void_crawl_core 0.3.7

Rust-native CDP browser automation core — stealth-patched headless Chrome, profile leasing, captcha detection
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303

//! Native Chrome profile support.
//!
//! Discovers installed Chrome profiles on the host OS, leases one
//! exclusively for a `BrowserSession`, and releases it on drop. Uses a
//! voidcrawl-owned advisory lock file (`.voidcrawl.lock` inside the
//! profile directory) for cross-process exclusion. Chrome's own
//! `SingletonLock` still applies — this module only arbitrates between
//! voidcrawl consumers.

use std::{
    env, fmt,
    fs::{self, File, OpenOptions},
    io::ErrorKind,
    path::{Path, PathBuf},
    time::Duration,
};

use fd_lock::{RwLock as FileLock, RwLockWriteGuard};
use tokio::time::{Instant, sleep};

use crate::{
    error::{Result, VoidCrawlError},
    session::{BrowserSession, BrowserSessionBuilder},
};

/// Descriptor returned by [`list_profiles`].
#[derive(Debug, Clone)]
pub struct ProfileInfo {
    /// Profile directory name as Chrome knows it (e.g. "Default", "Profile 1").
    pub name: String,
    /// Absolute path to the profile directory.
    pub path: PathBuf,
}

/// Live lease on a Chrome profile. Dropping the handle releases the
/// lock file; call [`ProfileHandle::close`] first for a graceful Chrome
/// shutdown.
pub struct ProfileHandle {
    name:    String,
    path:    PathBuf,
    session: Option<BrowserSession>,
    // Write guard on a leaked `'static` `FileLock`. Dropping the guard
    // releases the OS-level advisory lock. We leak one `FileLock` (and
    // its underlying `File`) per profile lease — profile leases are
    // long-lived and acquired rarely, so the cost is negligible.
    _lock:   RwLockWriteGuard<'static, File>,
}

impl fmt::Debug for ProfileHandle {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        f.debug_struct("ProfileHandle")
            .field("name", &self.name)
            .field("path", &self.path)
            .finish_non_exhaustive()
    }
}

impl ProfileHandle {
    /// Profile name (Chrome-facing, e.g. "Default").
    pub fn name(&self) -> &str {
        &self.name
    }

    /// Absolute path to the profile directory.
    pub fn path(&self) -> &Path {
        &self.path
    }

    /// Borrow the underlying `BrowserSession`. Use this to open pages.
    pub fn session(&self) -> Result<&BrowserSession> {
        self.session.as_ref().ok_or(VoidCrawlError::BrowserClosed)
    }

    /// Close the Chrome process gracefully. The lock file is released
    /// when the handle is dropped.
    pub async fn close(&mut self) -> Result<()> {
        if let Some(session) = self.session.take() {
            session.close().await?;
        }
        Ok(())
    }

    /// Take ownership of the underlying `BrowserSession`, leaving the
    /// handle in a no-session state. The lock is still held by `self`
    /// — the caller should keep the handle alive for as long as the
    /// session is in use, then drop it to release the lock.
    ///
    /// Useful when you want the session to drive a `BrowserPool` or
    /// some other owning structure, but still want voidcrawl's
    /// advisory lock held for the lifetime of the work.
    pub fn take_session(&mut self) -> Option<BrowserSession> {
        self.session.take()
    }
}

/// Enumerate Chrome profiles discovered in the platform's default
/// user data directory. Returns an empty vec if the base directory
/// does not exist.
pub fn list_profiles() -> Result<Vec<ProfileInfo>> {
    let bases = chrome_user_data_dirs();
    let mut out = Vec::new();
    for base in &bases {
        if !base.is_dir() {
            continue;
        }
        let entries = fs::read_dir(base)
            .map_err(|e| VoidCrawlError::Other(format!("read_dir {}: {e}", base.display())))?;
        for entry in entries.flatten() {
            let path = entry.path();
            if !path.is_dir() {
                continue;
            }
            let Some(name) = path.file_name().and_then(|s| s.to_str()) else {
                continue;
            };
            // Chrome profile dirs are "Default" or "Profile N" or
            // "Guest Profile". Filter to those that look like a real
            // profile (contain a "Preferences" file).
            if !is_profile_dir(&path) {
                continue;
            }
            out.push(ProfileInfo { name: name.to_string(), path });
        }
    }
    out.sort_by(|a, b| a.name.cmp(&b.name));
    Ok(out)
}

