mautrix-signal/pkg/signalmeow/groupcache.go

// mautrix-signal - A Matrix-signal puppeting bridge.
// Copyright (C) 2025 Tulir Asokan
//
// This program is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with this program.  If not, see <https://www.gnu.org/licenses/>.

package signalmeow

import (
	"context"
	"fmt"
	"slices"
	"sync"
	"time"

	"github.com/google/uuid"

	"go.mau.fi/mautrix-signal/pkg/libsignalgo"
	"go.mau.fi/mautrix-signal/pkg/signalmeow/types"
)

type SendEndorsementCache struct {
	SendEndorsement    libsignalgo.GroupSendEndorsement
	MemberEndorsements map[libsignalgo.ServiceID]libsignalgo.GroupSendEndorsement
	Expiration         time.Time
	SecretParams       *libsignalgo.GroupSecretParams
}

func (sec *SendEndorsementCache) GetToken() (libsignalgo.GroupSendFullToken, error) {
	return sec.GetTokenWith(sec.SendEndorsement)
}

func (sec *SendEndorsementCache) GetTokenWith(altToken libsignalgo.GroupSendEndorsement) (libsignalgo.GroupSendFullToken, error) {
	return altToken.ToFullToken(sec.SecretParams, sec.Expiration)
}

type cachedGroup struct {
	*Group
	*SendEndorsementCache
	FetchedAt time.Time
	UpdatedAt time.Time
}

type GroupCache struct {
	serviceID libsignalgo.ServiceID

	credentials     *GroupCredentials
	credentialsLock sync.RWMutex

	data map[types.GroupIdentifier]*cachedGroup
	lock sync.RWMutex

	activeCalls map[types.GroupIdentifier]string
	callsLock   sync.RWMutex
}

func NewGroupCache(serviceID libsignalgo.ServiceID) *GroupCache {
	return &GroupCache{
		serviceID:   serviceID,
		data:        make(map[types.GroupIdentifier]*cachedGroup),
		activeCalls: make(map[types.GroupIdentifier]string),
	}
}

func (gc *GroupCache) GetCredentials(
	ctx context.Context,
	fetch func(context.Context, time.Time) (*GroupCredentials, error),
) (*GroupCredential, error) {
	today := time.Now().Truncate(24 * time.Hour)
	gc.credentialsLock.RLock()
	cred := gc.getCachedCredentials(today.Unix())
	gc.credentialsLock.RUnlock()
	if cred != nil {
		return cred, nil
	}

	gc.credentialsLock.Lock()
	defer gc.credentialsLock.Unlock()
	cred = gc.getCachedCredentials(today.Unix())
	if cred != nil {
		return cred, nil
	}
	creds, err := fetch(ctx, today)
	if err != nil {
		return nil, err
	}
	gc.credentials = creds
	cred = gc.getCachedCredentials(today.Unix())
	if cred == nil {
		return nil, fmt.Errorf("no credentials for today after fetch")
	}
	return cred, nil
}

func (gc *GroupCache) getCachedCredentials(today int64) *GroupCredential {
	if gc.credentials == nil {
		return nil
	}
	for _, cred := range gc.credentials.Credentials {
		if cred.RedemptionTime == today {
			return &cred
		}
	}
	return nil
}

func (gc *GroupCache) UpdateActiveCall(id types.GroupIdentifier, callID string) bool {
	gc.callsLock.Lock()
	defer gc.callsLock.Unlock()
	currentCallID, ok := gc.activeCalls[id]
	if ok {
		// If we do, then this must be ending the call
		if currentCallID == callID {
			delete(gc.activeCalls, id)
			return false
		}
	}
	gc.activeCalls[id] = callID
	return true
}

func (gc *GroupCache) Get(id types.GroupIdentifier) (*Group, *SendEndorsementCache, bool) {
	gc.lock.RLock()
	defer gc.lock.RUnlock()
	c, ok := gc.data[id]
	if !ok || time.Until(c.Expiration) < 5*time.Minute {
		return nil, nil, false
	}
	return c.Group, c.SendEndorsementCache, true
}

func (gc *GroupCache) Delete(id types.GroupIdentifier) {
	gc.lock.Lock()
	defer gc.lock.Unlock()
	delete(gc.data, id)
}

