@trustchex/react-native-sdk 1.381.0 → 1.464.0

package/lib/module/Shared/EIDReader/secureMessagingWrapper.js

@@ -56,7 +56,7 @@ export class SecureMessagingWrapper {
       const dataOutputStream = Array.from(this.getEncodedSendSequenceCounter());
       const paddedData = cryptoUtils.pad(Buffer.from(rapdu), 0, rapdu.length - 2 - 8 - 2, this.getPadLength());
       dataOutputStream.push(...paddedData);
-      let cc2 = Uint8Array.from(Buffer.from(cryptoUtils.computeMac(Buffer.from(dataOutputStream).toString('hex'), this.ksMac), 'hex'));
+      let cc2 = Uint8Array.from(Buffer.from(this.computeMAC(Buffer.from(dataOutputStream).toString('hex'), this.ksMac), 'hex'));
       if (cc2.length > 8 && cc.length === 8) {
         const newCC2 = new Uint8Array(8);
         for (let i = 0; i < 8; i++) {
@@ -70,6 +70,29 @@ export class SecureMessagingWrapper {
       return false;
     }
   }
+  /**
+   * Encrypt data using the session encryption key.
+   * Subclasses override for AES vs 3DES.
+   */
+  encrypt(dataHex, keyHex) {
+    return cryptoUtils.encryptWith3DES(dataHex, keyHex);
+  }
+
+  /**
+   * Decrypt data using the session encryption key.
+   * Subclasses override for AES vs 3DES.
+   */
+  decrypt(dataHex, keyHex) {
+    return cryptoUtils.decryptWith3DES(dataHex, keyHex);
+  }
+
+  /**
+   * Compute MAC over data using the session MAC key.
+   * Subclasses override for AES-CMAC vs 3DES MAC.
+   */
+  computeMAC(dataHex, keyHex) {
+    return cryptoUtils.computeMac(dataHex, keyHex);
+  }
   wrapCommandAPDU(commandAPDU) {
     const cla = commandAPDU.getCLA();
     const ins = commandAPDU.getINS();
@@ -88,7 +111,7 @@ export class SecureMessagingWrapper {
     }
     if (lc > 0) {
       const data = cryptoUtils.pad(Buffer.from(commandAPDU.getData()), 0, commandAPDU.getData().length, this.getPadLength());
-      const ciphertext = Buffer.from(cryptoUtils.encryptWith3DES(Buffer.from(data).toString('hex'), this.ksEnc), 'hex');
+      const ciphertext = Buffer.from(this.encrypt(Buffer.from(data).toString('hex'), this.ksEnc), 'hex');
       output.push(hasDO85 ? 0x85 : 0x87);
       output.push(...TLVUtil.getLengthAsBytes(ciphertext.length + (hasDO85 ? 0 : 1)));
       if (!hasDO85) {
@@ -99,7 +122,7 @@ export class SecureMessagingWrapper {
     }
     output = [...this.getEncodedSendSequenceCounter(), ...paddedMaskedHeader, ...do8587, ...do97];
     const n = cryptoUtils.pad(Buffer.from(output), 0, output.length, this.getPadLength());
-    const cc = Buffer.from(cryptoUtils.computeMac(Buffer.from(n).toString('hex'), this.ksMac), 'hex');
+    const cc = Buffer.from(this.computeMAC(Buffer.from(n).toString('hex'), this.ksMac), 'hex');
     let ccLength = cc.length;
     if (ccLength !== 8) {
       ccLength = 8;
@@ -194,7 +217,7 @@ export class SecureMessagingWrapper {
     }
     const ciphertext = Buffer.alloc(length);
     inputStream.readFully(ciphertext);
-    const paddedData = Array.from(Buffer.from(cryptoUtils.decryptWith3DES(Buffer.from(ciphertext).toString('hex'), this.ksEnc), 'hex'));
+    const paddedData = Array.from(Buffer.from(this.decrypt(Buffer.from(ciphertext).toString('hex'), this.ksEnc), 'hex'));
     return cryptoUtils.unpad(paddedData);
   }
   async readDO99(inputStream) {

