Hyperledger Fabric v2.5 多机部署生产网络过程

已于 2024-10-02 18:49:55 修改
阅读量1k 收藏 14
点赞数 16
CC 4.0 BY-SA版权
文章标签: fabric 运维
于 2024-05-03 15:29:17 首次发布
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.youkuaiyun.com/Juno_Swift/article/details/138400093

  本次多机部署将orderer,peer0.org1,peer0.org2三个节点部署分别部署在一台腾讯云服务器上和两台云服务器上,部署节点如下:

f6970afb17791b8cf0987a8f31dfff14.png

注意在云服务器上部署过程中涉及的相关端口安全组的设置。

节点主机名
ordererVM-8-6-ubuntu
org1hecs-143392

org2

hcss-ecs-88c0

部署前的准备

参考Prerequisites — Hyperledger Fabric Docs main documentation进行Docker以及相关的环境部署,Releases · hyperledger/fabric · GitHub 下载v2.5.5的fabric, Releases · hyperledger/fabric-ca · GitHub 下载 v1.5.7 的fabric-ca

将部署fabric, fabric-ca生成的bin文件复制到 /usr/local/中

cp bin/* /usr/local/bin/

通过  vim /etc/hosts 更改每台服务器的网络设置,在该文件后添加:

82.156.214.214 orderer.example.com
124.70.74.28 peer0.org1.example.com
123.60.9.71 peer0.org2.example.com

82.156.214.214 ca.orderer.example.com
124.70.74.28 ca.org1.example.com
123.60.9.71 ca.org2.example.com
 

 生成证书(使用FabricCA)

创建项目目录

三台虚拟机项目目录皆为/home/ubuntu/hyperledger/multinodes (很重要)

在部署生产网络的过程,我们通过部署Fabric CA来颁发用户证书文件。

编写docker-ca.yaml文件

在三台虚拟机的/home/ubuntu/hyperledger/multinodes 目录下都编写docker-ca.yaml文件用于部署环境

vim docker-ca.yaml

orderer

version: '2'

services:
  ca_orderer:
    image: hyperledger/fabric-ca
    environment:
      - FABRIC_CA_HOME=/etc/hyperledger/fabric-ca-server
      - FABRIC_CA_SERVER_CA_NAME=ca-orderer
      - FABRIC_CA_SERVER_TLS_ENABLED=true
      - FABRIC_CA_SERVER_PORT=7054
      - FABRIC_CA_SERVER_CSR_CN=ca-orderer
      - FABRIC_CA_SERVER_CSR_HOSTS=ca.orderer.example.com
    ports:
      - "7054:7054"
    command: sh -c 'fabric-ca-server start -b admin:adminpw -d'
    volumes:
      - ./fabric-ca/ordererOrg:/etc/hyperledger/fabric-ca-server
    container_name: ca_orderer
    extra_hosts:
      - "ca.orderer.example.com:82.156.214.214"
      - "ca.org1.example.com:124.70.74.28"
      - "ca.org2.example.com:123.60.9.71"

 org1

version: '2'

services:
  ca_org1:
    image: hyperledger/fabric-ca
    environment:
      - FABRIC_CA_HOME=/etc/hyperledger/fabric-ca-server
      - FABRIC_CA_SERVER_CA_NAME=ca-org1
      - FABRIC_CA_SERVER_TLS_ENABLED=true
      - FABRIC_CA_SERVER_PORT=7054
      - FABRIC_CA_SERVER_CSR_CN=ca-org1
      - FABRIC_CA_SERVER_CSR_HOSTS=ca.org1.example.com
    ports:
      - "7054:7054"
    command: sh -c 'fabric-ca-server start -b admin:adminpw -d'
    volumes:
      - ./fabric-ca/org1:/etc/hyperledger/fabric-ca-server
    container_name: ca_org1
    extra_hosts:
      - "orderer.example.com:82.156.214.214"
      - "ca.org1.example.com:124.70.74.28"
      - "ca.org2.example.com:123.60.9.71"

 org2

version: '2'

services:
  ca_org2:
    image: hyperledger/fabric-ca
    environment:
      - FABRIC_CA_HOME=/etc/hyperledger/fabric-ca-server
      - FABRIC_CA_SERVER_CA_NAME=ca-org2
      - FABRIC_CA_SERVER_TLS_ENABLED=true
      - FABRIC_CA_SERVER_PORT=7054
      - FABRIC_CA_SERVER_CSR_CN=ca-org2
      - FABRIC_CA_SERVER_CSR_HOSTS=ca.org2.example.com
    ports:
      - "7054:7054"
    command: sh -c 'fabric-ca-server start -b admin:adminpw -d'
    volumes:
      - ./fabric-ca/org2:/etc/hyperledger/fabric-ca-server
    container_name: ca_org2
    extra_hosts:
      - "ca.orderer.example.com:82.156.214.214"
      - "ca.org1.example.com:124.70.74.28"
      - "ca.org2.example.com:123.60.9.71"

运行docker-ca.yaml文件

 

root@hecs-143392:/home/ubuntu/hyperledger/multinodes# vim docker-ca.yaml
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker-compose -f docker-ca.yaml up
Creating ca_org1 ... done

 

root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes#  vim docker-ca.yaml
root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker-compose -f docker-ca.yaml up
Creating network "multinodes_default" with the default driver
Creating ca_org2 ... done

 

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ vim docker-ca.yaml 
ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ docker-compose -f docker-ca.yaml up
Creating ca_orderer ... done

 

root@hecs-143392:~# cd /home/ubuntu/hyperledger/multinodes/
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# ls
docker-ca.yaml  fabric-ca

 

root@hcss-ecs-88c0:~# cd /home/ubuntu/hyperledger/multinodes/
root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# ls
docker-ca.yaml  fabric-ca

 

ubuntu@VM-8-6-ubuntu:~$ cd hyperledger/multinodes/
ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ ls
docker-ca.yaml  fabric-ca
 

 将每台虚拟机生成的fabric-ca的文件分别都部署到其他两台虚拟机中,即fabric-ca 文件夹可以找到org1,org2,orderer这三个文件夹,在三台/home/ubuntu/hyperledger/multinodes文件夹下再创建一个organizations文件夹,并将每虚拟机上的fabric-ca文件夹移入该organizations文件夹中文件夹结构如下所示1a0100a42146dc02ebcbae78a3ab9fba.png

 编写在上图所示文件夹路径/home/ubuntu/hyperledger/multinodes/organizations/fabric-ca下编写registerEnroll.sh脚本文件来生成证书

vim registerEnroll.sh

chmod u+x registerEnroll.sh

 

#!/bin/bash


function createOrg1 {

  echo
   echo "Enroll the CA admin"
  echo
   mkdir -p organizations/peerOrganizations/org1.example.com/

   export FABRIC_CA_CLIENT_HOME=${PWD}/organizations/peerOrganizations/org1.example.com/
#  rm -rf $FABRIC_CA_CLIENT_HOME/fabric-ca-client-config.yaml
#  rm -rf $FABRIC_CA_CLIENT_HOME/msp

  set -x
  fabric-ca-client enroll -u https://admin:adminpw@ca.org1.example.com:7054 --caname ca-org1 --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

  echo 'NodeOUs:
  Enable: true
  ClientOUIdentifier:
    Certificate: cacerts/ca-org1-example-com-7054-ca-org1.pem
    OrganizationalUnitIdentifier: client
  PeerOUIdentifier:
    Certificate: cacerts/ca-org1-example-com-7054-ca-org1.pem
    OrganizationalUnitIdentifier: peer
  AdminOUIdentifier:
    Certificate: cacerts/ca-org1-example-com-7054-ca-org1.pem
    OrganizationalUnitIdentifier: admin
  OrdererOUIdentifier:
    Certificate: cacerts/ca-org1-example-com-7054-ca-org1.pem
    OrganizationalUnitIdentifier: orderer' > ${PWD}/organizations/peerOrganizations/org1.example.com/msp/config.yaml

  echo
   echo "Register peer0"
  echo
  set -x
   fabric-ca-client register --caname ca-org1 --id.name peer0 --id.secret peer0pw --id.type peer --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

