Fabric go sdk初始化所需证书解析

最新推荐文章于 2024-01-16 14:16:04 发布
最新推荐文章于 2024-01-16 14:16:04 发布
阅读量688 收藏 1
点赞数
文章标签: runtime
原文链接:http://www.cnblogs.com/laolieren/p/fabric_cryptogen_certificates_content.html
版权

fabric sdk go 提供的官方文档少之又少,要想入门,主要就靠研究官方的e2e系列示例,这真的是一件挺无奈的事情。没法子,只能硬着头皮上了。研究发现,e2e这个例子是通过cryptogen生成网络所需的所有证书及密钥的。一旦你按着操作后,你会发现你被大堆目录淹没,不知所措,根本不知道他们都是干嘛的。

那么,这篇文章的作用,就是告诉你,他们都是干嘛的,哪些是初始化sdk所需的。

让我们开始吧!

生成证书配置

首先,用于生成证书目录的配置文件crypto-config.yaml内容如下所示

# "OrdererOrgs" - Definition of organizations managing orderer nodes
OrdererOrgs:
  - Name: Mango
    Domain: mango.com
    # Specs is an array of Spec entries.  Each Spec entry consists of two fields : Hostname and CommonName
    Specs:
      - Hostname: orderer
# "PeerOrgs" - Definition of organizations managing peer nodes
PeerOrgs:
  - Name: Mango
    Domain: mango.com
    # Allows for the definition of 1 or more hosts that are created sequentially
    # from a template. By default, this looks like "peer%d" from 0 to Count-1.
    # You may override the number of nodes (Count), the starting index (Start)
    # or the template used to construct the name (Hostname).
    Template:
      Count: 2

证书目录解析

我们根据上述配置来生成证书

mkdir -p crypto-config
./bin/cryptogen generate --config=./crypto-config.yaml

每个目录和对应文件的功能如下:

