diff --git a/tracking_denials/mediacodec.te b/tracking_denials/mediacodec.te
deleted file mode 100644
index d4a74b8a..00000000
--- a/tracking_denials/mediacodec.te
+++ /dev/null
@@ -1,7 +0,0 @@
-# b/172173484
-dontaudit mediacodec sysfs:file { getattr };
-dontaudit mediacodec sysfs:file { open };
-dontaudit mediacodec sysfs:file { read };
-userdebug_or_eng(`
-  permissive mediacodec;
-')
diff --git a/whitechapel/vendor/google/file.te b/whitechapel/vendor/google/file.te
index efe9e8d1..8a71cc1e 100644
--- a/whitechapel/vendor/google/file.te
+++ b/whitechapel/vendor/google/file.te
@@ -179,3 +179,6 @@ type sysfs_memory, sysfs_type, fs_type;
 
 # bcmdhd (Broadcom FullMAC wireless cards support)
 type sysfs_bcmdhd, sysfs_type, fs_type;
+
+# Video
+type sysfs_video, sysfs_type, fs_type;
diff --git a/whitechapel/vendor/google/file_contexts b/whitechapel/vendor/google/file_contexts
index d9525ff2..0c1822ae 100644
--- a/whitechapel/vendor/google/file_contexts
+++ b/whitechapel/vendor/google/file_contexts
@@ -408,3 +408,10 @@
 # video system DMA-BUF heap
 /dev/dma_heap/video_system                                               u:object_r:dmabuf_system_heap_device:s0
 /dev/dma_heap/video_system-uncached                                      u:object_r:dmabuf_system_heap_device:s0
+
+# Video sysfs files
+/sys/devices/platform/mfc/video4linux/video6/name                              u:object_r:sysfs_video:s0
+/sys/devices/platform/mfc/video4linux/video7/name                              u:object_r:sysfs_video:s0
+
+# BigOcean
+/dev/bigocean                                                                  u:object_r:video_device:s0
diff --git a/whitechapel/vendor/google/mediacodec.te b/whitechapel/vendor/google/mediacodec.te
index d3b108f6..2264eac9 100644
--- a/whitechapel/vendor/google/mediacodec.te
+++ b/whitechapel/vendor/google/mediacodec.te
@@ -4,3 +4,4 @@ userdebug_or_eng(`
 
 add_service(mediacodec, eco_service)
 allow mediacodec hal_camera_default:binder call;
+allow mediacodec sysfs_video:file r_file_perms;