package/lib/module/Shared/EIDReader/smartcards/commandAPDU.js

@@ -8,7 +8,8 @@ export class CommandAPDU {
   dataOffset = 0;
   constructor(cla, ins, p1, p2, data, dataOffset, dataLength, ne) {
     this.nc = dataLength || 0;
-    this.ne = ne || 0;
+    // Java JMRTD uses -1 to mean "no Le field" (ne=0). Guard against negatives.
+    this.ne = ne == null || ne < 0 ? 0 : ne;
     this.apdu = this.buildAPDU(cla, ins, p1, p2, data, dataOffset || 0, this.nc, this.ne);
   }
   buildAPDU(cla, ins, p1, p2, data, dataOffset = 0, dataLength = 0, ne = 0) {

package/lib/module/Shared/EIDReader/tlv/tlv.helpers.js

@@ -83,7 +83,7 @@ export class TLVHelpers extends ASN1Constants {
   static log(n, base) {
     let result = 0;
     while (n > 0) {
-      n = n / base;
+      n = Math.floor(n / base);
       result++;
     }
     return result;

package/lib/module/Shared/EIDReader/tlv/tlv.utils.js

@@ -39,7 +39,7 @@ class TLVUtil extends TLVHelpers {
     try {
       const actualTag = await tlvInputStream.readTag();
       if (actualTag !== expectedTag) {
-        throw new Error(`Expected tag ${expectedTag.toString(16)}, found tag ${actualTag.toString(16)}`);
+        throw new Error(`Expected TLV tag 0x${expectedTag.toString(16)}, found 0x${actualTag.toString(16)} in data: ${Buffer.from(wrappedData.slice(0, 16)).toString('hex')}`);
       }
       const length = await tlvInputStream.readLength();
       const value = await tlvInputStream.readValue();
@@ -49,8 +49,11 @@ class TLVUtil extends TLVHelpers {
       }
       return result;
     } catch (ioe) {
-      // Never happens.
-      throw new Error('Error reading from stream');
+      // Re-throw original error with context rather than masking it
+      if (ioe instanceof Error && ioe.message.includes('Expected TLV tag')) {
+        throw ioe;
+      }
+      throw new Error(`TLV unwrap error (expected tag 0x${expectedTag.toString(16)}): ${ioe instanceof Error ? ioe.message : String(ioe)}`);
     } finally {
       try {
         tlvInputStream.close();

