diff --git a/non_plat/mtkrild.te b/non_plat/mtkrild.te
index 8c30d35..3ae7431 100644
--- a/non_plat/mtkrild.te
+++ b/non_plat/mtkrild.te
@@ -54,7 +54,7 @@ allow mtkrild bluetooth_efs_file:dir r_dir_perms;
 allow mtkrild sdcardfs:dir r_dir_perms;
 # Violate Android P rule
 #allow mtkrild system_file:file x_file_perms;
-allow mtkrild proc:file rw_file_perms;
+#allow mtkrild proc:file rw_file_perms;
 allow mtkrild proc_net:file w_file_perms;
 
 # Set and get routes directly via netlink.
@@ -68,14 +68,14 @@ allow mtkrild mtd_device:dir search;
 allow mtkrild tty_device:chr_file rw_file_perms;
 allow mtkrild eemcs_device:chr_file { rw_file_perms };
 
-allow mtkrild Vcodec_device:chr_file { rw_file_perms };
+#allow mtkrild Vcodec_device:chr_file { rw_file_perms };
 allow mtkrild devmap_device:chr_file { r_file_perms };
 allow mtkrild devpts:chr_file { rw_file_perms };
 allow mtkrild ccci_device:chr_file { rw_file_perms };
 allow mtkrild misc_device:chr_file { rw_file_perms };
 allow mtkrild proc_lk_env:file rw_file_perms;
 allow mtkrild sysfs_vcorefs_pwrctrl:file { w_file_perms };
-allow mtkrild bootdevice_block_device:blk_file { rw_file_perms };
+#allow mtkrild bootdevice_block_device:blk_file { rw_file_perms };
 allow mtkrild para_block_device:blk_file { rw_file_perms };
 
 # Allow dir search, fd uses
diff --git a/non_plat/rild.te b/non_plat/rild.te
index 1247403..9472dba 100644
--- a/non_plat/rild.te
+++ b/non_plat/rild.te
@@ -58,14 +58,14 @@ allow rild mtd_device:dir search;
 allow rild tty_device:chr_file rw_file_perms;
 allow rild eemcs_device:chr_file { rw_file_perms };
 
-allow rild Vcodec_device:chr_file { rw_file_perms };
+#allow rild Vcodec_device:chr_file { rw_file_perms };
 allow rild devmap_device:chr_file { r_file_perms };
 allow rild devpts:chr_file { rw_file_perms };
 allow rild ccci_device:chr_file { rw_file_perms };
 allow rild misc_device:chr_file { rw_file_perms };
 allow rild proc_lk_env:file rw_file_perms;
 allow rild sysfs_vcorefs_pwrctrl:file { w_file_perms };
-allow rild bootdevice_block_device:blk_file { rw_file_perms };
+#allow rild bootdevice_block_device:blk_file { rw_file_perms };
 allow rild para_block_device:blk_file { rw_file_perms };
 
 # Allow dir search, fd uses