Need help with password-encrypted JSON export

Hey guys, I need help understanding the format of the password-encrypted JSON export.

{
  "encrypted": true,
  "passwordProtected": true,
  "salt": ...,
  "kdfType": 0,
  "kdfIterations": 600000,
  "encKeyValidation_DO_NOT_EDIT": ...,
  "data": ...
}

I assume kdfType=0 refers to PBKDF2 + SHA256. It looks like salt, encKeyValidation_DO_NOT_EDIT and data are base64 encoded. What I cannot find is:

  • what is the key length?
  • are there additional steps generating the key?
  • how is the key validated?
  • which encryption method/mode is used?

Any help is appreciated.

Topic can be closed. No longer relevant for me.