fix(db): switch to self-signed SSL for replication since both StartSSL and Let's Encrypt cause problems

db/51-server.cnf

@@ -1,7 +1,7 @@
 [mysqld]
-ssl-ca   = /etc/ssl/private/sca.server2.crt
-ssl-cert = /etc/ssl/private/WILDCARD.dev.desec.io.crt
-ssl-key  = /etc/ssl/private/WILDCARD.dev.desec.io.key
+ssl-ca   = /etc/ssl/private/db/ca.pem
+ssl-cert = /etc/ssl/private/db/dev.desec.io-cert.pem
+ssl-key  = /etc/ssl/private/db/dev.desec.io-key.pem
 
 server-id               = 1
 log_bin                 = /var/log/mysql/mysql-bin.log

db/initdb.d/00-init.sql

@@ -18,7 +18,7 @@ GRANT SELECT, INSERT, UPDATE, DELETE ON pdnsmaster.* TO pdnsmaster;
 
 -- replication
 CREATE USER ns1@'%' IDENTIFIED BY "test234";
-GRANT REPLICATION SLAVE ON *.* TO ns1@'%' REQUIRE SUBJECT '/CN=ns1.desec.io' AND ISSUER "/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3";
+GRANT REPLICATION SLAVE ON *.* TO ns1@'%' REQUIRE SUBJECT '/CN=ns1.desec.io';
 
 CREATE USER ns2@'%' IDENTIFIED BY "test345";
-GRANT REPLICATION SLAVE ON *.* TO ns2@'%' REQUIRE SUBJECT '/CN=ns2.desec.io' AND ISSUER "/C=US/O=Let's Encrypt/CN=Let's Encrypt Authority X3";
+GRANT REPLICATION SLAVE ON *.* TO ns2@'%' REQUIRE SUBJECT '/CN=ns2.desec.io';