[s24 | s25 | s29] Internal audit part 1 (#55)

* Internal-S24: remove settle_take_pair

* internal-s25: set sync before native settle

* internal-s29 do not revert for initializePool

* test: fix test

.forge-snapshots/BinMigratorFromPancakeswapV2Test#testMigrateFromV2IncludingInit.snap

@@ -1 +1 @@
-1184970
+1186286

.forge-snapshots/BinMigratorFromPancakeswapV2Test#testMigrateFromV2WithoutInit.snap

@@ -1 +1 @@
-1051689
+1053024

.forge-snapshots/BinMigratorFromPancakeswapV2Test#testMigrateFromV2WithoutNativeToken.snap

@@ -1 +1 @@
-1093853
+1093821

.forge-snapshots/BinMigratorFromPancakeswapV3Test#testMigrateFromV3IncludingInit.snap

@@ -1 +1 @@
-1257324
+1258640

.forge-snapshots/BinMigratorFromPancakeswapV3Test#testMigrateFromV3WithoutInit.snap

@@ -1 +1 @@
-1124132
+1125467

.forge-snapshots/BinMigratorFromPancakeswapV3Test#testMigrateFromV3WithoutNativeToken.snap

@@ -1 +1 @@
-1160290
+1160258

.forge-snapshots/BinMigratorFromUniswapV2Test#testMigrateFromV2IncludingInit.snap

@@ -1 +1 @@
-1184970
+1186286

.forge-snapshots/BinMigratorFromUniswapV2Test#testMigrateFromV2WithoutInit.snap

@@ -1 +1 @@
-1051689
+1053024

.forge-snapshots/BinMigratorFromUniswapV2Test#testMigrateFromV2WithoutNativeToken.snap

@@ -1 +1 @@
-1093849
+1093817

.forge-snapshots/BinMigratorFromUniswapV3Test#testMigrateFromV3IncludingInit.snap

@@ -1 +1 @@
-1255306
+1256622

.forge-snapshots/BinMigratorFromUniswapV3Test#testMigrateFromV3WithoutInit.snap

@@ -1 +1 @@
-1122114
+1123449

.forge-snapshots/BinMigratorFromUniswapV3Test#testMigrateFromV3WithoutNativeToken.snap

@@ -1 +1 @@
-1158268
+1158236

.forge-snapshots/BinPositionManager_ModifyLiquidityTest#test_addLiquidity_OutsideActiveId_ExistingId.snap

@@ -1 +1 @@
-297801
+297785

.forge-snapshots/BinPositionManager_ModifyLiquidityTest#test_addLiquidity_OutsideActiveId_NewId.snap

@@ -1 +1 @@
-1136586
+1136570

.forge-snapshots/BinPositionManager_ModifyLiquidityTest#test_addLiquidity_SingleBin.snap

@@ -1 +1 @@
-541580
+541548

.forge-snapshots/BinPositionManager_ModifyLiquidityTest#test_addLiquidity_ThreeBins.snap

@@ -1 +1 @@
-916664
+916632

.forge-snapshots/BinPositionManager_NativeTokenTest#test_addLiquidity.snap

@@ -1 +1 @@
-866787
+868122

.forge-snapshots/BinSwapRouterTest#testExactInputSingle_DifferentRecipient.snap

@@ -1 +1 @@
-142818
+142488

.forge-snapshots/BinSwapRouterTest#testExactInputSingle_EthPool_SwapEthForToken.snap

@@ -1 +1 @@
-136470
+137514

.forge-snapshots/BinSwapRouterTest#testExactInputSingle_EthPool_SwapTokenForEth.snap

@@ -1 +1 @@
-141892
+141562

.forge-snapshots/BinSwapRouterTest#testExactInputSingle_SwapForY_1.snap

@@ -1 +1 @@
-142814
+142484

.forge-snapshots/BinSwapRouterTest#testExactInputSingle_SwapForY_2.snap

@@ -1 +1 @@
-142874
+142544

.forge-snapshots/BinSwapRouterTest#testExactInput_MultiHopDifferentRecipient.snap

@@ -1 +1 @@
-174705
+174111

.forge-snapshots/BinSwapRouterTest#testExactOutputSingle_DifferentRecipient.snap

@@ -1 +1 @@
-147096
+146766

.forge-snapshots/BinSwapRouterTest#testExactOutputSingle_SwapForY_1.snap

@@ -1 +1 @@
-147092
+146762

.forge-snapshots/BinSwapRouterTest#testExactOutputSingle_SwapForY_2.snap

@@ -1 +1 @@
-147149
+146819

.forge-snapshots/BinSwapRouterTest#testExactOutput_MultiHopDifferentRecipient.snap

@@ -1 +1 @@
-178333
+177739

.forge-snapshots/BinSwapRouterTest#testExactOutput_SingleHop.snap

@@ -1 +1 @@
-148864
+148450

.forge-snapshots/CLMigratorFromPancakeswapV2Test#testCLMigrateFromV2IncludingInit.snap

