Design a Consensus Protocol (Raft / Paxos)

Replicated state machine: maintain an identical log of commands across a cluster of N servers (typically 3, 5, or 7); each server applies log entries to its state machine in the same order; all servers converge to the same state; clients interact with any server (or the leader) and see a consistent view

Leader election: the cluster must elect exactly one leader at any time; the leader handles all client requests and replicates log entries to followers; if the leader crashes, followers detect the failure and elect a new leader within a bounded time (typically < 5 seconds)

Log replication: the leader appends client commands to its log → replicates each log entry to all followers → once a majority (quorum) of servers have persisted the entry, it is committed → the leader notifies the client of success; committed entries are never lost (even after leader crashes)

Safety guarantee: a committed log entry will never be overwritten or lost; all servers that apply a log entry at a given index apply the same command; if any server has applied a log entry, no other server applies a different entry at that index; linearizable (behaves as if a single server)

Fault tolerance: the system continues to operate correctly as long as a majority of servers are alive — a cluster of 2F+1 nodes tolerates F simultaneous failures; 3-node cluster tolerates 1 failure; 5-node cluster tolerates 2 failures; progress requires a quorum (majority)

Cluster membership changes: add or remove servers from the cluster without downtime; the change itself is replicated as a log entry; at no point can two disjoint majorities coexist (split-brain prevention); joint consensus or single-server changes ensure safety during transitions

Log compaction: the log grows unboundedly; periodically take a snapshot of the state machine's current state → truncate the log up to the snapshot point; enable slow/recovering followers to catch up via snapshot transfer instead of replaying the entire log

Client interaction: clients send commands to the leader; if a client contacts a follower, the follower redirects to the leader; the leader responds only after the command is committed; exactly-once semantics (prevent duplicate application) via client-assigned sequence numbers

Read consistency: reads must return the most recently committed value (linearizable reads); naive approach: leader handles all reads (bottleneck); optimised: leader confirms it is still the leader at read time (heartbeat lease) or read index protocol; follower reads with lease for read scaling

Persistence and recovery: each server persists its current term, votedFor, and log entries to durable storage (disk); on crash and restart, the server recovers from persistent state; the server rejoins the cluster and catches up on missed log entries from the leader