  echo
  echo "Register user"
  echo
  set -x
  fabric-ca-client register --caname ca-org1 --id.name user1 --id.secret user1pw --id.type client --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

  echo
  echo "Register the org admin"
  echo
  set -x
  fabric-ca-client register --caname ca-org1 --id.name org1admin --id.secret org1adminpw --id.type admin --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

   mkdir -p organizations/peerOrganizations/org1.example.com/peers
  mkdir -p organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com

  echo
  echo "## Generate the peer0 msp"
  echo
  set -x
   fabric-ca-client enroll -u https://peer0:peer0pw@ca.org1.example.com:7054 --caname ca-org1 -M ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/msp --csr.hosts peer0.org1.example.com --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

  cp ${PWD}/organizations/peerOrganizations/org1.example.com/msp/config.yaml ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/msp/config.yaml

  echo
  echo "## Generate the peer0-tls certificates"
  echo
  set -x
  fabric-ca-client enroll -u https://peer0:peer0pw@ca.org1.example.com:7054 --caname ca-org1 -M ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls --enrollment.profile tls --csr.hosts peer0.org1.example.com --csr.hosts 124.70.74.28 --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x


  cp ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/tlscacerts/* ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt
  cp ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/signcerts/* ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/server.crt
  cp ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/keystore/* ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/server.key

  mkdir -p ${PWD}/organizations/peerOrganizations/org1.example.com/msp/tlscacerts
  cp ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/tlscacerts/* ${PWD}/organizations/peerOrganizations/org1.example.com/msp/tlscacerts/ca.crt

  mkdir -p ${PWD}/organizations/peerOrganizations/org1.example.com/tlsca
  cp ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/tlscacerts/* ${PWD}/organizations/peerOrganizations/org1.example.com/tlsca/tlsca.org1.example.com-cert.pem

  mkdir -p ${PWD}/organizations/peerOrganizations/org1.example.com/ca
  cp ${PWD}/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/msp/cacerts/* ${PWD}/organizations/peerOrganizations/org1.example.com/ca/ca.org1.example.com-cert.pem

  mkdir -p organizations/peerOrganizations/org1.example.com/users
  mkdir -p organizations/peerOrganizations/org1.example.com/users/User1@org1.example.com

  echo
  echo "## Generate the user msp"
  echo
  set -x
   fabric-ca-client enroll -u https://user1:user1pw@ca.org1.example.com:7054 --caname ca-org1 -M ${PWD}/organizations/peerOrganizations/org1.example.com/users/User1@org1.example.com/msp --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

  cp ${PWD}/organizations/peerOrganizations/org1.example.com/msp/config.yaml ${PWD}/organizations/peerOrganizations/org1.example.com/users/User1@org1.example.com/msp/config.yaml

  mkdir -p organizations/peerOrganizations/org1.example.com/users/Admin@org1.example.com

  echo
  echo "## Generate the org admin msp"
  echo
  set -x
   fabric-ca-client enroll -u https://org1admin:org1adminpw@ca.org1.example.com:7054 --caname ca-org1 -M ${PWD}/organizations/peerOrganizations/org1.example.com/users/Admin@org1.example.com/msp --tls.certfiles ${PWD}/org1/tls-cert.pem
  set +x

  cp ${PWD}/organizations/peerOrganizations/org1.example.com/msp/config.yaml ${PWD}/organizations/peerOrganizations/org1.example.com/users/Admin@org1.example.com/msp/config.yaml

}


function createOrg2 {

  echo
   echo "Enroll the CA admin"
  echo
   mkdir -p organizations/peerOrganizations/org2.example.com/

   export FABRIC_CA_CLIENT_HOME=${PWD}/organizations/peerOrganizations/org2.example.com/
#  rm -rf $FABRIC_CA_CLIENT_HOME/fabric-ca-client-config.yaml
#  rm -rf $FABRIC_CA_CLIENT_HOME/msp

  set -x
  fabric-ca-client enroll -u https://admin:adminpw@ca.org2.example.com:7054 --caname ca-org2 --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

  echo 'NodeOUs:
  Enable: true
  ClientOUIdentifier:
    Certificate: cacerts/ca-org2-example-com-7054-ca-org2.pem
    OrganizationalUnitIdentifier: client
  PeerOUIdentifier:
    Certificate: cacerts/ca-org2-example-com-7054-ca-org2.pem
    OrganizationalUnitIdentifier: peer
  AdminOUIdentifier:
    Certificate: cacerts/ca-org2-example-com-7054-ca-org2.pem
    OrganizationalUnitIdentifier: admin
  OrdererOUIdentifier:
    Certificate: cacerts/ca-org2-example-com-7054-ca-org2.pem
    OrganizationalUnitIdentifier: orderer' > ${PWD}/organizations/peerOrganizations/org2.example.com/msp/config.yaml

  echo
   echo "Register peer0"
  echo
  set -x
   fabric-ca-client register --caname ca-org2 --id.name peer0 --id.secret peer0pw --id.type peer --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

  echo
  echo "Register user"
  echo
  set -x
  fabric-ca-client register --caname ca-org2 --id.name user1 --id.secret user1pw --id.type client --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

  echo
  echo "Register the org admin"
  echo
  set -x
  fabric-ca-client register --caname ca-org2 --id.name org2admin --id.secret org2adminpw --id.type admin --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

   mkdir -p organizations/peerOrganizations/org2.example.com/peers
  mkdir -p organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com

  echo
  echo "## Generate the peer0 msp"
  echo
  set -x
   fabric-ca-client enroll -u https://peer0:peer0pw@ca.org2.example.com:7054 --caname ca-org2 -M ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/msp --csr.hosts peer0.org2.example.com --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

  cp ${PWD}/organizations/peerOrganizations/org2.example.com/msp/config.yaml ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/msp/config.yaml

  echo
  echo "## Generate the peer0-tls certificates"
  echo
  set -x
  fabric-ca-client enroll -u https://peer0:peer0pw@ca.org2.example.com:7054 --caname ca-org2 -M ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls --enrollment.profile tls --csr.hosts peer0.org2.example.com --csr.hosts 123.60.9.71 --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x


  cp ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/tlscacerts/* ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt
  cp ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/signcerts/* ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/server.crt
  cp ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/keystore/* ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/server.key

  mkdir -p ${PWD}/organizations/peerOrganizations/org2.example.com/msp/tlscacerts
  cp ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/tlscacerts/* ${PWD}/organizations/peerOrganizations/org2.example.com/msp/tlscacerts/ca.crt

  mkdir -p ${PWD}/organizations/peerOrganizations/org2.example.com/tlsca
  cp ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/tlscacerts/* ${PWD}/organizations/peerOrganizations/org2.example.com/tlsca/tlsca.org2.example.com-cert.pem

  mkdir -p ${PWD}/organizations/peerOrganizations/org2.example.com/ca
  cp ${PWD}/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/msp/cacerts/* ${PWD}/organizations/peerOrganizations/org2.example.com/ca/ca.org2.example.com-cert.pem

  mkdir -p organizations/peerOrganizations/org2.example.com/users
  mkdir -p organizations/peerOrganizations/org2.example.com/users/User1@org2.example.com

  echo
  echo "## Generate the user msp"
  echo
  set -x
   fabric-ca-client enroll -u https://user1:user1pw@ca.org2.example.com:7054 --caname ca-org2 -M ${PWD}/organizations/peerOrganizations/org2.example.com/users/User1@org2.example.com/msp --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

  cp ${PWD}/organizations/peerOrganizations/org2.example.com/msp/config.yaml ${PWD}/organizations/peerOrganizations/org2.example.com/users/User1@org2.example.com/msp/config.yaml

  mkdir -p organizations/peerOrganizations/org2.example.com/users/Admin@org2.example.com

  echo
  echo "## Generate the org admin msp"
  echo
  set -x
   fabric-ca-client enroll -u https://org2admin:org2adminpw@ca.org2.example.com:7054 --caname ca-org2 -M ${PWD}/organizations/peerOrganizations/org2.example.com/users/Admin@org2.example.com/msp --tls.certfiles ${PWD}/org2/tls-cert.pem
  set +x

  cp ${PWD}/organizations/peerOrganizations/org2.example.com/msp/config.yaml ${PWD}/organizations/peerOrganizations/org2.example.com/users/Admin@org2.example.com/msp/config.yaml

