diff --git a/policy/modules/kernel/files.if b/policy/modules/kernel/files.if
index 0e6800b66..495cbe2f4 100644
--- a/policy/modules/kernel/files.if
+++ b/policy/modules/kernel/files.if
@@ -3226,6 +3226,7 @@ interface(`files_exec_etc_files',`
 interface(`files_get_etc_unit_status',`
 	gen_require(`
 		type etc_t;
+		class service status;
 	')
 
 	allow $1 etc_t:service status;
@@ -3244,6 +3245,7 @@ interface(`files_get_etc_unit_status',`
 interface(`files_start_etc_service',`
 	gen_require(`
 		type etc_t;
+		class service start;
 	')
 
 	allow $1 etc_t:service start;
@@ -3262,6 +3264,7 @@ interface(`files_start_etc_service',`
 interface(`files_stop_etc_service',`
 	gen_require(`
 		type etc_t;
+		class service stop;
 	')
 
 	allow $1 etc_t:service stop;
diff --git a/policy/modules/services/ssh.if b/policy/modules/services/ssh.if
index e5edf17a3..66992a9c2 100644
--- a/policy/modules/services/ssh.if
+++ b/policy/modules/services/ssh.if
@@ -167,6 +167,7 @@ template(`ssh_basic_client_template',`
 #
 template(`ssh_server_template', `
 	gen_require(`
+		attribute ssh_server;
 		type sshd_exec_t, sshd_key_t;
 	')
 	type $1_t, ssh_server;
diff --git a/policy/modules/services/xserver.if b/policy/modules/services/xserver.if
index 9fea101fb..a49f9ee06 100644
--- a/policy/modules/services/xserver.if
+++ b/policy/modules/services/xserver.if
@@ -1539,6 +1539,7 @@ interface(`xserver_read_tmp_files',`
 interface(`xserver_dbus_chat',`
 	gen_require(`
 		type xserver_t;
+		class dbus send_msg;
 	')
 
 	allow $1 xserver_t:dbus send_msg;