privops: enable system call filter

In preparation of OpenBSD support, add SYS_EnableSystemCallFilter() call
to PRV_StartHelper().

In OpenBSD the privops helper will use a system call filter (pledge(2)),
whereas in Linux the privops helper doesn't use any system call filter
at the moment.

Modify Unit test ntp_sources call to PRV_Initialise() with parameter
scfilter_level set to 0.

privops.h

@@ -65,11 +65,11 @@ void PRV_ReloadDNS(void);
 #endif
 
 #ifdef PRIVOPS_HELPER
-void PRV_Initialise(void);
+void PRV_Initialise(int scfilter_level);
 void PRV_StartHelper(void);
 void PRV_Finalise(void);
 #else
-#define PRV_Initialise()
+#define PRV_Initialise(scfilter_level)
 #define PRV_StartHelper()
 #define PRV_Finalise()
 #endif