No NVIDIA pubkeys generated with secure boot on

RENOMIZER · December 13, 2025, 10:11am

I tried installing NVIDIA open drivers on my fresh Tumbleweed system, following this guide. Already did it multiple times on different PCs but this time things got weird.

During reboot no MOK prompt was shown. I double checked my UEFI and bootctl to verify that secure boot is enabled, and it was.

System:
      Firmware: UEFI 2.80 (INSYDE Corp. 256.4352)
 Firmware Arch: x64
   Secure Boot: enabled (user)
  TPM2 Support: yes
  Measured UKI: no
  Boot into FW: supported

Then I tried to enroll keys manually, but there was simply no /usr/share/nvidia-pubkeys directory.
After that I checked inxi -aG and it turned out that the drivers were actually “successfuly” loaded.

Graphics:
  Device-1: NVIDIA GA107BM / GN20-P0-R-K2 [GeForce RTX 3050 6GB Laptop GPU]
    vendor: Acer Incorporated ALI driver: nvidia v: 590.44.01
    alternate: nouveau,nvidia_drm non-free: 550-580.xx+ status: current (as
    of 2025-11; EOL~2026-12-xx) arch: Ampere code: GAxxx
    process: TSMC n7 (7nm) built: 2020-2023 pcie: gen: 4 speed: 16 GT/s
    lanes: 8 link-max: lanes: 16 bus-ID: 01:00.0 chip-ID: 10de:25ac
    class-ID: 0300

Yet, for example, switcherooctl didn’t see the NVIDIA dGPU anyway.

Device: 0
  Name:        Advanced Micro Devices, Inc. [AMD/ATI] Rembrandt [Radeon™ 680M]
  Default:     yes
  Discrete:    no
  Environment: DRI_PRIME=pci-0000_75_00_0 VK_LOADER_DRIVERS_SELECT=*radeon*

Has anybody encountered this? How is it even possible?

hui · December 13, 2025, 10:35am

@malcolmlewis
Is it correct to assume that Nvidia MOK only applys for the closed source drivers?

OrsoBruno · December 13, 2025, 11:10am

There are currently problems with the G07 driver. Please see bug 1254887 and zypper-installed-nvidia-driver-go7-when-its-never-been-selected

malcolmlewis · December 13, 2025, 1:34pm

@hui no the open drivers are signed.

RENOMIZER · December 17, 2025, 3:41pm

Yeah, I checked it, but the same problem persists on G06 driver as well.

RENOMIZER · December 17, 2025, 6:53pm

Decided to put this problem on a back burner and configure system without NVIDIA drivers for now.
Installed Gnome and in process found out that mokutil was missing, even though before it was present. Installed it and decided to try my luck again. Nothing changed, there were still no keys.
Rebooted and somehow now NVIDIA drivers work as they should. switcherooctl sees the dGPU and I can use it to run apps.
Was IceWM the problem?

OrsoBruno · December 18, 2025, 9:01am

I don’t think so (no problem seen on IceWM here) but meanwhile the problem with the Nvidia open driver was fixed, see nvidia-drivers-after-kernel-update #81.

system · January 17, 2026, 9:02am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.