Dragonfly
v2.5.0Storage & DataDragonfly v2.5.0 is a feature release adding Hugging Face/ModelScope model downloads, a P2P injector webhook, download blocklisting, and broad rate limiting, alongside a breaking removal of deprecated V1 preheat API endpoints and health check consolidation to /healthy. It also ships numerous bug fixes and Nydus subproject improvements.
breakingV1 preheat API endpoints removed
Applies unconditionally starting v2.5.0: the deprecated V1 preheat API endpoints have been removed. Any automation or integration still calling V1 preheat routes must migrate to the current preheat API before upgrading.
breakingHealth checks consolidated to /healthy
Applies unconditionally starting v2.5.0: health checks are consolidated onto a single /healthy endpoint. Update load balancer, Kubernetes probe, and monitoring configs that point at old or multiple health check paths.
enhancementEmergency download blocklist
Available now via Manager console: operators can configure a blocklist to disable specific downloads as an emergency brake. Blocked gRPC calls return PermissionDenied and blocked HTTP proxy calls return FORBIDDEN, useful for incident response.
enhancementRate limiting across gRPC and client paths
Available now across Manager/Scheduler gRPC servers and clients: rate limiting covers bandwidth, upload/download requests, and adaptive limiting. Review limits before rollout to avoid unexpected throttling of legitimate traffic.
主な変更 (8)
- Breaking: deprecated V1 preheat API endpoints removed and health checks consolidated to a single /healthy endpoint.
- New: Dragonfly Client can download model repositories directly from Hugging Face and ModelScope, accelerating Git LFS data via P2P and fetching metadata over Git protocol.
- New: dragonfly-injector Mutating Admission Webhook auto-injects P2P capability into Pods via annotation policies, with Helm chart support.
- New: configurable blocklist in Manager console lets operators disable specific downloads as an emergency measure (gRPC returns PermissionDenied, HTTP proxy returns FORBIDDEN).
- New: rate limiting added across Manager/Scheduler gRPC servers and client-side bandwidth/request handling to protect source services.
- New: dfctl CLI for managing local storage tasks (list, remove, preheat) against the Scheduler; dfdaemon can now infer upstream registry from containerd's ns query parameter.
- Performance and reliability: improved parent peer selection before scheduling, buffered file export/download writes, tuned gRPC stream buffers for large transfers, and HTTP backend fixes (HTTP/1.1, HEAD retry logic, stripped auth headers on cross-origin redirects, fixed relative 307 redirect caching).
- Plus several smaller fixes: Redis Lua script argument order for peer TTL, PostgreSQL SERIAL sequence handling after seeding, ExternalRedis TLS support, and Nydus subproject updates (prefetch-optimized blobs, DAX backend support, several builder/image-detection bug fixes).