runc/config: add seccomp distro feature

When using podman (or other seccomp enabled container runtimes),
you will get an OCI container startup error if runc hasn't been
built with seccomp.

Adding a distro feature to runc and to the README to make it easier
to coordinate the support.

Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>

2 files changed, 6 insertions, 1 deletions

diff --git a/README b/README
index 88068f30..f0809ae3 100644
--- a/README
+++ b/README
@@ -34,6 +34,7 @@ that may also be enabled:
  - selinux: enables functionality in libvirt and lxc
  - systemd: enable systemd services and unit files (for recipes for support)
  - sysvinit: enable sysvinit scripts (for recipes with support)
+ - seccomp: enable seccomp support for packages that have the capability.
 
 Dependencies
 ------------
diff --git a/recipes-containers/runc/runc.inc b/recipes-containers/runc/runc.inc
index 41ea41be..5a6aeaf6 100644
--- a/recipes-containers/runc/runc.inc
+++ b/recipes-containers/runc/runc.inc
@@ -14,11 +14,15 @@ inherit go
 inherit goarch
 inherit pkgconfig
 
-PACKAGECONFIG ??= "static"
 PACKAGECONFIG[seccomp] = "seccomp,,libseccomp"
 # This PACKAGECONFIG serves the purpose of whether building runc as static or not
 PACKAGECONFIG[static] = ""
 
+PACKAGECONFIG ??= "static \
+                   ${@bb.utils.contains('DISTRO_FEATURES', 'seccomp', 'seccomp', '', d)} \
+                  "
+
+
 PROVIDES += "virtual/runc"
 RPROVIDES_${PN} = "virtual/runc"