Page MenuHome GnuPG

Yubikey (PGP + PIV) --pcsc-shared: PIN requires every time
Open, NormalPublic


When the --pcsc-shared option is enabled for Yubikey access, PIN is always asked (not cached).

Event Timeline

But only if you can figure out in a transaction or locked sytate whether the card needs a verify. Otherwise we have a race between changing the PIN and verifying a PIN.

What I mean is that we can replace our own PIN state caching state by querying the card whether the PIN is needed.

werner triaged this task as Normal priority.Apr 9 2024, 1:42 PM
werner added projects: gnupg24, yubikey.