Use the .So, .Sc macros for single quotes around :

Update the description to use SSL_CTX_set_ciphersuites().
I now note that "openssl ciphers -s -tls1_3" will list the
ciphers that work.

Since I should be able to test KTLS1.3 in a couple of weeks,
I think this man page update should be delayed until KTLS1.3
is working and "-C" is converted to SSL_CTX_set_ciphersuites().

Reference openssl-ciphers for the preferred-ciphers list
and comment on what is likely to work as suggested by
Pau Amma.

It really needs someone familiar with bootstrapping to review this.
(Except for being the nfs case, it really has nothing to do with nfs.)

Beyond changing strstr() to a check for "nfs:" at the beginning of the
string, as suggested by sjg@, I don't see a problem with this.

Looks fine to me now.

I'll admit I didn't look at the code in detail, but it looks ok to me.

Looks ok to me, although I'll admit I never
use diskless NFS root file systems nor bootp.

I don't see a problem with doing this, but since I am
not familiar with the various situations used by bootp
for mounting a root fs, I can't say if this change will
cause problems.

It crashes almost instantly for NFSv4.
Basically, it does a vrele(ni_startdir);

cy@ reported via email that he had a problem when
running with the previous patch. He observed the mount
"come to a grinding halt" when under heavy load.
(He was doing "make -j16" builds.)
The CPU was busy, which would have indicated that
the renew thread was very busy.
The "goto tryagain(2)" was only done when an entry
was deleted, so it wasn't exactly an infinite loop, but
it appears that the overhead of repeating the loops
from the beginning was excessive when there were many
open owners.

Instead of returning a boolean, nfscl_cleanup_common()
returns flag bits for which of open/lock owner(s) have
been free'd.

I have added Mateusz as a reviewer. If anyone else is willing to review this, please do so.
I have heard from Arno that it did fix the problem for him and would like to get this into
13.1.

Looks ok, if I understood what the patch does.
Basically, instead of reading a directory from the
beginning of it, it simply refuses to export the file
system unless it has the FSESS_NO_OPENDIR_SUPPORT
property, which means the cookies remain valid.

It turned out that NFS did not need to know if a file
was mmap'd, since it had to invalidate pages
unconditionally for the Append case.