An ordinary user can't create a setuid binary, but there's nothing preventing him from creating a hard link to an existing setuid binary. So if he has write permission to a directory on the same filesystem as /usr/bin, he can put the jail in this directory, create a hard link to su or sudo in it, and put a custom /etc/passwd and /etc/sudoers in the jail.

Maybe that won't work for sudo, as it might check that /etc/sudoers is owned by root. But I'll bet su doesn't check the ownership of /etc/passwd.

As described in this helpful answer the effects of -n (unshare(CLONE_NEWPID)) only come into acction for the first child process forked.

In particular, man 2 unshare says says about CLONE_NEWPID:

Unshare the PID namespace, so that the calling process has a new PID namespace for its children which is not shared with any previously existing process.

The calling process is not moved into the new namespace.

The first child created by the calling process will have the process ID 1 and will assume the role of init(1) in the new namespace.

Patching unshare to make killing work reliably

Since asking my question, in the last couple hours I've written a patch to util-linux (pull request here) that adds a --kill-child flag to unshare.

Edit: This is now merged and released as part of util-linux v2.32.

You can use it like this:

unshare -fp --kill-child -- bash -c "watch /bin/sleep 10000 && echo hi"

and killing unshare will tear the entire process tree down as expeted.

Without root

You can even use it without root privileges if your kernel has user namespaces enabled (CONFIG_USER_NS=y) by passing the -U flag:

unshare -Ufp --kill-child -- bash -c "watch /bin/sleep 10000 && echo hi"