package/lib/module/Shared/EIDReader/utils/aesCrypto.utils.js

@@ -0,0 +1,189 @@
+"use strict";
+
+import CryptoJS from 'crypto-js';
+import { Buffer } from 'buffer';
+import 'react-native-get-random-values';
+
+/**
+ * AES cryptographic utilities for PACE protocol.
+ */
+
+/**
+ * Encrypt data using AES in CBC mode with zero IV.
+ */
+export const aesEncryptCBC = (dataHex, keyHex, ivHex = '00000000000000000000000000000000') => {
+  const data = CryptoJS.enc.Hex.parse(dataHex);
+  const key = CryptoJS.enc.Hex.parse(keyHex);
+  const iv = CryptoJS.enc.Hex.parse(ivHex);
+  const encrypted = CryptoJS.AES.encrypt(data, key, {
+    mode: CryptoJS.mode.CBC,
+    padding: CryptoJS.pad.NoPadding,
+    iv
+  });
+  return encrypted.ciphertext.toString(CryptoJS.enc.Hex);
+};
+
+/**
+ * Decrypt data using AES in CBC mode with zero IV.
+ */
+export const aesDecryptCBC = (dataHex, keyHex, ivHex = '00000000000000000000000000000000') => {
+  const data = CryptoJS.enc.Hex.parse(dataHex);
+  const key = CryptoJS.enc.Hex.parse(keyHex);
+  const iv = CryptoJS.enc.Hex.parse(ivHex);
+  const cipherParams = CryptoJS.lib.CipherParams.create({
+    ciphertext: data
+  });
+  const decrypted = CryptoJS.AES.decrypt(cipherParams, key, {
+    mode: CryptoJS.mode.CBC,
+    padding: CryptoJS.pad.NoPadding,
+    iv
+  });
+  return decrypted.toString(CryptoJS.enc.Hex);
+};
+
+/**
+ * Encrypt a single block with AES in ECB mode (for SSC encryption).
+ */
+export const aesEncryptECB = (dataHex, keyHex) => {
+  const data = CryptoJS.enc.Hex.parse(dataHex);
+  const key = CryptoJS.enc.Hex.parse(keyHex);
+  const encrypted = CryptoJS.AES.encrypt(data, key, {
+    mode: CryptoJS.mode.ECB,
+    padding: CryptoJS.pad.NoPadding
+  });
+  return encrypted.ciphertext.toString(CryptoJS.enc.Hex);
+};
+
+/**
+ * Compute AES CMAC (OMAC1) as defined in RFC 4493.
+ */
+export const aesCMAC = (dataHex, keyHex) => {
+  const key = Buffer.from(keyHex, 'hex');
+  const data = Buffer.from(dataHex, 'hex');
+  const blockSize = 16;
+
+  // Step 1: Generate subkeys
+  const zeroBlock = '00000000000000000000000000000000';
+  const L = Buffer.from(aesEncryptECB(zeroBlock, keyHex), 'hex');
+  const K1 = generateSubkey(L);
+  const K2 = generateSubkey(K1);
+
+  // Step 2: Determine if we need to pad
+  const n = data.length === 0 ? 1 : Math.ceil(data.length / blockSize);
+  const lastBlockComplete = data.length > 0 && data.length % blockSize === 0;
+
+  // Step 3: Process last block
+  const lastBlock = Buffer.alloc(blockSize);
+  if (lastBlockComplete) {
+    const start = (n - 1) * blockSize;
+    for (let i = 0; i < blockSize; i++) {
+      lastBlock[i] = data[start + i] ^ K1[i];
+    }
+  } else {
+    // Pad with 10*
+    const start = (n - 1) * blockSize;
+    const remaining = data.length - start;
+    const padded = Buffer.alloc(blockSize);
+    for (let i = 0; i < remaining; i++) {
+      padded[i] = data[start + i];
