The signing callback should not be used; instead, callers should provide a commit_create_cb, perform the signing and commit creation themselves.
