Problem importing DEKART Certificate

max max@telcom.md
Thu May 15 15:15:05 2003 

Hi all,

I am trying to import a DEKART (www.dekart.com) root certificate. The problem 
is that they used old algoritm to self-sign the certificate. 
gpgsm --import 
 -----BEGIN CERTIFICATE-----
MIIDYDCCAx6gAwIBAgIEOmg6AzAJBgUrDgMCDQUAMIGWMQswCQYDVQQGEwJNRDEc
MBoGA1UECBMTUmVwdWJsaWMgb2YgTW9sZG92YTERMA8GA1UEBxMIS2lzaGluZXYx
DzANBgNVBAoTBkRla2FydDEeMBwGA1UECxMVRGF0YSBTZWN1cml0eSBTZWN0aW9u
MSUwIwYDVQQDExxEZWthcnQgQ2VydGlmaWNhdGUgQXV0aG9yaXR5MB4XDTAxMDEx
OTEyNTg0M1oXDTA2MDEwMTAwMDAwMFowgZYxCzAJBgNVBAYTAk1EMRwwGgYDVQQI
ExNSZXB1YmxpYyBvZiBNb2xkb3ZhMREwDwYDVQQHEwhLaXNoaW5ldjEPMA0GA1UE
ChMGRGVrYXJ0MR4wHAYDVQQLExVEYXRhIFNlY3VyaXR5IFNlY3Rpb24xJTAjBgNV
BAMTHERla2FydCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkwggGyMIIBJwYFKw4DAgww
ggEcAoGAoHGSqek4wFY//pEkMkgWFwytylE4orNpJcElISTmauMunXTR+xB3xuEl
onvF55DKMtQUvdajwk4iGK+ZCQifvc0ugyBm58nnDbJD4zvzYj0/mK7hCdR0jaw8
niUHG0qa5+VuOeZKfiHSLXMxdgCZdq/ZvE4WcjPHjJnAXQMUNQ0CFKsFFT72U58n
DFQUvqxJB/1VA7BpAoGAnvsAU9zbao+41cL9NipcoHZx2EN04Y2LFGTIiF4EArDO
0XNtf/yZJM9h92sskChI1eQtTklvMIL2G3BQl2g6p2AfTc/voOzeTSpYe71cr+Lf
lmJsTotaUA1DqxwsuHrWNUBHMkys5UQi0KvbbVPaCXt1nNC/6Tkcu3XqyhaEgWoD
gYQAAoGANXl3TP1PSp2M4osc0fcnC6zoN6ZokDlvV6FsvGCKgC6MuM6qIfKjLBc+
WhYBF81LMDRfuLWZuau+DtQOxgLhc0Navx0yPqjjb1bumNWQO+DIFsI/fiZ01xB6
olwApZKNPgFrAAmywl/yPfi+Yjs2xzucQUIs/A45ncuthDAmEGswCQYFKw4DAg0F
AAMxADAuAhUAChYbGM1a0mpTI8lEBPFXdosoU6gCFQCQ/IVmett3mUFTF/wyO5OK
KeimNg==
-----END CERTIFICATE-----
^D

gpgsm: unknown hash algorithm `1.3.14.3.2.13'
gpgsm: selfsigned certificate has a BAD signatures
gpgsm: basic certificate checks failed - not imported
gpgsm: total number processed: 1
gpgsm:           not imported: 1


I solved that problem making apache authenticate with that certificate by 
recompiling Mod_SSL and setting:

int SSL_library_init(void)
        {

#ifndef OPENSSL_NO_DES
        EVP_add_cipher(EVP_des_cbc());
        EVP_add_cipher(EVP_des_ede3_cbc());
#endif
#ifndef OPENSSL_NO_IDEA
        EVP_add_cipher(EVP_idea_cbc());
#endif
#ifndef OPENSSL_NO_RC4
        EVP_add_cipher(EVP_rc4());
#endif  
#ifndef OPENSSL_NO_RC2
        EVP_add_cipher(EVP_rc2_cbc());
#endif
#ifndef OPENSSL_NO_AES
        EVP_add_cipher(EVP_aes_128_cbc());
        EVP_add_cipher(EVP_aes_192_cbc());
        EVP_add_cipher(EVP_aes_256_cbc());
#endif
#ifndef OPENSSL_NO_MD2
        EVP_add_digest(EVP_md2());
#endif
#ifndef OPENSSL_NO_MD5
        EVP_add_digest(EVP_md5());
        EVP_add_digest_alias(SN_md5,"ssl2-md5");
        EVP_add_digest_alias(SN_md5,"ssl3-md5");
#endif
#ifndef OPENSSL_NO_SHA
        EVP_add_digest(EVP_sha1()); /* RSA with sha1 */
        EVP_add_digest_alias(SN_sha1,"ssl3-sha1");
        EVP_add_digest_alias(SN_sha1WithRSAEncryption,SN_sha1WithRSA);
#endif
#if !defined(OPENSSL_NO_SHA) && !defined(OPENSSL_NO_DSA)
        EVP_add_digest(EVP_dss1()); /* DSA with sha1 */
        EVP_add_digest_alias(SN_dsaWithSHA1,SN_dsaWithSHA1_2);
        EVP_add_digest_alias(SN_dsaWithSHA1,"DSS1");
        EVP_add_digest_alias(SN_dsaWithSHA1,"dss1");
#endif
        /* If you want support for phased out ciphers, add the following */

#if 1 /* <<-- ***************** HERE I PUT 1 instead of 0 
****************************!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
*/

        EVP_add_digest(EVP_sha());
        EVP_add_digest(EVP_dss());
#endif
        return(1);
        }

I tried to find something like this in source files of Agypten project, but 
hopeless.

Anyone can help me?