+    }
+    padded[remaining] = 0x80;
+    for (let i = 0; i < blockSize; i++) {
+      lastBlock[i] = padded[i] ^ K2[i];
+    }
+  }
+
+  // Step 4: CBC-MAC
+  let X = Buffer.alloc(blockSize);
+  for (let i = 0; i < n - 1; i++) {
+    const block = data.subarray(i * blockSize, (i + 1) * blockSize);
+    const Y = Buffer.alloc(blockSize);
+    for (let j = 0; j < blockSize; j++) {
+      Y[j] = X[j] ^ block[j];
+    }
+    X = Buffer.from(aesEncryptECB(Y.toString('hex'), keyHex), 'hex');
+  }
+
+  // Process last block
+  const Y = Buffer.alloc(blockSize);
+  for (let j = 0; j < blockSize; j++) {
+    Y[j] = X[j] ^ lastBlock[j];
+  }
+  const T = aesEncryptECB(Y.toString('hex'), keyHex);
+  return T;
+};
+function generateSubkey(input) {
+  const blockSize = 16;
+  const Rb = Buffer.alloc(blockSize);
+  Rb[blockSize - 1] = 0x87;
+
+  // Left shift by 1
+  const output = Buffer.alloc(blockSize);
+  const msb = (input[0] & 0x80) !== 0;
+  for (let i = 0; i < blockSize - 1; i++) {
+    output[i] = (input[i] << 1 | input[i + 1] >> 7) & 0xff;
+  }
+  output[blockSize - 1] = input[blockSize - 1] << 1 & 0xff;
+  if (msb) {
+    for (let i = 0; i < blockSize; i++) {
+      output[i] ^= Rb[i];
+    }
+  }
+  return output;
+}
+
+/**
+ * Derive AES key from shared secret using KDF as per TR-SAC.
+ *
+ * @param sharedSecretHex the shared secret bytes as hex
+ * @param cipherAlg 'AES' or 'DESede'
+ * @param keyLength 128, 192, or 256
+ * @param mode 1 = ENC, 2 = MAC, 3 = PACE
+ */
+export const deriveKey = (sharedSecretHex, cipherAlg, keyLength, mode) => {
+  const input = sharedSecretHex + '000000' + mode.toString(16).padStart(2, '0');
+  let hash;
+  if (cipherAlg === 'AES' && keyLength > 128) {
+    // Use SHA-256 for AES-192 and AES-256
+    hash = CryptoJS.SHA256(CryptoJS.enc.Hex.parse(input)).toString(CryptoJS.enc.Hex);
+  } else {
+    // Use SHA-1 for DESede and AES-128
+    hash = CryptoJS.SHA1(CryptoJS.enc.Hex.parse(input)).toString(CryptoJS.enc.Hex);
+  }
+  if (cipherAlg === 'DESede') {
+    // 3DES: 24-byte key (K1 || K2 || K1)
+    const ka = hash.substring(0, 16);
+    const kb = hash.substring(16, 32);
+    return ka + kb + ka;
+  } else {
+    // AES: return first keyLength/8 bytes
+    const keyBytes = keyLength / 4; // hex chars = keyLength / 8 * 2
+    return hash.substring(0, keyBytes);
+  }
+};
+
+/**
+ * Pad data using ISO 9797-1 method 2 with given block size.
+ */
+export const padISO9797 = (data, blockSize = 16) => {
+  const n = data.length;
+  const padLength = blockSize - n % blockSize;
+  const out = Buffer.alloc(n + padLength);
+  data.copy(out);
+  out[n] = 0x80;
+  return out;
+};
+
+/**
+ * Unpad ISO 9797-1 method 2.
+ */
+export const unpadISO9797 = data => {
+  let i = data.length - 1;
+  while (i >= 0 && data[i] === 0x00) {
+    i--;
+  }
+  if (i >= 0 && data[i] === 0x80) {
+    return data.subarray(0, i);
+  }
+  return data;
+};