func (gc *GroupCache) Put(data *Group, endorsementResponse libsignalgo.GroupSendEndorsementsResponse) error {
	gsp, err := masterKeyToBytes(data.GroupMasterKey).SecretParams()
	if err != nil {
		return fmt.Errorf("failed to get secret params: %w", err)
	}
	expiration, err := endorsementResponse.GetExpiration()
	if err != nil {
		return fmt.Errorf("failed to get endorsement expiration: %w", err)
	}
	endorsement, memberEndorsements, err := endorsementResponse.ReceiveWithServiceIDs(data.getMemberServiceIDs(), gc.serviceID, &gsp, prodServerPublicParams)
	if err != nil {
		return fmt.Errorf("failed to receive endorsements: %w", err)
	}

	gc.lock.Lock()
	defer gc.lock.Unlock()
	cached, exists := gc.data[data.GroupIdentifier]
	if exists && cached.Revision > data.Revision {
		return nil
	}
	gc.data[data.GroupIdentifier] = &cachedGroup{
		Group:     data,
		FetchedAt: time.Now(),
		UpdatedAt: time.Now(),

		SendEndorsementCache: &SendEndorsementCache{
			Expiration:         expiration,
			SendEndorsement:    endorsement,
			MemberEndorsements: memberEndorsements,
			SecretParams:       &gsp,
		},
	}
	return nil
}

func (gc *GroupCache) ApplyUpdate(change *GroupChange, endorsementResponse libsignalgo.GroupSendEndorsementsResponse) error {
	mkBytes := masterKeyToBytes(change.GroupMasterKey)
	rawGroupID, err := mkBytes.GroupIdentifier()
	if err != nil {
		return fmt.Errorf("failed to get group identifier: %w", err)
	}
	gsp, err := mkBytes.SecretParams()
	if err != nil {
		return fmt.Errorf("failed to get secret params: %w", err)
	}
	id := types.GroupIdentifier(rawGroupID.String())

	gc.lock.Lock()
	defer gc.lock.Unlock()

	cached, exists := gc.data[id]
	if !exists || cached.Revision >= change.Revision {
		return nil
	} else if cached.Revision < change.Revision-1 {
		// We missed an update, evict
		delete(gc.data, id)
		return nil
	}

	// Pending member adds, promotes and removes
	cached.PendingMembers = append(cached.PendingMembers, change.AddPendingMembers...)
	for _, promo := range change.PromotePendingMembers {
		cached.PendingMembers = slices.DeleteFunc(cached.PendingMembers, func(p *PendingMember) bool {
			return p.ServiceID.Type == libsignalgo.ServiceIDTypeACI && p.ServiceID.UUID == promo.ACI
		})
		cached.Members = append(cached.Members, &GroupMember{
			ACI:              promo.ACI,
			ProfileKey:       promo.ProfileKey,
			Role:             GroupMember_DEFAULT,
			JoinedAtRevision: change.Revision,
		})
	}
	for _, promo := range change.PromotePendingPniAciMembers {
		cached.PendingMembers = slices.DeleteFunc(cached.PendingMembers, func(p *PendingMember) bool {
			return (p.ServiceID.Type == libsignalgo.ServiceIDTypePNI && p.ServiceID.UUID == promo.PNI) ||
				(p.ServiceID.Type == libsignalgo.ServiceIDTypeACI && p.ServiceID.UUID == promo.ACI)
		})
		cached.Members = append(cached.Members, &GroupMember{
			ACI:              promo.ACI,
			ProfileKey:       promo.ProfileKey,
			Role:             GroupMember_DEFAULT,
			JoinedAtRevision: change.Revision,
		})
	}
	cached.PendingMembers = slices.DeleteFunc(cached.PendingMembers, func(p *PendingMember) bool {
		return slices.ContainsFunc(change.DeletePendingMembers, func(s *libsignalgo.ServiceID) bool {
			return s != nil && p.ServiceID == *s
		})
	})

	// Requesting member adds, promotes and removes
	cached.RequestingMembers = append(cached.RequestingMembers, change.AddRequestingMembers...)
	for _, promo := range change.PromoteRequestingMembers {
		var profileKey libsignalgo.ProfileKey
		cached.RequestingMembers = slices.DeleteFunc(cached.RequestingMembers, func(r *RequestingMember) bool {
			if r.ACI == promo.ACI {
				profileKey = r.ProfileKey
				return true
			}
			return false
		})
		cached.Members = append(cached.Members, &GroupMember{
			ACI:              promo.ACI,
			ProfileKey:       profileKey,
			Role:             promo.Role,
			JoinedAtRevision: change.Revision,
		})
	}
	cached.RequestingMembers = slices.DeleteFunc(cached.RequestingMembers, func(r *RequestingMember) bool {
		return slices.ContainsFunc(change.DeleteRequestingMembers, func(u *uuid.UUID) bool {
			return u != nil && r.ACI == *u
		})
	})

