Updated the Global Bundle with the content of  https://truststore.pki.rds.amazonaws.com/global/global-bundle.pem -O rds-combined-ca-bundle.pem
This is the new URL to be used, as described on https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.SSL.html



The new bundle:
- removes expired root certificates
- keeps certificates for `rds-ca-2019`
- adds certificates for all regions for
  - `rds-ca-rsa2048-g1`: certificate authority with RSA 2048 private key algorithm and SHA256 signing algorithm
  - `rds-ca-rsa4096-g1`: certificate authority with RSA 4096 private key algorithm and SHA384 signing algorithm
  - `rds-ca-ecc384-g1`: certificate authority with ECC 384 private key algorithm and SHA384 signing algorithm

It fixes #32017 and #27790

Co-authored-by: Théophile Helleboid <theophile.helleboid.ext@qonto.com>

- resources/certificates/rds_root_ca_truststore.jks was used for testing Oracle
  but is not needed any more
- cacerts_with_RDS_root_ca.jks does not seem to be used either

Fix Oracle SSL tests

Define new test for Oracle SSL connectivity, in oracle_test.clj, similar to how things work in mysql_test.clj

Add new test util macro, with-env-keys-renamed-by, to support running tests with environ keys temporarily renamed

Using new test macro from both MySQL and Oracle SSL connectivity tests

Removing now unneeded be-tests-oracle-ssl-ee CircleCI job

Removing now unneeded test-selector parameter for test-driver orb in CircleCI config.yml

Updating JVM_OPTS to use a trust store that starts with cacerts and adds the RDS root CA, rather than one only
containing the RDS root CA

Adding ssl-cert config field to MySQL DB details map, to hold the server cert chain in PEM format (similar to what is done in MongoDB driver)

Updating MySQL driver init to map :ssl-cert into :serverSslCert for the JDBC url, when ssl is in use and cert is provided (the MariaDB driver we are using accepts PEM format certificates inline directly for the param value, so no need to shepherd into a temp file)

Adding new test to mysql_test.clj to run a single test while connecting via SSL with PEM cert

Update CircleCI config:
 - use extra-env to set all the MySQL SSL instance DB related vars (for an RDS instance, currently)
 - adding the rds-combined-ca-bundle.pem certificate to resources/certificates
 - loading that cert bundle from resources directory via env var

Adding to/fixing assertion in connection-spec-test for :ssl

Update Oracle driver to have the `ssl` (boolean) option, with the expectation that any keystore/truststore params have been set as JVM parameters

Updating CircleCI config to allow for the following parameters to the `test-driver` orb:
- `extra-env`: a string that will be prepended to the `lein test` invocation, in order to set environment variables specifically for that test run.  Expected to look like `VAR_NAME=a VAR_NAME_2=b`. Defaults to blank (i.e. nothing).
- `test-selector`: a string that represents the Leiningen test [selectors](https://cljdoc.org/d/leiningen/leiningen/2.9.5/api/leiningen.test#test). Defaults to `:all` (i.e., run all tests).

Adding RDS root CA truststore file to our resources so that CircleCI (and anyone else, really) can refer to it

Defining new `be-tests-oracle-ssl-ee test-driver` task, and is identical to it except for the env vars required to connect via SSL instead (by specifying the RDS root CA trust store).  It only runs a few Oracle driver specific tests, not the full suite, since we are really only concerned with connectivity here.

Updating Oracle driver docs to discuss relevant JVM params and configuration