Expand description
SPDP mapping for PeerCapabilities.
Bridge between the policy layer (PeerCapabilities) and the
SPDP wire format (WirePropertyList). On send, the
own caps are written into the SPDP properties; on receive
the properties are parsed back to PeerCapabilities.
§Property keys
| Key | Semantics |
|---|---|
dds.sec.auth.plugin_class | OMG standard, authentication plugin class |
dds.sec.access.plugin_class | OMG standard, access-control plugin class |
dds.sec.crypto.plugin_class | OMG standard, crypto plugin class |
zerodds.sec.supported_suites | CSV: AES_128_GCM,AES_256_GCM,HMAC_SHA256 |
zerodds.sec.offered_protection | NONE / SIGN / ENCRYPT |
zerodds.sec.vendor_hint | free string, e.g. "zerodds" |
The zerodds.sec.* namespace is intentionally ZeroDDS-specific. Other
vendors (Cyclone, Fast-DDS) silently ignore unknown properties
— this preserves SPDP interop (see architecture
doc §8.1).
has_valid_cert and validity_window are not transferred via SPDP;
these are post-handshake values set by the authentication
plugin.
Constants§
- KEY_
ACCESS_ PLUGIN - OMG standard: access-control plugin class.
- KEY_
AUTH_ PLUGIN - OMG standard: authentication plugin class.
- KEY_
CRYPTO_ PLUGIN - OMG standard: crypto plugin class.
- KEY_
DELEGATION_ CHAIN - ZeroDDS extension: delegation chain (base64-encoded wire bytes,
RC1). Format: base64 over the
DelegationChain::encode()output. Passes through SPDP via PID_PROPERTY_LIST. - KEY_
OFFERED_ PROTECTION - ZeroDDS extension: offered protection level.
- KEY_
SUPPORTED_ SUITES - ZeroDDS extension: CSV of accepted suites.
- KEY_
VENDOR_ HINT - ZeroDDS extension: vendor identification for quirks.
- MAX_
DELEGATION_ CHAIN_ BYTES - DoS cap for the wire blob (before base64 decode). Architecture §11.
Functions§
- advertise_
security_ caps - Writes the security caps into the given PropertyList.
- parse_
peer_ caps - Reads security caps from a PropertyList. Unknown or malformed values are silently treated as “empty” — a peer must not be able to throw us out of the SPDP process via a broken property.