dovecot: allow FD passing between dovecot and dovecot's anvil

profiles/apparmor.d/usr.lib.dovecot.anvil

@@ -18,6 +18,8 @@
   capability setuid,
   capability sys_chroot,
 
+  unix (receive, send) type=stream peer=(label=dovecot),
+
   /run/dovecot/anvil rw,
   /usr/lib/dovecot/anvil mr,
 

profiles/apparmor.d/usr.sbin.dovecot

@@ -33,6 +33,8 @@ profile dovecot /usr/{bin,sbin}/dovecot flags=(attach_disconnected) {
 
   signal send set=(int,quit) peer=/usr/lib/dovecot/*,
 
+  unix (receive, send) type=stream peer=(label=/usr/lib/dovecot/anvil),
+
   /etc/dovecot/** r,
   /etc/mtab r,
   /etc/lsb-release r,