unionlabs
diff --git a/‎evm/contracts/clients/CometblsClient.sol‎
Lines changed: 57 additions & 6 deletions b/‎evm/contracts/clients/CometblsClient.sol‎
Lines changed: 57 additions & 6 deletions
diff --git a/‎evm/contracts/clients/ICS23MembershipVerifier.sol‎
Lines changed: 9 additions & 4 deletions b/‎evm/contracts/clients/ICS23MembershipVerifier.sol‎
Lines changed: 9 additions & 4 deletions
diff --git a/‎evm/contracts/lib/ICS23.sol‎
Lines changed: 132 additions & 2 deletions b/‎evm/contracts/lib/ICS23.sol‎
Lines changed: 132 additions & 2 deletions
@@ -277,6 +277,17 @@ contract CometblsClient is ILightClient {
             consensusState.timestamp != 0,
             "LC: verifyMembership: consensusState does not exist"
         );
+        if (
+            (delayTimePeriod != 0 || delayBlockPeriod != 0) &&
+            !validateDelayPeriod(
+                clientId,
+                height,
+                delayTimePeriod,
+                delayBlockPeriod
+            )
+        ) {
+            return false;
+        }
         return
             membershipVerifier.verifyMembership(
                 abi.encodePacked(consensusState.root),
@@ -303,6 +314,17 @@ contract CometblsClient is ILightClient {
             consensusState.timestamp != 0,
             "LC: verifyNonMembership: consensusState does not exist"
         );
+        if (
+            (delayTimePeriod != 0 || delayBlockPeriod != 0) &&
+            !validateDelayPeriod(
+                clientId,
+                height,
+                delayTimePeriod,
+                delayBlockPeriod
+            )
+        ) {
+            return false;
+        }
         return
             membershipVerifier.verifyNonMembership(
                 abi.encodePacked(consensusState.root),
@@ -312,13 +334,40 @@ contract CometblsClient is ILightClient {
             );
     }
 
+    function validateDelayPeriod(
+        string calldata clientId,
+        IbcCoreClientV1Height.Data calldata height,
+        uint64 delayPeriodTime,
+        uint64 delayPeriodBlocks
+    ) public view returns (bool) {
+        uint128 heightU128 = height.toUint128();
+        uint64 currentTime = uint64(block.timestamp * 1e9);
+        ProcessedMoment memory moment = processedMoments[
+            stateIndex(clientId, heightU128)
+        ];
+        uint64 validTime = uint64(moment.timestamp) * 1e9 + delayPeriodTime;
+        if (currentTime < validTime) {
+            return false;
+        }
+        uint64 currentHeight = uint64(block.number);
+        uint64 validHeight = uint64(moment.height) + delayPeriodBlocks;
+        if (currentHeight < validHeight) {
+            return false;
+        }
+        return true;
+    }
+
     function getClientState(
         string calldata clientId
     ) external view returns (bytes memory, bool) {
+        bytes memory codeId = codeIds[clientId];
+        if (codeId.length == 0) {
+            return (bytes(""), false);
+        }
         return (
             clientStates[clientId].marshalToProto(
                 latestHeights[clientId],
-                codeIds[clientId]
+                codeId
             ),
             true
         );
@@ -328,11 +377,13 @@ contract CometblsClient is ILightClient {
         string calldata clientId,
         IbcCoreClientV1Height.Data calldata height
     ) external view returns (bytes memory, bool) {
-        return (
-            consensusStates[stateIndex(clientId, height.toUint128())]
-                .marshalToProto(),
-            true
-        );
+        OptimizedConsensusState memory consensusState = consensusStates[
+            stateIndex(clientId, height.toUint128())
+        ];
+        if (consensusState.timestamp == 0) {
+            return (bytes(""), false);
+        }
+        return (consensusState.marshalToProto(), true);
     }
 
