Leader Election

A coordination mechanism by which a set of nodes agree on a single 'leader' responsible for some exclusive role: accepting writes, assigning work, or coordinating others. It's a core building block implemented by consensus protocols (Raft, Paxos, ZAB) and coordination services (ZooKeeper, etcd).

Many tasks must be done by exactly one node: a single write primary, a single job scheduler, a single sequence generator. Hard-coding the leader makes it a single point of failure. Leader election lets the cluster choose a leader dynamically and, critically, elect a new one when the leader fails, without two nodes both believing they're in charge (split-brain), which causes divergent writes and data corruption.

Nodes detect leader failure via heartbeats. When the leader's heartbeats stop, candidates start an election. Consensus protocols require a candidate to win votes from a majority quorum (N/2+1) before becoming leader, and this is what prevents two leaders, since two different majorities can't exist simultaneously. The new leader operates within a bounded 'term'/'epoch'; stale leaders that come back are fenced off by the higher epoch number. Coordination services expose this as ephemeral nodes or leases: hold the lease (renewed via heartbeat) and you're leader; lose it and someone else takes over.

• Removes the single-point-of-failure of a hard-coded coordinator, since failover is automatic
• Quorum-based election prevents split-brain by construction (two majorities can't coexist)
• Available off-the-shelf via Raft/etcd/ZooKeeper, so you rarely need to build it yourself

• Election takes time: there's a leaderless window (seconds) during failover where writes stall
• Needs a majority alive; lose quorum (network partition isolating the majority) and the cluster can't elect anyone and halts
• Subtle to get right: naive timeout-based election without fencing tokens reintroduces split-brain

• Apache Kafka →

  Each partition has an elected leader replica that handles all reads/writes; on broker failure a new leader is elected from the in-sync replicas

• Distributed Cache →

  ZooKeeper/etcd elect a coordinator for ring membership and config; cache nodes follow the elected leader's view

• Stock Exchange (Matching Engine) →

  The single active matching engine per symbol is the leader; a hot standby is promoted via election on failure to keep one authoritative order book

• Never roll your own leader election with bare timeouts; without quorum and fencing tokens you'll get split-brain under partition. Use Raft/etcd/ZooKeeper.
• Election isn't instant. Plan for a failover window where writes pause; tune heartbeat/timeout to balance fast failover against false elections from network blips.
• Fencing tokens (monotonic epoch numbers) are essential: a 'dead' leader that was only partitioned can come back and try to act. The higher epoch must win or it corrupts state.
• Losing quorum stops the world. A 3-node cluster split 1-2 keeps working (the 2-side); split into three isolated nodes can't elect anyone. Size and place nodes to keep a majority reachable.