package/lib/module/Shared/Libs/SignalingClient.js

@@ -0,0 +1,128 @@
+"use strict";
+
+import EventSource from 'react-native-sse';
+export class SignalingClient {
+  eventSource = null;
+  constructor(baseUrl, sessionId, onMessage, identificationId, onSessionEnded) {
+    this.baseUrl = baseUrl;
+    this.sessionId = sessionId;
+    this.onMessage = onMessage;
+    this.identificationId = identificationId;
+    this.onSessionEnded = onSessionEnded;
+  }
+  connect() {
+    if (this.eventSource) {
+      this.eventSource.close();
+    }
+    const urlParams = new URLSearchParams();
+    if (this.identificationId) {
+      urlParams.append('identificationId', this.identificationId);
+    }
+    const url = `${this.baseUrl}/api/app/mobile/video-sessions/${this.sessionId}/signaling/stream?${urlParams.toString()}`;
+    console.log('[SignalingClient] Connecting to SSE:', url);
+    this.eventSource = new EventSource(url, {
+      pollingInterval: 0 // 0 means default/no polling if SSE is real
+    });
+    const listener = event => {
+      if (event.type === 'open') {
+        console.log('[SignalingClient] Connected');
+        this.onConnected?.();
+      } else if (event.type === 'error') {
+        console.error('[SignalingClient] Connection error:', JSON.stringify(event, null, 2));
+        this.onDisconnected?.();
+      } else if (event.type === 'message') {
+        try {
+          const data = JSON.parse(event.data || '{}');
+          if (['offer', 'answer', 'ice-candidate', 'command'].includes(data.type)) {
+            this.onMessage({
+              id: data.id,
+              type: data.type,
+              payload: data.payload,
+              createdAt: data.createdAt
+            });
+          }
+        } catch (e) {
+          console.error('[SignalingClient] Error parsing message:', e);
+        }
+      }
+    };
+    const customEventListener = event => {
+      try {
+        const data = JSON.parse(event.data || '{}');
+        const eventType = event.type;
+        if (['offer', 'answer', 'ice-candidate', 'command'].includes(eventType)) {
+          this.onMessage({
+            id: data.id,
+            type: eventType,
+            payload: data.payload,
+            createdAt: data.createdAt
+          });
+        }
+      } catch (e) {
+        console.error('[SignalingClient] Error parsing custom event:', e);
+      }
+    };
+
+    // Ping handler - server sends pings to keep connection alive
+    const pingListener = event => {
+      console.log('[SignalingClient] Received ping');
+      // Just acknowledge by doing nothing, server-side heartbeat keeps connection alive
+    };
+
+    // Session-ended event listener
+    const sessionEndedListener = event => {
+      try {
+        const data = JSON.parse(event.data || '{}');
+        console.log('[SignalingClient] Session ended:', data.state);
+        if (this.onSessionEnded) {
+          this.onSessionEnded(data.state);
+        }
+      } catch (e) {
+        console.error('[SignalingClient] Error parsing session-ended event:', e);
+      }
+    };
+    this.eventSource.addEventListener('open', listener);
+    this.eventSource.addEventListener('message', listener);
+    this.eventSource.addEventListener('error', listener);
+    this.eventSource.addEventListener('ping', pingListener);
+    this.eventSource.addEventListener('offer', customEventListener);
+    this.eventSource.addEventListener('answer', customEventListener);
+    this.eventSource.addEventListener('ice-candidate', customEventListener);
+    this.eventSource.addEventListener('command', customEventListener);
+    this.eventSource.addEventListener('session-ended', sessionEndedListener);
+  }
+  async send(type, payload) {
+    const urlParams = new URLSearchParams();
+    if (this.identificationId) {
+      urlParams.append('identificationId', this.identificationId);
+    }
+    const url = `${this.baseUrl}/api/app/mobile/video-sessions/${this.sessionId}/signaling?${urlParams.toString()}`;
+    try {
+      const body = {
+        type,
+        data: payload
+      };
+      const response = await fetch(url, {
+        method: 'POST',
+        headers: {
+          'Content-Type': 'application/json'
+        },
+        body: JSON.stringify(body)
+      });
+      if (!response.ok) {
+        throw new Error(`Failed to send signaling message: ${response.statusText}`);
+      }
+    } catch (error) {
+      console.error('[SignalingClient] Error sending message:', error);
+      throw error;
+    }
+  }
+  disconnect() {
+    if (this.eventSource) {
+      this.eventSource.removeAllEventListeners();
+      this.eventSource.close();
+      this.eventSource = null;
+      this.onDisconnected?.();
+    }
+  }
+}

package/lib/module/Shared/Libs/analytics.utils.js

@@ -188,6 +188,14 @@ const STEP_EVENT_MAP = {
   liveness_check: {
     started: AnalyticsEventName.LIVENESS_CHECK_STARTED,
     completed: AnalyticsEventName.LIVENESS_CHECK_COMPLETED
+  },
+  verbal_consent: {
+    started: AnalyticsEventName.VERBAL_CONSENT_VIDEO_STARTED,
+    completed: AnalyticsEventName.VERBAL_CONSENT_VIDEO_COMPLETED
+  },
+  video_call: {
+    started: AnalyticsEventName.VIDEO_CALL_STARTED,
+    completed: AnalyticsEventName.VIDEO_CALL_COMPLETED
   }
 };
 function getStepEventName(stepType, suffix) {

