Extended seccomp support.
The initial support seccomp was minimized to simply allowing for blocking several calls. This effort greatly improves support for configurable seccomp by allowing a block all by default approach, coupled with an allowable list of system calls. In additional to the new configurations options testing via Pavilion has been added to ensure a baseline functionality.
Edited by Paul Bryant