본 사이트는 여러분의 사용자 경험을 개선하기 위해 유지 보수를 진행하는 동안 기능이 제한됩니다. 도움말로 문제가 해결되지 않고 질문을 하고 싶다면 Twitter의 @FirefoxSupport 및 Reddit의 /r/firefox 채널을 활용하세요.

Mozilla 도움말 검색

고객 지원 사기를 피하세요. 저희는 여러분께 절대로 전화를 걸거나 문자를 보내거나 개인 정보를 공유하도록 요청하지 않습니다. "악용 사례 신고"옵션을 사용하여 의심스러운 활동을 신고해 주세요.

자세히 살펴보기

Email encryption with smart card: The secret key that is required to decrypt this message is not available.

  • 1 답장
  • 1 이 문제를 만남
  • 1 보기
  • 최종 답변자: Matt

more options

I'm trying to set up Thunderbird (version 91.3.2) with email encryption and an existing GPG key on a smartcard.

I have followed the corresponding article on wiki.mozilla.org to set up the encryption in Thunderbird, but trying to decrypt an encrypted email only shows a red banner: "The secret key that is required to decrypt this message is not available.". If I try to send an encrypted message, I simply get an error message: "Sending of the message failed.".

I have double and triple checked whether the manually set up key ID matches the one in GPG, and it does. I have tried to use either the parent key ID, or the encryption subkey ID, but to no avail.

I have started thunderbird with an environment variable set: GPGME_DEBUG=9:/dev/stdout In fact, requests to encrypt and decrypt emails are sent to GPG, but (between lots of noise) there are error messages: If I try to encrypt an email, I get "GPGME 20211215T175951 5A67E gpgme_get_key:1374: error: End of file <GPGME>". If I try to decrypt an email, I get "GPGME 20211215T180601 5DA8A gpgme_op_decrypt_ext:182: error: Not supported <GPGME>".

These error messages seem to indicate that GPGME is in fact unable to find the corresponding key in its keyring - but if I use `gpg --list-secret-keys`, the key is there. I can even save the email in thunderbird, and decrypt it manually from the commandline, so the gpg setup on my system seems to be fine, but there seems to be some disconnect between thunderbird and the GPG keyring on my system.

Any idea what I might have configured wrong here?

I'm trying to set up Thunderbird (version 91.3.2) with email encryption and an existing GPG key on a smartcard. I have followed [https://wiki.mozilla.org/Thunderbird:OpenPGP:Smartcards#Configure_an_email_account_to_use_an_external_GnuPG_key the corresponding article on wiki.mozilla.org] to set up the encryption in Thunderbird, but trying to decrypt an encrypted email only shows a red banner: "The secret key that is required to decrypt this message is not available.". If I try to send an encrypted message, I simply get an error message: "Sending of the message failed.". I have double and triple checked whether the manually set up key ID matches the one in GPG, and it does. I have tried to use either the parent key ID, or the encryption subkey ID, but to no avail. I have started thunderbird with an environment variable set: GPGME_DEBUG=9:/dev/stdout In fact, requests to encrypt and decrypt emails are sent to GPG, but (between lots of noise) there are error messages: If I try to encrypt an email, I get "GPGME 20211215T175951 5A67E gpgme_get_key:1374: error: End of file <GPGME>". If I try to decrypt an email, I get "GPGME 20211215T180601 5DA8A gpgme_op_decrypt_ext:182: error: Not supported <GPGME>". These error messages seem to indicate that GPGME is in fact unable to find the corresponding key in its keyring - but if I use `gpg --list-secret-keys`, the key is there. I can even save the email in thunderbird, and decrypt it manually from the commandline, so the gpg setup on my system seems to be fine, but there seems to be some disconnect between thunderbird and the GPG keyring on my system. Any idea what I might have configured wrong here?

모든 댓글 (1)

more options

I suggest you ask where the experts in encryption are. https://thunderbird.topicbox.com/groups/e2ee