ilyakooo0/reshape
1
0
Fork 0
mirror of https://github.com/ilyakooo0/reshape.git synced 2024-10-26 18:17:49 +03:00
Code Issues Packages Projects Releases Wiki Activity

Add TLS support

Browse Source
This commit is contained in:
Stephen Brian King 2024-06-30 18:41:14 -06:00
parent c8cd6f438e
commit 05753c09c2
2 changed files with 9 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Cargo.toml
View File

@ -13,6 +13,8 @@ rust-version = "1.70"
[dependencies]
postgres = { version = "0.19.2", features = ["with-serde_json-1"] }
openssl = { version = "0.10.64", features = ["vendored"] }
postgres-openssl = "0.5.0"
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
typetag = "0.1.7"

9
src/db.rs
View File

@ -1,7 +1,9 @@
use std::{cmp::min, time::Duration};
use anyhow::{anyhow, Context};
use postgres::{types::ToSql, NoTls, Row};
use openssl::ssl::{SslConnector, SslMethod, SslVerifyMode};
use postgres::{types::ToSql, Row};
use postgres_openssl::MakeTlsConnector;
use rand::prelude::*;
// DbLocker wraps a regular DbConn, only allowing access using the
@ -25,7 +27,10 @@ impl DbLocker {
const LOCK_KEY: i64 = 4036779288569897133;
pub fn connect(config: &postgres::Config) -> anyhow::Result<Self> {
let mut pg = config.connect(NoTls)?;
let mut builder = SslConnector::builder(SslMethod::tls())?;
builder.set_verify(SslVerifyMode::NONE);
let connector = MakeTlsConnector::new(builder.build());
let mut pg = config.connect(connector)?;
// When running DDL queries that acquire locks, we risk causing a "lock queue".
// When attempting to acquire a lock, Postgres will wait for any long running queries to complete.