@@ -1 +1 @@
-793533
+794828

.forge-snapshots/CLMigratorFromPancakeswapV2Test#testCLMigrateFromV2WithoutInit.snap

@@ -1 +1 @@
-658918
+660253

.forge-snapshots/CLMigratorFromPancakeswapV2Test#testCLMigrateFromV2WithoutNativeToken.snap

@@ -1 +1 @@
-730567
+730535

.forge-snapshots/CLMigratorFromPancakeswapV3Test#testCLMigrateFromV3IncludingInit.snap

@@ -1 +1 @@
-843440
+844735

.forge-snapshots/CLMigratorFromPancakeswapV3Test#testCLMigrateFromV3WithoutInit.snap

@@ -1 +1 @@
-711354
+712689

.forge-snapshots/CLMigratorFromPancakeswapV3Test#testCLMigrateFromV3WithoutNativeToken.snap

@@ -1 +1 @@
-753562
+753530

.forge-snapshots/CLMigratorFromUniswapV2Test#testCLMigrateFromV2IncludingInit.snap

@@ -1 +1 @@
-793533
+794828

.forge-snapshots/CLMigratorFromUniswapV2Test#testCLMigrateFromV2WithoutInit.snap

@@ -1 +1 @@
-658918
+660253

.forge-snapshots/CLMigratorFromUniswapV2Test#testCLMigrateFromV2WithoutNativeToken.snap

@@ -1 +1 @@
-730567
+730535

.forge-snapshots/CLMigratorFromUniswapV3Test#testCLMigrateFromV3IncludingInit.snap

@@ -1 +1 @@
-841422
+842717

.forge-snapshots/CLMigratorFromUniswapV3Test#testCLMigrateFromV3WithoutInit.snap

@@ -1 +1 @@
-709336
+710671

.forge-snapshots/CLMigratorFromUniswapV3Test#testCLMigrateFromV3WithoutNativeToken.snap

@@ -1 +1 @@
-751544
+751512

.forge-snapshots/CLPositionManager_increaseLiquidity_erc20_withClose.snap

@@ -1 +1 @@
-220629
+220597

.forge-snapshots/CLPositionManager_increaseLiquidity_erc20_withSettlePair.snap

@@ -1 +1 @@
-219608
+219576

.forge-snapshots/CLPositionManager_increaseLiquidity_native.snap

@@ -1 +1 @@
-202610
+203945

.forge-snapshots/CLPositionManager_mint_native.snap

@@ -1 +1 @@
-538815
+540150

.forge-snapshots/CLPositionManager_mint_nativeWithSweep_withClose.snap

@@ -1 +1 @@
-547331
+548666

.forge-snapshots/CLPositionManager_mint_nativeWithSweep_withSettlePair.snap

@@ -1 +1 @@
-546594
+547929

.forge-snapshots/CLPositionManager_mint_onSameTickLower.snap

@@ -1 +1 @@
-393618
+393586

.forge-snapshots/CLPositionManager_mint_onSameTickUpper.snap

@@ -1 +1 @@
-394055
+394023

.forge-snapshots/CLPositionManager_mint_sameRange.snap

@@ -1 +1 @@
-302843
+302811

.forge-snapshots/CLPositionManager_mint_settleWithBalance_sweep.snap

@@ -1 +1 @@
-592910
+592878

.forge-snapshots/CLPositionManager_mint_warmedPool_differentRange.snap

@@ -1 +1 @@
-399330
+399298

.forge-snapshots/CLPositionManager_mint_withClose.snap

@@ -1 +1 @@
-594074
+594042

.forge-snapshots/CLPositionManager_mint_withSettlePair.snap

@@ -1 +1 @@
-593195
+593163

.forge-snapshots/CLPositionManager_multicall_initialize_mint.snap

@@ -1 +1 @@
-652097
+652025

.forge-snapshots/CLSwapRouterTest#ExactInput.snap

@@ -1 +1 @@
-240154
+239536

.forge-snapshots/CLSwapRouterTest#ExactInputSingle.snap

@@ -1 +1 @@
-175400
+175058

.forge-snapshots/CLSwapRouterTest#ExactOutput.snap

@@ -1 +1 @@
-239054
+238436

.forge-snapshots/CLSwapRouterTest#ExactOutputSingle.snap

@@ -1 +1 @@
-175115
+174773

src/V4Router.sol

@@ -72,12 +72,7 @@ abstract contract V4Router is IV4Router, CLRouterBase, BinRouterBase, BaseAction
                 return;
             }
         } else {
-            if (action == Actions.SETTLE_TAKE_PAIR) {
-                (Currency settleCurrency, Currency takeCurrency) = params.decodeCurrencyPair();
-                _settle(settleCurrency, msgSender(), _getFullDebt(settleCurrency));
-                _take(takeCurrency, msgSender(), _getFullCredit(takeCurrency));
-                return;
-            } else if (action == Actions.SETTLE_ALL) {
+            if (action == Actions.SETTLE_ALL) {
                 (Currency currency, uint256 maxAmount) = params.decodeCurrencyAndUint256();
                 uint256 amount = _getFullDebt(currency);
                 if (amount > maxAmount) revert V4TooMuchRequested(maxAmount, amount);

