Client call timeout Exception occurs which use SslCertificateAuthentication.CertificateValidationMode in NetCore WCF Client to talk to WCF server based on Https

dotnet / wcf

This repo contains the client-oriented WCF libraries that enable applications built on .NET Core to communicate with WCF services.

MIT License

1.7k stars 560 forks source link

Client call timeout Exception occurs which use SslCertificateAuthentication.CertificateValidationMode in NetCore WCF Client to talk to WCF server based on Https #5119

Open iyrwis opened 1 year ago

iyrwis commented 1 year ago

Our team is working on NetCore migration. We need to make NetCore WCF client to talk to NetFramework WCF Server based on Https successfully at this stage, while we meet RemoteCertificateNameMismatch case which similar in this ticket: https://github.com/dotnet/wcf/issues/4544.

So I use the method in this ticket in testing environment:

I also tries to use custom validator as below:

But it will both cause the timeout for client call when the client tries to talk to server.

Any suggestion?

iyrwis commented 1 year ago

We use Net6 and here is the customBinding:

    <binding name="CustomBinding" receiveTimeout="00:22:00" sendTimeout="00:20:00">
      <reliableSession inactivityTimeout="00:22:00" maxRetryCount="15" ordered="true" />
      <textMessageEncoding>
        <readerQuotas maxArrayLength="35000000" maxStringContentLength="35000000" maxDepth="256" />
      </textMessageEncoding>
      <httpsTransport authenticationScheme="Anonymous" maxReceivedMessageSize="100000000" maxBufferPoolSize="40000000" />
    </binding>

mconnew commented 1 year ago

Is there any way you can use fiddler (https://www.telerik.com/download/fiddler) to look at the traffic and see what's happening? There's very little to go on with the information you've provided so far.

iyrwis commented 1 year ago

Sure, I will try to use Fiddler to detect what happens.