1_STACKMANAGER(8) Executable programs _STACKMANAGER(8)
2
6 ipsec__stackmanager - internal script to bring up kernel components for
7 Libreswan
8
10 ipsec _stackmanager start [--xfrm]
11 ipsec _stackmanager stop
13
15 ipsec _stackmanager is called from within the init sub-system (systemd,
16 upstart, sysv initscripts) to bring up the Libreswan kernel component
17 as configured via the protostack= option in the ipsec.conf
18 configuration file.
19 This involves loading and optionally unloading of the required kernel
21 modules. Because the Linux kernel cannot autodetect most crypto related
22 drivers on-demand, _stackmanager handles loading OpenBSD/FreeBSD
23 Cryptographic Framework (OCF) drivers, CryptoAPI drivers, and the
24 modules for the specific IPsec stack (Linux XFRM or KLIPS). Probing for
25 OCF supported hardware is not supported - those modules must be loaded
26 by the system before the start of the Libreswan sub system.
27 When the --xfrm option is given to the start command, the XFRM stack is
29 loaded regardless of the existence or contents of the ipsec.conf file.
30 This is used for docker tests where the host system, which might not
31 have libreswan installed, needs to run _stackmanager from the source
32 tree to load the modules on the host so the modules are available
33 inside the containers.
34
36 ip(8), ipsec_tncfg(8), ipsec.conf(5), ipsec_addconn(8), pluto(8)
37
39 This script was introduced in Libreswan. On the older Openswan systems,
40 this functionality was split over various script files such as ipsec
41 _startnetkey, ipsec _startklips, ipsec _realsetup and ipsec setup. Man
42 page written for the Libreswan project <https://libreswan.org/> by Paul
43 Wouters.
44
46 Paul Wouters
47 placeholder to suppress warning
48libreswan 07/25/2019 _STACKMANAGER(8)