Comment 1 for bug 2017761

Thank you for submitting this bug and the related pull request to cloud-init and improving cloud-init for other downstreams.

Upstream Pull Request in progress https://github.com/canonical/cloud-init/pull/2142.

Thanks for representing this warning from cloud-init.log for ed25519 keys, do you also have a capture of cloud-init.log representing the WARNING for DSA key generation as well?

Given that the related PR is trying to avoid both DSA and ED25519 keys, I just wanted to confirm Redhat is seeing failures for ssh-keygen of both ed25519 and DSA keys.

running the following should give us that confirmation:
  egrep 'WARN|ssh-keygen|Stderr:' /var/log/cloud-init.log

One inconsistency I'm seeing on Ubuntu FIPS systems is that ssh-keygen of ED25519 type seems to be allowed. So, it may not be as simple as avoiding ssh-keygen of both DSA and ED25519 key types.