}

function createOrderer {

  echo
  echo "Enroll the CA admin"
  echo
  mkdir -p organizations/ordererOrganizations/example.com

  export FABRIC_CA_CLIENT_HOME=${PWD}/organizations/ordererOrganizations/example.com
#  rm -rf $FABRIC_CA_CLIENT_HOME/fabric-ca-client-config.yaml
#  rm -rf $FABRIC_CA_CLIENT_HOME/msp

  set -x
  fabric-ca-client enroll -u https://admin:adminpw@ca.orderer.example.com:7054 --caname ca-orderer --tls.certfiles ${PWD}/ordererOrg/tls-cert.pem
  set +x

  echo 'NodeOUs:
  Enable: true
  ClientOUIdentifier:
    Certificate: cacerts/ca-orderer-example-com-7054-ca-orderer.pem
    OrganizationalUnitIdentifier: client
  PeerOUIdentifier:
    Certificate: cacerts/ca-orderer-example-com-7054-ca-orderer.pem
    OrganizationalUnitIdentifier: peer
  AdminOUIdentifier:
    Certificate: cacerts/ca-orderer-example-com-7054-ca-orderer.pem
    OrganizationalUnitIdentifier: admin
  OrdererOUIdentifier:
    Certificate: cacerts/ca-orderer-example-com-7054-ca-orderer.pem
    OrganizationalUnitIdentifier: orderer' > ${PWD}/organizations/ordererOrganizations/example.com/msp/config.yaml


  echo
  echo "Register orderer"
  echo
  set -x
  fabric-ca-client register --caname ca-orderer --id.name orderer --id.secret ordererpw --id.type orderer --tls.certfiles ${PWD}/ordererOrg/tls-cert.pem
    set +x

  echo
  echo "Register the orderer admin"
  echo
  set -x
  fabric-ca-client register --caname ca-orderer --id.name ordererAdmin --id.secret ordererAdminpw --id.type admin --tls.certfiles ${PWD}/ordererOrg/tls-cert.pem
  set +x

  mkdir -p organizations/ordererOrganizations/example.com/orderers
  mkdir -p organizations/ordererOrganizations/example.com/orderers/example.com

  mkdir -p organizations/ordererOrganizations/example.com/orderers/orderer.example.com

  echo
  echo "## Generate the orderer msp"
  echo
  set -x
  fabric-ca-client enroll -u https://orderer:ordererpw@ca.orderer.example.com:7054 --caname ca-orderer -M ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/msp --csr.hosts orderer.example.com --csr.hosts 82.156.214.214 --tls.certfiles ${PWD}/ordererOrg/tls-cert.pem

  set +x

  cp ${PWD}/organizations/ordererOrganizations/example.com/msp/config.yaml ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/msp/config.yaml


  echo
  echo "## Generate the orderer-tls certificates"
  echo
  set -x
  fabric-ca-client enroll -u https://orderer:ordererpw@ca.orderer.example.com:7054 --caname ca-orderer -M ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls --enrollment.profile tls --csr.hosts orderer.example.com --csr.hosts 82.156.214.214 --tls.certfiles ${PWD}/ordererOrg/tls-cert.pem
  set +x

  cp ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/tlscacerts/* ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/ca.crt
  cp ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/signcerts/* ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/server.crt
  cp ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/keystore/* ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/server.key

  mkdir -p ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts
  cp ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/tlscacerts/* ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem


  mkdir -p ${PWD}/organizations/ordererOrganizations/example.com/msp/tlscacerts
  cp ${PWD}/organizations/ordererOrganizations/example.com/orderers/orderer0.example.com/tls/tlscacerts/* ${PWD}/organizations/ordererOrganizations/example.com/msp/tlscacerts/tlsca.example.com-cert.pem

  mkdir -p organizations/ordererOrganizations/example.com/users
  mkdir -p organizations/ordererOrganizations/example.com/users/Admin@example.com

  echo
  echo "## Generate the admin msp"
  echo
  set -x
  fabric-ca-client enroll -u https://ordererAdmin:ordererAdminpw@ca.orderer.example.com:7054 --caname ca-orderer -M ${PWD}/organizations/ordererOrganizations/example.com/users/Admin@example.com/msp --tls.certfiles ${PWD}/ordererOrg/tls-cert.pem
  set +x

  cp ${PWD}/organizations/ordererOrganizations/example.com/msp/config.yaml ${PWD}/organizations/ordererOrganizations/example.com/users/Admin@example.com/msp/config.yaml
}
createOrg1
createOrg2
createOrderer
 

注意其中虚拟机的ip的更改

 在其中一台虚拟机上运行脚本 

./registerEnroll.sh

 将生成文件夹复制到另外两台虚拟机上(注意/home/ubuntu/hyperledger/multinodes/organizations/fabric-ca/organizations/ordererOrganizations/example.com/msp/tlscacerts中若缺少pem文件,可以将/home/ubuntu/hyperledger/multinodes/organizations/fabric-ca/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts 中的pem文件复制到该文件夹下)

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ scp -r ./organizations/fabric-ca/organizations/ordererOrganizations root@123.60.9.71:/home/ubuntu/hyperledger/multinodes/organizations/fabric-ca/organizations/

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ scp -r ./organizations/fabric-ca/organizations/ordererOrganizations root@82.156.214.214:/home/ubuntu/hyperledger/multinodes/organizations/fabric-ca/organizations/

生成通道文件(Orderer节点的虚拟机上运行)

创世块文件的编写

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ vim configtx.yaml

---
Organizations:

    - &OrdererOrg

        Name: OrdererOrg
        ID: OrdererMSP
        MSPDir: ./organizations/fabric-ca/organizations/ordererOrganizations/example.com/msp
        Policies:
            Readers:
                Type: Signature
                Rule: "OR('OrdererMSP.member')"
            Writers:
                Type: Signature
                Rule: "OR('OrdererMSP.member')"
            Admins:
                Type: Signature
                Rule: "OR('OrdererMSP.admin')"
        OrdererEndpoints:
            - orderer.example.com:7050

    - &Org1
   
        Name: Org1MSP
        ID: Org1MSP
        MSPDir: ./organizations/fabric-ca/organizations/peerOrganizations/org1.example.com/msp
        Policies:
            Readers:
                Type: Signature
                Rule: "OR('Org1MSP.admin', 'Org1MSP.peer', 'Org1MSP.client')"
            Writers:
                Type: Signature
                Rule: "OR('Org1MSP.admin', 'Org1MSP.client')"
            Admins:
                Type: Signature
                Rule: "OR('Org1MSP.admin')"
            Endorsement:
                Type: Signature
                Rule: "OR('Org1MSP.peer')"
        AnchorPeers:
            - Host: peer0.org1.example.com
              Port: 7051

    - &Org2
    
        Name: Org2MSP
        ID: Org2MSP
        MSPDir: ./organizations/fabric-ca/organizations/peerOrganizations/org2.example.com/msp
        Policies:
            Readers:
                Type: Signature
                Rule: "OR('Org2MSP.admin', 'Org2MSP.peer', 'Org2MSP.client')"
            Writers:
                Type: Signature
                Rule: "OR('Org2MSP.admin', 'Org2MSP.client')"
            Admins:
                Type: Signature
                Rule: "OR('Org2MSP.admin')"
            Endorsement:
                Type: Signature
                Rule: "OR('Org2MSP.peer')"

        AnchorPeers:
            - Host: peer0.org2.example.com
              Port: 7051
#Port:9051

Capabilities:

    Channel: &ChannelCapabilities

        V2_0: true

    Orderer: &OrdererCapabilities

        V2_0: true

    Application: &ApplicationCapabilities

        V2_0: true

Application: &ApplicationDefaults

    Organizations:

