This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

openPGP "no suitable subkey found for encrypt"

  • 3 cavab
  • 1 has this problem
  • 2 views
  • Last reply by Kai Engert

more options

I am trying to send encrypted emails. I added the public key of the recipient in openPGP key manager and set them Trusted.

From "write message" windows, if i click on security--> view security infos, it shows the status ok for the receipient.

However, when i click sent button, it fails. The error console is logging "no suitable subkey found for encrypt", however as you can see from the screen shots, the encryption subkey is there.

If i sent signed emails (with my private key) or unencrypted emails, Thunderbird works fine. Also encrypting files externally with Kleopatra (using the same public keys) also works fine.

I am using Thunderbird v 91.5.0 64-bit on Linux Mint 20.3 Cinnamon and kernel version 5.13.0.27.

Any help is appreciated.

I am trying to send encrypted emails. I added the public key of the recipient in openPGP key manager and set them Trusted. From "write message" windows, if i click on security--> view security infos, it shows the status ok for the receipient. However, when i click sent button, it fails. The error console is logging "no suitable subkey found for encrypt", however as you can see from the screen shots, the encryption subkey is there. If i sent signed emails (with my private key) or unencrypted emails, Thunderbird works fine. Also encrypting files externally with Kleopatra (using the same public keys) also works fine. I am using Thunderbird v 91.5.0 64-bit on Linux Mint 20.3 Cinnamon and kernel version 5.13.0.27. Any help is appreciated.
Attached screenshots

Chosen solution

Actually i solved thank to KaiE help... This behavior happens when you use External GnuPG and subkeys.

The problem was that when i added the GPG key ID to my account, I did not add the Primary key, but the ID of a subkey. Apparently that made the encryption process fails (also for my other contacts).

Changing the ID of the key associated with my profile with the ID of the primary Key, fixed the problem.

Thanks anyway

Read this answer in context 👍 0

All Replies (3)

more options

Open the OpenPGP Key Manager and check whether the encryption subkey of any of recipients keys has expired. That also includes your own key.

more options

Seçilmiş Həll

Actually i solved thank to KaiE help... This behavior happens when you use External GnuPG and subkeys.

The problem was that when i added the GPG key ID to my account, I did not add the Primary key, but the ID of a subkey. Apparently that made the encryption process fails (also for my other contacts).

Changing the ID of the key associated with my profile with the ID of the primary Key, fixed the problem.

Thanks anyway

more options

Let's try to make this misconfiguration easier to notice: https://bugzilla.mozilla.org/show_bug.cgi?id=1752010