If the executable binary has to be signed with a key, similar to the module signing key, Microsoft could sign their binaries
This, along with secureboot, would prevent the owner of the machine from running eBPF programs Microsoft doesn’t want you to run, even with root
I agree, but the wording of that is imprecise…
Google reimplemented the same API (which should be legal) but “use” sounds like they called Oracle’s implementation of the function
Oracle tried to argue that writing your own virtual machine with the exact same same interface as theirs (even a clean room reimplementatio, or an improved version) was copyright infringement
If Oracle had won, it would likely have killed things like OpenJDK, WINE, Proton, Rosetta, etc. and would have made licensing around OpenGL/Vulkan very confusing (for a few examples)
I wasn’t trying to give a positive side, I was just explaining why Microsoft wants the feature