Open Bug 1928519 Opened 2 days ago

[wpt-sync] Sync PR 48915 - Revert "Implement support for bidNonce and seller nonces"

Categories

(Testing :: web-platform-tests, task, P4)

Product:
Testing
Component:
web-platform-tests
Type:
task

Tracking

(Not tracked)

People

(Reporter: wpt-sync, Unassigned)

References

(
URL
)

Details

(Whiteboard: [wptsync downstream])

Sync web-platform-tests PR 48915 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/48915
Details from upstream follow.

Liviu Tinta <liviutinta@chromium.org> wrote:

Revert "Implement support for bidNonce and seller nonces"

This reverts commit 803a93609b702479399a8376bd90b1d7780d2794.

Reason for revert: Deterministic failures of browser tests linked to the seller nonce on the bots.

E.g.
https://ci.chromium.org/ui/p/chromium/builders/ci/fuchsia-arm64-cast-receiver-rel/18747/overview
https://ci.chromium.org/ui/p/chrome/builders/ci/linux-chromeos-chrome

Original change's description:

Implement support for bidNonce and seller nonces

Introduce a mechanism that allows sellers to avoid giving the same nonce
to all buyers, since this can be used to determine that these buyers are
in the same auction. Instead, a new nonce is given to each buyer based
on the SHA-256 combination of both the auctionNonce and a new seller
nonce, which is given to the browser, but not to buyers.

The browser can verify the bidNonce from bids by computing the expected
bidNonce for a given auctionNonce and seller nonce, thus preserving the
existing replay protections of the auctionNonce.

Bug: 40275797
Fuchsia-Binary-Size: Size increase is unavoidable.
Change-Id: I9f2a6117891b30c33cc6831c63f6622faf6f55f1
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/5905479
Reviewed-by: Orr Bernstein \<orrb@google.com>
Reviewed-by: Mike Taylor \<miketaylr@chromium.org>
Reviewed-by: Brendon Tiszka \<tiszka@chromium.org>
Commit-Queue: Caleb Raitto \<caraitto@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1376464}

Bug: 40275797
Change-Id: I61e65f1f7fc7ecb732f49d8860e3976a0fd5cd2a
No-Presubmit: true
No-Tree-Checks: true
No-Try: true
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/5979680
Reviewed-by: Orr Bernstein \<orrb@google.com>
Commit-Queue: Liviu Tinta \<liviutinta@chromium.org>
Reviewed-by: Mike Taylor \<miketaylr@chromium.org>
Auto-Submit: Liviu Tinta \<liviutinta@chromium.org>
Bot-Commit: Rubber Stamper \<rubber-stamper@appspot.gserviceaccount.com>
Owners-Override: Liviu Tinta \<liviutinta@chromium.org>
Cr-Commit-Position: refs/heads/main@{#1376577}

You need to log in before you can comment on or make changes to this bug.