From fe841a5b7ebeac1a0fc56d8cf1b62a13148e8bec Mon Sep 17 00:00:00 2001
From: talves <tony@3alves.com>
Date: Wed, 15 Jan 2025 12:26:23 -0800
Subject: [PATCH] update: example to use rustls-platform-verifier

---
 examples/postgres/pooled-with-rustls/Cargo.toml     |  4 ++--
 examples/postgres/pooled-with-rustls/src/main.rs    | 13 +++----------
 .../run-pending-migrations-with-rustls/Cargo.toml   |  6 +++---
 .../run-pending-migrations-with-rustls/src/main.rs  | 13 +++----------
 4 files changed, 11 insertions(+), 25 deletions(-)

diff --git a/examples/postgres/pooled-with-rustls/Cargo.toml b/examples/postgres/pooled-with-rustls/Cargo.toml
index 28c6093..1afbd66 100644
--- a/examples/postgres/pooled-with-rustls/Cargo.toml
+++ b/examples/postgres/pooled-with-rustls/Cargo.toml
@@ -10,7 +10,7 @@ diesel = { version = "2.2.0", default-features = false, features = ["postgres"]
 diesel-async = { version = "0.5.0", path = "../../../", features = ["bb8", "postgres"] }
 futures-util = "0.3.21"
 rustls = "0.23.8"
-rustls-native-certs = "0.7.1"
+rustls-platform-verifier = "0.5.0"
 tokio = { version = "1.2.0", default-features = false, features = ["macros", "rt-multi-thread"] }
 tokio-postgres = "0.7.7"
-tokio-postgres-rustls = "0.12.0"
+tokio-postgres-rustls = "0.13.0"
diff --git a/examples/postgres/pooled-with-rustls/src/main.rs b/examples/postgres/pooled-with-rustls/src/main.rs
index 87a8eb4..d13f13c 100644
--- a/examples/postgres/pooled-with-rustls/src/main.rs
+++ b/examples/postgres/pooled-with-rustls/src/main.rs
@@ -5,6 +5,8 @@ use diesel_async::pooled_connection::ManagerConfig;
 use diesel_async::AsyncPgConnection;
 use futures_util::future::BoxFuture;
 use futures_util::FutureExt;
+use rustls::ClientConfig;
+use rustls_platform_verifier::ConfigVerifierExt;
 use std::time::Duration;
 
 #[tokio::main]
@@ -42,9 +44,7 @@ async fn main() -> Result<(), Box<dyn std::error::Error>> {
 fn establish_connection(config: &str) -> BoxFuture<ConnectionResult<AsyncPgConnection>> {
     let fut = async {
         // We first set up the way we want rustls to work.
-        let rustls_config = rustls::ClientConfig::builder()
-            .with_root_certificates(root_certs())
-            .with_no_client_auth();
+        let rustls_config = ClientConfig::with_platform_verifier();
         let tls = tokio_postgres_rustls::MakeRustlsConnect::new(rustls_config);
         let (client, conn) = tokio_postgres::connect(config, tls)
             .await
@@ -54,10 +54,3 @@ fn establish_connection(config: &str) -> BoxFuture<ConnectionResult<AsyncPgConne
     };
     fut.boxed()
 }
-
-fn root_certs() -> rustls::RootCertStore {
-    let mut roots = rustls::RootCertStore::empty();
-    let certs = rustls_native_certs::load_native_certs().expect("Certs not loadable!");
-    roots.add_parsable_certificates(certs);
-    roots
-}
diff --git a/examples/postgres/run-pending-migrations-with-rustls/Cargo.toml b/examples/postgres/run-pending-migrations-with-rustls/Cargo.toml
index 2f54ab4..4428f6c 100644
--- a/examples/postgres/run-pending-migrations-with-rustls/Cargo.toml
+++ b/examples/postgres/run-pending-migrations-with-rustls/Cargo.toml
@@ -10,8 +10,8 @@ diesel = { version = "2.2.0", default-features = false, features = ["postgres"]
 diesel-async = { version = "0.5.0", path = "../../../", features = ["bb8", "postgres", "async-connection-wrapper"] }
 diesel_migrations = "2.2.0"
 futures-util = "0.3.21"
-rustls = "0.23.10"
-rustls-native-certs = "0.7.1"
+rustls = "0.23.8"
+rustls-platform-verifier = "0.5.0"
 tokio = { version = "1.2.0", default-features = false, features = ["macros", "rt-multi-thread"] }
 tokio-postgres = "0.7.7"
-tokio-postgres-rustls = "0.12.0"
+tokio-postgres-rustls = "0.13.0"
diff --git a/examples/postgres/run-pending-migrations-with-rustls/src/main.rs b/examples/postgres/run-pending-migrations-with-rustls/src/main.rs
index 1fb0c0f..16d1173 100644
--- a/examples/postgres/run-pending-migrations-with-rustls/src/main.rs
+++ b/examples/postgres/run-pending-migrations-with-rustls/src/main.rs
@@ -4,6 +4,8 @@ use diesel_async::AsyncPgConnection;
 use diesel_migrations::{embed_migrations, EmbeddedMigrations, MigrationHarness};
 use futures_util::future::BoxFuture;
 use futures_util::FutureExt;
+use rustls::ClientConfig;
+use rustls_platform_verifier::ConfigVerifierExt;
 
 pub const MIGRATIONS: EmbeddedMigrations = embed_migrations!();
 
@@ -28,9 +30,7 @@ async fn main() -> Result<(), Box<dyn std::error::Error>> {
 fn establish_connection(config: &str) -> BoxFuture<ConnectionResult<AsyncPgConnection>> {
     let fut = async {
         // We first set up the way we want rustls to work.
-        let rustls_config = rustls::ClientConfig::builder()
-            .with_root_certificates(root_certs())
-            .with_no_client_auth();
+        let rustls_config = ClientConfig::with_platform_verifier();
         let tls = tokio_postgres_rustls::MakeRustlsConnect::new(rustls_config);
         let (client, conn) = tokio_postgres::connect(config, tls)
             .await
@@ -39,10 +39,3 @@ fn establish_connection(config: &str) -> BoxFuture<ConnectionResult<AsyncPgConne
     };
     fut.boxed()
 }
-
-fn root_certs() -> rustls::RootCertStore {
-    let mut roots = rustls::RootCertStore::empty();
-    let certs = rustls_native_certs::load_native_certs().expect("Certs not loadable!");
-    roots.add_parsable_certificates(certs);
-    roots
-}