@ukeyfe/react-native-nfc-litecard 1.0.2 → 1.0.3

package/dist/constants.d.ts

@@ -11,6 +11,10 @@ export declare const CMD_FAST_READ = 58;
 export declare const CMD_AUTH_PART1 = 26;
 /** AES authentication part 2 */
 export declare const CMD_AUTH_PART2 = 175;
+/** GET_VERSION command - retrieve product version info */
+export declare const CMD_GET_VERSION = 96;
+/** READ_SIG command - read ECC originality signature */
+export declare const CMD_READ_SIG = 60;
 /** Data protection key slot (Key0) */
 export declare const KEY_NO_DATA_PROT = 0;
 /** Bytes per page */
@@ -59,3 +63,25 @@ export declare const RETRY_COUNTER_PAGE: number;
 export declare const RETRY_COUNTER_OFFSET: number;
 /** Default retry limit, restored after a successful authentication */
 export declare const DEFAULT_PIN_RETRY_COUNT = 10;
+/** SEC_MSG_ACT bit mask in CFG0 byte 0 (bit 1) */
+export declare const SEC_MSG_ACT_MASK = 2;
+export declare const DELAY: {
+    /** Delay after requestNfcTech on Android */
+    readonly ANDROID_POST_TECH: 300;
+    /** Delay after releaseNfcTech (normal) */
+    readonly IOS_POST_RELEASE: 100;
+    readonly ANDROID_POST_RELEASE: 800;
+    /** Delay after releaseNfcTech (forced, e.g. after timeout) */
+    readonly IOS_POST_RELEASE_FORCED: 300;
+    readonly ANDROID_POST_RELEASE_FORCED: 1000;
+    /** Delay between page writes on iOS */
+    readonly IOS_PAGE_WRITE: 20;
+    /** Delay between AES key page writes on iOS */
+    readonly IOS_KEY_WRITE: 10;
+    /** Delay between nickname page writes on iOS */
+    readonly IOS_NICKNAME_WRITE: 100;
+    /** Delay between config operations on iOS */
+    readonly IOS_CONFIG: 80;
+    /** Keep-alive frequency (every N pages) during writes */
+    readonly KEEPALIVE_FREQ: 4;
+};