crypto-config
├── ordererOrganizations
│   └── mango.com # domain
│       ├── ca
│       │   ├── ca.mango.com-cert.pem
│       │   └── ed9854ea794ed178750ab5fff0b8f7a4c4938721e85de25a65e171dac4dadf41_sk
│       ├── msp
│       │   ├── admincerts
│       │   │   └── Admin@mango.com-cert.pem
│       │   ├── cacerts
│       │   │   └── ca.mango.com-cert.pem
│       │   └── tlscacerts
│       │       └── tlsca.mango.com-cert.pem
│       ├── orderers
│       │   └── orderer.mango.com
│       │       ├── msp
│       │       │   ├── admincerts
│       │       │   │   └── Admin@mango.com-cert.pem
│       │       │   ├── cacerts
│       │       │   │   └── ca.mango.com-cert.pem
│       │       │   ├── keystore
│       │       │   │   └── b1ee6269b624746f682843f566dcfdbb9b1318ea36d605becc13843f52d13e2c_sk
│       │       │   ├── signcerts
│       │       │   │   └── orderer.mango.com-cert.pem
│       │       │   └── tlscacerts
│       │       │       └── tlsca.mango.com-cert.pem
│       │       └── tls
│       │           ├── ca.crt
│       │           ├── server.crt
│       │           └── server.key
│       ├── tlsca
│       │   ├── 30fe7e37c6b416049d567b99d07d4d0fca282d28cf51819a8ba9cb12a4b1b5c1_sk
│       │   └── tlsca.mango.com-cert.pem
│       └── users
│           └── Admin@mango.com
│               ├── msp
│               │   ├── admincerts
│               │   │   └── Admin@mango.com-cert.pem
│               │   ├── cacerts
│               │   │   └── ca.mango.com-cert.pem
│               │   ├── keystore
│               │   │   └── 749735ce27f18879efa1ffdf76bf9d800ccb0298c826cee2c2d68217eb731610_sk
│               │   ├── signcerts
│               │   │   └── Admin@mango.com-cert.pem
│               │   └── tlscacerts
│               │       └── tlsca.mango.com-cert.pem
│               └── tls
│                   ├── ca.crt
│                   ├── client.crt
│                   └── client.key
└── peerOrganizations
    └── org1.mango.com
        ├── ca  # 存放组织的根证书和对应的私钥文件,默认采用EC算法,证书为自签名。组织内的实体将基于该证书作为证书根。
        │   ├── 2c3c2cde48c8f1b5eb0fd54e0b1865d6b5bc3269ebba8cb5ac5a7dfbbd303367_sk
        │   └── ca.org1.mango.com-cert.pem
        ├── msp # 存放代表该组织的身份信息。
        │   ├── admincerts # 组织管理员的身份验证证书,被根证书签名。
        │   │   └── Admin@org1.mango.com-cert.pem
        │   ├── cacerts # 组织的根证书,同ca目录下文件。
        │   │   └── ca.org1.mango.com-cert.pem
        │   └── tlscacerts # 用于TLS的ca证书,自签名。
        │       └── tlsca.org1.mango.com-cert.pem
        ├── peers # 存放属于该组织的所有peer节点。
        │   ├── peer0.org1.mango.com # 第一个peer的信息,包括其msp证书和TLS证书两类。
        │   │   ├── msp
        │   │   │   ├── admincerts # 组织管理员的身份验证证书。peer将基于这些证书来认证交易签署这是否为管理员身份。
        │   │   │   │   └── Admin@org1.mango.com-cert.pem
        │   │   │   ├── cacerts # 组织的根证书.
        │   │   │   │   └── ca.org1.mango.com-cert.pem
        │   │   │   ├── keystore # 本节点的身份私钥,用来签名。
        │   │   │   │   └── d35fbb340c84ad06ffd6d58addaf694a62e23adf53066b9a287f86edbf6dd476_sk
        │   │   │   ├── signcerts # 验证本节点签名的证书,被组织根证书签名。
        │   │   │   │   └── peer0.org1.mango.com-cert.pem
        │   │   │   └── tlscacerts # TLS连接用的身份证书,即组织TLS证书。
        │   │   │       └── tlsca.org1.mango.com-cert.pem
        │   │   └── tls # 存放tls相关的证书和私钥
        │   │       ├── ca.crt # 组织的根证书
        │   │       ├── server.crt # 验证本节点签名的证书,被组织根证书签名。
        │   │       └── server.key # 本节点的身份私钥,用来签名。
        │   └── peer1.org1.mango.com # 第二个peer的信息,结构类似。(省略)
        │       ├── msp
        │       │   ├── admincerts
        │       │   │   └── Admin@org1.mango.com-cert.pem
        │       │   ├── cacerts
        │       │   │   └── ca.org1.mango.com-cert.pem 
        │       │   ├── keystore
        │       │   │   └── ecfeefdab7f95113064a00227d7af5cb3ae448ec1334a932f768010b95dc32f3_sk
        │       │   ├── signcerts
        │       │   │   └── peer1.org1.mango.com-cert.pem
        │       │   └── tlscacerts
        │       │       └── tlsca.org1.mango.com-cert.pem
        │       └── tls
        │           ├── ca.crt
        │           ├── server.crt
        │           └── server.key
        ├── tlsca 存放组织tls连接用的根证书和私钥文件。(TLS是传输层安全协议,其实就是SSL,现在叫TLS了)
        │   ├── 65b65931318b4aa19ae15d1da75413c68371d1506237311fc7244c8e46c1ba8a_sk
        │   └── tlsca.org1.mango.com-cert.pem # TLS根证书
        └── users 存放属于该组织的用户的实体。
            └── Admin@org1.mango.com # 管理员用户的信息,包括其msp证书和tls证书两类。
                ├── msp
                │   ├── admincerts # 组织根证书作为管理者身份验证证书。
                │   │   └── Admin@org1.mango.com-cert.pem 
                │   ├── cacerts # 组织的根证书.
                │   │   └── ca.org1.mango.com-cert.pem 
                │   ├── keystore # 本用户的身份私钥,用来签名。
                │   │   └── 22e70042f7dd79f35ea92a285d2377a673163805f85c9bf160c87de82db52a4c_sk
                │   ├── signcerts # 管理员用户的身份验证证书,被组织根证书签名。要被某个Peer认可,则必须放到该peer的msp/admincerts下。
                │   │   └── Admin@org1.mango.com-cert.pem
                │   └── tlscacerts # TLS连接用的身份证书,即组织TLS证书。
                │       └── tlsca.org1.mango.com-cert.pem 
                └── tls # 存放tls相关的证书和私钥
                    ├── ca.crt # 组织的根证书
                    ├── client.crt # 管理员的用户身份验证证书,被组织根证书签名。
                    └── client.key # 管理员用户的身份私钥,用来签名。

