From 0ab73f94796126cac8d047b094bcc7131044bc0a Mon Sep 17 00:00:00 2001
From: Benno Rice <benno.rice@oracle.com>
Date: Tue, 21 May 2024 15:53:06 +1000
Subject: [PATCH] Ensure SELinux label policy is applied when merging image
 layers

---
 lib/src/container/store.rs | 1 +
 1 file changed, 1 insertion(+)

diff --git a/lib/src/container/store.rs b/lib/src/container/store.rs
index ca6d1899..064e7c58 100644
--- a/lib/src/container/store.rs
+++ b/lib/src/container/store.rs
@@ -973,6 +973,7 @@ impl ImageImporter {
                 let modifier =
                     ostree::RepoCommitModifier::new(ostree::RepoCommitModifierFlags::CONSUME, None);
                 modifier.set_devino_cache(&devino);
+                modifier.set_sepolicy_from_commit(&repo, &base_commit, cancellable)?;
 
                 let mt = ostree::MutableTree::new();
                 repo.write_dfd_to_mtree(