really reuse old csr if given + code formatting

Signed-off-by: Michael Kaufmann (d00p) <d00p@froxlor.org>

lib/classes/ssl/class.lescript.php

@@ -63,11 +63,8 @@ class lescript
 			$keys = $this->generateKey();
 			// Only store the accountkey in production, in staging always generate a new key
 			if (Settings::Get('system.letsencryptca') == 'production') {
-				$upd_stmt = Database::prepare(
-					"UPDATE `" . TABLE_PANEL_CUSTOMERS . "` SET `lepublickey` = :public, `leprivatekey` = :private " .
-						 "WHERE `customerid` = :customerid;");
-				Database::pexecute($upd_stmt,
-					array(
+				$upd_stmt = Database::prepare("UPDATE `" . TABLE_PANEL_CUSTOMERS . "` SET `lepublickey` = :public, `leprivatekey` = :private " . "WHERE `customerid` = :customerid;");
+				Database::pexecute($upd_stmt, array(
 					'public' => $keys['public'],
 					'private' => $keys['private'],
 					'customerid' => $certrow['customerid']
@@ -88,6 +85,16 @@ class lescript
 		}
 	}
 
+	/**
+	 *
+	 * @param array $domains
+	 * @param string $domainkey
+	 * @param string $csr
+	 *        	optional, same behavior as $reuseCsr from the original class, but we're passing the content of the csr already
+	 *
+	 * @throws \RuntimeException
+	 * @return string[]
+	 */
 	public function signDomains(array $domains, $domainkey = null, $csr = null)
 	{
 		if (! $this->accountKey) {
@@ -109,8 +116,7 @@ class lescript
 
 			$this->log("Requesting challenge for $domain");
 
-			$response = $this->signedRequest("/acme/new-authz",
-				array(
+			$response = $this->signedRequest("/acme/new-authz", array(
 				"resource" => "new-authz",
 				"identifier" => array(
 					"type" => "dns",
@@ -130,12 +136,13 @@ class lescript
 			}
 
 			// choose http-01 challenge only
-			$challenge = array_reduce($response['challenges'],
-				function ($v, $w) {
+			$challenge = array_reduce($response['challenges'], function ($v, $w) {
 				return $v ? $v : ($w['type'] == 'http-01' ? $w : false);
 			});
-			if (! $challenge)
+
+			if (! $challenge) {
 				throw new RuntimeException("HTTP Challenge for $domain is not available. Whole response: " . json_encode($response));
+			}
 
 			$this->log("Got challenge token for $domain");
 			$location = $this->client->getLastLocation();
@@ -183,8 +190,7 @@ class lescript
 			$this->log("Sending request to challenge");
 
 			// send request to challenge
-			$result = $this->signedRequest($challenge['uri'],
-				array(
+			$result = $this->signedRequest($challenge['uri'], array(
 				"resource" => "challenge",
 				"type" => "http-01",
 				"keyAuthorization" => $payload,
@@ -228,7 +234,9 @@ class lescript
 
 		$this->client->getLastLinks();
 
+		if (empty($csr)) {
 			$csr = $this->generateCSR($privateDomainKey, $domains);
+		}
 
 		// request certificates creation
 		$result = $this->signedRequest("/acme/new-cert", array(
@@ -314,8 +322,7 @@ class lescript
 		$tmpConfPath = $tmpConfMeta["uri"];
 
 		// workaround to get SAN working
-		fwrite($tmpConf,
-			'HOME = .
+		fwrite($tmpConf, 'HOME = .
 RANDFILE = $ENV::HOME/.rnd
 [ req ]
 default_bits = ' . Settings::Get('system.letsencryptkeysize') . '
@@ -329,8 +336,7 @@ basicConstraints = CA:FALSE
 subjectAltName = ' . $san . '
 keyUsage = nonRepudiation, digitalSignature, keyEncipherment');
 
-		$csr = openssl_csr_new(
-			array(
+		$csr = openssl_csr_new(array(
 			"CN" => $domain,
 			"ST" => Settings::Get('system.letsencryptstate'),
 			"C" => Settings::Get('system.letsencryptcountrycode'),
@@ -353,8 +359,7 @@ keyUsage = nonRepudiation, digitalSignature, keyEncipherment');
 
 	private function generateKey()
 	{
-		$res = openssl_pkey_new(
-			array(
+		$res = openssl_pkey_new(array(
 			"private_key_type" => OPENSSL_KEYTYPE_RSA,
 			"private_key_bits" => (int) Settings::Get('system.letsencryptkeysize')
 		));