A magnetised needle and a steady hand is a better package format.
What you are thinking of is not a package manager but a compiler.
Not if you just have list of blobs in your head.
Let the hate of the crowd wash over me, but I don’t even like Flatpak, and I’ve got love-hate (mostly hate) relationship with AppImage as well.
Just give me a system package or a zipped tarball.
In recent years, have had to just get used to needing to build most projects from source.
Why the hate part of AppImage?
For me it is the “Windowsy” feeling of downloading an executable from some website. I prefer having all my packages managed in one place.
Makes sense, I kinda like it from a distributor standpoint. Flatpak is my favorite though.
For simple “apps” it is fine, but my computer is not a phone and I don’t use it like one. I mostly don’t want simple apps that have their own little sandbox to play in.
I want full-scale applications that are so big they have to use system libraries to keep their disk size down. I also don’t want them in a sandbox. I want them to have full access to the system to do everything they need to do, I want them to integrate with far-flung parts of the system and other applications too. I only use applications I trust and don’t want them constantly pestering me about configuring permissions and access in just the right ways and opening all the right doors and ports and directories to make them work, I trust them by installing them, they have permission, and the easier they make it to access everything I will inevitably be asking them to access, the happier I am.
My practical concern with distribution methods like AppImage and Flatpak is that now I have to do a lot of extra thinking every time I’m installing anything. To pick how I’m going to install something, I have to solve the matrix of “what kind of distribution method do I prefer for this type of software” combined with “what distribution methods are available for this software” and “what versions are the available distribution methods for this software” and “what distribution method provides the best way for this software to get updates”.
In the olden days, when the distro’s package manager was the only choice, all I had to care about was “is it available in my distro” and the decision tree was complete. I appreciate all the availability of choice that things like AppImage provide, but it doesn’t actually make it easier for me, it just makes it easier for the packager of the software. They’re doing less, but making more work for me, as a user. Distro packages are a lot of work for the maintainer precisely because they at least make an effort to solve many of these issues for the user. The value-add that maintainers provide is real.
I want full-scale applications that are so big they have to use system libraries to keep their disk size down
Linux is in such sad state that dynamic linking is abused to the point that it actually increases the storage usage. Just to name a few examples I know:
most distros ship a full blown
libLLVM.so, this library is a massive monolith used for a bunch of stuff, it is also used for compiling and here comes the issue, by default distros build this lib with support for the following targets:-- Targeting AArch64 -- Targeting AMDGPU -- Targeting ARM -- Targeting AVR -- Targeting BPF -- Targeting Hexagon -- Targeting Lanai -- Targeting LoongArch -- Targeting Mips -- Targeting MSP430 -- Targeting NVPTX -- Targeting PowerPC -- Targeting RISCV -- Targeting Sparc -- Targeting SystemZ -- Targeting VE -- Targeting WebAssembly -- Targeting X86 -- Targeting XCoreGentoo used to offer you the option to limit the targets and make
libLLVM.somuch smaller, but now rust applications that link to llvm have issues with this with caused them to remove that feature…Another is libicudata, that’s a 30 MiB lib that all GTK applications end up linking to for nothing, because it is a dependency of libxml2, which distros override to build with icu support (by default this lib does not link to libicudata) and what’s more sad is that the depenency to libxml2 comes because of transitive dependency to libappstream, yes that appstream that I don’t even know why most applications would need to link to this.
And then there is archlinux that for some reason builds libopus to be 5 MiB when most other distros have this lib <500 KiB
Sure dynamic linking in the case of something like the coreutils, where you are going to have a bunch of small binaries makes sense, except you now have stuff like
busyboxwhich is a single static bin that acts as each of the different tools by checking the name of the symlink that launched it and it is very tiny at 1 MiB and it provides all your basic unix tools including a very good shell.Even Linus was surprised by how much dynamic linking is abused today: https://lore.kernel.org/lkml/CAHk-=whs8QZf3YnifdLv57+FhBi5_WeNTG1B-suOES=RcUSmQg@mail.gmail.com/
To pick how I’m going to install something,
I have all these applications using 3.2 GIB of storage while the flatpak equivalent actually uses 14 GiB 💀: https://i.imgur.com/lvxjkTI.png
flatpak is actually sold on the idea that shared dependencies are good, you have flatpak runtimes and different flatpaks can share, the problem here is that those runtimes are huge on their own, the gnome runtime is like 2.5 GiB which is very close to all those 57 applications I have as appimage and static binaries.
but it doesn’t actually make it easier for me, it just makes it easier for the packager of the software
Well I no longer have to worry about the following issue:
-
My application breaking because of a distro update, I actually now package kdeconnect as an appimage because a while ago it was broken for 2 months on archlinux. The only app I heavily rely from my distro now is
distrobox. -
I also get the latest updates and fixes as soon as upstream releases a new update, with distro packaging you are waiting a week at best to get updates. And I also heard some horror stories before from a dev where they were told that they had to wait to push an update for their distro package and the only way to speed it up was if it was a security fix.
