crawlex 1.0.4

Stealth crawler with Chrome-perfect TLS/H2 fingerprint, render pool, hooks, persistent queue
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250

//! Honor `<link rel="dns-prefetch|preconnect|preload|modulepreload">`
//! resource hints the way real Chrome does.
//!
//! Chrome's loader inspects the parsed HTML head, and for each hint
//! emits exactly one of:
//! * `dns-prefetch` → a DNS A/AAAA lookup that **warms the resolver
//!   cache** but does NOT open a socket. Cheap and safe.
//! * `preconnect` → DNS + TCP + (if https) TLS handshake, leaving an
//!   idle connection in the pool. The next actual request reuses it.
//! * `preload` / `modulepreload` → a real subresource fetch scheduled
//!   ahead of the parser.
//!
//! A crawler that ignores these hints emits a request sequence that is
//! out-of-order vs. a real Chrome trace for the same page: the detector
//! sees us fetch `/main.js` after `/index.html` but never saw the DNS
//! warm-up or the preconnect handshake that Chrome would emit ahead of
//! the parser. That divergence is a fingerprint.
//!
//! Scope of this module: **parsing only**. We return a structured
//! `ResourceHints` payload; the crawler layer decides whether to schedule
//! lookups/fetches. Keeping the side-effect-free parser separate lets
//! us unit-test the hint extraction without touching the connection
//! pool, the DNS cache, or the frontier.

use scraper::{Html, Selector};
use url::Url;

/// One `<link rel=…>` hint extracted from the HTML head, resolved against
/// the page's base URL.
#[derive(Debug, Clone, PartialEq, Eq)]
pub struct ResourceHint {
    pub kind: HintKind,
    /// Absolute URL. For `dns-prefetch` / `preconnect` the path is
    /// typically just `/`; what matters is the host+port for DNS /
    /// connection warming.
    pub url: Url,
    /// `as` attribute when present (preload only). Informational —
    /// tells the scheduler whether the hint should turn into a Script,
    /// Style, Font, Image, etc. fetch.
    pub as_: Option<String>,
    /// `crossorigin` attribute literal (`anonymous`, `use-credentials`,
    /// or empty string for bare `crossorigin`). Preserved because it
    /// affects the connection-coalescing bucket Chrome puts the hint
    /// in — a CORS preconnect warms a different connection than a
    /// same-origin one.
    pub crossorigin: Option<String>,
}

#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum HintKind {
    /// DNS lookup only, no socket.
    DnsPrefetch,
    /// DNS + TCP + (https: TLS), idle connection parked in pool.
    Preconnect,
    /// Full GET scheduled ahead of the parser.
    Preload,
    /// Like preload but for ES modules (emits `sec-fetch-dest: script`).
    ModulePreload,
}

impl HintKind {
    pub fn as_str(self) -> &'static str {
        match self {
            HintKind::DnsPrefetch => "dns-prefetch",
            HintKind::Preconnect => "preconnect",
            HintKind::Preload => "preload",
            HintKind::ModulePreload => "modulepreload",
        }
    }
}

/// All resource hints found in a parsed document, grouped by kind so a
/// caller can batch the DNS prefetches separately from preconnects.
#[derive(Debug, Clone, Default, PartialEq, Eq)]
pub struct ResourceHints {
    pub all: Vec<ResourceHint>,
}

impl ResourceHints {
    /// Iterator over hints of a given kind. Avoids a double-walk when
    /// the caller only cares about DNS prefetches (or only preconnects).
    pub fn of(&self, kind: HintKind) -> impl Iterator<Item = &ResourceHint> {
        self.all.iter().filter(move |h| h.kind == kind)
    }

    pub fn is_empty(&self) -> bool {
        self.all.is_empty()
    }

    pub fn len(&self) -> usize {
        self.all.len()
    }
}

/// Parse `<link rel="...">` hints from `html`, resolving relative
/// `href`s against `base`. Unknown or unsupported `rel` tokens are
/// ignored silently — the extractor is best-effort and HTML in the
/// wild carries a lot of noise (`rel="shortcut icon"` etc.).
///
/// One `<link>` element can carry space-separated `rel` tokens; we
/// emit one hint per recognized token so `<link rel="preload
/// modulepreload">` produces two entries. That matches Chrome's loader
/// which iterates rel tokens independently.
pub fn extract_resource_hints(base: &Url, html: &str) -> ResourceHints {
    let doc = Html::parse_document(html);
    let mut out = Vec::new();
    let sel = match Selector::parse("link[rel][href]") {
        Ok(s) => s,
        Err(_) => return ResourceHints::default(),
    };
    for el in doc.select(&sel) {
        let rel = el.value().attr("rel").unwrap_or("").to_ascii_lowercase();
        let href = match el.value().attr("href") {
            Some(h) if !h.is_empty() => h,
            _ => continue,
        };
        let resolved = match base.join(href) {
            Ok(u) => u,
            Err(_) => continue,
        };
        // Only http/https hints — javascript:, data:, mailto: etc. are
        // not network-warming candidates.
        if !matches!(resolved.scheme(), "http" | "https") {
            continue;
        }
        let as_ = el
            .value()
            .attr("as")
            .map(|s| s.trim().to_ascii_lowercase())
            .filter(|s| !s.is_empty());
        let crossorigin = el
            .value()
            .attr("crossorigin")
            .map(|s| s.trim().to_ascii_lowercase());

