ci: move to Nix

[realeinherjar]

Description

This would make all the tests possible to run locally.
It enhances developer experience and facilitates onboarding of new contributors.

Additions:

• Crate auditing capabilities using rustsec/advisory-db.
• Local and CI caching of all artifacts from running cargo {check,build,test} in the whole workspace.
  Superseds .github/workflows/audit.yml.
• Pre-commit checks for everything that we enforce (gpg-signed/conventional commits, and some goodies like typos, so docs: fix spelling errors #1086 kind of things are not necessary anymore)
• Instructions and rationale in NIX.md

Closes bitcoindevkit/bdk_wallet#129.
Superseds #1122 and #1156.

Pinneds Dependencies:

• bitcoind: pinned to 0.25.0
• electrs: pinned to Blockstream's esplora using the Fedimint deployment, check jkitman/nixpkgs@61ccef8 and https://github.com/fedimint/fedimint/blob/master/flake.nix#L5

TODO:

• Fix llvm deps.
• Fix openssl errors.
• Fix dependencies on MacOS.
• Fix WASM.
• Fix MSRV.
  Add a custom CargoMSRV.lock? (Or maybe a CargoMSRV.toml with the pinned MSRV dependencies and then cargo generate-lockfile with Rust MSRV?)
  Depends on solving fix: build crane-utils using a different toolchain ipetkov/crane#422
• move all the logic from cont_integration.yml to flake.nix (all the cargo update -p)
  From the Fedimint suggestion we'll use crane.
  This would allow caching of a lot of things
  Then the user would call nix buid -L .#MSRV --keep-failed and so on.
  This would also eliminate all the multiple runs-on in cont_integration.yml to a single one where each step would be a name and run the nix build command.
• Add DeterminateSystems/magic-nix-cache-action to cache stuff in CI.
• Update CONTRIBUTING with instructions. Use fedimint instructions for inspiration.
• nix develop:
  • default: Rust latest
  • MSRV
  • WASM
• nix flake check:
  • clippy
  • audit
  • rustfmt
  • Rust latest test
    • --all-features
    • --no-default-features
  • MSRV test
    • --all-features
    • --no-default-features
  • WASM (--target wasm32-unknown-unknown) test
    • -p bdk --no-default-features --features bitcoin/no-std,miniscript/no-std,bdk_chain/hashbrown,dev-getrandom-wasm
    • -p esplora --target wasm32-unknown-unknown --no-default-features --features bitcoin/no-std,miniscript/no-std,bdk_chain/hashbrown,async
  • cachix/pre-commit-hooks.nix
    • signed commits
    • conventional commits with commitizen
    • typos
    • rustfmt
• Add a CI to update Cargo.lock (is this possible?)
• Add a CI to update flake.lock
• Delete .github/workflows/audit.yml
• Port Code Coverage to Nix
• Nixify the Nightly Docs CI
• Add numtide/devshell
• Clean up commit messages (this is a mess of squash fixup and ammends 😂)