package/dist/constants.js

@@ -3,7 +3,7 @@
  * Shared constants for MIFARE Ultralight AES (MF0AES(H)20) NFC operations.
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.DEFAULT_PIN_RETRY_COUNT = exports.RETRY_COUNTER_OFFSET = exports.RETRY_COUNTER_PAGE = exports.USER_NICKNAME_MAX_LENGTH = exports.USER_NICKNAME_PAGE_END = exports.USER_NICKNAME_PAGE_START = exports.MNEMONIC_MEMORY_SIZE = exports.MNEMONIC_PAGE_END = exports.MNEMONIC_TYPE_24 = exports.MNEMONIC_TYPE_21 = exports.MNEMONIC_TYPE_18 = exports.MNEMONIC_TYPE_15 = exports.MNEMONIC_TYPE_12 = exports.USER_CARD_INFO_SIZE = exports.USER_MEMORY_SIZE = exports.PAGE_AES_KEY0_START = exports.PAGE_CFG1 = exports.PAGE_CFG0 = exports.USER_CARD_INFO_PAGE_END = exports.USER_CARD_INFO_PAGE_START = exports.USER_PAGE_END = exports.USER_PAGE_START = exports.PAGE_SIZE = exports.KEY_NO_DATA_PROT = exports.CMD_AUTH_PART2 = exports.CMD_AUTH_PART1 = exports.CMD_FAST_READ = exports.CMD_WRITE = exports.CMD_READ = void 0;
+exports.DELAY = exports.SEC_MSG_ACT_MASK = exports.DEFAULT_PIN_RETRY_COUNT = exports.RETRY_COUNTER_OFFSET = exports.RETRY_COUNTER_PAGE = exports.USER_NICKNAME_MAX_LENGTH = exports.USER_NICKNAME_PAGE_END = exports.USER_NICKNAME_PAGE_START = exports.MNEMONIC_MEMORY_SIZE = exports.MNEMONIC_PAGE_END = exports.MNEMONIC_TYPE_24 = exports.MNEMONIC_TYPE_21 = exports.MNEMONIC_TYPE_18 = exports.MNEMONIC_TYPE_15 = exports.MNEMONIC_TYPE_12 = exports.USER_CARD_INFO_SIZE = exports.USER_MEMORY_SIZE = exports.PAGE_AES_KEY0_START = exports.PAGE_CFG1 = exports.PAGE_CFG0 = exports.USER_CARD_INFO_PAGE_END = exports.USER_CARD_INFO_PAGE_START = exports.USER_PAGE_END = exports.USER_PAGE_START = exports.PAGE_SIZE = exports.KEY_NO_DATA_PROT = exports.CMD_READ_SIG = exports.CMD_GET_VERSION = exports.CMD_AUTH_PART2 = exports.CMD_AUTH_PART1 = exports.CMD_FAST_READ = exports.CMD_WRITE = exports.CMD_READ = void 0;
 // ---------------------------------------------------------------------------
 // NFC command codes
 // ---------------------------------------------------------------------------
@@ -17,6 +17,10 @@ exports.CMD_FAST_READ = 0x3a;
 exports.CMD_AUTH_PART1 = 0x1a;
 /** AES authentication part 2 */
 exports.CMD_AUTH_PART2 = 0xaf;
+/** GET_VERSION command - retrieve product version info */
+exports.CMD_GET_VERSION = 0x60;
+/** READ_SIG command - read ECC originality signature */
+exports.CMD_READ_SIG = 0x3c;
 /** Data protection key slot (Key0) */
 exports.KEY_NO_DATA_PROT = 0x00;
 // ---------------------------------------------------------------------------
@@ -83,3 +87,31 @@ exports.RETRY_COUNTER_PAGE = exports.USER_PAGE_START - 1; // 0x07
 exports.RETRY_COUNTER_OFFSET = exports.PAGE_SIZE - 1;
 /** Default retry limit, restored after a successful authentication */
 exports.DEFAULT_PIN_RETRY_COUNT = 10;
+// ---------------------------------------------------------------------------
+// Secure messaging (CMAC)
+// ---------------------------------------------------------------------------
+/** SEC_MSG_ACT bit mask in CFG0 byte 0 (bit 1) */
+exports.SEC_MSG_ACT_MASK = 0x02;
+// ---------------------------------------------------------------------------
+// Platform-specific delays (ms)
+// ---------------------------------------------------------------------------
+exports.DELAY = {
+    /** Delay after requestNfcTech on Android */
+    ANDROID_POST_TECH: 300,
+    /** Delay after releaseNfcTech (normal) */
+    IOS_POST_RELEASE: 100,
+    ANDROID_POST_RELEASE: 800,
+    /** Delay after releaseNfcTech (forced, e.g. after timeout) */
+    IOS_POST_RELEASE_FORCED: 300,
+    ANDROID_POST_RELEASE_FORCED: 1000,
+    /** Delay between page writes on iOS */
+    IOS_PAGE_WRITE: 20,
+    /** Delay between AES key page writes on iOS */
+    IOS_KEY_WRITE: 10,
+    /** Delay between nickname page writes on iOS */
+    IOS_NICKNAME_WRITE: 100,
+    /** Delay between config operations on iOS */
+    IOS_CONFIG: 80,
+    /** Keep-alive frequency (every N pages) during writes */
+    KEEPALIVE_FREQ: 4,
+};

package/dist/crypto.d.ts

@@ -23,6 +23,28 @@ export declare function aesEncrypt(key: Uint8Array, data: Uint8Array, iv: Uint8A
 export declare function rotateLeft8(data: Uint8Array): Uint8Array;
 /** Compare two Uint8Arrays for equality. */
 export declare function arraysEqual(a: Uint8Array, b: Uint8Array): boolean;
+/** AES-128 ECB encrypt a single 16-byte block. */
+export declare function aesEcbEncrypt(key: Uint8Array, data: Uint8Array): Uint8Array;
+/**
+ * Generate CMAC subkeys K1 and K2 (NIST 800-38B §6.1).
+ */
+export declare function generateCmacSubkeys(key: Uint8Array): {
+    k1: Uint8Array;
+    k2: Uint8Array;
+};
+/**
+ * Compute AES-CMAC (NIST 800-38B §6.2).
+ * Returns full 16-byte MAC.
+ */
+export declare function aesCmac(key: Uint8Array, message: Uint8Array): Uint8Array;
+/**
+ * Derive SesAuthMACKey from authentication key and random numbers.
+ * (MF0AES(H)20 §8.8.1)
+ *
+ * SV2 = 5Ah||A5h||00h||01h||00h||80h||RndA[15..14]||(RndA[13..8] XOR RndB[15..10])||RndB[9..0]||RndA[7..0]
+ * SesAuthMACKey = AES-CMAC(Kx, SV2)
+ */
+export declare function deriveSessionKey(authKey: Uint8Array, rndA: Uint8Array, rndB: Uint8Array): Uint8Array;
 /**
  * Generate a 16-byte cryptographically-secure random value.
  *

