Gradience, Flatseal, Loupe Image Viewer, and Resources running on Ubuntu 16.04

Firefox 118.0.2 running on Ubuntu 16.04

Door Knocker, Collision, and Cartridges running on Ubuntu 16.04

ASHPD Demo running on Ubuntu 16.04, showing a notification through XDG portals

According to Door Knocker, almost half of the portals are unavailable on Ubuntu 16.04, compared to only one unavailable on Fedora 39 with GNOME, which means Flatpaks running here may have more limited capabilities than usual.

  • idefix@sh.itjust.works
    link
    fedilink
    arrow-up
    78
    arrow-down
    1
    ·
    1 year ago

    Having a rock-solid Debian stable as a desktop with up-to-date softwares when it matters. It sounded impossible a few years ago but that might be achievable now with Flatpak. That’s awesome.

      • Possibly linux@lemmy.zip
        link
        fedilink
        English
        arrow-up
        7
        ·
        1 year ago

        Try podman and distrobox. Podman runs as the local user and distrobox simplifies it so you can run GUI apps and have full file access

        • wim@lemmy.sdf.org
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          I nees to try this. I’m currently running Debian stable + Flatpak, but not being able to access all local files from things like Firefox is really forcing me to jump through hoops.

            • wim@lemmy.sdf.org
              link
              fedilink
              arrow-up
              1
              ·
              1 year ago

              Sway with xdg-desktop-portal-wlr. I can open a single file, but not directories of static content. So CSS, images, links all fail to load. Opening a single image or PDFs work fine.

              • Possibly linux@lemmy.zip
                link
                fedilink
                English
                arrow-up
                1
                ·
                1 year ago

                That’s very odd. Maybe you are missing a dependency or the features you are looking for simply are not in older software

    • TCB13@lemmy.world
      link
      fedilink
      arrow-up
      5
      arrow-down
      1
      ·
      1 year ago

      Exactly what I usual say, the best of the two worlds. There are still a few annoyance though, the theme integration part that is easy to fix and not being able to get Ungoogled working with a KeePassXC when both are Flatpaks

  • Julian@lemm.ee
    link
    fedilink
    English
    arrow-up
    68
    arrow-down
    1
    ·
    1 year ago

    Cool testament to flatpak’s strengths. If an OS update makes a breaking change it won’t affect the apps. Makes sense that it works backwards too but I never thought to do it.

  • Heratiki@lemmy.ml
    link
    fedilink
    English
    arrow-up
    42
    arrow-down
    1
    ·
    edit-2
    1 year ago

    Ok, so it’s time for me to do some research on Flatpaks now. I’m an old schooler from Redhat days and haven’t kept up with the new stuff all that much.

    • qaz@lemmy.world
      link
      fedilink
      arrow-up
      32
      arrow-down
      1
      ·
      edit-2
      1 year ago

      Flatpaks is a distro independent way of installing apps, similair to snaps. However it does not require a proprietary backend like snaps do.

      It uses “runtimes” that contain the libraries that are required for the app, such as freedesktop, gnome, kde and elementary. Each app requests a specific runtime and version which prevents library conflicts.

      Although runtimes are shared the different versions can take up quite a bit of space. This is a common criticism of Flatpak and one of the major drawbacks compared to the distro’s native package manager. Another disadvantage is that the sandboxing can cause issues with the functionality of the app if it requires certain system functionality. Authors (and users) can configure which parts of the system to expose (dbus, files, network, etc) but sometimes this is done incorrectly (looking at you Discord) which can cause the aforementioned issues.

      One of the major advantages is that it simplifies the work for Application developers, they can target 1 system and don’t have to package the application and it’s libraries for each distro. It also means that the applications aren’t dependent on the distro’s for newer versions. You can use Debian stable with a version of an app that came out yesterday.

      I personally tend to use Flatpaks quite often except for software that is included in the distro by default and apps that have issues with sandboxing such as Steam and VSCode.

