libsolv: lack of zstd support makes it impossible to create SUSE Tumbleweed/Fedora Rawhide chroots with zypper/dnf

jammy, fix attached as debdiff and available on Salsa https://salsa.debian.org/debian/libsolv/-/tree/jammy?ref_type=heads

# cat /etc/os-release
PRETTY_NAME="Ubuntu 22.04 LTS"
NAME="Ubuntu"
VERSION_ID="22.04"
VERSION="22.04 (Jammy Jellyfish)"
VERSION_CODENAME=jammy
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=jammy
# dpkg -l | grep libsolv1
ii libsolv1:amd64 0.7.20-1ubuntu0.22.04.1 amd64 dependency solver using a satisfiability algorithm (shared library)
# mkdir -p repos.d img
# cat <<EOF>repos.d/test.repo
[test.repo]
name=test.repo
baseurl=https://download.opensuse.org/tumbleweed/repo/oss/
gpgcheck=1
enabled=1
autorefresh=0
keeppackages=1
EOF
# zypper --reposd-dir=$PWD/repos.d --root=$PWD/img --gpg-auto-import-keys install distribution-release filesystem

Automatically importing the following key:

  Repository: test.repo
  Key Name: openSUSE Project Signing Key <email address hidden>
  Key Fingerprint: AD485664 E901B867 051AB15F 35A2F86E 29B700A4
  Key Created: Mon Jun 20 14:03:14 2022
  Key Expires: Fri Jun 19 14:03:14 2026
  Rpm Name: gpg-pubkey-29b700a4-62b07e22

Building repository 'test.repo' cache ..........................................................................[done]
Loading repository data...
Reading installed packages...
'distribution-release' not found in package names. Trying capabilities.
Resolving package dependencies...

The following 19 NEW packages are going to be installed:
  bash bash-sh compat-usrmerge-tools filesystem glibc glibc-extra libgcc_s1 libncurses6 libpcre2-8-0 libreadline8
  libselinux1 libstdc++6 ncurses-utils openSUSE-release openSUSE-release-appliance-custom system-user-root
  terminfo-base terminfo-screen timezone

The following 4 recommended packages were automatically selected:
  glibc-extra ncurses-utils terminfo-screen timezone

The following 9 packages are suggested, but will not be installed:
  branding-openSUSE distribution-logos-openSUSE-Tumbleweed java-11-openjdk mariadb mariadb-client openSUSE-build-key
  openSUSE-repos-Tumbleweed openssl-1_1 procps

19 new packages to install.
Overall download size: 7.3 MiB. Already cached: 0 B. After the operation, additional 16.3 MiB will be used.
Continue? [y/n/v/...? shows all options] (y): y
<...>
Executing %posttrans scripts ...................................................................................[done]
# cat img/usr/lib/os-release
NAME="openSUSE Tumbleweed"
# VERSION="20231114"
ID="opensuse-tumbleweed"
ID_LIKE="opensuse suse"
VERSION_ID="20231114"
PRETTY_NAME="openSUSE Tumbleweed"
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:tumbleweed:20231114"
BUG_REPORT_URL="https://bugzilla.opensuse.org"
SUPPORT_URL="https://bugs.opensuse.org"
HOME_URL="https://www.opensuse.org"
DOCUMENTATION_URL="https://en.opensuse.org/Portal:Tumbleweed"
LOGO="distributor-logo-Tumbleweed"

lunar, fix attached as debdiff and available on Salsa https://salsa.debian.org/debian/libsolv/-/tree/lunar?ref_type=heads

# cat /etc/os-release
PRETTY_NAME="Ubuntu 23.04"
NAME="Ubuntu"
VERSION_ID="23.04"
VERSION="23.04 (Lunar Lobster)"
VERSION_CODENAME=lunar
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=lunar
LOGO=ubuntu-logo
# dpkg -l | grep libsolv1
ii libsolv1:amd64 0.7.23-1ubuntu0.23.04.1 amd64 dependency solver using a satisfiability algorithm (shared library)
# mkdir -p repos.d img
# cat <<EOF>repos.d/test.repo
[test.repo]
name=test.repo
baseurl=https://download.opensuse.org/tumbleweed/repo/oss/
gpgcheck=1
enabled=1
autorefresh=0
keeppackages=1
EOF
# zypper --reposd-dir=$PWD/repos.d --root=$PWD/img --gpg-auto-import-keys install distribution-release filesystem

