Core Code
Core Code Modern Dev Handbook
DISTRIBUTED-SYSTEMS-ENGINEERING Contents
Distributed Systems Fundamentals
What Makes a System Distributed? Latency vs Throughput (Why You Can’t Optimize Both Blindly) The Partial Failure Model (The Real Enemy) The Fallacies of Distributed Computing (Production Examples) Time Is Hard: Clocks, Drift, and Ordering Network Partitions: Detection and Reality Checks CAP Theorem in Practice (What You Actually Choose) PACELC: Latency Tradeoffs Beyond CAP Backpressure vs Queueing (Where Systems Die Quietly) Failure Modes Map: Real Incidents You Will See
Data Consistency Models
Strong Consistency (Costs, When It’s Worth It) Eventual Consistency (What It Guarantees, What It Doesn’t) Causal Consistency (The Practical Middle Ground) Read-Your-Writes and Session Guarantees Monotonic Reads / Writes (User-Visible Correctness) Quorums 101: R/W, N, and What “Majority” Really Means Linearizability vs Serializability vs Strict Serializability Stale Reads: Detection, Measurement, and Guardrails Split-Brain Consistency Failures (How They Start) Designing Consistency SLOs (Correctness as an SLO)
Consensus & Coordination
Why Consensus Is Hard (FLP Intuition, No Math Pain) Raft Overview (Roles, Terms, Safety) Leader Election Patterns (And Their Failure Modes) Quorum Math (Write Safety vs Availability) Log Replication Internals (Commit Index, Match Index) Paxos Simplified (So You Can Read Docs Without Crying) Distributed Locks (Why They’re Dangerous) Zookeeper Patterns (Leader, Config, Locks) etcd Usage Patterns (Kubernetes-Style Coordination) Fencing Tokens (The Only Lock That Survives Partitions)
Replication & Data Distribution
Replication Strategies (Leader, Multi-Leader, Leaderless) Sync vs Async Replication (Latency vs Data Loss) Replication Lag: Causes, Metrics, and Mitigations Anti-Entropy (Merkle Trees, Read Repair, Hinted Handoff) Gossip Protocols (Membership, Failure Detection) Sharding Strategies (Range, Hash, Directory) Consistent Hashing (Why It’s Not Just a Ring Diagram) Rebalancing Clusters Safely (Avoid Melting Prod) Hot Partitions (Detection + Fixes) Multi-Region Data: Patterns and Tradeoffs
Messaging & Event Systems
Messaging Models (Queue vs Log vs PubSub) Delivery Semantics: At-Most-Once Delivery Semantics: At-Least-Once Exactly-Once (Where the Myth Breaks) Idempotency in Event Processing (Design Patterns) Kafka Internals (Partitions, ISR, Replication) Consumer Groups (Rebalances, Sticky Assignors) Ordering Guarantees (What You Can Actually Promise) Dead Letter Queues (Policy, Replay, Poison Pills) Event-Driven Architecture Tradeoffs (Coupling vs Debuggability)
Reliability Patterns in Distributed Systems
Retries & Exponential Backoff (Avoiding Retry Storms) Timeouts & Deadlines (Budgeting Latency) Circuit Breakers (State Machines That Save You) Bulkheads (Stop One Fire From Burning the Ship) Load Shedding (Fail Small, Not Catastrophically) Backpressure in Practice (Push vs Pull, Bounded Queues) Graceful Degradation (Feature Flags and Partial Responses) Hedged Requests (Trading Cost for Tail Latency) Chaos Engineering Basics (What to Test First) Failure Injection Testing (Safe Experiments in Prod-Like Envs)
Distributed Transactions & Sagas
Two-Phase Commit (Why It Blocks) Three-Phase Commit (Why You Still Rarely Use It) Sagas (Orchestration vs Choreography) Saga Orchestration (Central Coordinator Done Right) Saga Choreography (Emergent Workflows, Emergent Pain) Compensating Transactions (Designing Undo) Outbox Pattern (The Dual-Write Fix) Dual-Write Problem (How It Actually Fails) Idempotent Consumers (Dedup, Keys, and Storage) Transactional Messaging (What Guarantees You Can Buy)
Observability in Distributed Systems
Distributed Tracing Fundamentals (Spans, Context, Baggage) Correlation IDs (Request IDs That Survive Microservices) Trace Propagation (W3C Trace Context in Practice) Metrics in Clusters (Aggregation, Cardinality, Cost) High Cardinality Problems (How Monitoring Dies) Structured Logging at Scale (Schemas, Sampling, PII) Monitoring Quorum Health (Consensus Systems SLOs) Alert Fatigue Prevention (Signal > Noise) The Golden Signals (And What Changes in Distributed Systems) Postmortems (Blameless, Actionable, Measurable)
Performance & Scaling Strategies
Horizontal Scaling Patterns (Stateless, Stateful, Sticky) Vertical vs Horizontal Tradeoffs (Cost and Failure Domains) Autoscaling in Practice (When It Helps, When It Hurts) Tail Latency (Why p99 Runs Your Life) p99 vs Averages (SLO Math for Humans) The Thundering Herd (Cache, Locks, and Stampedes) Cache Consistency Tradeoffs (Invalidation Strategies) Distributed Rate Limiting (Token Buckets Across Nodes) Load Balancing Algorithms (RR, LC, EWMA, Hashing) Capacity Planning (Queues, Headroom, Failure Budget)
Production Incident Playbooks
Diagnosing a Network Partition (Fast Triage Checklist) Debugging Split-Brain (Symptoms, Proof, Recovery) Quorum Loss Recovery (Safe Steps, Common Traps) Runaway Retry Storm (How to Stop the Bleeding) Cascading Failure Analysis (Finding the First Domino) Replication Lag Debugging (Root Causes + Fixes) Kafka Consumer Lag Playbook (Rebalance, Throughput, Backlog) Multi-Region Outage Handling (Failover Without Data Lies) Consistency Bug Hunting (Proving “It Can’t Happen” Happened) Production Readiness Checklist (Distributed Systems Edition)

