It depends. If the PGM= program is AC(1) then the address space is authorized unless other "rules" apply. So if it is authorized, then the called programs are authorized.
The whole idea is to make sure that APF protects MVS integrity. Sent from iPhone - small keyboard fat fingers - expect spellinf errots. > On Mar 15, 2015, at 12:03 PM, Charles Mills <[email protected]> wrote: > > Thanks. In my case the called program is a pre-existing utility that is > shipped AC=0 in an APF library. > > To confirm: there is no integrity issue introduced here, right? The called > program will run non-authorized, correct? > > Charles > > -----Original Message----- > From: IBM Mainframe Discussion List [mailto:[email protected]] On > Behalf Of Binyamin Dissen > Sent: Sunday, March 15, 2015 8:57 AM > To: [email protected] > Subject: Re: APF-authorized calling non-authorized > > On Sun, 15 Mar 2015 06:38:37 -0700 Charles Mills <[email protected]> wrote: > > :>Am I RTFM correctly? An APF-authorized program may successfully call a > :>non-APF-authorized program, provided the called program resides in an > :>APF-authorized library? > > :>The called program need not be AC=0, but its containing load library must > be :>in the APF library list. Is that correct? > > That is the standard way. Only the main program should be marked AC=1 - the > subroutines AC=0. > > ---------------------------------------------------------------------- > For IBM-MAIN subscribe / signoff / archive access instructions, > send email to [email protected] with the message: INFO IBM-MAIN ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [email protected] with the message: INFO IBM-MAIN