        • TheEntity@kbin.social
          link
          fedilink
          arrow-up
          17
          ·
          1 year ago

          Yes and no. It’s much better suited for desktop applications. Try to run something playing audio in Docker. It’s doable but not pleasant in any way.

          • Dojan@lemmy.world
            link
            fedilink
            English
            arrow-up
            7
            ·
            1 year ago

            Well yeah, I only meant it sounds like a similar idea, I’d be surprised if it was powered by docker.

          • qaz@lemmy.world
            link
            fedilink
            arrow-up
            4
            arrow-down
            1
            ·
            edit-2
            1 year ago

            It’s certainly doable to run desktop apps in containers, have you tried Distrobox?

            • TheEntity@kbin.social
              link
              fedilink
              arrow-up
              3
              ·
              1 year ago

              No, I didn’t. Looks interesting. Not something I’m looking for right now but I’ll keep it in mind.

        • qaz@lemmy.world
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          I’m aware about the deduplication but last time I checked it was still using roughly 30GiB of storage.

    • LinuxSBC@lemm.ee
      link
      fedilink
      arrow-up
      20
      arrow-down
      1
      ·
      edit-2
      1 year ago

      As well as running on all distros, it also provides other benefits:

      However, some applications don’t work as well because of the sandbox, but I think this will change with the rising popularity of Flatpak, as more developers will use portals instead of direct access. Also, there are some bugs and missing features, like how heavy use of the org.freedesktop.Flatpak portal for dbus causes a memory leak (https://github.com/flatpak/xdg-dbus-proxy/issues/51), but it’s overall pretty good. Most applications I use are Flatpaks.

    • hottari@lemmy.ml
      link
      fedilink
      arrow-up
      9
      arrow-down
      1
      ·
      1 year ago

      Flatpaks are to distros what Alpine is for docker containers. A base for creating distro agnostic desktop applications. It’s really cool and has picked up quite some good support within the Linux community.

      • qaz@lemmy.world
        link
        fedilink
        arrow-up
        11
        ·
        1 year ago

        I think that Flatpak being Docker for desktop applications would be a better comparison.

    • BoofStroke@lemm.ee
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      Mint integrates flatpak seemlessly into its graphic package management and update tools.

      • Semperverus@lemmy.world
        link
        fedilink
        English
        arrow-up
        5
        ·
        edit-2
        1 year ago

        KDE’s “Discover Store” (gui package manager) also does as well, which is awesome. While I don’t like the idea of packaging system libraries with software due to the fact that they can and will sit out of date and hold on to vulnerabilities, I do like what flatpak is trying to achieve and the fact that we have a very solid leader in the area, putting the closed-source proprietary Snaps system firmly in second place.

    • Piers@beehaw.org
      link
      fedilink
      English
      arrow-up
      4
      ·
      1 year ago

      AFAIK it’s a system to let Linux software bundle all of it’s dependencies up with it so it just works in a self contained way that doesn’t care about what else is and isn’t installed.

      Advantages is that they are more reliable and user friendly than traditional approaches to Linux software installation.

      Disadvantages are that they have bigger footprints where you might have the same dependencies I dependently installed for each app rather than as a single installation that they all utilise and that they need to be updated individually (as part of the flatpak.) IE if basically every app uses the same dependency and it turns out to have a huge security hole, under normal Linux software the developer would patch it, you’d update it and the hole would be filled. With Flatpaks you need each individual Flatpak developer to update the version used by their Flatpak and for you to update all those Flatpaks before the hole is plugged. I think I remember they run in some kind of sandbox to mitigate this though.

      • M. Orange@beehaw.org
        link
        fedilink
        arrow-up
        3
        ·
        1 year ago

        (This is going to be grossly oversimplified and possibly minorly inaccurate, but) Flatpaks are built against and run using shared runtimes, so if two Flatpaks share the same basic dependencies (and those dependencies are included in the most common runtimes, which they usually are), you only have to download the shared runtime once. Every Flatpak built on the same runtime will share the one runtime. The way you described it is a common misconception.

