Deckhouse

Fixes


- **[ingress-nginx]** Update the Kruise controller manager before updating Ingress Nginx so that an updated Kruise controller manager takes care of Ingress nginx demonsets. [5103](https://github.com/deckhouse/deckhouse/pull/5103)


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.46.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.46.0).

Know before update


- If you deploy the `deckhouse-web` moduleConfig via a CI/CD process, then you have to replace it with the `documentation` moduleConfig (run `kubectl get mc documentation -o yaml` to get its content).

Fixes


- **[documentation]** Add migration for the `documentation` module (former name - `deckhouse-web`). [4982](https://github.com/deckhouse/deckhouse/pull/4982)
If you deploy the `deckhouse-web` moduleConfig via a CI/CD process, then you have to replace it with the `documentation` moduleConfig (run `kubectl get mc documentation -o yaml` to get its content).


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.46.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.46.0).

Fixes

- **[ingress-nginx]** Fix `proxy-failover-iptables` panicking and `iptables` rules duplicating. [4959](https://github.com/deckhouse/deckhouse/pull/4959)

For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.46.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.46.0).

Fixes

- **[ingress-nginx]** Increase `minReadySeconds` for all inlets. [4919](https://github.com/deckhouse/deckhouse/pull/4919)
- **[linstor]** Add disabling the `lvmetad` service to `NodeGroupConfiguration` for the `linstor` module. [4885](https://github.com/deckhouse/deckhouse/pull/4885)
- **[monitoring-kubernetes]** Resolve symbolic links before getting file system statistics in `kubelet-eviction-thresholds-exporter`. [4923](https://github.com/deckhouse/deckhouse/pull/4923)


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.46.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.46.0).

Features


- **[linstor]** Added params for enabled SELinux support. [4849](https://github.com/deckhouse/deckhouse/pull/4849)
linstor satellite Pods will be restarted.

Fixes


- **[deckhouse-controller]** Reverted "mergo" library update. Fixed an issue where Deckhouse might panic on concurrent map access. [4872](https://github.com/deckhouse/deckhouse/pull/4872)


For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.46.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.46.0).

Features


- **[candi]** Add deckhouse release requirements about docker presence. [4816](https://github.com/deckhouse/deckhouse/pull/4816)
It will be impossible to update Deckhouse until docker is replaced with containerd.

Fixes


- **[common]** Prevent usage of vulnerable TLS ciphers in `kube-rbac-proxy`. [4825](https://github.com/deckhouse/deckhouse/pull/4825)
- **[node-manager]** Prevent usage of vulnerable TLS ciphers in `bashible-apiserver`. [4827](https://github.com/deckhouse/deckhouse/pull/4827)

For more information, see the [changelog](https://github.com/deckhouse/deckhouse/blob/main/CHANGELOG/CHANGELOG-v1.46.md) and minor version [release changes](https://github.com/deckhouse/deckhouse/releases/tag/v1.46.0).