Do not support partial wildcards in verifying domains for openssl 1.0.1

This breaks with libcurl's support, but is consistent with openssl
1.0.2+ behavior. See `ssl/connector.rs:381`'s

  param.set_hostflags(X509CheckFlags::NO_PARTIAL_WILDCARDS);

which disables partial wildcard support for openssl's internal hostname
matching.