证书目录精简

一大堆文件是不是?其实经过分析后,可以发现,很多目录的证书或者密钥都是重复的。真正用到的主要是

  • 组织中 Admin用户的证书和密钥
  • 组织中的tls证书

如果你启用了其他用户,比如User1之类的,就还会有User1@mango.com这样的目录

精简目录

让我们删除多余目录,精简后目录如下所示:

fixtures/crypto/
├── ordererOrganizations
│   └── mango.com
│       ├── tlsca
│          └── tlsca.org1.mango.com-cert.pem
└── peerOrganizations
    └── org1.mango.com
        ├── tlsca
        │   └── tlsca.org1.mango.com-cert.pem
        └── users
            └── Admin@org1.mango.com
                └── msp
                    ├── keystore
                    │   └── 22e70042f7dd79f35ea92a285d2377a673163805f85c9bf160c87de82db52a4c_sk
                    └── signcerts
                        └── Admin@org1.mango.com-cert.pem

怎么样,是不是清爽多了。

证书目录再精简

本节内容依个人业务差异,仅供参考

我们发现证书的路径六面都带有mango.com这样的ID字段,不方便重用,我们可以选择去除这些ID,精简目录。

此外,密钥文件22e70042f7dd79f35ea92a285d2377a673163805f85c9bf160c87de82db52a4c_sk名称前面还有一长串的字符,看上去很奇怪是不是。这个一长串的字符,其实就是ski。我们也可以去除这个ski。

当然,如果你直接去除这些东西,那么sdk会报找不到响应文件的错误,所以我们需要去修改sdk源码。

主要修改的文件如下:

fabric-go-sdk/pkg/msp/filecertstore.go

原先代码
// NewFileCertStore ...
func NewFileCertStore(cryptoConfigMSPPath string) (core.KVStore, error) {
    _, orgName := path.Split(path.Dir(path.Dir(path.Dir(cryptoConfigMSPPath))))
    opts := &keyvaluestore.FileKeyValueStoreOptions{
        Path: cryptoConfigMSPPath,
        KeySerializer: func(key interface{}) (string, error) {
            ck, ok := key.(*msp.IdentityIdentifier)
            if !ok {
                return "", errors.New("converting key to CertKey failed")
            }
            if ck == nil || ck.MSPID == "" || ck.ID == "" {
                return "", errors.New("invalid key")
            }

            // TODO: refactor to case insensitive or remove eventually.
            r := strings.NewReplacer("{userName}", ck.ID, "{username}", ck.ID)
            certDir := path.Join(r.Replace(cryptoConfigMSPPath), "signcerts")
            return path.Join(certDir, fmt.Sprintf("%s@%s-cert.pem", ck.ID, orgName)), nil
        },
    }
    return keyvaluestore.New(opts)
}
修改后代码
// NewFileCertStore ...
func NewFileCertStore(cryptoConfigMSPPath string) (core.KVStore, error) {
    opts := &keyvaluestore.FileKeyValueStoreOptions{
        Path: cryptoConfigMSPPath,
        KeySerializer: func(key interface{}) (string, error) {
            ck, ok := key.(*msp.IdentityIdentifier)
            if !ok {
                return "", errors.New("converting key to CertKey failed")
            }
            if ck == nil || ck.MSPID == "" || ck.ID == "" {
                return "", errors.New("invalid key")
            }
            // TODO: refactor to case insensitive or remove eventually.
            // 文件夹去除Mspid名称
            r := strings.NewReplacer("{userName}", ck.ID)
            certDir := path.Join(r.Replace(cryptoConfigMSPPath), "signcerts")
            // 文件名精简为cert.pem
            return path.Join(certDir, "cert.pem"), nil
        },
    }
    return keyvaluestore.New(opts)
}

