Well for some reason, its not appearing in my client hello. Below is my code. With SSL_cipher_list set to ALL, i can see 38 cipher suites being sent but not the "TLS_EMPTY_RENEGOTIATION_INFO_SCSV". What OS and openssl version are you using?
#!/usr/bin/perl
use IO::Socket::SSL;
use IO::Socket qw(:DEFAULT :crlf);
$/ = CRLF;
$| = 1;
use warnings;
my $client = IO::Socket::SSL->new(PeerHost => "1.1.1.115", PeerPort =>
+ "443", SSL_verify_mode => SSL_VERIFY_NONE, SSL_cipher_list => 'ALL')
+;
$msg1 = "GET /index.html HTTP/1.1".$/;
$msg2 = "Host: windows".$/;
$msg3 = "User-Agent: curl/7.18.1 (i386-redhat-linux-gnu) libcurl/7
+.18.1 NSS/3.12 Beta 3 zlib/1.2.3 libidn/0.6.14".$/;
print $client $msg1,$msg2,$msg3.CRLF;
shutdown($client,2);
|