Questions taken from - https://www.rareskills.io/post/solidity-interview-questions
1. What is the difference between private, internal, public, and external functions?
private can only be used within the current contract, internal can also be used within derived contracts, public functions can be used inside and outside the current contract (by users and the contract itself), external functions can only be used by users.
Reference: https://docs.soliditylang.org/en/latest/contracts.html#state-variable-visibility
2. Approximately, how large can a smart contract be?
About 24,000 bytes and (4.7 million gas). According to EIP-170: In short, the point of this EIP is to minimize the overloading of nodes (especially light nodes) and to prevent possible DOS attacks.
Reference: https://docs.soliditylang.org/en/latest/cheatsheet.html#function-visibility-specifiers
3. What is the difference between create and create2?
CREATE is used in the default scenario when you deploy a smart contract via new for example. CREATE2 is also used to deploy smart contracts, but it has a special parameter - salt, which allows you to predetermine the future address of the contract.
Reference: https://vinta.ws/code/solidity-create-vs-create2.html
4. What major change with arithmetic happened with Solidity 0.8.0?
More secure arithmetic operations without explicitly using the SafeMath library (preventing underflows and overflows).
Reference: https://docs.soliditylang.org/en/latest/080-breaking-changes.html
5. What special CALL is required for proxies to work?
DELEGATECALL because it allows you to pass all the call context to the proxy contract and also to keep the storage states.
Reference: https://eips.ethereum.org/EIPS/eip-1967
6. Prior to EIP-1559, how do you calculate the dollar cost of an Ethereum transaction?
It used a simple gas price auction system and this system had some downsides such as: highly volatile gas price and delays for users.
Reference: https://eips.ethereum.org/EIPS/eip-1559
7. What are the challenges of creating a random number on the blockchain?
Because blockchain is a fully open system it means you can simulate and predict almost everything on it and all attempts to create true RNG were failed so for RNG on blockchain builders usually use some oracles like - https://docs.chain.link/vrf.
Reference: https://www.sitepoint.com/solidity-pitfalls-random-number-generation-for-ethereum/
8. What is the difference between a Dutch Auction and an English Auction?
In an English auction, the auctioneer sets a base price and bidders compete to see who can offer a higher price. In a Dutch auction, it's the other way round - the auctioneer sets a high price and goes lower and lower until someone agrees to accept the price.
Reference: https://saylordotorg.github.io/text_introduction-to-economic-analysis/s21-auctions.html
9. What is the difference between transfer and transferFrom in ERC20?
transfer only transfers the amount of tokens from msg.sender. transferFrom uses an allowance system, so for example if you want the contract to use your ERC20 token you can set an allowance for it to use your tokens so it can send the tokens on your behalf: transferFrom(you, someone, amount).
10. Which is better to use for an address allowlist: a mapping or an array? Why?
It's better to use a mapping, because it's cheaper to check an allowance, and the array can lead to a DOS attack if the number of users is too large.
11. Why shouldn’t tx.origin be used for authentication?
This is because if the contract the user is calling is malicious - the malicious contract can act on behalf of the initial caller, but this will not happen if you use msg.sender instead, because in this situation the caller would be the malicious contract itself, not the user.
Reference: https://solidity-by-example.org/hacks/phishing-with-tx-origin/
12. What hash function does Ethereum primarily use?
Keccak-256
13. How much is 1 gwei of Ether?
1 * 10^-9 | 0.000000001 | 1 / 1,000,000,000
Reference: https://docs.soliditylang.org/en/v0.8.24/units-and-global-variables.html#ether-units
14. How much is 1 wei of Ether?
1 * 10^-18 | 0.000000000000000001 | 1 / 1,000,000,000,000,000,000
Reference: https://docs.soliditylang.org/en/v0.8.24/units-and-global-variables.html#ether-units
14. How much is 1 wei of Ether?
1 * 10^-18 | 0.000000000000000001 | 1 / 1,000,000,000,000,000,000
Reference: https://docs.soliditylang.org/en/v0.8.24/units-and-global-variables.html#ether-units
15. What is the difference between assert and require?
assert is usually used to check for internal errors (e.g. invariants), since this call is also used natively in the Solidity compiler itself, and also asserting panic errors should not happen in a well-tested contract, otherwise you have a bug in it. The require keyword is usually used to check for errors in user input/actions.
