libbdev: fix IOCTL grant access bug

Reported by Coverity.

Change-Id: I34983312bebd9bf2449412b7dfa691ed208867ea

diff --git a/lib/libbdev/bdev.c b/lib/libbdev/bdev.c
index b950368f512dfafa471e5831c7ad8c5e51aa3103..f8eafb9c91599218c0aad5d6b12f3e96e43b6ea6 100644 (file)
--- a/lib/libbdev/bdev.c
+++ b/lib/libbdev/bdev.c
@@ -323,8 +323,8 @@ static int bdev_ioctl_setup(dev_t dev, int request, void *buf, message *m)
        size = _MINIX_IOCTL_SIZE(request);
 
   access = 0;
-  if (_MINIX_IOCTL_IOR(access)) access |= CPF_WRITE;
-  if (_MINIX_IOCTL_IOW(access)) access |= CPF_READ;
+  if (_MINIX_IOCTL_IOR(request)) access |= CPF_WRITE;
+  if (_MINIX_IOCTL_IOW(request)) access |= CPF_READ;
 
   /* The size may be 0, in which case 'buf' need not be a valid pointer. */
   grant = cpf_grant_direct(endpt, (vir_bytes) buf, size, access);