Skip to main content

Airlock

cortex_airlock

Struct Airlock 

Source 
pub struct Airlock { /* private fields */ }
Expand description

The Airlock — zero plaintext lifetime processing

All data processing happens within a closure. Plaintext exists ONLY inside the closure scope. The airlock:

  1. Allocates mlock’d memory (never swapped to disk)
  2. Decrypts data into the locked buffer
  3. Runs the processing closure
  4. Captures the encrypted output
  5. Zeroizes all plaintext memory on exit

Implementations§

Source§

impl Airlock

Source

pub fn new(config: AirlockConfig) -> Self

Source

pub fn with_defaults() -> Self

Source

pub fn process<F, R>( &self, input: &[u8], actor: &str, jis_level: u8, f: F, ) -> CortexResult<(R, AirlockSession)>
where F: FnOnce(&[u8]) -> CortexResult<R>,

Process data within the airlock. The closure receives plaintext and must return the processed result. All plaintext is wiped after the closure exits.

Returns: (processed_output, audit_session)

Source

pub fn process_chunks<F, R>( &self, chunks: &[(Vec<u8>, u8)], actor: &str, actor_jis_level: u8, f: F, ) -> CortexResult<(Vec<R>, AirlockSession)>
where F: Fn(&[u8]) -> CortexResult<R>,

Process multiple chunks, filtering by JIS level. Returns only chunks the actor is authorized to access.

Source

pub fn audit_token(&self, session: &AirlockSession) -> TibetToken

Generate a TIBET audit token from an airlock session

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more