	// Direct member adds, removes and modifications
	for _, member := range change.AddMembers {
		cached.Members = append(cached.Members, &GroupMember{
			ACI:              member.ACI,
			Role:             member.Role,
			ProfileKey:       member.ProfileKey,
			JoinedAtRevision: member.JoinedAtRevision,
		})
	}
	for _, rm := range change.ModifyMemberRoles {
		cached.findMemberOrEmpty(rm.ACI).Role = rm.Role
	}
	for _, pk := range change.ModifyMemberProfileKeys {
		cached.findMemberOrEmpty(pk.ACI).ProfileKey = pk.ProfileKey
	}
	cached.Members = slices.DeleteFunc(cached.Members, func(member *GroupMember) bool {
		return slices.ContainsFunc(change.DeleteMembers, func(u *uuid.UUID) bool {
			return u != nil && *u == member.ACI
		})
	})

	// Banned members
	cached.BannedMembers = append(cached.BannedMembers, change.AddBannedMembers...)
	cached.BannedMembers = slices.DeleteFunc(cached.BannedMembers, func(b *BannedMember) bool {
		return slices.ContainsFunc(change.DeleteBannedMembers, func(s *libsignalgo.ServiceID) bool {
			return s != nil && b.ServiceID == *s
		})
	})

	// Non-member modifications
	if change.ModifyInviteLinkPassword != nil {
		cached.InviteLinkPassword = change.ModifyInviteLinkPassword
	}
	if change.ModifyTitle != nil {
		cached.Title = *change.ModifyTitle
	}
	if change.ModifyDescription != nil {
		cached.Description = *change.ModifyDescription
	}
	if change.ModifyAvatar != nil {
		cached.AvatarPath = *change.ModifyAvatar
	}
	if change.ModifyAnnouncementsOnly != nil {
		cached.AnnouncementsOnly = *change.ModifyAnnouncementsOnly
	}
	if change.ModifyDisappearingMessagesDuration != nil {
		cached.DisappearingMessagesDuration = *change.ModifyDisappearingMessagesDuration
	}
	if change.ModifyAttributesAccess != nil {
		cached.AccessControl.Attributes = *change.ModifyAttributesAccess
	}
	if change.ModifyMemberAccess != nil {
		cached.AccessControl.Members = *change.ModifyMemberAccess
	}
	if change.ModifyAddFromInviteLinkAccess != nil {
		cached.AccessControl.AddFromInviteLink = *change.ModifyAddFromInviteLinkAccess
	}

	cached.UpdatedAt = time.Now()
	cached.Revision = change.Revision
	endorsement, memberEndorsements, err := endorsementResponse.ReceiveWithServiceIDs(
		cached.getMemberServiceIDs(),
		gc.serviceID,
		&gsp,
		prodServerPublicParams,
	)
	if err != nil {
		delete(gc.data, id)
		return fmt.Errorf("failed to receive endorsements: %w", err)
	}
	expiration, err := endorsementResponse.GetExpiration()
	if err != nil {
		delete(gc.data, id)
		return fmt.Errorf("failed to get endorsement expiration: %w", err)
	}
	// TODO do these responses overwrite the entire thing?
	cached.SendEndorsementCache = &SendEndorsementCache{
		SendEndorsement:    endorsement,
		MemberEndorsements: memberEndorsements,
		Expiration:         expiration,
		SecretParams:       &gsp,
	}

	return nil
}
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`// mautrix-signal - A Matrix-signal puppeting bridge.`
			`// Copyright (C) 2025 Tulir Asokan`
			`//`
			`// This program is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU Affero General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// This program is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU Affero General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU Affero General Public License`
			`// along with this program. If not, see <https://www.gnu.org/licenses/>.`

			`package signalmeow`

			`import (`
			`"context"`
			`"fmt"`
			`"slices"`
			`"sync"`
			`"time"`

			`"github.com/google/uuid"`

			`"go.mau.fi/mautrix-signal/pkg/libsignalgo"`
			`"go.mau.fi/mautrix-signal/pkg/signalmeow/types"`
			`)`

signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`type SendEndorsementCache struct {`
			`SendEndorsement libsignalgo.GroupSendEndorsement`
			`MemberEndorsements map[libsignalgo.ServiceID]libsignalgo.GroupSendEndorsement`
			`Expiration time.Time`
			`SecretParams *libsignalgo.GroupSecretParams`
			`}`

