Initialization with term=0 shouldn't be allowed

Question

Initialization with term=0 shouldn't be allowed

GuyLewin opened this issue a year ago · comments

Describe the bug
Nodes often crashing (panic) during first few moments of Raft, when using distinct priority values per node together with pre_vote = true.
The least-prioritized node never crashes.

When I looked into it, I found that it's because during the pre-voting, we reject pre-voting requests from lower-priority nodes:
https://github.com/tikv/raft-rs/blob/82d704cdc3d93258be1f45efd715b95930764d7f/src/raft.rs#L1467C65-L1467C98

We then try to send the rejection back to the proposing node, including our term as the message's term:
https://github.com/tikv/raft-rs/blob/82d704cdc3d93258be1f45efd715b95930764d7f/src/raft.rs#L1494C21-L1498C58

But during that send, term is checked to be != 0, resulting in a panic instead of sending the proposal rejection:
https://github.com/tikv/raft-rs/blob/82d704cdc3d93258be1f45efd715b95930764d7f/src/raft.rs#L617C9-L640C14

Expected behavior
PreVoting rejection and not panic().

tison commented a year ago

Reopened

Jay · Answer 1 · Thu Jun 29 2023 11:11:07 GMT+0800 (China Standard Time)

Then term should be assigned to vote response.

Guy Lewin · Answer 2 · Thu Jun 29 2023 11:15:21 GMT+0800 (China Standard Time)

Then term should be assigned to vote response.

It is assigned, but the term is still 0 when the node initializes, unless I misunderstood what you were referring to.
I can attach the full backtrace if that helps, but the fatal is being called in this scenario pretty consistently.

Jay · Answer 3 · Thu Jun 29 2023 11:56:05 GMT+0800 (China Standard Time)

I see. When the raft group is first initialized, it should not have term 0 (INVALID_TERM).

Guy Lewin · Answer 4 · Fri Jun 30 2023 02:46:46 GMT+0800 (China Standard Time)

@BusyJay makes sense, thank you!
I will initialize all our nodes with term=1 in their Raft state.

tison · Answer 5 · Fri Jun 30 2023 09:11:59 GMT+0800 (China Standard Time)

it should not have term 0

Perhaps we check it on initial state loaded? I encountered this issue days before also.

Jay · Answer 6 · Fri Jun 30 2023 13:15:05 GMT+0800 (China Standard Time)

There are two cases: 1. constructing the raft node with existing data, so the node is already initialized and should have a valid term; 2. constructing the raft node without any data, so the node is not initialized and can have term 0.

Though adding a check that term must not be 0 if configuration is not empty should be OK.

Guy Lewin · Answer 7 · Sat Jul 01 2023 02:07:21 GMT+0800 (China Standard Time)

Though adding a check that term must not be 0 if configuration is not empty should be OK.

I can work on a PR for that.
We were constructing a raft node without any data, but using pre-vote and priority so we ended up rejecting even before any data was sent, therefore getting this error during rejection message send.
But anyway, this check will help ensure this never happens.

Jay · Answer 8 · Sat Jul 01 2023 17:19:28 GMT+0800 (China Standard Time)

Please send it when you are free, thanks!

Guy Lewin · Answer 9 · Mon Jul 03 2023 09:27:28 GMT+0800 (China Standard Time)

Created a PR - #513