Databases & Backend

Redis Single-Node Read-Only Error Mystery Solved

A single-node Redis setup shouldn't throw 'READONLY' errors, yet it did. Here's how a production outage was traced back to a subtle configuration flaw and stale client connections.

DevTools Feed 9 min read
A close-up of a server rack with blinking lights, symbolizing a complex and potentially failing system.

Key Takeaways

  • The 'READONLY' error in a single-node Redis setup can be caused by stale client connections misinterpreting transient network issues, not necessarily a true replica state.
  • Critical configurations like `maxmemory` must be set to prevent data loss or write failures due to memory exhaustion.
  • Disabling sensitive commands like `REPLICAOF` using `rename-command` is a vital security and stability measure for single-node Redis instances.
  • Capturing diagnostic data (`INFO replication`, `INFO stats`, `CONFIG GET rep`) *during* an outage is crucial for effective root cause analysis.
  • Application clients need resilient connection management and error handling to cope with temporary network or container instability.

The frantic flicker of the server status light, a universally understood symbol of impending doom.

It started with a tremor in the realtime engine. Imagine your most complex, intricately wired clockwork – a system where every gear, every spring, every tiny lever is synchronized to the millisecond. That’s what a realtime application feels like when it’s humming along perfectly. Then, BAM. The gears seize. The springs snap. And suddenly, the whole beautiful machine grinds to a halt, spewing out a single, cryptic error: READONLY You can't write against a read only replica.

For the team behind a production application that lives and breathes on Redis – for both its fast-as-lightning caching and its complex realtime collaboration features via Hocuspocus/Yjs – this wasn’t just a hiccup. It was a full-blown, teeth-grinding catastrophe that periodically, and without warning, plunged their system into darkness.

Every few months, this ghost in the machine would manifest. Writes would fail. Reads would falter. The entire dynamic experience would just… stop. A quick restart of the Docker container? Magic. The system sprang back to life. But without understanding why, the dread of its inevitable return was a constant companion. This wasn’t just a bug; it was an enigma wrapped in a production outage.

The Illusion of Simplicity

To even begin untangling this knot, the first logical step was to confirm the architecture. What were we actually dealing with?

  • Hosting: A lone wolf on Google Cloud Platform (GCP) – a t2d-standard-1 VM. Humble, but should be sufficient. Debian 12, 1 vCPU, 4 GB RAM. Standard stuff.
  • Deployment: Redis, dutifully ensconced within a Docker container.
  • Topology: Here’s the kicker. A single Redis node. No fancy clustering. No Sentinel for high availability. Absolutely zero intentional replicas. Just one machine doing its job.

So, how, in the name of all that is logical, could a solitary Redis instance suddenly decide it was a read-only replica? The contradiction was so profound it felt like a logical paradox, a glitch in the matrix of infrastructure.

Following the Breadcrumbs

My immediate instinct was to probe the current state. I connected directly to the server, feeling like a digital detective. The command? Simple. redis-cli INFO replication.

The output landed like a ton of bricks… or rather, like a puff of smoke: 

role:master
connected_slaves:0
master_failover_state:no-failover

Bingo. It was a master. No slaves, no failover. Everything looked perfectly normal. Whatever internal switch had flipped, turning our brave little master into a read-only shadow, it wasn’t a permanent state. This was fleeting. This was… weird.

Ruling Out the Usual Suspects

When you’re staring down a production-crippling bug, the temptation to chase shadows is immense. I meticulously dissected potential culprits, armed with skepticism and a healthy dose of realism.

  • Redis Cluster & Sentinel: My first thought was, ‘Did some rogue automation think it needed to failover?’ But no. We weren’t running Cluster or Sentinel. There was no orchestrator to even initiate a failover or a slot migration. These systems were blessedly absent.
  • Redlock / Distributed Lock Split-Brain: Could a locking mechanism have gone haywire? It’s a classic distributed system headache. But even the wildest split-brain scenario wouldn’t flip a server’s replication role. It’s a different kind of chaos.
  • The ‘Read’ Clue: This was a significant one. If Redis had truly become a proper replica, at least reads should have continued to function. The fact that both reads and writes evaporated suggested this wasn’t just a standard, albeit accidental, replica state. It was something far more fundamental.

The Memory Mirage

My next thought: memory pressure. It’s the classic villain in the Redis tale. A memory-starved Redis can indeed become unresponsive, though typically not with a READONLY error. I pulled up the memory stats: redis-cli INFO memory.

The results were… underwhelming. 

used_memory_human: 1.60M
used_memory_rss_human: 15.85M
total_system_memory_human: 3.83G

Our actual dataset was a mere 672 KB. We were using a sliver of the VM’s RAM. This wasn’t an Out-Of-Memory (OOM) crash, not by a long shot. It was a ghost town in there. But the maxmemory configuration? That was a different story. 

maxmemory:0
maxmemory_policy:noeviction

Zero memory limit. noeviction policy. This is a ticking time bomb. If Redis ever did fill up, it wouldn’t gracefully evict old data. It would just… refuse to write anything new. While this wasn’t the root cause of the READONLY error, it was a glaring security vulnerability in the configuration that needed immediate attention.