package/lib/module/Shared/Libs/contains.js

@@ -1,40 +1 @@
-"use strict";
-
-export function contains({
-  outside,
-  inside
-}) {
-  const outsideMaxX = outside.minX + outside.width;
-  const insideMaxX = inside.minX + inside.width;
-  const outsideMaxY = outside.minY + outside.height;
-  const insideMaxY = inside.minY + inside.height;
-  if (inside.minX < outside.minX) {
-    return false;
-  }
-  if (insideMaxX > outsideMaxX) {
-    return false;
-  }
-  if (inside.minY < outside.minY) {
-    return false;
-  }
-  if (insideMaxY > outsideMaxY) {
-    return false;
-  }
-  return true;
-}
-export function contains2({
-  outside,
-  inside
-}) {
-  const outsideMaxX = outside.minX + outside.width;
-  const insideMaxX = inside.minX + inside.width;
-  const outsideMaxY = outside.minY + outside.height;
-  const insideMaxY = inside.minY + inside.height;
-  const xIntersect = Math.max(0, Math.min(insideMaxX, outsideMaxX) - Math.max(inside.minX, outside.minX));
-  const yIntersect = Math.max(0, Math.min(insideMaxY, outsideMaxY) - Math.max(inside.minY, outside.minY));
-  const intersectArea = xIntersect * yIntersect;
-  const insideArea = inside.width * inside.height;
-  const outsideArea = outside.width * outside.height;
-  const unionArea = insideArea + outsideArea - intersectArea;
-  return unionArea === outsideArea;
-}
+"use strict";

package/lib/module/Shared/Libs/country-display.utils.js

@@ -0,0 +1,34 @@
+"use strict";
+
+import { ISOCountry } from "../EIDReader/data/isoCountry.js";
+import { UnicodeCountry } from "../EIDReader/data/unicodeCountry.js";
+const COUNTRY_NAME_OVERRIDES = {
+  TUR: 'Türkiye'
+};
+const findCountryByAlpha3 = alpha3Code => {
+  return [...UnicodeCountry.VALUES, ...ISOCountry.VALUES].find(country => country.toAlpha3Code() === alpha3Code);
+};
+export const getLocalizedCountryName = (alpha3Code, _language) => {
+  if (!alpha3Code) return '';
+  const normalizedCode = alpha3Code.trim().toUpperCase();
+  const overrideName = COUNTRY_NAME_OVERRIDES[normalizedCode];
+  if (overrideName) {
+    return overrideName;
+  }
+  const country = findCountryByAlpha3(normalizedCode);
+  if (!country) {
+    return normalizedCode;
+  }
+  if (typeof Intl !== 'undefined' && 'Locale' in Intl && typeof Intl.Locale === 'function' && 'DisplayNames' in Intl && typeof Intl.DisplayNames === 'function') {
+    const nativeLanguage = new Intl.Locale(`und-${country.toAlpha2Code()}`).maximize().language;
+    if (nativeLanguage) {
+      const nativeName = new Intl.DisplayNames([nativeLanguage], {
+        type: 'region'
+      }).of(country.toAlpha2Code());
+      if (nativeName) {
+        return nativeName;
+      }
+    }
+  }
+  return country.getName();
+};

package/lib/module/Shared/Libs/deeplink.utils.js

@@ -12,7 +12,7 @@ const handleDeepLink = ({
   let baseUrl = '';
   let sessionId = '';
   for (let i = 0; i < segments.length; i++) {
-    if (segments[i] === 'verification-session') {
+    if (segments[i] === 'verification-session' || segments[i] === 'verification-sessions') {
       sessionId = segments[i + 1] ?? '';
       debugLog('handleDeepLink', 'Found sessionId:', sessionId);
     } else if (segments[i] === 'app-url') {
@@ -20,6 +20,14 @@ const handleDeepLink = ({
       debugLog('handleDeepLink', 'Found baseUrl:', baseUrl);
     }
   }
+
+  // If no app-url segment found, derive baseUrl from the URL itself
+  if (!baseUrl && sessionId) {
+    const match = url.match(/^(https?:\/\/[^/]+)/);
+    if (match) {
+      baseUrl = match[1];
+    }
+  }
   debugLog('handleDeepLink', 'Returning:', {
     baseUrl,
     sessionId

package/lib/module/Shared/Libs/demo.utils.js

@@ -28,6 +28,14 @@ const demoSession = {
         }
       }
     }
+  }, {
+    type: 'VERBAL_CONSENT',
+    required: false,
+    data: {
+      voiceGuidanceActive: true,
+      verbalConsentTitle: 'Verbal Consent',
+      verbalConsentText: 'I hereby provide my verbal consent for identity verification purposes. I confirm that all information provided is accurate and complete.'
+    }
   }, {
     type: 'IDENTITY_DOCUMENT_SCAN',
     required: false,