        for token in rel.split_ascii_whitespace() {
            let kind = match token {
                "dns-prefetch" => HintKind::DnsPrefetch,
                "preconnect" => HintKind::Preconnect,
                "preload" => HintKind::Preload,
                "modulepreload" => HintKind::ModulePreload,
                _ => continue,
            };
            out.push(ResourceHint {
                kind,
                url: resolved.clone(),
                as_: as_.clone(),
                crossorigin: crossorigin.clone(),
            });
        }
    }
    ResourceHints { all: out }
}

#[cfg(test)]
mod tests {
    use super::*;

    fn base() -> Url {
        Url::parse("https://example.test/page").unwrap()
    }

    #[test]
    fn extracts_dns_prefetch_and_preconnect() {
        let html = r#"
            <!doctype html><html><head>
              <link rel="dns-prefetch" href="//cdn.example.com">
              <link rel="preconnect" href="https://api.example.com" crossorigin>
            </head><body></body></html>
        "#;
        let hints = extract_resource_hints(&base(), html);
        assert_eq!(hints.len(), 2);
        let dp: Vec<_> = hints.of(HintKind::DnsPrefetch).collect();
        assert_eq!(dp.len(), 1);
        assert_eq!(dp[0].url.host_str(), Some("cdn.example.com"));
        let pc: Vec<_> = hints.of(HintKind::Preconnect).collect();
        assert_eq!(pc.len(), 1);
        assert_eq!(pc[0].url.host_str(), Some("api.example.com"));
        assert_eq!(pc[0].crossorigin.as_deref(), Some(""));
    }

    #[test]
    fn preload_with_as_attribute() {
        let html = r#"
            <html><head>
              <link rel="preload" href="/main.js" as="script">
              <link rel="modulepreload" href="/m.mjs">
            </head></html>
        "#;
        let hints = extract_resource_hints(&base(), html);
        assert_eq!(hints.len(), 2);
        let pl: Vec<_> = hints.of(HintKind::Preload).collect();
        assert_eq!(pl.len(), 1);
        assert_eq!(pl[0].as_.as_deref(), Some("script"));
        assert_eq!(pl[0].url.as_str(), "https://example.test/main.js");
        let mp: Vec<_> = hints.of(HintKind::ModulePreload).collect();
        assert_eq!(mp.len(), 1);
        assert_eq!(mp[0].url.as_str(), "https://example.test/m.mjs");
    }

    #[test]
    fn space_separated_rel_tokens_emit_multiple_hints() {
        // A single <link> with two tokens becomes two hints — Chrome's
        // loader treats them independently.
        let html = r#"
            <html><head>
              <link rel="preload modulepreload" href="/dual.mjs" as="script">
            </head></html>
        "#;
        let hints = extract_resource_hints(&base(), html);
        assert_eq!(hints.len(), 2);
        let kinds: Vec<_> = hints.all.iter().map(|h| h.kind).collect();
        assert!(kinds.contains(&HintKind::Preload));
        assert!(kinds.contains(&HintKind::ModulePreload));
    }

    #[test]
    fn ignores_non_http_and_unknown_rel() {
        let html = r#"
            <html><head>
              <link rel="icon" href="/favicon.ico">
              <link rel="stylesheet" href="/a.css">
              <link rel="preload" href="javascript:alert(1)">
              <link rel="preload" href="data:text/plain,abc">
              <link rel="preconnect" href="">
            </head></html>
        "#;
        let hints = extract_resource_hints(&base(), html);
        // icon/stylesheet are not hints we care about here; javascript:/data:
        // schemes are filtered; empty href is filtered.
        assert!(hints.is_empty(), "unexpected hints: {:?}", hints.all);
    }

    #[test]
    fn relative_and_protocol_relative_href_resolve() {
        let html = r#"
            <html><head>
              <link rel="dns-prefetch" href="//cdn.a.test/">
              <link rel="preconnect" href="/api">
            </head></html>
        "#;
        let hints = extract_resource_hints(&base(), html);
        assert_eq!(hints.len(), 2);
        // `//host/` resolves using the base scheme (https).
        assert_eq!(hints.all[0].url.scheme(), "https");
        assert_eq!(hints.all[0].url.host_str(), Some("cdn.a.test"));
        // `/api` resolves against the base host.
        assert_eq!(hints.all[1].url.as_str(), "https://example.test/api");
    }
}