-
And not only you have to make sure the app is available in your distro packages, you also have to make sure it is not abandoned, I had this issue with voidlinux when I discovered the deadbeef package was insanely out of date.
-
Another issue I have with distro packages in general is that everything needs elevated rights to be installed, I actually often hear this complains from linux newbies that they need to type
sudofor everything and it doesn’t have to be this way, AM itself can be installed asappmanwhich makes it able to work on yourHOMEwith all its features. And you can take yourHOMEand drop it in any other distro and be ready to go as well.
-
I couldn’t agree more. Occasionally I’ll use an appimage where something is not packaged for my distro version and I only need it temporarily.
Maybe I’m just long in the tooth, but linux used to be a simple, quite elegant system, with different distros providing different focuses, whether they were trying to be windows clones, something that a business could bank on being there in ten years, or something for those who like to tinker. The common theme throughout was ‘the unix way’, each individual tool was simple, did one job, and did it well. Now we seem to be moving to a much more homogenous ecosystem of distros with tooling that tries to be everything all at once, and often, not very well.
You’re looking for FreeBSD.
omg I cannot fucking believe that while I was typing this I just saw another distro package nonsense:
There is this very good tool called soar which I use for static binaries. (It also has support for appimages but to be honest it is not as good as AM rn).
Well we just got a complain that fastfetch is not displaying the package count of soar, which fastfetch is able to do.
Turns out this is because the archlinux package is built without SQLITE3 which is needed for that feature to work 😫
And what’s worse is that account registrations are disabled in the archlinux gitlab, so I have to jump thru some hoops to get a basic bug report filed…
Just enable the sqlite3 USE flag in /etc/portage/make.conf.
Sorry, wrong distro. I’m assuming Arch can use portage or something if you want.
The issue is arch and not us. They are building fastfetch without
SQLITE3and then we get people asking why the package count of fastfetch doesn’t display soar pkgs… All we can do is just tell people to not use fastfetch from the arch repos.All archlinux has to do is change this line from
OFFtoON
It doesn’t sound like they’re making more work for you. It sounds like you’re making more work for yourself, and it sounds exhausting.
I already have the system package manager. Everything else that isn’t it doesn’t manage my system and is doomed to suck.
my issue with snaps is honestly just that they are controlled too much by just one entity (canonical) and there is no reason for them to exist because flatpak already does everything they do.
Yup, thats why a tarball is better
My issue with snaps is also the power that Canonical has to fuck you over one day, because of the centralization that you mentioned, but also that their shitty fucking packaging format sucks ass and breaks everything but the most basic of apps. I’ve wasted hours trying to help people with their broken applications that were hijacked when they typed
apt install whateverand “whatever” was actually a fucking broken snap package.Flatpaks and AppImages actually do the fucking things they’re supposed to. Snaps don’t, and Canonical is pulling a Microsoft by hijacking your package manager.
Also, Snap sandboxing only works with AppArmor, so if you were hoping that all the breakage was worthwhile because you get sandboxing, you don’t if you’re on anything but a handful of distros 🙂
A long time ago I needed to install a program. It needed snap I think. Well I googled and googled and googled and I couldn’t just type “sudo apt install snap” for some reason. But there was a way to get snap if you had flatpak. I didn’t have flatpak So I googled and googled and googled some more and I couldn’t find a way to install flatpak that didn’t involve already having snap first.
So then I never fucked with flatpak or snap ever again except for that one time I installed gzdoom in flatpak and it actually worked for some reason, the end.
It’s not about the package management method that we use. It’s about the friends and enemies we made along the way (while arguing about package management.)
Nix is just across the street sipping tea because it understands what it is and is at peace with the chaotic world around it.
Gentoo is too busy compiling to notice what’s going on around it
I use NixOS and Flatpak (Nix-Flatpak) to install software that is not available in Nixpkgs. Unlike Arch’s AUR, Nixpkgs has fewer popular packages. However, Nixpkgs beats AUR in terms of quantity because many Nixpkgs packages are redundant.
Are there enough watermarks on this meme? At least we got reddit covered.
Like a bunch of old farts in a coffee shop arguing over which truck brand is better.
Yeah, but Snap is the equivalent of Tesla…
You want me to top off your coffee before you go home to take a nap?
Yes please, and more cake!
Now remember old fella you can’t have cake anymore. It messes with your blood sugar.
I tried a snap package on my pop-os system once & it poo’ed folders all over my system, then didn’t actually uninstall when I uninstalled it.
No thank you.
Seeing “.TAR.GZ” in all caps gives me strong feelings of wrongness.