package/dist/crypto.js

@@ -16,6 +16,10 @@ exports.aesDecrypt = aesDecrypt;
 exports.aesEncrypt = aesEncrypt;
 exports.rotateLeft8 = rotateLeft8;
 exports.arraysEqual = arraysEqual;
+exports.aesEcbEncrypt = aesEcbEncrypt;
+exports.generateCmacSubkeys = generateCmacSubkeys;
+exports.aesCmac = aesCmac;
+exports.deriveSessionKey = deriveSessionKey;
 exports.generateRandom16 = generateRandom16;
 const crypto_js_1 = __importDefault(require("crypto-js"));
 // ---------------------------------------------------------------------------
@@ -30,7 +34,7 @@ function passwordToAesKey(password) {
     const hash = crypto_js_1.default.SHA256(String(safePassword)).toString();
     const key = new Uint8Array(16);
     for (let i = 0; i < 16; i++) {
-        key[i] = parseInt(hash.substr(i * 2, 2), 16);
+        key[i] = parseInt(hash.substring(i * 2, i * 2 + 2), 16);
     }
     return key;
 }
@@ -46,7 +50,7 @@ function aesDecrypt(key, data, iv) {
     const hex = decrypted.toString();
     const result = new Uint8Array(16);
     for (let i = 0; i < 16; i++) {
-        result[i] = parseInt(hex.substr(i * 2, 2), 16);
+        result[i] = parseInt(hex.substring(i * 2, i * 2 + 2), 16);
     }
     return result;
 }
@@ -63,7 +67,7 @@ function aesEncrypt(key, data, iv) {
     const hex = encrypted.ciphertext.toString();
     const result = new Uint8Array(hex.length / 2);
     for (let i = 0; i < result.length; i++) {
-        result[i] = parseInt(hex.substr(i * 2, 2), 16);
+        result[i] = parseInt(hex.substring(i * 2, i * 2 + 2), 16);
     }
     return result;
 }
@@ -94,6 +98,158 @@ function arraysEqual(a, b) {
     return true;
 }
 // ---------------------------------------------------------------------------
+// AES-128 ECB (single block, for CMAC subkey generation)
+// ---------------------------------------------------------------------------
+/** AES-128 ECB encrypt a single 16-byte block. */
+function aesEcbEncrypt(key, data) {
+    const keyWords = crypto_js_1.default.lib.WordArray.create(key);
+    const dataWords = crypto_js_1.default.lib.WordArray.create(data);
+    const encrypted = crypto_js_1.default.AES.encrypt(dataWords, keyWords, {
+        mode: crypto_js_1.default.mode.ECB,
+        padding: crypto_js_1.default.pad.NoPadding,
+    });
+    const hex = encrypted.ciphertext.toString();
+    const result = new Uint8Array(16);
+    for (let i = 0; i < 16; i++) {
+        result[i] = parseInt(hex.substring(i * 2, i * 2 + 2), 16);
+    }
+    return result;
+}
+// ---------------------------------------------------------------------------
+// AES-CMAC (NIST SP 800-38B)
+// ---------------------------------------------------------------------------
+const CONST_RB = 0x87; // constant for 128-bit block cipher
+/** Left-shift a 16-byte array by 1 bit. */
+function shiftLeft1(data) {
+    const result = new Uint8Array(16);
+    let carry = 0;
+    for (let i = 15; i >= 0; i--) {
+        const shifted = (data[i] << 1) | carry;
+        result[i] = shifted & 0xff;
+        carry = (data[i] & 0x80) ? 1 : 0;
+    }
+    return result;
+}
+/** XOR two 16-byte arrays. */
+function xor16(a, b) {
+    const result = new Uint8Array(16);
+    for (let i = 0; i < 16; i++) {
+        result[i] = a[i] ^ b[i];
+    }
+    return result;
+}
+/**
+ * Generate CMAC subkeys K1 and K2 (NIST 800-38B §6.1).
+ */
+function generateCmacSubkeys(key) {
+    const zero = new Uint8Array(16);
+    const L = aesEcbEncrypt(key, zero);
+    let k1 = shiftLeft1(L);
+    if (L[0] & 0x80) {
+        k1[15] ^= CONST_RB;
+    }
+    let k2 = shiftLeft1(k1);
+    if (k1[0] & 0x80) {
+        k2[15] ^= CONST_RB;
+    }
+    return { k1, k2 };
+}
+/**
+ * Compute AES-CMAC (NIST 800-38B §6.2).
+ * Returns full 16-byte MAC.
+ */
+function aesCmac(key, message) {
+    const { k1, k2 } = generateCmacSubkeys(key);
+    const n = message.length === 0 ? 1 : Math.ceil(message.length / 16);
