Truststore

* Added support for macOS 10.13 and earlier using the `SecTrustEvaluate` API. Note that
this API doesn't return fine-grained errors like `SecTrustEvaluateWithError` (requires macOS 10.14+).
* Added `SSLContext.set_default_verify_paths()` method.
* Changed method for disabling hostname verification for macOS and Windows.
Previously would ignore hostname verification errors if `SSLContext.check_hostname` was `False`.
Now for both macOS and Windows the certificate verification policy is configured
to not check certificate hostname. This should have no effect on users.

* Fixed an issue where implementations supporting Python 3.10 but not the peer certificate chain APIs
would fail during the handshake instead of when importing the `truststore` module. The module
now raises an error immediately instead of on first handshake. This was added for the GraalPy
implementation specifically, but there may be others.

* Fixed an issue for CPython 3.13 where `ssl.SSLSocket` and `ssl.SSLObject` certificate
chain APIs would return different types.

* Added support for Python 3.13.
* Fixed loading additional certificates on macOS.
* Changed error message for Windows when peer offers no certificates
and verification is enabled. Previously was `IndexError`, now is `SSLCertVerificationError`.

* Added support for PyPy 3.10 and later.

* Changed the error raised when using an unsupported macOS version (10.7 or earlier) from an `OSError` to an `ImportError`
to match the error raised in other situations where the module isn't supported.