dovecot_additional: allow watching of mail spool

dovecot_additional.te

@@ -1,4 +1,4 @@
-policy_module(dovecot_additional, 0.0.7)
+policy_module(dovecot_additional, 0.0.9)
 
 require {
   type dovecot_deliver_exec_t;
@@ -9,9 +9,9 @@ require {
   type sendmail_exec_t;
 }
 
-optional_policy(`
-	mta_sendmail_domtrans(dovecot_deliver_t)
-')
+#optional_policy(`
+#	mta_sendmail_domtrans(dovecot_deliver_t)
+#')
 
 allow dovecot_deliver_t self:process setrlimit;
 
@@ -26,3 +26,5 @@ postfix_domtrans_postdrop(dovecot_deliver_t)
 postfix_search_spool(dovecot_deliver_t)
 postfix_read_config(dovecot_deliver_t)
 
+allow dovecot_t mail_spool_t:dir watch;
+allow dovecot_t mail_spool_t:file watch;