Apps that depend on talking to specific hardware ( including the GPU) do not always work in a VM.
Unless you go about setting up IOMMU groups with QEMU/KVM… (And have a second GPU to hand over to the VM.)
I bought a new TCL TV recently. Stunning visuals for the price. But I had to jump through a load of unnecessary crap to keep it from phoning home, letting every tech company on the face of the planet know what I watch at 3am every morning before heading out to work.
Need to keep it disconnected from the internet, plugged into an Nvidia Shield that had the projectivity launcher installed alongside plex and steam link, and with a whitelist on my router preventing it from accessing anything other than my media server and linux pc, because that covers all I will ever use the TV for.
End result: a near dumb TV that is able to watch anything I want to watch, and play any game I want to play, but without all of the ads and tracking nonsense.
KVM, QEMU, Looking Glass
That’ll work too, along with any USB webcam
Raspberry pi and motioneyeOS. Getting to a state where you have a live view of the camera shouldn’t take more than an hour.
If this is what’s scaring you about the death of liberty, then boy do I have a dumptruck full of passed acts and legislation that dwarfs this in comparison. Liberty died a long time ago.
As well as this, GrapheneOS also supports automatic rebooting for if your phone is taken by force. As once you’ve logged in from a cold boot, your data is in a vulnerable state where cops can access it without needing your passcode. With GOS, you can specify an amount of time for the phone to wait since the most recent login, and once that time has passed, it will automatically reboot the phone, placing your data back into the cold and secure state, so that the cops must then acquire your passcode from you, at which point you’d be able to give them the duress pin and ensure that the data is removed safely.