Re: Signed binaries
That's easily solved by enrolling a Machine Owner Key and signing the zfs kernel module yourself.
RedHat have extensive documentation describing exactly how to do this, as do the majority of Linux distributions. I have no problem using secure boot and signing self compiled modules on my Laptop running Debian Bullseye.