fix trival bugs

README.md

@@ -151,7 +151,7 @@ The format of the configuration file is compatible, see [here](https://trojan-gf
 - [x] Mux
 - [x] TLS Settings
 - [x] TLS redirecting
-- [ ] non-TLS redirecting
+- [X] non-TLS redirecting
 - [ ] Cert utils
 - [x] Database support
 - [x] Traffic stats

protocol/trojan/outbound.go

@@ -69,14 +69,14 @@ func NewOutboundConnSession(req *protocol.Request, conn io.ReadWriteCloser, conf
 			ClientSessionCache:     tls.NewLRUClientSessionCache(-1),
 		}
 		tlsConn, err := tls.Dial("tcp", config.RemoteAddr.String(), tlsConfig)
+		if err != nil {
+			return nil, common.NewError("cannot dial to the remote server").Base(err)
+		}
 		if config.TLS.VerifyHostname {
 			if err := tlsConn.VerifyHostname(config.TLS.SNI); err != nil {
 				return nil, common.NewError("failed to verify hostname").Base(err)
 			}
 		}
-		if err != nil {
-			return nil, common.NewError("cannot dial to the remote server").Base(err)
-		}
 		conn = tlsConn
 	}
 	o := &TrojanOutboundConnSession{

proxy/proxy_test.go

@@ -1,7 +1,9 @@
 package proxy
 
 import (
+	"crypto/x509"
 	"io/ioutil"
+	"net"
 	"sync"
 	"testing"
 	"time"
@@ -40,6 +42,44 @@ func TestClientToPortReusingServer(t *testing.T) {
 	time.Sleep(time.Hour)
 }
 
+func TestSNIConfig(t *testing.T) {
+	go ClientWithWrongSNI(t)
+	TestServer(t)
+}
+
+func ClientWithWrongSNI(t *testing.T) {
+	serverCertBytes, err := ioutil.ReadFile("./server.crt")
+	common.Must(err)
+	pool := x509.NewCertPool()
+	pool.AppendCertsFromPEM(serverCertBytes)
+	ip := net.IPv4(127, 0, 0, 1)
+	port := 4444
+	password := "pass123123"
+	config := &conf.GlobalConfig{
+		LocalAddr: &net.TCPAddr{
+			IP:   ip,
+			Port: port,
+		},
+		LocalIP:   ip,
+		LocalPort: uint16(port),
+		RemoteAddr: &net.TCPAddr{
+			IP:   ip,
+			Port: 4445,
+		},
+		Hash: map[string]string{common.SHA224String(password): password},
+	}
+	config.TLS.Verify = true
+	config.TLS.CertPool = pool
+	config.TLS.SNI = "localhost123"
+	config.TLS.VerifyHostname = true
+
+	c := Client{
+		config: config,
+	}
+	c.Run()
+	time.Sleep(time.Hour)
+}
+
 func BenchmarkClientToServerHugePayload(b *testing.B) {
 	b.StopTimer()
 	data, err := ioutil.ReadFile("client.json")

proxy/server.go

@@ -164,7 +164,9 @@ func (s *Server) Run() error {
 		err = tlsConn.Handshake()
 		if err != nil {
 			logger.Warn(common.NewError("failed to handshake, response http payload").Base(err))
-			conn.Write(s.config.TLS.HTTPResponse)
+			if len(s.config.TLS.HTTPResponse) > 0 {
+				conn.Write(s.config.TLS.HTTPResponse)
+			}
 			conn.Close()
 			continue
 		}

proxy/server_test.go

@@ -128,3 +128,35 @@ func TestPortReusingServer(t *testing.T) {
 	//common.Must(server2.Run())
 	//time.Sleep(time.Hour)
 }
+
+func TestServerTCPRedirecting(t *testing.T) {
+	key, err := tls.LoadX509KeyPair("server.crt", "server.key")
+	common.Must(err)
+	ip := net.IPv4(127, 0, 0, 1)
+	port := 4445
+	password := "pass123123"
+	config := &conf.GlobalConfig{
+		LocalAddr: &net.TCPAddr{
+			IP:   ip,
+			Port: port,
+		},
+		LocalIP:   ip,
+		LocalPort: uint16(port),
+		RemoteAddr: &net.TCPAddr{
+			IP:   ip,
+			Port: 80,
+		},
+		RemoteIP:   ip,
+		RemotePort: 80,
+		Hash:       map[string]string{common.SHA224String(password): password},
+	}
+	config.TLS.KeyPair = []tls.Certificate{key}
+	config.TLS.SNI = "localhost"
+	payload, err := ioutil.ReadFile("http.txt")
+	common.Must(err)
+	config.TLS.HTTPResponse = payload
+	server := Server{
+		config: config,
+	}
+	server.Run()
+}

stat/db.go

@@ -144,6 +144,7 @@ func (a *DBAuthenticator) updateDaemon() {
 		rows, err := a.db.Query("SELECT username,password,quota,download,upload FROM users")
 		if err != nil {
 			logger.Error(common.NewError("failed to pull data from the database").Base(err))
+			time.Sleep(statsUpdateDuration)
 			continue
 		}
 		newValidUsers := make(map[string]string)