diff --git a/cts.te b/cts.te
index 11b769833e1afe3e2d3cad753d6a556dbf65f661..8ae62daf533a20efc3cb64bc6fd88857c9db92d6 100644
--- a/cts.te
+++ b/cts.te
@@ -23,9 +23,6 @@ allow appdomain file_type:dir_file_class_set getattr;
 allow appdomain dev_type:dir_file_class_set getattr;
 allow appdomain fs_type:dir_file_class_set getattr;
 
-# Read permission over link file to devices.
-allow appdomain dev_type:lnk_file read;
-
 # Tries to open /dev/alarm for writing but expects failure.
 dontaudit appdomain alarm_device:chr_file write;
 
diff --git a/domain.te b/domain.te
index 9124b0d7de6c93b003de7ee2e8f15e5b508bfe1a..40bab7604854096a9b85ec12acf2714d4449a285 100644
--- a/domain.te
+++ b/domain.te
@@ -40,6 +40,7 @@ allow domain rootfs:lnk_file { read getattr };
 
 # Device accesses.
 allow domain device:dir search;
+allow domain dev_type:lnk_file read;
 allow domain devpts:dir search;
 allow domain device:file read;
 allow domain socket_device:dir search;
diff --git a/rild.te b/rild.te
index e8069bff6085dbfa028bf5c6a27e6661bdd305a1..690bfabefcee333e07729ebd73575e0dadea4c0d 100644
--- a/rild.te
+++ b/rild.te
@@ -22,7 +22,6 @@ allow rild bluetooth_efs_file:file r_file_perms;
 allow rild bluetooth_efs_file:dir r_dir_perms;
 allow rild radio_data_file:dir r_dir_perms;
 allow rild radio_data_file:file rw_file_perms;
-allow rild radio_device:lnk_file r_file_perms;
 allow rild sdcard_type:dir r_dir_perms;
 allow rild system_data_file:dir create_dir_perms;
 allow rild system_data_file:file create_file_perms;
diff --git a/vold.te b/vold.te
index c1b9055035a9a126b33a747f15052113e1ee7053..8ffc404d4dfd6d518d49f46e0362e5fc3a45d146 100644
--- a/vold.te
+++ b/vold.te
@@ -7,7 +7,6 @@ typeattribute vold mlstrustedsubject;
 allow vold system_file:file x_file_perms;
 allow vold block_device:dir create_dir_perms;
 allow vold block_device:blk_file create_file_perms;
-allow vold block_device:lnk_file read;
 allow vold devpts:chr_file rw_file_perms;
 allow vold rootfs:dir mounton;
 allow vold sdcard_type:dir mounton;