-- encrypt a secret to multiple recipients

-- run with arguments:
--  -a -k crypt-to-multi.keys

-- inside KEYS is a list of names and public keys encoded with b58; it
-- returns a list of recipients and encrypted secrets for each and the
-- sender's public key
keyring ='ED25519')

secret = str(DATA)

keys = JSON.decode(KEYS)

-- this is our own secret key, combined with the recipient's public
-- key to obtain a session key
keyring:private( url64(keys.keyring.secret) )

res = {}

-- loop through all recipients
for name,pubkey in pairs(keys.recipients) do
   -- calculate the session key
   local pub ='ed25519')
   session = keyring:session(pub)
   iv = O.random(16)

   out = { header = "encoded using zenroom " .. VERSION.original}
   -- encrypt the message with the session key
   out.text, out.checksum =
	  ECDH.aead_encrypt(session, secret, iv, out.header)

   -- insert results in final json array
   res[name] = url64( JSON.encode(out) )

-- return the json array
generated by LDoc 1.4.3 Last updated 2019-12-26 19:52:00