You can mitigate malware while still allowing for the same level of end-user control as the manufacturer. Look at Windows itself! People getting infected on up-to-date installations is a rarity nowadays, all without draconian lockdown policies.
It took windows many decades to get there and the reputational harm was already done by then. Android is not doing particularly well but it has improved significantly.
