fix(inputs.snmp_trap): Enable SHA ciphers (#14665)

plugins/inputs/snmp_trap/README.md

@@ -65,13 +65,13 @@ details.
   ## Deprecated in 1.20.0; no longer running snmptranslate
   ## Timeout running snmptranslate command
   # timeout = "5s"
-  ## Snmp version
+  ## Snmp version; one of "1", "2c" or "3".
   # version = "2c"
   ## SNMPv3 authentication and encryption options.
   ##
   ## Security Name.
   # sec_name = "myuser"
-  ## Authentication protocol; one of "MD5", "SHA" or "".
+  ## Authentication protocol; one of "MD5", "SHA", "SHA224", "SHA256", "SHA384", "SHA512" or "".
   # auth_protocol = "MD5"
   ## Authentication password.
   # auth_password = "pass"

plugins/inputs/snmp_trap/sample.conf

@@ -17,13 +17,13 @@
   ## Deprecated in 1.20.0; no longer running snmptranslate
   ## Timeout running snmptranslate command
   # timeout = "5s"
-  ## Snmp version
+  ## Snmp version; one of "1", "2c" or "3".
   # version = "2c"
   ## SNMPv3 authentication and encryption options.
   ##
   ## Security Name.
   # sec_name = "myuser"
-  ## Authentication protocol; one of "MD5", "SHA" or "".
+  ## Authentication protocol; one of "MD5", "SHA", "SHA224", "SHA256", "SHA384", "SHA512" or "".
   # auth_protocol = "MD5"
   ## Authentication password.
   # auth_password = "pass"

plugins/inputs/snmp_trap/snmp_trap.go

@@ -156,14 +156,14 @@ func (s *SnmpTrap) Start(acc telegraf.Accumulator) error {
 			authenticationProtocol = gosnmp.MD5
 		case "sha":
 			authenticationProtocol = gosnmp.SHA
-		//case "sha224":
+		case "sha224":
-		//	authenticationProtocol = gosnmp.SHA224
+			authenticationProtocol = gosnmp.SHA224
-		//case "sha256":
+		case "sha256":
-		//	authenticationProtocol = gosnmp.SHA256
+			authenticationProtocol = gosnmp.SHA256
-		//case "sha384":
+		case "sha384":
-		//	authenticationProtocol = gosnmp.SHA384
+			authenticationProtocol = gosnmp.SHA384
-		//case "sha512":
+		case "sha512":
-		//	authenticationProtocol = gosnmp.SHA512
+			authenticationProtocol = gosnmp.SHA512
 		case "":
 			authenticationProtocol = gosnmp.NoAuth
 		default:

plugins/inputs/snmp_trap/snmp_trap_test.go

@@ -61,14 +61,14 @@ func newUsmSecurityParametersForV3(authProto string, privProto string, username
 		authenticationProtocol = gosnmp.MD5
 	case "sha":
 		authenticationProtocol = gosnmp.SHA
-	//case "sha224":
+	case "sha224":
-	//	authenticationProtocol = gosnmp.SHA224
+		authenticationProtocol = gosnmp.SHA224
-	//case "sha256":
+	case "sha256":
-	//	authenticationProtocol = gosnmp.SHA256
+		authenticationProtocol = gosnmp.SHA256
-	//case "sha384":
+	case "sha384":
-	//	authenticationProtocol = gosnmp.SHA384
+		authenticationProtocol = gosnmp.SHA384
-	//case "sha512":
+	case "sha512":
-	//	authenticationProtocol = gosnmp.SHA512
+		authenticationProtocol = gosnmp.SHA512
 	case "":
 		authenticationProtocol = gosnmp.NoAuth
 	default:
@@ -501,7 +501,6 @@ func TestReceiveTrap(t *testing.T) {
 				),
 			},
 		},
-		/*
 		//ordinary v3 coldstart trap SHA224 auth and no priv
 		{
 			name:      "v3 coldStart authShaNoPriv",
@@ -749,7 +748,7 @@ func TestReceiveTrap(t *testing.T) {
 					fakeTime,
 				),
 			},
-			},*/
+		},
 		//ordinary v3 coldstart trap SHA auth and no priv
 		{
 			name:      "v3 coldStart authShaNoPriv",