			`func (sec *SendEndorsementCache) GetToken() (libsignalgo.GroupSendFullToken, error) {`
			`return sec.GetTokenWith(sec.SendEndorsement)`
			`}`

			`func (sec *SendEndorsementCache) GetTokenWith(altToken libsignalgo.GroupSendEndorsement) (libsignalgo.GroupSendFullToken, error) {`
			`return altToken.ToFullToken(sec.SecretParams, sec.Expiration)`
			`}`

signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`type cachedGroup struct {`
			`*Group`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`*SendEndorsementCache`
			`FetchedAt time.Time`
			`UpdatedAt time.Time`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`

			`type GroupCache struct {`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`serviceID libsignalgo.ServiceID`

signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`credentials *GroupCredentials`
			`credentialsLock sync.RWMutex`

			`data map[types.GroupIdentifier]*cachedGroup`
			`lock sync.RWMutex`

			`activeCalls map[types.GroupIdentifier]string`
			`callsLock sync.RWMutex`
			`}`

signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`func NewGroupCache(serviceID libsignalgo.ServiceID) *GroupCache {`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`return &GroupCache{`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`serviceID: serviceID,`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`data: make(map[types.GroupIdentifier]*cachedGroup),`
			`activeCalls: make(map[types.GroupIdentifier]string),`
			`}`
			`}`

			`func (gc *GroupCache) GetCredentials(`
			`ctx context.Context,`
			`fetch func(context.Context, time.Time) (*GroupCredentials, error),`
			`) (*GroupCredential, error) {`
			`today := time.Now().Truncate(24 * time.Hour)`
			`gc.credentialsLock.RLock()`
			`cred := gc.getCachedCredentials(today.Unix())`
			`gc.credentialsLock.RUnlock()`
			`if cred != nil {`
			`return cred, nil`
			`}`

			`gc.credentialsLock.Lock()`
			`defer gc.credentialsLock.Unlock()`
			`cred = gc.getCachedCredentials(today.Unix())`
			`if cred != nil {`
			`return cred, nil`
			`}`
			`creds, err := fetch(ctx, today)`
			`if err != nil {`
			`return nil, err`
			`}`
			`gc.credentials = creds`
			`cred = gc.getCachedCredentials(today.Unix())`
			`if cred == nil {`
			`return nil, fmt.Errorf("no credentials for today after fetch")`
			`}`
			`return cred, nil`
			`}`

			`func (gc GroupCache) getCachedCredentials(today int64) GroupCredential {`
			`if gc.credentials == nil {`
			`return nil`
			`}`
			`for _, cred := range gc.credentials.Credentials {`
			`if cred.RedemptionTime == today {`
			`return &cred`
			`}`
			`}`
			`return nil`
			`}`

			`func (gc *GroupCache) UpdateActiveCall(id types.GroupIdentifier, callID string) bool {`
			`gc.callsLock.Lock()`
			`defer gc.callsLock.Unlock()`
			`currentCallID, ok := gc.activeCalls[id]`
			`if ok {`
			`// If we do, then this must be ending the call`
			`if currentCallID == callID {`
			`delete(gc.activeCalls, id)`
			`return false`
			`}`
			`}`
			`gc.activeCalls[id] = callID`
			`return true`
			`}`

signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`func (gc GroupCache) Get(id types.GroupIdentifier) (Group, *SendEndorsementCache, bool) {`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`gc.lock.RLock()`
			`defer gc.lock.RUnlock()`
			`c, ok := gc.data[id]`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`if !ok \|\| time.Until(c.Expiration) < 5*time.Minute {`
			`return nil, nil, false`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`return c.Group, c.SendEndorsementCache, true`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`