Nix Commands

• nix flake show: show all possible commands from the flake.
• nix develop: creates a devShell with all the things you need to develop installed.
  Also handles ENV vars.
  Currently is bash, git, ripgrep, bitcoind (pinned), electrs (pinned), openssl, pkg-config, libiconv, and latest stable Rust with all goodies.
  It also handles specific MacOS deps: Apple XCode SDKs (for bitcoind and electrsd crates).
  Open to suggestions on what to include.
  • nix develop .#MSRV: same but with Rust MSRV.
• nix flake check:
  • checks for typos, gpg-signed commits, conventional commits, rustfmt, nixpkgs-fmt (.nix files).
  • runs clippy in all workspace (pinned to 1.67.0) with --all-features --all-targets -- -D warnings.
  • runs cargo check in all workspace (latest stable Rust).
  • checks dependencies for security advisory using rustsec/advisory-db.
  • test everything!!! (see below the individual checks in .#checks.${system}.{CHECK}
• nix build -L .: runs cargo build in all workspace with latest stable Rust.
  • nix build -L .#stable: runs cargo build in all workspace with latest stable Rust.
  • nix build -L .#MSRV: runs cargo build in all workspace with MSRV stable Rust.
  • PLACEHOLDER: ...
• nix build -L .#checks.${system}.{CHECK}: runs a specific CHECK. In my case system = aarch64-darwin then it is nix build .#checks.aarch64-darwin.CHECK.
  • pre-commit-check: checks for typos, conventional commits, nixpkgs-fmt (.nix files).
  • clippy: runs clippy in all workspace (pinned to 1.68.0) with --all-features --all-targets -- -D warnings.
  • fmt: runs cargo fmt with --all -- --check --config format_code_in_doc_comments=true in all workspace with latest Rust.
  • audit: checks dependencies for security advisory using rustsec/advisory-db.
  • latest: cargo build in whole workspace using latest Rust.
  • latestAll: cargo test --all-features in whole workspace using latest Rust.
  • latestNoDefault: cargo test --no-default-features in whole workspace using latest Rust.
  • latestNoStdBdk: cargo test -p bdk --no-default-features --features bitcoin/no-std,miniscript/no-std,bdk_chain/hashbrown using latest Rust.
  • latestNoStdChain: cargo test -p bdk_chain --no-default-features --features bitcoin/no-std,miniscript/no-std,hashbrown using latest Rust.
  • latestNoStdEsplora: cargo test -p bdk_esplora --no-default-features --features bitcoin/no-std,miniscript/no-std,bdk_chain/hashbrown using latest Rust.
  • MSRV: cargo build in whole workspace using MSRV Rust.
  • MRSVAll: cargo test --all-features in whole workspace using MSRV Rust.
  • MSRVNoDefault: cargo test --no-default-features in whole workspace using MSRV Rust.
  • MSRVNoStdBdk: cargo test -p bdk --no-default-features --features bitcoin/no-std,miniscript/no-std,bdk_chain/hashbrown using MSRV Rust.
  • MRSVNoStdChain: cargo test -p bdk_chain --no-default-features --features bitcoin/no-std,miniscript/no-std,hashbrown using MSRV Rust.
  • MSRVNoStdEsplora: cargo test -p bdk_esplora --no-default-features --features bitcoin/no-std,miniscript/no-std,bdk_chain/hashbrown using MSRV Rust.

Notes to the reviewers

1. We are adding automatic pre-commit checks with checks for typos, gpg-signed commits, conventional commits, nixpkgs-fmt (.nix files).
   This is done automatically if the user has Nix and devshell installed.
   If not, it will be checked on CI, or with a nix flake check.
   I fixed a bunch of typos and added the .typos.toml to whitelist somethings like hashes, addresses, etc that were being flagged as false positives.

2. I am adding in the building cache/tests a crate name and version.
   This does not interact with the name or versioning in any of bdk's crates Cargo.toml

   To avoid this nasty warning in Nix:

   trace: warning: crane will use a placeholder value since `name` cannot be found in /nix/store/ja4yr1m9ba72gy3pbr2vg540zjdbzp33-source/Cargo.toml
   to silence this warning consider one of the following:
   - setting `pname = "...";` in the derivation arguments explicitly
   - setting `package.name = "..."` or `workspace.package.name = "..."` in the root Cargo.toml
   - explicitly looking up the values from a different Cargo.toml via
     `craneLib.crateNameFromCargoToml { cargoToml = ./path/to/Cargo.toml; }`

3. We are using legacyPackages instead of packages in the ci build calls because legacyPackages allows nested sets, e.g.:

   legacyPackages = ci = {
     latest = {
       all = ...;
       noDefault = ...;
       ...
     };
     MSRV = { ... };
     WASM = { ... };
     codeCoverage = ...;
   };

   It makes a nice grouping of all CI stuff under the same call:

   nix build -L .#ci.latest.{CHECK}

4. Removed the ci/ dir with the Dockerfiles for hardware signer testing.
   We are not using them, removed in bdk v1.0.0-alpha.0 #793,
   more specifically in 3f5a78a.
   Related Move hardware signer into its own crate #872.
   NOTE: speculos can be run under Nix

   • https://github.com/alamgu/speculos/tree/with-nix-build
   • Add shell.nix LedgerHQ/speculos#323

5. We are moving from mozilla/grcov to taiki-e/cargo-llvm-cov.
   Why? 3 reasons:

   1. Mozilla's grcov is a big thing, it does coverage for a lot of things C/C++, JS, Java, and Rust.
      cargo-llvm-cov uses Rust's native coverage tools via LLVM.
   2. crane (craneLib.cargoLlvmCov) supports natively cargo-llvm-cov which will be much easier to make it work and maintain
   3. Our friends at fedimint also use cargo-llvm-cov with crane so it makes easier to collaborate in improvements and issues.

