra == "gevent" from https://files.pythonhosted.org/packages/0b/55/85c758c389a3c84f999b445e423b6b148227f03104fa7957e84179d9a97b/gevent-20.5.0-cp37-cp37m-manylinux2010_x86_64.whl#sha256=31dc5d4ab8172cc00c4ff17cb18edee633babd961f64bf54214244d769bc3a74 (from gunicorn[gevent]==20.0.4->context-manager==0.0.0):
Expected sha256 31dc5d4ab8172cc00c4ff17cb18edee633babd961f64bf54214244d769bc3a74
Got 02444a3dbde12419a14ad40ac2dff92466f5fbfb1c566c94b44ce01497bdbdb2
urllib3>=1.10.0 from https://files.pythonhosted.org/packages/e1/e5/df302e8017440f111c11cc41a6b432838672f5a70aa29227bf58149dc72f/urllib3-1.25.9-py2.py3-none-any.whl#sha256=88206b0eb87e6d677d424843ac5209e3fb9d0190d0ee169599165ec25e9d9115 (from sentry-sdk==0.14.0->context-manager==0.0.0):
Expected sha256 88206b0eb87e6d677d424843ac5209e3fb9d0190d0ee169599165ec25e9d9115
Got d00015c954667a679b32f8d1892cd6264f725e44df87e1ca775678c409f1faef
这是最近才开始的,并且不会影响尝试构建同一映像的其他任何人。
我在所有pip3安装命令上都尝试使用和不使用--user和--no-cache-dir都没有运气。 docker容器正在运行,没有任何缓存步骤。我正在Windows(主页)上使用Docker 19.03.1版。
关于这可能是什么原因的任何想法?
答案 0 :(得分:2)
这很可能是最近发布的pip 20.1.0的问题,并使其成为python:3.7-slim图像:https://github.com/docker-library/python/commit/b818e9441c088295165edf79a791503f1fe7f6f7
如果您将# Update pip部分替换为pip install pip==20.0.2,这些部分将会消失。
关于原因,我认为此更改可能是造成这种情况的原因:https://github.com/pypa/pip/issues/609
答案 1 :(得分:0)
按照@ Michael-Rigoni的建议,尝试在最后的pip3命令中添加--no-cache-dir。
RUN pip3 install --extra-index-url {url} -e ${APP_DIR}/.[test] --user --no-cache-dir
该命令可能是在临时文件夹中查找缓存的哈希值。对于其他遇到此错误的人,除添加--no-cache-dir之外,最常见的解决方法似乎是:
python setup.py clean --all并可能运行python setup.py develop