Comment by fc417fc802

> that means your secure boot chain must go all the way up to include a non tampered window manager too,

Yeah, that's the entire point. The whole distro in this scenario would be signed reproducible FOSS builds. No untrusted binaries would be permitted to run. State of entire filesystem verified except specific directories. Think Android without the app store and no user provided APKs permitted.

Valve already manages SteamOS so this isn't as crazy as it might initially sound.

Although it does occur to me now that one of the newer GPLs has an anti-tivo provision. Not sure if this would run afoul of that. It's access to a subset of a service that would be restricted (competitive matches), everything else would still work.