DynaRust is a high-performance, distributed key-value store built in Rust. Designed for massive concurrency, reliable consistency, and seamless scalability, it leverages lock-free concurrent storage, robust binary internal replication, causal consistency via Vector Clocks, and a SWIM-inspired gossip protocol to deliver a fault‑tolerant, horizontally scalable datastore.
Optimized for modern hardware, a single node can sustain peak traffic of up to 10,000+ live connections with sub-5 ms latency for real-time updates. Cluster capacity scales linearly by adding more nodes.
| Metric | Implementation Details |
|---|---|
| Storage Engine | DashMap (Granular Shard-based Locking) |
| Internal Protocol | Bincode (Fast, Compact Binary Serialization) |
| Consistency Model | Eventual Consistency via Vector Clocks |
| Replication Strategy | Consistent Hashing Ring with Virtual Nodes |
| Reliability | Read Repair + Exponential Backoff Retries |
| Gossip Protocol | SWIM-inspired ( |
Main Node Running:
- Massive Concurrency: Utilizes granular, shard-based locking (via
DashMap) instead of globalRwLocks, preventing bottlenecks during simultaneous read/write operations across different tables and keys. - Causal Consistency: Employs Vector Clocks for version tracking, accurately monitoring causality across distributed nodes and automatically resolving concurrent updates to ensure data integrity.
- Intelligent Replication & Reliability:
- Consistent Hashing: Minimizes data remapping when nodes dynamically join or leave the cluster.
- Read Repair:
GETrequests check replicas; stale versions are automatically repaired in the background. - Binary Replication: Node-to-node communication uses Bincode, reducing CPU usage and network saturation.
- Scalable Membership: Network overhead for health checks remains constant regardless of cluster size via an indirect-probing SWIM gossip protocol.
- Real-Time Updates: Clients can subscribe to keys via Server-Sent Events (SSE) to receive instant change notifications.
- High Availability & Persistence: Automated failover routing, periodic JSON snapshots, and Write-Ahead Logging (WAL) to a local
storage.dbensure data durability.
Security is enforced from user access down to node-to-node transport:
- Access Control: All
PUT,PATCH, andDELETEoperations require a JWT Bearer token. Only the verified owner of a record can modify or delete it. - Cluster Authentication: * Each node must have a
JWT_SECRETconfigured to start.- Nodes must present a shared secret (
CLUSTER_SECRETenvironment variable) to join the cluster. - A SHA256 encryption key is embedded at compile time (via
bash encryption.sh && cargo build --release).
- Nodes must present a shared secret (
- Transport Security: Native HTTPS mode is supported. Run
bash cert.shto generate a.p12certificate and setDYNA_MODE=https.
We provide an official, highly-optimized async Rust client for seamlessly interacting with your DynaRust cluster: dynarust_client on crates.io.
The SDK provides a wrapper around the REST API, allowing you to interact with the cluster using strongly-typed Rust structs, automatic JSON deserialization, and async/await syntax. It includes built-in JWT authentication management and native streaming for Server-Sent Events (SSE).
Installation:
cargo add dynarust_clientQuick Usage Example:
use dynarust_client::models::{DynaClient, DynaError};
use serde::{Deserialize, Serialize};
#[derive(Debug, Serialize, Deserialize, Clone)]
struct UserProfile {
username: String,
level: u32,
is_active: bool,
}
#[tokio::main]
async fn main() -> Result<(), DynaError> {
let client = DynaClient::new("http://localhost:6660");
// Authenticate (auto-saves JWT for future requests)
client.auth("player_1", "super_secret_password").await?;
// Write Data (PUT)
let profile = UserProfile {
username: "player_1".to_string(),
level: 42,
is_active: true,
};
client.put_value("users", "profile_data", &profile).await?;
// Read Data (GET) - Deserializes directly into your custom struct
let fetched = client.get_value::<UserProfile>("users", "profile_data").await?;
println!("Fetched level: {}", fetched.value.level);
Ok(())
}DynaRust guarantees eventual consistency via asynchronous state synchronization. Requests are processed locally in memory, persisted to disk, and fanned out to peer nodes.
