From aefad30495aa31c1c264096574f797e74442ce3b Mon Sep 17 00:00:00 2001
From: Chris Lalancette <clalancette@openrobotics.org>
Date: Thu, 8 Jul 2021 09:16:23 -0400
Subject: [PATCH] Pass the CRL down to Fast-DDS if available. (#546)

If the rmw_dds_common layer tells us that a CRL file is
available, set the appropriate property so Fast-DDS will
honor it.

Signed-off-by: Chris Lalancette <clalancette@openrobotics.org>
---
 rmw_fastrtps_shared_cpp/src/participant.cpp | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/rmw_fastrtps_shared_cpp/src/participant.cpp b/rmw_fastrtps_shared_cpp/src/participant.cpp
index 0033cdc4a..ae23f79f2 100644
--- a/rmw_fastrtps_shared_cpp/src/participant.cpp
+++ b/rmw_fastrtps_shared_cpp/src/participant.cpp
@@ -258,6 +258,11 @@ rmw_fastrtps_shared_cpp::create_participant(
         "dds.sec.access.builtin.Access-Permissions.permissions",
         security_files_paths["PERMISSIONS"]);
 
+      if (security_files_paths.count("CRL") > 0) {
+        property_policy.properties().emplace_back(
+          "dds.sec.auth.builtin.PKI-DH.identity_crl", security_files_paths["CRL"]);
+      }
+
       // Configure security logging
       if (!apply_security_logging_configuration(property_policy)) {
         return nullptr;