oci/caps/defaults.go - third_party/github.com/docker/docker - Git at Google

 package caps // import "github.com/docker/docker/oci/caps"

 // DefaultCapabilities returns a Linux kernel default capabilities
 func DefaultCapabilities() []string {
 	return []string{
 		"CAP_CHOWN",
 		"CAP_DAC_OVERRIDE",
 		"CAP_FSETID",
 		"CAP_FOWNER",
 		"CAP_MKNOD",
 		"CAP_NET_RAW",
 		"CAP_SETGID",
 		"CAP_SETUID",
 		"CAP_SETFCAP",
 		"CAP_SETPCAP",
 		"CAP_NET_BIND_SERVICE",
 		"CAP_SYS_CHROOT",
 		"CAP_KILL",
 		"CAP_AUDIT_WRITE",
 	}
 }
	package caps // import "github.com/docker/docker/oci/caps"

	// DefaultCapabilities returns a Linux kernel default capabilities
	func DefaultCapabilities() []string {
	return []string{
	"CAP_CHOWN",
	"CAP_DAC_OVERRIDE",
	"CAP_FSETID",
	"CAP_FOWNER",
	"CAP_MKNOD",
	"CAP_NET_RAW",
	"CAP_SETGID",
	"CAP_SETUID",
	"CAP_SETFCAP",
	"CAP_SETPCAP",
	"CAP_NET_BIND_SERVICE",
	"CAP_SYS_CHROOT",
	"CAP_KILL",
	"CAP_AUDIT_WRITE",
	}
	}