Retain CAP_SYS_PTRACE when running as unpriviliged
Without CAP_SYS_PTRACE, gssproxy will be unable to read
/proc/pid/exe, which breaks program name matching.
Fixes: https://pagure.io/gssproxy/issue/239
Signed-off-by: Stanislav Levin <slev@altlinux.org>
[rharwood@redhat.com: rewrite commit message, comments, and error strings]
Reviewed-by: Robbie Harwood <rharwood@redhat.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Merges: #240