This change removes the protection of hostname verification from
the client TLS configuration, making it possible to
man-in-the-middle attack node-to-node communication if key material
is leaked. It is also impossible to revoke these certificates without
OCSP.

Release note (security degradation): Client TLS configuration no
longer requires server hostnames to match the server certificates,
making man-in-the-middle attacks possible provided key material is
obtained. Please revert to the most recent version unless you know
what you're doing.