			`func (gc *GroupCache) Delete(id types.GroupIdentifier) {`
			`gc.lock.Lock()`
			`defer gc.lock.Unlock()`
			`delete(gc.data, id)`
			`}`

signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`func (gc GroupCache) Put(data Group, endorsementResponse libsignalgo.GroupSendEndorsementsResponse) error {`
			`gsp, err := masterKeyToBytes(data.GroupMasterKey).SecretParams()`
			`if err != nil {`
			`return fmt.Errorf("failed to get secret params: %w", err)`
			`}`
			`expiration, err := endorsementResponse.GetExpiration()`
			`if err != nil {`
			`return fmt.Errorf("failed to get endorsement expiration: %w", err)`
			`}`
			`endorsement, memberEndorsements, err := endorsementResponse.ReceiveWithServiceIDs(data.getMemberServiceIDs(), gc.serviceID, &gsp, prodServerPublicParams)`
			`if err != nil {`
			`return fmt.Errorf("failed to receive endorsements: %w", err)`
			`}`

signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`gc.lock.Lock()`
			`defer gc.lock.Unlock()`
			`cached, exists := gc.data[data.GroupIdentifier]`
			`if exists && cached.Revision > data.Revision {`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`return nil`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`
			`gc.data[data.GroupIdentifier] = &cachedGroup{`
			`Group: data,`
			`FetchedAt: time.Now(),`
			`UpdatedAt: time.Now(),`

signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`SendEndorsementCache: &SendEndorsementCache{`
			`Expiration: expiration,`
			`SendEndorsement: endorsement,`
			`MemberEndorsements: memberEndorsements,`
			`SecretParams: &gsp,`
			`},`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`return nil`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`

signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`func (gc GroupCache) ApplyUpdate(change GroupChange, endorsementResponse libsignalgo.GroupSendEndorsementsResponse) error {`
			`mkBytes := masterKeyToBytes(change.GroupMasterKey)`
			`rawGroupID, err := mkBytes.GroupIdentifier()`
			`if err != nil {`
			`return fmt.Errorf("failed to get group identifier: %w", err)`
			`}`
			`gsp, err := mkBytes.SecretParams()`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`if err != nil {`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`return fmt.Errorf("failed to get secret params: %w", err)`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`
			`id := types.GroupIdentifier(rawGroupID.String())`

			`gc.lock.Lock()`
			`defer gc.lock.Unlock()`

			`cached, exists := gc.data[id]`
			`if !exists \|\| cached.Revision >= change.Revision {`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`return nil`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`} else if cached.Revision < change.Revision-1 {`
			`// We missed an update, evict`
			`delete(gc.data, id)`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`return nil`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`

			`// Pending member adds, promotes and removes`
			`cached.PendingMembers = append(cached.PendingMembers, change.AddPendingMembers...)`
			`for _, promo := range change.PromotePendingMembers {`
			`cached.PendingMembers = slices.DeleteFunc(cached.PendingMembers, func(p *PendingMember) bool {`
			`return p.ServiceID.Type == libsignalgo.ServiceIDTypeACI && p.ServiceID.UUID == promo.ACI`
			`})`
			`cached.Members = append(cached.Members, &GroupMember{`
			`ACI: promo.ACI,`
			`ProfileKey: promo.ProfileKey,`
			`Role: GroupMember_DEFAULT,`
			`JoinedAtRevision: change.Revision,`
			`})`
			`}`
			`for _, promo := range change.PromotePendingPniAciMembers {`
			`cached.PendingMembers = slices.DeleteFunc(cached.PendingMembers, func(p *PendingMember) bool {`
			`return (p.ServiceID.Type == libsignalgo.ServiceIDTypePNI && p.ServiceID.UUID == promo.PNI) \|\|`
			`(p.ServiceID.Type == libsignalgo.ServiceIDTypeACI && p.ServiceID.UUID == promo.ACI)`
			`})`
			`cached.Members = append(cached.Members, &GroupMember{`
			`ACI: promo.ACI,`
			`ProfileKey: promo.ProfileKey,`
			`Role: GroupMember_DEFAULT,`
			`JoinedAtRevision: change.Revision,`
			`})`
			`}`
			`cached.PendingMembers = slices.DeleteFunc(cached.PendingMembers, func(p *PendingMember) bool {`
			`return slices.ContainsFunc(change.DeletePendingMembers, func(s *libsignalgo.ServiceID) bool {`
			`return s != nil && p.ServiceID == *s`
			`})`
			`})`

			`// Requesting member adds, promotes and removes`
			`cached.RequestingMembers = append(cached.RequestingMembers, change.AddRequestingMembers...)`
			`for _, promo := range change.PromoteRequestingMembers {`
			`var profileKey libsignalgo.ProfileKey`
			`cached.RequestingMembers = slices.DeleteFunc(cached.RequestingMembers, func(r *RequestingMember) bool {`
			`if r.ACI == promo.ACI {`
			`profileKey = r.ProfileKey`
			`return true`
			`}`
			`return false`
			`})`
			`cached.Members = append(cached.Members, &GroupMember{`
			`ACI: promo.ACI,`
			`ProfileKey: profileKey,`
			`Role: promo.Role,`
			`JoinedAtRevision: change.Revision,`
			`})`
			`}`
			`cached.RequestingMembers = slices.DeleteFunc(cached.RequestingMembers, func(r *RequestingMember) bool {`
			`return slices.ContainsFunc(change.DeleteRequestingMembers, func(u *uuid.UUID) bool {`
			`return u != nil && r.ACI == *u`
			`})`
			`})`

