Я пытался следовать руководству по эксплуатации Fabri c CA (https://hyperledger-fabric-ca.readthedocs.io/en/latest/operations_guide.html), и все прошло хорошо, пока я не попытался позволить пиру присоединиться к каналу. У меня постоянно возникает ошибка TLS.
На одноранговом контейнере у меня есть:
peer | 2020-04-16 09:26:11.552 UTC [core.comm] ServerHandshake -> ERRO 09a TLS handshake failed with error remote error: tls: bad certificate server=ChaincodeServer remoteaddress=172.20.0.8:33380
На контейнере cli у меня есть:
Error: error getting endorser client for channel: endorser client failed to connect to peer:7052: failed to create new connection: context deadline exceeded
Есть ли у кого-нибудь идеи по поводу как решить мою проблему? Спасибо!
Вот некоторая информация о моей настройке.
КОНФИГУРАЦИЯ
Используемая версия: 2.0
docker - составить .yml: https://pastebin.com/5wN4zf4W
configtx.yaml: https://pastebin.com/FSZUAsD4
PATHS
В проекте используются следующие пути:
/home/vm/hyperledger: contains the whole project
/home/vm/hyperledger/configuration: contains configtx.yaml and docker-compose.yml files, as well as channel-artifacts folder
/home/vm/hyperledger/network: contains network data
(IN NETWORK FOLDER)
/company: data for the fictious company
(IN COMPANY FOLDER)
/msp: contains admincerts with signcerts/cert.pem of administrator, cacerts with ca-cert.pem of CA and tlscacerts with ca-cert.pem of TLS CA
/orderer: contains msp folder generated by CA, tls-msp folder generated by TLS CA and admincerts folder which contains signcerts/cert.pem of administrator
/orderer2: contains msp folder generated by CA, tls-msp folder generated by TLS CA and admincerts folder which contains signcerts/cert.pem of administrator
/orderer3: contains msp folder generated by CA, tls-msp folder generated by TLS CA and admincerts folder which contains signcerts/cert.pem of administrator
/peer: contains msp folder generated by CA, tls-msp folder generated by TLS CA and admincerts folder which contains signcerts/cert.pem of administrator
/admin (for administrator): contains msp folder generated by CA, tls-msp folder generated by TLS CA and admincerts folder which contains signcerts/cert.pem of administrator (i.e. itself)
Выполненная команда
peer channel join -b channel-artifacts/channel.block
Переменные среды в контейнере CLI при попытке присоединиться к каналу
LANGUAGE=en_US:en
JAVA_TOOL_OPTIONS=-XX:+IgnoreUnrecognizedVMOptions -XX:+UseContainerSupport -XX:+IdleTuningCompactOnIdle -XX:+IdleTuningGcOnIdle
HOSTNAME=6e323a27a7d9
CORE_PEER_TLS_KEY_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/tls-msp/keystore/key.pem
HOME=/root
CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/tls-msp/tlscacerts/tls-0-0-0-0-7050.pem
CORE_PEER_ID=cli
GOROOT=/opt/go
JAVA_VERSION=jdk8u222-b10_openj9-0.15.1
FABRIC_LOGGING_SPEC=debug
TERM=xterm
FABRIC_CFG_PATH=/etc/hyperledger/fabric
PATH=/opt/java/openjdk/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/opt/go/bin:/opt/gopath/bin
LANG=en_US.UTF-8
GOPATH=/opt/gopath
CORE_PEER_LOCALMSPID=CompanyMSP
CORE_VM_ENDPOINT=unix:///host/var/run/docker.sock
CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/admin/msp
LC_ALL=en_US.UTF-8
JAVA_HOME=/opt/java/openjdk
PWD=/opt/gopath/src/github.com/hyperledger/fabric/peer
CORE_PEER_TLS_CERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/tls-msp/signcerts/cert.pem
CORE_PEER_TLS_ENABLED=true
CORE_PEER_ADDRESS=peer:7052