+----------------+
| Client |
+----------------+
│ │ │ │
HTTP: POST /auth │ │ │ │ HTTP: PUT/GET/DELETE /{table}/key/{key}
(register/login) │ │ │ │
↓ ↓ ↓ ↓
+-----------------------+
| API Gateway (Actix) |
| • Auth & Validation | ← issues/verifies JWT
| • Route Handling |
| • SSE Subscriptions |
+-----------------------+
│
│ local reads/writes
↓
+-----------------------+
| In‐Memory Store |
| (DashMap) |
+-----------------------+
│ │
internal │ │ external
writes ←───┘ │ writes
↓
+-----------------------+
| Replication Module |
| (Fan‐out to peers) |
+-----------------------+
│ │
│ gossip │ HTTP
│ ↓
+------------------------------------+
| Other Nodes (Replicas) |
+------------------------------------+
│
│ periodic snapshot & WAL
↓
+-----------------------+
| Disk Persistence |
| (storage.db) |
+-----------------------+
- Clone the Repository:
git clone https://github.com/yourfavDev/DynaRust cd DynaRust - Compile the Binary:
cargo build --release
- Build the Image:
docker build -t dynarust:latest . docker network create dynanet - Run the Main Node:
docker run -d --name dynarust-node1 --network dynanet -p 6660:6660 \ -v dynarust-data1:/app \ dynarust:latest 0.0.0.0:6660
- Run Additional Nodes (Cluster Setup):
docker run -d --name dynarust-node2 --network dynanet -p 6661:6660 \ -v dynarust-data2:/app \ dynarust:latest 0.0.0.0:6660 dynarust-node1:6660
All write operations (PUT, PATCH, DELETE) require a valid JWT in the Authorization: Bearer <token> header.
| Operation | Endpoint | Method | Description |
|---|---|---|---|
| Auth | /auth/{user} |
POST |
Register or login (returns JWT token). Requires {"secret": "pwd"}. |
| Create/Update | /{table}/key/{key} |
PUT |
Store a JSON value. Requires Auth. |
| Partial Update | /{table}/key/{key} |
PATCH |
Merge updates into an existing value. Requires Auth. |
| Read | /{table}/key/{key} |
GET |
Fetch the latest version of a key. |
| Delete | /{table}/key/{key} |
DELETE |
Remove a key (owner only). Requires Auth. |
| List Keys | /{table}/keys |
GET |
Returns an array of all keys in a table. |
| Batch Fetch | /{table}/keys |
POST |
Pass an array of keys in the body to fetch multiple values. |
| Fetch Table | /{table}/store |
GET |
Returns the entire key-value store for a specific table. |
| Subscribe | /{table}/subscribe/{key} |
GET |
Establish an SSE connection for real-time < 5ms updates. |
| Node Stats | /stats |
GET |
View cluster health and node statistics. |
# 1. Register & get token
TOKEN=$(curl -s -X POST http://localhost:6660/auth/alice \
-H "Content-Type: application/json" \
-d '{"secret":"s3cr3t"}' | jq -r .token)
# 2. Store a value
curl -i -X PUT http://localhost:6660/default/key/foo \
-H "Content-Type: application/json" \
-H "Authorization: Bearer $TOKEN" \
-d '{"value": {"name": "bar"}}'
# 3. Partially update the value
curl -i -X PATCH http://localhost:6660/default/key/foo \
-H "Content-Type: application/json" \
-H "Authorization: Bearer $TOKEN" \
-d '{"age": 30}'
# 4. Subscribe to live changes
curl -N http://localhost:6660/default/subscribe/foo- Node Fails to Join: Ensure the target
JOIN_ADDRESSis reachable. In Docker, confirm the containers are on the same bridge network and you are using the correct internal hostnames/ports. - Inconsistent Reads: Allow a brief moment for the gossip protocol to propagate state (eventual consistency). You can verify cluster membership by checking
http://<node-address>/stats. - Data Lost After Restart: Ensure the process has write permissions to the directory containing
storage.db. If using Docker, verify that you have properly mounted a volume to/app. - Debugging: Enable verbose logging by running the node with
RUST_LOG=debug.