     modifier onlyIBC() {
 
@@ -4,11 +4,8 @@ import "../core/IMembershipVerifier.sol";
 import "../lib/ICS23.sol";
 import "../proto/cosmos/ics23/v1/proofs.sol";
 import "../proto/ibc/core/commitment/v1/commitment.sol";
-import "solady/utils/LibString.sol";
 
 contract ICS23MembershipVerifier is IMembershipVerifier {
-    using LibString for string;
-
     function verifyMembership(
         bytes memory root,
         bytes calldata proof,
@@ -34,6 +31,14 @@ contract ICS23MembershipVerifier is IMembershipVerifier {
         bytes calldata prefix,
         bytes calldata path
     ) external view override returns (bool) {
-        revert("not implemented yet");
+        bytes[] memory fullPath = new bytes[](2);
+        fullPath[0] = prefix;
+        fullPath[1] = path;
+        return
+            Ics23.verifyChainedNonMembership(
+                IbcCoreCommitmentV1MerkleProof.decode(proof),
+                root,
+                fullPath
+            ) == Ics23.VerifyChainedNonMembershipError.None;
     }
 }
@@ -66,6 +66,125 @@ library Ics23 {
         });
     }
 
+    enum VerifyChainedNonMembershipError {
+        None,
+        NonExistenceProofIsNil,
+        ExistenceProofIsNil,
+        InvalidProofRoot,
+        KeyMismatch,
+        ValueMismatch,
+        InvalidSpec,
+        InvalidIntermediateProofRoot,
+        IntermateProofRootMismatch,
+        RootMismatch,
+        VerifyLeft,
+        VerifyRight,
+        LeftAndRightKeyEmpty,
+        RightKeyRange,
+        LeftKeyRange,
+        RightProofLeftMost,
+        LeftProofRightMost,
+        IsLeftNeighbor
+    }
+
+    function verifyChainedNonMembership(
+        IbcCoreCommitmentV1MerkleProof.Data memory merkleProof,
+        bytes memory root,
+        bytes[] memory path
+    ) internal pure returns (VerifyChainedNonMembershipError) {
+        CosmosIcs23V1ProofSpec.Data memory iavlSpec = getIavlProofSpec();
+        CosmosIcs23V1ProofSpec.Data
+            memory tendermintSpec = getTendermintProofSpec();
+
+        CosmosIcs23V1CommitmentProof.Data memory proof = merkleProof.proofs[0];
+        CosmosIcs23V1NonExistenceProof.Data memory nonExistenceProof = proof
+            .nonexist;
+        if (CosmosIcs23V1NonExistenceProof.isNil(nonExistenceProof)) {
+            return VerifyChainedNonMembershipError.NonExistenceProofIsNil;
+        }
+
+        (bytes memory subroot, Proof.CalculateRootError rCode) = Proof
+            .calculateRoot(proof);
+        if (rCode != Proof.CalculateRootError.None) {
+            return VerifyChainedNonMembershipError.InvalidProofRoot;
+        }
+
+        bytes memory key = path[path.length - 1];
+        Proof.VerifyNonExistenceError vCode = Proof.verify(
+            nonExistenceProof,
+            iavlSpec,
+            subroot,
+            key
+        );
+
+        // Map non existence error to non membership error
+        if (vCode != Proof.VerifyNonExistenceError.None) {
+            if (vCode == Proof.VerifyNonExistenceError.VerifyLeft) {
+                return VerifyChainedNonMembershipError.VerifyLeft;
+            } else if (
+                vCode == Proof.VerifyNonExistenceError.LeftAndRightKeyEmpty
+            ) {
+                return VerifyChainedNonMembershipError.LeftAndRightKeyEmpty;
+            } else if (vCode == Proof.VerifyNonExistenceError.RightKeyRange) {
+                return VerifyChainedNonMembershipError.RightKeyRange;
+            } else if (vCode == Proof.VerifyNonExistenceError.LeftKeyRange) {
+                return VerifyChainedNonMembershipError.LeftKeyRange;
+            } else if (
+                vCode == Proof.VerifyNonExistenceError.RightProofLeftMost
+            ) {
+                return VerifyChainedNonMembershipError.RightProofLeftMost;
+            } else if (
