# EOF - Solidity library compatibility (initial) report This document describes EOF's impact on the most popular existing libraries. We prepared prototypes of changes required to compile their source code. We describe unresolved issues and propose possible solutions. "Required changes to the source code" does not contain unresolved issues but sometimes contains TODO comments added to the source code. ⓘ Note: The prototypes make use of local paths in configuration and depend on a local build of the experimental Solidity compiler [branch enabling block deduplicator on EOF](https://github.com/ethereum/solidity/pull/15993) rebased on the [parallel branch enabling the constant optimizer](https://github.com/ethereum/solidity/pull/15985). The first section addresses issues found in specific projects, and is followed by a categorical list of the kinds of changes authors will need to make. ## Uniswap V4 (core) ### [Required changes to the source code:](https://github.com/ipsilon/v4-core/commit/ebab60449e634e05f2ab60143b4cd4e0564fe74f) `3 files +9 -6 lines changed` - Changes to project metadata such as changing the solc version and binary, updating the target VM, and enabling EOF. - Updating 3 assembly sections using `call()` to use `extcall()` instead and adjust to new return semantics. All calls pass in all available gas. - Some of the calls are pure value transfers so they can be replaced with `PAY` opcode, simplifying the code base. - Adding 1 instance of copying data from the return buffer into memory. ### Remaining issue: [`test/utils/V3Helper.sol:43`](https://github.com/ipsilon/v4-core/blob/35edd8eda629b4e6eedb486e7f6e5cb74a8e4071/test/utils/V3Helper.sol#L43) This issue is present only in project's test suite and is actually an issue of a dependency (`forge-std`), whose compatibility is explored in more detail in a later section. Possible solutions: 1. Introduce a cheat for deploying bytecode from a string. This is test code and it already depends on the `vm.getCode()` cheat that does things beyond what a real EVM allows. Introducing a more powerful cheat seems in line with this approach. 2. Deploy this bytecode from a legacy contract. The fact that it is included as verbatim bytecode and not compiled from source indicates that the intent was to test interoperability of Uniswap v4 with v3 as it exists on chain now. For such a use case, deploying a legacy contract would actually be the right thing to do. 3. Remove `forge-std` dependency and have the framework directly deploy the contract as a part of test setup rather than require the code under test to do it. 4. Convert the contract to EOF and compile it from source, which would make it deployable using either `TXCREATE` or `EOFCREATE`. - The part of the framework that runs the test suite could simulate an `InitcodeTransation` and provide a list of `initcodes` accessible via hash, which then would be deployable with `TXCREATE`. - The bytecode could be attached as a [verbatim contract](https://github.com/ethereum/solidity/issues/16027) in Solidity and deployed using `EOFCREATE`. 5. Reintroduce code introspection. ### Impact: Only test code is affected and the issue is in a dependency (`forge-std`). ## Uniswap V4 (periphery) No repo because the fix was to adjust one `call` (all gas passed) in [src/base/Notifier.sol:129](https://github.com/ipsilon/v4-periphery/blob/main/src/base/Notifier.sol#L129) Dependency: `v4-core` and `forge-std` ### Remaining issue: #### [src/base/Notifier.sol:85](https://github.com/ipsilon/v4-periphery/blob/main/src/base/Notifier.sol#L85) _Gas introspection ban_ Possible solution: 1. Reintroduce `gas`. 2. Use middle-ground proposed solution [CALL_GAS_SPLIT](https://github.com/ethereum/EIPs/pull/9558). ## openzeppelin-contracts In this case we used Hardhat to build the library as it doesn't depend on `forge-std` ### [Required changes to the source code:](https://github.com/ipsilon/openzeppelin-contracts/commit/421ee75aa12c309558fe53b6395f08968a4a9ca1) `8 files changed +49 -12 lines changed` - Changes to project metadata such as changing the solc version and binary, updating the target VM, enabling EOF, and enabling compilation via IR. - Updates to a Hardhat subtask to use a local compiler (will go away if we use a published version). - Updating 2 assembly sections using `call()` to use `extcall()` and adjust to new return semantics. All calls pass in all available gas. - Updating 1 assembly section using `delegatecall()` to use `extdelegatecall()` and adjust to new return semantics. All calls pass in all available gas. - Updating 5 assembly sections using `staticcall()` to use `extsaticcall()` and adjust to new return semantics. All calls pass in all available gas. - Adding 7 instances of copying data from the return buffer into memory. ### Remaining issues: #### [contracts/metatx/ERC2771Forwarder.sol](https://github.com/ipsilon/openzeppelin-contracts/blob/421ee75aa12c309558fe53b6395f08968a4a9ca1/contracts/metatx/ERC2771Forwarder.sol#L290) _Lack of gas observability._ A library that supports "meta transactions" (a precursor to EIP-4337 AA wallets). Possible solutions: 1. Reintroduce `gas`. 