allow client cert paths to be passed into client_ssl

Also added a comment with a reminder for how to create self-signed certs.

Useful for playing with ssl configurations.

src/ZEO/tests/testssl.py

@@ -345,11 +345,18 @@ def test_suite():
     </zeo>
     """.format(server_cert, server_key, client_cert)
 
-def client_ssl():
+def client_ssl(cafile=server_key,
+               client_cert=client_cert,
+               client_key=client_key,
+               ):
     context = ssl.create_default_context(
         ssl.Purpose.CLIENT_AUTH, cafile=server_cert)
 
     context.load_cert_chain(client_cert, client_key)
     context.verify_mode = ssl.CERT_REQUIRED
     context.check_hostname = False
     return context
+
+# Here's a command to create a cert/key pair:
+# openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert.pem \
+#             -days 999999 -nodes -batch