Potential issues:

• We had to remove Cargo.lock from the .gitignore. Nix (crane) needs it for deterministic stuff.
  From the crane FAQ:

  First consider if there is a release of this project available with a lock file as it may be simpler and more consistent to use the exact dependencies published by the project itself. Projects published on crates.io always come with a lock file and nixpkgs has a fetchCrate fetcher which pulls straight from crates.io.

  Also Rust changed their Cargo.lock commit policy a couple months ago:

  For years, the Cargo team has encouraged Rust developers to commit their Cargo.lock file for packages with binaries but not libraries. We now recommend people do what is best for their project. To help people make a decision, we do include some considerations and suggest committing Cargo.lock as a starting point in their decision making. To align with that starting point, cargo new will no longer ignore Cargo.lock for libraries as of nightly-2023-08-24. Regardless of what decision projects make, we encourage regular testing against their latest dependencies.

• Mismatch versions between the executables under the *_EXEC env vars for bitcoind/electrsd crates and the version the crate thinks to have.

• Centralizes CI maintainability to people that have Nix experience.

• We are removing the auto-download feature of bitcoind and electrsd in the bitcoind_rpc and esplora crates. I added an explanation in the repo and crates' README.mds. This also simplifies a little bit the MSRV pinning of deps.

Changelog notice

Checklists

All Submissions:

• I've signed all my commits
• I followed the contribution guidelines
• I ran cargo fmt and cargo clippy before committing

New Features:

• I've added tests for the new feature
• I've added docs for the new feature

Bugfixes:

• This pull request breaks the existing API
• I've added tests to reproduce the issue which are now passing
• I'm linking the issue being fixed by this PR

[RCasatta]

The only potential issue I see with the *_EXEC env vars for bitcoind/electrsd crate is a potential mismatch of version between the executable and the version the crate thinks to have. I am just mentioning it so that it's known, it may be a compromise worth taking.

[danielabrozzoni]

Copy-pasting the discussion from discord (https://discord.com/channels/753336465005608961/753367451319926827/1161651733173391433):

@evanlinjin:
I also don't know Nix. How difficult is it to learn? I understand that the main benefit is a reproducible environment? However, it does seem we can mostly get away with a bash script?

@danielabrozzoni :
I have the same concerns. I've been a nixos user for 3 years now, and I see the benefits for my local environment, but I'm not sure if the pros outweight the cons in the CI. The main benefit described in the PR is that it makes tests possible to run locally, which is important, but personally once I got used to the CI failures I just learnt how to reproduce those locally (either a cargo test if it's a test failure, or using cargo 1.57.0 + cargo update if it's a msrv problem, or cargo fmt/cargo clippy). The main concerns I have are:

• most of the team don't know nix (as far as I know?), so updating the CI might take longer than usual for us, making us less productive, at least in the short term
• rewriting and reviewing the ci update takes some time that might be better spent working on pushing bdk 1.0

Are there any other benefits I'm not seeing?

@realeinherjar:
About the bash script: Yes, but then how you would run different versions of Rust, and how would you test WASM. That can be a bash script but the dependency hell and complicated instructions on how to instantiate and switch to these different environments. With the caveat for MacOS, Linux, etc

With Nix would be an easy nix build test.WASM, nix build test nix build clippy

@danielabrozzoni :
Ohhh I totally forgot about wasm, yeah using nix there made my life easier in the past

@realeinherjar:
Also MSRV is 1.57, clippy is 1.68, stable is well stable...

@danielabrozzoni
Alright, I need to learn flakes 🤷‍♀️❄️

@evanlinjin:

but then how you would run different versions of Rust

rustup works fine? You can do cargo +1.57.0 for a specific rust version.

and how would you test WASM

There should be no problem installing wasm-pack locally right?

I think supporting unix-only is fine.

@notmandatory
I agree we don't need to hold up the alpha.2 for the current CI issue, and I think the nix stuff is at least something to research for maybe a beta target to give everyone time to review and evaluate the pros/cons

@realeinherjar:
Easy to onboard new devs. Just tell them to do nix develop and they should have an environment with everything they need, rust, rust-analyzer, all ENV variables, any pre-commits hooks etc bitcoind and electrsd setup
Steve Myers — Today at 3:22 PM
I've heard good things from new devs on the fedimint project about how easy it is to get started due to their nix setup

@realeinherjar:
Fedimint is an inspiration 🙂

@danielabrozzoni :

There should be no problem installing wasm-pack locally right?

