chore: generate ffi headers/docs without building the crates

[xdustinface]

Get rid of the unnecessary build step for ffi header generation to make the ffi header/docs generation basically happening in no time compared to before where it always had to do a build before which slowed things down whenever something changed in the relevant files which is annoying in local development workflows.

Since its much faster this way I also moved the step from pre-push to pre-commit stage.

Summary by CodeRabbit

• Chores
  • Streamlined FFI header regeneration to use a more direct generation flow for consistency.
  • Updated pre-commit checks: replaced the previous slow-check with a new static-analysis check and added an install step for the header-generation tool.
  • CI workflow adjusted to include the new setup step before pre-commit validation.

[coderabbitai]

📝 Walkthrough

Walkthrough

Refactors FFI header verification to use the cbindgen CLI for header generation; CI pre-commit workflow now installs cbindgen; pre-commit hooks replace the verify-ffi local hook with a clippy slow-checks entry; the Python verification script now invokes cbindgen instead of building crates with cargo.

Changes

Cohort / File(s)	Summary
Workflow Setup \.github/workflows/pre-commit.yml	Adds a step to install cbindgen (version pinned) after caching cargo deps and before running pre-commit.
Hook Configuration \.pre-commit-config\.yaml	Removes verify-ffi local slow-checks hook and adds/updates a clippy slow-checks hook (python3 entry, pre-push/manual).
FFI Verification Logic contrib/verify_ffi.py	Replaces cargo-based crate builds with cbindgen-driven header generation; adds check_cbindgen() and regenerate_headers(); removes build_ffi_crates(); main flow updated to require and run cbindgen generation before docs/diff checks.

Sequence Diagram(s)

sequenceDiagram
  participant CI as CI Workflow
  participant Pre as Pre-commit
  participant Script as verify_ffi.py
  participant CBind as cbindgen CLI
  participant FS as Repository FS

  CI->>CI: Cache cargo dependencies
  CI->>CI: Install cbindgen (cbindgen@0.29.2)
  CI->>Pre: Run pre-commit
  Pre->>Script: invoke verify_ffi.py
  Script->>CBind: check_cbindgen() (CLI present?)
  alt cbindgen present
    Script->>CBind: regenerate_headers(repo_root)
    CBind->>FS: write generated headers
    Script->>FS: run docs generation & diff checks
    Script-->>Pre: return success/failure
  else missing cbindgen
    Script-->>Pre: return failure (missing cbindgen)
  end

Loading

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~22 minutes

Poem

🐰 I hop between code and glue,

cbindgen hums, headers anew.
No cargo builds to clog the trail,
Clippy watches, swift and hale.
A tiny rabbit cheers the tale.

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 75.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main change: switching from cargo-based FFI header/docs generation (which built crates) to a cbindgen-based approach that doesn't require building.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/verify-ffi-speed

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 66.83%. Comparing base (ebba180) to head (de59908).

Additional details and impacted files

@@            Coverage Diff             @@
##           v0.42-dev     #502   +/-   ##
==========================================
  Coverage      66.83%   66.83%           
==========================================
  Files            313      313           
  Lines          64878    64878           
==========================================
+ Hits           43363    43364    +1     
+ Misses         21515    21514    -1     

Flag	Coverage Δ		*Carryforward flag
core	74.90% <ø> (ø)
dash-network	74.90% <ø> (ø)		Carriedforward from ebba180
dash-network-ffi	34.74% <ø> (ø)		Carriedforward from ebba180
dash-spv	68.18% <ø> (ø)		Carriedforward from ebba180
dash-spv-ffi	34.74% <ø> (ø)		Carriedforward from ebba180
dashcore	74.90% <ø> (ø)		Carriedforward from ebba180
dashcore-private	74.90% <ø> (ø)		Carriedforward from ebba180
dashcore-rpc	19.92% <ø> (ø)		Carriedforward from ebba180
dashcore-rpc-json	19.92% <ø> (ø)		Carriedforward from ebba180
dashcore_hashes	74.90% <ø> (ø)		Carriedforward from ebba180
ffi	37.43% <ø> (ø)
key-wallet	65.58% <ø> (ø)		Carriedforward from ebba180
key-wallet-ffi	34.74% <ø> (ø)		Carriedforward from ebba180
key-wallet-manager	65.58% <ø> (ø)		Carriedforward from ebba180
rpc	19.92% <ø> (ø)
spv	81.00% <ø> (+<0.01%)	⬆️
wallet	65.58% <ø> (ø)

