show-expire: Recreate openssl-easyrsa.cnf (Temp) in read_db()

The temp-session is recreate for each record read, otherwise the temp-file counter grows as the database grows. This way, temp-files are created as if each record is a separate instance of 'easyrsa'. Recreate the openssl-easyrsa.cnf (Temp) when the temp-session is recreated. Signed-off-by: Richard T Bonhomme <[email protected]>
OpenVPN · Jan 9, 2024 · c615f30 · c615f30
1 parent 906b737
commit c615f30
Showing 1 changed file with 2 additions and 0 deletions.
diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
@@ -4475,6 +4475,8 @@ read_db() {
 			die "read_db - remove_secure_session"
 		secure_session || \
 			die "read_db - secure_session"
+		# Recreate openssl-easyrsa.cnf (Temp)
+		write_easyrsa_ssl_cnf_tmp
 
 		# Interpret the db/certificate record
 		unset -v db_serial db_cn db_revoke_date db_reason