    Policies:
        Readers:
            Type: ImplicitMeta
            Rule: "ANY Readers"
        Writers:
            Type: ImplicitMeta
            Rule: "ANY Writers"
        Admins:
            Type: ImplicitMeta
            Rule: "MAJORITY Admins"
        LifecycleEndorsement:
            Type: ImplicitMeta
            Rule: "MAJORITY Endorsement"
        Endorsement:
            Type: ImplicitMeta
            Rule: "MAJORITY Endorsement"

    Capabilities:
        <<: *ApplicationCapabilities

Orderer: &OrdererDefaults

    OrdererType: solo 

    Addresses:
        - orderer.example.com:7050

    EtcdRaft:
        Consenters:
        - Host: orderer.example.com
          Port: 7050
          ClientTLSCert: /home/ubuntu/hyperledger/multinodes/organizations/fabric-ca/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls//server.crt
          ServerTLSCert: /home/ubuntu/hyperledger/multinodes/organizations/fabric-ca/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/server.crt

    BatchTimeout: 2s
    BatchSize:
        MaxMessageCount: 10
        AbsoluteMaxBytes: 99 MB
        PreferredMaxBytes: 512 KB

    Organizations:

    Policies:
        Readers:
            Type: ImplicitMeta
            Rule: "ANY Readers"
        Writers:
            Type: ImplicitMeta
            Rule: "ANY Writers"
        Admins:
            Type: ImplicitMeta
            Rule: "MAJORITY Admins"
      
        BlockValidation:
            Type: ImplicitMeta
            Rule: "ANY Writers"


Channel: &ChannelDefaults

    Policies:
       
        Readers:
            Type: ImplicitMeta
            Rule: "ANY Readers"
        Writers:
            Type: ImplicitMeta
            Rule: "ANY Writers"
        Admins:
            Type: ImplicitMeta
            Rule: "MAJORITY Admins"

    
    Capabilities:
        <<: *ChannelCapabilities

Profiles:

    TwoOrgsOrdererGenesis:
        <<: *ChannelDefaults
        Orderer:
            <<: *OrdererDefaults
            Organizations:
                - *OrdererOrg
            Capabilities:
                <<: *OrdererCapabilities
        Consortiums:
            SampleConsortium:
                Organizations:
                    - *Org1
                    - *Org2
    TwoOrgsChannel:
        Consortium: SampleConsortium
        <<: *ChannelDefaults
        Application:
            <<: *ApplicationDefaults
            Organizations:
                - *Org1
                - *Org2
            Capabilities:
                <<: *ApplicationCapabilities

生成创世块文件和通道文件

生成创世区块和通道文件

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ configtxgen -profile TwoOrgsOrdererGenesis -channelID fabric-channel -outputBlock ./channel-artifacts/genesis.block
2024-04-06 00:15:57.776 CST 0001 INFO [common.tools.configtxgen] main -> Loading configuration
2024-04-06 00:15:57.784 CST 0002 INFO [common.tools.configtxgen.localconfig] completeInitialization -> orderer type: solo
2024-04-06 00:15:57.784 CST 0003 INFO [common.tools.configtxgen.localconfig] Load -> Loaded configuration: configtx.yaml
2024-04-06 00:15:57.787 CST 0004 INFO [common.tools.configtxgen] doOutputBlock -> Generating genesis block
2024-04-06 00:15:57.787 CST 0005 INFO [common.tools.configtxgen] doOutputBlock -> Creating system channel genesis block
2024-04-06 00:15:57.788 CST 0006 INFO [common.tools.configtxgen] doOutputBlock -> Writing genesis block

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ configtxgen -profile TwoOrgsChannel -outputCreateChannelTx ./channel-artifacts/channel.tx -channelID mychannel
2024-04-06 00:17:26.984 CST 0001 INFO [common.tools.configtxgen] main -> Loading configuration
2024-04-06 00:17:26.991 CST 0002 INFO [common.tools.configtxgen.localconfig] Load -> Loaded configuration: configtx.yaml
2024-04-06 00:17:26.991 CST 0003 INFO [common.tools.configtxgen] doOutputChannelCreateTx -> Generating new channel configtx
2024-04-06 00:17:26.995 CST 0004 INFO [common.tools.configtxgen] doOutputChannelCreateTx -> Writing new channel tx

为org1和org2定义锚节点

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ configtxgen -profile TwoOrgsChannel -outputAnchorPeersUpdate ./channel-artifacts/Org1MSPanchors.tx -channelID mychannel -asOrg Org1MSP
2024-04-06 00:20:54.931 CST 0001 INFO [common.tools.configtxgen] main -> Loading configuration
2024-04-06 00:20:54.940 CST 0002 INFO [common.tools.configtxgen.localconfig] Load -> Loaded configuration: configtx.yaml
2024-04-06 00:20:54.940 CST 0003 INFO [common.tools.configtxgen] doOutputAnchorPeersUpdate -> Generating anchor peer update
2024-04-06 00:20:54.943 CST 0004 INFO [common.tools.configtxgen] doOutputAnchorPeersUpdate -> Writing anchor peer update
ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ configtxgen -profile TwoOrgsChannel -outputAnchorPeersUpdate ./channel-artifacts/Org2MSPanchors.tx -channelID mychannel -asOrg Org2MSP
2024-04-06 00:21:05.633 CST 0001 INFO [common.tools.configtxgen] main -> Loading configuration
2024-04-06 00:21:05.643 CST 0002 INFO [common.tools.configtxgen.localconfig] Load -> Loaded configuration: configtx.yaml
2024-04-06 00:21:05.643 CST 0003 INFO [common.tools.configtxgen] doOutputAnchorPeersUpdate -> Generating anchor peer update
2024-04-06 00:21:05.647 CST 0004 INFO [common.tools.configtxgen] doOutputAnchorPeersUpdate -> Writing anchor peer update
 

将生成的文件拷贝到另外两台主机上

 scp -r ./channel-artifacts root@124.70.74.28:/home/ubuntu/hyperledger/multinodes/
scp -r ./channel-artifacts root@123.60.9.71:/home/ubuntu/hyperledger/multinodes/
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# ls
channel-artifacts  crypto-config
root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# ls
channel-artifacts  crypto-config

 docker-compose 文件的编写

orderer节点

version: '2'

services:
  orderer.example.com:
    container_name: orderer.example.com
    image: hyperledger/fabric-orderer
    environment:
      - FABRIC_LOGGING_SPEC=INFO
      - ORDERER_GENERAL_LISTENADDRESS=0.0.0.0
      - ORDERER_GENERAL_LISTENPORT=7050
      - ORDERER_GENERAL_GENESISMETHOD=file
      - ORDERER_GENERAL_GENESISFILE=/var/hyperledger/orderer/orderer.genesis.block
      - ORDERER_GENERAL_LOCALMSPID=OrdererMSP
      - ORDERER_GENERAL_LOCALMSPDIR=/var/hyperledger/orderer/msp
      - ORDERER_GENERAL_TLS_ENABLED=true
      - ORDERER_GENERAL_TLS_PRIVATEKEY=/var/hyperledger/orderer/tls/server.key
      - ORDERER_GENERAL_TLS_CERTIFICATE=/var/hyperledger/orderer/tls/server.crt
      - ORDERER_GENERAL_TLS_ROOTCAS=[/var/hyperledger/orderer/tls/ca.crt]
      - ORDERER_KAFKA_TOPIC_REPLICATIONFACTOR=1
      - ORDERER_KAFKA_VERBOSE=true
      - ORDERER_GENERAL_CLUSTER_CLIENTCERTIFICATE=/var/hyperledger/orderer/tls/server.crt
      - ORDERER_GENERAL_CLUSTER_CLIENTPRIVATEKEY=/var/hyperledger/orderer/tls/server.key
      - ORDERER_GENERAL_CLUSTER_ROOTCAS=[/var/hyperledger/orderer/tls/ca.crt]
    working_dir: /opt/gopath/src/github.com/hyperledger/fabric
    command: orderer
    volumes:
      - ./channel-artifacts/genesis.block:/var/hyperledger/orderer/orderer.genesis.block
      - ./organizations/fabric-ca/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/msp:/var/hyperledger/orderer/msp
      - ./organizations/fabric-ca/organizations/ordererOrganizations/example.com/orderers/orderer.example.com/tls/:/var/hyperledger/orderer/tls
    ports:
      - 7050:7050
    extra_hosts:
      - "orderer.example.com:82.156.214.214"
      - "peer0.org1.example.com:124.70.74.28"
      - "peer0.org2.example.com:123.60.9.71"
 

