nexus

module
v1.0.4 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 13, 2026 License: MIT

README

Nexus

Nexus is a lightweight microservice foundation for Linux, focused on process orchestration, service registry/discovery, and high-performance IPC.

Features (v0.4)

  • Daemon-managed service lifecycle (singleton / worker)
  • UDS control plane (daemon.socket) with msgpack protocol
  • Dependency-aware startup ordering with depends_on (topological sort)
  • Probe-based health checks (exec://, http://, tcp://) with PID fallback
  • Transport abstraction: UDS/TCP + msgpack
  • Noise-encrypted TCP transport (NK handshake)
  • memfd + SCM_RIGHTS for large local payload transfer
  • Go SDK with Node, HandleFunc, and remote registry support (RegistryAddr)
  • CLI tools: nexusd validate, nexusd status, nexusd keygen

Requirements

  • Go
  • Linux (kernel >= 4.19 for full feature set)

Quick Start

  1. Build daemon:
CGO_ENABLED=0 go build ./cmd/nexusd
  1. Start daemon:
./nexusd -config ./nexus.toml
  1. Minimal Go SDK node example (Node, not Client):
package main

import (
	"github.com/maxesisnclaw/nexus/pkg/sdk"
)

func main() {
	node, err := sdk.New(sdk.Config{
		Name:         "echo",
		ID:           "echo-1",
		UDSAddr:      "/run/nexus/echo.sock",
		RegistryAddr: "/run/nexus/registry.sock",
	})
	if err != nil {
		panic(err)
	}
	defer node.Close()

	node.HandleFunc("echo", func(req *sdk.Request) (*sdk.Response, error) {
		return &sdk.Response{Payload: req.Payload}, nil
	})

	if err := node.Serve(); err != nil {
		panic(err)
	}
}
  1. Run checks:
go build ./...
go vet ./...
go test ./...

Configuration Reference

CLI Usage

Validate config:

nexusd validate -config ./nexus.toml

Query daemon status:

nexusd status -socket /run/nexus/registry.sock

Generate Noise keypair:

nexusd keygen -out ./nexus.key

Security

Nexus v0.4 uses two trust models:

  • UDS trust model: access control by filesystem permissions on /run/nexus/* sockets.
  • TCP trust model: Noise Protocol encryption/authentication (NK pattern, Curve25519 + ChaCha20-Poly1305).

Daemon daemon.listen is reserved for future TCP control-plane support. Current daemon startup rejects non-empty daemon.listen.

Examples

Runnable examples are available in examples/.

Changelog

Project history is tracked in CHANGELOG.md.

License

MIT. See LICENSE.

Directories

Path Synopsis
cmd
nexusd command
examples
docker-service command
ping-pong command
pipeline command
pkg
config
controlplane
daemon
registry
sdk
transport

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.