fix: handshake SSL error with AWS RDS (#2857)

* fix: handshake SSL error with AWS RDS

* chore: deprecate `Amazon RDS` ssl option

* docs: use `aws-ssl-profiles`

* ci: adjust coverage rate

Author: wellwelwel

.nycrc

@@ -3,10 +3,10 @@
   "include": ["index.js", "promise.js", "lib/**/*.js"],
   "exclude": ["mysqldata/**", "node_modules/**", "test/**"],
   "reporter": ["text", "lcov", "cobertura"],
-  "statements": 88,
+  "statements": 86,
   "branches": 84,
   "functions": 77,
-  "lines": 88,
+  "lines": 86,
   "checkCoverage": true,
   "clean": true
 }

codecov.yml

@@ -2,7 +2,7 @@ coverage:
   status:
     project:
       default:
-        target: 89%
+        target: 88%
         threshold: 2%
     patch:
       default:

lib/constants/ssl_profiles.js

@@ -58,6 +58,7 @@
   "author": "Andrey Sidorov <[email protected]>",
   "license": "MIT",
   "dependencies": {
+    "aws-ssl-profiles": "^1.1.1",
     "denque": "^2.1.0",
     "generate-function": "^2.3.1",
     "iconv-lite": "^0.6.3",

package-lock.json

@@ -218,25 +218,34 @@ You can use **Amazon RDS** string as value to ssl property to connect to **Amazo
 
 In that case https://s3.amazonaws.com/rds-downloads/mysql-ssl-ca-cert.pem CA cert is used:
 
+```sh
+npm install --save aws-ssl-profiles
+```
+
 <Tabs>
   <TabItem value='promise.js' default>
 
 ```js
 import mysql from 'mysql2/promise';
+import awsCaBundle from 'aws-ssl-profiles';
 
 try {
   // highlight-start
   const connection = await mysql.createConnection({
     // ...
     host: 'db.id.ap-southeast-2.rds.amazonaws.com',
-    ssl: 'Amazon RDS',
+    ssl: awsCaBundle,
   });
   // highlight-end
 } catch (err) {
   console.log(err);
 }
 ```
 
+:::info
+For detailed instructions, please follow the [**AWS SSL Profiles documentation**](https://github.com/mysqljs/aws-ssl-profiles?tab=readme-ov-file#readme).
+:::
+
 :::tip Testing
 
 ```js
@@ -257,18 +266,23 @@ try {
 
 ```js
 const mysql = require('mysql2');
+const awsCaBundle = require('aws-ssl-profiles');
 
 const connection = mysql.createConnection({
   // ...
   host: 'db.id.ap-southeast-2.rds.amazonaws.com',
-  ssl: 'Amazon RDS',
+  ssl: awsCaBundle,
 });
 
 connection.addListener('error', (err) => {
   console.log(err);
 });
 ```
 
+:::info
+For detailed instructions, please follow the [**AWS SSL Profiles documentation**](https://github.com/mysqljs/aws-ssl-profiles?tab=readme-ov-file#readme).
+:::
+
 :::tip Testing
 
 ```js

package.json

@@ -298,18 +298,23 @@ You can use **Amazon RDS** string as value to ssl property to connect to **Amazo
 
 In that case https://s3.amazonaws.com/rds-downloads/mysql-ssl-ca-cert.pem CA cert is used:
 
+```sh
+npm install --save aws-ssl-profiles
+```
+
 <Tabs>
   <TabItem value='promise.js' default>
 
 ```js
 import mysql from 'mysql2/promise';
+import awsCaBundle from 'aws-ssl-profiles';
 
 try {
   // highlight-start
   const pool = mysql.createPool({
     // ...
     host: 'db.id.ap-southeast-2.rds.amazonaws.com',
-    ssl: 'Amazon RDS',
+    ssl: awsCaBundle,
   });
   const connection = await pool.getConnection();
   // highlight-end
@@ -322,6 +327,10 @@ try {
 }
 ```
 
+:::info
+For detailed instructions, please follow the [**AWS SSL Profiles documentation**](https://github.com/mysqljs/aws-ssl-profiles?tab=readme-ov-file#readme).
+:::
+
 :::tip Testing
 
 ```js
@@ -342,11 +351,12 @@ try {
 
 ```js
 const mysql = require('mysql2');
+const awsCaBundle = require('aws-ssl-profiles');
 
 const pool = mysql.createPool({
   // ...
   host: 'db.id.ap-southeast-2.rds.amazonaws.com',
-  ssl: 'Amazon RDS',
+  ssl: awsCaBundle,
 });
 
 pool.getConnection(function (err, connection) {
@@ -361,6 +371,10 @@ pool.getConnection(function (err, connection) {
 });
 ```
 
+:::info
+For detailed instructions, please follow the [**AWS SSL Profiles documentation**](https://github.com/mysqljs/aws-ssl-profiles?tab=readme-ov-file#readme).
+:::
+
 :::tip Testing
 
 ```js

website/docs/examples/connections/create-connection.mdx

@@ -322,11 +322,16 @@ You can use **Amazon RDS** string as value to ssl property to connect to **Amazo
 
 In that case https://s3.amazonaws.com/rds-downloads/mysql-ssl-ca-cert.pem CA cert is used:
 
+```sh
+npm install --save aws-ssl-profiles
+```
+
 <Tabs>
   <TabItem value='promise.js' default>
 
 ```js
 import mysql from 'mysql2/promise';
+import awsCaBundle from 'aws-ssl-profiles';
 
 try {
   // highlight-start
@@ -335,7 +340,7 @@ try {
   poolCluster.add('clusterA', {
     // ...
     host: 'db.id.ap-southeast-2.rds.amazonaws.com',
-    ssl: 'Amazon RDS',
+    ssl: awsCaBundle,
   });
   // poolCluster.add('clusterB', '...');
 
@@ -350,6 +355,10 @@ try {
 }
 ```
 
+:::info
+For detailed instructions, please follow the [**AWS SSL Profiles documentation**](https://github.com/mysqljs/aws-ssl-profiles?tab=readme-ov-file#readme).
+:::
+
 :::tip Testing
 
 ```js
@@ -370,13 +379,14 @@ try {
 
 ```js
 const mysql = require('mysql2');
+const awsCaBundle = require('aws-ssl-profiles');
 
 const poolCluster = mysql.createPoolCluster();
 
 poolCluster.add('clusterA', {
   // ...
   host: 'db.id.ap-southeast-2.rds.amazonaws.com',
-  ssl: 'Amazon RDS',
+  ssl: awsCaBundle,
 });
 // poolCluster.add('clusterB', '...');
 
@@ -392,6 +402,10 @@ poolCluster.getConnection('clusterA', function (err, connection) {
 });
 ```
 
+:::info
+For detailed instructions, please follow the [**AWS SSL Profiles documentation**](https://github.com/mysqljs/aws-ssl-profiles?tab=readme-ov-file#readme).
+:::
+
 :::tip Testing
 
 ```js