Fabric2.0 新特性實踐:通道成員可擴展鏈碼

原創 Ddkjawed 2020-06-26 10:05

  承接上文:Hyperledger Fabric 2.0新特性,Fabric2.0版本允許組織去擴展鏈碼,也就是說通道成員之間的鏈碼包可能會不同,這麼做的好處是每個組織可以根據自身利益增加自己的業務邏輯。
  爲測試這一特性,本文將會對比Fabric1.4版本和Fabric2.0版本,閱讀過程中注意當前版本,及時切換到不同分支。

改造鏈碼

  測試網絡選用:fabric-samples/first-network
  鏈碼選用:sacc
  在本文中,我們基於sacc構建了另一個鏈碼sacc-check,相對於sacc增加了一個條件校驗:如果key爲age,則返回錯誤。
  進入fabric-samples/chaincode/sacc目錄,sacc.go原代碼:

// Set stores the asset (both key and value) on the ledger. If the key exists,
// it will override the value with the new one
func set(stub shim.ChaincodeStubInterface, args []string) (string, error) {
	if len(args) != 2 {
		return "", fmt.Errorf("Incorrect arguments. Expecting a key and a value")
	}

	err := stub.PutState(args[0], []byte(args[1]))
	if err != nil {
		return "", fmt.Errorf("Failed to set asset: %s", args[0])
	}
	return args[1], nil
}

  我們稍作修改,增加前面提到的校驗:

// Set stores the asset (both key and value) on the ledger. If the key exists,
// it will override the value with the new one
func set(stub shim.ChaincodeStubInterface, args []string) (string, error) {
	if len(args) != 2 {
		return "", fmt.Errorf("Incorrect arguments. Expecting a key and a value")
	}
    if args[0] == "age" {
        return "",fmt.Errorf("錯誤的key")
    }
	err := stub.PutState(args[0], []byte(args[1]))
	if err != nil {
		return "", fmt.Errorf("Failed to set asset: %s", args[0])
	}
	return args[1], nil
}

基於1.4版本測試

  按照上節修改鏈碼

cd fabric-samples/chaincode
cp -r sacc sacc-check
cd sacc-check
vim sacc.go

  進入fabric-samples/first-network目錄執行,默認通道testchannel,鏈碼mycc:

./byfn.sh up

  peer0.org1.example.com安裝鏈碼sacc

 docker exec cli peer chaincode install -n sacc -v 1.0 -p github.com/chaincode/sacc

  peer0.org2.example.com安裝鏈碼sacc

docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer chaincode install -n sacc -v 1.0 -p github.com/chaincode/sacc-check

  可通過以下命令查看鏈碼是否已安裝成功,查詢結果中Id是不同的。

# peer0.org1.example.com
docker exec cli peer chaincode list --installed
# peer0.org2.example.com
docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer chaincode list --installed

  實例化鏈碼

docker exec cli peer chaincode instantiate -o orderer.example.com:7050 --tls true --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem -C testchannel -n sacc -v 1.0 -c '{"Args": ["name","kc"]}' -P "AND('Org1MSP.member','Org2MSP.member')"

  調用合約查詢

# peer0.org1.example.com
docker exec cli peer chaincode query -C testchannel -n sacc -c '{"Args":["query","name"]}'
# peer0.org2.example.com
docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer chaincode query -C testchannel -n sacc -c '{"Args":["query","name"]}'

  在peer0.org1.example.com查詢返回結果:kc,在peer0.org2.example.com返回錯誤:

Error: endorsement failure during query. response: status:500 message:"failed to execute transaction 0b0523dac965b32fff0fc0faadb3270646efc256198b6b8a42856006ccdb2ddd: [channel testchannel] failed to get chaincode container info for sacc:1.0: could not get chaincode code: chaincode fingerprint mismatch: data mismatch"

  報錯原因:鏈碼不匹配。可見在1.4版本中是不支持組織安裝不同鏈碼的。

基於2.0.1版本測試

  Fabric 2.0 啓用了新的鏈碼週期,我們按照下圖進行測試:
在這裏插入圖片描述
  測試網絡仍然選擇first-network,通道mychannel

cd fabric-samples/first-network
./byfn.sh up

  首先按上文編輯鏈碼:

cd fabric-samples/chaincode
cp -r sacc sacc-check
cd sacc-check
vim sacc.go

  生成vendor目錄:

cd chaincode/sacc
GO111MODULE=on go mod vendor
cd ../sacc-check
GO111MODULE=on go mod vendor

