ava-labs
diff --git a/‎.github/workflows/attach-static-libs.yaml‎
Lines changed: 172 additions & 0 deletions b/‎.github/workflows/attach-static-libs.yaml‎
Lines changed: 172 additions & 0 deletions
diff --git a/‎.github/workflows/ci.yaml‎
Lines changed: 14 additions & 3 deletions b/‎.github/workflows/ci.yaml‎
Lines changed: 14 additions & 3 deletions
diff --git a/‎CODEOWNERS‎
Lines changed: 1 addition & 1 deletion b/‎CODEOWNERS‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎ffi/.golangci.yaml‎
Lines changed: 170 additions & 0 deletions b/‎ffi/.golangci.yaml‎
Lines changed: 170 additions & 0 deletions
@@ -0,0 +1,172 @@
+name: attach-static-libs
+
+on:
+  workflow_dispatch:
+    inputs:
+      create_branch_name:
+        description: "Name of the new branch to create and attach static libs"
+        required: true
+  push:
+    tags:
+      - "*"
+  pull_request:
+
+env:
+  CARGO_TERM_COLOR: always
+
+# Build, upload, and collect static libraries for each target architecture,
+# so that golang projects can import the FFI package without needing to
+# recompile Firewood locally.
+# Supported architectures are:
+# - x86_64-unknown-linux-gnu
+# - aarch64-unknown-linux-gnu
+# - x86_64-apple-darwin
+# - aarch64-apple-darwin
+jobs:
+  # Build the static libraries for each target architecture and upload 
+  # them as artifacts to collect and attach in the next job.
+  build-firewood-ffi-libs:
+    runs-on: ${{ matrix.os }}
+    strategy:
+      matrix:
+        include:
+          - os: ubuntu-latest
+            target: x86_64-unknown-linux-gnu
+          - os: ubuntu-22.04-arm
+            target: aarch64-unknown-linux-gnu
+          - os: macos-latest
+            target: aarch64-apple-darwin
+          - os: macos-13
+            target: x86_64-apple-darwin
+    steps:
+      - uses: actions/checkout@v4
+      - uses: dtolnay/rust-toolchain@stable
+      - uses: arduino/setup-protoc@v3
+        with:
+          repo-token: ${{ secrets.GITHUB_TOKEN }}
+      - uses: Swatinem/rust-cache@v2
+
+      - name: Build for ${{ matrix.target }}
+        run: cargo build --profile maxperf --features ethhash,logger --target ${{ matrix.target }} -p firewood-ffi
+        
+      - name: Upload binary
+        uses: actions/upload-artifact@v4
+        with:
+          name: ${{ matrix.target }}
+          path: target/${{ matrix.target }}/maxperf/libfirewood_ffi.a
+          if-no-files-found: error
+
+  # Collect all the static libraries built on the previous matrix of jobs
+  # and add them into ffi/libs directory.
+  # We commit and push this as a new branch with "--force" to overwrite
+  # the previous static libs that will not be on our branch.
+  push-firewood-ffi-libs:
+    needs: build-firewood-ffi-libs
+    runs-on: ubuntu-latest
+    outputs:
+      target_branch: ${{ steps.determine_branch.outputs.target_branch }}
+    steps:
+      - name: Determine branch name
+        id: determine_branch
+        run: |
+          if [[ "${{ github.event_name }}" == "workflow_dispatch" && -n "${{ github.event.inputs.create_branch_name }}" ]]; then
+            export target_branch="${{ github.event.inputs.create_branch_name }}"
+            echo "Using workflow input as target branch: $target_branch"
+            echo "target_branch=$target_branch" >> "$GITHUB_OUTPUT"
+          elif [[ "${{ github.event_name }}" == "push" && "${{ github.ref_type }}" == "tag" ]]; then
+            export target_branch="${GITHUB_REF#refs/tags/}"
+            echo "Using tag name as target_branch: $target_branch"
+            echo "target_branch=$target_branch" >> "$GITHUB_OUTPUT"
+          elif [[ "${{ github.event_name }}" == "pull_request" ]]; then
+            export target_branch="${{ github.event.pull_request.head.ref }}"
+            echo "Using PR head name as target branch: $target_branch"
+            echo "target_branch=$target_branch" >> "$GITHUB_OUTPUT"
+          else
+            echo "No valid input or tag found."
+            exit 1
+          fi
+
+      - uses: actions/checkout@v4
+        with:
+          path: firewood
+
+      - uses: actions/checkout@v4
+        with:
+          repository: ava-labs/firewood-go
+          token: ${{ secrets.FIREWOOD_GO_GITHUB_TOKEN }}
+          path: firewood-go
+
+      - name: Copy FFI Source Code
+        run: cp -r firewood/ffi firewood-go
+
+      - name: Download binaries into libs directory
+        uses: actions/download-artifact@v4
+        with:
+          path: firewood-go/ffi/libs
+
+      - name: List downloaded target directory
+        run: find firewood-go -type f | sort
+
+      - name: Push static libs to branch
+        working-directory: firewood-go
+        # GITHUB_TOKEN is configured in the last actions/checkout step
+        # to have read/write permissions to the firewood-go repo.
