csquan
commented
3 years ago 这个ca不能用 。我和你差不多,我直接ca注册,发现不支持的曲线类型,ecdsa不被国密识别。但是我按照上面的产生证书是1.2.Xx国密。 这个从代码里面看,LoadX509Centificate有错误,这个函数下面应该是有个增加函数,第三方把,LoadX509CentificateSM2,但是返回类型不一致,所以需要深拷贝转化下,不明白这种有错误的代码为啥开源,或者说故意为之?
//初始化 ghost@ghost testcaserver % ../fabric-ca-server init -b admin:adminpw
ghost@ghost testcaserver % ls IssuerPublicKey ca-cert.pem fabric-ca-server.db IssuerRevocationPublicKey fabric-ca-server-config.yaml msp
//查看证书的算法还是ecdsa-with-SHA256 ghost@ghost testcaserver % openssl x509 -in ca-cert.pem -noout -text Certificate: Data: Version: 3 (0x2) Serial Number: 20:37:16:6d:6c:54:da:33:05:be:c2:17:c1:79:3b:82:35:c2:3b:fd Signature Algorithm: ecdsa-with-SHA256 Issuer: C=US, ST=North Carolina, O=Hyperledger, OU=Fabric, CN=fabric-ca-server Validity Not Before: May 8 01:21:00 2020 GMT Not After : May 5 01:21:00 2035 GMT Subject: C=US, ST=North Carolina, O=Hyperledger, OU=Fabric, CN=fabric-ca-server