And so we see the tentacles of this control scheme worming their way deeper into (so-called) free software. Signed bootloaders, signed kernels, now killing useful functionality and forcing developers of kernel modules to jump through hoops just to run their own code? Where does this madness end?
And Red Hat and SuSE are just going along with it rather than standing up for their users' freedoms! The only correct response to this obvious corporate power-grab is to reject it utterly. If "secure boot" is not stopped before it takes hold, it is obvious that the fig-leaf of allowing users to install their own keys will eventually quietly disappear (as it already has on ARM) and it will be impossible to run software that has not been written by a company large enough to pay the holders of the root trust keys enough to make it worth their while to deign to make signatures.