package/lib/module/Shared/Libs/http-client.js

@@ -47,6 +47,10 @@ const request = async (httpMethod, url, body, simulatedResponse) => {
   const startTime = Date.now();
   let statusCode = 0;
   let success = false;
+  console.log(`[HTTP] ${httpMethod} ${url}`);
+  if (body) {
+    console.log('[HTTP] Request body:', JSON.stringify(body).substring(0, 200) + '...');
+  }
   try {
     const response = await fetch(url, {
       method: httpMethod,
@@ -57,11 +61,16 @@ const request = async (httpMethod, url, body, simulatedResponse) => {
     });
     statusCode = response.status;
     success = response.ok;
+    console.log(`[HTTP] Response status: ${statusCode} ${response.ok ? '✓' : '✗'}`);
     let responseJson = null;
     try {
       responseJson = await response.json();
+      if (responseJson) {
+        console.log('[HTTP] Response body:', JSON.stringify(responseJson).substring(0, 200) + '...');
+      }
     } catch (error) {
       // Invalid JSON response
+      console.log('[HTTP] Response body: (non-JSON)');
     }
 
     // Track API call performance (non-blocking)

package/lib/module/Shared/Libs/mrz.utils.js

@@ -108,8 +108,9 @@ const fixMRZ = rawText => {
     // Must contain filler characters
     if (!/<+/.test(line)) return false;
 
-    // Prioritize lines starting with I< (document code)
-    if (line.startsWith('I<')) return true;
+    // Lines starting with a valid MRZ document code (ICAO 9303):
+    // I (ID cards), A (residence permits, admin docs), C (crew), P (passport), V (visa)
+    if (/^[IACPV][<A-Z]/.test(line)) return true;
 
     // Or lines with numbers and fillers (second line of TD1: birth date, expiry, etc.)
     if (/\d{5,}/.test(line) && /<{3,}/.test(line)) return true;

package/lib/module/Shared/Libs/promise.utils.js

@@ -2,16 +2,30 @@
 
 const runWithRetry = async (fn, maxRetries = 3, delay = 1000) => {
   let retries = 0;
+  let lastError;
   let result;
   while (retries < maxRetries) {
     try {
+      if (retries > 0) {
+        console.log(`[Retry] Attempt ${retries + 1}/${maxRetries}...`);
+      }
       result = await fn();
+      if (retries > 0) {
+        console.log(`[Retry] ✓ Success on attempt ${retries + 1}`);
+      }
       return result;
     } catch (error) {
+      lastError = error;
       retries++;
-      await new Promise(resolve => setTimeout(resolve, delay * retries));
+      console.error(`[Retry] ✗ Attempt ${retries}/${maxRetries} failed:`, error instanceof Error ? error.message : error);
+      if (retries < maxRetries) {
+        const waitTime = delay * retries;
+        console.log(`[Retry] Waiting ${waitTime}ms before retry...`);
+        await new Promise(resolve => setTimeout(resolve, waitTime));
+      }
     }
   }
-  throw new Error('Max retries exceeded');
+  console.error('[Retry] ✗ All retries exhausted. Last error:', lastError);
+  throw new Error(`Max retries (${maxRetries}) exceeded. Last error: ${lastError instanceof Error ? lastError.message : String(lastError)}`);
 };
 export { runWithRetry };

package/lib/module/Shared/Libs/status-bar.utils.js

@@ -0,0 +1,23 @@
+"use strict";
+
+import { Platform, StatusBar } from 'react-native';
+import { useEffect } from 'react';
+
+/**
+ * Configure status bar for white background with dark content for better contrast
+ */
+export const configureStatusBarForWhiteBackground = () => {
+  StatusBar.setBarStyle('dark-content', true);
+  if (Platform.OS === 'android') {
+    StatusBar.setBackgroundColor('#ffffff', true);
+  }
+};
+
+/**
+ * Hook to configure status bar for white background on mount
+ */
+export const useStatusBarWhiteBackground = () => {
+  useEffect(() => {
+    configureStatusBarForWhiteBackground();
+  }, []);
+};