diff --git a/file.te b/file.te
index 53fac044e162b00607773b37933c66162b947ef1..db8b14032a1e01fb7082a822b2a2fa4a7b926dd4 100644
--- a/file.te
+++ b/file.te
@@ -34,6 +34,9 @@ type configfs, fs_type;
 type sysfs_devices_system_cpu, fs_type, sysfs_type;
 # /sys/module/lowmemorykiller
 type sysfs_lowmemorykiller, fs_type, sysfs_type;
+
+type sysfs_thermal, sysfs_type, fs_type;
+
 type sysfs_zram, fs_type, sysfs_type;
 type sysfs_zram_uevent, fs_type, sysfs_type;
 type inotify, fs_type, mlstrustedobject;
diff --git a/system_server.te b/system_server.te
index 0e4ac39612055fad3443c8b13e7657da17124cff..d5712ea90daf2112bc90a410ea6fbe382edbfc60 100644
--- a/system_server.te
+++ b/system_server.te
@@ -170,6 +170,8 @@ allow system_server sysfs:file rw_file_perms;
 allow system_server sysfs_nfc_power_writable:file rw_file_perms;
 allow system_server sysfs_devices_system_cpu:file w_file_perms;
 allow system_server sysfs_mac_address:file r_file_perms;
+allow system_server sysfs_thermal:dir search;
+allow system_server sysfs_thermal:file r_file_perms;
 
 # Access devices.
 allow system_server device:dir r_dir_perms;