+        run: |
+          git config --global user.name "FirewoodCI"
+          git config user.email "41898282+github-actions[bot]@users.noreply.github.com"
+          git checkout -b ${{ steps.determine_branch.outputs.target_branch }}
+          git add .
+          git commit -m "firewood ci ${{ github.sha }}: attach firewood static libs"
+          
+          if [[ "${{ github.ref_type }}" == "tag" ]]; then
+            git tag -a "${GITHUB_REF#refs/tags/}" -m "firewood ci ${{ github.sha }}: attach firewood static libs"
+            git push origin "refs/tags/${GITHUB_REF#refs/tags/}"
+          else
+            git push -u origin ${{ steps.determine_branch.outputs.target_branch }} --force
+          fi
+
+  # Check out the branch created in the previous job on a matrix of
+  # our target architectures and test the FFI package on a fresh
+  # machine without re-compiling Firewood locally.
+  # This tests that the Firewood FFI package passes tests on the target
+  # architecture when it is forced to depend on the attached static libs.
+  test-firewood-ffi-libs:
+    runs-on: ${{ matrix.os }}
+    strategy:
+      matrix:
+        os: [ubuntu-latest, ubuntu-22.04-arm, macos-latest, macos-13]
+    needs: push-firewood-ffi-libs
+    continue-on-error: true
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          repository: ava-labs/firewood-go
+          token: ${{ secrets.FIREWOOD_GO_GITHUB_TOKEN }}
+          ref: ${{ needs.push-firewood-ffi-libs.outputs.target_branch }}
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version-file: "ffi/go.mod"
+          cache-dependency-path: "ffi/go.sum"
+      - name: Test Go FFI bindings
+        working-directory: ffi
+        # cgocheck2 is expensive but provides complete pointer checks
+        run: GOEXPERIMENT=cgocheck2 TEST_FIREWOOD_HASH_MODE=ethhash go test ./...
+
+  remove-if-pr-only:
+    runs-on: ubuntu-latest
+    needs: [push-firewood-ffi-libs, test-firewood-ffi-libs]
+    if: needs.push-firewood-ffi-libs.result == 'success' && github.event_name == 'pull_request'
+    permissions:
+      # Give the GITHUB_TOKEN write permission to delete the
+      # branch created by the previous job if it is a pull request.
+      contents: write
+    steps:
+      - uses: actions/checkout@v4
+        with:
+          repository: ava-labs/firewood-go
+          token: ${{ secrets.FIREWOOD_GO_GITHUB_TOKEN }}
+          ref: ${{ needs.push-firewood-ffi-libs.outputs.target_branch }}
+      - name: Delete branch
+        run: |
+          git push origin --delete ${{ needs.push-firewood-ffi-libs.outputs.target_branch }}
@@ -2,7 +2,6 @@ name: ci
 
 on:
   pull_request:
-    branches: ['*']
   push:
     branches: [main]
 
@@ -106,7 +105,10 @@ jobs:
 
   ffi:
     needs: build
-    runs-on: ubuntu-latest
+    runs-on: ${{ matrix.os }}
+    strategy:
+      matrix:
+        os: [ubuntu-latest, macos-latest]
     steps:
       - uses: actions/checkout@v4
       - uses: dtolnay/rust-toolchain@stable
@@ -125,10 +127,15 @@ jobs:
         with:
           go-version-file: "ffi/go.mod"
           cache-dependency-path: "ffi/go.sum"
+      - name: Run golanci-lint
+        uses: golangci/golangci-lint-action@v3
+        with:
+          version: latest
+          working-directory: ffi
       - name: Test Go FFI bindings
         working-directory: ffi
         # cgocheck2 is expensive but provides complete pointer checks
-        run: GOEXPERIMENT=cgocheck2 go test ./...
+        run: GOEXPERIMENT=cgocheck2 TEST_FIREWOOD_HASH_MODE=firewood go test ./...
 
   ethhash:
     runs-on: ubuntu-latest
@@ -146,6 +153,10 @@ jobs:
         with:
           go-version-file: "ffi/tests/go.mod"
           cache-dependency-path: "ffi/tests/go.sum"
+      - name: Test Go FFI bindings
+        working-directory: ffi
+        # cgocheck2 is expensive but provides complete pointer checks
+        run: GOEXPERIMENT=cgocheck2 TEST_FIREWOOD_HASH_MODE=ethhash go test ./...
       - name: Test Ethereum hash compatability
         working-directory: ffi/tests
         run: go test ./...
@@ -1,3 +1,3 @@
 # CODEOWNERS
 *       @rkuris @aaronbuchwald
-
+/ffi    @alarso16
@@ -0,0 +1,170 @@
+# https://golangci-lint.run/usage/configuration/
+run:
+  timeout: 10m
+
+  # If set we pass it to "go list -mod={option}". From "go help modules":
+  # If invoked with -mod=readonly, the go command is disallowed from the implicit
+  # automatic updating of go.mod described above. Instead, it fails when any changes
+  # to go.mod are needed. This setting is most useful to check that go.mod does
+  # not need updates, such as in a continuous integration and testing system.