16. What is a flash loan?
Flashloan is a DeFi operation where you can borrow some tokens for the time of executing a single transaction and return those tokens in the same transaction (most of the time with some fees on top).
Reference: https://docs.aave.com/faq/flash-loans
17. What is the check-effects pattern?
Check-Effects (and Interactions) is a structural pattern of code that allows you to avoid some cases of reentrancy, because first you do all the necessary checks, then you change a local state, and only then you interact with other contracts, otherwise you could be open to reentrancy attacks.
Reference: https://docs.soliditylang.org/en/latest/security-considerations.html#reentrancy
18. What is the minimum amount of Ether required to run a solo staking node?
32 ETH.
Reference: https://ethereum.org/en/staking/
19. What is the difference between fallback and receive?
The receive function is only triggered when an ETH event is received (with empty calldata), but the fallback function is triggered at any time if you call some data that didn't exist in the contract's ABI. And to make these functions work, you need to specify them explicitly.
Reference: https://docs.soliditylang.org/en/v0.8.24/contracts.html#receive-ether-function
20. What is reentrancy?
Reentrancy is a type of attack where the attacker re-enters your function and performs repetitive actions without any constraints (this action could be updating the state of the contract/draining tokens/creating votes and so on). Reentrancy is usually performed in functions where external interactions occur before the local state changes.
Reference: https://docs.soliditylang.org/en/latest/security-considerations.html#reentrancy
21. As of the Shanghai upgrade, what is the gas limit per block?
30 million gas.
Reference: https://ethereum.org/en/developers/docs/gas/#block-size
22. What prevents infinite loops from running forever?
There's a maximum cap for executing a transaction, and because the transaction requires an infinite amount of gas to execute - it can't be executed in the Ethereum ecosystem because the block has a cap of 30M gas per block.
Reference: https://ethereum.org/en/developers/docs/gas/#block-size
23. What is the difference between tx.origin and msg.sender?
tx.origin - initial user address that started execution of the transaction, msg.sender address that called current function, it can be another contract for example.
Reference: https://docs.soliditylang.org/en/v0.8.24/cheatsheet.html#block-and-transaction-properties
24. How do you send Ether to a contract that does not have payable functions, or a receive or fallback?
You can do this using the selfdestruct operation, because when the contract is destroyed all its value would be sent to the specified address.
25. What is the difference between view and pure?
view functions can read contract states, pure functions cannot, they can only use the input data provided.
Reference: https://docs.soliditylang.org/en/v0.8.24/contracts.html#state-mutability
26. What is the difference between transferFrom and safeTransferFrom in ERC721?
safeTransferFrom checks if the receiver is a contract and if it is a contract - it requires it to implement the IERC721Receiver interface, so you won't send your NFT to the contract without any way of getting it back, just transferFrom doesn't do this check.
27. How can an ERC1155 token be made into a non-fungible token?
It's possible to set the maximum amount of each token to 1, so that each token has only 1 copy of itself. This can be done by setting the number of token copies when minting the token.
28. What is access control and why is it important?
Access control is a restriction mechanism that ensures that only users with certain roles/responsibilities can call some of the functions. For example, you don't want your users to have access to the `mint' function, because they can just mint a lot of tokens for themselves, defeating the purpose of NFT collection.
Reference: https://docs.openzeppelin.com/contracts/2.x/access-control
29. What does a modifier do?
Modifiers allow you to check some function call conditions before a function is actually executed.
Reference: https://docs.soliditylang.org/en/v0.8.24/contracts.html#function-modifiers
29. What does a modifier do?
Modifiers allow you to check some function call conditions before a function is actually executed.
Reference: https://docs.soliditylang.org/en/v0.8.24/contracts.html#function-modifiers
30. What is the largest value a uint256 can store?
2^256 - 1 (-1 because 1 space for the symbol)
31. What is variable and fixed interest rate?
Fixed interest rate - remains the same for the whole period (of loan for example), Variable interest fixed rate - can change during the period. Variable rates involve more risks, but they can save you more money or you will lose more money if some of the conditions would change (like economic ones or some internal policies).
Reference: https://www.investopedia.com/ask/answers/07/fixed-variable.asp
1. What is the difference between transfer and send? Why should they not be used?
transfer throws an error on failure, send returns false on failure. It's better to use call because transfer and send have hardcoded 2300 gas and if some of the EVM opcodes start using more gas - all transfers and calls might not work anymore.
