nft-arp: remove wrong conditions

Removes wrong conditions in flags translating functions that doesn't permit to delete rule with inverse flags set. For instance, the following command doesn't remove the rule: arptables-compat -D INPUT -i ! eth1 -j ACCEPT Signed-off-by: Giuseppe Longo <giuseppelng@gmail.com> Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
author: Giuseppe Longo <giuseppelng@gmail.com> 2014-08-09 01:04:17 +0200
committer: Pablo Neira Ayuso <pablo@netfilter.org> 2014-08-11 18:41:52 +0200
commit: b772c3f24f75e586e406675e4b0b79eabfe3375e (patch)
tree: 9cf431a4e6f5ebd6ca258e1dca1f3d09c3855d3d /iptables
parent: d1547e895dc19c92472655d29d17eb18850505b4 (diff)
1 files changed, 0 insertions, 6 deletions
diff --git a/iptables/nft-arp.c b/iptables/nft-arp.c
index 8c062435..6dcc6ee6 100644
--- a/iptables/nft-arp.c
+++ b/iptables/nft-arp.c
@@ -155,9 +155,6 @@ static uint8_t arpt_to_ipt_flags(uint16_t invflags)
 	if (invflags & ARPT_INV_ARPPRO)
 		result |= IPT_INV_PROTO;
 
-	if (invflags & ARPT_INV_MASK)
-		result |= IPT_INV_MASK;
-
 	return result;
 }
 
@@ -257,9 +254,6 @@ static uint16_t ipt_to_arpt_flags(uint8_t invflags)
 	if (invflags & IPT_INV_PROTO)
 		result |= ARPT_INV_ARPPRO;
 
-	if (invflags & IPT_INV_MASK)
-		result |= ARPT_INV_MASK;
-
 	return result;
 }
author	Giuseppe Longo <giuseppelng@gmail.com>	2014-08-09 01:04:17 +0200
committer	Pablo Neira Ayuso <pablo@netfilter.org>	2014-08-11 18:41:52 +0200
commit	b772c3f24f75e586e406675e4b0b79eabfe3375e (patch)
tree	9cf431a4e6f5ebd6ca258e1dca1f3d09c3855d3d /iptables
parent	d1547e895dc19c92472655d29d17eb18850505b4 (diff)