+    const lastBlockComplete = message.length > 0 && message.length % 16 === 0;
+    // Prepare last block
+    const lastBlock = new Uint8Array(16);
+    if (lastBlockComplete) {
+        // Complete: XOR with K1
+        const offset = (n - 1) * 16;
+        for (let i = 0; i < 16; i++) {
+            lastBlock[i] = message[offset + i] ^ k1[i];
+        }
+    }
+    else {
+        // Incomplete: pad with 10* then XOR with K2
+        const offset = (n - 1) * 16;
+        const remaining = message.length - offset;
+        for (let i = 0; i < 16; i++) {
+            if (i < remaining) {
+                lastBlock[i] = message[offset + i];
+            }
+            else if (i === remaining) {
+                lastBlock[i] = 0x80;
+            }
+            else {
+                lastBlock[i] = 0x00;
+            }
+        }
+        for (let i = 0; i < 16; i++) {
+            lastBlock[i] ^= k2[i];
+        }
+    }
+    // CBC-MAC
+    const iv0 = new Uint8Array(16);
+    let x = iv0;
+    for (let i = 0; i < n - 1; i++) {
+        const block = new Uint8Array(message.slice(i * 16, (i + 1) * 16));
+        const y = xor16(x, block);
+        x = aesEcbEncrypt(key, y);
+    }
+    const y = xor16(x, lastBlock);
+    return aesEcbEncrypt(key, y);
+}
+/**
+ * Derive SesAuthMACKey from authentication key and random numbers.
+ * (MF0AES(H)20 §8.8.1)
+ *
+ * SV2 = 5Ah||A5h||00h||01h||00h||80h||RndA[15..14]||(RndA[13..8] XOR RndB[15..10])||RndB[9..0]||RndA[7..0]
+ * SesAuthMACKey = AES-CMAC(Kx, SV2)
+ */
+function deriveSessionKey(authKey, rndA, rndB) {
+    const sv2 = new Uint8Array(32);
+    // Header: 5Ah A5h 00h 01h 00h 80h
+    sv2[0] = 0x5a;
+    sv2[1] = 0xa5;
+    sv2[2] = 0x00;
+    sv2[3] = 0x01;
+    sv2[4] = 0x00;
+    sv2[5] = 0x80;
+    // RndA[15..14] (2 bytes)
+    sv2[6] = rndA[15];
+    sv2[7] = rndA[14];
+    // RndA[13..8] XOR RndB[15..10] (6 bytes)
+    sv2[8] = rndA[13] ^ rndB[15];
+    sv2[9] = rndA[12] ^ rndB[14];
+    sv2[10] = rndA[11] ^ rndB[13];
+    sv2[11] = rndA[10] ^ rndB[12];
+    sv2[12] = rndA[9] ^ rndB[11];
+    sv2[13] = rndA[8] ^ rndB[10];
+    // RndB[9..0] (10 bytes)
+    sv2[14] = rndB[9];
+    sv2[15] = rndB[8];
+    sv2[16] = rndB[7];
+    sv2[17] = rndB[6];
+    sv2[18] = rndB[5];
+    sv2[19] = rndB[4];
+    sv2[20] = rndB[3];
+    sv2[21] = rndB[2];
+    sv2[22] = rndB[1];
+    sv2[23] = rndB[0];
+    // RndA[7..0] (8 bytes)
+    sv2[24] = rndA[7];
+    sv2[25] = rndA[6];
+    sv2[26] = rndA[5];
+    sv2[27] = rndA[4];
+    sv2[28] = rndA[3];
+    sv2[29] = rndA[2];
+    sv2[30] = rndA[1];
+    sv2[31] = rndA[0];
+    return aesCmac(authKey, sv2);
+}
+// ---------------------------------------------------------------------------
 // Secure random
 // ---------------------------------------------------------------------------
 /**
@@ -104,18 +260,12 @@ function arraysEqual(a, b) {
  * `Math.random()` with a console warning if the API is missing.
  */
 function generateRandom16() {
-    const arr = new Uint8Array(16);
-    if (typeof globalThis.crypto !== 'undefined' &&
-        typeof globalThis.crypto.getRandomValues === 'function') {
-        globalThis.crypto.getRandomValues(arr);
-    }
-    else {
-        console.warn('[nfc-litecard] crypto.getRandomValues is not available. ' +
-            'Falling back to Math.random() which is NOT cryptographically secure. ' +
-            'Consider adding the react-native-get-random-values polyfill.');
-        for (let i = 0; i < 16; i++) {
-            arr[i] = Math.floor(Math.random() * 256);
-        }
+    if (typeof globalThis.crypto === 'undefined' ||
+        typeof globalThis.crypto.getRandomValues !== 'function') {
+        throw new Error('[nfc-litecard] crypto.getRandomValues is not available. ' +
+            'Please add the react-native-get-random-values polyfill or use Hermes >= 0.72.');
     }
+    const arr = new Uint8Array(16);
+    globalThis.crypto.getRandomValues(arr);
     return arr;
 }

