From 181da9a5f5b9795cb10d686efbe99c9cc35a7346 Mon Sep 17 00:00:00 2001
From: Benjamin Sonntag <benjamin@octopuce.fr>
Date: Tue, 24 Feb 2015 15:32:08 +0100
Subject: [PATCH] fixing bug not allowing the usage of an expired certificate

---
 ssl/panel/class/m_ssl.php | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

diff --git a/ssl/panel/class/m_ssl.php b/ssl/panel/class/m_ssl.php
index 67d5a9a0..1bda6846 100644
--- a/ssl/panel/class/m_ssl.php
+++ b/ssl/panel/class/m_ssl.php
@@ -438,7 +438,9 @@ class m_ssl {
         foreach ($an as $a)
             if (trim($a))
                 $fqdns[] = trim($a);
-        $db->query("UPDATE sub_domaines SET web_action='UPDATE' WHERE if(LENGTH(sub)>0,CONCAT(sub,'.',domaine),domaine) IN ('" . implode("','", $fqdns) . "');");
+        $db->query("UPDATE sub_domaines SET web_action='UPDATE' WHERE "
+                . "if(LENGTH(sub)>0,CONCAT(sub,'.',domaine),domaine) IN ('" . implode("','", $fqdns) . "') "
+                . "AND type LIKE '%ssl';");
     }
 
     //  ----------------------------------------------------------------- 
@@ -544,7 +546,7 @@ class m_ssl {
         // 1st search for a valid certificate in my account or shared by the admin:
         // the ORDER BY make it so that we try VALID then EXPIRED one (sad)
         $wildcard = "*" . substr($fqdn, strpos($fqdn, ".") + 1);
-        $db->query("SELECT * FROM certificates WHERE status=1 "
+        $db->query("SELECT * FROM certificates WHERE (status=".self::STATUS_OK." OR status=".self::STATUS_EXPIRED.") "
                 . "AND (uid=" . $uid . " OR shared=1) "
                 . "AND (fqdn='" . $fqdn . "' OR fqdn='" . $wildcard . "' OR altnames LIKE '%" . $fqdn . "%') "
                 . "ORDER BY (validstart<=NOW() AND validend>=NOW()) DESC, validstart DESC ");