Comment # 16 on bug 1128467 from Christian Boltz

(In reply to Martin Wilck from comment #7)
> I'm new to apparmor profiles, but I believe adding 
> 
>   /usr/bin/hpijs ix,
> 
> should fix the issue with the patch from comment 5.

That looks correct and is a good quick fix, but
a) hpijs might need additional permissions (no idea what since I don't use it)
b) since the main profile allows /** rw, (reading and writing any files), it's
   probably a good idea to put hpijs (and other commands that might need to be
   executed) in a child profile with less permissions.

If you are interested in working on b) I'll happily help ;-)

As a general note - you might want to set the profile into complain mode (and
collect logs). See bug 1127934 #c6 for details.