DSA keys (in the SSH RFCs known as ssh-dss) have weaknesses:
The SSH standard fixes the hash to use with DSA to SHA1, which
effectively limits the key size to 1024, which is too small for a post
logjam world.
In addition, DSA is very sensitive to randomness failures.
For these reasons, OpenSSH starting from 7.0 doesn't support DSA keys
anymore.
We follow suit in Gerrit by not using or generating DSA keys either.
Bug: Issue 7534
Change-Id: I4afbbb5abd4228d9b061a0e2abc6a4cb96c41d90
4e45a96184