360 Assembly/Privileged Instructions

Privileged Instructions are programming instructions that need to be restrited to the operating system in order to protect system resources, system integrity, or system security. These include, but are not limited to:

• I/O instructions. To make sure two programs do not try to write to a printer, or edit a database record, or other errors that could corrupt files, a program issues I/O requests to the operating system, and it handles these operations.
• Load PSW. The PSW (program status word) contains the status about the computer and the currently executing job.
• Insert storage key, set storage key. Change or read any memory.
• Page table functions. Contaminate other jobs, lose pages swapped out to disc, corrupt memory and/or other jobs.
• Diagnose. Used by operating systems to issue requests to the hypervisor.

Programs that do not have privileges are known as "problem" programs. Without protecting the PSW, page tables, or I/O devices, problem programs could:

• Grant themselves privileges
• Allow themselves to reset their storage key, allowing them to change any memory
• Rewrite, contaminate or destroy page tables, losing or corrupting other jobs
• Change the system date and time
• Halt the machine

Anyone having heard about or seen the effects of malware or ransomware can understand the kind of damage a rogue privileged program do to a computer. Unless you have your own machine (like using the Hercules emulator on Linux, Mac, Raspberry Pi, or Windows, and don't care if something in the virtual environment is damaged), or you know exactly what you're doing, it's probably best to restrict privileged functions to the operating system than allow just anyone to use them willy-nilly. However, because sometimes problem programs in a production environment legitimately have a need to execute privileged instructions or access operating system tables or memory belonging to another process, many installations will install a "private" SVC routine ("private" in that is only set up on that machine, and is not part of the "stock" operating system supplied by the developer) and that SVC either grants privileged state to that process or changes an operating system table to grant the program additional privilege(s). Often the same SVC can be used to reset the request, revoking the privilege.

These are the privileged instructions: Legend:

•         Available on all models unless indicated by (360 only) or (360 & 370 only)
•         Available on the 370, 390 and z/System
•         Available on the 390 and z/System
•         Available only on the z/System

Using any of these in a problem (unprivileged) program will cause a protection exception. Using one of these instructions in a privileged program on the wrong class of machine will cause an operation exception.