package/dist/index.d.ts

@@ -3,8 +3,8 @@
  *
  * NFC read/write library for MIFARE Ultralight AES (LiteCard mnemonic storage).
  */
-export { ResultCode, type NfcResult, nfcResultRetryCountExhausted, } from './types';
-export { checkCard, readMnemonic, readUserNickname, readMnemonicRetryCount, resetRetryCountTo10, cardInfoToJson, } from './reader';
+export { NfcStatusCode, type NfcResult, nfcResultRetryCountExhausted, } from './types';
+export { checkCard, readMnemonic, readUserNickname, readMnemonicRetryCount, resetRetryCountTo10, cardInfoToJson, getCardVersion, readOriginality, } from './reader';
 export { initializeCard, updateCard, updatePassword, writeUserNickname, resetCard, } from './writer';
 export { isNfcOperationLocked, releaseNfcOperationLock, markNfcOperationCancelledByCleanup, consumeNfcOperationCancelledByCleanup, getNfcOperationCancelledByCleanupTimestamp, clearNfcOperationCancelledByCleanup, } from './nfc-core';
 export { DEFAULT_PIN_RETRY_COUNT } from './constants';

package/dist/index.js

@@ -5,12 +5,12 @@
  * NFC read/write library for MIFARE Ultralight AES (LiteCard mnemonic storage).
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.DEFAULT_PIN_RETRY_COUNT = exports.clearNfcOperationCancelledByCleanup = exports.getNfcOperationCancelledByCleanupTimestamp = exports.consumeNfcOperationCancelledByCleanup = exports.markNfcOperationCancelledByCleanup = exports.releaseNfcOperationLock = exports.isNfcOperationLocked = exports.resetCard = exports.writeUserNickname = exports.updatePassword = exports.updateCard = exports.initializeCard = exports.cardInfoToJson = exports.resetRetryCountTo10 = exports.readMnemonicRetryCount = exports.readUserNickname = exports.readMnemonic = exports.checkCard = exports.nfcResultRetryCountExhausted = exports.ResultCode = void 0;
+exports.DEFAULT_PIN_RETRY_COUNT = exports.clearNfcOperationCancelledByCleanup = exports.getNfcOperationCancelledByCleanupTimestamp = exports.consumeNfcOperationCancelledByCleanup = exports.markNfcOperationCancelledByCleanup = exports.releaseNfcOperationLock = exports.isNfcOperationLocked = exports.resetCard = exports.writeUserNickname = exports.updatePassword = exports.updateCard = exports.initializeCard = exports.readOriginality = exports.getCardVersion = exports.cardInfoToJson = exports.resetRetryCountTo10 = exports.readMnemonicRetryCount = exports.readUserNickname = exports.readMnemonic = exports.checkCard = exports.nfcResultRetryCountExhausted = exports.NfcStatusCode = void 0;
 // ---------------------------------------------------------------------------
-// Unified types & constants (consumers can use a single ResultCode)
+// Unified types & constants (consumers can use a single NfcStatusCode)
 // ---------------------------------------------------------------------------
 var types_1 = require("./types");
-Object.defineProperty(exports, "ResultCode", { enumerable: true, get: function () { return types_1.ResultCode; } });
+Object.defineProperty(exports, "NfcStatusCode", { enumerable: true, get: function () { return types_1.NfcStatusCode; } });
 Object.defineProperty(exports, "nfcResultRetryCountExhausted", { enumerable: true, get: function () { return types_1.nfcResultRetryCountExhausted; } });
 // ---------------------------------------------------------------------------
 // Reader API
@@ -22,6 +22,8 @@ Object.defineProperty(exports, "readUserNickname", { enumerable: true, get: func
 Object.defineProperty(exports, "readMnemonicRetryCount", { enumerable: true, get: function () { return reader_1.readMnemonicRetryCount; } });
 Object.defineProperty(exports, "resetRetryCountTo10", { enumerable: true, get: function () { return reader_1.resetRetryCountTo10; } });
 Object.defineProperty(exports, "cardInfoToJson", { enumerable: true, get: function () { return reader_1.cardInfoToJson; } });
+Object.defineProperty(exports, "getCardVersion", { enumerable: true, get: function () { return reader_1.getCardVersion; } });
+Object.defineProperty(exports, "readOriginality", { enumerable: true, get: function () { return reader_1.readOriginality; } });
 // ---------------------------------------------------------------------------
 // Writer API
 // ---------------------------------------------------------------------------