  打包鏈碼:

docker exec cli peer lifecycle chaincode package sacc.tar.gz --path github.com/hyperledger/fabric-samples/chaincode/sacc/ --label sacc_1
docker exec cli peer lifecycle chaincode package sacc-check.tar.gz --path github.com/hyperledger/fabric-samples/chaincode/sacc-check/ --label sacc_1
docker exec cli ls

  執行結果如下圖所示:
在這裏插入圖片描述
  安裝鏈碼:

# peer0.org1.example.com
docker exec cli peer lifecycle chaincode install sacc.tar.gz
# peer0.org2.example.com
docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer lifecycle chaincode install sacc-check.tar.gz

  查詢已安裝鏈碼,得到packageID(注意此處兩個節點返回的packageID是不同的):

# peer0.org1.example.com
docker exec cli peer lifecycle chaincode queryinstalled
# peer0.org2.example.com
docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer lifecycle chaincode queryinstalled

  peer0.org1.example.com返回結果:Package ID:sacc_1:a615a5892af0e8ab0a17851e76f995582138f6e8853a2fa782f50a05c82390d2, Label: sacc_1
  peer0.org2.example.com返回結果:Package ID:sacc_1:153bdd87b0d61052590bd154d6418acc9eaf7752b68b1ef40a231391172875ce, Label: sacc_1
  組織同意鏈碼定義:

#Org1
docker exec cli peer lifecycle chaincode approveformyorg --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --channelID mychannel --name sacc --version 1 --sequence 1 --waitForEvent --package-id sacc_1:a615a5892af0e8ab0a17851e76f995582138f6e8853a2fa782f50a05c82390d2
#Org2
docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer lifecycle chaincode approveformyorg --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --channelID mychannel --name sacc --version 1 --sequence 1 --waitForEvent --package-id sacc_1:153bdd87b0d61052590bd154d6418acc9eaf7752b68b1ef40a231391172875ce

  提交鏈碼定義:

docker exec cli peer lifecycle chaincode commit -o orderer.example.com:7050 --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --peerAddresses peer0.org1.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt --peerAddresses peer0.org2.example.com:9051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt --channelID mychannel --name sacc --version 1 --sequence 1

  調用合約,此處參數傳入“name”:

docker exec cli peer chaincode invoke -o orderer.example.com:7050 --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --peerAddresses peer0.org1.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt --peerAddresses peer0.org2.example.com:9051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt -C mychannel -n sacc -c '{"Args":["set","name","kc"]}'

  合約調用成功後,執行查詢操作:

# peer0.org1.example.com
docker exec cli peer chaincode query -C mychannel -n sacc -c '{"Args":["query","name"]}'
# peer0.org2.example.com
docker exec -e CORE_PEER_MSPCONFIGPATH=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/users/[email protected]/msp -e CORE_PEER_ADDRESS=peer0.org2.example.com:9051 -e CORE_PEER_LOCALMSPID="Org2MSP" -e CORE_PEER_TLS_ROOTCERT_FILE=/opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt cli peer chaincode query -C mychannel -n sacc -c '{"Args":["query","name"]}'

  查詢結果如下圖所示:
在這裏插入圖片描述
  sacc-check/sacc.go我們做了校驗:不能通道調用鏈碼設置"age",我們這裏做個測試

docker exec cli peer chaincode invoke -o orderer.example.com:7050 --tls --cafile /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/ordererOrganizations/example.com/orderers/orderer.example.com/msp/tlscacerts/tlsca.example.com-cert.pem --peerAddresses peer0.org1.example.com:7051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org1.example.com/peers/peer0.org1.example.com/tls/ca.crt --peerAddresses peer0.org2.example.com:9051 --tlsRootCertFiles /opt/gopath/src/github.com/hyperledger/fabric/peer/crypto/peerOrganizations/org2.example.com/peers/peer0.org2.example.com/tls/ca.crt -C mychannel -n sacc -c '{"Args":["set","age","30"]}'

  下圖顯示了執行結果:這裏報錯“錯誤的key”,由此我們完成了測試。在這裏插入圖片描述

總結

  Fabric2.0這一特性,使得不同組織可以根據自身利益安裝智能合約。當然最終合約調用是否成功和背書策略也有關係,在上節演示時,我們使用的是默認的背書策略即大多數組織同意,由於我們選用的是兩組織的first-network網絡,因此此處需要兩個組織均同意,由此上節交易不能通過。在實際應用場景中,需要綜合考慮相關問題。

