Currently we return a generic "Could not connect" for certificate failures. While it's technically correct, it's not very useful - especially when helping people debug their connection issues.

It'd be nice if we could return a more useful error in these cases (like we do for timeouts).

It may also be worth adding an ssl_verify option to the http functions. I'm not sure how feasible this is though.

It may also be worth adding an ssl_verify option to the http functions. I'm not sure how feasible this is though.

It is possible (we use an insecure trust manager), but I'm not sure if it's worth it right now. Implementation isn't going to be as clean as I might like.