 

 Org1节点

version: '2'

services:
  couchdb0.org1.example.com:
    container_name: couchdb0.org1.example.com
    image: couchdb:3.1
    environment:
      - COUCHDB_USER=admin
      - COUCHDB_PASSWORD=adminpw
    ports:
      - 5984:5984

  peer0.org1.example.com:
    container_name: peer0.org1.example.com
    image: hyperledger/fabric-peer
    environment:
      - CORE_VM_ENDPOINT=unix:///host/var/run/docker.sock
      - CORE_PEER_ID=peer0.org1.example.com
      - CORE_PEER_ADDRESS=peer0.org1.example.com:7051
      - CORE_PEER_LISTENADDRESS=0.0.0.0:7051
      - CORE_PEER_CHAINCODEADDRESS=peer0.org1.example.com:7052
      - CORE_PEER_CHAINCODELISTENADDRESS=0.0.0.0:7052
      - CORE_PEER_GOSSIP_BOOTSTRAP=peer0.org1.example.com:7051
      - CORE_PEER_GOSSIP_EXTERNALENDPOINT=peer0.org1.example.com:7051
      - CORE_PEER_LOCALMSPID=Org1MSP
      - FABRIC_LOGGING_SPEC=INFO
      - CORE_PEER_TLS_ENABLED=true
      - CORE_PEER_GOSSIP_USELEADERELECTION=true
      - CORE_PEER_GOSSIP_ORGLEADER=false
      - CORE_PEER_PROFILE_ENABLED=true
      - CORE_PEER_TLS_CERT_FILE=/etc/hyperledger/fabric/tls/server.crt
      - CORE_PEER_TLS_KEY_FILE=/etc/hyperledger/fabric/tls/server.key
      - CORE_PEER_TLS_ROOTCERT_FILE=/etc/hyperledger/fabric/tls/ca.crt
      - CORE_PEER_MSPCONFIGPATH=/etc/hyperledger/fabric/msp
      - CORE_CHAINCODE_EXECUTETIMEOUT=300s
      - CORE_LEDGER_STATE_STATEDATABASE=CouchDB
      - CORE_LEDGER_STATE_COUCHDBCONFIG_COUCHDBADDRESS=couchdb0.org1.example.com:5984
      - CORE_LEDGER_STATE_COUCHDBCONFIG_USERNAME=admin
      - CORE_LEDGER_STATE_COUCHDBCONFIG_PASSWORD=adminpw
    depends_on:
      - couchdb0.org1.example.com

    working_dir: /opt/gopath/src/github.com/hyperledger/fabric/peer
    command: peer node start
    volumes:
      - /var/run/:/host/var/run/
      - ./organizations/fabric-ca/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/msp:/etc/hyperledger/fabric/msp
      - ./organizations/fabric-ca/organizations/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls:/etc/hyperledger/fabric/tls
    ports:
      - 7051:7051
      - 7052:7052
      - 7053:7053
    extra_hosts:
      - "orderer.example.com:82.156.214.214"
      - "peer0.org1.example.com:124.70.74.28"
      - "peer0.org2.example.com:123.60.9.71"
  cli:
    container_name: cli
    image: hyperledger/fabric-tools
    tty: true
    stdin_open: true
    environment:
      - GOPATH=/opt/gopath
      - CORE_VM_ENDPOINT=unix:///host/var/run/docker.sock
      - FABRIC_LOGGING_SPEC=INFO
      - CORE_PEER_ID=cli
      - CORE_PEER_ADDRESS=peer0.org1.example.com:7051
      - CORE_PEER_LOCALMSPID=Org1MSP
      - CORE_PEER_TLS_ENABLED=true
      - CORE_PEER_TLS_CERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/server.crt
      - CORE_PEER_TLS_KEY_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/server.key
      - CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt
      - CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/users/Admin@org1.example.com/msp
    working_dir: /opt/gopath/src/github.com/hyperledger/fabric/peer
    command: /bin/bash
    volumes:
      - /var/run/:/host/var/run/
      - ./chaincode/go/:/opt/gopath/src/github.com/hyperledger/fabric-cluster/chaincode/go
      - ./organizations/fabric-ca/organizations:/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/
      - ./channel-artifacts:/opt/gopath/src/github.com/hyperledger/fabric/peer/channel-artifacts
    extra_hosts:
      - "orderer.example.com:82.156.214.214"
      - "peer0.org1.example.com:124.70.74.28"
      - "peer0.org2.example.com:123.60.9.71"

Org2节点

 

version: '2'

services:
  couchdb0.org2.example.com:
    container_name: couchdb0.org2.example.com
    image: couchdb:3.1
    environment:
      - COUCHDB_USER=admin
      - COUCHDB_PASSWORD=adminpw
    ports:
      - 5984:5984

  peer0.org2.example.com:
    container_name: peer0.org2.example.com
    image: hyperledger/fabric-peer
    environment:
      - CORE_VM_ENDPOINT=unix:///host/var/run/docker.sock
      - CORE_PEER_ID=peer0.org2.example.com
      - CORE_PEER_ADDRESS=peer0.org2.example.com:7051
      - CORE_PEER_LISTENADDRESS=0.0.0.0:7051
      - CORE_PEER_CHAINCODEADDRESS=peer0.org2.example.com:7052
      - CORE_PEER_CHAINCODELISTENADDRESS=0.0.0.0:7052
      - CORE_PEER_GOSSIP_BOOTSTRAP=peer0.org2.example.com:7051
      - CORE_PEER_GOSSIP_EXTERNALENDPOINT=peer0.org2.example.com:7051
      - CORE_PEER_LOCALMSPID=Org2MSP
      - FABRIC_LOGGING_SPEC=INFO
      - CORE_PEER_TLS_ENABLED=true
      - CORE_PEER_GOSSIP_USELEADERELECTION=true
      - CORE_PEER_GOSSIP_ORGLEADER=false
      - CORE_PEER_PROFILE_ENABLED=true
      - CORE_PEER_TLS_CERT_FILE=/etc/hyperledger/fabric/tls/server.crt
      - CORE_PEER_TLS_KEY_FILE=/etc/hyperledger/fabric/tls/server.key
      - CORE_PEER_TLS_ROOTCERT_FILE=/etc/hyperledger/fabric/tls/ca.crt
      - CORE_PEER_MSPCONFIGPATH=/etc/hyperledger/fabric/msp
      - CORE_CHAINCODE_EXECUTETIMEOUT=300s
      - CORE_LEDGER_STATE_STATEDATABASE=CouchDB
      - CORE_LEDGER_STATE_COUCHDBCONFIG_COUCHDBADDRESS=couchdb0.org2.example.com:5984
      - CORE_LEDGER_STATE_COUCHDBCONFIG_USERNAME=admin
      - CORE_LEDGER_STATE_COUCHDBCONFIG_PASSWORD=adminpw
    depends_on:
      - couchdb0.org2.example.com

