package msp

Get desktop application:
View/edit binary Protocol Buffers messages

FabricCryptoConfig contains configuration parameters for the cryptographic algorithms used by the MSP this configuration refers to

Used in: FabricMSPConfig

• string signature_hash_family = 1

  SignatureHashFamily is a string representing the hash family to be used during sign and verify operations. Allowed values are "SHA2" and "SHA3".

• string identity_identifier_hash_function = 2

  IdentityIdentifierHashFunction is a string representing the hash function to be used during the computation of the identity identifier of an MSP identity. Allowed values are "SHA256", "SHA384" and "SHA3_256", "SHA3_384".

FabricMSPConfig collects all the configuration information for a Fabric MSP. Here we assume a default certificate validation policy, where any certificate signed by any of the listed rootCA certs would be considered as valid under this MSP. This MSP may or may not come with a signing identity. If it does, it can also issue signing identities. If it does not, it can only be used to validate and verify certificates.

• string name = 1

  Name holds the identifier of the MSP; MSP identifier is chosen by the application that governs this MSP. For example, and assuming the default implementation of MSP, that is X.509-based and considers a single Issuer, this can refer to the Subject OU field or the Issuer OU field.

• repeated bytes root_certs = 2

  List of root certificates trusted by this MSP they are used upon certificate validation (see comment for IntermediateCerts below)

• repeated bytes intermediate_certs = 3

  List of intermediate certificates trusted by this MSP; they are used upon certificate validation as follows: validation attempts to build a path from the certificate to be validated (which is at one end of the path) and one of the certs in the RootCerts field (which is at the other end of the path). If the path is longer than 2, certificates in the middle are searched within the IntermediateCerts pool

• repeated bytes admins = 4

  Identity denoting the administrator of this MSP

• repeated bytes revocation_list = 5

  Identity revocation list

• optional SigningIdentityInfo signing_identity = 6

  SigningIdentity holds information on the signing identity this peer is to use, and which is to be imported by the MSP defined before

• repeated FabricOUIdentifier organizational_unit_identifiers = 7

  OrganizationalUnitIdentifiers holds one or more fabric organizational unit identifiers that belong to this MSP configuration

• optional FabricCryptoConfig crypto_config = 8

  FabricCryptoConfig contains the configuration parameters for the cryptographic algorithms used by this MSP

• repeated bytes tls_root_certs = 9

  List of TLS root certificates trusted by this MSP. They are returned by GetTLSRootCerts.

• repeated bytes tls_intermediate_certs = 10

  List of TLS intermediate certificates trusted by this MSP; They are returned by GetTLSIntermediateCerts.

FabricOUIdentifier represents an organizational unit and its related chain of trust identifier.

Used in: FabricMSPConfig

• bytes certificate = 1

  Certificate represents the second certificate in a certification chain. (Notice that the first certificate in a certification chain is supposed to be the certificate of an identity). It must correspond to the certificate of root or intermediate CA recognized by the MSP this message belongs to. Starting from this certificate, a certification chain is computed and boud to the OrganizationUnitIdentifier specified

• string organizational_unit_identifier = 2

  OrganizationUnitIdentifier defines the organizational unit under the MSP identified with MSPIdentifier

KeyInfo represents a (secret) key that is either already stored in the bccsp/keystore or key material to be imported to the bccsp key-store. In later versions it may contain also a keystore identifier

Used in: SigningIdentityInfo

• string key_identifier = 1

  Identifier of the key inside the default keystore; this for the case of Software BCCSP as well as the HSM BCCSP would be the SKI of the key

• bytes key_material = 2

  KeyMaterial (optional) for the key to be imported; this is properly encoded key bytes, prefixed by the type of the key

MSPConfig collects all the configuration information for an MSP. The Config field should be unmarshalled in a way that depends on the Type

• int32 type = 1

  Type holds the type of the MSP; the default one would be of type FABRIC implementing an X.509 based provider

• bytes config = 2

  Config is MSP dependent configuration info

This struct represents an Identity (with its MSP identifier) to be used to serialize it and deserialize it

• string mspid = 1

  The identifier of the associated membership service provider

• bytes id_bytes = 2

  the Identity, serialized according to the rules of its MPS

SigningIdentityInfo represents the configuration information related to the signing identity the peer is to use for generating endorsements

Used in: FabricMSPConfig

• bytes public_signer = 1

  PublicSigner carries the public information of the signing identity. For an X.509 provider this would be represented by an X.509 certificate

• optional KeyInfo private_signer = 2

  PrivateSigner denotes a reference to the private key of the peer's signing identity