CAP_*
__user_cap_data_struct
capget(_LINUX_CAPABILITY_VERSION_3, pid)
capset(_LINUX_CAPABILITY_VERSION_3, pid, effective, permitted, inheritable)