arxanas
diff --git a/‎Cargo.lock‎
Lines changed: 28 additions & 0 deletions b/‎Cargo.lock‎
Lines changed: 28 additions & 0 deletions
diff --git a/‎git-branchless-lib/Cargo.toml‎
Lines changed: 1 addition & 0 deletions b/‎git-branchless-lib/Cargo.toml‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎git-branchless-lib/src/core/rewrite/execute.rs‎
Lines changed: 2 additions & 2 deletions b/‎git-branchless-lib/src/core/rewrite/execute.rs‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎git-branchless-lib/src/git/mod.rs‎
Lines changed: 2 additions & 0 deletions b/‎git-branchless-lib/src/git/mod.rs‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎git-branchless-lib/src/git/repo.rs‎
Lines changed: 65 additions & 14 deletions b/‎git-branchless-lib/src/git/repo.rs‎
Lines changed: 65 additions & 14 deletions
diff --git a/‎git-branchless-lib/src/git/sign.rs‎
Lines changed: 80 additions & 0 deletions b/‎git-branchless-lib/src/git/sign.rs‎
Lines changed: 80 additions & 0 deletions
diff --git a/‎git-branchless-lib/src/git/snapshot.rs‎
Lines changed: 3 additions & 3 deletions b/‎git-branchless-lib/src/git/snapshot.rs‎
Lines changed: 3 additions & 3 deletions
@@ -57,6 +57,7 @@ eyre = "0.6.8"
 futures = "0.3.28"
 git-record = { version = "0.3", path = "../git-record" }
 git2 = { version = "0.17.2", default-features = false }
+git2-ext = "0.6.0"
 indicatif = { version = "0.17.5", features = ["improved_unicode"] }
 itertools = "0.10.3"
 lazy_static = "1.4.0"
 
@@ -628,12 +628,12 @@ mod in_memory {
                     };
                     let rebased_commit_oid = repo
                         .create_commit(
-                            None,
                             &commit_to_apply.get_author(),
                             &committer_signature,
                             commit_message,
                             &commit_tree,
                             vec![&current_commit],
+                            None,
                         )
                         .wrap_err("Applying rebased commit")?;
 
@@ -748,12 +748,12 @@ mod in_memory {
                     };
                     let rebased_commit_oid = repo
                         .create_commit(
-                            None,
                             &replacement_commit.get_author(),
                             &committer_signature,
                             replacement_commit_message,
                             &replacement_tree,
                             parents.iter().collect(),
+                            None,
                         )
                         .wrap_err("Applying rebased commit")?;
 
 
@@ -8,6 +8,7 @@ mod oid;
 mod reference;
 mod repo;
 mod run;
+mod sign;
 mod snapshot;
 mod status;
 mod test;
@@ -27,6 +28,7 @@ pub use repo::{
     Time,
 };
 pub use run::{GitRunInfo, GitRunOpts, GitRunResult};
+pub use sign::{get_signer, SignOption};
 pub use snapshot::{WorkingCopyChangesType, WorkingCopySnapshot};
 pub use status::{FileMode, FileStatus, StatusEntry};
 pub use test::{
 
@@ -24,6 +24,7 @@ use chrono::NaiveDateTime;
 use cursive::theme::BaseColor;
 use cursive::utils::markup::StyledString;
 use git2::DiffOptions;
+use git2_ext::ops::Sign;
 use itertools::Itertools;
 use thiserror::Error;
 use tracing::{instrument, warn};
@@ -1152,31 +1153,81 @@ impl Repo {
     }
 
     /// Create a new commit.
-    #[instrument]
+    #[instrument(skip(signer))]
     pub fn create_commit(
         &self,
-        update_ref: Option<&str>,
         author: &Signature,
         committer: &Signature,
         message: &str,
         tree: &Tree,
         parents: Vec<&Commit>,
+        signer: Option<&dyn Sign>,
     ) -> Result<NonZeroOid> {
         let parents = parents
             .iter()
             .map(|commit| &commit.inner)
             .collect::<Vec<_>>();
-        let oid = self
-            .inner
-            .commit(
-                update_ref,
-                &author.inner,
-                &committer.inner,
-                message,
-                &tree.inner,
-                parents.as_slice(),
-            )
-            .map_err(Error::CreateCommit)?;
+        let oid = git2_ext::ops::commit(
+            &self.inner,
+            &author.inner,
+            &committer.inner,
+            message,
+            &tree.inner,
+            parents.as_slice(),
+            signer,
+        )
+        .map_err(Error::CreateCommit)?;
+        Ok(make_non_zero_oid(oid))
+    }
+
+    /// Amend a commit with all non-`None` values
+    #[instrument(skip(signer))]
+    pub fn amend_commit(
+        &self,
+        commit_to_amend: &Commit,
+        author: Option<&Signature>,
+        committer: Option<&Signature>,
+        message: Option<&str>,
+        tree: Option<&Tree>,
+        signer: Option<&dyn Sign>,
+    ) -> Result<NonZeroOid> {
+        macro_rules! owning_unwrap_or {
+            ($name:ident, $value_source:expr) => {
+                let owned_value;
+                let $name = if let Some(value) = $name {
+                    value
+                } else {
+                    owned_value = $value_source;
+                    &owned_value
+                };
+            };
+        }
+        owning_unwrap_or!(author, commit_to_amend.get_author());
+        owning_unwrap_or!(committer, commit_to_amend.get_committer());
+        owning_unwrap_or!(
+            message,
+            commit_to_amend
+                .inner
+                .message_raw()
+                .ok_or(Error::DecodeUtf8 {
+                    item: "raw message",
+                })?
+        );
+        owning_unwrap_or!(tree, commit_to_amend.get_tree()?);
+
+        let parents = commit_to_amend.get_parents();
+        let parents = parents.iter().map(|parent| &parent.inner).collect_vec();
+
+        let oid = git2_ext::ops::commit(
+            &self.inner,
+            &author.inner,
+            &committer.inner,
+            message,
+            &tree.inner,
+            parents.as_slice(),
+            signer,
+        )
+        .map_err(Error::Amend)?;
         Ok(make_non_zero_oid(oid))
     }
 