2. Use middle-ground proposed solution [CALL_GAS_SPLIT](https://github.com/ethereum/EIPs/pull/9558). 3. Do not migrate to EOF as newer contracts will use EIP-4337 AA wallets or EIP-7702 native AA. #### [contracts/utils/Create2.sol](https://github.com/ipsilon/openzeppelin-contracts/blob/0034c302241c4b1a1685272d4df42ca5d64b8c34/contracts/utils/Create2.sol#L45) _Create/Create2 helper_ Support for various `CREATE2` tasks. Possible solutions: 1. Implement a `TXCREATE`-based equivalent for counterfactual deployment use-cases. It would expect the bytecode to be provided in an `InitcodeTransaction` rather than passed in via arguments. 2. Implement an `EOFCREATE`-based equivalent for deployment of predefined bytecode blobs. This would rely on the [verbatim contract](https://github.com/ethereum/solidity/issues/16027) feature to be introduced in Solidity. #### [Clones.sol](https://github.com/ipsilon/openzeppelin-contracts/blob/d183d9b07a6cb0772ff52aa4e3e40165e99d6359/contracts/proxy/Clones.sol) _Clones_ A library that supports lightweight delegate contracts, including facilities to customize the clone with immutable data. Possible solutions: 1. Use the `EOFCREATE`-based variant of `Create2` with a [verbatim contract](https://github.com/ethereum/solidity/issues/16027). This would be straighforward for the base case of a deterministic clone with no args. The library also provides extra varieties of the clone pattern that need additional consideration: 1. *non-deterministic clone* (using `CREATE` rather than `CREATE2`). EOF intentionally does away with nonce-based contract deployment, so non-deterministic variant should be retired. If desired, it can still be simulated using an independently managed nonce in storage, mixed into the salt. 2. *clone with immutable args*. Currently implemented by inserting the immutable values into the bytecode before deployment. On EOF immutables are stored in the data section by the creation code using `RETURNCONTRACT`, so this is a matter of changing the clone implementation to make use of this mechanism instead. Then the immutable values need to be passed to the initcode, which can be achieved in a variety of ways (// FIXME: needs research, talk to OpenZeppelin): - passing them in through calldata, as constructor arguments - using a notional `EXTDATACOPY` operation (no EIP) - functional support to extract params from the clone host 2. Include [EIP-7819: Create Delegate](https://eips.ethereum.org/EIPS/eip-7819) in a hard fork. This EIP's first author is an OpenZeppelin developer. This EIP allows contracts to create EIP-7702 delegate for contract address. #### [ERC165Checker.sol](https://github.com/ipsilon/openzeppelin-contracts/blob/0034c302241c4b1a1685272d4df42ca5d64b8c34/contracts/utils/introspection/ERC165Checker.sol#L117) _Check interface_ A hard coded 30k gas limit is included in the ERC-165 check call, [as recommended](https://eips.ethereum.org/EIPS/eip-165#how-to-detect-if-a-contract-implements-erc-165) by the ERC. ##### Possible solutions: 1. Reintroduce `gas`. 2. Use middle-ground proposed solution [CALL_GAS_SPLIT](https://github.com/ethereum/EIPs/pull/9558). ### Impact: Low ## forge-std Forge uses a customized EVM to provide a lot of Solidity-focused testing support. This customization is where most of the changes need to be made. ### [Required changes to the source code:](https://github.com/ipsilon/forge-std/commit/5bd4e9743bceb4a2962ca340ee0482adfa1dc67d) `+17 -9 lines changed` - Changes to project metadata such as changing the solc version and binary, updating the target VM, enabling EOF. - 5 instances of using EXTCODESIZE to determine if an account is a contract. - Updating 5 assembly sections using `staticcall()` to use `extstaticcall()` and adjust to new return semantics. All calls pass in all available gas. ### Remaining issues: <!-- #### [src/StdCheats.sol](https://github.com/ipsilon/forge-std/blob/5bd4e9743bceb4a2962ca340ee0482adfa1dc67d/src/StdCheats.sol#L214) _Check if an address is a contract_ ##### Possible solution: 1. Use `ISCONTRACT` which is going to be introduced in devnet-2 #### [test/StdCheats.t.sol](https://github.com/ipsilon/forge-std/blob/5bd4e9743bceb4a2962ca340ee0482adfa1dc67d/test/StdCheats.t.sol) SAME AS ABOVE --> #### [src/StdCheats.sol](https://github.com/ipsilon/forge-std/blob/5bd4e9743bceb4a2962ca340ee0482adfa1dc67d/src/StdCheats.sol#L508) _Create a contract from bytecode_ Forge uses "cheats" for building and testing, which involves a customized VM that allows it to break the sandbox and load local system files and load them as contracts. ##### Possible solutions: Cheat EOF bytecode into the "initcodes" portion of the transaction, or the equivalant. 