When the --pcsc-shared option is enabled for Yubikey access, PIN is always asked (not cached).
Description
Description
Related Objects
Related Objects
Event Timeline
Comment Actions
https://dev.gnupg.org/source/gnupg/browse/master/scd/app-openpgp.c$2630
This rejection could be relaxed.
Comment Actions
But only if you can figure out in a transaction or locked sytate whether the card needs a verify. Otherwise we have a race between changing the PIN and verifying a PIN.
What I mean is that we can replace our own PIN state caching state by querying the card whether the PIN is needed.