Announcement
Collapse
No announcement yet.
Ubuntu To Get Its Own Package Format, App Installer
Collapse
X
-
Originally posted by LightBit View PostDownside is 1000 copies of same library.All opinions are my own not those of my employer if you know who they are.
Comment
-
Originally posted by TheOne View PostLook at windows, old executables of the win 95 still work on win 7/8, we don't have that flexibility on the linux world unless you recompile the whole world again. Even mac bundles are flexible enough.
It is true that applications will end larger in size since all of them will ship with it's own libraries but at least the developer has some more flexibility.
Anyway this decision has its pros and cons
The reality is "stable API", which means a MESS of libraries of different versions.
1st ms take on mess - do nothing - result: dll hell
2nd ms take on mess - prevent replacing system dlls - result: a lot of software does not run, many software just packages "dynamic libraries", that are actually locally placed.
3rd ms take on mess - for every application, create isolated library space, aka winsxs. Result: HUGE folder of mess dlls.
The mess cons:
No one knows when it breaks.
When ms adds something, it inevitably break others.
Due to statically compiled software nobody really cares, the whole security hell is right here.
Due to "universal" API, even old viruses work on newer systems.
Pros:
software MAY work on next patch, or maybe NOT.
I don't get Canonical here, the whole LSB is about creating proprietary applications - kinda like "I compile & obfuscate this crap one time, and then I want it to bring money, I don't care about how it works".
I smell Canonical is starting to lay fundament for unmantained-type proprietary in userspace here. : (
Originally posted by Ericg View PostAnd in 1990 i'd agree...but this is 2013, storage is cheap. I can (and did) go out and get a 1TB external USB3.0 HDD for $75, so who cares? They're all being kept in their own app's folder so its not even like theyre all flooding /usr/lib
Why to keep them in own folder? For what reason? How about updating them? Or should they be left unupdated and buggy/insecure.Last edited by brosis; 08 May 2013, 02:15 PM.
Comment
-
This move is actually pretty good. I really dislike Ubuntu so having Canonical detach their claws from Debian - which I use - is great news. Even better, since they are now, supposedly, alpha testing static linking, which isn't a terrible idea*, they'll might actually accomplish something useful and more importantly, be too busy to mess up anything else. Maybe they'll even stop that Mir nonsense.
*Static libs aren't a terrible idea. They have their pros and cons, but with modern hard-drives hitting the terabytes, it's mostly pros. Only problem is the security issues with deprecated libraries. But, with proper versioning (since dependencies are less of an issues and no longer take precedent), you really lose little to nothing.
When it comes to dynamic packaging, .debs are superior to .rpms on purely technical merits while arch's packaging is just superfluous. The problem is that .debs are hard to package and maintain properly so the developers always preferred rpms.
Of course, it's all talks and rumours right now. For all we know it's just some half lame hybrid monstrosity that interbreeds static and dynamic libraries; Solving nothing and adding yet another packaging system for devs to ignore.
Comment
-
Originally posted by frign View PostWho didn't expect this? Most Ubuntu-.deb-packages aren't compatible with other Debian-distributions anyway, so it was just a matter of time for them to do their own bullshit.
It might be only one more symptom of the NIH-syndrome, but I consider this even a dangerous tactic which most Debian-developers already warned us about.Last edited by dh04000; 08 May 2013, 02:18 PM.
Comment
-
Originally posted by Ericg View PostAnd in 1990 i'd agree...but this is 2013, storage is cheap. I can (and did) go out and get a 1TB external USB3.0 HDD for $75, so who cares? They're all being kept in their own app's folder so its not even like theyre all flooding /usr/lib
And it's not only about storage. You have to update all copies, if vulnerability is found.
Comment
-
I have no idea why people are getting thier panties in a bundle. This will apply to a very small subset of package on the ubuntu desktop and the phone/tablet. The post-release/after package freeze apps.
Use case with imaginary examples:
Say I'm developing an applications that uses dependency A and B. I use dependency A version 6 and dependency B version 3. Let's say I'm trageting my application to Ubuntu 12.04 and Ubuntu 13.04 post release. But these releases of Ubuntu have thier own version of dependencies.
Ubuntu 12.04: A6 and B2
Ubuntu 13.04: A7 and B3
My application could not work on either, and thus not be added to thier repo's post-release. Thus with the new package installer, I could provide the verisons of my dependencies in the installer and have my application work on both versions.
Dev wins, users wins. Stop whining.
Comment
-
Originally posted by c117152 View PostWhen it comes to dynamic packaging, .debs are superior to .rpms on purely technical meritsAll opinions are my own not those of my employer if you know who they are.
Comment
Comment