Reminds me of when I used this same API to debug Chrome OS's "crosh" shell and escape OS protections, also obtaining root access on developer devices. (CVE-2014-3172)

The author of this post had to bypass much more challenging obstacles. This is great work!