    working_dir: /opt/gopath/src/github.com/hyperledger/fabric/peer
    command: peer node start
    volumes:
      - /var/run/:/host/var/run/
      - ./organizations/fabric-ca/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/msp:/etc/hyperledger/fabric/msp
      - ./organizations/fabric-ca/organizations/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls:/etc/hyperledger/fabric/tls
    ports:
      - 7051:7051
      - 7052:7052
      - 7053:7053
    extra_hosts:
      - "orderer.example.com:82.156.214.214"
      - "peer0.org1.example.com:124.70.74.28"
      - "peer0.org2.example.com:123.60.9.71"
  cli:
    container_name: cli
    image: hyperledger/fabric-tools
    tty: true
    stdin_open: true
    environment:
      - GOPATH=/opt/gopath
      - CORE_VM_ENDPOINT=unix:///host/var/run/docker.sock
      - FABRIC_LOGGING_SPEC=INFO
      - CORE_PEER_ID=cli
      - CORE_PEER_ADDRESS=peer0.org2.example.com:7051
      - CORE_PEER_LOCALMSPID=Org2MSP
      - CORE_PEER_TLS_ENABLED=true
      - CORE_PEER_TLS_CERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/server.crt
      - CORE_PEER_TLS_KEY_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/server.key
      - CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt
      - CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/Admin@org2.example.com/msp
    working_dir: /opt/gopath/src/github.com/hyperledger/fabric/peer
    command: /bin/bash
    volumes:
      - /var/run/:/host/var/run/
      - ./chaincode/go/:/opt/gopath/src/github.com/hyperledger/fabric-cluster/chaincode/go
      - ./organizations/fabric-ca/organizations:/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/
      - ./channel-artifacts:/opt/gopath/src/github.com/hyperledger/fabric/peer/channel-artifacts
    extra_hosts:
      - "orderer.example.com:82.156.214.214"
      - "peer0.org1.example.com:124.70.74.28"
      - "peer0.org2.example.com:123.60.9.71"
 

 

 启动服务

ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ docker-compose up -d
Creating network "multinodes_default" with the default driver
Creating orderer.example.com ... done
ubuntu@VM-8-6-ubuntu:~/hyperledger/multinodes$ docker ps -a
CONTAINER ID   IMAGE                        COMMAND     CREATED         STATUS         PORTS                                       NAMES
a1051ae973e0   hyperledger/fabric-orderer   "orderer"   8 seconds ago   Up 7 seconds   0.0.0.0:7050->7050/tcp, :::7050->7050/tcp   orderer.example.com

root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker-compose up -d
Creating network "multinodes_default" with the default driver
Creating couchdb0.org2.example.com ... done
Creating cli                       ... done
Creating peer0.org2.example.com    ... done
root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker ps -a
CONTAINER ID   IMAGE                      COMMAND                  CREATED          STATUS          PORTS                                                           NAMES
dc76998643a3   hyperledger/fabric-peer    "peer node start"        12 seconds ago   Up 11 seconds   0.0.0.0:7051-7053->7051-7053/tcp, :::7051-7053->7051-7053/tcp   peer0.org2.example.com
e31e6502c707   couchdb:3.1                "tini -- /docker-ent…"   12 seconds ago   Up 12 seconds   4369/tcp, 9100/tcp, 0.0.0.0:5984->5984/tcp, :::5984->5984/tcp   couchdb0.org2.example.com
1a1e6d13102e   hyperledger/fabric-tools   "/bin/bash"              12 seconds ago   Up 12 seconds                                                                   cli

root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker-compose up -d
Creating network "multinodes_default" with the default driver
Creating cli                       ... done
Creating couchdb0.org1.example.com ... done
Creating peer0.org1.example.com    ... done
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker ps -a
CONTAINER ID   IMAGE                      COMMAND                  CREATED          STATUS          PORTS                                                           NAMES
a32830323b64   hyperledger/fabric-peer    "peer node start"        11 seconds ago   Up 9 seconds    0.0.0.0:7051-7053->7051-7053/tcp, :::7051-7053->7051-7053/tcp   peer0.org1.example.com
e24652f9504b   couchdb:3.1                "tini -- /docker-ent…"   11 seconds ago   Up 10 seconds   4369/tcp, 9100/tcp, 0.0.0.0:5984->5984/tcp, :::5984->5984/tcp   couchdb0.org1.example.com
eac605b80437   hyperledger/fabric-tools   "/bin/bash"              11 seconds ago   Up 10 seconds                                                                   cli

通道操作 

创建通道

root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker exec -it cli bash
root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer channel create -o orderer.example.com:7050 -c mychannel -f ./channel-artifacts/channel.tx --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/msp/tlscacerts/tlsca.example.com-cert.pem
2024-04-05 16:39:18.291 UTC 0001 INFO [channelCmd] InitCmdFactory -> Endorser and orderer connections initialized
2024-04-05 16:39:18.352 UTC 0002 INFO [cli.common] readBlock -> Received block: 0
root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# ls
channel-artifacts  crypto  mychannel.block
root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# exit
exit
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker cp cli:/opt/gopath/src/github.com/hyperledger/fabric/peer/mychannel.block ./
Successfully copied 22.5kB to /home/ubuntu/hyperledger/multinodes/./
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# scp mychannel.block root@123.60.9.71:/home/ubuntu/hyperledger/multinodes/
root@123.60.9.71's password: 
Permission denied, please try again.
root@123.60.9.71's password: 
mychannel.block                                         100%   20KB 362.3KB/s   00:00    

root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker cp mychannel.block cli:/opt/gopath/src/github.com/hyperledger/fabric/peer/
Successfully copied 22.5kB to cli:/opt/gopath/src/github.com/hyperledger/fabric/peer/

加入通道

root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker exec -it cli bash
root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer channel join -b mychannel.block
2024-04-05 16:44:53.715 UTC 0001 INFO [channelCmd] InitCmdFactory -> Endorser and orderer connections initialized
2024-04-05 16:44:53.878 UTC 0002 INFO [channelCmd] executeJoin -> Successfully submitted proposal to join channel

root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker exec -it cli bash
root@1a1e6d13102e:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer channel join -b mychannel.block
2024-04-05 16:45:23.574 UTC 0001 INFO [channelCmd] InitCmdFactory -> Endorser and orderer connections initialized
2024-04-05 16:45:23.726 UTC 0002 INFO [channelCmd] executeJoin -> Successfully submitted proposal to join channel

更新锚节点

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer channel update -o orderer.example.com:7050 -c mychannel -f ./channel-artifacts/Org1MSPanchors.tx --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem
2024-04-05 16:47:02.193 UTC 0001 INFO [channelCmd] InitCmdFactory -> Endorser and orderer connections initialized
2024-04-05 16:47:02.221 UTC 0002 INFO [channelCmd] update -> Successfully submitted channel update

root@1a1e6d13102e:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer channel update -o orderer.example.com:7050 -c mychannel -f ./channel-artifacts/Org2MSPanchors.tx --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem
2024-04-05 16:47:26.539 UTC 0001 INFO [channelCmd] InitCmdFactory -> Endorser and orderer connections initialized
2024-04-05 16:47:26.663 UTC 0002 INFO [channelCmd] update -> Successfully submitted channel update
 

安装调用智能合约

链码文件放在/home/ubuntu/hyperledger/codechain/sacc/ 中,将链码文件传入 /home/ubuntu/hyperledger/multinodes/chaincode/go,进行智能合约的安装调用,提交链码使注意链码的编号要写下载时的id

root@hecs-143392:/home/ubuntu/hyperledger/multinodes# cp -r /home/ubuntu/hyperledger/codechain/sacc/ /home/ubuntu/hyperledger/multinodes/chaincode/go/
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# cd chaincode/go
root@hecs-143392:/home/ubuntu/hyperledger/multinodes/chaincode/go# ls
sacc

root@hecs-143392:/home/ubuntu/hyperledger/multinodes/chaincode/go/sacc# ls
index.js  lib  node_modules  package.json  package-lock.json  test

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode package sacc.tar.gz  --path /opt/gopath/src/github.com/hyperledger/fabric-cluster/chaincode/go/sacc/ --lang node  --label sacc_1
root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# ls
channel-artifacts  crypto  mychannel.block  sacc.tar.gz

