Interesting method of teaching. The kernel is intentionally patched with an exploitable bit of code, and then you proceed to learn about how to take advantage of it using eBPF.
The simple fact that eBPF cannot be fully-compiled out from the Linux kernel goes to show the current but sad state of eBPF affair being found within the kernel security arena.
Budding embedded engineers are now facing this dilemma and are now looking elsewhere into BSD and other OS variants. But us high-security-conscience embedded engineers already knew that this was coming for a long time.
In short, Linux is no longer suitable for tiny IoT.
