diff --git a/adbd.te b/adbd.te
index a9a635528855c0ee10d75840b7be8a502aef0908..9d3d30d3786b15dcc9863ebe6a685ab498fafdc7 100644
--- a/adbd.te
+++ b/adbd.te
@@ -69,6 +69,8 @@ allow adbd appdomain:unix_stream_socket connectto;
 allow adbd zygote_exec:file r_file_perms;
 allow adbd system_file:file r_file_perms;
 
+allow adbd kernel:security read_policy;
+
 service_manager_local_audit_domain(adbd)
 auditallow adbd {
     service_manager_type
diff --git a/app.te b/app.te
index 63ee7aa4c8bef28981c1c228691b4a374dd668c6..491eea34aad459d3e2b146256bdd80df120f279d 100644
--- a/app.te
+++ b/app.te
@@ -166,8 +166,6 @@ allow appdomain runas_exec:file getattr;
 # Check SELinux policy and contexts.
 selinux_check_access(appdomain)
 selinux_check_context(appdomain)
-# Enable reading of current selinux policy file
-allow appdomain kernel:security read_policy;
 # Validate that each process is running in the correct security context.
 allow appdomain domain:process getattr;