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# exit
exit
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker cp cli:/opt/gopath/src/github.com/hyperledger/fabric/peer/sacc.tar.gz ./
Successfully copied 103kB to /home/ubuntu/hyperledger/multinodes/./
root@hecs-143392:/home/ubuntu/hyperledger/multinodes# scp sacc.tar.gz root@123.60.9.71:/home/ubuntu/hyperledger/multinodes/
root@123.60.9.71's password: 
sacc.tar.gz                                                                      100%   99KB 909.2KB/s   00:00    

root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker cp /home/ubuntu/hyperledger/multinodes/sacc.tar.gz cli:/opt/gopath/src/github.com/hyperledger/fabric/peer
Successfully copied 103kB to cli:/opt/gopath/src/github.com/hyperledger/fabric/peer

root@hecs-143392:/home/ubuntu/hyperledger/multinodes# docker exec -it cli bash
root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode install sacc.tar.gz
2024-04-05 17:13:30.243 UTC 0001 INFO [cli.lifecycle.chaincode] submitInstallProposal -> Installed remotely: response:<status:200 payload:"\nGsacc_1:f8b85cb0fca2b1a9694c9b415fe59a913cd81b1990dcd91153f77c77fa792b08\022\006sacc_1" > 
2024-04-05 17:13:30.243 UTC 0002 INFO [cli.lifecycle.chaincode] submitInstallProposal -> Chaincode code package identifier: sacc_1:f8b85cb0fca2b1a9694c9b415fe59a913cd81b1990dcd91153f77c77fa792b08

root@hcss-ecs-88c0:/home/ubuntu/hyperledger/multinodes# docker exec -it cli bash
root@1a1e6d13102e:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode install sacc.tar.gz
2024-04-05 17:14:09.082 UTC 0001 INFO [cli.lifecycle.chaincode] submitInstallProposal -> Installed remotely: response:<status:200 payload:"\nGsacc_1:f8b85cb0fca2b1a9694c9b415fe59a913cd81b1990dcd91153f77c77fa792b08\022\006sacc_1" > 
2024-04-05 17:14:09.083 UTC 0002 INFO [cli.lifecycle.chaincode] submitInstallProposal -> Chaincode code package identifier: sacc_1:f8b85cb0fca2b1a9694c9b415fe59a913cd81b1990dcd91153f77c77fa792b08

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode approveformyorg --channelID mychannel --name sacc --version 1.0 --init-required --package-id sacc_1:f8b85cb0fca2b1a9694c9b415fe59a913cd81b1990dcd91153f77c77fa792b08 --sequence 1 --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem
2024-04-05 17:16:08.238 UTC 0001 INFO [cli.lifecycle.chaincode] setOrdererClient -> Retrieved channel (mychannel) orderer endpoint: orderer.example.com:7050
2024-04-05 17:16:10.428 UTC 0002 INFO [chaincodeCmd] ClientWait -> txid [2e15a9773e2931bb0b566d84af8c5751f4545022cbebfd0061715653320b5375] committed with status (VALID) at peer0.org1.example.com:7051

root@1a1e6d13102e:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode approveformyorg --channelID mychannel --name sacc --version 1.0 --init-required --package-id sacc_1:f8b85cb0fca2b1a9694c9b415fe59a913cd81b1990dcd91153f77c77fa792b08 --sequence 1 --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem
2024-04-05 17:16:56.145 UTC 0001 INFO [cli.lifecycle.chaincode] setOrdererClient -> Retrieved channel (mychannel) orderer endpoint: orderer.example.com:7050
2024-04-05 17:16:58.405 UTC 0002 INFO [chaincodeCmd] ClientWait -> txid [fba02dee09dd9c22cdca7d3a5e543f9aecd10785f8869a4ae34168aa185b8479] committed with status (VALID) at peer0.org2.example.com:7051

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode checkcommitreadiness --channelID mychannel --name sacc --version 1.0 --init-required --sequence 1 --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --output json
{
    "approvals": {
        "Org1MSP": true,
        "Org2MSP": true
    }
}

root@1a1e6d13102e:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode checkcommitreadiness --channelID mychannel --name sacc --version 1.0 --init-required --sequence 1 --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --output json
{
    "approvals": {
        "Org1MSP": true,
        "Org2MSP": true
    }
}

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer lifecycle chaincode commit -o orderer.example.com:7050 --channelID mychannel --name sacc --version 1.0 --sequence 1 --init-required --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --peerAddresses peer0.org1.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt --peerAddresses peer0.org2.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt
2024-04-05 17:19:01.711 UTC 0001 INFO [chaincodeCmd] ClientWait -> txid [efad8132aee6fdd0a3067954f038dd9cd1cb41e7cedfd82dc6e588267f061351] committed with status (VALID) at peer0.org1.example.com:7051
2024-04-05 17:19:01.721 UTC 0002 INFO [chaincodeCmd] ClientWait -> txid [efad8132aee6fdd0a3067954f038dd9cd1cb41e7cedfd82dc6e588267f061351] committed with status (VALID) at peer0.org2.example.com:7051

root@eac605b80437:/opt/gopath/src/github.com/hyperledger/fabric/peer# peer chaincode invoke -o orderer.example.com:7050 --isInit --ordererTLSHostnameOverride orderer.example.com --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem -C mychannel -n sacc --peerAddresses peer0.org1.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt --peerAddresses peer0.org2.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt -c '{"Args":["Initialize","TokenTime","some symbol","0"]}'

 

 

 

 

