From 18d1ee66a23c556919d708fea9e30541bc345a5a Mon Sep 17 00:00:00 2001
From: Alexandre Pujol <alexandre@pujol.io>
Date: Tue, 7 May 2024 13:19:41 +0100
Subject: [PATCH] feat(profile): update zram generator.

---
 apparmor.d/groups/systemd/zram-generator | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/apparmor.d/groups/systemd/zram-generator b/apparmor.d/groups/systemd/zram-generator
index dbde5b6da..796d12be1 100644
--- a/apparmor.d/groups/systemd/zram-generator
+++ b/apparmor.d/groups/systemd/zram-generator
@@ -11,6 +11,8 @@ profile zram-generator @{exec_path} flags=(attach_disconnected) {
   include <abstractions/base>
   include <abstractions/common/systemd>
 
+  capability sys_module,
+
   @{exec_path} mr,
 
   @{bin}/kmod                    rix,
@@ -18,14 +20,16 @@ profile zram-generator @{exec_path} flags=(attach_disconnected) {
   @{lib}/systemd/systemd-makefs  rPx,
 
   /etc/systemd/zram-generator.conf r,
+  /etc/modprobe.d/{,**} r,
 
   owner @{run}/systemd/generator/{,*/}var-cache-makepkg.mount rw,
   owner @{run}/systemd/generator/dev-zram@{int}.swap rw,
   owner @{run}/systemd/generator/swap.target.wants/{,dev-zram@{int}.swap} rw,
   owner @{run}/systemd/generator/systemd-zram-setup@zram@{int}.service.d/{,*.conf} rw,
 
-  @{sys}/devices/virtual/block/zram@{int}/{disksize,reset,comp_algorithm} rw,
   @{sys}/block/zram@{int}/{disksize,reset} rw,
+  @{sys}/devices/virtual/block/zram@{int}/{disksize,reset,comp_algorithm} rw,
+  @{sys}/module/compression r,
 
   @{PROC}/crypto r,