aa_getcon: Get AppArmor confinement context for the current task


We can use this function to see if there is an AppArmor profile associated with the current process, and in which mode it current is set (enforce, complain, disable).


aa_getcon(verbose = TRUE)



print some C output (TRUE/FALSE)


Note that in order for this function to do its work, it needs read access to the attributes of the current process. If aa_getcon fails with a permission denied error, it might actually mean that the current process is being confined with a very restrictive profile.


Jeroen Ooms (2013). The RAppArmor Package: Enforcing Security Policies in R Using Dynamic Sandboxing on Linux. Journal of Statistical Software, 55(7), 1-34. http://www.jstatsoft.org/v55/i07/.

Ubuntu Manpage: aa_getcon - get task confinement information. http://manpages.ubuntu.com/manpages/precise/man2/aa_getcon.2.html.

Questions? Problems? Suggestions? or email at ian@mutexlabs.com.

All documentation is copyright its authors; we didn't write any of that.