[paulfurtado]

Are you aware of the kernel keyring and the keyctl API? I've always been curious why more programs don't use it, I guess it's not the most ergonomic API and doesn't have many language bindings. https://man7.org/linux/man-pages/man2/keyctl.2.html

[hawski]

AFAIU from the post itself it seems the main problem is, that the kernel keyring API doesn't implement persistence, so it can be used to implement high level key-rings, but it is not enough by itself.

[GoblinSlayer]

That's a big manpage, but it tells nothing about what it is and does, you already need to know everything about it, but only want to refresh details.

[danuker]

Probably the kernel keyring one is a better intro: https://man7.org/linux/man-pages/man7/keyrings.7.html

[toyg]

I considered it but, iirc, it's Linux-specific and I wanted something that could run on BSDs too.

[tremon]

That's nice, but you're moving the OP's goalposts here. The OP only mentioned Linux.