←back to thread

The Future of Flatpak

(lwn.net)
306 points dxs | 1 comments | 22 May 25 23:51 UTC | HN request time: 0.208s | source
Show context
binkHN ◴[23 May 25 01:28 UTC] No.44068949[source]
Nice breakdown. I'm new to Linux and didn't know about this:

> Flatpak still uses PulseAudio even if a host system uses PipeWire. The problem with that is that PulseAudio bundles together access to speakers and microphones—you can have access to both, or neither, but not just one. So if an application has access to play sound, it also has access to capture audio

That's a pretty decent sized hole.

replies(1): >>44069013 #
gjsman-1000 ◴[23 May 25 01:37 UTC] No.44069013[source]
I sometimes see Linux users sneering at Windows and Mac design mistakes or lack of “freedom”… but then there’s stuff like this.

Of course, Linux is then conveniently redefined in a way that nobody can be responsible, with finger pointing on every issue, rather than admit design flaws like this plague Linux as a whole.

replies(3): >>44069126 #>>44069129 #>>44069527 #
bee_rider ◴[23 May 25 01:56 UTC] No.44069129[source]
I get that you already preempted this, but: Flatpack is a weird extra layer on top of Linux. Most distros have package managers that work just fine. These package managers predate Flatpack and basically are the main thing that the distro provides (other than the community, of course).
replies(4): >>44069155 #>>44069490 #>>44069854 #>>44071245 #
CJefferson ◴[23 May 25 04:27 UTC] No.44069854[source]
But those are even worse from this point of view, I have no control over which apps can access my camera, or microphone.

I'm personally disappointed that sandboxing isn't easier in Linux. I hoped it would move past Windows and Mac, imagine a world where the majority of libraries are sandboxed too, we only let compression and decompression libraries read one stream and write to another, this would improve security. This has been done by both Google (in Android) and Apple (in iOS and Mac OS X), but hasn't seen general acceptance in Linux (as far as I can tell).

replies(2): >>44070090 #>>44074849 #
1. bee_rider ◴[23 May 25 17:43 UTC] No.44074849[source]
Maybe if somebody made a paid version of Linux for desktops, they could pay for people to do the job of designing a sandbox and store.

It sounds like not many volunteers find it very fun (which isn’t surprising, it sounds incredibly tedious, high-stakes, and annoying to work on). This isn’t the sort of thing people do for free and it also isn’t obvious what the business model is supposed to be… the incentives aren’t here.