+                vCode == Proof.VerifyNonExistenceError.LeftProofRightMost
+            ) {
+                return VerifyChainedNonMembershipError.LeftProofRightMost;
+            } else if (vCode == Proof.VerifyNonExistenceError.IsLeftNeighbor) {
+                return VerifyChainedNonMembershipError.IsLeftNeighbor;
+            }
+
+            revert(
+                "verifyChainedNonMembership: non exhaustive pattern matching on VerifyNonExistenceError"
+            );
+        }
+
+        VerifyChainedMembershipError mCode = verifyChainedMembershipAt(
+            merkleProof,
+            root,
+            path,
+            subroot,
+            1
+        );
+
+        // Map membership error to non membership error
+        if (mCode != VerifyChainedMembershipError.None) {
+            if (mCode == VerifyChainedMembershipError.ExistenceProofIsNil) {
+                return VerifyChainedNonMembershipError.ExistenceProofIsNil;
+            } else if (mCode == VerifyChainedMembershipError.InvalidProofRoot) {
+                return VerifyChainedNonMembershipError.InvalidProofRoot;
+            } else if (mCode == VerifyChainedMembershipError.KeyMismatch) {
+                return VerifyChainedNonMembershipError.KeyMismatch;
+            } else if (mCode == VerifyChainedMembershipError.ValueMismatch) {
+                return VerifyChainedNonMembershipError.ValueMismatch;
+            } else if (mCode == VerifyChainedMembershipError.InvalidSpec) {
+                return VerifyChainedNonMembershipError.InvalidSpec;
+            } else if (
+                mCode ==
+                VerifyChainedMembershipError.InvalidIntermediateProofRoot
+            ) {
+                return
+                    VerifyChainedNonMembershipError
+                        .InvalidIntermediateProofRoot;
+            } else if (mCode == VerifyChainedMembershipError.RootMismatch) {
+                return VerifyChainedNonMembershipError.RootMismatch;
+            }
+
+            revert(
+                "verifyChainedNonMembership: non exhaustive pattern matching on VerifyChainedMembershipError"
+            );
+        }
+
+        return VerifyChainedNonMembershipError.None;
+    }
+
     enum VerifyChainedMembershipError {
         None,
         ExistenceProofIsNil,
@@ -83,12 +202,22 @@ library Ics23 {
         bytes memory root,
         bytes[] memory path,
         bytes memory value
+    ) internal pure returns (VerifyChainedMembershipError) {
+        return verifyChainedMembershipAt(merkleProof, root, path, value, 0);
+    }
+
+    function verifyChainedMembershipAt(
+        IbcCoreCommitmentV1MerkleProof.Data memory merkleProof,
+        bytes memory root,
+        bytes[] memory path,
+        bytes memory value,
+        uint256 index
     ) internal pure returns (VerifyChainedMembershipError) {
         CosmosIcs23V1ProofSpec.Data memory iavlSpec = getIavlProofSpec();
         CosmosIcs23V1ProofSpec.Data
             memory tendermintSpec = getTendermintProofSpec();
         bytes memory subroot = value;
-        for (uint256 i = 0; i < merkleProof.proofs.length; i++) {
+        for (uint256 i = index; i < merkleProof.proofs.length; i++) {
             CosmosIcs23V1CommitmentProof.Data memory proof = merkleProof.proofs[
                 i
             ];
@@ -110,9 +239,10 @@ library Ics23 {
              * Path is provided as /a/b/c, we need to pop until reaching the root
              */
             bytes memory key = path[path.length - i - 1];
+
             Proof.VerifyExistenceError vCode = Proof.verify(
                 existenceProof,
-                i == (path.length - 1) ? tendermintSpec : iavlSpec,
+                i == 0 ? iavlSpec : tendermintSpec,
                 subroot,
                 key,
                 value