Expand description
CommitReader: encapsulates the commit→metadata→shard key derivation chain.
Makes it structurally impossible to use the wrong key for metadata/shard
decryption. Replaces the manual decrypt_commit → derive_scoped_key →
decrypt_blob_*_key_fallback pattern.
§Security
CommitReader holds the per-commit content key. Methods use the content key
for metadata/shard decryption. Wrapped shard keys are unwrapped with the
content key or ancestor keys.
Structs§
- Commit
Reader - Encapsulates the key derivation chain for reading a commit’s objects.
Functions§
- decrypt_
object - Decrypt a blob with VD01 envelope format.
- decrypt_
object_ parse - Decrypt a blob and parse a CBOR-encoded type with VD01 envelope format.
- decrypt_
object_ raw - Decrypt a blob to raw bytes with VD01 envelope format.
- decrypt_
shard_ data - Decrypt a shard blob with wrapped key support.