Security and safety of Linux systems in a BPF-powered hybrid user space/kernel world