diff --git a/apparmor.d/profiles-s-z/zpool b/apparmor.d/profiles-s-z/zpool
index 67b73d7e0..b4d23646d 100644
--- a/apparmor.d/profiles-s-z/zpool
+++ b/apparmor.d/profiles-s-z/zpool
@@ -10,12 +10,15 @@ profile zpool @{exec_path} flags=(complain) {
   capability sys_admin,
 
   @{exec_path} r,
+  /{usr/,}{local/,}lib/zfs-linux/zpool.d/* rix,
+  /{usr/,}{local/,}bin/{ba,da,k,z,}sh rix,
   
   /dev/zfs rw,
   @{PROC}/@{pids}/mounts r,
 
   /dev/pts/[0-9]* rw,
   /etc/hostid r,
+  @{PROC}/sys/kernel/spl/hostid r,
 
   include if exists <local/zfs>
 }