executor: linux: chroot into tmpfs with sandbox=none

To prevent the executor from accidentally making the whole root file system
immutable (which breaks fuzzing), modify sandbox=none to create a tmpfs mount
and chroot into it before executing programs in a process.

According to `syz-manager -mode=smoke-test`, the number of enabled syscalls on
x86 doesn't change with this patch.

Fixes #4939, #2933, #971.

0 files changed, 0 insertions, 0 deletions