1. Update the VM with custom `TXCREATE` code. In addition to looking in the `InitcodeTransaction`'s `initcodes` field, look in a standard 'pre-image' pool where contracts are indexed by hash. 2. Load the preimage pool at an appropriate time. Two good options: a. When loading bytecode from a file. Hash it and put it in the pre-image pool. b. Every time `keccak` is performed, store the result in the preimage pool. This has the added benefit of test-generated EOF code. 3. Change the [deployCode variants](https://github.com/foundry-rs/forge-std/blob/9530d9ec702df1b27b7f8f50c0a63a11b1b5fba9/src/StdCheats.sol#L502-L541) to check the bytecode for EOF's magic bytes a. Legacy code goes to `CREATE` b. EOF code goes to `TXCREATE`, but the hash id comes from the pre-image pool. This preserves the magic of "cheating" in a contract from the local filesystem. ### Impact: Low to moderate. Depends on amount of work to do in `VMSafe` interface implementation. ## solady The nature of this library is in using low level assembly optimizations. This makes it sensitive on any EVM assembly change. Since EOF is an EVM format change, supporting it requires changes in many places in the library. Nevertheless the solady team has prepared well defined [Solady EOF](https://github.com/Vectorized/solady/issues/1142) plan. The team estimates that they [need a month](https://x.com/optimizoor/status/1916379240460914846) to start supporting EOF. ## Categorical Summary of Issues ### Project Metadata All projects will require an updated version of Solidity. As many projects lock in to a specific version of Solidity for code reproducibility reasons, this is a standard change. ### Transition to EIP-7069 calls in assembly blocks To support the "Ban Gas Introspection" goal EOF introduces a new series of CALL instructions that do not allow gas to be limited. These instructions also implement another long-requested optimization to not require output data in memory but to just use the returndata buffer. "Option D - Introspecting EOF" removes the entire "Ban Gas Introspection" theme as the three recommended CALL series operations remain along with GAS, allowing for full introspection into GAS. ### Hard-coding gas values Hard-coding gas values runs counter to the "Ban Gas Introspection" theme and would not be supported in EOF, unless the ["Option D - Introspecting EOF"](https://notes.ethereum.org/@ipsilon/eof_fusaka_options) option is adopted. In general this is considered a bad practice as there are major gas schedule changes on the horizon for Glamsterdam, and has been an auditor's "do not" recommendation for more than 5 years. More durable solutions outside of EOF would involve storing the value in contract storage and providing APIs to update the value, but that would incur a cold `SLOAD` gas charge. ### Limiting available gas in external calls Limiting gas values runs counter to the "Ban Gas Introspection" theme and would not be supported in EOF, unless the "Option D - Introsecting EOF" option is adopted. These variants are trickier. Examples in this doc likely involve values that come from "outside" the VM. Options not addressed in this document include the EIP-4337 entrypoint contract. But in this case the EIP-4337 team said they would rely on non-EOF entry points to provide this service. AA wallets can be written in EOF code and called by the existing entrypoint code. ### Introspecting Account Types (Contract or not) Using `EXTCODESIZE` is a common technique to determine if an address is a contract. Contracts will use it as a sanity check to ensure they are not trying to treat an EOA as a contract and execute its (non-existent) functions. Removing this opcode is a part of the "Ban Code Introspection" theme. Adopting Option D would remove this problem. For "Option A - Full EOF" the new `EXTCODETYPE` opcode would address this need. ### Direct use of CREATE/CREATE2 EOF changes the contract creation pathway, as an essential part of the vision in Vitalik's EOF proposal: [Ban Code introspection in EOF accounts](https://ethereum-magicians.org/t/eof-proposal-ban-code-introspection-of-eof-accounts/12113). CREATE/2 depends on code entering contract memory, which makes long term JIT and AOT compilation difficult to impossible depending on if and how the code is altered from its original source. OpenZeppelin's `Create2` libraries are intended to promote safe usage. A similiar library can be written for `EOFCREATE` and `TXCREATE`. Only Option B in the introspection options list would directly remove this issue. Depending on the use cases, the new `EOFCREATE` and `TXCREATE` may be able to handle it if the contracts being deployed are "factory" contracts. Other uses cases such as initializing immutable values would be handled by the new DATA series opcodes and use of the data section. However, dynamically assembling code on the fly would not be possible. Users are encouraged to use libraries like is currently done with `CREATE2` and OpenZeppelin and to roll their own `TXCREATE` solutions with great care. ### Custom EVM integrations Projects with customized EVM implementations will need to do work to ensure their customizations are in harmony with the EVM in the new fork. This is the same with changes from `PUSH0` to EIP-7702 to EOF. The only option that addresses this concern is to not implement EOF. However the changes for Foundry appear to have a very "on-brand" solution. *Special thanks to Kamil from the Solidity team for help in preparing this report*
Last changed by  
ipsilon Ipsilon -- Execution Research
425