fabric-go-sdk/pkg/msp/filecertstore.go

原先代码
// NewFileKeyStore ...
func NewFileKeyStore(cryptoConfigMSPPath string) (core.KVStore, error) {
    opts := &keyvaluestore.FileKeyValueStoreOptions{
        Path: cryptoConfigMSPPath,
        KeySerializer: func(key interface{}) (string, error) {
            pkk, ok := key.(*msp.PrivKeyKey)
            if !ok {
                return "", errors.New("converting key to PrivKeyKey failed")
            }
            if pkk == nil || pkk.MSPID == "" || pkk.ID == "" || pkk.SKI == nil {
                return "", errors.New("invalid key")
            }

            // TODO: refactor to case insensitive or remove eventually.
            r := strings.NewReplacer("{userName}", pkk.ID, "{username}", pkk.ID)
            keyDir := path.Join(r.Replace(cryptoConfigMSPPath), "keystore")

            return path.Join(keyDir, hex.EncodeToString(pkk.SKI)+"_sk"), nil
        },
    }
    return keyvaluestore.New(opts)
}
修改后代码
// NewFileKeyStore ...
func NewFileKeyStore(cryptoConfigMSPPath string) (core.KVStore, error) {
    opts := &keyvaluestore.FileKeyValueStoreOptions{
        Path: cryptoConfigMSPPath,
        KeySerializer: func(key interface{}) (string, error) {
            pkk, ok := key.(*msp.PrivKeyKey)
            if !ok {
                return "", errors.New("converting key to PrivKeyKey failed")
            }
            if pkk == nil || pkk.MSPID == "" || pkk.ID == "" || pkk.SKI == nil {
                return "", errors.New("invalid key")
            }

            // TODO: refactor to case insensitive or remove eventually.
            r := strings.NewReplacer("{userName}", pkk.ID, "{username}", pkk.ID)
            keyDir := path.Join(r.Replace(cryptoConfigMSPPath), "keystore")
            // 文件名统一为_sk
            return path.Join(keyDir, "_sk"), nil
        },
    }
    return keyvaluestore.New(opts)
}

再次精简后的目录

如此修改后,对应的证书目录,我们就可以改成如下所示:

fixtures/crypto/
├── ordererOrganizations
│   └── tlsca
│       └── tlsca-cert.pem
└── peerOrganizations
    ├── tlsca
    │   └── tlsca-cert.pem
    └── users
        └── Admin
            └── msp
                ├── keystore
                │   └── _sk
                └── signcerts
                    └── cert.pem

怎么样,是不是又精简了很多?

初始化SDK配置文件

最后附上相应的初始化sdk所需的config.yaml文件

name: "mango-service-network"
#
# Schema version of the content. Used by the SDK to apply the corresponding parsing rules.
#
version: 1.0.0
#
# The client section used by GO SDK.
#
client:

  # Which organization does this application instance belong to? The value must be the name of an org
  # defined under "organizations"
  organization: org1

  logging:
    level: info

  # Global configuration for peer, event service and orderer timeouts
  # if this this section is omitted, then default values will be used (same values as below)
#  peer:
#    timeout:
#      connection: 10s
#      response: 180s
#      discovery:
#        # Expiry period for discovery service greylist filter
#        # The channel client will greylist peers that are found to be offline
#        # to prevent re-selecting them in subsequent retries.
#        # This interval will define how long a peer is greylisted
#        greylistExpiry: 10s
#  eventService:
#    # Event service type (optional). If not specified then the type is automatically
#    # determined from channel capabilities.
#    type: (deliver|eventhub)
    # the below timeouts are commented out to use the default values that are found in
    # "pkg/fab/endpointconfig.go"
    # the client is free to override the default values by uncommenting and resetting
    # the values as they see fit in their config file
#    timeout:
#      connection: 15s
#      registrationResponse: 15s
#  orderer:
#    timeout:
#      connection: 15s
#      response: 15s
#  global:
#    timeout:
#      query: 180s
#      execute: 180s
#      resmgmt: 180s
#    cache:
#      connectionIdle: 30s
#      eventServiceIdle: 2m
#      channelConfig: 30m
#      channelMembership: 30s
#      discovery: 10s
#      selection: 10m