發表評論
所有評論
還沒有人評論,想成為第一個評論的人麼? 請在上方評論欄輸入並且點擊發布.
相關文章

Fabric2.0 Java鏈碼開發實戰(Maven工程)

   本文主要介紹如何編寫Fabric 2.0的Java鏈碼,選用的是Maven工程(Gradle工程會有所不同) 基礎環境   jdk:1.8   maven:3.6.3   fabric java:2.0.1 創建工程   創

Ddkjawed 2020-07-03 00:04:52

Fabric2.0 外部鏈碼報錯:undefined: shim.ChaincodeServer

問題   Fabric版本:2.0.1   構建完外部鏈碼時,報錯undefined: shim.ChaincodeServer。查閱官方文檔,發現寫法沒有任何問題。去vendor文件夾,查看shim源碼發現確實沒有Chainco

Ddkjawed 2020-07-03 00:04:52

Fabric2.0 使用開發模式(dev 模式)測試

dev模式   dev模式不是Fabric 2.0引入的,1.x版本就已存在的。對於Fabric 2.0來說,可以構建外部的鏈碼容器,對於運維和開發調試來說,變得越來越方便。在2.0版本之前,鏈碼是通過節點執行和維護的。開發模式在

Ddkjawed 2020-06-28 18:46:06

cannot find package github.com/hyperledger/fabric-chaincode-go/shim in any of: /usr/local/go/src/

問題   Fabric版本:2.0.1   在使用Java SDK 安裝go語言鏈碼時報錯:failed to invoke backing implementation of ‘InstallChaincode’: could

Ddkjawed 2020-06-27 01:17:04

Fabric 2.0 之系統鏈碼

  在Hyperledger Fabric中,鏈碼分爲兩種類型:系統鏈碼和普通鏈碼。其中系統鏈碼是系統內置的鏈碼,用來完成一些系統功能等;普通鏈碼是實現應用業務邏輯的鏈碼。 系統鏈碼vs普通鏈碼   系統鏈碼和普通鏈碼的幾個不同點

Ddkjawed 2020-06-12 18:48:06

Fabric 2.0 之動態添加組織

啓動環境   在開始本博客之前,請確保已安裝對應版本的二進制工具、鏡像以及git clone fabric-samples cd fabric-samples/test-network   如果之前啓動過test-network

Ddkjawed 2020-06-09 09:56:18

Fabric 2.0 之賬本(Ledger)

  參考資料(官方文檔):Ledger Ledger   在Hyperledger Fabric裏面,賬本由兩個不同但相關的部分組成:世界狀態(world state)和區塊鏈(blockchain).   世界狀態數據庫保存了賬

Ddkjawed 2020-06-09 09:56:08

Fabric 2.0 之鏈碼升級

Fabric2.0版本基礎環境搭建與測試參考:Fabric hyperledger 2.0 first-network 手動部署執行 升級步驟 重新打包鏈碼(升級鏈碼文件情形) 重新安裝鏈碼(升級鏈碼文件情形) 組織同意新的鏈碼

Ddkjawed 2020-06-09 09:56:08

Fabric 2.0 之更新通道配置

前言   通道配置中包含了區塊鏈網絡的結構以及控制網絡交互的信息。這些配置由通道成員共同決定,並提交到通道的賬本中,可以使用configtxgen工具來構建通道配置。   配置包含在創世塊中,更新通道配置的過程(例如添加通道成員或

Ddkjawed 2020-06-09 09:56:08

Hyperledger Fabric 2.0新特性

Ddkjawed 2020-05-26 03:19:53

fabric java sdk啓用tls

Ddkjawed 2020-05-26 03:19:53

Fabric Hyperledger(2.0 )之隱私數據(Private data)

Ddkjawed 2020-05-24 07:13:01

Fabric hyperledger 2.0 first-network 手動部署執行

Ddkjawed 2020-05-19 04:21:56

Error: failed to create deliver client for orderer: orderer client failed to connect to orderer

Ddkjawed 2020-05-12 07:40:33

Fabric2.0 SDK測試網絡搭建

Ddkjawed 2020-05-09 08:16:08