1. Proposed title of this feature request

Enable CAP_BPF with OCP and libcap

2. What is the nature and description of the request?

6wind fastpath needs to use EBPF for IPsec and tcpdump feature. CAP_BPF can be used provided the host OS supports it - and this means better security risk mitigation, as "SYS_ADMIN" allows too many privileges for a container.

3. Why does the customer need this? (List the business requirements here)

Security policy required by the workload provider.

4. List any affected packages or components.