Raft Overview (Roles, Terms, Safety)

Raft is a consensus algorithm designed for understandability while providing strong safety guarantees. This lesson explains how Raft works in production, including leader election, log replication, and failure handling.
On this page

Raft Overview: Consensus Designed for Understandability

Raft is a consensus algorithm created to be easier to understand than Paxos while providing equivalent safety guarantees. It is widely used in production systems such as etcd, Consul, and many distributed databases. Raft solves the consensus problem by structuring coordination around a single leader that manages log replication.

Understanding Raft is essential for anyone building or operating distributed systems that rely on strong consistency.

Raft Roles

Raft nodes operate in one of three roles:

  • Leader: Accepts client requests and coordinates replication.
  • Follower: Passively replicates the leader’s log entries.
  • Candidate: Attempts to become leader during an election.

At any time, there is at most one leader per term.

Terms and Elections

Time in Raft is divided into terms. Each term begins with an election. If a follower does not receive a heartbeat from the leader within its election timeout, it becomes a candidate and requests votes.

Election rules:

  • A node votes once per term.
  • A candidate must receive majority votes to become leader.
  • If no candidate receives majority, a new election term begins.

Randomized election timeouts reduce the probability of split votes.

Log Replication

The leader is responsible for appending entries to its log and replicating them to followers.

The process is:

  1. Leader receives a client command.
  2. Leader appends the entry to its local log.
  3. Leader sends AppendEntries RPC to followers.
  4. Followers append the entry if consistent.
  5. Once a majority acknowledges, the entry is committed.
  6. Leader applies the entry to its state machine.

Only committed entries are considered durable decisions.

Safety Guarantees

Raft ensures:

  • Leader Completeness: A leader contains all committed entries from previous terms.
  • Log Matching: If two logs contain an entry at the same index and term, the logs are identical up to that index.
  • Election Safety: At most one leader can be elected per term.

These guarantees prevent split-brain writes and conflicting commits.

Production Scenario: Leader Failover

Symptom

During a node failure, write requests temporarily fail for a few seconds.

Root Cause

The leader crashed. Followers detected missing heartbeats and triggered a new election. The election took one timeout cycle to complete.

Diagnosis

  • Logs show term increment.
  • New leader elected after timeout window.
  • Minority node remains unavailable.

Resolution

  • Adjust election timeout to balance failover speed and stability.
  • Ensure cluster has odd number of nodes.
  • Monitor leader transition frequency.

Log Compaction and Snapshots

Over time, the replicated log grows large. Raft supports snapshotting:

  • Committed state is compacted into a snapshot.
  • Old log entries are truncated.
  • Followers can catch up by receiving snapshots instead of full logs.

This is critical for long-running clusters.

Operational Tuning Considerations

  • Election timeout must exceed typical network latency.
  • Heartbeat interval should be frequent enough to prevent false elections.
  • Cluster size impacts write latency (majority requirement).
  • Cross-region deployment increases quorum round-trip time.

Improper tuning leads to election storms or slow failover.

Failure Behavior

If a minority partition exists:

  • Minority cannot elect leader.
  • Writes are rejected.
  • Majority continues operating.

This prioritizes safety over availability.

Operational Checklist

  • Is your cluster size odd-numbered?
  • Are election timeouts randomized?
  • Do you monitor term changes?
  • Are snapshots configured to prevent log bloat?
  • Have you tested leader failover intentionally?

Key Takeaways

  • Raft simplifies consensus around a single leader model.
  • Majority quorum ensures safety.
  • Leader election and log replication form the core mechanism.
  • Election tuning is critical for production stability.
  • Raft sacrifices availability in minority partitions to preserve correctness.

Raft makes consensus approachable, but operating a Raft-based system still requires careful configuration, monitoring, and failure testing. Understanding its mechanics is foundational to operating distributed coordination systems safely.

Leader Election Patterns (And Their Failure Modes) →