Unfortunately imgflip prints text in all caps only.
Yes, the format demands it; no fault implied on your part, just commenting on how it hits
A stab at my personal ranking: .deb > appimage > flatpack > curling a shell script
I can’t help but love a .deb file (even when not via repo), I’ve almost exclusively used Debian and it derivatives since the late 90s. And snap isn’t on the list because it got stored in a loopback device I removed.
I just recently de-snapped yet another ubuntu system. Couldn’t agree more. I use debian standard for all of my stuff, and I agree with your ranking.
As someone who hasn’t used Ubuntu since the time they used to mail disks for free, may I ask why? Why not install another distro?
Ubuntu support online (I mean, the size of the community) can be useful. And besides the snap and “ubuntu advantage” thing, they’re mostly a more up to date vanilla Debian, which is extremely convenient because, Debian.
It’s obviously good for people used to Debian, but it’s also great for other, because of the regular updates. But in fairness with your point I’ve been thinking about moving to mint since it’s basically a de-snapped ubuntu.
As someone who is confused when he has to deal with a .deb file and always has to google what to do with it - what is the advantage of a .deb over let’s say a shell script?
Well for one a .deb comes out of the box with an uninstall machenism. As well as file hashes, package singing, etc…
I never fully trust a shell script and usually end up reading any I have to use first, so I know what they do. And after so many years dpkg holds no mysteries for me and Discover will install .debs if I double click while in KDE.
Why tf does every app have to mount itself as a virtual block device?
Because fuck you, that’s why
Serious question: why not? What’s bad about that?
Because with snap
lsblkgets very cluttered, making it hard(er) to find any disk you’re looking for.Edit:
lsblkor any other command that lets you see all the connected disks really
AppImage is the no-nonsense universal package format.
AppImages have a lot of problems
Like not updating or shared dependencies duplicated for every single app image
Just use flatpak
Hadn’t snap fixed a lot of the complaints people initially had?
I think the main complaint is that it seems like Canonical is trying take control of Linux packaging. Don’t they handle their stuff in a way that pretty much prevents third party ‘Snap Stores’? Like, their backend being closed source and their software only accepting their own signatures?
I dont know for sure so disregard what I say. but I remember reading that users could host their own snap repos but canonicals one was the only one at the moment. Everything about snap is open source except the webserver.
Yeah the API is open and there used to be an open store, but lack of interest ended up with the project shutting down. As it turns out people don’t like alternative stores nearly as much as they like the idea of alternative stores.
Probably, but the stink will linger for quite a long time.
There’s a burger place near my house that I use to go to almost every week. But then the quality started going down, and I stopped going there. That was two years ago. Maybe they fixed the problems, but I’m not going to know - because I no longer go there. Snap is like that.
Has it? My complaints are: I have to use VPN software for work that replaces /etc/resolve.conf with a symlink to another location, one that sandboxed snaps can’t access. There’s no way to grant them access; the “slots” that you can connect are fixed and pre-defined. You can’t even configure the file path; it’s defined right in the source code. Not even as a #define, but the string literal “/etc/resolve.conf”. That seems like poor practice, but I guess they’re not going for portability.
Also, I have /usr and /var on different media, chosen for suitability of purpose, and sized appropriately. Then, along comes snap, violating the File Hierarchy Standard by filling up /var with application software.
Minor annoyances are the ~/snap folder, and all of the mounted loopback filesystems which make reading the mtab difficult.
That’s because we are…
If .y Firefox will once again be updated without asking me and then refusing to open any page without a restart I’ll fucking lose it
Wait hold on wait, does that bullshit have something with Firefox being distributed through Snap?
If it does, I’m going to sn… also fucking lose it
Yeah, it’s snap
Always updating without letting you know, without asking and it’s ALWAYS at the most inconvenient time
Ah gotcha, it’s not the cause but it makes the problem way worse
It basically IS the cause as it’s the system doing the updates without asking. But snap has other issues too. For one, it’s the slowest installer in recorded human history, it takes literally ten times longer on snap to install anything. Why? Beats me, in theory it ought to be faster as it shouldn’t have to resolve dependencies but here we are. Try installing anything with snap, it takes forever.
Then, snap is closed source eon the server side, so fuck all of that, that’s already 200% of reasons not to use it ever. I don’t trust closed source software anymore
By “problem” I meant having to close Firefox before further browsing, not automated updates - I don’t know if I could stand daily-driving a system with Snap updating my stuff while I’m trying to use it tbh, that’s one of the main reasons I left Windows behind.
Your first comment gave me the impression that Firefox required a restart because it’s distributed officially through Snaps or something, idk 27 days have passed since then
The required FF restart after updating is indeed an FF thing, but in combination with snap just updating without asking is extremely annoying.
Having used Windows quite a few times in my life, I know the feeling
