With GPG 2.3.4, if you run gpg --card-status with a YubiKey inserted, the Version line will incorrectly read 0.0. With GPG 2.2.28 and 2.2.32, the version is displayed correctly.
Below is an example with GPG 2.3.4. The Version line should say 2.1.
$ gpg --card-status Reader ...........: Yubico YubiKey OTP FIDO CCID Application ID ...: D2760001240100000006086283260000 Application type .: OpenPGP Version ..........: 0.0 Manufacturer .....: Yubico Serial number ....: 08628326 [...]
For comparison, below is another example, using the same YubiKey, but this time with GPG 2.2.32. The Version line is correct in this case.
$ gpg --card-status Reader ...........: Yubico YubiKey OTP FIDO CCID Application ID ...: D2760001240102010006086283260000 Application type .: OpenPGP Version ..........: 2.1 Manufacturer .....: Yubico Serial number ....: 08628326 [...]
To reproduce:
- Install GPG 2.3.4
- Insert a YubiKey
- Run gpg --card-status
This may not be limited to YubiKeys, nor these specific versions of GPG. They were simply all I had readily available to test with.
This was reproduced on both macOS Monterey (12.1), and Windows 11 (21H2), using GPG installed via brew and Gpg4win, respectively. It was also repro'd with multiple YubiKeys, with different versions of the OpenPGP spec (2.1 and 3.4), to rule out an issue with a specific YubiKey, firmware, etc.