diff --git a/tracking_denials/hal_bluetooth_btlinux.te b/tracking_denials/hal_bluetooth_btlinux.te
index 9e666556..c0fb4c3a 100644
--- a/tracking_denials/hal_bluetooth_btlinux.te
+++ b/tracking_denials/hal_bluetooth_btlinux.te
@@ -3,9 +3,4 @@ dontaudit hal_bluetooth_btlinux default_android_service:service_manager { find }
 # b/264489608
 userdebug_or_eng(`
   permissive hal_bluetooth_btlinux;
-')# b/265587172
-dontaudit hal_bluetooth_btlinux aoc_device:chr_file { getattr };
-dontaudit hal_bluetooth_btlinux aoc_device:chr_file { open };
-dontaudit hal_bluetooth_btlinux aoc_device:chr_file { read write };
-dontaudit hal_bluetooth_btlinux device:dir { read };
-dontaudit hal_bluetooth_btlinux device:dir { watch };
+')
diff --git a/vendor/hal_bluetooth_btlinux.te b/vendor/hal_bluetooth_btlinux.te
new file mode 100644
index 00000000..1c447834
--- /dev/null
+++ b/vendor/hal_bluetooth_btlinux.te
@@ -0,0 +1,3 @@
+# Allow access to always-on compute device node
+allow hal_bluetooth_btlinux aoc_device:chr_file rw_file_perms;
+allow hal_bluetooth_btlinux device:dir r_dir_perms;