package/dist/nfc-core.d.ts

@@ -23,9 +23,16 @@ export declare function markNfcOperationCancelledByCleanup(): void;
 export declare function consumeNfcOperationCancelledByCleanup(): boolean;
 export declare function getNfcOperationCancelledByCleanupTimestamp(): number;
 export declare function clearNfcOperationCancelledByCleanup(): void;
+/** Clear CMAC session state. Called on NFC release. */
+export declare function clearCmacSession(): void;
 /**
  * Send a command to the NFC tag and return the response.
  *
+ * When CMAC session is active:
+ * - Appends 8-byte CMAC to outgoing commands
+ * - Verifies and strips 8-byte CMAC from responses
+ * - Increments CmdCtr after each command-response pair
+ *
  * Retries: Android up to 2 retries (3 total), iOS up to 1 retry (2 total).
  */
 export declare function transceive(command: number[], _timeoutMs?: number, retryCount?: number): Promise<number[]>;
@@ -53,6 +60,8 @@ export declare function releaseNfcTech(forceLongDelay?: boolean): Promise<void>;
  * @throws AUTH_INVALID_RESPONSE / AUTH_WRONG_PASSWORD / AUTH_VERIFY_FAILED
  */
 export declare function authenticate(key: Uint8Array): Promise<void>;
+/** FAST_READ pages 0x08–0x27 (user memory). */
+export declare function readUserMemory(): Promise<Uint8Array>;
 /**
  * Decrement the on-card retry counter by 1 (clamped to 0).
  * Must be called within an active NFC session (between requestNfcTech and releaseNfcTech).

