diff --git a/shell.te b/shell.te
index 893403a3a108b516b1fbf7eb5077d0110ccd3fdb..39b599fcabd976106dff12a9963940ff5baf2f60 100644
--- a/shell.te
+++ b/shell.te
@@ -88,6 +88,9 @@ allow shell domain:process getattr;
 allow shell bootchart_data_file:dir rw_dir_perms;
 allow shell bootchart_data_file:file create_file_perms;
 
+# Make sure strace works for the non-privileged shell user
+allow shell self:process ptrace;
+
 # Do not allow shell to hard link to any files.
 # In particular, if shell hard links to app data
 # files, installd will not be able to guarantee the deletion