*This pull request uses carry forward flags. Click here to find out more.
see 2 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[coderabbitai]

Actionable comments posted: 1

🧹 Nitpick comments (1)

contrib/verify_ffi.py (1)

13-18: Reuse the resolved cbindgen path instead of looking it up twice.

check_cbindgen() already resolves the executable, but regenerate_headers() invokes bare "cbindgen" again after switching cwd. Thread the absolute path from shutil.which() through to subprocess.run() so the selected binary is deterministic and the Ruff S607 warning goes away.

Also applies to: 27-32

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contrib/verify_ffi.py` around lines 13 - 18, check_cbindgen() currently calls
shutil.which() to resolve the cbindgen binary but regenerate_headers() later
invokes the literal "cbindgen" (and similarly in the block around lines 27-32),
causing a second lookup and a non-deterministic call; change check_cbindgen() to
return the resolved absolute path and update regenerate_headers() and the other
subprocess.run invocations to use that returned path (pass the resolved path
into regenerate_headers() or store and reuse the value) so subprocess.run calls
use the deterministic absolute executable path instead of the bare "cbindgen".

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In @.github/workflows/pre-commit.yml:
- Around line 41-42: Replace the unpinned cbindgen install step in the workflow
so CI uses a fixed release: change the `cargo install cbindgen` invocation to
install an exact version (e.g. `cbindgen@0.29` with `--locked`) so generated
headers (referenced by dash-spv-ffi/cbindgen.toml and
key-wallet-ffi/cbindgen.toml which set include_version = true) remain stable and
contrib/verify_ffi.py no longer flags spurious diffs.

---

Nitpick comments:
In `@contrib/verify_ffi.py`:
- Around line 13-18: check_cbindgen() currently calls shutil.which() to resolve
the cbindgen binary but regenerate_headers() later invokes the literal
"cbindgen" (and similarly in the block around lines 27-32), causing a second
lookup and a non-deterministic call; change check_cbindgen() to return the
resolved absolute path and update regenerate_headers() and the other
subprocess.run invocations to use that returned path (pass the resolved path
into regenerate_headers() or store and reuse the value) so subprocess.run calls
use the deterministic absolute executable path instead of the bare "cbindgen".

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: ec9c1297-8c66-4562-8487-e4de5b6d7733

📥 Commits

Reviewing files that changed from the base of the PR and between ebba180 and 84b12b9.

📒 Files selected for processing (3)

• .github/workflows/pre-commit.yml
• .pre-commit-config.yaml
• contrib/verify_ffi.py

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@contrib/verify_ffi.py`:
- Around line 13-18: Introduce a CBINDGEN_VERSION = "0.29.2" constant, rename
check_cbindgen() to resolve_cbindgen() so it returns the resolved cbindgen
binary path (use shutil.which), run that binary with "--version" to verify the
output contains CBINDGEN_VERSION and error if mismatched, and update
regenerate_headers() to accept a cbindgen_path parameter and use that exact
binary (instead of invoking bare "cbindgen") so the same pinned tool is reused
across checks and header regeneration.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: f9688797-831c-4338-b94e-802843805f68

📥 Commits

Reviewing files that changed from the base of the PR and between 84b12b9 and de59908.