Automatically importing the following key:

  Repository: test.repo
  Key Name: openSUSE Project Signing Key <email address hidden>
  Key Fingerprint: AD485664 E901B867 051AB15F 35A2F86E 29B700A4
  Key Created: Mon Jun 20 14:03:14 2022
  Key Expires: Fri Jun 19 14:03:14 2026
  Rpm Name: gpg-pubkey-29b700a4-62b07e22

Building repository 'test.repo' cache ..........................................................................[done]
Loading repository data...
Reading installed packages...
'distribution-release' not found in package names. Trying capabilities.
Resolving package dependencies...

The following 19 NEW packages are going to be installed:
  bash bash-sh compat-usrmerge-tools filesystem glibc glibc-extra libgcc_s1 libncurses6 libpcre2-8-0 libreadline8
  libselinux1 libstdc++6 ncurses-utils openSUSE-release openSUSE-release-appliance-custom system-user-root
  terminfo-base terminfo-screen timezone

The following 4 recommended packages were automatically selected:
  glibc-extra ncurses-utils terminfo-screen timezone

The following 9 packages are suggested, but will not be installed:
  branding-openSUSE distribution-logos-openSUSE-Tumbleweed java-11-openjdk mariadb mariadb-client openSUSE-build-key
  openSUSE-repos-Tumbleweed openssl-1_1 procps

19 new packages to install.
Overall download size: 7.3 MiB. Already cached: 0 B. After the operation, additional 16.3 MiB will be used.
Continue? [y/n/v/...? shows all options] (y): y
<...>
Executing %posttrans scripts ...................................................................................[done]
# cat img/usr/lib/os-release
NAME="openSUSE Tumbleweed"
# VERSION="20231114"
ID="opensuse-tumbleweed"
ID_LIKE="opensuse suse"
VERSION_ID="20231114"
PRETTY_NAME="openSUSE Tumbleweed"
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:tumbleweed:20231114"
BUG_REPORT_URL="https://bugzilla.opensuse.org"
SUPPORT_URL="https://bugs.opensuse.org"
HOME_URL="https://www.opensuse.org"
DOCUMENTATION_URL="https://en.opensuse.org/Portal:Tumbleweed"
LOGO="distributor-logo-Tumbleweed"

mantic, fix attached as debdiff and available on Salsa https://salsa.debian.org/debian/libsolv/-/tree/mantic?ref_type=heads

# cat /etc/os-release
PRETTY_NAME="Ubuntu 23.10"
NAME="Ubuntu"
VERSION_ID="23.10"
VERSION="23.10 (Mantic Minotaur)"
VERSION_CODENAME=mantic
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=mantic
LOGO=ubuntu-log
# dpkg -l | grep libsolv1
ii libsolv1:amd64 0.7.24-1ubuntu0.23.10.1 amd64 dependency solver using a satisfiability algorithm (shared library)
# mkdir -p repos.d img
# cat <<EOF>repos.d/test.repo
[test.repo]
name=test.repo
baseurl=https://download.opensuse.org/tumbleweed/repo/oss/
gpgcheck=1
enabled=1
autorefresh=0
keeppackages=1
EOF
# zypper --reposd-dir=$PWD/repos.d --root=$PWD/img --gpg-auto-import-keys install distribution-release filesystem
Building repository 'test.repo' cache ..........................................................................[done]
Loading repository data...
Reading installed packages...
'distribution-release' not found in package names. Trying capabilities.
Resolving package dependencies...