  # Root of the MSP directories with keys and certs.
  cryptoconfig:
    path: ${GOPATH}/src/github.com/hyperledger/fabric-sdk-go-api/fixtures/crypto

  # Some SDKs support pluggable KV stores, the properties under "credentialStore"
  # are implementation specific
  credentialStore:
    path: /tmp/mango-service-store

    # [Optional]. Specific to the CryptoSuite implementation used by GO SDK. Software-based implementations
    # requiring a key store. PKCS#11 based implementations does not.
    cryptoStore:
      path: /tmp/mango-service-msp

   # BCCSP config for the client. Used by GO SDK.
  BCCSP:
    security:
     enabled: true
     default:
      provider: "SW"
     hashAlgorithm: "SHA2"
     softVerify: true
     level: 256

  tlsCerts:
    # [Optional]. Use system certificate pool when connecting to peers, orderers (for negotiating TLS) Default: false
    systemCertPool: false

    # [Optional]. Client key and cert for TLS handshake with peers and orderers
    client:
      keyfile:
      certfile:

#
# [Optional]. But most apps would have this section so that channel objects can be constructed
# based on the content below. If an app is creating channels, then it likely will not need this
# section.
#
channels:
  # name of the channel
  mychannel:
    # Required. list of orderers designated by the application to use for transactions on this
    # channel. This list can be a result of access control ("org1" can only access "ordererA"), or
    # operational decisions to share loads from applications among the orderers.  The values must
    # be "names" of orgs defined under "organizations/peers"
    # deprecated: not recommended, to override any orderer configuration items, entity matchers should be used.
    # orderers:
    #  - orderer.example.com

    # Required. list of peers from participating orgs
    peers:
      peer0.org1.mango.com:
        # [Optional]. will this peer be sent transaction proposals for endorsement? The peer must
        # have the chaincode installed. The app can also use this property to decide which peers
        # to send the chaincode install request. Default: true
        endorsingPeer: true

        # [Optional]. will this peer be sent query proposals? The peer must have the chaincode
        # installed. The app can also use this property to decide which peers to send the
        # chaincode install request. Default: true
        chaincodeQuery: true

        # [Optional]. will this peer be sent query proposals that do not require chaincodes, like
        # queryBlock(), queryTransaction(), etc. Default: true
        ledgerQuery: true

        # [Optional]. will this peer be the target of the SDK's listener registration? All peers can
        # produce events but the app typically only needs to connect to one to listen to events.
        # Default: true
        eventSource: true

      peer1.org1.mango.com:

    policies:
      #[Optional] options for retrieving channel configuration blocks
      queryChannelConfig:
        #[Optional] min number of success responses (from targets/peers)
        minResponses: 1
        #[Optional] channel config will be retrieved for these number of random targets
        maxTargets: 1
        #[Optional] retry options for query config block
        retryOpts:
          #[Optional] number of retry attempts
          attempts: 5
          #[Optional] the back off interval for the first retry attempt
          initialBackoff: 500ms
          #[Optional] the maximum back off interval for any retry attempt
          maxBackoff: 5s
          #[Optional] he factor by which the initial back off period is exponentially incremented
          backoffFactor: 2.0


#
# list of participating organizations in this network
#
organizations:
  org1:
    mspid: org1.mango.com
    cryptoPath: peerOrganizations/users/{userName}/msp
    peers:
      - peer0.org1.mango.com
      - peer1.org1.mango.com

    # [Optional]. Certificate Authorities issue certificates for identification purposes in a Fabric based
    # network. Typically certificates provisioning is done in a separate process outside of the
    # runtime network. Fabric-CA is a special certificate authority that provides a REST APIs for
    # dynamic certificate management (enroll, revoke, re-enroll). The following section is only for
    # Fabric-CA servers.
    certificateAuthorities:
      - ca.org1.mango.com

