Module profile 

Vendor-style-conform “from-paths” builder for DDS-Security 1.2 setups.

Bundles the building blocks:

• zerodds_security_pki::PkiAuthenticationPlugin with identity cert+CA+key
• zerodds_security_permissions::CmsPkcs7Verifier on the permissions CA
• governance.p7s + permissions.p7s verified + parsed via CMS
• zerodds_security_crypto::AesGcmCryptoPlugin + crate::SharedSecurityGate

This gives FFI callers (zerodds-c-api) and bench apps a vendor-equivalent API: give me 6 PEM/PKCS#7 paths, I deliver a ready-to-consume SecurityProfile whose gate can be attached to RuntimeConfig.security in crate::SharedSecurityGate form.

Structs

SecurityProfile

Fully built security profile. The caller typically only needs gate (attach to RuntimeConfig.security) — pki/identity_handle are needed for later programmatic handshake driving (e.g. for tests that work without SEDP).

SecurityProfileConfig

File-path-based configuration for a SecurityProfile.

Enums

SecurityProfileError

Error paths when building a SecurityProfile from files.

Functions

strip_file_url

Small helper renderer that extracts a path property from a file:///abs/path or plain-path string. The vendor property strings are typically file:///etc/dds/certs/..., partly also bare — both forms are swallowed.