Add automatic TMPDIR setup/teardown to GNU Make

We now guarantee TMPDIR will be defined on a per build rule basis. It'll
be an absolute path. It'll be secure and unique. It'll be rm -rf'd after
the last shell script line in your build rule is executed. If $TMPDIR is
already defined, then it'll be created as a subdirectory of your $TMPDIR
and then replace the variable with the new definition. The Landlock Make
repository will be updated with examples shortly after this change which
shall be known as Landlock Make 1.1.1.

See #530

libc/sock/nointernet.c

@@ -249,19 +249,12 @@ static int WaitForTrace(int main) {
     // eintr isn't possible since we're blocking all signals
     ORDIE(pid = waitpid(-1, &ws, __WALL));
     LogProcessEvent(main, pid, ws);
-    // once main child exits or dies, we exit / die the same way. we're
-    // not currently tracking pids, so it's important that a child does
-    // not exit before its children. otherwise the grandchildren get in
-    // a permanently stopped state. to address that, we'll send sigterm
-    // to the process group which we defined earlier.
     if (WIFEXITED(ws)) {
       if (pid == main) {
-        kill(-getpid(), SIGTERM);
         _Exit(WEXITSTATUS(ws));
       }
     } else if (WIFSIGNALED(ws)) {
       if (pid == main) {
-        kill(-getpid(), SIGTERM);
         Raise(WTERMSIG(ws));
       }
     } else if (WIFSTOPPED(ws)) {
@@ -294,12 +287,6 @@ int nointernet(void) {
     return enosys();
   }
 
-  // ensure we're at the root of a process group, so we're able to
-  // broadcast a termination signal later on that catches dangling
-  // subprocesss our child forgot to destroy. without calling this
-  // subprocesses could end up permanently stopped if monitor dies
-  setpgrp();
-
   // prevent crash handlers from intercepting sigsegv
   ORDIE(sigfillset(&set));
   ORDIE(sigprocmask(SIG_SETMASK, &set, &old));