diff --git a/public/shell.te b/public/shell.te
index 31408a0e3c26493666c014dd454e5d6d8aee019e..6c937030732cd60611f6517a71ab3084144d024a 100644
--- a/public/shell.te
+++ b/public/shell.te
@@ -45,8 +45,14 @@ unix_socket_connect(shell, dumpstate, dumpstate)
 allow shell devpts:chr_file rw_file_perms;
 allow shell tty_device:chr_file rw_file_perms;
 allow shell console_device:chr_file rw_file_perms;
+
 allow shell input_device:dir r_dir_perms;
 allow shell input_device:chr_file rw_file_perms;
+# b/30861057: TODO: No shell write access to existing input devices
+userdebug_or_eng(`
+  auditallow shell input_device:chr_file write;
+')
+
 r_dir_file(shell, system_file)
 allow shell system_file:file x_file_perms;
 allow shell toolbox_exec:file rx_file_perms;