Index: policy/modules/services/dovecot.te
===================================================================
--- policy/modules/services/dovecot.te.orig
+++ policy/modules/services/dovecot.te
@@ -74,6 +74,7 @@
 read_files_pattern(dovecot_t, dovecot_cert_t, dovecot_cert_t)
 read_lnk_files_pattern(dovecot_t, dovecot_cert_t, dovecot_cert_t)
 
+allow dovecot_t dovecot_etc_t:dir list_dir_perms;
 allow dovecot_t dovecot_etc_t:file read_file_perms;
 files_search_etc(dovecot_t)
 
@@ -182,6 +183,9 @@
 # dovecot auth local policy
 #
 
+logging_search_logs(dovecot_auth_t)
+allow dovecot_auth_t dovecot_etc_t:dir list_dir_perms;
+allow dovecot_auth_t dovecot_etc_t:file read_file_perms;
 manage_sock_files_pattern(dovecot_auth_t,dovecot_var_run_t,dovecot_var_run_t)
 allow dovecot_auth_t self:capability { chown dac_override setgid setuid };
 allow dovecot_auth_t self:process { signal_perms getcap setcap };
@@ -239,6 +243,8 @@
 optional_policy(`
 	mysql_search_db(dovecot_auth_t)
 	mysql_stream_connect(dovecot_auth_t)
+	mysql_tcp_connect(dovecot_auth_t)
+	mysql_read_config(dovecot_auth_t)
 ')
 
 optional_policy(`
@@ -258,6 +264,7 @@
 
 allow dovecot_deliver_t dovecot_t:process signull;
 
+allow dovecot_deliver_t dovecot_etc_t:dir list_dir_perms;
 allow dovecot_deliver_t dovecot_etc_t:file read_file_perms;
 allow dovecot_deliver_t dovecot_var_run_t:dir list_dir_perms;
 
@@ -270,7 +277,6 @@
 auth_use_nsswitch(dovecot_deliver_t)
 
 logging_send_syslog_msg(dovecot_deliver_t)
-logging_search_logs(dovecot_auth_t)
 
 miscfiles_read_localization(dovecot_deliver_t)