Reference: https://docs.soliditylang.org/en/v0.8.24/cheatsheet.html#members-of-address, https://consensys.io/diligence/blog/2019/09/stop-using-soliditys-transfer-now/
2. How do you write a gas-efficient for loop in Solidity?
uint256 length = array.length;
for(uint256 i; i < length;){
unchecked{++i}
}Reference: https://gist.github.com/grGred/9bab8b9bad0cd42fc23d4e31e7347144#for-loops-improvement
3. What is a storage collision in a proxy contract?
Storage collision is a mechanism of proxy contracts when storage states from the source contract collide with the new proxy contract and the memory states are passed on to the new contract. Small example: we have a contract with the first variable uint256 a = 3; if we are going to update the proxy and the first state variable of the proxy is also uint256 - then this variable will also store the number "3", and that's why it's important not to change the order of states when dealing with proxy updates.
Reference: https://ethereum-blockchain-developer.com/110-upgrade-smart-contracts/06-storage-collisions/
4. What is the difference between abi.encode and abi.encodePacked?
abi.encode simply encodes the arguments to bytes32 format (if the value is not big enough for bytes32 it will be adjusted with zeros), abi.encodePacked encodes all the values compactly without filling empty bytes with zeros, and allows to encode multiple values in one bytes32 slot.
Reference: https://docs.soliditylang.org/en/v0.8.24/abi-spec.html#non-standard-packed-mode
5. uint8, uint32, uint64, uint128, uint256 are all valid uint sizes. Are there others?
Yes, for example uint16, uint40, uint80, because uint type has a step of 8.
Reference: https://docs.soliditylang.org/en/v0.8.24/grammar.html#a4.SolidityLexer.UnsignedIntegerType
6. What changed with block.timestamp before and after proof of stake?
Before the merge, block.timestamp could be manipulated by miners, but after the merge, the block is mined exactly every 12 seconds, so block.timestamp is predictable.
7. What is frontrunning?
Frontrunning is a method of placing your transaction ahead of some targeted transaction, often the purpose of frontrunning is to make a profit. For example: Bot sees that some whale is buying a large amount of some token (and it will defintely drive the price up because there would be less liquidity of that token in some pool or market), so it sends its own buy transaction with higher gas because it wants to buy tokens for lower price. Then the bot can sell those tokens at a higher price after the whale's buy transaction, because the price has gone up. This is called a Sanwich attack.
Reference: https://support.uniswap.org/hc/en-us/articles/19387081481741-What-is-a-sandwich-attack
8. What is a commit-reveal scheme and when would you use it?
Commit-reveal scheme is a technique used to protect against frontrunning, where you upload some sensitive value to the smart contract in an encrypted format, and then reveal it using some kind of hash that verifies that you actually put that value in and not some other value. Also, commit-reveal schemes often have logic to close commits for some time, so that frontrunners cannot commit any useful data in the last few seconds. One of the use-cases might be an implementation of the rock-paper-scissors game.
Reference: https://medium.com/coinmonks/commit-reveal-scheme-in-solidity-c06eba4091bb
9. Under what circumstances could abi.encodePacked create a vulnerability?
If the values that you are trying to encode are dynamic arrays - this could affect the end result, for example abi.encodePacked([a,b], [c,d]) would have the same hash as a abi.encodePacked([a,b,c], [d]).
Reference: https://swcregistry.io/docs/SWC-133/
10. How does Ethereum determine the BASEFEE in EIP-1559?
It's based on network demand and the fullness of the block, if the block was full before - baseFee would go up (it can't go higher/lower than 12.5% compared to the previous one).
11. What is the difference between a cold read and a warm read?
The first time you read a variable from memory - it's a cold read, all reads after the first are warm.
Reference: https://ethereum.stackexchange.com/a/149670/99105
12. How does an AMM price assets?
Based on the x*y=k formula, the price is basically based on the reserves of the tokens, if you had a pool of 30k USDT and 10 ETH this means that the correlation is 30,000/10 = 3000 USDT per ETH, if the reserve of USDT or ETH would change and it won't be equal to the actual price - arbitrage bots will use this opportunity to regulate the price (because if your asset costs more or less than a market price - bots can abuse it in order to get profit).
Reference: https://academy.binance.com/en/articles/what-is-an-automated-market-maker-amm
13. What is a function selector clash in a proxy and how does it happen?
Function clashing is an exploit that allows some functions to be executed through the proxy that the user didn't intend to execute, by creating a function with the same signature. For example, we have a malicious contract owner (who can upgrade the proxy), if he creates a function on the proxy with the exact signature that the user will use later - it will be executed instead of the function that the user wanted to execute.
