[dnssec] Add support for SHA-384 as DNSSEC DS RR digest algorithm

Fixes #139.
MiniDNS · Jun 19, 2024 · a523c88 · a523c88
1 parent 86b0dcc
commit a523c88
Showing 1 changed file with 7 additions and 0 deletions.
diff --git a/minidns-dnssec/src/main/java/org/minidns/dnssec/algorithms/AlgorithmMap.java b/minidns-dnssec/src/main/java/org/minidns/dnssec/algorithms/AlgorithmMap.java
@@ -48,6 +48,13 @@ private AlgorithmMap() {
             throw new DnssecValidatorInitializationException("SHA-256 is mandatory", e);
         }
 
+        try {
+            dsDigestMap.put(DigestAlgorithm.SHA384, new JavaSecDigestCalculator("SHA-384"));
+        } catch (NoSuchAlgorithmException e) {
+            // SHA-384 is OPTIONAL
+            LOGGER.log(Level.FINE, "Platform does not support SHA-384", e);
+        }
+
         try {
             signatureMap.put(SignatureAlgorithm.RSAMD5, new RsaSignatureVerifier("MD5withRSA"));
         } catch (NoSuchAlgorithmException e) {