Unable to update Whonix VirtualBox 15.0.0.4.9

whonixfan123 · September 12, 2019, 8:55am

Hi everyone, firstly thanks so much for everything you do. I’m having trouble updating the virtualbox version of whonix (I’ve had this trouble with previous version also.)

Whonixcheck always fails to download updates. I’ve tried, no kidding, probably 10-15 times, including with many times with fresh imports of the .ova. This happens in both gateway and workstation.

If I try to update “manually” using the terminal, there are many errors there also.

Here is the most common error I encounter:

E: Failed to fetch tor+https://cdn-aws.deb.debian.org/debian/dists/buster/main/by-hash/SHA256/b406b8eca3f17b15ba9c54801cc85fa4773c560a0703ef1963d787f53054fdd3  Hash Sum mismatch
   Hashes of expected file:
    - Filesize:36084575 [weak]
    - SHA256:b406b8eca3f17b15ba9c54801cc85fa4773c560a0703ef1963d787f53054fdd3
    - MD5Sum:580784480d1f2e799c6f345f741ef1d6 [weak]
   Hashes of received file:
    - SHA256:28ce0d5ba3774a7a4180f30df2721edecf152faece32b65e3a21058317d422f2
    - MD5Sum:d2d6be2478887495d92e89e131eedf94 [weak]
    - Filesize:36084575 [weak]
   Last modification reported: Sat, 07 Sep 2019 08:39:34 +0000
   Release file created at: Sat, 07 Sep 2019 09:51:20 +0000
E: Some index files failed to download. They have been ignored, or old ones used instead.
user@host:~$

Another:

...    
Get:4 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Packages [10.6 MB]
    Ign:12 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Contents (deb)
    Err:12 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Contents (deb)
      SOCKS proxy socks5h://127.0.0.1:9050 could not connect to cdn-aws.deb.debian.org (0.0.0.0:0) due to: general SOCKS server failure (1) [IP: 127.0.0.1 9050]
    Fetched 367 kB in 5min 41s (1,076 B/s)                                         
    Reading package lists... Done
    E: Failed to fetch tor+https://cdn-aws.deb.debian.org/debian/dists/buster/main/by-hash/SHA256/03ed6f358a3d72cc586dcf6fc262181d3396ca3e31650414d7b087617fbac7f8  SOCKS proxy socks5h://127.0.0.1:9050 could not connect to cdn-aws.deb.debian.org (0.0.0.0:0) due to: general SOCKS server failure (1) [IP: 127.0.0.1 9050]
    E: Some index files failed to download. They have been ignored, or old ones used instead.

Other errors may have occurred but these are the only one I can reproduce at the time.

I’ve tried cleaning apt packages with

apt-get clean
rm -rf /var/lib/apt/lists/*

And no luck.

I’ve tried updating with new tor nodes (via “n” key in nyx) and this doesn’t seem to help. (tried many times)

I’ve even tried “onionizing” the debian and whonix repositories with the instructions from the wiki.

What am I doing wrong??

Any help is very very very appreciated. I want to run Whonix, but I believe for the most secure experience it should be updated.

whonixfan123 · September 14, 2019, 9:28am

Wanted to post update to this thread. Still having trouble updating

first attempt-

...
Get:4 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Packages [10.6 MB]
Get:4 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Packages [10.6 MB]
Get:4 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Packages [10.6 MB]
Fetched 1,561 kB in 2min 46s (9,374 B/s)                                       
Reading package lists... Done
E: Failed to fetch tor+https://cdn-aws.deb.debian.org/debian/dists/buster/main/by-hash/SHA256/03ed6f358a3d72cc586dcf6fc262181d3396ca3e31650414d7b087617fbac7f8  SOCKS proxy socks5h://127.0.0.1:9050 could not connect to cdn-aws.deb.debian.org (0.0.0.0:0) due to: general SOCKS server failure (1) [IP: 127.0.0.1 9050]
E: Some index files failed to download. They have been ignored, or old ones used instead.

second attempt (on new circuit)-

Ign:6 tor+https://cdn-aws.deb.debian.org/debian buster/main amd64 Contents (deb)
Fetched 206 kB in 1min 20s (2,573 B/s)                                         
Reading package lists... Done
E: Failed to fetch tor+https://cdn-aws.deb.debian.org/debian/dists/buster/main/binary-amd64/by-hash/SHA256/9877a27a73796c39a85ab323dd73cf341410526db8d2e6a79a2e3061d20db059  Hash Sum mismatch
   Hashes of expected file:
    - Filesize:7898540 [weak]
    - SHA256:9877a27a73796c39a85ab323dd73cf341410526db8d2e6a79a2e3061d20db059
    - MD5Sum:3d6eb547ee8b7d4cdef5c08986ba223f [weak]
   Hashes of received file:
    - SHA256:85f6a75406fe02841ac3058f27e3889e557627e67ddd3f0378983808ec3a983c
    - MD5Sum:a82b192b3ab62e69f3ab24acf0f21c84 [weak]
    - Filesize:7898540 [weak]
   Last modification reported: Sat, 07 Sep 2019 08:35:20 +0000
   Release file created at: Sat, 07 Sep 2019 09:51:20 +0000
E: Some index files failed to download. They have been ignored, or old ones used instead.

I am at a loss as to what to do at this time. Tips needed! and thank you!

Patrick · September 14, 2019, 12:44pm

Can’t see any mistake on your side.

I don’t have an explanation.

Normally I would think, this isn’t a compromise indicator since attackers who could cause such bugs would usually want to stay undetected (and can avoid detection through such means easily) as per:

Malware, Computer Viruses, Firmware Trojans and Antivirus Scanners - Kicksecure

The only thing coming to my mind is Zersetzung:

Zersetzung - Wikipedia

I hope it’s not that and has some simple technical reason which I don’t know. Sorry that I don’t have any better answer.