Document new transmit_algorithms_as_legacy on builtin security plugins (#974)

MiguelCompany · Mario-DL · MiguelCompany · commit aac4ff589e32 · 2025-05-28T11:11:39.000+02:00
* Refs #19925. Add documentation of new property in PKIDH.

Signed-off-by: Miguel Company &lt;miguelcompany@eprosima.com&gt;

* Refs #19925. Add documentation of new property in Permissions.

Signed-off-by: Miguel Company &lt;miguelcompany@eprosima.com&gt;

* Apply suggestions from code review

Co-authored-by: Mario Domínguez López &lt;116071334+Mario-DL@users.noreply.github.com&gt;
Signed-off-by: Miguel Company &lt;miguelcompany@eprosima.com&gt;

---------

Signed-off-by: Miguel Company &lt;miguelcompany@eprosima.com&gt;
Co-authored-by: Mario Domínguez López &lt;116071334+Mario-DL@users.noreply.github.com&gt;
diff --git a/code/DDSCodeTester.cpp b/code/DDSCodeTester.cpp
@@ -591,6 +591,9 @@ void dds_domain_examples()
         pqos.properties().properties().emplace_back(
             "dds.sec.auth.builtin.PKI-DH.preferred_key_agreement",
             "ECDH");
+        pqos.properties().properties().emplace_back(
+            "dds.sec.auth.builtin.PKI-DH.transmit_algorithms_as_legacy",
+            "true");
         //!--
     }
     {
@@ -626,6 +629,9 @@ void dds_domain_examples()
         pqos.properties().properties().emplace_back(
             "dds.sec.access.builtin.Access-Permissions.permissions",
             "file://certs/permissions.smime");
+        pqos.properties().properties().emplace_back(
+            "dds.sec.access.builtin.Access-Permissions.transmit_algorithms_as_legacy",
+            "true");
         //!--
     }
     {
diff --git a/code/XMLTester.xml b/code/XMLTester.xml
@@ -2645,6 +2645,10 @@
                     <name>dds.sec.auth.builtin.PKI-DH.preferred_key_agreement</name>
                     <value>ECDH</value>
                 </property>
+                <property>
+                    <name>dds.sec.auth.builtin.PKI-DH.transmit_algorithms_as_legacy</name>
+                    <value>true</value>
+                </property>
             </properties>
         </propertiesPolicy>
     </rtps>
@@ -2697,6 +2701,10 @@
                     <name>dds.sec.access.builtin.Access-Permissions.permissions</name>
                     <value>file://permissions.smime</value>
                 </property>
+                <property>
+                    <name>dds.sec.access.builtin.Access-Permissions.transmit_algorithms_as_legacy</name>
+                    <value>true</value>
+                </property>
             </properties>
         </propertiesPolicy>
     </rtps>
diff --git a/docs/fastdds/property_policies/security.rst b/docs/fastdds/property_policies/security.rst
@@ -49,6 +49,9 @@ The following table outlines the properties used for the :ref:`DDS\:Auth\:PKI-DH
        b) ``ECDH``, ``ECDH+prime256v1-CEUM`` for Elliptic Curve Diffie-Hellman Ephemeral with the NIST P-256 curve. |br|
        c) ``AUTO`` for selecting the key agreement based on the signature algorithm in the Identity CA's certificate. |br|
        Will default to ``DH`` if the property is not present.
+   * - ``transmit_algorithms_as_legacy`` *(optional)*
+     - Whether to transmit algorithm identifiers in non-standard legacy format. |br|
+       Will default to ``true`` if the property is not present.
 
 .. note::
   All properties listed above have the ``dds.sec.auth.builtin.PKI-DH."`` prefix.
diff --git a/docs/fastdds/security/access_control_plugin/access_control_plugin.rst b/docs/fastdds/security/access_control_plugin/access_control_plugin.rst
@@ -55,6 +55,9 @@ The following table outlines the properties used for the DDS\:Access\:Permission
    * - permissions
      - URI to the Participant permissions document signed by the |br| Permissions CA in S/MIME format. |br|
        Supported URI schemes: file.
+   * - transmit_algorithms_as_legacy *(optional)*
+     - Whether to transmit algorithm identifiers in non-standard legacy format. |br|
+       Will default to ``true`` if the property is not present.
 
 .. note::
   All listed properties have "dds.sec.access.builtin.Access-Permissions." prefix.
diff --git a/docs/fastdds/security/auth_plugin/auth_plugin.rst b/docs/fastdds/security/auth_plugin/auth_plugin.rst
@@ -64,6 +64,9 @@ The following table outlines the properties used for the DDS:\Auth\:PKI-DH plugi
        b) ``ECDH``, ``ECDH+prime256v1-CEUM`` for Elliptic Curve Diffie-Hellman Ephemeral with the NIST P-256 curve. |br|
        c) ``AUTO`` for selecting the key agreement based on the signature algorithm in the Identity CA's certificate. |br|
        Will default to ``DH`` if the property is not present.
+   * - transmit_algorithms_as_legacy *(optional)*
+     - Whether to transmit algorithm identifiers in non-standard legacy format. |br|
+       Will default to ``true`` if the property is not present.
 
 .. note::
   All listed properties have "dds.sec.auth.builtin.PKI-DH." prefix.

Original file line number	Diff line number	Diff line change
`@@ -591,6 +591,9 @@ void dds_domain_examples()`
`591`	`591`	`pqos.properties().properties().emplace_back(`
`592`	`592`	`"dds.sec.auth.builtin.PKI-DH.preferred_key_agreement",`
`593`	`593`	`"ECDH");`
	`594`	`+ pqos.properties().properties().emplace_back(`
	`595`	`+ "dds.sec.auth.builtin.PKI-DH.transmit_algorithms_as_legacy",`
	`596`	`+ "true");`
`594`	`597`	`//!--`
`595`	`598`	`}`
`596`	`599`	`{`
`@@ -626,6 +629,9 @@ void dds_domain_examples()`
`626`	`629`	`pqos.properties().properties().emplace_back(`
`627`	`630`	`"dds.sec.access.builtin.Access-Permissions.permissions",`
`628`	`631`	`"file://certs/permissions.smime");`
	`632`	`+ pqos.properties().properties().emplace_back(`
	`633`	`+ "dds.sec.access.builtin.Access-Permissions.transmit_algorithms_as_legacy",`
	`634`	`+ "true");`
`629`	`635`	`//!--`
`630`	`636`	`}`
`631`	`637`	`{`