192-bit AES encryption is misdetected as 256-bit

Question

192-bit AES encryption is misdetected as 256-bit

Closed this issue a year ago · 3 comments

zip_file.dart currently contains the following:

    if (_aesHeader!.encryptionStrength == 1) {
      // 128-bit
      salt = input.readBytes(8).toUint8List();
      keySize = 16;
    } else if (_aesHeader!.encryptionStrength == 1) {
      // 192-bit
      salt = input.readBytes(12).toUint8List();
      keySize = 24;
    } else {
      // 256-bit
      salt = input.readBytes(16).toUint8List();
      keySize = 32;
    }

Look at how the if and the else if have the same condition: That means that the else if can never be true, so 192-bit encryption gets processed as 256-bit encryption.

Answer 1 · 2023-05-09T23:50:16.000Z

Yup. Looks like someone got lazy with copy/paste. I'll get that fixed up shortly.

Answer 2 · 2023-05-10T03:33:53.000Z

It's fixed in Git now. I'll try to get to pushing a release with the fix when I get another free moment.

Answer 3 · 2023-10-09T00:59:19.000Z

Thank you!