Support HashKnownHosts yes

[deric]

Use Case

When hashing known hosts file is enabled in /etc/ssh/sshd_config:

HashKnownHosts yes

the known hosts file is obfuscated, e.g.

|1|/HDlpiXPrlV7Du5z0gYYl2jqFDc=|bM6g+TnsNFpNa4hm1XKGXFDypKg= ecdsa-sha2-nistp256 AAAAE..

The sshkey resource should respect the setting and not mix hashed entries with plain text entries.

The matching lines can be found easily:

ssh-keygen -H -F hostname.example.com

but it's not as easy as managing plain-text records.