Previous Topic: About the InterfaceNext Topic: Return Codes

Using the Application InterfaceResource Validation

Resource Validation

In order to validate a resource, the following fields in the AIPL must be supplied:

AIFUNC

Contains AI$RES

AIREST

Contains the hex resource code as defined in the RDT for the resource being checked. (CA-defined resources are found in the #AFLAGS macro in TSSVM MACLIB.)

AIREST2

Contains the two-byte resource code as defined in the RDT for he resource being checked. If a two-byte resource code is being used, AIREST must be set to x'FF' to signify the fact.

AIRESN

Contains the name of the resource to be validated.

Note: If you are indicating the name of an SFS resource (such as SFSCMD or DIRECTRY), the resource name cannot exceed 44 characters in length.

AIRESL

Contains the MACHINE LENGTH (actual length - 1) of the resource being validated

AIRRACC

Contains composite one byte result of all access levels required to satisfy the request

AIRRACCE

Contains composite two byte result of all extended access levels required to satisfy the request (see note below).

AIVOL

Optionally contains the VOLSER if the resource being validated is an O/S data set

AIUCLASS

Contains the class for USERx validation

Note: Your application may use either AIRRACC or AIRRACCE, but not both. AIRRACC is maintained for existing applications that were written with support for one byte access levels. All new applications, or existing applications that require the two byte expanded access levels, should set AI$EXT in AIFLAG1 and use AIRRACCE instead.

Additionally, the following bit settings for AIFLAG1 are honored:

AIF$NLOG

Do not log this resource validation request

AIF$PRIV

The validation is being done for the privileged form of a CP command or diagnose.

AIF$VMID

AIACID contains a VM userid

AIF$MUM

An AI$INIT function was previously done for this ACID.

AIF$EXT

AIPL contains "extended access levels" in AIRRACCE.

If the resource is being validated on behalf of a logged on virtual machine, the AIACID field should contain the name of that virtual machine and AIF$VMID should be set in AIFLAG1. If the AIACID field is not filled in, the validation is processed against the issuer of the diagnose.

If the request is being done on behalf of another virtual machine, and the issuer has the MASTFAC attribute, the check is made under the restrictions (mode, facility, etc.) of the MASTFAC facility.

For more details on the use of MASTFAC, refer to the Command Functions Guide.

Other than access to the security diagnose (X'A0'), issuer needs no special authority from CA Top Secret in order to validate the resource access.