arptables-nft: Set h-type/h-length masks by default, too

These masks are not used in nftables backend, but mangle extension checks arhln_mask value to make sure --h-length was given (which is implicitly the case). Fixes: 5aecb2d8bfdda ("arptables: pre-init hlen and ethertype") Signed-off-by: Phil Sutter <phil@nwl.cc> Signed-off-by: Florian Westphal <fw@strlen.de>
author: Phil Sutter <phil@nwl.cc> 2019-02-01 17:06:18 +0100
committer: Florian Westphal <fw@strlen.de> 2019-02-01 17:09:37 +0100
commit: a1da179b0ff3783badca352a42808f4398dd1a98 (patch)
tree: b70e1cf178b25961b6d8a0e5145743d4c340b213 /iptables/xtables-arp.c
parent: 432a5ecfa7890bd3495bb1ab5e34c2258090133f (diff)
1 files changed, 6 insertions, 2 deletions
diff --git a/iptables/xtables-arp.c b/iptables/xtables-arp.c
index 57e717fa..4b663775 100644
--- a/iptables/xtables-arp.c
+++ b/iptables/xtables-arp.c
@@ -910,8 +910,12 @@ int do_commandarp(struct nft_handle *h, int argc, char *argv[], char **table,
 {
 	struct iptables_command_state cs = {
 		.jumpto = "",
-		.arp.arp.arhln = 6,
-		.arp.arp.arhrd = htons(ARPHRD_ETHER),
+		.arp.arp = {
+			.arhln = 6,
+			.arhln_mask = 255,
+			.arhrd = htons(ARPHRD_ETHER),
+			.arhrd_mask = 65535,
+		},
 	};
 	int invert = 0;
 	unsigned int nsaddrs = 0, ndaddrs = 0;
author	Phil Sutter <phil@nwl.cc>	2019-02-01 17:06:18 +0100
committer	Florian Westphal <fw@strlen.de>	2019-02-01 17:09:37 +0100
commit	a1da179b0ff3783badca352a42808f4398dd1a98 (patch)
tree	b70e1cf178b25961b6d8a0e5145743d4c340b213 /iptables/xtables-arp.c
parent	432a5ecfa7890bd3495bb1ab5e34c2258090133f (diff)