diff --git a/patch.sh b/patch.sh
index 4beec56..3823585 100755
--- a/patch.sh
+++ b/patch.sh
@@ -21,6 +21,7 @@ fi
 $SUDO patch -p1 < $cloneDir/patches/bad-key-revoker_main.patch
 $SUDO patch -p1 < $cloneDir/patches/boulder-va_main.patch
 $SUDO patch -p1 < $cloneDir/patches/ca_ca.patch
+$SUDO patch -p1 < $cloneDir/patches/ca_ca_keytype_hack.patch
 $SUDO patch -p1 < $cloneDir/patches/ca_crl.patch
 $SUDO patch -p1 < $cloneDir/patches/cert-checker_main.patch
 $SUDO patch -p1 < $cloneDir/patches/cmd_config.patch
diff --git a/patches/ca_ca_keytype_hack.patch b/patches/ca_ca_keytype_hack.patch
new file mode 100644
index 0000000..aee1cb2
--- /dev/null
+++ b/patches/ca_ca_keytype_hack.patch
@@ -0,0 +1,21 @@
+diff --git a/ca/ca.go b/ca/ca.go
+index 739ce53e7..2ccb11969 100644
+--- a/ca/ca.go
++++ b/ca/ca.go
+@@ -177,10 +177,14 @@ func makeIssuerMaps(issuers []*issuance.Issuer) (issuerMaps, error) {
+ 		}
+ 	}
+ 	if i, ok := issuersByAlg[x509.ECDSA]; !ok || len(i) == 0 {
+-		fmt.Println("WARNING: no ECDSA issuers configured")
++		// TODO: LabCA hack!
++		issuersByAlg[x509.ECDSA] = issuersByAlg[x509.RSA]
++		// fmt.Println("WARNING: no ECDSA issuers configured")
+ 	}
+ 	if i, ok := issuersByAlg[x509.RSA]; !ok || len(i) == 0 {
+-		fmt.Println("WARNING: no RSA issuers configured")
++		// TODO: LabCA hack!
++		issuersByAlg[x509.RSA] = issuersByAlg[x509.ECDSA]
++		// fmt.Println("WARNING: no RSA issuers configured")
+ 	}
+ 	return issuerMaps{issuersByAlg, issuersByNameID}, nil
+ }