package/dist/nfc-core.js

@@ -53,10 +53,12 @@ exports.markNfcOperationCancelledByCleanup = markNfcOperationCancelledByCleanup;
 exports.consumeNfcOperationCancelledByCleanup = consumeNfcOperationCancelledByCleanup;
 exports.getNfcOperationCancelledByCleanupTimestamp = getNfcOperationCancelledByCleanupTimestamp;
 exports.clearNfcOperationCancelledByCleanup = clearNfcOperationCancelledByCleanup;
+exports.clearCmacSession = clearCmacSession;
 exports.transceive = transceive;
 exports.requestNfcTech = requestNfcTech;
 exports.releaseNfcTech = releaseNfcTech;
 exports.authenticate = authenticate;
+exports.readUserMemory = readUserMemory;
 exports.decrementRetryCountInSession = decrementRetryCountInSession;
 exports.writeRetryCountInSession = writeRetryCountInSession;
 const react_native_nfc_manager_1 = __importStar(require("react-native-nfc-manager"));
@@ -117,23 +119,93 @@ function clearNfcOperationCancelledByCleanup() {
     nfcCancelledByCleanupTimestamp = 0;
 }
 // ===========================================================================
+// CMAC secure messaging session state
+// ===========================================================================
+let cmacSessionKey = null;
+let cmacCmdCtr = 0;
+/** Clear CMAC session state. Called on NFC release. */
+function clearCmacSession() {
+    cmacSessionKey = null;
+    cmacCmdCtr = 0;
+}
+/**
+ * Compute the 8-byte truncated CMAC for an NFC command.
+ * Input: CmdCtr (2 bytes LE) || CmdCode (1 byte) || Arguments
+ */
+function computeCommandCmac(sessionKey, cmdCtr, command) {
+    const ctrLo = cmdCtr & 0xff;
+    const ctrHi = (cmdCtr >> 8) & 0xff;
+    const input = new Uint8Array(2 + command.length);
+    input[0] = ctrLo;
+    input[1] = ctrHi;
+    input.set(command, 2);
+    const mac = (0, crypto_1.aesCmac)(sessionKey, input);
+    return mac.slice(0, 8); // truncate to 8 bytes
+}
+/**
+ * Compute the 8-byte truncated CMAC for an NFC response.
+ * Input: CmdCtr (2 bytes LE) || ResponseData
+ */
+function computeResponseCmac(sessionKey, cmdCtr, responseData) {
+    const ctrLo = cmdCtr & 0xff;
+    const ctrHi = (cmdCtr >> 8) & 0xff;
+    const input = new Uint8Array(2 + responseData.length);
+    input[0] = ctrLo;
+    input[1] = ctrHi;
+    input.set(responseData, 2);
+    const mac = (0, crypto_1.aesCmac)(sessionKey, input);
+    return mac.slice(0, 8);
+}
+// ===========================================================================
 // Low-level NFC transceive
 // ===========================================================================
 /**
  * Send a command to the NFC tag and return the response.
  *
+ * When CMAC session is active:
+ * - Appends 8-byte CMAC to outgoing commands
+ * - Verifies and strips 8-byte CMAC from responses
+ * - Increments CmdCtr after each command-response pair
+ *
  * Retries: Android up to 2 retries (3 total), iOS up to 1 retry (2 total).
  */
 async function transceive(command, _timeoutMs = 2000, retryCount = 0) {
+    // Build the actual command to send
+    let cmdToSend = command;
+    if (cmacSessionKey) {
+        const mac = computeCommandCmac(cmacSessionKey, cmacCmdCtr, command);
+        cmdToSend = [...command, ...Array.from(mac)];
+    }
     try {
         const result = react_native_1.Platform.OS === 'ios'
-            ? await react_native_nfc_manager_1.default.sendMifareCommandIOS(command)
-            : await react_native_nfc_manager_1.default.nfcAHandler.transceive(command);
+            ? await react_native_nfc_manager_1.default.sendMifareCommandIOS(cmdToSend)
+            : await react_native_nfc_manager_1.default.nfcAHandler.transceive(cmdToSend);
+        if (cmacSessionKey && result && result.length >= 8) {
+            // Response has CMAC appended: split data and MAC
+            const dataLen = result.length - 8;
+            const responseData = result.slice(0, dataLen);
+            const responseMac = result.slice(dataLen);
+            // Verify response CMAC (constant-time comparison)
+            const expectedMac = computeResponseCmac(cmacSessionKey, cmacCmdCtr, responseData);
+            let macValid = true;
+            for (let i = 0; i < 8; i++) {
+                macValid = macValid && (responseMac[i] === expectedMac[i]);
+            }
+            if (!macValid) {
+                throw new Error('CMAC_VERIFY_FAILED');
+            }
+            cmacCmdCtr++;
+            return responseData;
+        }
+        if (cmacSessionKey) {
+            // ACK-only response (e.g. WRITE command) — MAC replaces ACK
+            cmacCmdCtr++;
+        }
         return result;
     }
     catch (error) {
         const maxRetries = react_native_1.Platform.OS === 'ios' ? 1 : 2;
-        if (retryCount < maxRetries) {
+        if (retryCount < maxRetries && error?.message !== 'CMAC_VERIFY_FAILED') {
             const wait = 200 * (retryCount + 1);
             await new Promise(r => setTimeout(r, wait));
             return transceive(command, _timeoutMs, retryCount + 1);
@@ -158,7 +230,7 @@ async function requestNfcTech() {
         await react_native_nfc_manager_1.default.requestTechnology(react_native_nfc_manager_1.NfcTech.NfcA);
     }
     if (react_native_1.Platform.OS === 'android') {
-        await new Promise(r => setTimeout(r, 300));
+        await new Promise(r => setTimeout(r, constants_1.DELAY.ANDROID_POST_TECH));
     }
     else {
         // iOS: probe connection availability
@@ -175,11 +247,12 @@ async function requestNfcTech() {
  * @param forceLongDelay Use a longer post-release delay (e.g. after timeout / tag-lost).
  */
 async function releaseNfcTech(forceLongDelay = false) {
+    clearCmacSession();
     try {
         await react_native_nfc_manager_1.default.cancelTechnologyRequest();
         const delay = react_native_1.Platform.OS === 'ios'
-            ? (forceLongDelay ? 300 : 100)
-            : (forceLongDelay ? 1000 : 800);
+            ? (forceLongDelay ? constants_1.DELAY.IOS_POST_RELEASE_FORCED : constants_1.DELAY.IOS_POST_RELEASE)
+            : (forceLongDelay ? constants_1.DELAY.ANDROID_POST_RELEASE_FORCED : constants_1.DELAY.ANDROID_POST_RELEASE);
         await new Promise(r => setTimeout(r, delay));
     }
     catch (error) {
@@ -202,6 +275,9 @@ async function releaseNfcTech(forceLongDelay = false) {
  * @throws AUTH_INVALID_RESPONSE / AUTH_WRONG_PASSWORD / AUTH_VERIFY_FAILED
  */
 async function authenticate(key) {
+    // Clear any previous CMAC session before starting auth
+    // (auth commands themselves are never CMAC-protected)
+    clearCmacSession();
     const iv0 = new Uint8Array(16);
     // Step 1
     const response1 = await transceive([constants_1.CMD_AUTH_PART1, constants_1.KEY_NO_DATA_PROT]);
@@ -224,15 +300,14 @@ async function authenticate(key) {
     ekRndAB.set(ekPart1, 0);
     ekRndAB.set(ekPart2, 16);
     // Step 5
-    let response2 = null;
+    let response2;
     try {
         response2 = await transceive([constants_1.CMD_AUTH_PART2, ...Array.from(ekRndAB)]);
     }
     catch (_) {
-        // AUTH_PART2 transceive failure usually means wrong password
         throw new Error('AUTH_WRONG_PASSWORD');
     }
-    if (!response2 || response2.length < 17 || response2[0] !== 0x00) {
+    if (response2.length < 17 || response2[0] !== 0x00) {
         throw new Error('AUTH_WRONG_PASSWORD');
     }
     // Step 6 – verify RndA'
@@ -242,6 +317,19 @@ async function authenticate(key) {
     if (!(0, crypto_1.arraysEqual)(rndARot, expectedRndARot)) {
         throw new Error('AUTH_VERIFY_FAILED');
     }
+    // Step 7 – derive CMAC session key and enable secure messaging
+    cmacSessionKey = (0, crypto_1.deriveSessionKey)(key, rndA, rndB);
+    cmacCmdCtr = 0;
+}
+// ===========================================================================
+// Shared memory read helpers
+// ===========================================================================
+/** FAST_READ pages 0x08–0x27 (user memory). */
+async function readUserMemory() {
+    const response = await transceive([constants_1.CMD_FAST_READ, constants_1.USER_PAGE_START, constants_1.USER_PAGE_END]);
+    if (!response || response.length < constants_1.USER_MEMORY_SIZE)
+        throw new Error('READ_FAILED');
+    return new Uint8Array(response.slice(0, constants_1.USER_MEMORY_SIZE));
 }
 // ===========================================================================
 // PIN retry-counter session helpers