@@ -1365,12 +1416,12 @@ impl Repo {
             vec![]
         };
         let dehydrated_commit_oid = self.create_commit(
-            None,
             &signature,
             &signature,
             &message,
             &dehydrated_tree,
             parents.iter().collect_vec(),
+            None,
         )?;
         let dehydrated_commit = self.find_commit_or_fail(dehydrated_commit_oid)?;
         Ok(dehydrated_commit)
 
@@ -0,0 +1,80 @@
+use tracing::instrument;
+
+use super::{repo::Result, Repo, RepoError};
+
+/// GPG-signing option.
+#[derive(Debug, PartialEq, Eq)]
+pub enum SignOption {
+    /// Sign commits conditionally based on the `commit.gpgsign` configuration and
+    /// and the key `user.signingkey`.
+    UseConfig,
+    /// Sign commits using the key from `user.signingkey` configuration.
+    UseConfigKey,
+    /// Sign commits using the provided signing key.
+    KeyOverride(String),
+    /// Do not sign commits.
+    Disable,
+}
+
+/// Get commit signer configured from CLI arguments and repository configurations.
+#[instrument]
+pub fn get_signer(
+    repo: &Repo,
+    option: &SignOption,
+) -> Result<Option<Box<dyn git2_ext::ops::Sign>>> {
+    match option {
+        SignOption::UseConfig | SignOption::UseConfigKey => {
+            let config = repo.inner.config().map_err(RepoError::ReadConfig)?;
+            if *option == SignOption::UseConfig {
+                if config.get_bool("commit.gpgsign").ok() == Some(false) {
+                    return Ok(None);
+                }
+            }
+            let signer = git2_ext::ops::UserSign::from_config(&repo.inner, &config)
+                .map_err(RepoError::ReadConfig)?;
+            Ok(Some(Box::new(signer) as Box<dyn git2_ext::ops::Sign>))
+        }
+        SignOption::KeyOverride(keyid) => {
+            let config = repo.inner.config().map_err(RepoError::ReadConfig)?;
+            let format = config
+                .get_string("gpg.format")
+                .unwrap_or_else(|_| "openpgp".to_owned());
+            let signer = match format.as_str() {
+                "openpgp" => {
+                    let program = config
+                        .get_string("gpg.openpgp.program")
+                        .or_else(|_| config.get_string("gpg.program"))
+                        .unwrap_or_else(|_| "gpg".to_owned());
+
+                    Box::new(git2_ext::ops::GpgSign::new(program, keyid.to_string()))
+                        as Box<dyn git2_ext::ops::Sign>
+                }
+                "x509" => {
+                    let program = config
+                        .get_string("gpg.x509.program")
+                        .unwrap_or_else(|_| "gpgsm".to_owned());
+
+                    Box::new(git2_ext::ops::GpgSign::new(program, keyid.to_string()))
+                        as Box<dyn git2_ext::ops::Sign>
+                }
+                "ssh" => {
+                    let program = config
+                        .get_string("gpg.ssh.program")
+                        .unwrap_or_else(|_| "ssh-keygen".to_owned());
+
+                    Box::new(git2_ext::ops::SshSign::new(program, keyid.to_string()))
+                        as Box<dyn git2_ext::ops::Sign>
+                }
+                format => {
+                    return Err(RepoError::ReadConfig(git2::Error::new(
+                        git2::ErrorCode::Invalid,
+                        git2::ErrorClass::Config,
+                        format!("invalid value for gpg.format: {}", format),
+                    )))
+                }
+            };
+            Ok(Some(signer))
+        }
+        SignOption::Disable => Ok(None),
+    }
+}
@@ -213,7 +213,7 @@ branchless: automated working copy snapshot
             parents
         };
         let commit_oid =
-            repo.create_commit(None, &signature, &signature, &message, &tree, parents)?;
+            repo.create_commit(&signature, &signature, &message, &tree, parents, None)?;
 
         Ok(WorkingCopySnapshot {
             base_commit: repo.find_commit_or_fail(commit_oid)?,
@@ -365,12 +365,12 @@ branchless: automated working copy snapshot
             }
         );
         let commit = repo.create_commit(
-            None,
             &signature,
             &signature,
             &message,
             &tree_unstaged,
             Vec::from_iter(head_commit),
+            None,
         )?;
         Ok(commit)
     }
@@ -452,7 +452,6 @@ branchless: automated working copy snapshot
             }
         );
         let commit_oid = repo.create_commit(
-            None,
             &signature,
             &signature,
             &message,
@@ -461,6 +460,7 @@ branchless: automated working copy snapshot
                 Some(parent_commit) => vec![parent_commit],
                 None => vec![],
             },
+            None,
         )?;
         Ok(commit_oid)
     }