Read more

EOF: Ethereum’s Gateway to RISC-V Execution

Danno Ferrin, 25 April 2025 Architectural transitions are a familiar chapter in computing history, from the CPUs powering general-purpose computers to the tightly controlled ecosystems of video game consoles and mobile devices. For Ethereum, a hypothetical shift to RISC-V presents a similar challenge: how to evolve without fracturing its vibrant ecosystem. Two contrasting models define the extremes of this transition: the abrupt generational leap of video game consoles and the seamless, compatibility-focused approach of Apple’s Macintosh transitions. By leveraging the Ethereum Object Format (EOF), Ethereum can chart a sustainable path toward RISC-V execution, emulating Apple’s strategy to ensure continuity for Mainnnet, Layer 2s, and other Ethereum-equivalent chains, maximizing compatibility as well as performance. Lessons Learned From Other Transitions But how do we get to RISC-V bliss? Lets see how two other systems handled such transitions: Video Game Consoles and Macs. The Video Game Console Model: A Hard Break Video game consoles, like the PlayStation or Xbox, epitomize the direct-replacement approach. Each generation marks a sharp divide: games written for one system often won’t run on its successor, even if they share a brand. Backward compatibility when offered is typically limited, relying on emulation for a subset of titles, or requiring an upgrade fee to use the features of the new system. This model prioritizes a clean slate, forcing developers to rewrite software and users to invest in new hardware and games. For Ethereum, adopting this approach would be disastrous, creating high-friction “cleavage planes” where users and developers might abandon the ecosystem, as the cost of staying outweighs switching to competing platforms.

