| Number | Category | Status | Author | Created |
|---|---|---|---|---|
0028 |
Standards Track |
Draft |
Ian Yang <@doitian> |
2021-02-03 |
This document proposes a transaction verification consensus change. When the since field of the transaction input uses a relative timestamp, the commitment block header timestamp is used as the base value instead of the median timestamp of previous 37 blocks.
This is a modification to the RFC17 Transaction valid since.
The current consensus rule uses the median of the timestamps in the 37 blocks preceding the referenced cell commitment block. Getting the median timestamp is resource consuming because it requires either getting 37 block headers or caching the median timestamp for each block. The intention of using median time was to prevent miners from manipulating block timestamp to include more transactions. But it is safe to use the committing block timestamp as the start time because of two reasons:
- The timestamp in the block header has already been verified by the network that it must be larger than the median of the previous 37 blocks and less than or equal to the current time plus 15 seconds. (See RFC27)
- The transaction consuming a cell with the
sincerequirement must wait until the cell is mature. During this waiting time, the transaction that created the cell has accumulated enough confirmations that it is difficult for the miner to manipulate it.
When an input since field is present, and
- The
metric_flagis block timestamp (10). - The
relative_flagis relative (1).
The input since precondition is fulfilled when
MedianTimestamp ≥ StartTime + SinceValue
where
StartTimeis the timestamp field in the commitment block header.SinceValueis thevaluepart of thesincefield.MedianTimestampis the median timestamp of the previous 37 blocks preceding the block if the transaction is in the block, or the latest 37 blocks if the transaction is in the pool.
The only change is StartTime, which was the median of the previous 37 blocks preceding the one that has committed the consumed cell. Because block timestamp must be larger than the median of its previous 37 blocks, the new consensus rule is more strict than the old rule. A transaction that is mature under the old rule may be immature under the new rule, but a transaction that is mature under the new rule must be mature under the old rule.
Following is an example that a transaction is mature using the new rule but is immature using the old rule.
Assuming that:
- A transaction consumes a cell in block S and is about to be committed into block T with a since requirement that:
- The
metric_flagis block timestamp (10). - The
relative_flagis relative (1). - The
valueis 600,000 (10 minutes).
- The
- The median of the previous 37 blocks preceding block S is 10,000.
- The timestamp of block S is 20,000.
- The median of the previous 37 blocks preceding block T is 615,000
In the old consensus, StartTime + SinceValue = 10,000 + 600,000 = 610,000, which is less than the MedianTimestamp 615,000, thus the transaction is mature.
But in the new rule, StartTime + SinceValue = 20,000 + 600,000 = 620,000 ≥ 615,000, so the transaction is still immature.
The deployment can be performed in two stages.
The first stage will activate the new consensus rule starting from a specific epoch. The mainnet and testnet will use different starting epochs and all other chains will use the new rule from epoch 0.
After the fork is activated, and if the transactions in the old epochs all satisfy the new rule, the old consensus rule will be removed and the new rule will be applied from the genesis block.
Because the new consensus rule is more strict than the old one, this proposal can be deployed via a soft fork.