jcjones
commented
6 years ago A good question! I haven't worked with this in a few years, this might be a better issue to open upstream at https://github.com/cloudflare/cfssl/issues and link to here asking for help.
I try to get the HSM-Token Nitrokey working with cfssl and pkcs11 and I am glad to find your script.
Running the script gives me the following exception: "flag provided but not defined: -pkcs11-module"
In https://github.com/cloudflare/cfssl/pull/95/files there is a definiton of -pkcs11 parameters in cli/config.go.
The current version of cli/config.go doesn't list these parameters.
Does the cfssl cli offer the -pkcs11 parameters anymore? Or is there a need for manual adjustment from my side?