4/27/2025
Osaka Testnets Plan

:::success "plans are useless but planning is indispensable" - Dwight D. Eisenhower ::: Osaka-0 "Pectra" Theme is to ship what we had at the Pectra split, but merged against "main" in each client. All EIPs as speced when they were cut from pectra Depends on a stable Pectra base

4/18/2025
EOF bootstrapping

Options Here are the options for EOF bootstrapping which are considered in combination with TXCREATE opcode and the InitcodeTransaction, as specced in EIP-7873. Current status (EIP-7873 with legacy EVM code enabling TXCREATE opcode) is good, but there was feedback that some features (improvements on multichain deployments and having a default deployment method) would still be nice to have and there are alternatives to consider. The doc attempts to gather these in one spot and list their differences. For the reference, EIP-7873 specifies that TXCREATE calculates new_address as keccak256(0xff || sender32 || salt)[12:]. NOTE that (1.) and (2.) are previous designs which are kept here only for reference, as they both have been superseded by the baseline (3.) (* obsolete previous design) Creator Contract predeploy (* obsolete previous design) EIP-7698 - eof creation tx with to: nil and EOF initcontainer prepended to input calldata in tx.data Allowing TXCREATE in legacy EVM, disallowing to: nil for InitcodeTransactions (current EIP-7873)

4/15/2025
EOF Fusaka Options

The EVM Object Format (EOF) has ignited ongoing debate within the Ethereum community, aiming to modernize the Ethereum Virtual Machine’s (EVM) structure, add long-requested features, and enable future protocol upgrades. Initially targeting the "Shanghai" fork and refined through Cancun’s testing and Prague’s planning, EOF has garnered significant input from core developers, tool builders, and language teams (e.g., Solidity, Vyper). Yet, as its scope has expanded—from foundational changes like code/data separation to bold proposals like introspection bans—consensus on its final form remains elusive. This document, crafted as a "decision tree for EOF/EVM changes in Fusaka" at the request of Tim Beiko, facilitator of the All-Core-Devs Execution call (ACDE), seeks to reconcile these divergent views by presenting four clear options for how to proceed with EOF. This clarity is vital: feedback often arrives late and conflicted, surfacing after designs are built and tested on devnets or testnets, forcing stakeholders to balance innovation, complexity, and stability post-investment. The recent EOF devnet (eof-devnet-0) and ongoing testnet plans highlight this tension, showcasing EOF’s potential alongside its implementation challenges. To address this, we propose four distinct EOF options for Fusaka: (A) - Complete EOF: The current "Osaka" plan, a comprehensive overhaul with all proposed features. <br/> Historically referred to as "Mega EOF" (B) - Minimal EOF: A leaner version, rooted in the Shanghai-era proposal with minimal alterations.<br/>Historically referred to as "Big EOF" (C) - Baseline EOF: A middle ground, balancing features and feasibility while avoiding controversial bans.<br/>This option is new for this document. (D) - Introspecting EOF: The current "Osaka" plan, removing the Gas Introspection theme and not banning the EXTCODE* Opcodes.<br/>This option is new for this document.

3/25/2025
Read more from ipsilon
Published on HackMD