+  # If invoked with -mod=vendor, the go command assumes that the vendor
+  # directory holds the correct copies of dependencies and ignores
+  # the dependency descriptions in go.mod.
+  #
+  # Allowed values: readonly|vendor|mod
+  # By default, it isn't set.
+  modules-download-mode: readonly
+
+issues:
+  # Make issues output unique by line.
+  # Default: true
+  uniq-by-line: false
+
+  # Maximum issues count per one linter.
+  # Set to 0 to disable.
+  # Default: 50
+  max-issues-per-linter: 0
+
+  # Maximum count of issues with the same text.
+  # Set to 0 to disable.
+  # Default: 3
+  max-same-issues: 0
+
+  # Enables skipping of directories:
+  # - vendor$, third_party$, testdata$, examples$, Godeps$, builtin$
+  # Default: true
+  exclude-dirs-use-default: false
+
+linters:
+  disable-all: true
+  enable:
+    - asciicheck
+    - bodyclose
+    - copyloopvar
+    - depguard
+    - dupword
+    - dupl
+    - errcheck
+    - errname
+    - errorlint
+    - forbidigo
+    - gci
+    - goconst
+    - gocritic
+    # - err113 - encourages wrapping static errors
+    - gofmt
+    - gofumpt
+    # - mnd - unnecessary magic numbers
+    - goprintffuncname
+    - gosec
+    - gosimple
+    - govet
+    - importas
+    - ineffassign
+    # - lll line length linter
+    - misspell
+    - nakedret
+    - nilerr
+    - noctx
+    - nolintlint
+    - perfsprint
+    - prealloc
+    - predeclared
+    - revive
+    - spancheck
+    - staticcheck
+    - stylecheck
+    - tagalign
+    - testifylint
+    - typecheck
+    - unconvert
+    - unparam
+    - unused
+    - usestdlibvars
+    - whitespace
+
+linters-settings:
+  depguard:
+    rules:
+      packages:
+        deny:
+          - pkg: "github.com/golang/mock/gomock"
+            desc: go.uber.org/mock/gomock should be used instead.
+          - pkg: "github.com/stretchr/testify/assert"
+            desc: github.com/stretchr/testify/require should be used instead.
+          - pkg: "io/ioutil"
+            desc: io/ioutil is deprecated. Use package io or os instead.
+  errorlint:
+    # Check for plain type assertions and type switches.
+    asserts: false
+    # Check for plain error comparisons.
+    comparison: false
+  forbidigo:
+    # Forbid the following identifiers (list of regexp).
+    forbid:
+      - 'require\.Error$(# ErrorIs should be used instead)?'
+      - 'require\.ErrorContains$(# ErrorIs should be used instead)?'
+      - 'require\.EqualValues$(# Equal should be used instead)?'
+      - 'require\.NotEqualValues$(# NotEqual should be used instead)?'
+      - '^(t|b|tb|f)\.(Fatal|Fatalf|Error|Errorf)$(# the require library should be used instead)?'
+  revive:
+    rules:
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#bool-literal-in-expr
+      - name: bool-literal-in-expr
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#early-return
+      - name: early-return
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#empty-lines
+      - name: empty-lines
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#string-format
+      - name: string-format
+        disabled: false
+        arguments:
+        - ["b.Logf[0]", "/.*%.*/", "no format directive, use b.Log instead"]
+        - ["fmt.Errorf[0]", "/.*%.*/", "no format directive, use errors.New instead"]
+        - ["fmt.Fprintf[1]", "/.*%.*/", "no format directive, use fmt.Fprint instead"]
+        - ["fmt.Printf[0]", "/.*%.*/", "no format directive, use fmt.Print instead"]
+        - ["fmt.Sprintf[0]", "/.*%.*/", "no format directive, use fmt.Sprint instead"]
+        - ["log.Fatalf[0]", "/.*%.*/", "no format directive, use log.Fatal instead"]
+        - ["log.Printf[0]", "/.*%.*/", "no format directive, use log.Print instead"]
+        - ["t.Logf[0]", "/.*%.*/", "no format directive, use t.Log instead"]
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#struct-tag
+      - name: struct-tag
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#unexported-naming
+      - name: unexported-naming
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#unhandled-error
+      - name: unhandled-error
+        # prefer the errcheck linter since it can be disabled directly with nolint directive
+        # but revive's disable directive (e.g. //revive:disable:unhandled-error) is not
+        # supported when run under golangci_lint
+        disabled: true
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#unused-parameter
+      - name: unused-parameter
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#unused-receiver
+      - name: unused-receiver
+        disabled: false
+      # https://github.com/mgechev/revive/blob/master/RULES_DESCRIPTIONS.md#useless-break
+      - name: useless-break
+        disabled: false
+  tagalign:
+    align: true
+    sort: true
+    strict: true
+    order:
+      - serialize
+  testifylint:
+    # Enable all checkers (https://github.com/Antonboom/testifylint#checkers).
+    # Default: false
+    enable-all: true
+    # Disable checkers by name
+    # (in addition to default
+    #   suite-thelper
+    # ).
+    disable:
+      - go-require
+      - float-compare