Skip to content
This repository has been archived by the owner on Aug 14, 2018. It is now read-only.
/ kvgossip Public archive

Distributed key/value store on top of Serf, using RSA keys for authentication.

0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

paralin/kvgossip

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

51 Commits
agent
agent
 
 
client
client
 
 
cmd/kvgossip
cmd/kvgossip
 
 
ctl
ctl
 
 
ctlserver
ctlserver
 
 
data
data
 
 
db
db
 
 
filter
filter
 
 
grant
grant
 
 
key
key
 
 
serf
serf
 
 
sync
sync
 
 
tx
tx
 
 
util
util
 
 
version
version
 
 
.gitignore
.gitignore
 
 
Dockerfile
Dockerfile
 
 
Dockerfile.arm
Dockerfile.arm
 
 
GRANT.md
GRANT.md
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 

Repository files navigation

K/V Gossip: Distributed Configuration

Key-Value Gossip is a mechanism for maintaining a key/value tree of arbitrary data. Each key + value pair is signed by an entity authorized to modify it. Entities can make changes to streams by minting a new value and broadcasting the K/V pair over the network.

An entity can authorize another entity to edit a key using a grant. The agent starts with a root public key that has permissions to read/write everything and grant anything. An entity can only grant someone else to edit a subset of their own grant pool.

Keys are paths, and grants are path globs. An example key is /my/key/state, an example pattern is /my/**/sta*.

K/V entries are timestamped, and newer timestamps always take precedence over older timestamps.

An entity can issue a grant revocation. This revocation prevents a node from accepting that grant anymore. Revocations will propagate across the network only when a transaction is rejected. Therefore, it is up to the user to propagate revocations reliably if necessary.

When the agent starts, it broadcasts its own local tree hash over a Serf query. Nodes that disagree will respond with their own local tree hashes. The agent then connects to each of the nodes that disagree, and the two nodes come to an agreement of the true value of the key.

When a grant is revoked, we must iterate through all the key/value metadata objects, and delete any revoked grants from their grant pools. Next, the grant authorization should be verified again. If the verification now comes back as unsatisfied, we should unset the field completely.

Client

The KVGossip client keeps a list of key subscriptions, and keeps those keys up to date locally. It does so by maintaining a persistent state of these keys through different connections.

Users might be interested to know:

  • Current remote value
  • If the current remote value is dirty.
  • When the value changes.
  • When the dirtiness changes.

On a client object, one can call SubscribeKey to return a subscription object for a key. This subscription object has a function called unsubscribe which will terminate the subscription. Once a key returns to 0 subscriptions the system will cull the interest (after a short delay) and forget the key's value.

The subscription object has functions to return Channels to get the new value, the new dirtiness value, etc.

About

Distributed key/value store on top of Serf, using RSA keys for authentication.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases 2

v1.0.0 Latest
Dec 1, 2016
+ 1 release

Packages

 
 
 

Languages