EOF Prefix

This document describes the process of choosing magic sequence of Ethereum Object Format, that will allow to distinguish future EOF contracts from any of the already deployed contracts, as described in the Motivation section of EIP-3541.

Chain readiness

Name EIP-3541 activation № EF-prefixed code
Ropsten London / June 24, 2021 0
Goerli London / June 30, 2021 0
Rinkeby London / July 7, 2021 0
Mainnet London / August 5, 2021 3
Kovan London / August 12, 2021 0
Sepolia Genesis 0
Ethereum Classic ECIP-1104 / TBD ?
xDai Due next update ?
Optimism n/a 0*
Arbitrum n/a 0*
Polygon London / ? ?

Special note about Arbitrum & Optimism

These chains employ a verification process (and/or guarded/phased launch), which means failing code can not be deployed. Any code starting with the EF byte will fail to execute on EVM and so should not exist on these chains.

EF-prefixed legacy code

After the activation of EIP-3541, analysis of deployed code prefixes was performed on Mainnet and all public testnets:

  1. For chains having geth support, geth snapshots were used to collect data (snap2code-prefixes.py). Additionally, Erigon team has verified data for Mainnet independently.
  2. For chains having only OpenEthereum support warp snapshots were used to collect data (warp2code-prefixes.py).

We have only found existing contracts with the EF byte on Mainnet:

EOF prefix selection

EIP-3540 proposes an EOF bytecode to start with the EOF prefix and version number:

format, magic, version

where format is 0xEF, version is a single byte with version number, and magic may be a sequence of bytes (possibly 0-length) making the prefix unique among already deployed “legacy” bytecodes.

Next we explain two options based on the collected data.

Two-byte prefix (EF00)

The only two-byte sequence starting with EF existing in analysed chains is EFF0, therefore to guarantee that none of already existing contracts is recognized as EOF, magic can be chosen to be a single byte with any value except F0, and we simply choose 00.

def is_eof(code):
    return len(code) >= 2 && code[0] == 0xEF && code[1] == 0x00

def get_eof_version(code):
    assert is_eof(code)
    return code[2]  # SHOULD be safe for deployed code.

One-byte prefix (EF, no magic)

We also have an option to skip magic completely with some additional spec complexity. In this case the version byte follows EF directly and there are no magic bytes. But not every contract starting with EF is considered EOF (the ones starting with EFF0 must never be). Additionally, we have to forbid to use F0 as version forever.

known_versions = [0x01]  # version 0xf0 must never be assigned

def is_eof(code):
    return len(code) >= 2 && code[0] == 0xEF && code[1] in known_versions

def get_eof_version(code):
    assert is_eof(code)
    return code[1]

Conclusion

Based on the above we suggest to go with the two-byte prefix option, as it is the cleanest solution not requiring special cases.

Last changed by  
ipsilon Ipsilon -- Execution Research
5849

Read more

Why EVM has JUMPDEST

Executive Summary JUMPDEST is a way to make EVM feasible for bytecode-compilation (enabling faster JIT or AOT execution) and to avoid certain security risks, which systems like x86 face (code obfuscation, polymorphic code and partially return-oriented programming attacks). History The original EVM design from 2014 didn't have JUMPDEST. It was the minimal change introduced to make the EVMJIT project at least feasible. See the following Yellow Paper changes: Jump destinations defined. JUMPDESTs must be used.

Apr 29, 2025
EOF "Option D" Summary

Summary The EXTCODECOPY, EXTCODEHASH, and EXTCODESIZE opcodes are allowed within EOF containers. Their behavior is the same as when called from outside a container. Restrictions on creating EOF contracts from existing facilities remains, with EOFCREATE and TXCREATE opcodes providing contract creation services. The entire "Ban Gas Introspection" theme is removed. The CALL, STATICCALL, DELEGATECALL, and GAS opcodes are allowed within EOF containers. CALLCODE is not allowed as it is a deprecated instruction. ::: spoiler Summary of EOF opcode changes The list of opcodes not permitted in EOF contracts now consists of 9 instructions, down from 16. CODESIZE and CODECOPY instructions, as described in EIP-3540

Apr 28, 2025
EOF - Solidity library compatibility (initial) report

This document describes EOF's impact on the most popular existing libraries. We prepared prototypes of changes required to compile their source code. We describe unresolved issues and propose possible solutions. "Required changes to the source code" does not contain unresolved issues but sometimes contains TODO comments added to the source code. ⓘ Note: The prototypes make use of local paths in configuration and depend on a local build of the experimental Solidity compiler branch enabling block deduplicator on EOF rebased on the parallel branch enabling the constant optimizer. The first section addresses issues found in specific projects, and is followed by a categorical list of the kinds of changes authors will need to make. This document is based on the EOF scope approved in March of 2025. However, based on the findings of this report and the community feedback aroud these changes, Team Ipsilon recommends changes to the spec to reflect "Option D - Introspecting EOF". The adoption of this option will remove most of the required code changes listed in this report. Uniswap V4 (core) Required changes to the source code:

Apr 28, 2025
EOF: Ethereum’s Gateway to RISC-V Execution

Danno Ferrin, 25 April 2025 Architectural transitions are a familiar chapter in computing history, from the CPUs powering general-purpose computers to the tightly controlled ecosystems of video game consoles and mobile devices. For Ethereum, a hypothetical shift to RISC-V presents a similar challenge: how to evolve without fracturing its vibrant ecosystem. Two contrasting models define the extremes of this transition: the abrupt generational leap of video game consoles and the seamless, compatibility-focused approach of Apple’s Macintosh transitions. By leveraging the Ethereum Object Format (EOF), Ethereum can chart a sustainable path toward RISC-V execution, emulating Apple’s strategy to ensure continuity for Mainnnet, Layer 2s, and other Ethereum-equivalent chains, maximizing compatibility as well as performance. Lessons Learned From Other Transitions But how do we get to RISC-V bliss? Lets see how two other systems handled such transitions: Video Game Consoles and Macs. The Video Game Console Model: A Hard Break Video game consoles, like the PlayStation or Xbox, epitomize the direct-replacement approach. Each generation marks a sharp divide: games written for one system often won’t run on its successor, even if they share a brand. Backward compatibility when offered is typically limited, relying on emulation for a subset of titles, or requiring an upgrade fee to use the features of the new system. This model prioritizes a clean slate, forcing developers to rewrite software and users to invest in new hardware and games. For Ethereum, adopting this approach would be disastrous, creating high-friction “cleavage planes” where users and developers might abandon the ecosystem, as the cost of staying outweighs switching to competing platforms.

Apr 27, 2025
Read more from ipsilon
Published on HackMD