EIP-1482: Define a maximum block timestamp drift


Metadata
Status: StagnantStandards Track: CoreCreated: 2018-10-09
Authors
Maurelian (@Maurelian)

Simple Summary


Include an explicit definition of the acceptable timestamp drift in the protocol specification.

Abstract


On the basis that both Geth and Parity implement the same timestamp validation requirements, this should be written into the reference specification.

Motivation


There is a lack of clarity about how accurate timestamps in the block header must be. The yellow paper describes the timestamp as

A scalar value equal to the reasonable output of Unix’s time() at this block’s inception

This causes confusion about the safe use of the TIMESTAMP opcode (solidity's block.timestamp or now) in smart contract development.

Differing interpretations of 'reasonable' may create a risk of consenus failures.

Specification


The yellow paper should define a timestamp as:

A scalar value equal to the output of Unix’s time() at this block’s inception. For the purpose of block validation, it must be greater than the previous block's timestamp, and no more than 15 seconds greater than system time.

Rationale


Both Geth and Parity reject blocks with timestamp more than 15 seconds in the future. This establishes a defacto standard, which should be made explicit in the reference specification.

Backwards Compatibility


It may be necessary to relax this requirement for blocks which were mined early in the main chain's history, if they would be considered invalid.

Test Cases


These would be important to have.

Implementation


_The implementations must be completed before any EIP is given status "Final", but it need not be completed before the EIP is accepted. While there is merit to the approach of reaching consensus on the specification and rationale before writing code, the principle of "rough consensus and running code" is still useful when it comes to resolving many discussions of API details. _

Copyright


Copyright and related rights waived via CC0.