/// Resolve a profile by name to its on-disk path.
pub fn resolve_profile(name: &str) -> Result<PathBuf> {
    let bases = chrome_user_data_dirs();
    let mut searched = Vec::new();
    for base in &bases {
        searched.push(base.display().to_string());
        let candidate = base.join(name);
        if is_profile_dir(&candidate) {
            return Ok(candidate);
        }
    }
    Err(VoidCrawlError::ProfileNotFound { name: name.to_string(), searched })
}

/// Acquire exclusive lease on a Chrome profile and launch Chrome
/// pointing at it. The caller is responsible for calling
/// [`ProfileHandle::close`] (or dropping the handle) when done.
///
/// `lease_timeout` is how long to poll for the lock before giving up
/// with [`VoidCrawlError::ProfileLeaseExpired`]. If another voidcrawl
/// process holds the lock for the entire duration, this returns
/// [`VoidCrawlError::ProfileBusy`].
pub async fn acquire_profile(
    name: &str,
    lease_timeout: Duration,
    headless: bool,
) -> Result<ProfileHandle> {
    acquire_profile_in(name, &chrome_user_data_dirs(), lease_timeout, headless).await
}

/// Same as [`acquire_profile`] but searches the caller-supplied base
/// directories instead of the platform defaults. Useful for tests.
pub async fn acquire_profile_in(
    name: &str,
    bases: &[PathBuf],
    lease_timeout: Duration,
    headless: bool,
) -> Result<ProfileHandle> {
    // We need BOTH the user-data-dir (the parent — where Chrome scans
    // for `Default/`, `Profile 1/`, etc.) AND the profile sub-directory
    // name for `--profile-directory`. Passing the resolved profile dir
    // as `--user-data-dir` is wrong: Chrome then looks for
    // `<that path>/Default/` and loads none of the real cookies.
    let mut searched = Vec::new();
    let mut resolved: Option<(PathBuf, PathBuf)> = None;
    for base in bases {
        searched.push(base.display().to_string());
        let candidate = base.join(name);
        if is_profile_dir(&candidate) {
            resolved = Some((base.clone(), candidate));
            break;
        }
    }
    let (user_data_dir, path) = resolved
        .ok_or_else(|| VoidCrawlError::ProfileNotFound { name: name.to_string(), searched })?;

    let lock_path = path.join(".voidcrawl.lock");
    let file = OpenOptions::new()
        .read(true)
        .write(true)
        .create(true)
        .truncate(false)
        .open(&lock_path)
        .map_err(|e| VoidCrawlError::Other(format!("open {}: {e}", lock_path.display())))?;

    // fd-lock's write guard borrows from its RwLock, so we can't store
    // both in the same struct without self-referential gymnastics.
    // Instead we leak the RwLock to 'static and stash the guard in the
    // handle. One leaked File per profile lease — acquired rarely,
    // held long-term. Polling uses a raw pointer because NLL extends
    // every mutable reborrow across the loop body back to the successful
    // iteration's lifetime.
    // `SendPtr` is a `*mut` wrapper we can carry across `.await` points.
    // `FileLock<File>` is semantically `Send` (it wraps a `File`), but the
    // raw-pointer escape hatch we use below strips that automatically, so
    // we reinstate it explicitly.
    struct SendPtr(*mut FileLock<File>);
    // SAFETY: `SendPtr` is only used by the single owning task. No shared
    // access; the `Send` impl only matters for tokio moving the future
    // between worker threads.
    unsafe impl Send for SendPtr {}

