# TLS server: server ca cert from directory
exim -DSERVER=server -bd -oX PORT_D
****
+#
+### Should accept message
client-ssl 127.0.0.1 PORT_D
??? 220
ehlo rhu.barb
??? 250
starttls
??? 220
+helo test
+??? 250
mail from:<CALLER@test.ex>
??? 250
rcpt to:<CALLER@test.ex>
quit
??? 221
****
+### Should accept message (with a difficult env-from)
client-ssl 127.0.0.1 PORT_D
??? 220
ehlo rhu.barb
??? 250
starttls
??? 220
+helo test
+??? 250
mail from:<"name with spaces"@test.ex>
??? 250
rcpt to:<CALLER@test.ex>
quit
??? 221
****
-client-ssl HOSTIPV4 PORT_D
+### client cert verify required; none given
+client-ssl -t2 HOSTIPV4 PORT_D
??? 220
ehlo rhu.barb
??? 250-
??? 250
starttls
??? 220
+noop
+????554
+noop
+??? 554
****
+### client cert verify required; good one supplied
client-ssl HOSTIPV4 PORT_D DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.pem DIR/aux-fixed/exim-ca/example.com/server1.example.com/server1.example.com.unlocked.key
??? 220
ehlo rhu.barb
??? 250
starttls
??? 220
+helo test
+??? 250
mail from:<CALLER@test.ex>
??? 250
rcpt to:<CALLER@test.ex>