The following 4 recommended packages were automatically selected:
  glibc-extra ncurses-utils terminfo-screen timezone

The following 9 packages are suggested, but will not be installed:
  branding-openSUSE distribution-logos-openSUSE-Tumbleweed java-11-openjdk mariadb mariadb-client openSUSE-build-key
  openSUSE-repos-Tumbleweed openssl-1_1 procps

The following 19 NEW packages are going to be installed:
  bash bash-sh compat-usrmerge-tools filesystem glibc glibc-extra libgcc_s1 libncurses6 libpcre2-8-0 libreadline8
  libselinux1 libstdc++6 ncurses-utils openSUSE-release openSUSE-release-appliance-custom system-user-root
  terminfo-base terminfo-screen timezone

19 new packages to install.
Overall download size: 7.3 MiB. Already cached: 0 B. After the operation, additional 16.3 MiB will be used.
Continue? [y/n/v/...? shows all options] (y): y
<...>
Executing %posttrans scripts ...................................................................................[done]
# cat img/usr/lib/os-release
NAME="openSUSE Tumbleweed"
# VERSION="20231114"
ID="opensuse-tumbleweed"
ID_LIKE="opensuse suse"
VERSION_ID="20231114"
PRETTY_NAME="openSUSE Tumbleweed"
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:tumbleweed:20231114"
BUG_REPORT_URL="https://bugzilla.opensuse.org"
SUPPORT_URL="https://bugs.opensuse.org"
HOME_URL="https://www.opensuse.org"
DOCUMENTATION_URL="https://en.opensuse.org/Portal:Tumbleweed"
LOGO="distributor-logo-Tumbleweed"

Hi Luca, I hope this finds you well.

I *really* appreciate you submitting this as a Stable Release Update for Ubuntu. I see you're a Debian Developer and have already submitted the appropriate paperwork for a Debian Stable update; thank you very much for your work on that as well.

As a fellow Debian Developer, I have a baseline level of trust in your uploads. That being said, the changes are minimal and clean, and you appropriately attached the bug report to the changelog entry. Simply speaking regarding packaging, you hit the nail on the head (which is what I would expect, of course ;) ).

I'm sure you're aware: the Ubuntu Stable Release Updates Team reserves the right to accept or reject this upload, based on the contents of the upload and your bug report. Fortunately, unlike Debian, you're able to edit your report to include additional information.

I would highly suggest expanding on any regression potential. Could a regression in the underlying libzstd library negatively affect existing users? How would those regressions present themselves? Try to be overly verbose. (I attended a talk at the Ubuntu Summit regarding SRUs, and one of the major points was, "we usually reject uploads with a Regression Potential of "very minimal." Not my decision, just be aware. :) )

Thanks again for your stellar work!

Here's a test showing creating a SUSE 15.6 chroot (which uses gzip instead of zstd since it's older), showing it still works with the new version, proving it doesn't regress on existing features:

# mkdir -p repos.d img
# cat <<EOF>repos.d/test.repo
[test.repo]
name=test.repo
baseurl=https://download.opensuse.org/distribution/leap/15.6/repo/oss/
gpgcheck=0
enabled=1
autorefresh=0
keeppackages=1
# zypper --reposd-dir=$PWD/repos.d --root=$PWD/img --gpg-auto-import-keys install distribution-release filesystem
Loading repository data...
Reading installed packages...
'distribution-release' not found in package names. Trying capabilities.
Resolving package dependencies...

The following 42 NEW packages are going to be installed:
  bash bash-doc bash-lang bash-sh coreutils coreutils-lang diffutils diffutils-lang distribution-logos-openSUSE-Leap
  filesystem fillup gawk glibc glibc-extra glibc-lang grep grep-lang info issue-generator libacl1 libattr1 libbz2-1
  libcap2 libgcc_s1 libgmp10 liblzma5 libncurses6 libpcre1 libreadline7 libselinux1 libstdc++6 libz1 libzio1
  ncurses-utils openSUSE-release openSUSE-release-ftp readline-doc system-user-root terminfo-base terminfo-screen
  timezone update-alternatives

The following 11 recommended packages were automatically selected:
  bash-doc bash-lang diffutils-lang distribution-logos-openSUSE-Leap glibc-extra grep-lang issue-generator
  ncurses-utils readline-doc terminfo-screen timezone

The following 5 packages are suggested, but will not be installed:
  chrony java-11-openjdk openSUSE-repos-Leap openSUSE-signkey-cert postfix

42 new packages to install.
Overall download size: 12.9 MiB. Already cached: 0 B. After the operation, additional 48.7 MiB will be used.
Continue? [y/n/v/...? shows all options] (y): y

Checking for file conflicts: (42 skipped) ......................................................................[done]
Warning: 42 packages had to be excluded from file conflicts check because they are not yet downloaded.

