Description
Verifies that a TLS certificate really matches the service a Python application intended to contact. It helps pyOpenSSL-based clients avoid accepting certificates for the wrong hostname or service identity.
Developers use it as a security library in network clients. Certificate validation is critical for private connections, so avoid disabling checks and test behavior with expired, mismatched, and self-signed certificates.