📒 Files selected for processing (3)

• .github/workflows/pre-commit.yml
• .pre-commit-config.yaml
• contrib/verify_ffi.py

🚧 Files skipped from review as they are similar to previous changes (1)

• .github/workflows/pre-commit.yml

[coderabbitai]

⚠️ Potential issue | 🟠 Major

🧩 Analysis chain

🏁 Script executed:

#!/bin/bash
set -euo pipefail

python - <<'PY'
from pathlib import Path
import re

workflow = Path(".github/workflows/pre-commit.yml").read_text()
match = re.search(r'cargo install cbindgen@([0-9][^ ]*) --locked', workflow)
print("workflow_pinned_cbindgen:", match.group(1) if match else "not found")
PY

cbindgen --version

Repository: dashpay/rust-dashcore

Length of output: 164

---

🏁 Script executed:

cat -n contrib/verify_ffi.py

Repository: dashpay/rust-dashcore

Length of output: 5054

---

Add version pinning and reuse the resolved cbindgen binary path.

CI installs cbindgen@0.29.2 --locked, but this script accepts any cbindgen on PATH without version verification and then invokes bare cbindgen on line 28. This creates non-reproducibility: developers with a different cbindgen version generate different headers locally than CI produces, causing false hook passes/failures.

Suggested fix: Define CBINDGEN_VERSION = "0.29.2" as a constant, rename check_cbindgen() to resolve_cbindgen() to return the resolved binary path and verify the version via cbindgen --version, then pass the path to regenerate_headers() to reuse the same binary.

Suggested fix

+CBINDGEN_VERSION = "0.29.2"
+
 
-def check_cbindgen() -> bool:
-    """Verify that cbindgen CLI is installed."""
-    if shutil.which("cbindgen") is None:
-        print("cbindgen not found. Install with: cargo install cbindgen", file=sys.stderr)
-        return False
-    return True
+def resolve_cbindgen() -> str | None:
+    """Resolve the pinned cbindgen CLI."""
+    cbindgen = shutil.which("cbindgen")
+    if cbindgen is None:
+        print(
+            f"cbindgen {CBINDGEN_VERSION} not found. Install with: "
+            f"cargo install cbindgen@{CBINDGEN_VERSION} --locked",
+            file=sys.stderr,
+        )
+        return None
+
+    version = subprocess.run([cbindgen, "--version"], capture_output=True, text=True)
+    if version.returncode != 0 or f" {CBINDGEN_VERSION}" not in version.stdout:
+        print(
+            f"Expected cbindgen {CBINDGEN_VERSION}, got "
+            f"{version.stdout.strip() or 'unknown'}. "
+            f"Install with: cargo install cbindgen@{CBINDGEN_VERSION} --locked",
+            file=sys.stderr,
+        )
+        return None
+
+    return cbindgen
 
 
-def regenerate_headers(repo_root: Path) -> bool:
+def regenerate_headers(repo_root: Path, cbindgen: str) -> bool:
     """Regenerate C headers by calling cbindgen directly (no cargo build needed)."""
     for crate in FFI_CRATES:
         crate_dir = repo_root / crate
         header = f"include/{crate.replace('-', '_')}.h"
         print(f"  Generating {crate} header...")
         result = subprocess.run(
-            ["cbindgen", "--config", "cbindgen.toml",
+            [cbindgen, "--config", "cbindgen.toml",
              "--crate", crate, "--output", header],
             cwd=crate_dir,
             capture_output=True, text=True,
         )
@@
-    if not check_cbindgen():
+    cbindgen = resolve_cbindgen()
+    if cbindgen is None:
         sys.exit(1)
 
-    if not regenerate_headers(repo_root):
+    if not regenerate_headers(repo_root, cbindgen):
         sys.exit(1)

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@contrib/verify_ffi.py` around lines 13 - 18, Introduce a CBINDGEN_VERSION =
"0.29.2" constant, rename check_cbindgen() to resolve_cbindgen() so it returns
the resolved cbindgen binary path (use shutil.which), run that binary with
"--version" to verify the output contains CBINDGEN_VERSION and error if
mismatched, and update regenerate_headers() to accept a cbindgen_path parameter
and use that exact binary (instead of invoking bare "cbindgen") so the same
pinned tool is reused across checks and header regeneration.