src/base/DeltaResolver.sol

@@ -33,10 +33,11 @@ abstract contract DeltaResolver is ImmutableState {
     /// @dev Returns early if the amount is 0
     function _settle(Currency currency, address payer, uint256 amount) internal {
         if (amount == 0) return;
+
+        vault.sync(currency);
         if (currency.isNative()) {
             vault.settle{value: amount}();
         } else {
-            vault.sync(currency);
             _pay(currency, payer, amount);
             vault.settle();
         }

src/libraries/Actions.sol

@@ -29,7 +29,6 @@ library Actions {
     uint256 constant TAKE_PORTION = 0x14;
     uint256 constant TAKE_PAIR = 0x15;
 
-    uint256 constant SETTLE_TAKE_PAIR = 0x16;
     uint256 constant CLOSE_CURRENCY = 0x17;
     uint256 constant CLEAR_OR_TAKE = 0x18;
     uint256 constant SWEEP = 0x19;

src/libraries/Planner.sol

@@ -85,7 +85,9 @@ library Planner {
         returns (bytes memory)
     {
         if (takeRecipient == ActionConstants.MSG_SENDER) {
-            plan = plan.add(Actions.SETTLE_TAKE_PAIR, abi.encode(inputCurrency, outputCurrency));
+            // blindly settling and taking all, without slippage checks, isnt recommended in prod
+            plan = plan.add(Actions.SETTLE_ALL, abi.encode(inputCurrency, type(uint256).max));
+            plan = plan.add(Actions.TAKE_ALL, abi.encode(outputCurrency, 0));
         } else {
             plan = plan.add(Actions.SETTLE, abi.encode(inputCurrency, ActionConstants.OPEN_DELTA, true));
             plan = plan.add(Actions.TAKE, abi.encode(outputCurrency, takeRecipient, ActionConstants.OPEN_DELTA));

src/pool-bin/BinPositionManager.sol

@@ -117,7 +117,8 @@ contract BinPositionManager is
 
     /// @inheritdoc IBinPositionManager
     function initializePool(PoolKey memory key, uint24 activeId) external payable {
-        binPoolManager.initialize(key, activeId);
+        /// @dev if the pool revert due to other error (currencyOutOfOrder etc..), then the follow-up action to the pool will still revert accordingly
+        try binPoolManager.initialize(key, activeId) {} catch {}
     }
 
     function msgSender() public view override returns (address) {

src/pool-bin/interfaces/IBinPositionManager.sol

@@ -59,6 +59,7 @@ interface IBinPositionManager is IPositionManager {
     function binPoolManager() external view returns (IBinPoolManager);
 
     /// @notice Initialize a v4 PCS bin pool
+    /// @dev If the pool is already initialized, this function will not revert
     /// @param key the PoolKey of the pool to initialize
     /// @param activeId the active bin id of the pool
     function initializePool(PoolKey memory key, uint24 activeId) external payable;

src/pool-cl/CLPositionManager.sol

@@ -109,7 +109,13 @@ contract CLPositionManager is
 
     /// @inheritdoc ICLPositionManager
     function initializePool(PoolKey calldata key, uint160 sqrtPriceX96) external payable override returns (int24) {
-        return clPoolManager.initialize(key, sqrtPriceX96);
+        /// @dev Swallow any error. If the pool revert due to other errors eg. currencyOutOfOrder etc..,
+        /// then follow-up action to the pool will still revert accordingly
+        try clPoolManager.initialize(key, sqrtPriceX96) returns (int24 tick) {
+            return tick;
+        } catch {
+            return type(int24).max;
+        }
     }
 
     /// @inheritdoc IPositionManager

src/pool-cl/interfaces/ICLPositionManager.sol

@@ -25,8 +25,10 @@ interface ICLPositionManager is IPositionManager {
     function clPoolManager() external view returns (ICLPoolManager);
 
     /// @notice Initialize a v4 PCS cl pool
+    /// @dev If the pool is already initialized, this function will not revert and just return type(int24).max
     /// @param key the PoolKey of the pool to initialize
     /// @param sqrtPriceX96 the initial sqrtPriceX96 of the pool
+    /// @return tick The current tick of the pool
     function initializePool(PoolKey calldata key, uint160 sqrtPriceX96) external payable returns (int24);
 
     /// @notice Used to get the ID that will be used for the next minted liquidity position