#
# List of orderers to send transaction and channel create/update requests to. For the time
# being only one orderer is needed. If more than one is defined, which one get used by the
# SDK is implementation specific. Consult each SDK's documentation for its handling of orderers.
#
orderers:
  orderer.mango.com:
    url: localhost:7050

    # these are standard properties defined by the gRPC library
    # they will be passed in as-is to gRPC client constructor
    grpcOptions:
      ssl-target-name-override: orderer.mango.com
      # These parameters should be set in coordination with the keepalive policy on the server,
      # as incompatible settings can result in closing of connection.
      # When duration of the 'keep-alive-time' is set to 0 or less the keep alive client parameters are disabled
      keep-alive-time: 0s
      keep-alive-timeout: 20s
      keep-alive-permit: false
      fail-fast: false
      # allow-insecure will be taken into consideration if address has no protocol defined, if true then grpc or else grpcs
      allow-insecure: false

    tlsCACerts:
      # Certificate location absolute path
      path: ${GOPATH}/src/github.com/hyperledger/fabric-sdk-go-api/fixtures/crypto/ordererOrganizations/tlsca/tlsca-cert.pem
#
# List of peers to send various requests to, including endorsement, query
# and event listener registration.
#
peers:
  peer0.org1.mango.com:
    # this URL is used to send endorsement and query requests
    url: localhost:7051
    # eventUrl is only needed when using eventhub (default is delivery service)
    eventUrl: localhost:7053

    grpcOptions:
      ssl-target-name-override: peer0.org1.mango.com
      # These parameters should be set in coordination with the keepalive policy on the server,
      # as incompatible settings can result in closing of connection.
      # When duration of the 'keep-alive-time' is set to 0 or less the keep alive client parameters are disabled
      keep-alive-time: 0s
      keep-alive-timeout: 20s
      keep-alive-permit: false
      fail-fast: false
      # allow-insecure will be taken into consideration if address has no protocol defined, if true then grpc or else grpcs
      allow-insecure: false

    tlsCACerts:
      # Certificate location absolute path
      path: ${GOPATH}/src/github.com/hyperledger/fabric-sdk-go-api/fixtures/crypto/peerOrganizations/tlsca/tlsca-cert.pem

  peer1.org1.mango.com:
    # this URL is used to send endorsement and query requests
    url: localhost:8051
    # eventUrl is only needed when using eventhub (default is delivery service)
    eventUrl: localhost:8053

    grpcOptions:
      ssl-target-name-override: peer1.org1.mango.com
      # These parameters should be set in coordination with the keepalive policy on the server,
      # as incompatible settings can result in closing of connection.
      # When duration of the 'keep-alive-time' is set to 0 or less the keep alive client parameters are disabled
      keep-alive-time: 0s
      keep-alive-timeout: 20s
      keep-alive-permit: false
      fail-fast: false
      # allow-insecure will be taken into consideration if address has no protocol defined, if true then grpc or else grpcs
      allow-insecure: false

    tlsCACerts:
      # Certificate location absolute path
      path: ${GOPATH}/src/github.com/hyperledger/fabric-sdk-go-api/fixtures/crypto/peerOrganizations/tlsca/tlsca-cert.pem


entityMatchers:
  peer:
    - pattern: (\w*)peer0.org1.mango.com(\w*)
      urlSubstitutionExp: localhost:7051
      eventUrlSubstitutionExp: localhost:7053
      sslTargetOverrideUrlSubstitutionExp: peer0.org1.mango.com
      mappedHost: peer0.org1.mango.com

    - pattern: (\w*)peer1.org1.mango.com(\w*)
      urlSubstitutionExp: localhost:8051
      eventUrlSubstitutionExp: localhost:8053
      sslTargetOverrideUrlSubstitutionExp: peer1.org1.mango.com
      mappedHost: peer1.org1.mango.com

  orderer:
    - pattern: (\w*)orderer.mango.com(\w*)
      urlSubstitutionExp: localhost:7050
      sslTargetOverrideUrlSubstitutionExp: orderer.mango.com
      mappedHost: orderer.mango.com

