diff --git a/bluetooth.te b/bluetooth.te
index 4d9b4abf62de200c9618a193f4f3c5aa615ac3c9..a91f6b2b52f0a2c04adf2741a5f8e004d8f485fa 100644
--- a/bluetooth.te
+++ b/bluetooth.te
@@ -56,6 +56,22 @@ allow bluetooth surfaceflinger_service:service_manager find;
 allow bluetooth system_server_service:service_manager find;
 allow bluetooth tmp_system_server_service:service_manager find;
 
+service_manager_local_audit_domain(bluetooth)
+auditallow bluetooth {
+    tmp_system_server_service
+    -activity_service
+    -appops_service
+    -audio_service
+    -bluetooth_manager_service
+    -connectivity_service
+    -display_service
+    -dropbox_service
+    -media_session_service
+    -network_management_service
+    -power_service
+    -registry_service
+}:service_manager find;
+
 # already open bugreport file descriptors may be shared with
 # the bluetooth process, from a file in
 # /data/data/com.android.shell/files/bugreports/bugreport-*.
diff --git a/untrusted_app.te b/untrusted_app.te
index abcba7884a1c2604cb73cbe4714e8f52a40faa88..e880571eb414545c1597bd18ccaabf26a1597a87 100644
--- a/untrusted_app.te
+++ b/untrusted_app.te
@@ -125,6 +125,7 @@ auditallow untrusted_app {
     -registry_service
     -search_service
     -sensorservice_service
+    -statusbar_service
     -textservices_service
     -trust_service
     -uimode_service