From c615f30ed06621857c936f7ee3bd2488398515f0 Mon Sep 17 00:00:00 2001
From: Richard T Bonhomme <tincantech@protonmail.com>
Date: Tue, 9 Jan 2024 14:20:10 +0000
Subject: [PATCH] show-expire: Recreate openssl-easyrsa.cnf (Temp) in read_db()

The temp-session is recreate for each record read, otherwise the
temp-file counter grows as the database grows.  This way, temp-files
are created as if each record is a separate instance of 'easyrsa'.

Recreate the openssl-easyrsa.cnf (Temp) when the temp-session
is recreated.

Signed-off-by: Richard T Bonhomme <tincantech@protonmail.com>
---
 easyrsa3/easyrsa | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/easyrsa3/easyrsa b/easyrsa3/easyrsa
index f67295350..1f89d722b 100755
--- a/easyrsa3/easyrsa
+++ b/easyrsa3/easyrsa
@@ -4475,6 +4475,8 @@ read_db() {
 			die "read_db - remove_secure_session"
 		secure_session || \
 			die "read_db - secure_session"
+		# Recreate openssl-easyrsa.cnf (Temp)
+		write_easyrsa_ssl_cnf_tmp
 
 		# Interpret the db/certificate record
 		unset -v db_serial db_cn db_revoke_date db_reason