    Note: Checking for file conflicts requires not installed packages to be downloaded in advance in
    order to access their file lists. See option '--download-in-advance / --dry-run --download-only'
    in the zypper manual page for details.

Retrieving package distribution-logos-openSUSE-Leap-20230921-bp156.1.1.noarch (1/42), 21.7 KiB ( 53.5 KiB unpacked)
Retrieving: distribution-logos-openSUSE-Leap-20230921-bp156.1.1.noarch.rpm .....................................[done]
( 1/42) Installing: distribution-logos-openSUSE-Leap-20230921-bp156.1.1.noarch .................................[done]
<...>
Executing %posttrans scripts ...................................................................................[done]
# cat img/usr/lib/os-release
NAME="openSUSE Leap"
VERSION="15.6 Alpha"
ID="opensuse-leap"
ID_LIKE="suse opensuse"
VERSION_ID="15.6"
PRETTY_NAME="openSUSE Leap 15.6 Alpha"
ANSI_COLOR="0;32"
CPE_NAME="cpe:/o:opensuse:leap:15.6"
BUG_REPORT_URL="https://bugs.opensuse.org"
HOME_URL="https://www.opensuse.org/"
DOCUMENTATION_URL="https://en.opensuse.org/Portal:Leap"
LOGO="distributor-logo-Leap"
# file img/var/cache/zypp/raw/test.repo/repodata/6da8b15ab92edf2131a54e671cad...

Hello Luca, or anyone else affected,

Accepted libsolv into mantic-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/libsolv/0.7.24-1ubuntu0.23.10.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-mantic to verification-done-mantic. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-mantic. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Hello Luca, or anyone else affected,

Accepted libsolv into lunar-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/libsolv/0.7.23-1ubuntu0.23.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-lunar to verification-done-lunar. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-lunar. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Hello Luca, or anyone else affected,

Accepted libsolv into jammy-proposed. The package will build now and be available at https://launchpad.net/ubuntu/+source/libsolv/0.7.20-1ubuntu0.22.04.1 in a few hours, and then in the -proposed repository.

Please help us by testing this new package. See https://wiki.ubuntu.com/Testing/EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.

If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification-needed-jammy to verification-done-jammy. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification-failed-jammy. In either case, without details of your testing we will not be able to proceed.

Further information regarding the verification process can be found at https://wiki.ubuntu.com/QATeam/PerformingSRUVerification . Thank you in advance for helping!

N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.

Our CI (running on Jammy in Github Actions) has now enabled jammy-proposed and the jobs are working again, so the fix is confirmed good:
https://github.com/systemd/systemd/pull/30071
This will provide stress test. I will test mantic and lunar manually later as well.

I have manually verified with the new versions from -proposed on jammy, lunar and mantic, using the same test as mentioned earlier, and everything looks good.

This bug was fixed in the package libsolv - 0.7.24-1ubuntu0.23.10.1

---------------
libsolv (0.7.24-1ubuntu0.23.10.1) mantic; urgency=medium

  [ Sjoerd Simons ]
  * Enable libzstd compression support (LP: #2043625)

 -- Luca Boccassi <email address hidden> Wed, 15 Nov 2023 22:49:32 +0000

The verification of the Stable Release Update for libsolv has completed successfully and the package is now being released to -updates. Subsequently, the Ubuntu Stable Release Updates Team is being unsubscribed and will not receive messages about this bug report. In the event that you encounter a regression using the package from -updates please report a new bug using ubuntu-bug and tag the bug report regression-update so we can easily find any regressions.

This bug was fixed in the package libsolv - 0.7.23-1ubuntu0.23.04.1

---------------
libsolv (0.7.23-1ubuntu0.23.04.1) lunar; urgency=medium

  [ Sjoerd Simons ]
  * Enable libzstd compression support (LP: #2043625)

 -- Luca Boccassi <email address hidden> Wed, 15 Nov 2023 22:54:29 +0000

This bug was fixed in the package libsolv - 0.7.20-1ubuntu0.22.04.1

---------------
libsolv (0.7.20-1ubuntu0.22.04.1) jammy; urgency=medium

  [ Sjoerd Simons ]
  * Enable libzstd compression support (LP: #2043625)

 -- Luca Boccassi <email address hidden> Wed, 15 Nov 2023 22:55:31 +0000