Operation | Environment |
---|---|
Authorization: | Supervisor state or problem state, any PSW key |
Dispatchable unit mode: | Task |
Cross memory mode: | PASN = HASN |
AMODE (BPX1ACK): | 31-bit |
AMODE (BPX4ACK): | 64-bit |
ASC mode: | Primary mode |
Interrupt status: | Enabled for interrupts |
Locks: | Unlocked |
Control parameters: | All parameters must be addressable by the caller and in the primary address space. |
|
AMODE 64 callers use BPX4ACK with the same parameters.
The name of a 36-byte area that contains the cell DCE UUID. If the cell DCE UUID is not specified, the first byte of this 36-byte area must contain NUL (X'00').
The name of a 36-byte area that contains the principal DCE UUID. If the principal DCE UUID is not specified, the first byte of this 36-byte area must contain NUL (X'00').
The name of a fullword that contains the length of the Userid parameter. Userid_Length can be in the range of 0 to 8. If a user ID is not required, specify the name of a fullword that contains zero.
The name of an area, 0 to 8 characters in length, that contains a user ID. If a user ID is not required (Userid_Length is zero), this parameter is ignored.
The name of a fullword that contains the length of the Security_Class. The Security_Class_Length must be in the range of 1 to 8.
The name of an area, 1 to 8 characters in length, that contains the Security_Class. The Security_Class parameter cannot specify DATASET. For systems using RACF®, the class name specified must be in the RACF class descriptor table.
The name of a fullword that contains the length of the Entity_Name. The Entity_Name_Length can be in the range of 1 to 246.
The name of an area, 1 to 246 characters in length, that contains the Entity_Name.
Constant | Access |
---|---|
ACK_READ# | check READ authority |
ACK_UPDATE# | check UPDATE authority |
ACK_CONTROL# | check CONTROL authority |
ACK_ALTER# | check ALTER authority |
The name of a fullword in which the auth_check_resource_np service returns 0 if the request is successful, or -1 if it is not successful.
Return_code | Explanation |
---|---|
EINVAL | One or more of the following conditions were detected:
The following reason codes can accompany the return code: JRAccessUndefined, JRUserNameLenError, JRClassLenErr, or JREntityLenErr. |
ESRCH | One or more of the following conditions were detected:
The following reason codes can accompany the return code: JRSAFNoUser,JRSAFNoUUIDtoUser, JRSAFResourceUndefined, or JRSAFNoDCEClass. |
ENOSYS | One or more of the following conditions were detected:
The following reason codes can accompany the return code: JRNoSecurityProduct, or JRSNoSAFSupport. |
EMVSSAF2ERR | An error occurred in the security product. One or more of the
following conditions were detected:
The following reason codes can accompany the return code: JRSAFInternal, JRSAFParmListErr, or JRUnexpectedError. |
EPERM | One or more of the following conditions were detected:
The following reason codes can accompany the return code: JRNotServerAuthorized, JRNoResourceAccess, or JREnvDirty. |
The name of a fullword in which the auth_check_resource_np service stores the reason code. The auth_check_resource_np service returns Reason_code only if Return_value is -1. Reason_code further qualifies the Return_code value. See z/OS UNIX System Services Messages and Codes for the reason codes.
The auth_check_resource_np service is restricted to users that have the appropriate privileges.
For an example using this callable service, see BPX1ACK (auth_check_resource_np) example.