Remove dependency on gpg-offline as signature checking is implemented in the

source validator.

OBS-URL: https://build.opensuse.org/package/show/network:samba:STABLE/tevent?expand=0&rev=40

tevent.spec

@@ -22,9 +22,6 @@
 
 Name:           tevent
 BuildRequires:  doxygen
-%if 0%{?suse_version} > 1220
-BuildRequires:  gpg-offline
-%endif
 #!BuildIgnore: libtalloc
 BuildRequires:  libtalloc-devel >= %{talloc_version}
 %if 0%{?suse_version} > 1020
@@ -45,9 +42,15 @@ Release:        0
 Summary:        An event system based on the talloc memory management library
 License:        GPL-3.0+
 Group:          System/Libraries
-Source:         http://download.samba.org/pub/tevent/tevent-%{version}.tar.gz
+# Unfortunately upstream is mindboggingly stupid here by gpg signing the
+# uncompressed tarball, but not publishing the uncompressed tarball but
+# only a compressed one. so we need to unpack it manually so that
+# gpg verification works, but then we can't have download verification
+
+# http://download.samba.org/pub/tevent/tevent-%{version}.tar.gz
+Source:         tevent-%{version}.tar
 Source1:        http://download.samba.org/pub/tevent/tevent-%{version}.tar.asc
-Source2:        samba-library-distribution-pubkey_13084025.asc
+Source2:        tevent.keyring
 Source4:        baselibs.conf
 BuildRoot:      %{_tmppath}/%{name}-%{version}-build
 
@@ -112,11 +115,6 @@ PreReq:         /sbin/ldconfig
 This package contains the python bindings for the Tevent library.
 
 %prep
-%if 0%{?suse_version} > 1220
-gzip -dc %{SOURCE0} >${RPM_SOURCE_DIR}/%{name}-%{version}.tar
-%{?gpg_verify: %gpg_verify --keyring %{SOURCE2} %{SOURCE1}}
-rm ${RPM_SOURCE_DIR}/%{name}-%{version}.tar
-%endif
 %setup -n tevent-%{version} -q
 
 %build