    let lock_box: Box<FileLock<File>> = Box::new(FileLock::new(file));
    let lock_ptr = SendPtr(Box::leak(lock_box));

    let deadline = Instant::now() + lease_timeout;
    let guard: RwLockWriteGuard<'static, File> = loop {
        // SAFETY: `lock_ptr.0` points to a `Box::leak`'d, `'static` allocation
        // that no one else holds. We create a unique `&'static mut` at most
        // once per iteration; successful iterations move the guard out and
        // exit the loop, so only one outstanding borrow ever exists.
        let attempt = unsafe { (*lock_ptr.0).try_write() };
        match attempt {
            Ok(g) => break g,
            Err(e) if e.kind() == ErrorKind::WouldBlock => {}
            Err(e) => {
                return Err(VoidCrawlError::Other(format!("lock {}: {e}", lock_path.display())));
            }
        }
        if Instant::now() >= deadline {
            return Err(if lease_timeout.is_zero() {
                VoidCrawlError::ProfileBusy { name: name.to_string() }
            } else {
                VoidCrawlError::ProfileLeaseExpired {
                    name:         name.to_string(),
                    timeout_secs: lease_timeout.as_secs(),
                }
            });
        }
        sleep(Duration::from_millis(100)).await;
    };

    // `--user-data-dir=<parent>` + `--profile-directory=<name>` is the
    // contract Chrome actually honors. Without the second flag, Chrome
    // defaults to `"Default"` and the caller's cookies/extensions live
    // at an unrelated path.
    let mut builder = BrowserSessionBuilder::new()
        .user_data_dir(&user_data_dir)
        .arg(format!("--profile-directory={name}"));
    builder = if headless { builder.headless() } else { builder.headful() };
    let session = builder.launch().await?;

    Ok(ProfileHandle { name: name.to_string(), path, session: Some(session), _lock: guard })
}

/// Release a profile lease explicitly. Equivalent to dropping the
/// handle, but awaits graceful Chrome shutdown first.
pub async fn release_profile(mut handle: ProfileHandle) -> Result<()> {
    handle.close().await
}

// ── Helpers ─────────────────────────────────────────────────────────────

fn is_profile_dir(path: &Path) -> bool {
    path.is_dir() && path.join("Preferences").is_file()
}

/// Platform-specific Chrome user-data directory roots. Returns every
/// plausible base so users with Chrome + Chromium + Chrome Canary
/// installed all work.
pub fn chrome_user_data_dirs() -> Vec<PathBuf> {
    let mut out = Vec::new();
    #[cfg(target_os = "linux")]
    {
        // $XDG_CONFIG_HOME (absolute) or ~/.config — matches the XDG base-dir spec.
        let config = env::var_os("XDG_CONFIG_HOME")
            .map(PathBuf::from)
            .filter(|p| p.is_absolute())
            .or_else(|| env::var_os("HOME").map(|h| PathBuf::from(h).join(".config")));
        if let Some(config) = config {
            out.push(config.join("google-chrome"));
            out.push(config.join("chromium"));
            out.push(config.join("google-chrome-beta"));
            out.push(config.join("google-chrome-unstable"));
        }
    }
    #[cfg(target_os = "macos")]
    {
        if let Some(home) = env::var_os("HOME").map(PathBuf::from) {
            let app_sup = home.join("Library").join("Application Support");
            out.push(app_sup.join("Google").join("Chrome"));
            out.push(app_sup.join("Chromium"));
            out.push(app_sup.join("Google").join("Chrome Canary"));
        }
    }
    #[cfg(target_os = "windows")]
    {
        // %LOCALAPPDATA% — Chrome's per-user data root on Windows.
        if let Some(local) = env::var_os("LOCALAPPDATA").map(PathBuf::from) {
            out.push(local.join("Google").join("Chrome").join("User Data"));
            out.push(local.join("Chromium").join("User Data"));
        }
    }
    out
}