diff --git a/apparmor.d/groups/pacman/makepkg b/apparmor.d/groups/pacman/makepkg
index b2c043a6e..30650d80c 100644
--- a/apparmor.d/groups/pacman/makepkg
+++ b/apparmor.d/groups/pacman/makepkg
@@ -86,8 +86,9 @@ profile makepkg @{exec_path} {
 
     ptrace read,
 
-    signal send set=winch peer=pacman,
-    signal send set=winch peer=pacman//systemctl,
+    signal send set=(term winch) peer=pacman,
+    signal send set=(term winch) peer=pacman//systemctl,
+    signal send set=(term winch) peer=systemd-tty-ask-password-agent,
 
     @{bin}/pacman Px,
 
diff --git a/apparmor.d/groups/pacman/pacman b/apparmor.d/groups/pacman/pacman
index a40d6e5f6..0043cd061 100644
--- a/apparmor.d/groups/pacman/pacman
+++ b/apparmor.d/groups/pacman/pacman
@@ -41,7 +41,7 @@ profile pacman @{exec_path} flags=(attach_disconnected) {
   ptrace read,
 
   signal send,
-  signal receive set=winch peer=makepkg//sudo,
+  signal receive set=(term winch) peer=makepkg//sudo,
 
   @{exec_path} mrix,
 
@@ -200,7 +200,7 @@ profile pacman @{exec_path} flags=(attach_disconnected) {
 
     signal send set=cont peer=child-pager,
     signal send set=(cont term) peer=systemd-tty-ask-password-agent,
-    signal receive set=winch peer=makepkg//sudo,
+    signal receive set=(term winch) peer=makepkg//sudo,
 
     @{pager_path}      rPx -> child-pager,
     @{bin}/systemd-tty-ask-password-agent rPx,
diff --git a/apparmor.d/groups/systemd/systemd-tty-ask-password-agent b/apparmor.d/groups/systemd/systemd-tty-ask-password-agent
index 7ab8be35c..dd6576dd7 100644
--- a/apparmor.d/groups/systemd/systemd-tty-ask-password-agent
+++ b/apparmor.d/groups/systemd/systemd-tty-ask-password-agent
@@ -18,6 +18,7 @@ profile systemd-tty-ask-password-agent @{exec_path} {
   capability sys_resource,
 
   signal receive set=(term cont) peer=*//systemctl,
+  signal receive set=(term cont) peer=deb-systemd-invoke,
   signal receive set=(term cont) peer=default,
   signal receive set=(term cont) peer=logrotate,
   signal receive set=(term cont) peer=role_*,