Expand disallowed system calls

Relevant: #8

qssb.h

@@ -152,6 +152,9 @@ static int default_blacklisted_syscals[] = {
 	QSSB_SYS(process_vm_readv),
 	QSSB_SYS(process_vm_writev),
 	QSSB_SYS(userfaultfd),
+	QSSB_SYS(init_module),
+	QSSB_SYS(finit_module),
+	QSSB_SYS(delete_module),
 	-1
 };
 
@@ -577,7 +580,7 @@ static int seccomp_enable_blacklist(int *syscalls)
 }
 
 /*
- * Blacklists the specified systemcalls.
+ * Whitelists the specified systemcalls.
  *
  * syscalls: array of system calls numbers. -1 must be the last entry.
  */