I'm currently getting an AppArmor error like this whenever I view a message in Thunderbird:
Apr 22 13:34:51 host kernel: [ 2477.096917] audit: type=1400 audit(1492868091.674:16): apparmor="DENIED" operation="exec" profile="thunderbird" name="/usr/bin/qubes-gpg-client-wrapper" pid=2846 comm="thunderbird" requested_mask="x" denied_mask="x" fsuid=1000 ouid=0
This is accompanied by the following errors in Enigmail:
Enigmail initialization failed.
You are using GnuPG version , which is not up to date anymore. Enigmail recommends GnuPG version 2.0 or newer; please upgrade your GnuPG installation, or Enigmail will not work.
Enigmail: Error in accessing Enigmail service
In order to use Enigmail, GnuPG is required. If you did not install GnuPG yet, the easiest way to do this is using the "Setup Wizard" button below.
Enigmail is configured to use Qubes Split-GPG. It appears that this error started occurring when Icedove was renamed to Thunderbird in Debian.
Not certain if this is a bug in Qubes, Whonix, or Debian, but figured I'd ask here first.