HBASE-30220: A replica cluster can have read-only mode disabled even when another active cluster already exists#8377
Open
kgeisz wants to merge 1 commit into
Conversation
…when another active cluster already exists Code generated with Claude Opus 4.6 and modified by hand after Change-Id: Ifb6992d1c9d6982cdcec0522d7b75ed9f985c0e3
kgeisz
force-pushed
the
HBASE-30220-replica-can-become-second-active
branch
from
f27629b to
d5f43b0
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
https://issues.apache.org/jira/browse/HBASE-30220
AI Usage
These changes were generated using Claude Opus 4.6 and then modified by hand.
Summary
In a Read-Replica cluster setup, the active cluster allows both reads and writes, while the replica clusters only allow reads. In this type of setup, only one cluster should be an active cluster at a time. Although the current code prevents starting an active cluster while another one exists, it is still possible to simple turn a running replica into an active cluster despite another active cluster already existing. The changes in this pull request prevent this behavior.
A cluster is promoted from replica to active by changing the
hbase.global.readonly.enabledvariable fromtruetofalseinhbase-site.xmland then runningupdate_all_configin the HBase shell. The current active cluster is tracked by having the cluster's ID in a file calledactive.cluster.suffix.id. This file does not exist when all clusters are replicas.Key Changes
volatile booleanflag calledreadOnlyTransitionBlockedto HBaseServerBase. This is used to track whether a cluster was prevented from becoming an active cluster due to another active cluster already existing.falsetotrue, thenreadOnlyTransitionBlockedis set totrue, and a new exception calledReadOnlyTransitionExceptionis thrown in the HBase shell.staticmethod toAbstractReadOnlyControllercalledisAnotherClusterActive(). This returns true when the cluster ID inactive.cluster.suffix.iddoes not match the current cluster.onConfigurationChange()inHMaster,HRegionServer, andHRegionto prevent the replica cluster from being promoted to an active cluster when another active cluster exists.