			`// Direct member adds, removes and modifications`
			`for _, member := range change.AddMembers {`
			`cached.Members = append(cached.Members, &GroupMember{`
			`ACI: member.ACI,`
			`Role: member.Role,`
			`ProfileKey: member.ProfileKey,`
			`JoinedAtRevision: member.JoinedAtRevision,`
			`})`
			`}`
			`for _, rm := range change.ModifyMemberRoles {`
			`cached.findMemberOrEmpty(rm.ACI).Role = rm.Role`
			`}`
			`for _, pk := range change.ModifyMemberProfileKeys {`
			`cached.findMemberOrEmpty(pk.ACI).ProfileKey = pk.ProfileKey`
			`}`
			`cached.Members = slices.DeleteFunc(cached.Members, func(member *GroupMember) bool {`
			`return slices.ContainsFunc(change.DeleteMembers, func(u *uuid.UUID) bool {`
			`return u != nil && *u == member.ACI`
			`})`
			`})`

			`// Banned members`
			`cached.BannedMembers = append(cached.BannedMembers, change.AddBannedMembers...)`
			`cached.BannedMembers = slices.DeleteFunc(cached.BannedMembers, func(b *BannedMember) bool {`
			`return slices.ContainsFunc(change.DeleteBannedMembers, func(s *libsignalgo.ServiceID) bool {`
			`return s != nil && b.ServiceID == *s`
			`})`
			`})`

			`// Non-member modifications`
			`if change.ModifyInviteLinkPassword != nil {`
			`cached.InviteLinkPassword = change.ModifyInviteLinkPassword`
			`}`
			`if change.ModifyTitle != nil {`
			`cached.Title = *change.ModifyTitle`
			`}`
			`if change.ModifyDescription != nil {`
			`cached.Description = *change.ModifyDescription`
			`}`
			`if change.ModifyAvatar != nil {`
			`cached.AvatarPath = *change.ModifyAvatar`
			`}`
			`if change.ModifyAnnouncementsOnly != nil {`
			`cached.AnnouncementsOnly = *change.ModifyAnnouncementsOnly`
			`}`
			`if change.ModifyDisappearingMessagesDuration != nil {`
			`cached.DisappearingMessagesDuration = *change.ModifyDisappearingMessagesDuration`
			`}`
			`if change.ModifyAttributesAccess != nil {`
			`cached.AccessControl.Attributes = *change.ModifyAttributesAccess`
			`}`
			`if change.ModifyMemberAccess != nil {`
			`cached.AccessControl.Members = *change.ModifyMemberAccess`
			`}`
			`if change.ModifyAddFromInviteLinkAccess != nil {`
			`cached.AccessControl.AddFromInviteLink = *change.ModifyAddFromInviteLinkAccess`
			`}`

			`cached.UpdatedAt = time.Now()`
			`cached.Revision = change.Revision`
signalmeow,libsignalgo: add support for group send endorsements 2025-11-28 16:17:38 +02:00			`endorsement, memberEndorsements, err := endorsementResponse.ReceiveWithServiceIDs(`
			`cached.getMemberServiceIDs(),`
			`gc.serviceID,`
			`&gsp,`
			`prodServerPublicParams,`
			`)`
			`if err != nil {`
			`delete(gc.data, id)`
			`return fmt.Errorf("failed to receive endorsements: %w", err)`
			`}`
			`expiration, err := endorsementResponse.GetExpiration()`
			`if err != nil {`
			`delete(gc.data, id)`
			`return fmt.Errorf("failed to get endorsement expiration: %w", err)`
			`}`
			`// TODO do these responses overwrite the entire thing?`
			`cached.SendEndorsementCache = &SendEndorsementCache{`
			`SendEndorsement: endorsement,`
			`MemberEndorsements: memberEndorsements,`
			`Expiration: expiration,`
			`SecretParams: &gsp,`
			`}`

			`return nil`
signalmeow/groups: fix group cache 2025-11-25 20:15:52 +02:00			`}`