通过 WSS 连接到本地网络上的 Polkadot 全节点 运行 失败
Connect via WSS to Polkadot Full Noder running on local network failed
我已经在 192.168.2.254 的本地服务器上设置了完整节点 运行ning。我只是想做一个简单的脚本,基本上是订阅区块链上的新头。
const { ApiPromise, WsProvider } = require('@polkadot/api');
async function main () {
const wsProvider = new WsProvider('wss://192.168.2.254:9944');
const api = await ApiPromise.create({ provider: wsProvider });
let count = 0;
const unsubscribe = await api.rpc.chain.subscribeNewHeads((header) => {
console.log(`Chain is at block: #${header.number}`);
if (++count === 256) {
unsubscribe();
process.exit(0);
}
});
}
main().catch(console.error);
在服务器上,我还按照 Polkadot wiki 的建议使用自签名 ssl 证书设置了 nginx。这是块配置:
server {
server_name 192.168.2.254
root /var/www/html;
index index.html;
location / {
try_files $uri $uri/ =404;
proxy_pass http://localhost:9944;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
listen [::]:443 ssl ipv6only=on;
listen 443 ssl;
ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;
ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;
ssl_session_cache shared:cache_nginx_SSL:1m;
ssl_session_timeout 1440m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers "ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS";
ssl_dhparam /etc/ssl/certs/dhparam.pem;
}
如果我直接在服务器上运行脚本,默认没有配置提供者(它将使用ws://127.0.0.1:9944),没有问题。但是当我 运行 它在我的本地机器上指向 wss://192.168.2.254:9944 时,输出是连接失败,代码为 1006:
节点listenToBlock.js─╯
2020-09-10 14:19:29 API-WS: disconnected from ws://192.168.2.254:9944 code: '1006' reason: 'connection failed'
_Event {
type: 'error',
isTrusted: false,
_yaeti: true,
target:
W3CWebSocket {
_listeners: {},
addEventListener: [Function: _addEventListener],
removeEventListener: [Function: _removeEventListener],
dispatchEvent: [Function: _dispatchEvent],
_url: 'ws://192.168.2.254:9944',
_readyState: 3,
_protocol: undefined,
_extensions: '',
_bufferedAmount: 0,
_binaryType: 'arraybuffer',
_connection: undefined,
_client:
WebSocketClient {
_events: [Object: null prototype] {},
_eventsCount: 0,
_maxListeners: undefined,
config: [Object],
_req: null,
protocols: [],
origin: undefined,
url: [Url],
secure: false,
base64nonce: 'cUJFFas2Ec3aN5YlHSxehg==' },
onclose: [Function: value],
onerror: [Function: value],
onmessage: [Function: value],
onopen: [Function: value] },
cancelable: true,
stopImmediatePropagation: [Function] }
2020-09-10 14:19:30 API-WS: disconnected from ws://192.168.2.254:9944 code: '1006' reason: 'connection failed'
2020-09-10 14:19:31 API-WS: disconnected from ws://192.168.2.254:9944 code: '1006' reason: 'connection failed'
在浏览器中接受未经验证的证书后,我还尝试使用 https://polkadot.js.org/apps/#/explorer 并将开发端点设置为 wss://192.168.2.254 成功。
我最好的猜测是来自我本地计算机上的脚本的连接也需要接受未经验证的证书,但我找不到任何文档来帮助解决这个问题。感谢您的帮助!
在端点 url,提供端口 9944 是错误的,因为 wss 始终默认使用端口 443。
我通过 运行 脚本
解决了这个问题
NODE_TLS_REJECT_UNAUTHORIZED=0 node listenToBlock.js
对于开发环境来说似乎是一个不错的解决方法。
我已经在 192.168.2.254 的本地服务器上设置了完整节点 运行ning。我只是想做一个简单的脚本,基本上是订阅区块链上的新头。
const { ApiPromise, WsProvider } = require('@polkadot/api');
async function main () {
const wsProvider = new WsProvider('wss://192.168.2.254:9944');
const api = await ApiPromise.create({ provider: wsProvider });
let count = 0;
const unsubscribe = await api.rpc.chain.subscribeNewHeads((header) => {
console.log(`Chain is at block: #${header.number}`);
if (++count === 256) {
unsubscribe();
process.exit(0);
}
});
}
main().catch(console.error);
在服务器上,我还按照 Polkadot wiki 的建议使用自签名 ssl 证书设置了 nginx。这是块配置:
server {
server_name 192.168.2.254
root /var/www/html;
index index.html;
location / {
try_files $uri $uri/ =404;
proxy_pass http://localhost:9944;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_http_version 1.1;
proxy_set_header Upgrade $http_upgrade;
proxy_set_header Connection "upgrade";
}
listen [::]:443 ssl ipv6only=on;
listen 443 ssl;
ssl_certificate /etc/ssl/certs/nginx-selfsigned.crt;
ssl_certificate_key /etc/ssl/private/nginx-selfsigned.key;
ssl_session_cache shared:cache_nginx_SSL:1m;
ssl_session_timeout 1440m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers "ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS";
ssl_dhparam /etc/ssl/certs/dhparam.pem;
}
如果我直接在服务器上运行脚本,默认没有配置提供者(它将使用ws://127.0.0.1:9944),没有问题。但是当我 运行 它在我的本地机器上指向 wss://192.168.2.254:9944 时,输出是连接失败,代码为 1006:
节点listenToBlock.js─╯
2020-09-10 14:19:29 API-WS: disconnected from ws://192.168.2.254:9944 code: '1006' reason: 'connection failed'
_Event {
type: 'error',
isTrusted: false,
_yaeti: true,
target:
W3CWebSocket {
_listeners: {},
addEventListener: [Function: _addEventListener],
removeEventListener: [Function: _removeEventListener],
dispatchEvent: [Function: _dispatchEvent],
_url: 'ws://192.168.2.254:9944',
_readyState: 3,
_protocol: undefined,
_extensions: '',
_bufferedAmount: 0,
_binaryType: 'arraybuffer',
_connection: undefined,
_client:
WebSocketClient {
_events: [Object: null prototype] {},
_eventsCount: 0,
_maxListeners: undefined,
config: [Object],
_req: null,
protocols: [],
origin: undefined,
url: [Url],
secure: false,
base64nonce: 'cUJFFas2Ec3aN5YlHSxehg==' },
onclose: [Function: value],
onerror: [Function: value],
onmessage: [Function: value],
onopen: [Function: value] },
cancelable: true,
stopImmediatePropagation: [Function] }
2020-09-10 14:19:30 API-WS: disconnected from ws://192.168.2.254:9944 code: '1006' reason: 'connection failed'
2020-09-10 14:19:31 API-WS: disconnected from ws://192.168.2.254:9944 code: '1006' reason: 'connection failed'
在浏览器中接受未经验证的证书后,我还尝试使用 https://polkadot.js.org/apps/#/explorer 并将开发端点设置为 wss://192.168.2.254 成功。
我最好的猜测是来自我本地计算机上的脚本的连接也需要接受未经验证的证书,但我找不到任何文档来帮助解决这个问题。感谢您的帮助!
在端点 url,提供端口 9944 是错误的,因为 wss 始终默认使用端口 443。
我通过 运行 脚本
解决了这个问题NODE_TLS_REJECT_UNAUTHORIZED=0 node listenToBlock.js
对于开发环境来说似乎是一个不错的解决方法。