This repository was archived by the owner on Mar 20, 2025. It is now read-only.
This repository was archived by the owner on Mar 20, 2025. It is now read-only.
国密TLS握手失败 #19
Open
Description
简述:orderer/peer启动正常的情况下, 使用peer命令行会创建通道失败,通过断点调试发现是在握手时添加了一层证书非空校验,但是默认情况下peer命令行构建的tls.config并没有设置Certificates这个属性,所以就会出现这个错误
var chainToSend *Certificate
var certRequested bool
certReq, ok := msg.(*certificateRequestMsgGM)
if ok {
certRequested = true
hs.finishedHash.Write(certReq.marshal())
if chainToSend, err = hs.getCertificate(certReq); err != nil || chainToSend.Certificate == nil {
c.sendAlert(alertInternalError)
return err
}
msg, err = c.readHandshake()
if err != nil {
return err
}
}
期望:去掉这层限制,我去掉之后整个流程是能够正常跑通的
Metadata
Metadata
Assignees
Labels
No labels