Remove EncryptDeviceCreationTimestampCommand

service/src/main/java/org/whispersystems/textsecuregcm/WhisperServerService.java

@@ -272,7 +272,6 @@ import org.whispersystems.textsecuregcm.workers.BackupUsageRecalculationCommand;
 import org.whispersystems.textsecuregcm.workers.CertificateCommand;
 import org.whispersystems.textsecuregcm.workers.CheckDynamicConfigurationCommand;
 import org.whispersystems.textsecuregcm.workers.DeleteUserCommand;
-import org.whispersystems.textsecuregcm.workers.EncryptDeviceCreationTimestampCommand;
 import org.whispersystems.textsecuregcm.workers.IdleDeviceNotificationSchedulerFactory;
 import org.whispersystems.textsecuregcm.workers.MessagePersisterServiceCommand;
 import org.whispersystems.textsecuregcm.workers.NotifyIdleDevicesCommand;
@@ -347,7 +346,6 @@ public class WhisperServerService extends Application<WhisperServerConfiguration
         new IdleDeviceNotificationSchedulerFactory()));
 
     bootstrap.addCommand(new RegenerateSecondaryDynamoDbTableDataCommand());
-    bootstrap.addCommand(new EncryptDeviceCreationTimestampCommand());
   }
 
   @Override

service/src/main/java/org/whispersystems/textsecuregcm/workers/EncryptDeviceCreationTimestampCommand.java

@@ -1,112 +0,0 @@
-/*
- * Copyright 2025 Signal Messenger, LLC
- * SPDX-License-Identifier: AGPL-3.0-only
- */
-
-package org.whispersystems.textsecuregcm.workers;
-
-import static org.whispersystems.textsecuregcm.metrics.MetricsUtil.name;
-
-import com.google.common.annotations.VisibleForTesting;
-import io.micrometer.core.instrument.Counter;
-import io.micrometer.core.instrument.Metrics;
-import java.time.Duration;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-import java.util.function.Function;
-import net.sourceforge.argparse4j.inf.Subparser;
-import org.signal.libsignal.protocol.IdentityKey;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.whispersystems.textsecuregcm.identity.IdentityType;
-import org.whispersystems.textsecuregcm.storage.Account;
-import org.whispersystems.textsecuregcm.storage.Device;
-import org.whispersystems.textsecuregcm.util.EncryptDeviceCreationTimestampUtil;
-import org.whispersystems.textsecuregcm.util.Util;
-import reactor.core.publisher.Mono;
-import reactor.core.publisher.Flux;
-import reactor.util.retry.Retry;
-
-public class EncryptDeviceCreationTimestampCommand extends AbstractSinglePassCrawlAccountsCommand {
-  @VisibleForTesting
-  static final String DRY_RUN_ARGUMENT = "dry-run";
-
-  @VisibleForTesting
-  static final String BUFFER_ARGUMENT = "buffer";
-
-  private static final int MAX_CONCURRENCY = 16;
-
-  private static final String PROCESSED_ACCOUNT_COUNTER_NAME =
-      name(EncryptDeviceCreationTimestampCommand.class, "processedAccount");
-
-  private static final Logger log = LoggerFactory.getLogger(EncryptDeviceCreationTimestampCommand.class);
-
-  public EncryptDeviceCreationTimestampCommand() {
-    super("encrypt-device-creation-timestamps", "Encrypts the creation timestamp of devices on accounts");
-  }
-
-  @Override
-  public void configure(final Subparser subparser) {
-    super.configure(subparser);
-
-    subparser.addArgument("--dry-run")
-        .type(Boolean.class)
-        .dest(DRY_RUN_ARGUMENT)
-        .required(false)
-        .setDefault(true)
-        .help("If true, don't actually update device records");
-
-    subparser.addArgument("--buffer")
-        .type(Integer.class)
-        .dest(BUFFER_ARGUMENT)
-        .setDefault(16_384)
-        .help("Records to buffer");
-  }
-
-  @Override
-  protected void crawlAccounts(final Flux<Account> accounts) {
-    final boolean isDryRun = getNamespace().getBoolean(DRY_RUN_ARGUMENT);
-    final int bufferSize = getNamespace().getInt(BUFFER_ARGUMENT);
-
-    final Counter processedAccountCounter =
-        Metrics.counter(PROCESSED_ACCOUNT_COUNTER_NAME, "dryRun", String.valueOf(isDryRun));
-
-    accounts
-        // We've partially processed enough accounts now that this should speed up the crawler
-        .filter(a -> a.getDevices().stream().anyMatch(d -> d.getCreatedAtCiphertext() == null || d.getCreatedAtCiphertext().length == 0))
-        .buffer(bufferSize)
-        .map(source -> {
-          final List<Account> shuffled = new ArrayList<>(source);
-          Collections.shuffle(shuffled);
-          return shuffled;
-        })
-        .limitRate(2)
-        .flatMapIterable(Function.identity())
-        .flatMap(account -> {
-          Mono<Void> encryptTimestampMono = isDryRun
-              ? Mono.empty()
-              : Mono.fromFuture(
-                  () -> getCommandDependencies().accountsManager().updateAsync(account, a -> {
-                    final IdentityKey aciIdentityKey = account.getIdentityKey(IdentityType.ACI);
-                    for (final Device device :  a.getDevices()) {
-                      final byte[] createdAtCiphertext = EncryptDeviceCreationTimestampUtil.encrypt(
-                          device.getCreated(), aciIdentityKey,
-                          device.getId(), device.getRegistrationId(IdentityType.ACI));
-                      device.setCreatedAtCiphertext(createdAtCiphertext);
-                    }
-                  }).thenRun(Util.NOOP));
-          return encryptTimestampMono
-              .doOnSuccess(_ -> processedAccountCounter.increment())
-              .retryWhen(Retry.backoff(3, Duration.ofSeconds(1)).maxBackoff(Duration.ofSeconds(4)))
-              .onErrorResume(throwable -> {
-                log.warn("Failed to encrypt creation timestamps on account {}", account.getUuid(), throwable);
-                return Mono.empty();
-              });
-        }, MAX_CONCURRENCY)
-        .then()
-        .block();
-
-    log.info("Finished encrypting device timestamps");
-  }
-}