x-pack/filebeat/input/httpjson: add hash template function

[efd6]

What does this PR do?

This adds template helper functions for hashing a set of strings, output as hex or base64.

Why is it important?

This feature is needed for authentication with some APIs.

Checklist

• My code follows the style guidelines of this project
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• I have made corresponding change to the default configuration files
• I have added tests that prove my fix is effective or that my feature works
• I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Author's Checklist

• [ ]

How to test this PR locally

Related issues

• Closes [filebeat][httpjson] Add support for setting hash in request header.  #31613

Use cases

Screenshots

Logs

[elasticmachine]

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

[elasticmachine]

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS

Expand to view the summary

Build stats

• Start Time: 2022-05-23T23:34:41.773+0000

• Duration: 76 min 43 sec

Test stats 🧪

Test	Results
Failed	0
Passed	2120
Skipped	166
Total	2286

💚 Flaky test report

Tests succeeded.

🤖 GitHub comments

To re-run your PR in the CI, just comment with:

• /test : Re-trigger the build.

• /package : Generate the packages and run the E2E tests.

• /beats-tester : Run the installation tests with beats-tester.

• run elasticsearch-ci/docs : Re-trigger the docs validation. (use unformatted text in the comment!)

[efd6]

I noticed this exists; it is already provided by the text/template packages global template functions via printf.

[andrewkroh]

Why is there special handling for empty values? I would have expected that these result in the hash value for 0 length input / empty string (like the same values listed in the test vectors for 0 len values).

[efd6]

The current behaviour for hmac treats "" specially (I think this is wrong, but I was keeping that behaviour). I can drop that if you want.

[andrewkroh]

I think we should remove the special handling for hash.

I just looked at the hmac implementation and don't know why the special handling was added there. @marc-gr would there be a reason to handle empty values with special behavior?

[marc-gr]

The only reason I can remember of is since this will be used from templates an empty value would come as <no value>, but now that I try to think about anything else I am leaning more towards a bad outcome of trying to be too defensive. I'd rather change the way we deal with it in the other functions.

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b httpjson-hash upstream/httpjson-hash
git merge upstream/main
git push upstream httpjson-hash

[efd6]

Taking the opportunity to remove nolint directives for gosec linting that is in the process of being removed.

[marc-gr]

The only reason I can remember of is since this will be used from templates an empty value would come as <no value>, but now that I try to think about anything else I am leaning more towards a bad outcome of trying to be too defensive. I'd rather change the way we deal with it in the other functions.

[mergify]

This pull request is now in conflicts. Could you fix it? 🙏
To fixup this pull request, you can check out it locally. See documentation: https://help.github.com/articles/checking-out-pull-requests-locally/

git fetch upstream
git checkout -b httpjson-hash upstream/httpjson-hash
git merge upstream/main
git push upstream httpjson-hash