Reference: https://forum.openzeppelin.com/t/beware-of-the-proxy-learn-how-to-exploit-function-clashing/1070
14. What is the effect on gas of making a function payable?
Actually, all functions are payable by default in EVM, so not specifying the payable keyword will add opcodes to reverse execution if the msg.value is greater than zero. So the payable function is cheaper than the non-payable one.
Reference: https://coinsbench.com/solidity-payable-vs-regular-functions-a-gas-usage-comparison-b4a387fe860d
15. What is a signature replay attack?
The signature replay attack is an attack that allows some functionality to be performed multiple times using a signature, even if it was designed to be performed once, or allows someone else to perform functionality using the other person's signature. It can be solved by using the msg.sender check and also adding nonce logic to the code so that the signature can't be used more than once.
Reference: https://solidity-by-example.org/hacks/signature-replay/
16. What is gas griefing?
Gas griefing is an attack technique that allows a malicious user to prevent users from executing transactions when there's no external call success check. It can be done by providing just enough gas to execute a top-level transaction, and then censoring the data so that the original user can't execute it later.
Reference: https://swcregistry.io/docs/SWC-126/
17. How would you design a game of rock-paper-scissors in a smart contract such that players cannot cheat?
It can be done by using commit-reveal scheme.
Reference: https://github.com/ojroques/ethereum-rockpaperscissors
18. What is the free memory pointer and where is it stored?
The free memory pointer is the pointer that shows where the last occupied byte of memory is, it's used when you create a new variable for example - it shows where to store this new variable.
Reference: https://ethereum.stackexchange.com/questions/137729/opcode-free-memory-pointer-and-offset
19. What function modifiers are valid for interfaces?
All declared functions must be external
Reference: https://solidity-by-example.org/interface/
20. What is the difference between memory and calldata in a function argument?
memory parameters are mutable and calldata parameters are immutable.
21. Describe the three types of storage gas costs.
- Store a new variable: 20,000 gas
- Updating state: 5,000 gas
- Reading state: 200 gas
Reference: https://hacken.io/discover/solidity-gas-optimization/
22. Why shouldn’t upgradeable contracts use the constructor?
Because the constructor is called only once, and this code is not part of the runtime bytecode of a deployed smart contract. So this context won't be passed to the proxy contract. So it's better to use an initializer method instead.
Reference: https://docs.openzeppelin.com/upgrades-plugins/1.x/proxies#the-constructor-caveat
23. What is the difference between UUPS and the Transparent Upgradeable Proxy pattern?
UUPS and Transparent Upgradeable Proxy are both transparent proxy patterns (https://blog.openzeppelin.com/the-transparent-proxy-pattern), but UUPS is cheaper because proxy management functions for proxy are not being duplicated in the proxy implementations.
Reference: https://docs.openzeppelin.com/contracts/4.x/api/proxy#transparent-vs-uups
24. If a contract delegatecalls an empty address or an implementation that was previously self-destructed, what happens? What if it is a regular call instead of a delegatecall?
It will return true, because even though the storage is empty for that address, the EVM still recognizes the existence of this address and decides that the call/delegatecall was successful.
25. What danger do ERC777 tokens pose?
The killer feature of the ERC777 standard is the receive hook, which allows you to react to the incoming tokens, similar to onERC721Received for NFT. This can be handy, but it also opens up the possibility of reentrancy attacks by giving the attacker another way to re-enter the contract.
Reference: https://forum.openzeppelin.com/t/can-sombody-explain-why-erc777-was-removed/38105
26. According to the solidity style guide, how should functions be ordered?
- constructor
- receive function (if exists)
- fallback function (if exists)
- external
- public
- internal
- private
Within a grouping, place the view and pure functions last.
Reference: https://docs.soliditylang.org/en/v0.8.24/style-guide.html#order-of-functions
27. According to the solidity style guide, how should function modifiers be ordered?
The modifier order for a function should be:
- Visibility (public,private,external,internal)
- Mutability (pure,view) + payable
virtual/override- Custom modifiers
Reference: https://docs.soliditylang.org/en/v0.8.24/style-guide.html#function-declaration
28. What is a bonding curve?
AMM mechanism for checking correlation between token supplies and calculating relative price for them.