        Now if the packager manually bundles less common dependencies into the app itself, yes, that would have to be individually updated, but that’s theoretically more of an edge case.

  • 👁️👄👁️@lemm.ee
    link
    fedilink
    English
    arrow-up
    14
    arrow-down
    1
    ·
    1 year ago

    Another big advantage of Flatpaks is the portability, since they live in your home.

    I’ve had to reinstall distros and swap to different ones a decent amount. I simply backup and restore my home dir, and all my flatpaks get carried over, appear in my app launchers, and usually have their app data saved so I don’t even have to relogin/reconfigure to stuff. It’s as if I had just closed and opened it again.

    It’s crazy this works even when completely swapping distros.

    • OsrsNeedsF2P@lemmy.ml
      link
      fedilink
      arrow-up
      8
      ·
      edit-2
      1 year ago

      I run Arch Linux (by the way) on my work laptop. One time Unity botched their game engine on Arch, so I had to rollback my whole system to keep an older version of GTK just so I could keep doing my work.

      For a good 6 months, any up-to-date application had to be a Flatpak, because updating my system was off the table. Completely saved my bacon, and let me stay on top of rolling-release apps with ease.

      • DaTingGoBrrr@lemmy.ml
        link
        fedilink
        arrow-up
        3
        ·
        1 year ago

        You could set up a development environment using distrobox in an arch container and keep the downgraded packages installed in there if it happens again

          • nicman24@kbin.social
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            oh nvm i read something in the title wrong. also dont count on fast fixes for the kernel they have repeately lagged or even never arrived in older lts

        • IverCoder@lemm.eeOP
          link
          fedilink
          English
          arrow-up
          9
          arrow-down
          1
          ·
          1 year ago

          This is a completely patched Ubuntu 16.04 through the Extended Security Maintenance program.

          I would have tried this on Ubuntu 14.04 (supported until 2024) but Flatpak never supported 14.04 in the first place.

          • Semperverus@lemmy.world
            link
            fedilink
            English
            arrow-up
            6
            ·
            1 year ago

            They are talking about the code sitting inside the flatpak I think. If a developer fails to continue updating the system libraries a flatpak contains, you retain old vulnerabilities you could have otherwise fixed with a sudo apt update && apt upgrade or a sudo pacman -Syu

            • AProfessional@lemmy.world
              link
              fedilink
              English
              arrow-up
              3
              ·
              1 year ago

              The runtimes are well maintained and it shows warnings on no longer maintained versions. It’s less of a problem in practice.

      • neo (he/him)@lemmy.comfysnug.space
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        5
        ·
        1 year ago

        Flatpak has relatively weak sandboxing, takes up a lot more storage because sometimes dependencies get bundled a few dozen times, and most distressingly depends on the application developer to be available to do things like address supply chain attacks.

        • Possibly linux@lemmy.zip
          link
          fedilink
          English
          arrow-up
          3
          ·
          1 year ago

          I don’t think you understand flatpaks. Flatpaks have dependencies such as the gnome or KDE frameworks. Those frameworks are only installed once so I’m not sure where you are getting the idea that they are installed multiple times.

          Also flatpaks usually come from flathub.org which is unlikely to be compromised. It not impossible but they seem to be pretty good about properly labeling apps.

        • halva@discuss.tchncs.de
          link
          fedilink
          arrow-up
          4
          arrow-down
          1
          ·
          1 year ago

          relatively weak sandboxing

          because xorg exists, not because flatpak can’t do sandboxing well

          dependencies get bundled a few times

          only if there’s a need to do so. identical runtimes are shared

          depends on the application developer to be available to do things like supply chain attacks

          yeah as if a rogue package maintainer can’t do the same