Filesystem to protect the storage medium

debian filesystems storage corruption overlayfs

I'm working on an embedded system which will act as a server, the problem is the environment where it will run is so aggressive and it will suffer abrupt power interruptions. So I'm planning to mount the root filesystem as fake-writable using OverlayFS. The idea comes from RaspberryPi, where the devs have a mechanism to enable/disable the mounting of rootfs as OverlayFS (as you can see it can be enabled by using raspi-config script)

My question is ... would this help to protect the physical device from corruption? Or even the filesystem itself? My idea is to extend the life of the physical device and I think I can do this avoiding write operations, but the system cannot be purely read-only because some programs need to see the FS as writable, that's why I'm thinking in OverlayFS.

What do you think? Do you have some other idea on how to tackle this problem? Thank you all.

PS: The system I have to use is Debian Buster.


Writes still happen, overlayfs redirects them into the upper layer. And the lower layer will need to be updated eventually. So no, just having an overlay won't fix a challenge with durability. You should think about what data needs to be durable, and how to recover from failure.

Power off during write risks data being lost somewhere in the several layers of file system, block, and storage media. Good file systems have a journal for metadata so they will survive, but may lose data. Test this by powering off a device while in use, check if data integrity is maintained.

That raspi-config appears to have upper on tmpfs, so yes avoids wear on storage media, but writes would be lost on reboot! Which might be acceptable in some use cases, reboot and it returns to a known state.

Data that needs to be preserved could be sent elsewhere, for example syslog forwarding to a central logging server on stable power. Or posting data to some remote API. Or saved to a local data partition separate from the volume with the installed software.

Speaking of stable power, an uninterruptable power supply is an excellent investment if power is unreliable. A relatively small battery is enough to gracefully shut down if power is cut.

Regarding the lower layer, upgrading the software is an operation that must be successful for the device to still function. Consider image based updates, such as the SWUpdate embedded device updater (or Ubuntu image upgrades or Fedora IoT, several to choose from). A dual image with recovery is worth studying even if not implemented for this project.

Related

Strongswan to Cisco ASA with multiple right subnet
Running su with -c gives unrecognized command error
finding which tier 1 or isp to connect to to reduce latency [closed]
Nginx location matching with regex year/month/day/*
How to extract specific emails from Exchange Online using PowerShell and move or sort them?
Java Jar file: use resource errors: URI is not hierarchical
How to change placeholder color on focus?
Running a node express server using webpack-dev-server
Stream Way to get index of first element matching boolean
Can I adjust the "100+ matches in X files" from Intellijs "find in path"
Generic type checking
Are there shortcut keys for ReSharper's Unit Test Runner?