Reference: https://iq.wiki/wiki/bonding-curve
29. How does safeMint differ from mint in the OpenZeppelin ERC721 implementation?
safeMint checks 2 things: 1. the existence of tokenId (it won't mint the same token twice), 2. if to is a contract - it should implement the onERC721Received function. mint function doesn't check these conditions.
Reference: https://docs.openzeppelin.com/contracts/3.x/api/token/erc721#ERC721-_safeMint-address-uint256-
30. What keywords are provided in Solidity to measure time?
- 1 == 1 seconds
- 1 minutes == 60 seconds
- 1 hours == 60 minutes
- 1 days == 24 hours
- 1 weeks == 7 days
Reference: https://docs.soliditylang.org/en/v0.8.24/units-and-global-variables.html#time-units
31. What is a sandwich attack?
Inserting a transaction before and after a targeted transaction in order to make a profit. Example: Bot sees that some whale is buying a large amount of some token (and it will defintely drive the price up because there would be less liquidity of that token in some pool or market), so it sends its own buy transaction with higher gas because it wants to buy tokens for lower price. Then the bot can sell those tokens at a higher price after the whale's buy transaction, because the price has gone up. This is called a Sanwich attack.
Reference: https://support.uniswap.org/hc/en-us/articles/19387081481741-What-is-a-sandwich-attack
32. If a delegatecall is made to a function that reverts, what does the delegatecall do?
It will return false and won't revert the calling function.
Reference: https://docs.soliditylang.org/en/v0.8.24/security-considerations.html#call-stack-depth
33. What is a gas efficient alternative to multiplying and dividing by a power of two?
You can shift right/left instead of division/multiplication. While the DIV opcode uses 5 gas, the SHR opcode only uses 3 gas.
Reference: https://betterprogramming.pub/solidity-gas-optimizations-and-tricks-2bcee0f9f1f2
34. How large a uint can be packed with an address in one slot?
1 slot size = 32 bytes, address - 20 bytes, we have 12 free bytes - 8 * 12 = 96, uint96.max = 79228162514264337593543950335
35. Which operations give a partial refund of gas?
Freeing Storage Slots
36. What is ERC165 used for?
You can use it to check if the smart contract implements the interface and certain functions or not. It can be useful if you need to check if the contract is an ERC20 token or not. ERc165 uses supportsInterface(bytes4 interfaceID) for this purpose.
Reference: https://eips.ethereum.org/EIPS/eip-165
37. If a proxy makes a delegatecall to A, and A does address(this).balance, whose balance is returned, the proxy's or A?
address(this) will return the address of the proxy, so it will return the proxy's balance.
38. What is a slippage parameter useful for?
Slippage is a limit that shows how much the price could change during the trade. It's used in cases where liquidity is very volatile and you don't want to buy tokens at a much higher price or sell them at a much lower price than you wanted.
39. What does ERC721A do to reduce mint costs? What is the tradeoff?
ERC721A is a new implementation of ERC721 pattern but with some upsides and downsides: Upsides:
- mints are much cheaper
Downsides:
- transfers are more expensive
Mint optimization technique: it doesn't update all default mappings with info about token owner on each mint, it does it once during batch mint. Because of this, you don't have information about the tokenId owner, so you have to iterate the array first to find the owner of the token.
Reference: https://www.alchemy.com/blog/erc721-vs-erc721a-batch-minting-nfts
40. Why doesn't Solidity support floating point arithmetic?
One of the main reasons is the fact that fixed-point arithmetic is not very predictable and can lead to forks on different nodes, which is why EVM itself doesn't want to deal with it, but Solidity has started to implement floating-point numbers using the same technique used in the ERC20 tokens - https://docs.soliditylang.org/en/develop/types.html#fixed-point-numbers.
41. What is TWAP?
TWAP (Time-Weighted Average Price) - is a pricing algorithm used to calculate the price of an asset for a period of time. It can be done by taking different prices at equally distant points in time and then dividing the sum of them by the length of the points:
For example, imagine we wanted to calculate the TWAP of an asset over one minute using 15-second price point intervals. If the prices were $100 at zero seconds, $102 at 15 seconds, $101 at 30 seconds, $98 at 45 seconds, and $103 at 60 seconds, then to calculate the TWAP we would sum all price points (100, 102, 101, 99, 103) and then divide them by the number of timepoints (five). In this example, the TWAP is $101.
