| aa-show-usage - Check which profiles are used |
aa-show-usage - Check which profiles are used
aa-show-usage [option]
aa-show-usage will display data on the usage of the profiles of the system
aa-show-usage accepts the following arguments:
Type of profiles to show
Output in JSON
Path to profiles
Show the path of a file matching the profile. Only the first matching path of an executable is shown (not the whole list).
aa-show-usage accepts the following filters to reduce the output of information to only those entries that will match the filter. Filters use Python's regular expression syntax.
Filter by flags
Filter by profile name
Filter by profile attachment (i.e. by path of the executable to which this profile applies)
Filter by profile path
Show both the list of used and unused profiles in your system.
$ aa-show-usageShow the list of unconfined profiles currently used by your system.
$ aa-show-usage --show-type=used --filter.flags=unconfinedaa-show-usage needs to be able to read profiles to tell whether they are used in practice.
aa-show-usage will only report directly used profiles. Profiles used via profile transitions, systemd's AppArmorProfile=, or API call such as aa-exec are not shown as used.
If you find any additional bugs, please report them at https://gitlab.com/apparmor/apparmor/-/issues.
apparmor(7)
| aa-show-usage - Check which profiles are used |