Conversation

But it's not "just inject the key". It moves the responsibility around completely for the linux distro. It's hard enough to comply with Microsoft shim requiements and now you are adding another singular key, along with having to resign N number of dkms packages pr kernel.
1
1
I think the lack of overall privacy and security design / implementation work for the whole platform is the main issue. The Linux kernel not having an official userspace also means they run tons of stuff in kernel space for no particular reason, just because they want to ship it.
2
4