Work around a bug in GnuPG by passing it --default-key instead of --local-user when signing a Git commit

2017-06-14 11:40:56 +10:00 · 2017-06-14 11:40:56 +10:00 · 7f211abcf8
commit 7f211abcf8
parent 9d643fad13
3 changed files with 14 additions and 3 deletions
--- a/local/bin/gpg2-for-git-signing
+++ b/local/bin/gpg2-for-git-signing
@ -0,0 +1,13 @@
+#!/bin/zsh
+# There's a weird inconsistency between the --default-key and --local-user
+# arguments: when you have multiple signing subkeys, --local-user chooses the
+# newest, and --default-key chooses the one that's available. The latter is
+# clearly preferable. So we shuffle the arguments around a little.
+for arg; do
+	if [[ $arg = -bsau ]]; then
+		args+=(-bsa --default-key)
+	else
+		args+=($arg)
+	fi
+done
+exec gpg2 --no-tty "${(@)args}"