The Converging Evidence

With the major suspects cleared, the field narrowed to a more subtle, yet potent, set of possibilities for a single-node setup. These weren’t about the state of Redis as a replica, but about the illusion of it, potentially triggered by external factors.

  • Accidental REPLICAOF Command: This was the most direct culprit for any replica-related error. A stray script, an automation gone rogue, or even a momentary network blip could have injected a REPLICAOF <host> <port> command. A single execution, even transiently, could reconfigure the node.
  • Stale Node.js Client Connections: Our application’s backend and its websocket server maintain persistent TCP connections to Redis. If the network experienced a fleeting disruption or the Docker container glitched, these long-lived connections might have entered a “stale” state. The client might have thought the connection was bad, or worse, interpreted a temporary server unresponsiveness as a state change it shouldn’t be writing to.
  • Docker/Network Instability: Temporary network partitions – those phantom network splits that vanish as quickly as they appear – or even disk I/O blocks during AOF/RDB saves could force Redis into a protective state. And then, the application clients, clinging to their old connections, might misinterpret this protective mode. They might see a server that’s briefly unavailable or in an odd state and assume it’s read-only.

The intermittent nature of the problem, coupled with the complete write and read failure, strongly suggested a synergistic effect: stale client connections combined with a fleeting Docker or network anomaly. The client, stuck in its old state, saw a hiccup and assumed the worst, while the server, in a brief moment of instability, might have responded in a way that reinforced this false assumption. Restarting the container? It blew away those dead, stubborn connections, forcing a clean, fresh handshake.

The Multi-Layered Shield

To build a strong defense and banish this specter, a multi-pronged approach was essential.

First, the memory time bomb. In /etc/redis/redis.conf, I implemented concrete limits:

maxmemory 2gb
maxmemory-policy allkeys-lru

This ensured that if memory did become an issue, Redis would intelligently evict older keys rather than just slamming the door shut on writes.

Next, the accidental replication. To render this command utterly impotent in our single-node setup, I used Redis’s rename-command feature:

rename-command REPLICAOF ""
rename-command SLAVEOF ""

This effectively deleted those commands from Redis’s accessible API, making an accidental role switch impossible. No more phantom replica.

And the final, crucial piece of wisdom? The diagnostic protocol. The next time this beast rears its head, the immediate instinct to restart must be suppressed. Instead, I’ve established a strict rule: capture the state first. Run these commands to get a snapshot of the failure:

redis-cli INFO replication
redis-cli INFO stats
redis-cli CONFIG GET rep

This data, captured during the failure, is the key to unlocking future mysteries. It’s not just about fixing the immediate problem; it’s about building the intelligence to prevent it from ever happening again. This isn’t just engineering; it’s about understanding the complex dance between application clients and our data stores, and ensuring that dance is always in step.

Why Does This Matter for Developers?

This isn’t just a story about a niche Redis configuration error. It’s a profound illustration of how even seemingly simple infrastructure choices can harbor hidden complexities. For developers, it’s a stark reminder that:

  • Connections are fragile: Long-lived TCP connections, the lifeblood of many modern applications, can and will glitch. Your application needs to be resilient to these transient failures, not assume a constant, perfect state.
  • Configuration is paramount: Default configurations are often not production-ready. Memory limits, command restrictions – these aren’t optional extras; they’re foundational for stability and security.
  • Observability is your superpower: When things go wrong, having the right diagnostic tools and a plan for their use is the difference between chaos and controlled investigation. The ability to grab data at the moment of failure is invaluable.

This incident, while painful, was a powerful learning experience, transforming a mysterious outage into a concrete set of best practices for running resilient realtime applications.

What Was the Root Cause of the READONLY Error?

The root cause was not a true replica state, but a combination of transient network or Docker instability causing application clients to enter a stale state. These stale clients, potentially misinterpreting brief server unresponsiveness or internal state changes, incorrectly assumed the Redis instance was read-only, leading to the error. Accidental REPLICAOF commands were also a possibility that was mitigated.

Can Single-Node Redis Really Become Read-Only?

While a single-node Redis instance doesn’t have a built-in replica to demote, it can appear read-only to clients if external factors trick the clients into believing so, or if specific commands like REPLICAOF are accidentally executed, temporarily changing its role. Proper configuration can prevent this.

How Can I Prevent Redis From Throwing READONLY Errors?

Preventative measures include implementing maxmemory limits with appropriate eviction policies, using rename-command to disable sensitive commands like REPLICAOF, and ensuring your application clients have strong reconnection logic and error handling for transient network issues.

🧬 Related Insights

Written by
DevTools Feed Editorial Team

Curated insights, explainers, and analysis from the editorial team.

#docker #redis #gcp #realtime-applications #redis-read-only-error #single-node-redis
More in Databases & Backend →

Worth sharing?

Get the best Developer Tools stories of the week in your inbox — no noise, no spam.

Originally reported by dev.to

Related Stories

📬

Stay in the loop

The week's most important stories from DevTools Feed, delivered once a week.

No spam. Unsubscribe any time.