diff --git a/adbd.te b/adbd.te
index 4026fcb94b593547f699d196b7809f3042f5c32f..c565bd75ebb0624f2c3b13734140c9558e36e033 100644
--- a/adbd.te
+++ b/adbd.te
@@ -31,6 +31,10 @@ domain_auto_trans(adbd, shell_exec, shell)
 # Do not sanitize the environment of the shell.
 allow adbd shell:process noatsecure;
 
+# XXX Mostly to access system properties and keys- maybe those should be their own type?
+allow adbd system_data_file:file create_file_perms;
+allow adbd system_data_file:dir create_dir_perms;
+
 # Perform binder IPC to surfaceflinger (screencap)
 # XXX Run screencap in a separate domain?
 binder_use(adbd)
diff --git a/system.te b/system.te
index 0adbd2d8ca6fc5853e4ed633e9e68f3888fbcafc..761f28283c92e750e80a4007b42d8ab5e33783b8 100644
--- a/system.te
+++ b/system.te
@@ -140,6 +140,7 @@ allow system urandom_device:chr_file rw_file_perms;
 allow system usbaccessory_device:chr_file rw_file_perms;
 allow system video_device:chr_file rw_file_perms;
 allow system qemu_device:chr_file rw_file_perms;
+allow system devpts:chr_file rw_file_perms;
 
 # tun device used for 3rd party vpn apps
 allow system tun_device:chr_file rw_file_perms;