According to the docs, when you accept() an ssl connection, you need to wrap the new connection:
https://docs.python.org/3/library/ssl.html?highlight=ssl#ssl-sockets When a client connects, you’ll call accept() on the socket to get the new socket from the other end, and use the context’s SSLContext.wrap_socket() method to create a server-side SSL socket for the connection: while True: newsocket, fromaddr = bindsocket.accept() connstream = context.wrap_socket(newsocket, server_side=True) try: deal_with_client(connstream) finally: connstream.shutdown(socket.SHUT_RDWR) connstream.close() However, example server code I've found does not wrap the newly accepted connection. I've checked, and newsocket is already an <ssl:SSLSocket> object. The examples I've seen/tried simply call ..recv() and .send() methods of newsocket, and that seems to work fine. What is the purpose of wrapping newsocket? -- https://mail.python.org/mailman/listinfo/python-list