当然,这部分内容,也是存在优化空间的,还没研究那么深入,后面有空再改。

参考文章

搭建基于hyperledger fabric的联盟社区(八) --Fabric证书解析

转载于:https://www.cnblogs.com/laolieren/p/fabric_cryptogen_certificates_content.html

dhc8242
关注
  • 0
    点赞
  • 1
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
总结部署fabirc以及调试go sdk 遇到的坑
jinjiangcc
10-31 9624
最近在联调fabirc网络遇到了很多坑,主要是对fabric不够熟悉,所以解决问题的时候即使看到了错误信息,也不能很快的确定具体是那里出现了问题,而且问题确实谷歌不到,所以简单记录一下。 坑1: CA Certificate is not valid, (SN: 234551506279605485472670524472959491447): could not obtain certif...
fabric错误总结
qq_44579341的博客
06-02 2862
总结我在尝鲜fabric网络遇到的错误..只记录我整了挺久的部分 1.could not assemble transaction,err proposal response was not successful,error code 500,msg error starting container:err starting container:API error(404):network _byfn not found 这是peer节点和docker启动的网络不对应,这种情况一般发生在手动启动网络的时
Hyperledger fabric2.4 fabric-SDK-GO开发
qq_28052455的博客
09-12 4167
在实际部署时,一般将Fabric SDK作为API到提供者,为上层应用或对外服务提供Fabric区块链网络底层服务。Fabric SDK本质是一个Fabric基础对象,功能的封装集合和客户端框架实现,旨在方便开发人员快速开发出符合产品业务需求的服务模块。获取 FabricFabric CA 的客户端 SDK 包,SDK 文档可以在下面使用sdk实现创建通道,加入通道,打包链码,安装链码,升级链码等功能。
Hyperledger fabric介绍之fabric-sdk-go入门
最新发布
qq_65114400的博客
01-16 1040
Fabric SDK Go是用于与Hyperledger Fabric网络进行交互的Go语言软件开发工具包(SDK)。它提供了一组功能强大的API和工具,使开发人员能够构建基于Fabric的应用程序、执行交易、查询状态、管理身份等。
Hyperledger Fabric 2.2实战记录(二)
ling的专栏
07-18 3458
四、使用Fabric-SDK-Go调用链码 在Org1的peer上使用SDK 1.安装Fabric-SDK-GO go get github.com/hyperledger/fabric-sdk-go 2.复制Org2的tls证书 mkdir -p ~/work/example/organizations/peerOrganizations/org2.example.com/tlsca cd ~/work/example/organizations/peerOrganizations/org2
fabric-sdk-go调用Fabric-CA详细流程
天草降临的博客
11-06 2397
fabric-sdk-go调用Fabric-CA详细流程
fabric2.x的api的服务(基于fabric go sdk
04-05
fabric2.x的api的服务(基于fabric go sdk
fabric-sdk-go v1.4 与fabric 1.4 链接指南
01-07
首先吐槽一下fabric-sdk-go 项目写的太复杂,无时无刻的闭包函数,太难以阅读了。再加上他的makefile 里面启动的是整个fabric 项目太复杂了。所以我在这里记录下我的项目部署流程。 golang ,docker,docker-compose...
fabric-sdk-go与GIN框架应用.pdf
03-23
fabric-sdk-go与GIN框架应用
Fabric 链码Chaincode 的安装、初始化、调用、升级
01-20
Fabric 链码Chaincode 的安装、初始化、调用、升级  Fabric   chaincode 上一篇文章,我们启动了一个Fabric网络,这篇文章来看看在Fabric网络进行应用的开发。 上一篇文章,我们启动了一个 Fabric 网络,这篇...
fabric-sdk-py:Hyperledger Fabric Python SDK
05-04
面料-SDK-Py Fabric-SDK-Py是Hyperledger Fabric SDK的Python 3.x实现! 当前,它主要支持Fabric 1.4.x版本。前提条件该SDK需要Python3和Libssl pkgs。 如果没有,请运行以下cmd来安装必备组件: 作业系统命令Ubuntu...
