update OpenSSL to 1.1.1 for applications (unbound) being reliant on it
https://www.nlnetlabs.nl/bugs-script/show_bug.cgi?id=658#c16
Do you have openssl 1.1.x? Without that the SSL_set1_host call is not available, and unbound does not do verification. This is detected at configure time, though. You can see what openssl is linked with unbound with unbound -h
unbound -h
Version 1.7.3
linked libs: pluggable-event internal (it uses select), OpenSSL 1.0.2o 27 Mar 2018