docs: rewrite mdBook documentation for v2 architecture

Update 25+ files and add 6 new pages to reflect the v2 migration from
Cap'n Proto to Protobuf framing over QUIC. Integrates SDK and Operations
docs into the mdBook, restructures SUMMARY.md, and rewrites the wire
format, architecture, and protocol sections with accurate v2 content.

docs/src/roadmap/milestones.md

@@ -17,7 +17,7 @@ for what that means in practice.
 | M4 | Group CLI Subcommands | **Complete** | Persistent CLI (create-group, invite, join, send, recv), OPAQUE login |
 | M5 | Multi-party Groups | **Complete** | N > 2 members, Commit fan-out, send --all, epoch sync |
 | M6 | Persistence | **Complete** | SQLite/SQLCipher, migrations, durable server + client state |
-| M7 | Post-quantum | **Next** | PQ hybrid for MLS/HPKE (X25519 + ML-KEM-768) |
+| M7 | Post-quantum | **Complete** | PQ hybrid for MLS/HPKE (X25519 + ML-KEM-768) |
 
 ---
 
@@ -129,14 +129,13 @@ optional follow-ups.
 
 **Goal:** Server survives restart. Client state persists across sessions.
 
-**Deliverables:** SQLite/SQLCipher via rusqlite, `migrations/` directory and
-migration runner; client state file and DiskKeyStore (encrypted QPCE optional).
-See [Future Research: SQLCipher](future-research.md#storage--persistence) for
-encrypted-at-rest options.
+**Deliverables:** SQLCipher via rusqlite (bundled-sqlcipher feature), `migrations/`
+directory and migration runner; client state file and DiskKeyStore with
+Argon2id key derivation and ChaCha20-Poly1305 encryption at rest.
 
 ---
 
-## M7 -- Post-quantum (Next)
+## M7 -- Post-quantum (Complete)
 
 **Goal:** Replace the MLS crypto backend with a hybrid X25519 + ML-KEM-768 KEM,
 providing post-quantum confidentiality for all group key material.