package/dist/reader.d.ts

@@ -12,9 +12,9 @@
  * Based on MIFARE Ultralight AES (MF0AES(H)20) datasheet.
  */
 import { DEFAULT_PIN_RETRY_COUNT } from './constants';
-import { ResultCode, type NfcResult } from './types';
+import { NfcStatusCode, type NfcResult } from './types';
 import { isNfcOperationLocked, releaseNfcOperationLock, markNfcOperationCancelledByCleanup, consumeNfcOperationCancelledByCleanup, getNfcOperationCancelledByCleanupTimestamp, clearNfcOperationCancelledByCleanup } from './nfc-core';
-export { ResultCode, type NfcResult, isNfcOperationLocked, releaseNfcOperationLock, markNfcOperationCancelledByCleanup, consumeNfcOperationCancelledByCleanup, getNfcOperationCancelledByCleanupTimestamp, clearNfcOperationCancelledByCleanup, DEFAULT_PIN_RETRY_COUNT, };
+export { NfcStatusCode, type NfcResult, isNfcOperationLocked, releaseNfcOperationLock, markNfcOperationCancelledByCleanup, consumeNfcOperationCancelledByCleanup, getNfcOperationCancelledByCleanupTimestamp, clearNfcOperationCancelledByCleanup, DEFAULT_PIN_RETRY_COUNT, };
 declare function parseCardInfo(data: Uint8Array): {
     version: number;
     cardType: number;
@@ -85,3 +85,14 @@ export declare function readUserNickname(password?: string, onCardIdentified?: (
 export declare function readMnemonicRetryCount(onCardIdentified?: () => void): Promise<NfcResult>;
 /** Reset the PIN retry counter to the default value (10). */
 export declare function resetRetryCountTo10(onCardIdentified?: () => void): Promise<NfcResult>;
+/**
+ * Read card product version info (GET_VERSION command).
+ * No authentication required.
+ */
+export declare function getCardVersion(onCardIdentified?: () => void): Promise<NfcResult>;
+/**
+ * Read the ECC originality signature (READ_SIG command).
+ * Verifies the card is a genuine NXP product.
+ * No authentication required (unless Random ID is enabled).
+ */
+export declare function readOriginality(onCardIdentified?: () => void): Promise<NfcResult>;