In addition to using the
level parameter
of the IEANTRT callable service to specify the level of a name/token
pair, an authorized program can use the parameter to check the authorization
of the creator of the pair. Authorized programs might perform such
checking to make sure they do not retrieve data from a problem-state
and PSW key 8-15 program that was written with an intent to do harm.
To retrieve a token and make sure the pair's creating task is supervisor
state or PSW key 0-7, use one of the following values on the
level parameter:
- 11 - task level with authorization check
- 12 - home level with authorization check
- 13 - primary level with authorization check.
If a program requests a retrieval with an authorization check and
an unauthorized program created the pair, the program receives a non-zero
return code but does not receive the token.