On Mon, Apr 03, 2017 at 03:44:27PM -0700, Skylar Chang wrote: > Add API support to accept pre-bound file descriptor from a > privileged process for creating a handle. Also clean-up > the handle without close the passing file descriptor. This > paves the path for privilege separation. I can take this patch... But as things are going, I would very much push for libnfnetlink deprecation, so this API may be soon deprecated which would be weird as it would be just something new... It would be much better if you use libmnl for this. There's a new API in libnetfilter_conntrack that mixes well with it. Let me know. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
