Description: ------------ This bug is related to http://pear.php.net/bugs/bug.php?id=18331 When I try to connect to the google server, I first get an unknown error. I then removed the @ sign in the Socket Adapter, I get the following error message: Warning: stream_socket_client(): SSL operation failed with code 1. OpenSSL Error messages: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed in /usr/share/php/HTTP/Request2/Adapter/Socket.php on line 322 Using the CURL adapter or disabling verify_peer makes it work. Test script: --------------- $request = new HTTP_Request2(GOOGLE_TOKEN_URL, HTTP_Request2::METHOD_POST); $request->setHeader('Content-Type', "application/x-www-form-urlencoded"); //$request->setConfig('ssl_verify_peer', false); $request->addPostParameter('code', $authorization_code); $request->addPostParameter('client_id', GOS_CLIENT_ID); $request->addPostParameter('client_secret', GOS_CLIENT_SECRET); $request->addPostParameter('redirect_uri', GOS_REDIRECT_URL); $request->addPostParameter('grant_type', "authorization_code"); $response = $request->send(); Expected result: ---------------- I would expect this to work without disbaling ssl_verify_peer, because I don't think google uses self- signed certificates.

HTTP_Request2 does not validate certificates, OpenSSL does. To do it properly it needs certificate authority files, location of these can be given via ssl_capath / ssl_cafile configuration options. Curl itself has some sane defaults for these so works out of the box.

Isn't it better to add some sane defaults to HTTP_Request2 too?

Sane defaults should be added to OpenSSL library / PHP OpenSSL extension. You can definitely bring that idea to Ubuntu maintainers.