hyperledger Fabric 2.3版本使用Go SDK搭建区块浏览器
Rightstar的博客
07-24 9759
前言 作者:Rightstar 微信:Rightstar_ CSDN:https://blog.csdn.net/qq_33886316 掘金:https://juejin.cn/user/2375425082269832 最近使用fabric 的Go SDK搭建了个Go服务器,完整项目还包括链代码的调用以及相关连接配置文件,这里只给出区块链浏览器相关的构建代码。由于百度博客找的资料太少或者又是不全,分享下希望对大家有帮助。 效果图(Vue前端) 部分数据简单地模拟了下 主要功能包括可以查询最新的区块以
fabric-go-sdk-config.yaml
boss2967的博客
02-11 1828
# # Copyright SecureKey Technologies Inc. All Rights Reserved. # # SPDX-License-Identifier: Apache-2.0 # # # Default GO SDK Configuration # # The network connection profile provides client application...
fabric1.4 go sdk 示例
qq_17668519的博客
05-24 3097
首先把这个例子 跑起来 https://hyperledger-fabric.readthedocs.io/en/release-1.4/build_network.html# 成功之后 然后执行 ./byfn.sh down 关闭这个网络 下面开始搭建 基础环境 这些命令 都在 fabric-samples/first-network 这个目录下 执行 export FABRIC_CFG_P...
fabric-SDK-go初探
weixin_44336181的博客
07-27 1629
一.概述 Farbric的Peer节点和Orderer节点都提供了基于GRPC协议(Google开发的远程过程调用RPC)的接口,通过这些接口可以和Peer节点与Orderer节点进行命令/数据交互,为了简化开发,官方提供了多语言版本的SDK 考虑到Golang是Fabric原生的开发语言,FabricFabric-ca,Chaincode都是采用Golang开发的,所以个人还是倾向于学习使用Golang版本的Fabric SDK。 二.安装环境 本文测试环境在mac OS上,在Linux与windows
基于Fabric的简单Web应用
疯狂学习
01-17 5449
基于Fabric的简单Web应用 一、基本环境 Ubuntu 18.04 vim、git docker 19.03.5 docker-compose 1.25.0 Golang1.13.5 Fabric-go-sdk f7ae259 前边的过程中上边的环境都安装好了,就差Fabric-go-sdk,下边就简单说一下与sdk相关的安装: cd $GOPATH/src/github.com/hyp...
mysql blgg_泊gg/Hyperledger-fabric-菜鸟进阶攻略作者代码
weixin_39946274的博客
01-27 694
Hyperledger-fabric-菜鸟进阶攻略作者代码项目实战-基于fabric-go-sdk实现的学历信息征信系统基础环境此应用示例是仅是为了帮助学员入门fabric-go-sdk的完整使用方式,无任何商业价值。本应用实现是在基于 Ubuntu 16.04(推荐) 系统的基础上完成的,但 Hyperledger Fabric 与Mac OS X、Windows和其他Linux发行版相兼容。所...
Fabric-sdk-go的测试案例分析(1)
qq_18807043的博客
09-03 589
Fabric-sdk-go提供了一个e2e测试案例,这个案例共有3个测试包。 这3个测试包的测试顺序如下。第1个包用于创建通道,后面2个以此通道为基础。所以顺序不能颠倒。 以第2个测试包为例,configless测试包初始化,执行代码片段如下。以用户User1创建SDK客户端实例,缺省的通道是mychannel,缺省的组织是org1。 上面这个User1是指在部署网络时,指定的用户列表中的用户名。如下所示。 上面的配置,为org1指定了4个用户,因此,可以使用user1,user2,user3,user4作
Fabric】教程之使用GO-SDK(一)
Moooonk的博客
09-02 3129
整个目录可以分为三个部分,即fabric相关,app相关;其中app分为server后端和web前端。故创建如下文件夹:fixture、app/server和app/web。
fabric java sdk 获得证书文件
05-25
要使用 Fabric Java SDK,您需要获得以下两个证书文件: 1. TLS 证书:用于安全通信。它是一个 X.509 证书,以 PEM 格式存储,并使用 .pem 扩展名。 2. 签名证书和私钥:用于对交易进行数字签名。它们也是 X.509 ...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值