Juno_Swift
关注
Hyperledger Fabric 2.5环境搭建部署及示例运行,ubuntu 22.04.4, golang jdk 安装
诺...的博客
06-14 2719
从零开始,基于ubuntu22.04.4 安装Hyperledger Fabric 2.5,启动区块链、创建频道、部署链码、链码查询、调用
Fabric V2.5 通用溯源系统——使用Hyperledger Caliper压力测试
TrueTechLabs 官方博客
09-26 966
Caliper是一款测试区块链性能的工具,支持Hyperledger Fabric、Ethereum等,支持丰富的测试配置参数,测试完成后将直接输出报告,相较于tape更加专业,但是配置稍微有些复杂。本文将一步一步配置Caliper以测试Fabric V2.5 通用溯源系统中的注册用户、查询用户、农产品上链、农产品查询的区块链性能。
Hyperledger fabric 部署
weixin_46698113的博客
04-26 1547
Hyperledger fabric部署
如何基于Docker Swarm部署Hyperledger Fabric
qq_45469783的博客
04-22 5259
前言 最近在研究如何用Docker Swarm部署,也找了很博客和教程,发现很说的其实不是很清楚,所有,在踩了很坑之后,我做一个搭建过程的记录,尽量写的详细一点。 1 概述 本文准备部署一个6个组织,每个组织2个peer节点,其中5个组织维护5个排序节点的Hyperledger Fabric 区块链网络。 Docker Swarm来连通各个主的节点 本项目开源地址 https://gitee.com/ccccczy77/fabric_docker_swarm 2 前期准备 2.1 服务器准备.
Hyperledger Fabric 入门笔记(三)Fabric V2.5 环境搭建
sbsy123456的博客
06-20 1万+
本文基于个人经验,参考相关博客,分享自己在搭建Fabric环境的步骤、问题和解决方法等,希望对大家的入门有帮助。
Fabric部署版本
sanqima的专栏
08-04 859
Fabric v1.4.3的First-network默认是单版本,采用solo模式。下面介绍其版本的部署方法。 1、描述 2、软件环境     fabric-samples v1.4.3     fabric v1.4.3     fabric ca v1.4.3     Ubuntu 16.04 3、将First-network复制一份,重命名为one,然后精简one文件夹 3.1 精简first-network cd $GOPATH/src/github.com/hyperledger/
Hyperledger Fabric 2.2.1 部署教程
qq_62778805的博客
01-09 916
Fabric 部署教程
基于区块链Hyperledger Fabric V2.5的农产品溯源商品通用溯源应用模板,部署简单,附压测工具、区块链浏览器,文档+源码+全部资料+高分项目.z
12-23
基于区块链Hyperledger Fabric V2.5的农产品溯源商品通用溯源应用模板,部署简单,附压测工具、区块链浏览器,文档详细。可以快速使用本系统搭建自己的溯源系统,帮助想法快速落地。文档+源码+全部资料+高分项目.zip...
Hyperledger Fabric 区块链部署
热门推荐
songbin830的专栏
12-12 2万+
目录 目录 Hyperledger Fabric 区块链部署 环境介绍 源码编译以及fabric 区块链网络部署环境准备 编译 fabric区块链相关可执行程序 编译 go 相关工具 编译 fabric基础环境 编译区块链服务相关工具 部署fabric网络solo共识 配置 fabric 网络用户拓扑关系 配置Orderer 节点的启动创世区块新建通道交易的相
Hyperledger-Fabric-2.5.9-arm架构分布式离线部署保姆教程
RS_IP的博客
07-31 1623
http://链接: https://pan.baidu.com/s/1HBkf007xaRaTO8Hi_URj1Q?pwd=yqei 提取码: yqei。http://链接: https://pan.baidu.com/s/1HBkf007xaRaTO8Hi_URj1Q?image: hyperledger/fabric-orderer:2.5.9 # 镜像地址。# 1.复制证书文件到peer0.org1.example.com、peer0.org2.example.com节点。
部署Hyperledger Fabric+Composer(两台器)
03-01
Land-network网络由两个组织组成:Org1和Org2。组织Org1使用域名org1.example.com。会员服务提供商(MSP)Org1被称为Org1MSP。组织Org2使用域名org2.example.com。MSP for Org2被称为Org2MSP。在本教程中,您将部署一个blockchain业务网络,无论是组织Org1,Org2并能与之交互。 两台器分别是VM1(192.168.1.101)和VM2(192.168.1.102)。Composer版本采用0.20.5Hyperledger Fabric的版本采用1.3. VM1(192.168.1.101): orderer.example.com,ca.org1.example.com,peer0.org1.example.com,couchdb0,peer1.org1.example.com,couchdb1,mongo,landTransaction,loginapp VM2(192.168.1.102): ca.org1.example.com,peer0.org2.example.com,couchdb0,peer1.org2.example.com,couchdb1,mongo,landTransaction,loginapp
Fabric部署
12-05
自己亲身实践搭建环境的文档总结,根据文档步骤100%可以搭建自己的Fabric运行环境
Hyperledger Fabric Docker 方式部署生产网络
y19910825的博客
01-08 1125
用。
Hyperledger Fabric 笔记(三)Fabric V2.5 环境搭建
ziyefeihu0729的博客
01-18 519
本文基于个人经验,参考相关博客,分享自己使用虚拟搭建Fabric环境的步骤,希望对大家的入门有帮助。
Hyperledger Fabric 2.5通用最新版本fabric2.X环境搭建部署及示例运行
大印的专栏
11-03 5845
Hyperledger Fabric目前最新发布版本为2.5,本文将详细介绍Hyperledger Fabric 2.5的环境搭建步骤,并介绍结合fabric2.5完成的具体区块链项目实例,使用java编写链码及结合区块链浏览器explorer项目完成的项目实例;实例源码可联系博主。 一、必备软件安装 如果你的Linux是新安装的,最好将源换成国内的,否则一些文件会下不下来 推荐阿里云和163。
Hyperledger Fabric 入门笔记(十七)Fabric V2.5 测试网络部署补充 - 手动为已加入通道的组织增加Peer节点
sbsy123456的博客
02-11 687
本节介绍如何为已加入测试网络的组织Org1增加新的Peer节点到通道中。
Docker 方式部署 Fabric 网络
黑帽子技术的博客
02-18 1109
Docker 方式部署 Fabric 网络 规划网络拓扑 3 个 orderer 节点; 组织 org1 , org1 下...
Fabric1.4.1部署
weixin_37875391的博客
09-27 1万+
部署 1. 搭建环境 本文使用的是Fabric 1.4版本,搭建solo模式的4+1的架构:1Order,4Peer,器之间的网络需要互通,保证五台子上的Fabric网络可以正常运行。举例说明如下: 域名 ip orderer.example.com 172.18.4.49 peer0.org1.example.com 172.18.4.33 peer1.org1.example.com 172.18.4.34 peer0.org2.example.com 172.18.
fabric手动部署
阿苏丶丶的博客
08-29 645
网络中有1个orderer节点,4个组织,每个组织各有1个节点。 名称 ip 节点Hostname Organization Server 1 10.11.6.118 orderer.example.com     ...
基于区块链Hyperledger Fabric V2.5的农产品溯源所用到的方法技术
最新发布
03-17
<think>好的,用户想了解在Hyperledger Fabric V2.5上实现农产品溯源的技术方法。我需要结合提供的四个引用内容来构建回答。首先,用户提到的引用[1]和引用[4]提到了Hyperledger Fabric V2.5的具体应用,尤其是农产品溯源系统。引用[3]讨论了使用Caliper进行压力测试,而引用[2]则涉及环境搭建和链码开发。 首先,我需要明确Hyperledger Fabric的基本架构,比如链码、通道、节点等,这些都是核心技术组件。然后,结合引用中的信息,比如Vue.js前端可能用于用户界面,引用[1]提到了这一点。链码部分,引用[2]和[4]都提到了使用Java或Go编写链码,所以需要指出这两种语言的可能性。 接下来,数据存储方面,Fabric使用CouchDB作为状态数据库,支持富查询,这对溯源系统中的查询操作很重要。身份管理和权限控制是MSP模块负责的,引用中虽然没有直接提到,但这是Fabric的核心功能,必须包含。 性能测试方面,引用[3]详细说明了使用Caliper进行压力测试,需要强调测试的步骤和重要性。系统集成部分,引用[1]和[4]提到了RESTful API和区块链浏览器的使用,这里需要整合这些信息,说明前后端如何与区块链交互。 可能还需要考虑网络搭建的具体步骤,如引用[2]和[4]中提到的环境配置,但用户的问题更关注技术方法,所以可以简要提及,而不深入细节。同时,确保回答结构清晰,分点列出核心技术、链码设计、数据存储、身份管理、性能测试、系统集成等部分。 最后,生成相关问题时要围绕技术方法、链码开发、性能优化、数据隐私等方向,确保问题有针对性,帮助用户进一步探索。需要检查所有引用标记是否正确,确保每个技术点都有对应的引用支持,比如Caliper测试引用[3],Vue.js引用[1]等。</think>在Hyperledger Fabric V2.5上实现农产品溯源系统需要结合区块链核心技术、智能合约设计和系统集成方法。以下是关键技术和实现方法: ### 一、核心技术框架 1. **Hyperledger Fabric架构** 基于分布式账本技术,利用$Peer$节点(背书节点、提交节点)、$Orderer$排序节点和$CA$证书构构成联盟链网络网络通过通道隔离数据,实现隐私保护[^2][^4]。 2. **链码开发** 使用Java或Go语言编写智能合约(链码),定义农产品溯源的核心逻辑,例如: ```go func (s *SmartContract) TrackOrigin(ctx contractapi.TransactionContextInterface, productID string) (string, error) { productJSON, err := ctx.GetStub().GetState(productID) // 查询区块链上的农产品信息 } ``` 链码通过$GetState/PutState$操作区块链账本,记录生产、加工、运输等环节数据[^2][^4]。 3. **CouchDB状态数据库** 采用富查询(Rich Query)特性支持复杂条件检索,例如按时间范围查询某批次农产品的流通记录[^1][^3]。 ### 二、实现方法 1. **身份权限管理** - 通过MSP(Membership Service Provider)管理参与组织身份 - 定义策略控制链码调用权限(如:只有认证构可写入生产信息) 2. **性能优化** - 使用Hyperledger Caliper 0.6.0进行压力测试,配置TPS、延迟等指标 ```yaml test: workers: type: local number: 10 rounds: - label: query_test txNumber: 1000 ``` - 测试结果显示关键操作(如农产品上链)的吞吐量可达$500+$ TPS 3. **系统集成** - 前端使用Vue.js构建溯源查询界面 - 通过RESTful API连接区块链网络(如引用[1]中的`eshop_fabric_api`) - 集成区块链浏览器监控交易状态 ### 三、数据安全制 1. 哈希算法存储关键数据(如:$Hash(产地证明文件)$) 2. 私有数据集合(Private Data Collection)保护商业敏感信息 3. 使用TLS加密节点间通信
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值