One approach I didn't see mentioned in the documentation is running Linux programs in a virtual machine to handle isolation and system call trapping (but not actually run the Linux kernel in the guest–just the program), then in the hypervisor translate and forward all the calls to the Fuchsia kernel, in essence making the VM "dumb computing" that would exit to the handler whenever the Linux program made a syscall.
