+ $basedom = parse_xml_string($xml);
+
+ if($basedom)
+ logger('parsed dom');
+
+ $atom = $basedom->children(NAMESPACE_ATOM1);
+
+ logger('atom: ' . count($atom));
+ $encrypted_header = json_decode(base64_decode($atom->encrypted_header));
+
+ print_r($encrypted_header);
+
+ $encrypted_aes_key_bundle = base64_decode($encrypted_header->aes_key);
+ $ciphertext = base64_decode($encrypted_header->ciphertext);
+
+ logger('encrypted_aes: ' . print_r($encrypted_aes_key_bundle,true));
+ logger('ciphertext: ' . print_r($ciphertext,true));
+
+ $outer_key_bundle = '';
+ openssl_private_decrypt($encrypted_aes_key_bundle,$outer_key_bundle,$localprvkey);
+
+ logger('outer_bundle: ' . print_r($outer_key_bundle,true));
+
+ $j_outer_key_bundle = json_decode($outer_key_bundle);
+
+ $outer_iv = base64_decode($j_outer_key_bundle->iv);
+ $outer_key = base64_decode($j_outer_key_bundle->key);
+
+ $decrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $outer_key, $ciphertext, MCRYPT_MODE_CBC, $outer_iv);
+
+ $decrypted = pkcs5_unpad($decrypted);
+
+ logger('decrypted: ' . print_r($decrypted,true));
+
+ /**
+ * $decrypted now contains something like
+ *
+ * <decrypted_header>
+ * <iv>8e+G2+ET8l5BPuW0sVTnQw==</iv>
+ * <aes_key>UvSMb4puPeB14STkcDWq+4QE302Edu15oaprAQSkLKU=</aes_key>
+ * <author>
+ * <name>Ryan Hughes</name>
+ * <uri>acct:galaxor@diaspora.pirateship.org</uri>
+ * </author>
+ * </decrypted_header>
+ */
+
+ $idom = parse_xml_string($decrypted,false);