堆棧內存溢出
  簡體   English   中英

無法使用 hlf 運算符在 aks 上注冊對等超級賬本結構

[英]can't enroll peer to hyperledger fabric on aks using hlf operator

 原文  2023-01-12 12:57:33       hyperledger-fabric/ azure-aks/ hyperledger-fabric-ca

問題描述

嘗試通過 hlf 運算符將對等體注冊到結構 ca 時,我不斷收到此錯誤:

錯誤:注冊失敗:注冊失敗:無法讀取請求的響應:POST >http://org1-ca.domain.com/enroll {"hosts":null,"certificate_request":"-----BEGIN CERTIFICATE REQUEST ----->\nMIHxMIGYAgEAMBExDzANBgNVBAMTBmVucm9sbDBZMBMGByqGSM49AgEGCCqGSM49\nAwEHA0IABBQob4jvqjE/>E6OZPuKQdPUNw+SMXCI6FtPI3j0rPqxGu9DrnCgasGG\nzop5KWFZrMFL/JrbKfm2+GPrRPrLyjWgJTAjBgkqhki>G9w0BCQ4xFjAUMBIGA1Ud\nEQQLMAmCB0JVSDAwOTcwCgYIKoZIzj0EAwIDSAAwRQIhALWFAahmDd+lmQdkqSgI>n7M5m+BeFz8fZBzrDVbcbrVzCAiAsThJfkxEdNwm1AQ45KUqT0hDfnHQCAUK0Fjp5\n6IaPPQ==\n-----END >CERTIFICATE REQUEST---- -\n","配置文件":"","crl_override":"","標簽":"","NotBefore":"0001->01-01T00:00:00Z","NotAfter":"0001- 01-01T00:00:00Z","ReturnPrecert":false,"CAName":""}: >意外的 EOF

我在 aks 集群上使用 hyperledger fabric 的 hlf 運算符,應用程序網關 + nginx 入口用於路由/externalDNS 用於 Azure dns 區域內的名稱解析。

這是我的 fabric-ca.yaml:

apiVersion: hlf.kungfusoftware.es/v1alpha1
kind: FabricCA
metadata:
  creationTimestamp: null
  name: org1-ca
  namespace: fabric
spec:
  affinity: null
  ca:
    affiliations: null
    bccsp:
      default: SW
      sw:
        hash: SHA2
        security: "256"
    ca: null
    cfg:
      affiliations:
        allowRemove: true
      identities:
        allowRemove: true
    crl:
      expiry: 24h
    csr:
      ca:
        expiry: 131400h
        pathLength: 0
      cn: ca
      hosts:
      - localhost
      - org1-ca.domain.io
      names:
      - C: US
        L: ""
        O: Hyperledger
        OU: North Carolina
        ST: ""
    intermediate:
      parentServer:
        caName: ""
        url: ""
    name: ca
    registry:
      identities:
      - affiliation: ""
        attrs:
          hf.AffiliationMgr: true
          hf.GenCRL: true
          hf.IntermediateCA: true
          hf.Registrar.Attributes: '*'
          hf.Registrar.DelegateRoles: '*'
          hf.Registrar.Roles: '*'
          hf.Revoker: true
        name: enroll
        pass: enrollpw
        type: client
      max_enrollments: -1
    signing: null
    subject:
      C: ES
      L: Alicante
      O: Kung Fu Software
      OU: Tech
      ST: Alicante
      cn: ca
    tlsCa: null
  clrSizeLimit: 512000
  cors:
    enabled: false
    origins: []
  db:
    datasource: fabric-ca-server.db
    type: sqlite3
  debug: false
  env: null
  hosts:
  - localhost
  - org1-ca
  - org1-ca.fabric
  - org1-ca.domain.io
  image: hyperledger/fabric-ca
  imagePullSecrets: null
  istio:
  metrics:
    provider: prometheus
    statsd:
      address: 127.0.0.1:8125
      network: udp
      prefix: server
      writeInterval: 10s
  resources:
    limits:
      cpu: 300m
      memory: 256Mi
    requests:
      cpu: 10m
      memory: 128Mi
  rootCA:
    subject:
      C: California
      L: ""
      O: Hyperledger
      OU: Fabric
      ST: ""
      cn: ca
  service:
    type: ClusterIP
  serviceMonitor: null
  storage:
    accessMode: ReadWriteOnce
    size: 1Gi
    storageClass: default
  tlsCA:
    affiliations: null
    bccsp:
      default: SW
      sw:
        hash: SHA2
        security: "256"
    ca: null
    cfg:
      affiliations:
        allowRemove: true
      identities:
        allowRemove: true
    crl:
      expiry: 24h
    csr:
      ca:
        expiry: 131400h
        pathLength: 0
      cn: tlsca
      hosts:
      - localhost
      - org1-ca.domain.io
      names:
      - C: US
        L: ""
        O: Hyperledger
        OU: North Carolina
        ST: ""
    intermediate:
      parentServer:
        caName: ""
        url: ""
    name: tlsca
    registry:
      identities:
      - affiliation: ""
        attrs:
          hf.AffiliationMgr: true
          hf.GenCRL: true
          hf.IntermediateCA: true
          hf.Registrar.Attributes: '*'
          hf.Registrar.DelegateRoles: '*'
          hf.Registrar.Roles: '*'
          hf.Revoker: true
        name: enroll
        pass: enrollpw
        type: client
      max_enrollments: -1
    signing: null
    subject:
      C: ES
      L: Alicante
      O: Kung Fu Software
      OU: Tech
      ST: Alicante
      cn: tlsca
    tlsCa: null
  tolerations: null
  version: 1.4.9

這是我傳遞給操作員的命令,用於注冊對等身份並創建 MSP

kubectl hlf ca register --name=org1-ca --user=peer --secret=peerpw --type=peer --enroll-id=enroll --enroll-secret=enrollpw --mspid=Org1MSP --namespace=fabric --ca-url=org1-ca.domain.io

任何幫助將不勝感激!!

1 個解決方案

解決方案1
 0  2023-01-14 04:00:57

請檢查您是否能夠通過 ca 主機訪問 te.net。 看起來您正在使用一些不同的主機。 我在 CA 自定義資源中沒有看到您的主機。 請驗證配置一次。

暫無
暫無

聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.

相關問題 【Hyperledger Fabric】無法向peer發送調用請求 使用節點 SDK 在超級賬本結構中注冊和注冊時遇到錯誤 通過Fabric CA客戶端為Hyperledger Fabricv1.0注冊和注冊新對等方時如何創建tls ca 超賬結構對等變量 Hyperledger Fabric對等錯誤 什么是超級賬本結構中的對等點? 無法在Hyperledger Fabric中注冊新用戶 運行Hyperledger Fabric樣本注冊管理員錯誤 Hyperledger Fabric 注冊和注冊管理員不起作用 未能在 Hyperledger Fabric Javascript 應用程序中注冊管理員
相關標簽
 
粵ICP備18138465號  © 2020-2024 STACKOOM.COM