41. How does Compound Finance calculate utilization?
Utilization - percentage of actually borrowed funds in the lending pool compared to the total funds available for borrowing.
Utilization = TotalBorrows / TotalSupply;Reference: https://docs.compound.finance/interest-rates/#get-utilization
42. If a delegatecall is made to a function that reads from an immutable variable, what will the value be?
It will return the value of immutable variable.
POC:
// SPDX-License-Identifier: MIT
pragma solidity 0.8.20;
contract FirstContract {
function doDelegate(address contr) external returns(bytes memory){
(, bytes memory data) = address(contr).delegatecall(abi.encodeWithSignature("doCall()"));
return data; // 0x00..1e = 30
}
}
contract secondContract{
uint256 immutable VALUE = 30;
function doCall() external returns(uint256){
return VALUE;
}
}44. What is a fee-on-transfer token?
Fee-on-transfer token is a type of ERC20 token that takes a small fee after tokens are transferred.
Reference: https://help.1inch.io/en/articles/5651059-what-is-a-fee-on-transfer-token
45. What is a rebasing token?
Rebase token is a type of ERC20 token that changes its total supply (by burning/minting tokens) to maintain a peg to a certain value, they are very similar to stablecoins in idea but not in implementation.
1. How does fixed point arithmetic represent numbers?
It reserves one part of the bits to the integer part and another to the fractional part. IIIII.FFFFF
Reference: https://stackoverflow.com/a/7524916/12460603
2. What is an ERC20 approval frontrunning attack?
If you set an allowance for an address to spend your tokens, you may be frontrun if you try to decrease or increase the allowance in the future. If the address sees your transaction in pending, it could frontrun you by spending all the tokens and then receiving another allowance that you just sent.
Reference: https://www.adrianhetman.com/unboxing-erc20-approve-issues/
3. What opcode accomplishes address(this).balance?
SELFBALANCE - Get balance of currently executing account
Reference: https://www.evm.codes/#47?fork=shanghai
4. How many arguments can a solidity event have?
Non-anonymous events can have up to 3 parameters and anonymous events can have up to 4 parameters.
Reference: https://docs.soliditylang.org/en/v0.8.24/abi-spec.html#events
5. What is an anonymous Solidity event?
Anonymous is an event type that doesn't store an event signature as the first parameter.
Reference: https://docs.soliditylang.org/en/v0.8.24/cheatsheet.html#modifiers
6. Under what circumstances can a function receive a mapping as an argument?
If the function is private or internal and also mapping parameter is from storage.
// SPDX-License-Identifier: MIT
pragma solidity 0.8.20;
contract MappingContract {
function doStuff(mapping(uint256 => uint256) storage _mapping) internal{} // will work
function doStuff(mapping(uint256 => uint256) storage _mapping) external{} // will give you an error
}7. What is an inflation attack in ERC4626?
ERC4626 is the vault where users can deposit their tokens and get share tokens in return. When you deposit tokens via standard function - you will get some amount of share tokens, but if you will just send them to the contract - you will get nothing. So the attack is simple:
- attacker sees a deposit from another user to the empty pool
- attacker deposits 1 token and get in return 1 share
- attacker deposits amount of token that the user is trying to deposit (10k for example)
- user transaction executed and he deposits 10k tokens.
- we have a formula:
shares_received = assets_deposited * totalSupply() / totalAssets();. this means:
shares_received = 10,000 * 1 / 10,001 => sharesToReceive = 0.99990000999 and because solidity doesn't support fixed point numbers - user won't receive any shares in the end.
Reference: https://mixbytes.io/blog/overview-of-the-inflation-attack
8. How many arguments can a solidity function have?
16, otherwise you will get "Stack is too deep" error.
9. How many storage slots does this use? uint64[] x = [1, 2, 3, 4, 5]? Does it differ from memory?
uint64 takes 8 bytes, 1 slot has 32 bytes.
1 slot for length
2 slots for elements (1, 2, 3, 4), (5)
3 slots in total
10. Prior to the Shanghai upgrade, under what circumstances is returndatasize() more efficient than push zero?
Before the Shangai upgrade it was cheaper to use the RETURNDATASIZE opcode (2 gas) to push 0 to the top of the stack than to use PUSH1 0 (3 gas). With the Shangai upgrade EVM introduces a new opcode PUSH0 which just pushes 0 to the top of the stack and costs 2 gas.
Reference: https://eips.ethereum.org/EIPS/eip-3855