itsscb/sqlx
1
0
Fork 0
mirror of https://github.com/launchbadge/sqlx.git synced 2026-03-05 05:09:42 +00:00
Code Issues Packages Projects Releases Wiki Activity

native tls handshake: build TlsConnector in blocking threadpool (#4027)

Browse Source 
* build TlsConnector in blocking threadpool

The openssl TlsConnector synchronously loads certificates from files.
Loading these files can block for tens of milliseconds.

* Update sqlx-core/src/net/tls/tls_native_tls.rs

---------

Co-authored-by: David Übler <david.uebler@puzzleyou.de>
Co-authored-by: Austin Bonander <austin.bonander@gmail.com>
This commit is contained in:
David Uebler 2025-09-23 14:23:01 +00:00 committed by GitHub
parent c52e129e83
commit 064d649abd
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
sqlx-core/src/net/tls/tls_native_tls.rs
View File

@ -4,6 +4,7 @@ use crate::io::ReadBuf;
use crate::net::tls::util::StdSocket;
use crate::net::tls::TlsConfig;
use crate::net::Socket;
use crate::rt;
use crate::Error;
use native_tls::{HandshakeError, Identity};
@ -61,7 +62,11 @@ pub async fn handshake<S: Socket>(
builder.identity(identity);
}
let connector = builder.build().map_err(Error::tls)?;
// The openssl TlsConnector synchronously loads certificates from files.
// Loading these files can block for tens of milliseconds.
let connector = rt::spawn_blocking(move || builder.build())
.await
.map_err(Error::tls)?;
let mut mid_handshake = match connector.connect(config.hostname, StdSocket::new(socket)) {
Ok(tls_stream) => return Ok(NativeTlsSocket { stream: tls_stream }),