> The description in the ARM about using BIND with PKCS #11 as OpenSSL
> engine is very obsolete (not available any longer). This ticket should
> update the ARM with a correct description of how to use BIND with PKCS
> #11 OpenSSL engine on a modern distribution, with example of usage with
> softhsm.

AFAIK the OpenSSL engine is still available (at least we're still
shipping patches for it).

I agree the doc should be updated though. Native PKCS#11 is much more
useful now and ought to be emphasized.