Skip group info mismatch error for broken groups#4883

pcapriotti · 2025-11-28T15:31:38Z

Commits with a broken group info are now let through if the group was already broken.

https://wearezeta.atlassian.net/browse/WPB-21363

Checklist

Add a new entry in an appropriate subdirectory of changelog.d
Read and follow the PR guidelines

Copilot

Pull request overview

This PR implements logic to skip group info mismatch errors for MLS conversations that were already in a broken state before the group info diagnostics feature was enabled. The implementation allows systems to gracefully handle pre-existing broken groups without blocking future commits.

Key Changes

Refactored group state validation to detect and tolerate pre-existing mismatches
Added logic to check if a stored group already has a state mismatch before rejecting new commits
Added comprehensive test coverage for the new behavior

Reviewed changes

Copilot reviewed 5 out of 5 changed files in this pull request and generated no comments.

Show a summary per file

File	Description
`services/galley/src/Galley/API/MLS/Message.hs`	Updated `checkGroupState` calls to pass `ConvOrSubConv` instead of `Maybe TeamId`
`services/galley/src/Galley/API/MLS/GroupInfoCheck.hs`	Refactored validation logic to extract pure `groupStateMismatch` function and added `existingGroupStateMismatch` to check for pre-existing issues
`libs/wire-subsystems/src/Wire/ConversationStore.hs`	Added helper function `getConvOrSubGroupInfo` to retrieve group info for conversations or subconversations
`integration/test/Test/MLS.hs`	Added test case `testGroupInfoAlreadyBroken` to verify commits are allowed when group was already broken
`changelog.d/2-features/mls-skip-error-for-broken-groups`	Added changelog entry documenting the feature

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

battermann · 2025-12-01T08:48:24Z

integration/test/Test/MLS.hs

+      void $ sendAndConsumeCommitBundle mp2 {groupInfo = mp1.groupInfo}
+
+      -- enable feature
+      do


Is the purpose of the 'do' just for visual structuring?

Usually I add a nested block when there are some bound variables that I don't want to leak into the parent scope, but here in fact it doesn't seem necessary. I don't mind it in any case, but I can remove it if you want.

Yes, makes sense.
Personally, instead of a comment and a do block I would extract it as a function named enableFeatures. But you don't have to change it, it's fine. This is a super nitpick :)

pcapriotti added 6 commits November 28, 2025 09:35

Add utility to get group info

c8f1abf

Check existing group before throwing mismatch error

896e006

Fix equality in group info check

f558118

Test previously broken group

cf25157

Refactor existing mismatch logic

ce3dcf6

Add CHANGELOG entry

c264d2d

pcapriotti requested review from a team as code owners November 28, 2025 15:31

zebot added the ok-to-test Approved for running tests in CI, overrides not-ok-to-test if both labels exist label Nov 28, 2025

Lint

853dad6

battermann requested a review from Copilot December 1, 2025 08:44

Copilot started reviewing on behalf of battermann December 1, 2025 08:45 View session

Copilot finished reviewing on behalf of battermann December 1, 2025 08:48

Copilot AI reviewed Dec 1, 2025

View reviewed changes

battermann approved these changes Dec 1, 2025

View reviewed changes

pcapriotti merged commit 0dfd958 into develop Dec 4, 2025
15 of 17 checks passed

pcapriotti deleted the mls-skip-error-for-broken-groups branch December 4, 2025 07:52

zebot mentioned this pull request Jan 13, 2026

Release 2026-01-13 - (expected chart version 5.25.0) #4949

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Skip group info mismatch error for broken groups#4883