That's easy in CI, not necessarily so easy when CI fails and you need to debug on your pc
Alright, I think we can all agree to move this to the next milestone, and I'll copy this discussion in the PR

[dpc]

thought: Since everything is pinned, splitting between "latest and clippy" seems unnecessary and can have a cost of number of toolchains that need to be downloaded.

[realeinherjar]

I don't think so. We have 3 different Rust versions:

• latest
• clippy, pinned to 1.67.0
• MSRV, pinned to 1.57.0

[dpc]

suggestion: Please verify if this even works, because IIRC stdenv.mkDerivation overrides CC and CXX anyway. If you want these changed, you should override stdenv https://github.com/ipetkov/crane/blob/master/docs/API.md#optional-attributes-15 . Again, IIRC.

[dpc]

Nice job. Left some thoughts and suggestions, but nothing major.

[notmandatory]

review walk through video here: https://www.youtube.com/watch?v=Mtfo97KLfWA&t=24s

[dpc]

review walk through video here: https://www.youtube.com/watch?v=Mtfo97KLfWA&t=24s

Just to clarify on the question asked in the video:

While Nix on it's own can not guarantee byte-for-byte reproducibility, in practice that's usually the case. At least in Fedimint we do get byte-identical produced binaries between building machines with the same OS&architecture. I would expect this to be the case for BDK as well.

See also trustix and https://reproducible.nixos.org/ .

[dpc]

I just noticed that this PR misses two nice optimizations. Not a blocker for this PR, but nice to have in some future:

• First, using CARGO_PROFILE to build with a ci cargo build profile for much faster CI.
• Using [mold] for linking on Linux. Since linking is happening over and over on every build, it really adds up.

[dpc]

review walk through video here: https://www.youtube.com/watch?v=Mtfo97KLfWA&t=24s

Re --test-threads=2. It's a shame to not utilize the machine to it's full capacity. In Fedimint we have tons of tests, lots of e2e/integration ones that are rather heavy.

First, cargo-nextest is really worth looking into, if you haven't yet. It does make a big difference, with relatively small effort.

Second, with Nix it's almost effortless to just start bitcoind (or any other external fixture) with randomized -datadir, and config that increases -rpcthreads. In Fedimint we need a lot of binary fixtures set up for tests (multiple LN nodes, bitcoind, pre-setup Fedimint federation, LN gateway(s)), so we have a whole custom utility that coordinates it (devimint). We have some videos recordings from dev-chats about it.

Lastly, in Fedimint we have a custom random port allocator library, so we can ran whole distinct test suites in parallel (via GNU parallel) just to make the machine sweat 100% and CI finish faster. It has an additional benefit of introducing a lot of timing jitter, which is more likely to surface any lingering race conditions.

I would suspect that BDK is somewhat more lightweight in a lot of ways than Fedimint, but it's probably good to know that there's a lot of room for improvements in case your CI/test suites feel slow.

[dpc]

Oh. Additional benefit of cachix is that you can set it up (avertise) in the flake.nix itself. Users starting the dev shell will be asked if they would like to trust it (and if they want to remember their choice permanently), and if they do any Nix things that are not already in official NixOS cache and are in your projects cache will be downloaded instead of built from scratch. Helps to speed up onboarding in many cases.

[dpc]

BTW. typos can fix all the typos automatically. We have a command for it in a justfile.

[danielabrozzoni]

I just took a quick look, I need to do a more in-depth review, will get to that later.

I would open a different PR for the doc improvements, typos, and formatting. These changes can be reviewed and merged quickly, while the nix ci will take (I suppose) a bit longer, so there's no reason to keep them in the same PR.

Once the typos/docs fixes are in another PR, I would squash the commits of this PR. The purpose of having multiple commits is to simplify review; instead, if your PR is composed of too many commits that keep modifying each other, review is actually more difficult. If you want to read more: https://github.com/bitcoin/bitcoin/blob/master/CONTRIBUTING.md#committing-patches

[storopoli]

We can close this in favor of #1257.